From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from list by lists.gnu.org with archive (Exim 4.90_1) id 1p2aWF-0001pT-Nx for mharc-grub-devel@gnu.org; Tue, 06 Dec 2022 11:10:07 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1p2aWE-0001pB-JW for grub-devel@gnu.org; Tue, 06 Dec 2022 11:10:06 -0500 Received: from us-smtp-delivery-124.mimecast.com ([170.10.129.124]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1p2aWC-0001RF-Ja for grub-devel@gnu.org; Tue, 06 Dec 2022 11:10:06 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1670343003; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=iDqtdwbRWvZlc4SiHlqvYAIpXTGKaCMtkEIGD8frNoU=; b=HmdUP1FEHMJOJoctqSpauE4PSYBqXU35wd8CJMCiVXCuiEjgfw7v+yXXo690YjBo8Tt4np 42ty+Cgds2SFxMiikfjj6A6MkMFX+YSL2dyQXC2peNeNgXZxzLOtv3v6U/209u5CSbI9lj A7oXcTlLXOvdEw/iv31gqIlgzBAZ3VY= Received: from mail-qt1-f200.google.com (mail-qt1-f200.google.com [209.85.160.200]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id us-mta-443-JJrXd1nIOBG5QErpfmDWBA-1; Tue, 06 Dec 2022 11:10:01 -0500 X-MC-Unique: JJrXd1nIOBG5QErpfmDWBA-1 Received: by mail-qt1-f200.google.com with SMTP id hg24-20020a05622a611800b003a66175d924so34453630qtb.1 for ; Tue, 06 Dec 2022 08:10:01 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=mime-version:message-id:date:references:in-reply-to:subject:cc:to :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=iDqtdwbRWvZlc4SiHlqvYAIpXTGKaCMtkEIGD8frNoU=; b=EXc3KFwLOJ9L+m52DUtF5sWulrv6q+FlTOu8CwnjCVO9qjnKbHU1sxmFCVWk7wg28n v+v4Nw0fjZPpLYAiUP1ljC6ALkX0eZgaaP6rDlPIyIHB9IondDfZlMaqj4C3bGONyHLA i3TYQYeDlbruuxxPDOwNhL3G9pSh4LzwZaTCKve0t7hUf6RvngJM9hRAkei0BQNU2AXu ndNrhA0hYqnQx+XLyGLAcrLljEm3A6s0m68/554xf7MOF/AUkZyd7Jtvo/w0qdDxm53I vlhw1tQhG0JF4QzCFimDl/v5UocjfsqllzZ+ieAk3kWm7kYqCzjGUzUp+9fSNTv+1X3O cUew== X-Gm-Message-State: ANoB5plF1EmCy85iSIPr/XlHY7OtSnvCiXsX1g/pRGOcVGv17b7hNUQw FtL5EcI2F7mKcEv07LJOdzAklAevUgKUdpAih17byiMW/MC2LfWsUO4xrH5JE4QpZoQLfascOvp BGYsAe0a4ZPQ= X-Received: by 2002:ac8:67da:0:b0:3a5:309c:4f6d with SMTP id r26-20020ac867da000000b003a5309c4f6dmr66943443qtp.362.1670343001034; Tue, 06 Dec 2022 08:10:01 -0800 (PST) X-Google-Smtp-Source: AA0mqf6XAIE8Mo8jgpI6oLIMz5YwEmO2gkjf7VWW0rwXaPt4OJmwamiaCfeI7SrOE5BSY3NvbpFKbQ== X-Received: by 2002:ac8:67da:0:b0:3a5:309c:4f6d with SMTP id r26-20020ac867da000000b003a5309c4f6dmr66943404qtp.362.1670343000547; Tue, 06 Dec 2022 08:10:00 -0800 (PST) Received: from localhost ([2600:4040:520a:8800:7d1c:f0a7:5c44:ed0e]) by smtp.gmail.com with ESMTPSA id d9-20020ac81189000000b003a4c3c4d2d4sm11780684qtj.49.2022.12.06.08.09.59 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 06 Dec 2022 08:09:59 -0800 (PST) From: Robbie Harwood To: Zhang Boyang , grub-devel@gnu.org Cc: steve@einval.com, mchang@suse.com, Zhang Boyang Subject: Re: [RFC PATCH 4/4] kern/efi/sb: Use shim to verify font files In-Reply-To: <20221205130605.250715-5-zhangboyang.id@gmail.com> References: <20221205130605.250715-1-zhangboyang.id@gmail.com> <20221205130605.250715-5-zhangboyang.id@gmail.com> Date: Tue, 06 Dec 2022 11:09:57 -0500 Message-ID: MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" Received-SPF: pass client-ip=170.10.129.124; envelope-from=rharwood@redhat.com; helo=us-smtp-delivery-124.mimecast.com X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: The development of GNU GRUB List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Dec 2022 16:10:06 -0000 --=-=-= Content-Type: text/plain Zhang Boyang writes: > Since font files can be wrapped as PE images by grub-wrap, use shim to > verify font files if Secure Boot is enabled. To prevent other PE files > (e.g. kernel images) used as wrappers, it only allows files marked as > Windows GUI used as wrappers. Thanks for writing this; it's helpful to have something concrete to look at. This approach is very font-focused, and while I understand that given the discussion, I do still wonder if it wouldn't be better to make fonts an instance of modules. If fonts become instances of modules, and modules are wrapped into PE files, that not only seems cleaner but also gives us signed module support without baking those into the image. What do you think? Be well, --Robbie --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQJIBAEBCgAyFiEEA5qc6hnelQjDaHWqJTL5F2qVpEIFAmOPaVUUHHJoYXJ3b29k QHJlZGhhdC5jb20ACgkQJTL5F2qVpEIgtQ//W+++JcfrblbrsYEpjQQWKR+eOxES trZgf78MfcBZuLU9kCY7fHvvgUnPvL8l8Ssq+bnfWCJPFfVCNJfotIwJO2vaqVxO UsXwDLVa6hXC2Retpc+bB5onVB684xVxFdpZb2/7VhPR2lwmDN3NswrpleG0v69x W89QgU1/n4HEctWrLFiwb9+5S6pKM2/N5HF7mty9+15G6+mhhTItEAthOtWol6Ao 2MenqkspTfTbh/fk5h/SONdOiUcEKvV6VwKR7RDLhrq5gDRcl5+QQvfVa8wjdwGL AnFT7KyKDsfgP8/xW4PMsIDzIgjdPDEnGzdQoP/uSjRDqnb4ElFi48yV9ptHu+OE VaDrAmYCdLm05njJ7ZWKPivzX4ZiXfiqomXkLdCHlWzKVbd6mBytgvyMBjZa9ESH c3zbiBz63lkNF9wP2fQQotoue6A/OEH1nb3G8ZXhWDu5MGuFUMyZ7spYXxJGahNN h39PlVK7u53fJUJB+lQAa7iwSB/XCdl5m0V5++c8InmO2ZjeTW3AJJZ+3RqnhlFe EqVXvIhuuPhxe+lAYkQLQw0s2uBVuWZZHFfNqAaFiU4lmTPEto5H4pTcASBM1vHD 8Oa/MOJ+i6FrtHQXyH4938oRgcowxUWz7J9S8McTXENUcyzDNr+hPo1GVN3dZerQ V4tXf4MOS90Ul/w= =OzN3 -----END PGP SIGNATURE----- --=-=-=--