| 2026-04-30 17:29 | lib/rng_seed: Wipe the previous seed's size header along with its bits | Mintsuki | bb167aa3 |
| 2026-04-30 17:21 | lib/rng_seed: Wipe previous seed bytes through a volatile pointer | Mintsuki | 23ec355c |
| 2026-04-30 17:21 | lib/misc: Measure device tree blob before fdt_open_into resizes it | Mintsuki | 2e19eb6a |
| 2026-04-30 17:17 | protos/linux: Measure the entire x86 bzImage rather than just the protected-mode payload | Mintsuki | 4f55a8f0 |
| 2026-04-30 17:17 | lib/tpm: Size the spec-ID event using the v1.2 layout when it is the only entry | Mintsuki | 33fb627a |
| 2026-04-30 17:16 | lib/tpm: Walk EFI_CC_FINAL_EVENTS_TABLE on confidential computing platforms | Mintsuki | 9d2a5d10 |
| 2026-04-30 16:20 | protos/limine: Measure device tree blob in DTB feature | Mintsuki | 60bbcb9b |
| 2026-04-30 16:19 | docs: Document measured boot | Mintsuki | b08f8f4a |
| 2026-04-30 15:53 | lib/misc: Add measured_boot config option | Mintsuki | 932d17b7 |
| 2026-04-30 16:36 | build: Bump limine-protocol commit | Mintsuki | c8326335 |
| 2026-04-29 21:45 | lib/tpm: Fall back to EFI_CC_MEASUREMENT_PROTOCOL on confidential computing platforms | Mintsuki | e16fc026 |
| 2026-04-29 20:48 | lib/rng_seed: Publish EFI RNG entropy as LINUX_EFI_RANDOM_SEED configuration table | Mintsuki | 0d79a93b |
| 2026-04-29 23:11 | protos/limine: Expose TPM event log via the new TPM Event Log feature | Mintsuki | 232c500e |
| 2026-04-29 23:26 | protos/linux: Publish TPM event log as LINUX_EFI_TPM_EVENT_LOG configuration table | Mintsuki | 6c5e1866 |
| 2026-04-29 23:20 | lib/tpm: Capture TCG2 event log from EFI_TCG2_PROTOCOL | Mintsuki | f812c16c |
| 2026-04-29 19:20 | lib/tpm: Implement measured boot via EFI_TCG2_PROTOCOL | Mintsuki | 3600dce8 |
| 2026-04-29 15:06 | protos/linux: Report UEFI Secure Boot state to the kernel | Mintsuki | c5e109d7 |
| 2026-04-30 00:27 | build: Bump PicoEFI and limine-protocol | Mintsuki | 56122a71 |
| 2026-04-28 20:15 | mm/mtrr: Reintroduce logic to enable WC regions for FBs using MTRRs | Mintsuki | 273062a1 |
| 2026-04-27 14:46 | lib/misc: Validate user-supplied DTB before invoking libfdt | Mintsuki | cf317795 |
| 2026-04-27 14:42 | lib/config: Cap menu nesting depth to prevent stack exhaustion | Mintsuki | 6d116252 |
| 2026-04-26 18:57 | CONFIG.md: document transparently gzip-compressed resources. | Kamila Szewczyk | 52abab5c |
| 2026-04-26 18:45 | lib/image: add support for qoi (#561) | Kamila Szewczyk | fac13667 |
| 2026-04-26 18:04 | add options that allow hiding entries depending of firmware/architecture (#560) | Patrick Hechler | b2848fb5 |
| 2026-04-26 11:35 | lib/elf: reject empty load images | Kamila Szewczyk | 28d8cc30 |
| 2026-04-26 11:30 | protos/multiboot: check address-tag arithmetic | Kamila Szewczyk | b0dbc839 |
| 2026-04-26 11:37 | pxe/tftp: fix UEFI read size TOCTOU | Kamila Szewczyk | c155f403 |
| 2026-04-25 22:24 | docs: Update ChangeLog for 12.0.2 | Mintsuki | 2e65d673 |
| 2026-04-25 22:20 | build: Remove .gitignore from the binary release tarball | Mintsuki | 3ef4831f |
| 2026-04-25 22:03 | gha: Release binary tarball without version suffix | Mintsuki | 0d23d967 |
