Source: shim
Section: admin
Priority: optional
Maintainer: Steve Langasek <vorlon@debian.org>
Standards-Version: 3.9.8
Build-Depends:
 debhelper (>= 9),
 dh-signobs,
 gnu-efi (>= 3.0u),
 libelf-dev,
 openssl,
 sbsigntool,
Vcs-Bzr: lp:~ubuntu-core-dev/shim/trunk
XS-Obs: needssslcertforbuild

Package: shim-unsigned
Architecture: amd64 i386 arm64
Conflicts: shim (<< 14),
Depends: ${shlibs:Depends}, ${misc:Depends}
Description: boot loader to chain-load signed boot loaders under Secure Boot
 This package provides a minimalist boot loader which allows verifying
 signatures of other UEFI binaries against either the Secure Boot DB/DBX or
 against a built-in signature database.  Its purpose is to allow a small,
 infrequently-changing binary to be signed by the UEFI CA, while allowing
 an OS distributor to revision their main bootloader independently of the CA.

Package: shim-amd64-signed-template
Architecture: amd64
Description: boot loader to chain-load signed boot loaders (signing template)
 This package contains template files for shim-amd64-signed.
 This is only needed for Secure Boot singing.

Package: shim-i386-signed-template
Architecture: i386
Description: boot loader to chain-load signed boot loaders (signing template)
 This package contains template files for shim-i386-signed.
 This is only needed for Secure Boot singing.

Package: shim-arm64-signed-template
Architecture: arm64
Description: boot loader to chain-load signed boot loaders (signing template)
 This package contains template files for shim-arm64-signed.
 This is only needed for Secure Boot singing.
