Releases: Mattiwatti/EfiGuard
Releases · Mattiwatti/EfiGuard
EfiGuard v1.4
0f5dca4
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
EfiGuardDxe
- Compatibility fixes to support future versions of Windows. This affects Windows Insider builds 25941 and up. (#103)
EfiGuardDxenow correctly clears and restoresCR4.CETalong withCR0.WPif needed.
As a result of this, EfiGuard can now also disable write protection during copies from its runtimeSetVariablehook, which it previously did not do due to the potential for conflicts with CET.- Restored compatibility with EasyAntiCheat (EAC) (but see below). This fixes a regression introduced in v1.1.
- Note: This fix requires Windows 11 or Server 2022 in order to work for reasons related to PatchGuard internals.
Older versions will see no benefit. This is unlikely to ever change. - Note: Compatibility with anti-cheat software is not necessarily a goal of EfiGuard. This change fixes a regression that was affecting legitimate users. Issues complaining that EfiGuard isn't letting you cheat in video games will still be closed WONTFIX.
- Note: This fix requires Windows 11 or Server 2022 in order to work for reasons related to PatchGuard internals.
Loader
- Interactive driver configuration through the loader has been changed from a compile time to a runtime switch. If you were using
Loader.config.efi, you can now access this functionality by pressing the<HOME>key when prompted. - Fixed chainloading issue when using a third party boot manager such as Ventoy to boot Windows. (#91)
EfiDSEFix
EfiDSEFixwill now acquireSE_DEBUG_PRIVILEGEbefore attempting to query kernel modules. (#97)
This is another compatibility fix for Windows Insider that will likely be required in future versions of Windows.- Fixed invisible/hidden console output when running from a non-elevated prompt with UAC enabled. (#75)
EfiGuard v1.3
383aea8
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
EfiGuardDxe
- Updated Zydis to v4.
- EfiGuardDxe will now disable VBS during boot. This fixes a bugcheck in Windows 11 22H2, which enables VBS by default. The override does not persist and lasts until the next reboot, so disabling (or not booting into) EfiGuard is sufficient to restore VBS. Hyper-V and other Windows hypervisor features are not affected by this change and will continue to work.
- Updated all memory write accesses (hooks, patches) to clear and restore
CR0.WPif needed. This is in anticipation of the newEFI_MEMORY_ATTRIBUTE_PROTOCOLintroduced in UEFI 2.10.
Loader
- Improved robustness of the logic that determines whether a boot option is Windows. The loader will now take any boot option named "Windows Boot Manager" into consideration regardless of its filename. The previous filename-based detection is still in place and will be used as a fallback.
EfiDSEFix
EfiDSEFix -inow prints currently enabled code integrity and VBS options and flags.- Added
-rcommand to read the current value ofg_CiOptionswithout writing to it. EfiDSEFix -dandEfiDSEFix -cnow verify that VBS is disabled before proceeding. Note that VBS being enabled most likely indicates that EfiGuardDxe was simply never loaded, so this is mostly a precaution.
EfiGuard v1.2.1
1cc497f
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Fixed regression in
EfiDSEFixon older versions of Windows 10.
There were no changes to EfiGuardDxe or the loader in this update.
EfiGuard v1.2
d1d9d85
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Fixed a critical issue where running
EfiDSEFix -don Windows 10 systems with KB5003173 (May 2021 update) applied would cause a BSOD.
There were no changes to EfiGuardDxe or the loader in this update.
EfiGuard v1.1.1
f8ca8c0
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Greatly increased the robustness of backtracking to function start addresses needed for patching, compared to the previous heuristic. This was not causing any issues with current versions of Windows, but this change may be needed in order for EfiGuard to support future versions.
EfiGuard v1.1
0256353
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Fixed issue where PatchGuard bugchecks could sometimes still occur on Windows 10.
- Fixed blue screen at boot when Riot Vanguard is installed.
- The loader now writes EFI memory type information in an attempt to work better with ACPI S4 (hibernate).
EfiGuard v1.0.3
9947a9f
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Fixed unhelpful error when a legacy (BIOS) boot entry is being booted. This now works properly. Note: this change does not add support for legacy boot entries to EfiGuard, it only changes the loader's behaviour in the fallback path.
- Upated
SeCodeIntegrityQueryInformationsignature for Windows 10 20H1 preview.
EfiGuard v1.0.2
9e42f8d
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Fixed potential recursive self-boot by
Loader.efi. - Fixed EfiGuardDxe not calling its own unload routine when a non-Windows OS was being booted.
EfiGuard v1.0.1
d50a2aa
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
- Fixed
EfiDSEFix -enot re-enabling DSE on Windows 8 and higher unless the value was manually specified.
EfiGuard v1.0
0be8f44
This commit was signed with the committer’s verified signature.
Mattiwatti
Matthijs Lavrijsen
First public release