On Sun, Aug 31, 2025 at 09:40:49PM -0500, Andrew Hamilton wrote:
> Add test ISO files to dist package to allow ISO test to
> pass.
>
> Signed-off-by: Andrew Hamilton
Reviewed-by: Daniel Kiper
Daniel
___
Grub-devel mailing list
Grub-devel@gnu.org
http
On Sat, Aug 30, 2025 at 10:32:39PM -0500, Andrew Hamilton wrote:
> Attempts to build GRUB with Clang were failing due to errors
> such as:
> error: redefinition of typedef 'gcry_md_hd_t' is a C11 feature
>
> Correct this by adding a compiler pramga to disable the
> Clang "typedef-redefinition" warn
On Wed, Aug 27, 2025 at 05:32:12PM -0500, Andrew Hamilton wrote:
> Support dates outside of 1901..2038.
> Add tests for dates outside this range.
> Vast majority of the work was done by Vladimir Serbinenko
>
> Fixes: https://savannah.gnu.org/bugs/?63894
> Fixes: https://savannah.gnu.org/bugs/?66301
On Tue, Aug 26, 2025 at 09:11:10PM -0500, Andrew Hamilton wrote:
> Add tests outside the date range possible with 32-bit time
> calculation. Also add a few more nominal date/time test values
> to the 32-bit "tests" array. Add min / max tests for years 0001
> and .
>
> Signed-off-by: Vladimir Se
On Tue, Aug 26, 2025 at 09:11:09PM -0500, Andrew Hamilton wrote:
> Support dates outside of 1901..2038.
>
> Fixes: https://savannah.gnu.org/bugs/?63894
> Fixes: https://savannah.gnu.org/bugs/?66301
>
> Signed-off-by: Vladimir Serbinenko
> Signed-off-by: Andrew Hamilton
> ---
> grub-core/lib/date
On Tue, Aug 26, 2025 at 10:28:08AM -0500, Andrew Hamilton wrote:
> I will make the requested changes tonight in a v5.
>
> Just so I understand, is there some coding standard for preferring ternary
> operators and comparing bools to true?
No, I have not seen one but I think if we have defined const
On Mon, Aug 25, 2025 at 10:17:38PM -0500, Andrew Hamilton wrote:
> Add tests outside the date range possible with 32-bit time
> calculation.
>
> Signed-off-by: Vladimir Serbinenko
> Signed-off-by: Andrew Hamilton
> ---
> tests/date_unit_test.c | 44 +-
> 1
On Mon, Aug 25, 2025 at 10:17:37PM -0500, Andrew Hamilton wrote:
> Support dates outside of 1901..2038.
>
> Fixes: https://savannah.gnu.org/bugs/?63894
> Fixes: https://savannah.gnu.org/bugs/?66301
>
> Signed-off-by: Vladimir Serbinenko
> Signed-off-by: Andrew Hamilton
> ---
> grub-core/lib/date
On Fri, Apr 18, 2025 at 09:54:00AM -0500, Andrew Hamilton wrote:
> Signed-off-by: Vladimir Serbinenko
> Signed-off-by: Andrew Hamilton
> static void
[...]
> date_test_iter (void)
> {
> - grub_int32_t tests[] = { -1, 0, +1, -2133156255, GRUB_INT32_MIN,
> + grub_int32_t tests[] = { -1, 0, +1
On Fri, Apr 18, 2025 at 09:54:00AM -0500, Andrew Hamilton wrote:
> Signed-off-by: Vladimir Serbinenko
> Signed-off-by: Andrew Hamilton
> ---
> tests/date_unit_test.c | 35 ++-
> 1 file changed, 26 insertions(+), 9 deletions(-)
>
> diff --git a/tests/date_unit_test
On Fri, Apr 18, 2025 at 09:53:59AM -0500, Andrew Hamilton wrote:
> Support dates outside of 1901..2038.
>
> Fixes: https://savannah.gnu.org/bugs/?63894
> Fixes: https://savannah.gnu.org/bugs/?66301
>
> Signed-off-by: Vladimir Serbinenko
> Signed-off-by: Andrew Hamilton
> ---
> grub-core/lib/date
On Sun, Aug 24, 2025 at 08:38:41PM -0500, Andrew Hamilton wrote:
> Update the bootstrap script to be compatible with newer versions
> of GIT that changed the git clone -h output from containing:
> "--depth"
> to:
> "--[no-]depth"
> This bootstrap script is pulled the latest GNULIB version
> from GN
On Sun, Aug 24, 2025 at 09:50:10PM -0500, Andrew Hamilton wrote:
> 1. Several minor documentation improvements.
> 2. Document new libgcrypt modules.
> 3. Correct / update several URLs in the documentation.
>
> Andrew Hamilton (4):
> docs: Clarify Section Heading and Fix Wording
> docs: Document
On Sat, Aug 23, 2025 at 06:09:16PM -0500, Andrew Hamilton wrote:
> Update the INSTALL file to note that Libtasn1 (and provide name of
> the needed package on Debian) to build grub-protect. Also cleanup
> the BUGS file to just point to the bug tracking system.
>
> Andrew Hamilton (2):
> INSTALL: D
On Fri, Aug 22, 2025 at 10:43:17PM -0500, Andrew Hamilton wrote:
> Gettext 0.26 validates format strings. In some cases before
> the GRUB build process was converting newlines sequences (\n)
> to (\) which is invalid. Update the impacted
> language SED script files to ensure newlines use the correc
Hi,
It is time to start planning 2.14 release. Sadly once again we are behind the
schedule mostly due to lack of resources. I do not like it but it is what it
is. I am working on improving situation but it goes slow. Though there is
a chance for some improvements after 2.14 release...
Anyway, at
On Tue, Aug 12, 2025 at 03:45:31AM +, Alec Brown wrote:
> v6:
> - Documented blsuki_save_default environmental variable.
> - Commented on artificial limits.
> - Added additional ifdefs for the EFI platforms.
> - Fixed various nits.
>
> This patch set is introducing BootLoaderSpec support to ups
On Tue, Aug 12, 2025 at 03:45:32AM +, Alec Brown wrote:
> Add the functions grub_strtok() and grub_strtok_r() to help parse strings into
> tokens separated by characters in the 'delim' parameter. These functions are
> present in gnulib but calling them directly from the gnulib code is quite
> c
On Sun, Jul 27, 2025 at 01:54:36AM +, Alec Brown wrote:
> A Unified Kernel Image is a single UEFI PE file that combines a UEFI boot
> stub,
> a Linux kernel image, an initrd, and further resources. The uki command will
> locate where the UKI file is and create a GRUB menu entry to load it.
>
>
On Sun, Jul 27, 2025 at 01:54:35AM +, Alec Brown wrote:
> From: Robbie Harwood
>
> Irritatingly, BLS defines paths relative to the mountpoint of the
> filesystem which contains its snippets, not / or any other fixed
> location. So grub2-emu needs to know whether /boot is a separate
> filesyste
On Sun, Jul 27, 2025 at 01:54:34AM +, Alec Brown wrote:
> Adding filevercmp support to grub-core/commands/blsuki.c from gnulib will
> cause
> issues with the type of the offset parameter for grub_util_write_image_at()
> for
> EMU builds. To fix this issue, we can change the type from off_t to
On Sun, Jul 27, 2025 at 01:54:33AM +, Alec Brown wrote:
> From: Peter Jones
>
> The BootLoaderSpec (BLS) defines a scheme where different bootloaders can
> share a format for boot items and a configuration directory that accepts
> these common configurations as drop-in files.
>
> The BLS Speci
On Fri, Aug 01, 2025 at 04:51:54PM +0300, Vladimir 'phcoder' Serbinenko wrote:
> Please don't put it into kernel unless it's used by the kernel. lib/ would be
> a
> better fit
Whole family of grub_str*() functions live in grub-core/kern/misc.c. So,
I am not sure why we should make an exception he
On Mon, Jul 28, 2025 at 02:21:50PM +0100, Frediano Ziglio wrote:
> On Sun, Jul 27, 2025 at 2:57 AM Alec Brown via Grub-devel
> wrote:
> >
> > Add the functions grub_strtok() and grub_strtok_r() to help parse strings
> > into
> > tokens separated by characters in the 'delim' parameter. These func
On Sun, Jul 27, 2025 at 01:54:32AM +, Alec Brown wrote:
> Add the functions grub_strtok() and grub_strtok_r() to help parse strings into
> tokens separated by characters in the 'delim' parameter. These functions are
> present in gnulib but calling them directly from the gnulib code is quite
> c
On Thu, Jul 03, 2025 at 12:41:26PM +0530, Sudhakar Kuppusamy wrote:
> Reviewed-by: Sudhakar Kuppusamy
Reviewed-by: Daniel Kiper
Daniel
___
Grub-devel mailing list
Grub-devel@gnu.org
https://lists.gnu.org/mailman/listinfo/grub-devel
On Tue, Jun 24, 2025 at 12:27:17AM +0530, sudhakar wrote:
> On 2025-06-23 23:16, Lidong Chen via Grub-devel wrote:
> > In grub_cmd_initrd(), memory is allocated for variable initrd_ctx
> > before calling grub_relocator_alloc_chunk_align_safe(). When the
> > function call fails, initrd_ctx should be
On Mon, Jun 23, 2025 at 05:42:32PM +, Lidong Chen wrote:
> Commit 40e261b89b71 ensures that the variable len is at least 2.
> As a result, GetLenToPosState(len) never returns a value greater
> than or equal to kNumLenToPosStates, making the changes introduced
> in the commit 16c0dbf4bc6a unreac
On Wed, Jun 18, 2025 at 07:12:15PM +, Lidong Chen wrote:
> This patch resolved a minor issue spotted by Coverity:
> a983d36bd917 gnulib/regexec: Resolve unused variable
>
> But, it was removed by the gnulib update:
> 2b7902459803 Update gnulib version and drop most gnulib patches
>
> It cau
On Sat, Jun 21, 2025 at 10:50:38AM -0500, Andrew Hamilton wrote:
> Correct a test failure in netboot_test and file_filter_test
> caused by an issue cleaning up the tmp directory created
> for netboot. Netboot creates a subdirectory in the tmp
> folder that causes the rmdir to fail - so cleanup the
On Wed, Jun 18, 2025 at 07:24:23PM +, Lidong Chen wrote:
> In bidi_line_wrap(), "kk - 1" in the for loop init, "i = kk - 1",
> underflows when 'kk' (unsigned int) is 0. Assigning the result of
> 'kk - 1' to signed int 'i' may cause overflow. To address both
> issues, cast 'kk' to a signed type
On Tue, Jun 17, 2025 at 08:58:24PM -0500, Andrew Hamilton wrote:
> 1. Correct GRUB build with GCC >= 15 due to new GNULIB compile
> warning detected by GCC.
>
> Pull in gnulib fix to allow base64.c to compile using GCC 15 or newer.
>
> Pulled from: GNULIB commit 25df6dc4253480a343dde3376ce6fd99c316
On Tue, Jun 10, 2025 at 03:19:43PM +, Alec Brown wrote:
> Coverity found a couple resource leaks in gnulib code that the GRUB is using.
> These fixes have been made in the latest version of gnulib and I've backported
> these changes to maintain consistency.
>
> This patch set fixes the followin
On Fri, Jun 13, 2025 at 03:02:32PM +0800, Gary Lin wrote:
> There are two bugs when using the TPM PCR banks other than the default
> SHA256 PCR bank:
>
> 1) Key unsealing failure
> 2) Dumping the wrong PCR bank
>
> This patch set fixes the above two bugs and adds the tests for SHA384
> PCR bank.
>
On Tue, Jun 10, 2025 at 10:15:44PM -0500, Andrew Hamilton wrote:
> Fix several issues with attempting to create and build from the
> GRUB 'dist' archive.
>
> 1. extra_deps.lst is now automatically generated so remove this
> from the archive to avoid a dependency on running make first.
>
> 2. Add ad
On Thu, Jun 12, 2025 at 12:03:58AM +, Lidong Chen wrote:
> In LzmaEnc_CodeOneBlock(), both GetOptimumFast() and GetOptimum()
> returns a value of greater or equal to 1, which is assigned to
> 'len'. But since LZMA_MATCH_LEN_MIN == 2, 'len' should be validated
> before performing "len - LZMA_MAT
On Wed, May 21, 2025 at 12:51:26PM +, Alec Brown wrote:
> A Unified Kernel Image is a single UEFI PE file that combines a UEFI boot
> stub,
> a Linux kernel image, an initrd, and further resources. The uki command will
> locate where the UKI file is and create a GRUB menu entry to load it.
>
>
On Wed, May 21, 2025 at 12:51:25PM +, Alec Brown wrote:
> From: Robbie Harwood
>
> Irritatingly, BLS defines paths relative to the mountpoint of the
> filesystem which contains its snippets, not / or any other fixed
> location. So grub2-emu needs to know whether /boot is a separate
> filesyste
On Wed, May 21, 2025 at 12:51:24PM +, Alec Brown wrote:
> From: Peter Jones
>
> The BootLoaderSpec (BLS) defines a scheme where different bootloaders can
> share a format for boot items and a configuration directory that accepts
> these common configurations as drop-in files.
>
> The BLS Speci
On Wed, May 21, 2025 at 12:51:23PM +, Alec Brown wrote:
> Add functionality to compare alpha and numeric version segments for kernels.
I think this code applies not only for kernels.
> This can be useful in sorting newer from older kernels.
Where this code come from? Or maybe it is written f
On Thu, Jun 05, 2025 at 05:03:19AM +, Lidong Chen wrote:
> The potential overflow issue arises at "size += ret;" because 'size'
> is of type ssize_t (signed) while 'len' is size_t (unsigned). Repeatedly
> adding read sizes ('ret') to 'size' can potentially exceed the maximum
> value of ssize_t,
On Tue, May 20, 2025 at 05:40:17PM +, khaalid cali wrote:
> "handles" that "grub_efi_locate_handles" was allocated with "grub_malloc"
> wasn't being freed.
The "handles" allocated by grub_efi_locate_handle() call are not
always freed. Add missing grub_free() calls.
> Signed-off-by: Khalid Al
On Wed, May 21, 2025 at 10:20:36PM -0500, Andrew Hamilton wrote:
> Correct some NTFS test failures introduced by previous fixes for CVEs.
> With these changes, the NTFS tests run successfully.
>
> Also correct some fuzzer identified crashes and hangs (in NTFS and one
> that may in theory impact HFS
I think you should change the order of this patch and patch #3.
On Mon, May 19, 2025 at 09:03:18PM -0500, Andrew Hamilton wrote:
> Correct several memory access violations and hangs found during fuzzing.
> The issues fixed here could occur if certain specific malformed NTFS
> file systems were pre
On Mon, May 19, 2025 at 09:03:17PM -0500, Andrew Hamilton wrote:
> Avoid attempting to defererence a NULL pointer to call read_symlink when
> the given filesystem does not provide a read_symlink function. This could
> be triggered if the calling filesystem had a file marked as a symlink.
> This app
On Mon, May 19, 2025 at 09:03:16PM -0500, Andrew Hamilton wrote:
> Correct ntfs_test test failures around attempting to validate attribute
> list entries as attributes. The NTFS code uses common logic in some
> places to parse both attributes and attribute_lists which complicates
> validation. Attr
On Mon, May 19, 2025 at 09:03:15PM -0500, Andrew Hamilton wrote:
> Correct ntfs_test test failures around attempting to validate attribute
> run list values. The calculation was incorrect for the 'curr' variable.
> With previous calculation, some file systems would fail validation
> despite being w
On Mon, May 19, 2025 at 11:49:55PM +0530, Shreenidhi Shedi wrote:
> From: Shreenidhi Shedi
>
> Previously, the command line construction function
> (grub_create_loader_cmdline) escaped single and double quotes, which is
> unnecessary and potentially problematic since the kernel command line
> hand
On Mon, May 19, 2025 at 11:49:54PM +0530, Shreenidhi Shedi wrote:
> From: Shreenidhi Shedi
>
> Environment files may contain empty lines, which should be
> ignored during parsing. Currently, these lines are not skipped and
> resulting in incorrect behavior. This patch adds a check to skip empty
>
On Thu, May 15, 2025 at 12:44:27PM +0530, Shreenidhi Shedi wrote:
> From: Shreenidhi Shedi
>
> Signed-off-by: Shreenidhi Shedi
Both patches are missing explanations why they are needed and/or what
kind of issues they are fixing. I do not mention cover letter...
Daniel
_
On Fri, May 09, 2025 at 09:47:05AM +0200, Christian Hesse wrote:
> Daniel Kiper on Thu, 2025/05/08 19:02:
> > [...] Now all the GRUB2 upstream patches are in
> > the GRUB2 git repository [2] too.
> >
> > [...]
> >
> > [2] https://git.savannah.gnu.org/gitweb/?p=grub.git
> > https://git.savannah
From: Maxim Suhanov
This commit adds the grub_cryptodisk_erasesecrets() function to wipe
master keys from all cryptodisks. This function is EFI-only.
Since there is no easy way to "force unmount" a given encrypted disk,
this function renders all mounted cryptodisks unusable. An attempt to
read t
From: Maxim Suhanov
This command examines a given diskfilter device, e.g., an LVM disk,
and checks if underlying disks, physical volumes, are cryptodisks,
e.g., LUKS disks, this layout is called "LVM-on-LUKS".
The return value is 0 when all underlying disks (of a given device)
are cryptodisks (1
From: Michael Chang
The option can be used to suppress output if we only want to test the
return value of the command.
Also, mention this option in the documentation.
Signed-off-by: Michael Chang
Signed-off-by: Maxim Suhanov
Reviewed-by: Daniel Kiper
---
docs/grub.texi | 4 +++
From: Maxim Suhanov
When the --cryptodisk-only argument is given, also check the target
device using the "cryptocheck" command, if available.
This extends the checks to common layouts like LVM-on-LUKS, so the
--cryptodisk-only argument transparently handles such setups.
Signed-off-by: Maxim Suh
From: Maxim Suhanov
Switching to another EFI boot application while there are secrets in
RAM is dangerous, because not all firmware is wiping memory on free.
To reduce the attack surface, wipe the passphrase acquired when
unlocking an encrypted volume.
Signed-off-by: Maxim Suhanov
Reviewed-by:
From: Maxim Suhanov
Document the --cryptodisk-only argument. Also, document the
"cryptocheck" command invoked when that argument is processed.
Signed-off-by: Maxim Suhanov
Reviewed-by: Daniel Kiper
---
docs/grub.texi | 24 +++-
1 file changed, 23 insertions(+), 1 deletion(
Hi all,
This patch set contains a bundle of fixes for various security flaws
discovered, as part of a pro-active hardening effort, in the GRUB2 code
recently. The most severe one, i.e. potentially exploitable, has CVE
assigned and is listed at the end of this email.
Details of exactly what needs
From: Maxim Suhanov
This allows users to restrict the "search" command's scope to
encrypted disks only.
Typically, this command is used to "rebase" $root and $prefix
before loading additional configuration files via "source" or
"configfile". Unfortunately, this leads to security problems,
like C
From: Maxim Suhanov
This further mitigates potential misuse of the CLI after the
root device has been successfully unlocked via TPM.
Fixes: CVE-2025-4382
Signed-off-by: Maxim Suhanov
Reviewed-by: Daniel Kiper
---
grub-core/kern/rescue_reader.c | 2 +-
1 file changed, 1 insertion(+), 1 deleti
From: Maxim Suhanov
This further mitigates potential misuse of the CLI after the
root device has been successfully unlocked via TPM.
Fixes: CVE-2025-4382
Signed-off-by: Maxim Suhanov
Reviewed-by: Daniel Kiper
---
grub-core/kern/rescue_reader.c | 2 +-
1 file changed, 1 insertion(+), 1 deleti
On Sat, Apr 12, 2025 at 03:53:11AM +, Alec Brown wrote:
> A Unified Kernel Image is a single UEFI PE file that combines a UEFI boot
> stub,
> a Linux kernel image, an initrd, and further resources. The uki command will
> locate where the uki file is and create a GRUB menu entry to load it.
Li
On Sat, Apr 12, 2025 at 03:53:10AM +, Alec Brown wrote:
> Irritatingly, BLS defines paths relatives to the mountpoint of the
> filesystem which contains its snippets, not / or any other fixed
> location. So grub2-emu needs to know whether /boot is a separate
> filesystem from / and conditionall
On Fri, Apr 18, 2025 at 07:54:01PM +0300, Vladimir 'phcoder' Serbinenko wrote:
> > +module = {
> > + name = blsuki;
> > + common = commands/blsuki.c;
> > + common = lib/vercmp.c;
>
> Probably this should be a part of the kernel.
>
> > + enable = powerpc_ieee1275;
>
Missing From:...
On Sat, Apr 12, 2025 at 03:53:09AM +, Alec Brown wrote:
> The BootLoaderSpec (BLS) defines a scheme where different bootloaders can
> share a format for boot items and a configuration directory that accepts
> these common configurations as drop-in files.
Please add links to t
On Thu, Apr 17, 2025 at 07:37:13AM -0400, Neal Gompa wrote:
> On Fri, Apr 11, 2025 at 11:55 PM Alec Brown via Grub-devel
> wrote:
> >
> > v3:
> > - Added --enable-fallback option to check the default directory if the
> > --path
> >option isn't able to find entries.
> > - Added the function
On Mon, Apr 07, 2025 at 04:29:25PM +0800, Gary Lin wrote:
> This commit updates the NV index mode section and the grub-protect
> section to reflect the recent changes in TPM2 key protector and
> grub-protect.
>
> Signed-off-by: Gary Lin
Reviewed-by: Daniel Kiper
Daniel
On Mon, Apr 07, 2025 at 04:29:24PM +0800, Gary Lin wrote:
> Two more NV index test cases are added to test key sealing and
> unsealing with the NV index handle 0x100.
>
> Signed-off-by: Gary Lin
> Reviewed-by: Stefan Berger
Reviewed-by: Daniel Kiper
Daniel
On Mon, Apr 07, 2025 at 04:29:27PM +0800, Gary Lin wrote:
> Add the long options of tpm2_key_protect_init along with the short
> options.
>
> Signed-off-by: Gary Lin
Reviewed-by: Daniel Kiper
Daniel
___
Grub-devel mailing list
Grub-devel@gnu.org
http
On Mon, Apr 07, 2025 at 09:26:00AM -0400, Stefan Berger wrote:
> On 4/7/25 4:29 AM, Gary Lin wrote:
> > Reset 'ret' to 0 when a test case fails so that the other test cases
> > could continue.
> >
> > Also set the exit status to 1 when encountering a failure to reflect the
> > test result.
> >
> >
On Mon, Apr 07, 2025 at 04:29:19PM +0800, Gary Lin wrote:
> Extract the logic to handle the file buffer from the SRK recover
> function to prepare to load the sealed key from the NV index handle,
> so the NV index mode can share the same code path in the later patch.
> The SRK recover function now
On Thu, Mar 27, 2025 at 05:56:30PM +, Lidong Chen wrote:
> These patches address memory leaks identified by Coverity.
>
> Lidong Chen (5):
> disk/ldm: Fix memory leaks
> lib/reloacator: Fix memory leaks
> loader/i386/linux: Fix resource leak
> fs/btrfs: Fix memory leaks
> loader/xnu:
On Thu, Mar 27, 2025 at 09:19:03PM +0300, Vladimir 'phcoder' Serbinenko wrote:
>
> + {
> + grub_errno = err;
> + goto fail;
> + }
> grub_errno is already set. No need to set it again
I proposed that assignment to make it explicit but I am not going to ins
On Fri, Mar 21, 2025 at 03:59:08PM +0800, Gary Lin wrote:
> The TPM2 key protector tests require two external packages: swtpm-tools
> and tpm2-tools. Add those two packages to the INSTALL file to inform
> the user to install those packages before starting the TPM2 key protector
> tests.
>
> Signed-
On Fri, Mar 21, 2025 at 03:59:04PM +0800, Gary Lin wrote:
> Since 'grub-protect' already supports NV index mode, tpm2_seal_nv() is
> replaced with one 'grub-protect' command to simplify the test script.
>
> 'tpm2_evictcontrol' is also replaced with 'grub-protect --tpm2-evict'.
>
> Signed-off-by: Ga
On Fri, Mar 21, 2025 at 03:59:03PM +0800, Gary Lin wrote:
> This commit implements the missing NV index mode support in
> 'grub-protect'. NV index mode stores the sealed key in the TPM
> non-volatile memory (NVRAM) instead of a file. There are two supported
> types of TPM handles.
>
> 1. Persistent
On Fri, Mar 21, 2025 at 03:59:01PM +0800, Gary Lin wrote:
> Extract the logic to handle the file buffer from the SRK recover
> function to prepare to load the sealed key from the NV index handle,
> so the NV index mode can share the same code path in the later patch.
> The SRK recover function now
On Mon, Jan 13, 2025 at 11:07:08AM +0800, Gary Lin wrote:
> The following TPM 2.0 commands are introduced to tss2 to access the
> TPM non-volatile memory associated with the NV index handles.
>
> - TPM2_NV_DefineSpace
> - TPM2_NV_UndefineSpace
> - TPM2_NV_ReadPublic
> - TPM2_NV_Read
> - TPM2_NV_Wri
On Thu, Mar 13, 2025 at 07:45:50PM +0530, Avnish Chouhan wrote:
> Change RMA size from 512 MB to 768 MB which will result
> in more memory at boot time for PowerPC. When vTPM, Secure Boot or
> FADump are enabled on PowerPC, the 512 MB RMA memory is not sufficient for
> booting. With this 512 MB RMA
On Wed, Mar 12, 2025 at 10:06:15PM +0530, Avnish Chouhan wrote:
> Change RMA size from 512 MB to 768 MB which will result
> in more memory at boot time for PowerPC. When vTPM, Secure Boot or
> FADump are enabled on PowerPC, the 512 MB RMA memory is not sufficient for
> booting. With this 512 MB RMA
On Fri, Feb 28, 2025 at 03:55:22PM -0600, Andrew Hamilton wrote:
> Make some updates to the GRUB documentation around which file systems
> are allowed / disallowed in lockdown, as well as additional Commands
> now blocked in lockdown mode.
>
> Andrew Hamilton (2):
> docs: Document Restricted File
On Mon, Mar 03, 2025 at 08:55:45AM +0100, Christian Hesse wrote:
> Daniel Kiper on Fri, 2025/02/28 13:57:
> > On Thu, Feb 27, 2025 at 11:03:44AM +0100, Christian Hesse wrote:
> > > Daniel Kiper via Grub-devel on Mon, 2025/02/24
> > > 15:34:
> > > > > [..
Adding Daniel Axtens, Lidong and Nils...
On Thu, Feb 27, 2025 at 01:22:15PM -0500, Andrew Hamilton wrote:
> Hello,
>
> I’m looking for feedback on whether there would be project interest / support
> on me creating an initial fuzz test suite for some core GRUB functions and
> then
> integrating th
&& *at->attr_cur != 0xFF)
>
> but I don't understand half of what that code actually does,
> so I can't vouch for correctness (not sending it as a patch).
>
> Also filed here https://savannah.gnu.org/bugs/index.php?66855
>
> and here
> https://gitlab.archlinux
On Thu, Feb 27, 2025 at 11:03:44AM +0100, Christian Hesse wrote:
> Daniel Kiper via Grub-devel on Mon, 2025/02/24 15:34:
> > > [...]
> > > The current situation is just insane.
> >
> > I can understand your frustration but I am afraid we are not able to do
>
On Fri, Feb 21, 2025 at 11:06:54AM +0100, Christian Hesse wrote:
> Daniel Kiper via Grub-devel on Tue, 2025/02/18 19:00:
> > I am posting all the GRUB2 upstream patches which fix all security bugs
> > found and reported up until now. Major Linux distros carry or will carry
>
On Wed, Feb 19, 2025 at 09:43:59AM -0600, Andrew Hamilton wrote:
> It seems this may impact some users attempting to use secure boot, I think I
> understand the reasoning behind this but maybe we should have something on the
> roadmap or issue tracker for what it would take to get these file system
On Thu, Jan 16, 2025 at 06:45:29AM -0800, ross.philip...@oracle.com wrote:
> On 1/16/25 4:25 AM, Heinrich Schuchardt wrote:
> > %s/hueristic/heuristic/
> >
> > Signed-off-by: Heinrich Schuchardt
> > ---
> > grub-core/gdb_helper.py.in | 2 +-
> > 1 file changed, 1 insertion(+), 1 deletion(-)
> >
Hi Didier,
On Tue, Feb 18, 2025 at 07:33:03PM +, Didier Spaier wrote:
> Hi Daniel and all,
>
> sorry for top posting but this is a question and a request, not a comment.
>
> maintaining a distribution alone I can't afford to carry as many patches as
> Debian, so: could please mention the commi
From: Alec Brown
The Coverity complains that we might overflow into a negative value when
setting linux_params.kernel_alignment to (1 << align). We can remedy
this by casting it to grub_uint32_t.
Fixes: CID 473876
Signed-off-by: Alec Brown
Reviewed-by: Daniel Kiper
---
grub-core/loader/i386/
From: Lidong Chen
Use grub_calloc() when allocating memory for arrays to ensure proper
overflow checks are in place.
Signed-off-by: Lidong Chen
Reviewed-by: Daniel Kiper
---
grub-core/net/dns.c | 4 ++--
grub-core/net/net.c | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --gi
From: Lidong Chen
The entry_len is initialized in grub_find_root_devices_from_mountinfo()
to 0 before the while loop iterates through /proc/self/mountinfo. If the
file is empty or contains only invalid entries entry_len remains
0 causing entry_len - 1 in the subsequent for loop initialization
to
From: B Horn
With the rest of module being blocked in lockdown mode it does not make
a lot of sense to leave memory reading enabled. This also goes in par
with disabling the dump command.
Reported-by: B Horn
Signed-off-by: B Horn
Reviewed-by: Daniel Kiper
---
grub-core/commands/memrw.c | 21
From: B Horn
The grub_disk_read() may trigger other disk reads, e.g. via loopbacks.
This may lead to very deep recursion which can corrupt the heap. So, fix
the issue by limiting reads depth.
Reported-by: B Horn
Signed-off-by: B Horn
Reviewed-by: Daniel Kiper
---
grub-core/kern/disk.c | 27 +
From: Lidong Chen
When using grub_malloc() or grub_zalloc(), these functions can fail if
we are out of memory. After allocating memory we should check if these
functions returned NULL and handle this error if they did.
Signed-off-by: Lidong Chen
Reviewed-by: Daniel Kiper
---
grub-core/fs/zfs/
From: B Horn
It was possible for a grub_errno to not be set if mount of an ISO 9660
filesystem failed when set_rockridge() returned 0.
This isn't known to be exploitable as the other filesystems due to
filesystem helper checking the requested file type. Though fixing
as a precaution.
Reported-b
From: B Horn
It was possible to read OOB when an attribute had a size that exceeded
the allocated buffer. This resolves that by making sure all attributes
that get read are fully in the allocated space by implementing
a function to validate them.
Defining the offsets in include/grub/ntfs.h but t
From: B Horn
It was previously possible for grub_xfs_mount() to return NULL without
setting grub_errno if the XFS version was invalid. This resulted in it
being possible for grub_dl_unref() to be called twice allowing the XFS
module to be unloaded while there were still references to it.
Fixing
From: Michael Chang
The ctx->filename can point to either a string literal or a dynamically
allocated string. The ctx->filename_alloc field is used to indicate the
type of allocation.
An issue has been identified where ctx->filename is reassigned to
a string literal in susp_iterate_dir() but ctx
From: B Horn
This is to avoid a generic issue were some filesystems would not set
data and also not set a grub_errno. This meant it was possible for many
filesystems to grub_dl_unref() themselves multiple times resulting in
it being possible to unload the filesystems while there were still
refere
1 - 100 of 221 matches
Mail list logo
