From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from list by lists.gnu.org with archive (Exim 4.71)
	id 1VHylA-0005Z9-Kb
	for mharc-grub-devel@gnu.org; Fri, 06 Sep 2013 12:19:48 -0400
Received: from eggs.gnu.org ([2001:4830:134:3::10]:51330)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <jonmccune@google.com>) id 1VHyl7-0005XP-4N
	for grub-devel@gnu.org; Fri, 06 Sep 2013 12:19:46 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <jonmccune@google.com>) id 1VHyl3-00030G-Dl
	for grub-devel@gnu.org; Fri, 06 Sep 2013 12:19:44 -0400
Received: from mail-ve0-x249.google.com ([2607:f8b0:400c:c01::249]:52205)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <jonmccune@google.com>) id 1VHyl3-0002zo-8g
	for grub-devel@gnu.org; Fri, 06 Sep 2013 12:19:41 -0400
Received: by mail-ve0-f201.google.com with SMTP id c14so247770vea.2
	for <grub-devel@gnu.org>; Fri, 06 Sep 2013 09:19:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113;
	h=from:to:cc:subject:date:message-id;
	bh=zVEvlYHzDVa4dc82SBHW308P4AfBgc9vSFXJBqCypGg=;
	b=WE4Zs8l3nDeAcwee0DtOsQ5fjzS2YgrRXtKmZ9+l9BKBk12nK/usm37R5OZFTEQjji
	CCfdc11+PfTX0rjHNF9KCJl/5kHGyQulPQpTMxPNPcUdjKaB/alZohiQefpLYHKoRSdW
	Sa8ZKUrqkzbmSyHO5hqzCmlJ8UHTH3cvqeCe8oFwzN07iSEjmLUx8zYc2xG/RjPK/wnN
	wg7RrCWeCJ+aSLJirrBcUaowXBfm1WaWsANfYXQAKOK40VdBjrcN10V4iJ2+LxWIDCOQ
	/p0c3VwM/9mFMMMfx27x9V7Cx8bchphYDKQKlVOlgeUQsMkg+hNLYek+51mGJG+ZQSi2
	v23g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=1e100.net; s=20130820;
	h=x-gm-message-state:from:to:cc:subject:date:message-id;
	bh=zVEvlYHzDVa4dc82SBHW308P4AfBgc9vSFXJBqCypGg=;
	b=hP8H6J/MiKVinMGI3zLwkuBk+0llahkp2PIYceNGc/Wll2KdzkhPbytQyjLN6m0Uid
	LGuyKyqOAwPfMNUfo5Gl4A0gkRc7C/ckHTg4m2NmGvrdN0hTv10W+3qs5ILN7ZUyHqwT
	bzfMp1i1fqSApsSGuHYfJUUXwezP7ltQqpLGJ0JLlM948ZWtFIp9lyseKJu+wKy+YAMD
	H4eCqQMpYUd0k7LNNjGc3Lk/soyHVhgvhM7b6hQldcHEKG1wna8ILhhasko9IiFh3XsR
	0pzjJ72xv1MAr7N79UrWXVxutEsABGfiRV37IFGUfM6Wo6Pfw3qoBS/MYf4xVy62W1aE
	WutA==
X-Gm-Message-State: ALoCoQm7Qn5GmyKiWnkfTjdPPYSYmv+V1iCRrmZGIRSoimwJoEgmXSlAUauVWRIX/dXqOSnGqdU5qcrGIda1Uice4yFY5Ad0DPBdlGH4Dysr5nvY3Q+g1mwyPlQ49ByLcvHHQ89D3i3cBAutDVYgRcT062Zbsz1OQJ5fHY/EdREKfaHo2TuUyhhNYKLV+6Ere8HzMA4++EhLHH13OKVfQjcDeUXwtLvXsi4C3GgEAR4JAN2Lg1y9/JA=
X-Received: by 10.236.109.134 with SMTP id s6mr1096965yhg.32.1378484380262;
	Fri, 06 Sep 2013 09:19:40 -0700 (PDT)
Received: from corp2gmr1-1.hot.corp.google.com
	(corp2gmr1-1.hot.corp.google.com [172.24.189.92])
	by gmr-mx.google.com with ESMTPS id
	a42si162463yhj.6.1969.12.31.16.00.00
	(version=TLSv1.1 cipher=AES128-SHA bits=128/128);
	Fri, 06 Sep 2013 09:19:40 -0700 (PDT)
Received: from yinz.mtv.corp.google.com (yinz.mtv.corp.google.com
	[172.17.81.122])
	by corp2gmr1-1.hot.corp.google.com (Postfix) with ESMTP id 218EF31C1DC; 
	Fri,  6 Sep 2013 09:19:40 -0700 (PDT)
Received: by yinz.mtv.corp.google.com (Postfix, from userid 184367)
	id BC14DC076E; Fri,  6 Sep 2013 09:19:39 -0700 (PDT)
From: Jon McCune <jonmccune@google.com>
To: grub-devel@gnu.org
Subject: [PATCH v2 0/5] Enable savedefault, etc with check_signatures=enforce
Date: Fri,  6 Sep 2013 09:18:48 -0700
Message-Id: <1378484333-13577-1-git-send-email-jonmccune@google.com>
X-Mailer: git-send-email 1.8.4
X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address
	(bad octet value).
X-Received-From: 2607:f8b0:400c:c01::249
Cc: Jon McCune <jonmccune@google.com>
X-BeenThere: grub-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: The development of GNU GRUB <grub-devel@gnu.org>
List-Id: The development of GNU GRUB <grub-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/grub-devel>
List-Post: <mailto:grub-devel@gnu.org>
List-Help: <mailto:grub-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Sep 2013 16:19:46 -0000

These patches add support to load_env and save_env to work nicely
in concert with check_signatures=enforce.  This represents an
evolution from the design in my email to grub-devel entitled
"Proposal to enable savedefault, one-shot reboot, etc with
check_signatures=enforce".  Some additional work is done to make
this support usable: A {-k, --pubkey} option is added to
grub-install, and significant documentation is included.  See the
individual patch descriptions for more specifics.

Jon McCune (5):
  style: indent --no-tabs --gnu-style grub-core/commands/loadenv.c
  load_env support for whitelisting which variables are read
  save_env should work, even if check_signatures=enforce
  Add -k, --pubkey=FILE support to grub-install command
  Additional security-relevant documentation

 docs/grub.texi               | 180 ++++++++++++++++++++++++++++++++++++++++++-
 grub-core/commands/loadenv.c | 171 ++++++++++++++++++++++++++++------------
 util/grub-install.in         |  13 +++-
 util/grub-install_header     |   6 ++
 4 files changed, 316 insertions(+), 54 deletions(-)

-- 
1.8.4