[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [XEN PATCH v2] efi: Use Shim's LoadImage to verify the Dom0 kernel

To: Jan Beulich <jbeulich@xxxxxxxx>
From: Marek Marczykowski-Górecki <marmarek@xxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2025 17:06:54 +0200
Cc: Gerald Elder-Vass <gerald.elder-vass@xxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Julien Grall <julien@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Kevin Lampis <kevin.lampis@xxxxxxxxx>, "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
Delivery-date: Tue, 02 Sep 2025 15:07:11 +0000
Feedback-id: i1568416f:Fastmail
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Tue, Sep 02, 2025 at 05:00:52PM +0200, Jan Beulich wrote:
> On 02.09.2025 16:44, Gerald Elder-Vass wrote:
> > +        else
> > +        {
> > +            status = efi_bs->LocateProtocol(&shim_lock_guid, NULL, (void 
> > **)&shim_lock);
> > +            if ( EFI_ERROR(status) )
> > +                PrintErrMesg(L"Failed to locate SHIM_LOCK protocol", 
> > status);
> 
> This is a behavioral change not justified in the description. Imo, if
> the original code was wrong, that would want to be a separate change
> anyway, so right here you want to retain original behavior. Simply
> consider the case of a shim-free boot, where neither of the two
> protocols would be available.

Yes, as commented by Yann on v1, this change as is seems to break
shim-free boot (well, technically UKI is shim-free and remain working,
but you know what I mean). That needs to remain working, even if only in
SecureBoot-free case.

-- 
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab

Attachment: signature.asc
Description: PGP signature

References:
- [XEN PATCH v2] efi: Use Shim's LoadImage to verify the Dom0 kernel
  - From: Gerald Elder-Vass
- Re: [XEN PATCH v2] efi: Use Shim's LoadImage to verify the Dom0 kernel
  - From: Jan Beulich

Prev by Date: [ardb:x86-startup-confine-v7] [x86/boot] 7d40dc256f: BUG:kernel_reboot-without-warning_in_test_stage
Next by Date: Re: [PATCH 1/2] Tidy up .gitignore
Previous by thread: Re: [XEN PATCH v2] efi: Use Shim's LoadImage to verify the Dom0 kernel
Next by thread: [PATCH v5 00/16] dma-mapping: migrate to physical address-based API
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.