From: Matthew Garrett <mjg59@srcf.ucam.org>
To: Ard Biesheuvel <ardb@kernel.org>
Cc: linux-efi@vger.kernel.org, catalin.marinas@arm.com,
will@kernel.org,
"James E.J. Bottomley" <James.Bottomley@HansenPartnership.com>,
Peter Jones <pjones@redhat.com>,
Ilias Apalodimas <ilias.apalodimas@linaro.org>,
Heinrich Schuchardt <heinrich.schuchardt@canonical.com>,
AKASHI Takahiro <takahiro.akashi@linaro.org>,
Palmer Dabbelt <palmer@dabbelt.com>,
Atish Patra <atishp@atishpatra.org>,
Arnd Bergmann <arnd@arndb.de>,
Huacai Chen <chenhuacai@loongson.cn>,
Lennart Poettering <lennart@poettering.net>
Subject: Re: [PATCH v2 0/6] efi: implement generic compressed boot support
Date: Tue, 9 Aug 2022 09:47:07 +0100 [thread overview]
Message-ID: <20220809084707.GA3357@srcf.ucam.org> (raw)
In-Reply-To: <20220809080944.1119654-1-ardb@kernel.org>
On Tue, Aug 09, 2022 at 10:09:38AM +0200, Ard Biesheuvel wrote:
> The only slight downside is that when UEFI secure boot is enabled, the
> generic LoadImage/StartImage only allow signed images to be loaded and
> started, and we prefer to avoid the need to sign both the inner and
> outer PE/COFF images. This series adopts the EFI shim approach, i.e., to
> override an internal UEFI/PI protocol that is used by the image loader,
> to allow the inner image to be booted after decompression. This has been
> tested to work with Tianocore based EFI implementations on arm64, but
> u-boot will need some interoperability tweaks as well, ideally just a
> protocol that exposes a LoadImage/StartImage combo that the decompresor
> can use directly to circumvent the signature check. (Note that EFI apps
> have full control over the CPU, page tables, etc. so having code that
> circumvents authentication checks is not as crazy as it sounds, given
> that the app can do anything it pleases already.)
I think it's worth mentioning that Shim doesn't do this by default
because it's not guaranteed that something implementing the UEFI DXE
layer also implements the PI layer. I don't have an objection to it
being an expectation on any Linux-supporting platform that the
implementation works this way, but it should maybe be made clear that
this could unexpectedly fail on generic platforms.
prev parent reply other threads:[~2022-08-09 8:47 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-08-09 8:09 [PATCH v2 0/6] efi: implement generic compressed boot support Ard Biesheuvel
2022-08-09 8:09 ` [PATCH v2 1/6] efi: stub: add some missing boot service prototypes Ard Biesheuvel
2022-08-09 8:42 ` Heinrich Schuchardt
2022-08-09 8:09 ` [PATCH v2 2/6] efi: stub: split off printk() routines Ard Biesheuvel
2022-08-09 8:09 ` [PATCH v2 3/6] efi: stub: move efi_system_table global var into separate object Ard Biesheuvel
2022-08-09 8:09 ` [PATCH v2 4/6] efi: stub: implement generic EFI zboot Ard Biesheuvel
2022-08-09 8:09 ` [PATCH v2 5/6] arm64: efi: enable generic EFI compressed boot Ard Biesheuvel
2022-08-09 8:09 ` [PATCH v2 6/6] riscv: " Ard Biesheuvel
2022-09-12 14:26 ` Palmer Dabbelt
2022-08-09 8:38 ` [PATCH v2 0/6] efi: implement generic compressed boot support Heinrich Schuchardt
2022-08-09 8:46 ` Ard Biesheuvel
2022-08-09 9:03 ` Heinrich Schuchardt
2022-08-09 9:10 ` Ard Biesheuvel
2022-08-09 8:47 ` Matthew Garrett [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20220809084707.GA3357@srcf.ucam.org \
--to=mjg59@srcf.ucam.org \
--cc=James.Bottomley@HansenPartnership.com \
--cc=ardb@kernel.org \
--cc=arnd@arndb.de \
--cc=atishp@atishpatra.org \
--cc=catalin.marinas@arm.com \
--cc=chenhuacai@loongson.cn \
--cc=heinrich.schuchardt@canonical.com \
--cc=ilias.apalodimas@linaro.org \
--cc=lennart@poettering.net \
--cc=linux-efi@vger.kernel.org \
--cc=palmer@dabbelt.com \
--cc=pjones@redhat.com \
--cc=takahiro.akashi@linaro.org \
--cc=will@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.