Information for build varstored-1.3.2-2.1.0.4e0cae33f7.1.xcpng8.3
| ID | 5836 | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Package Name | varstored | |||||||||||||||
| Version | 1.3.2 | |||||||||||||||
| Release | 2.1.0.4e0cae33f7.1.xcpng8.3 | |||||||||||||||
| Epoch | Draft | False | ||||||||||||||
| Source | git+https://github.com/xcp-ng-rpms/varstored.git#207b5322a6befcd205103d6d03a4a4631b0efd74 | |||||||||||||||
| Summary | EFI Variable Storage Daemon | |||||||||||||||
| Description | A daemon for implementing variable services for UEFI guests. It is responsible for storage, retrieval, and performing checks when writing authenticated variables. | |||||||||||||||
| Built by | asultanov | |||||||||||||||
| State | complete | |||||||||||||||
| Volume | DEFAULT | |||||||||||||||
| Started | Fri, 03 Jul 2026 16:38:19 UTC | |||||||||||||||
| Completed | Fri, 03 Jul 2026 16:39:54 UTC | |||||||||||||||
| Task | build (v8.3-u-asultanov2, /xcp-ng-rpms/varstored.git:207b5322a6befcd205103d6d03a4a4631b0efd74) | |||||||||||||||
| Extra | {'source': {'original_url': 'git+https://github.com/xcp-ng-rpms/varstored.git?#207b5322a6befcd205103d6d03a4a4631b0efd74'}} | |||||||||||||||
| Tags |
|
|||||||||||||||
| RPMs |
|
|||||||||||||||
| Logs |
|
|||||||||||||||
| Changelog | * Tue May 19 2026 Tu Dinh <ngoc-tu.dinh@vates.tech> - 1.3.2-2.1 - Sync with 1.3.2-2 - No change in auth data - *** Upstream changelog *** * Wed Apr 08 2026 Alex Brett <alex.brett@citrix.com> - 1.3.2-2 - CP-311096: Use pre-signed auth data * Fri Mar 20 2026 Stephen Cheng <stephen.cheng@citrix.com> - 1.3.2-1 - CP-311837: Add -g option for GUID in create-auth - CP-311836: Support detached signatures in create-auth utility - Remove xsa478.patch since the fix is now in upstream * Thu Jan 29 2026 Andriy Sultanov <andriy.sultanov@vates.tech> - 1.3.1-2.1 - Sync with 1.3.1-2 - *** Upstream changelog *** * Mon Jan 12 2026 Andrew Cooper <andrew.cooper3@citrix.com> - 1.3.1-2 - Fix for XSA-478 / CVE-2025-58151 * Thu Nov 13 2025 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.3.1-1 - CA-419599: Check DATA_LIMIT when appending * Mon Oct 06 2025 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.3.0-1 - CP-309775: Add new Microsoft certificates - Fix varstore-sb-state exit code - Don't fail setup_keys if the optional dbx is missing * Fri Jan 23 2026 Philippe Coval <philippe.coval@vates.tech> - 1.2.0-3.6 - Rebuild with openssl-3 * Thu Jan 15 2026 Teddy Astie <teddy.astie@vates.tech> - 1.2.0-3.5 - Fix for XSA-478 * Tue Oct 28 2025 Tu Dinh <ngoc-tu.dinh@vates.tech> - 1.2.0-3.4 - Fix owner GUID of EFI_SIGNATURE_DATA structures - Restore dbx generation - Update dbx info to microsoft/secureboot_objects@e64d1a5c89e5 (v1.6.1) - Add fix-efivars.py script * Mon Sep 22 2025 Thierry Escande <thierry.escande@vates.tech> - 1.2.0-3.1 - Sync with 1.2.0-3 - *** Upstream changelog *** * Wed Jan 22 2025 XenServer Rebuild <rebuild@xenserver.com> - 1.2.0-3 - Add yangtze release branch - CP-53310: XenServer 9 rebuild * Wed Jul 30 2025 Tu Dinh <ngoc-tu.dinh@vates.tech> - 1.2.0-2.4 - Add gen-sbvar.py - Add self-signed PK.auth blob - Generate {KEK,db,dbx}.auth using gen-sbvar.py - Update secureboot-certs to take builtin KEK/db/dbx - Update Secure Boot certs from microsoft/secureboot_objects@3f69ef4 * Fri Apr 19 2024 Thierry Escande <thierry.escande@vates.tech> - 1.2.0-2.3 - Remove generation and installation of KEK and db files - Add helper script to remove pem file from source archive - Update source archive with pem files removed * Wed Apr 17 2024 Thierry Escande <thierry.escande@vates.tech> - 1.2.0-2.2 - Auth: Add support to make KEK and DB files optional - Auth: Enable AUTH_ONLY_PK_REQUIRED build macro * Tue Apr 09 2024 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.2.0-2.1 - Sync with 1.2.0-2 - *** Upstream changelog *** - * Fri Jan 26 2024 Andrew Cooper <andrew.cooper3@citrix.com> - 1.2.0-2 - - Rebuild against libxenstore.so.4 * Wed Dec 13 2023 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.2.0-1.3 - Update secureboot-certs script for recent UEFI cert handling in XAPI - Remove KEK and db cert databases for now, pending legal advice. * Wed Oct 25 2023 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.2.0-1.2 - Revert part of XCP-ng specific changes, as upstream varstored now uses /var/lib/varstored and certs should be available by default now. - Add varstored-1.2.0-fix-return-code-for-varstore-sb-state-user.XCP-ng.patch * Fri Sep 15 2023 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.2.0-1.1 - Update to 1.2.0-1 - Remove varstored-1.0.0-change-certs-directory.XCP-ng.patch - *** Upstream changelog *** - * Tue Feb 28 2023 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.2.0-1 - - CP-41616: Move varstored auth dir to /var/lib/varstored - - CA-369046: Log the error code if set_variable_from_auth fails - - CA-362923: Change output format of create-auth - - CP-40832: Add standard UEFI Secure Boot certificates * Wed Dec 07 2022 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.1.0-1.1 - Update from XS 8.3 prerelease updates - *** Upstream changelog *** - * Wed Aug 17 2022 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.1.0-1 - - varstore-sb-state: only load auth data if needed - - xapidb_init: Use BACKEND_INIT_FAILURE - - CA-366706: Fix signal handling and possible segfault - - CP-39854: Implement Platform Attack Reset Mitigation spec - - CP-39864 / CP-40029: Implement PPI support - * Tue Jul 26 2022 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.0.0-3 - - Fix license of tools subpackage * Fri Oct 28 2022 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.0.0-2.4 - Update varstored-1.0.0-tolerate-missing-dbx-on-disk.XCP-ng.patch to match upstream PR * Thu Oct 27 2022 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.0.0-2.3 - Fix buggy varstored-1.0.0-tolerate-missing-dbx-on-disk.XCP-ng.patch * Thu Oct 27 2022 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.0.0-2.2 - Remove dependency to secureboot-certificates, for now - Add varstored-1.0.0-tolerate-missing-dbx-on-disk.XCP-ng.patch * Tue Oct 25 2022 Samuel Verschelde <stormi-xcp@ylix.fr> - 1.0.0-2.1 - Obsolete uefistored - Create the /var/lib/varstored directory for XAPI to write into - Add varstored-1.0.0-change-certs-directory.XCP-ng.patch to read certs from /var/lib/varstored - Add the secureboot-certs script, formerly provided by uefistored - Add /etc/xapi.conf.d/00-XCP-ng-varstore-dir.conf to change the certs dir in XAPI - Add %post scriptlet to write PK.auth into /var/lib/varstored if missing * Mon Mar 07 2022 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.0.0-2 - Correct license field * Fri Jun 25 2021 Ross Lagerwall <ross.lagerwall@citrix.com> - 1.0.0-1 - Switch upstream to GitHub * Mon Mar 15 2021 Andrew Cooper <andrew.cooper3@citrix.com> - 0.9.5-1 - Switch to using stable Xen hypercalls only - Don't configure bufioreq facilities - Correct memory barriers * Tue Mar 09 2021 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.9.4-1 - CA-352332: Skip setting PK if KEK/db are missing * Tue Feb 02 2021 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.9.3-1 - CP-35896: varstore-get: Handle bad data_len - CP-35896: Check count of variables before looping - CP-35896: Check the return value of ASN1_get_object - CP-35896: Initialize digest to zero - CP-35896: Fix loading the certificate digest from serialized state - CA-351587: Move crypto initialization earlier * Wed Jan 27 2021 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.9.2-1 - CA-351037: Use CC in the Makefile - CA-351037: Fix issues reported by clang scan-build - CP-35896: Add Coverity model and static analysis config - CP-35896: Fix issues reported by Coverity * Wed Jun 24 2020 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.9.1-1 - CA-341597: Handle SIGTERM before the main loop is running - CA-341597: Fix error message * Mon Apr 20 2020 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.9.0-1 - CA-333946: Make user mode == deployed mode - CA-333944: Increase total size of variable storage to 128 KiB - CA-333944: Set SignatureOwner to Microsoft's GUID for KEK and db * Thu Sep 26 2019 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.8.1-1 - CP-32192: Use func rather than offset to access EVP_PKEY * Mon Jul 01 2019 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.8.0-1 - Add a comment for commit a86b34eeac45 - Don't make auth target by default - Cleanup initialize_settings() - CA-322067: Use new resource mapping API * Wed May 29 2019 Edwin Török <edvin.torok@citrix.com> - 0.7.0-1 - CP-30435 read feature flag in varstored to determine state of bootmode - CP-30582 reverse setup keys - Fix for CA-312835 and extra logging - Add unit test for CA-312835 * Thu Feb 21 2019 Patrick Fox <patrick.fox@citrix.com> - 0.6.0-3 - Depend on SecureBoot Certificates Script for storing certificates in XAPI - Build create-auth * Fri Nov 23 2018 Edwin Török <edvin.torok@citrix.com> - 0.6.0-2 - Depend on varstored-guard for deprivileged operations * Fri Nov 16 2018 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.5.0-1 - Bump version to v0.5.0 since varstored is now functionally complete. * Fri May 18 2018 Ross Lagerwall <ross.lagerwall@citrix.com> - 0.1.0-1 - Initial packaging |
