From: Daan De Meyer Date: Thu, 23 Jan 2025 10:00:36 +0000 (+0100) Subject: Update NEWS X-Git-Tag: v25~7 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=81590b5e6a60f1067a2175d356975355b389e322;p=thirdparty%2Fmkosi.git Update NEWS --- diff --git a/mkosi/resources/man/mkosi.news.7.md b/mkosi/resources/man/mkosi.news.7.md index 8b3ab0a33..220a3ccdf 100644 --- a/mkosi/resources/man/mkosi.news.7.md +++ b/mkosi/resources/man/mkosi.news.7.md @@ -139,6 +139,31 @@ from the host is not used anymore and mkosi will run `pacman-key --init` and `pacman-key --populate` itself. - Added `ToolsTreeRelease=` match +- mkosi now enforces that images built with `Overlay=yes` only add files + on top of the base tree(s) and don't overwrite any existing files or + directories. +- Added a `mkosi-addon` tool and accompanying kernel-install plugin that + allows building PE addons to extend a vendor provided unified kernel + image. +- Added `systemd-boot-signed`, `uki-signed` and `grub-signed` variants + for the `Bootloader=` option which instruct mkosi to only install + pre-signed EFI binaries. +- `mkosi.profiles` is now parsed in configuration included with + `Include=`. +- Any initrds configured with `Initrds=` are now used as fallback when + booting with qemu direct kernel boot (`--firmware=linux`) if no split + initrd was produced by the image build. +- mkosi now makes a greater effort to ensure the crypto-policies are + configured to allow GPG keys from older distributions. +- We don't pick up pre-signed bootloader binaries anymore when + `ShimBootloader=signed` is configured. To force usage of pre-signed + EFI binaries, use the new `systemd-boot-signed`, `uki-signed` and + `grub-signed` variants for the `Bootloader=` option. +- Added a new constant `microsoft-mok` for the `FirmwareVariables=` + option. If specified, a firmware variables file with the Microsoft + keys enrolled will be extended to include a `MokList` entry that + trusts the certificate configured with `SecureBootCertificate=` and + passed to `qemu`. ## v24