Re: [PATCH v2 2/2] efi: Use shim's loader protocol for EFI image verification and loading

On Mon, Mar 10, 2025 at 09:12:22AM +, Mate Kukri wrote: > - Use shim loader protocol to verify images in the shim_lock verifier. This change makes the shim loader protocol mandatory for GRUB under UEFI Secure Boot. However, I don't think this is a good idea, since the new protocol is only avai

Re: [PATCH v2 2/2] efi: Use shim's loader protocol for EFI image verification and loading

On Mon, Mar 10, 2025 at 09:12:22AM +, Mate Kukri wrote: > - Use shim loader protocol to verify images in the shim_lock verifier. > - Add API to allow downstream consumers to re-use image handles produced > by the verifier. This is necessary to avoid having images measured > twice to the TPM

[PATCH v2 2/2] efi: Use shim's loader protocol for EFI image verification and loading

- Use shim loader protocol to verify images in the shim_lock verifier. - Add API to allow downstream consumers to re-use image handles produced by the verifier. This is necessary to avoid having images measured twice to the TPM. - Register shim loader protocol as an image loader. Signed-off-by