Hi,
> > Thus any attempt to validate the the grub.conf PCR eventlog, as it
> > exists in typical distro deployments today, is going to be both
> > complex and fragile, which is a bad combination.
>
> But this is only a problem if you're assuming grub2-mkconfig is
> nondeterministic, which just
Am 05.10.22 um 23:07 schrieb Chris Murphy:
On Wed, Oct 5, 2022, at 3:01 PM, Vít Ondruch wrote:
3. "Boot menu" in GUI? Given that one can reach the GUI, why it should
not be possible to choose the boot entry for next boot? Or even choose
to open FW setup.
This could solve this other problem
On Thu, Oct 06, 2022 at 01:22:01PM -0400, Robbie Harwood wrote:
> Daniel P. Berrangé writes:
>
> > We need PCRs to cover at minimum
> >
> > 1. Machine firmware
> > 2. Bootloader(s)
> > 3. Bootloader configuration
> > 4. Booted kernel
> > 5. Booted initrd
> > 6. Booted cmdline
>
> > I
Daniel P. Berrangé writes:
> We need PCRs to cover at minimum
>
> 1. Machine firmware
> 2. Bootloader(s)
> 3. Bootloader configuration
> 4. Booted kernel
> 5. Booted initrd
> 6. Booted cmdline
> Item 5 and 6 are a problem, because as mentioned thse are not signed
> by the OS vendor w
On Thu, Oct 06, 2022 at 10:45:40AM -0400, Robbie Harwood wrote:
> Daniel P. Berrangé writes:
>
> > The way grub has to write its entire grub.conf into the TPM PCRs is
> > totally impractical for anyone wishing to maintain attestation
> > policies to verify the OS boot state from the TPM eventlog.
Daniel P. Berrangé writes:
> The way grub has to write its entire grub.conf into the TPM PCRs is
> totally impractical for anyone wishing to maintain attestation
> policies to verify the OS boot state from the TPM eventlog.
So this has been mentioned in several places, but no one in grub
develop
On Thu, Oct 06, 2022 at 10:13:58AM +0200, Hans de Goede wrote:
> Hi,
>
> On 10/5/22 23:07, Chris Murphy wrote:
> >
> >
> > On Wed, Oct 5, 2022, at 3:01 PM, Vít Ondruch wrote:
> >>
> >> 3. "Boot menu" in GUI? Given that one can reach the GUI, why it should
> >> not be possible to choose the boot
On 06-10-2022 10:13, Hans de Goede wrote:
Hi,
On 10/5/22 23:07, Chris Murphy wrote:
On Wed, Oct 5, 2022, at 3:01 PM, Vít Ondruch wrote:
3. "Boot menu" in GUI? Given that one can reach the GUI, why it should
not be possible to choose the boot entry for next boot? Or even choose
to open FW se
Hi,
On 10/5/22 23:07, Chris Murphy wrote:
>
>
> On Wed, Oct 5, 2022, at 3:01 PM, Vít Ondruch wrote:
>>
>> 3. "Boot menu" in GUI? Given that one can reach the GUI, why it should
>> not be possible to choose the boot entry for next boot? Or even choose
>> to open FW setup.
>
> This could solve
Hi,
On 10/5/22 20:56, Christopher Klooz wrote:
>
> On 05/10/2022 20:28, Hans de Goede wrote:
>> Hi,
>>
>> On 10/5/22 19:59, Christopher Klooz wrote:
>>> On 05/10/2022 18:39, Christopher Klooz wrote:
On 05/10/2022 17:33, Chris Murphy wrote:
> On Wed, Oct 5, 2022, at 11:16 AM, Christopher
On Wed, Oct 5, 2022, at 3:01 PM, Vít Ondruch wrote:
>
> 3. "Boot menu" in GUI? Given that one can reach the GUI, why it should
> not be possible to choose the boot entry for next boot? Or even choose
> to open FW setup.
This could solve this other problem too.
https://bugzilla.redhat.com/show
Dne 05. 10. 22 v 20:28 Hans de Goede napsal(a):
Hi,
On 10/5/22 19:59, Christopher Klooz wrote:
On 05/10/2022 18:39, Christopher Klooz wrote:
On 05/10/2022 17:33, Chris Murphy wrote:
On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
However, on ask.fp, a user mentioned that the gru
On 05/10/2022 20:28, Hans de Goede wrote:
Hi,
On 10/5/22 19:59, Christopher Klooz wrote:
On 05/10/2022 18:39, Christopher Klooz wrote:
On 05/10/2022 17:33, Chris Murphy wrote:
On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
However, on ask.fp, a user mentioned that the grub menu
Hi,
On 10/5/22 19:59, Christopher Klooz wrote:
>
> On 05/10/2022 18:39, Christopher Klooz wrote:
>> On 05/10/2022 17:33, Chris Murphy wrote:
>>>
>>> On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
>>>
However, on ask.fp, a user mentioned that the grub menu is no longer
enable
Am 05.10.22 um 17:33 schrieb Chris Murphy:
Given this inconsistency, I have a mixed opinion of the hidden GRUB menu.
I have a very clear opinion - It's a fault and usability regression.
Ralf
___
devel mailing list -- devel@lists.fedoraproject.org
T
Hi,
On 10/5/22 17:16, Christopher Klooz wrote:
> The current issue on 5.19.12 made it necessary for some users to change their
> kernel on boot to avoid 5.19.12 until the update to 5.19.13 was pushed to
> stable. Obviously, the option to easily boot recent kernels can be necessary
> in several
On 05/10/2022 18:39, Christopher Klooz wrote:
On 05/10/2022 17:33, Chris Murphy wrote:
On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
However, on ask.fp, a user mentioned that the grub menu is no longer
enabled by default on single boot systems so that changing the
kernel is
no
On Wed, Oct 5, 2022 at 6:16 PM Chris Murphy wrote:
>
>
>
> On Wed, Oct 5, 2022, at 11:43 AM, Geraldo Simião Kutz wrote:
>
> On my acer Aspire laptop it's the "esc" key. Works everytime I want to see
> the grub menu.
>
>
> The gotcha with ESC is that it brings up firmware settings on qemu-kvm when
On Wed, Oct 5, 2022, at 11:43 AM, Geraldo Simião Kutz wrote:
> On my acer Aspire laptop it's the "esc" key. Works everytime I want to see
> the grub menu.
The gotcha with ESC is that it brings up firmware settings on qemu-kvm when
using UEFI (edk2-ovmf).
--
Chris Murphy
_
On 05/10/2022 17:33, Chris Murphy wrote:
On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
However, on ask.fp, a user mentioned that the grub menu is no longer
enabled by default on single boot systems so that changing the kernel is
no longer easily possible, and put forward
https://f
On my acer Aspire laptop it's the "esc" key. Works everytime I want to see
the grub menu.
geraldosimiao
Em qua, 5 de out de 2022 12:33, Chris Murphy
escreveu:
>
>
> On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
>
> > However, on ask.fp, a user mentioned that the grub menu is no lon
On Wed, Oct 5, 2022, at 11:16 AM, Christopher Klooz wrote:
> However, on ask.fp, a user mentioned that the grub menu is no longer
> enabled by default on single boot systems so that changing the kernel is
> no longer easily possible, and put forward
> https://fedoraproject.org/wiki/Changes/Hi
The current issue on 5.19.12 made it necessary for some users to change
their kernel on boot to avoid 5.19.12 until the update to 5.19.13 was
pushed to stable. Obviously, the option to easily boot recent kernels
can be necessary in several circumstances, especially for non-advanced
users it has
23 matches
Mail list logo
