Re: Linux DRTM on UEFI platforms

From: Matthew Garrett
Date: Tue Jul 05 2022 - 20:21:26 EST

Next message: kernel test robot: "[jolsa-perf:bpf/tramp_22 7/21] kernel/trace/ftrace_test.c:7:6: warning: no previous prototype for 'ftrace_test_0'"
Previous message: Andy Lutomirski: "Re: [PATCH] x86/Kconfig: Allow X86_X32_ABI with llvm-objcopy in some cases"
In reply to: Brendan Trotter: "Re: Linux DRTM on UEFI platforms"
Next in thread: Daniel P. Smith: "Re: Linux DRTM on UEFI platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jul 06, 2022 at 09:33:23AM +0930, Brendan Trotter wrote:

> The only correct approach is "efi-stub -> head_64.S -> kernel's own
> secure init"; where (on UEFI systems) neither GRUB nor Trenchboot has
> a valid reason to exist and should never be installed.

Surely the entire point of DRTM is that we *don't* have to trust the
bootloader?

Next message: kernel test robot: "[jolsa-perf:bpf/tramp_22 7/21] kernel/trace/ftrace_test.c:7:6: warning: no previous prototype for 'ftrace_test_0'"
Previous message: Andy Lutomirski: "Re: [PATCH] x86/Kconfig: Allow X86_X32_ABI with llvm-objcopy in some cases"
In reply to: Brendan Trotter: "Re: Linux DRTM on UEFI platforms"
Next in thread: Daniel P. Smith: "Re: Linux DRTM on UEFI platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]