[PATCH v10 1/2] fs/erofs: Add support for EROFS

EROFS [1] is a lightweight read-only filesystem designed for performance which has already been shipped in most Linux distributions as well as widely used in several scenarios, such as Android system partitions, container images, and rootfs for embedded devices. This patch brings EROFS uncompresse

[PATCH v10 0/2] Introduce EROFS support

EROFS [1] is a lightweight read-only filesystem designed for performance which has already been shipped in most Linux distributions as well as widely used in several scenarios, such as Android system partitions, container images, and rootfs for embedded devices. This patch brings EROFS uncompresse

[PATCH v10 2/2] fs/erofs: Add tests for EROFS in grub-fs-tester

In this patch, three tests of EROFS are introduced and they cover compact, extended and chunk-based inodes, respectively. Signed-off-by: Yifan Zhao Reviewed-by: Glenn Washburn --- Reviewed-by Link: https://lists.gnu.org/archive/html/grub-devel/2024-04/msg00101.html .gitignore

Re: [PATCH] Support dropin files for Linux kernel parameters

On Fri, Mar 01, 2024 at 03:43:50PM +, Simon Rowe wrote: > Kernel parameters actually cover a range of purposes, including > userspace like systemd. They also need setting for a variety of > reasons: > > * as distro defaults > * to provide configuration for a package > * for an admin to s

Re: bug #61620: Grub2 fails to detect LVM volumes with: error: disk `lvmid/*/*' not found

On 26.04.2024, Glenn Washburn wrote: > On Wed, 3 Apr 2024 10:23:59 +0200 > Horst Prote wrote: > > > Hi, > > > > could the patch supplied in bug #61620 > > (https://savannah.gnu.org/bugs/?func=detailitem&item_id=61620) please be > > reviewed and applied. > > Unfortunately, the issues tracker

[PATCH v14 12/20] cryptodisk: Support key protectors

From: Hernan Gatta Add a new parameter to cryptomount to support the key protectors framework: -P. The parameter is used to automatically retrieve a key from specified key protectors. The parameter may be repeated to specify any number of key protectors. These are tried in order until one provide

[PATCH v14 03/20] libtasn1: disable code not needed in grub

From: Daniel Axtens We don't expect to be able to write ASN.1, only read it, so we can disable some code. Do that with #if 0/#endif, rather than deletion. This means that the difference between upstream and grub is smaller, which should make updating libtasn1 easier in the future. With these ex

[PATCH v14 20/20] tests: Add tpm2_test

For the tpm2 module, the TCG2 command submission function is the only difference between the a QEMU instance and grub-emu. To test TPM key unsealing with a QEMU instance, it requires an extra OS image to invoke grub-protect to seal the LUKS key, rather than a simple grub-shell rescue CD image. On t

[PATCH v14 18/20] diskfilter: look up cryptodisk devices first

When using disk auto-unlocking with TPM 2.0, the typical grub.cfg may look like this: tpm2_key_protector_init --tpm2key=(hd0,gpt1)/boot/grub2/sealed.tpm cryptomount -u -P tpm2 search --fs-uuid --set=root Since the disk search order is based on the order of module loading, the attacker cou

[PATCH v14 00/20] Automatic Disk Unlock with TPM2

GIT repo for v14: https://github.com/lcp/grub2/tree/tpm2-unlock-v14 This patch series is based on "Automatic TPM Disk Unlock"(*1) posted by Hernan Gatta to introduce the key protector framework and TPM2 stack to GRUB2, and this could be a useful feature for the systems to implement full disk encry

[PATCH v14 09/20] key_protector: Add key protectors framework

From: Hernan Gatta A key protector encapsulates functionality to retrieve an unlocking key for a fully-encrypted disk from a specific source. A key protector module registers itself with the key protectors framework when it is loaded and unregisters when unloaded. Additionally, a key protector ma

[PATCH v14 06/20] libtasn1: compile into asn1 module

From: Daniel Axtens Create a wrapper file that specifies the module license. Set up the makefile so it is built. Signed-off-by: Daniel Axtens Signed-off-by: Gary Lin Reviewed-by: Vladimir Serbinenko --- grub-core/Makefile.core.def| 15 +++ grub-core/lib/libtasn1_wrap/wrap

[PATCH v14 15/20] tpm2: Implement NV index

From: Patrick Colp Currently with the TPM2 protector, only SRK mode is supported and NV index support is just a stub. Implement the NV index option. Note: This only extends support on the unseal path. grub2_protect has not been updated. tpm2-tools can be used to insert a key into the NV index.

[PATCH v14 13/20] util/grub-protect: Add new tool

From: Hernan Gatta To utilize the key protectors framework, there must be a way to protect full-disk encryption keys in the first place. The grub-protect tool includes support for the TPM2 key protector but other protectors that require setup ahead of time can be supported in the future. For the

[PATCH v14 11/20] key_protector: Add TPM2 Key Protector

From: Hernan Gatta The TPM2 key protector is a module that enables the automatic retrieval of a fully-encrypted disk's unlocking key from a TPM 2.0. The theory of operation is such that the module accepts various arguments, most of which are optional and therefore possess reasonable defaults. On

[PATCH v14 08/20] libtasn1: Add the documentation

Document libtasn1 in docs/grub-dev.texi and add the upgrade steps. Also add the patches to make libtasn1 compatible with grub code. Signed-off-by: Gary Lin Reviewed-by: Vladimir Serbinenko --- docs/grub-dev.texi| 34 ++ ...asn1-disable-code-not-needed-in-grub.patch

[PATCH v14 01/20] posix_wrap: tweaks in preparation for libtasn1

From: Daniel Axtens - Define SIZEOF_UNSIGNED_LONG_INT, it's the same as SIZEOF_UNSIGNED_LONG. - Define WORD_BIT, the size in bits of an int. This is a defined in the Single Unix Specification and in gnulib's limits.h. gnulib assumes it's 32 bits on all our platforms, including 64 bit

[PATCH v14 04/20] libtasn1: changes for grub compatibility

From: Daniel Axtens Do a few things to make libtasn1 compile as part of grub: - remove _asn1_strcat and replace strcat with the bound-checked _asn1_str_cat except the one inside _asn1_str_cat. That strcat is replaced with strcpy. - adjust header paths in libtasn1.h - adjust header pat

[PATCH v14 17/20] cryptodisk: wipe out the cached keys from protectors

An attacker may insert a malicious disk with the same crypto UUID and trick grub2 to mount the fake root. Even though the key from the key protector fails to unlock the fake root, it's not wiped out cleanly so the attacker could dump the memory to retrieve the secret key. To defend such attack, wip

[PATCH v14 16/20] cryptodisk: Fallback to passphrase

From: Patrick Colp If a protector is specified, but it fails to unlock the disk, fall back to asking for the passphrase. However, an error was set indicating that the protector(s) failed. Later code (e.g., LUKS code) fails as `grub_errno` is now set. Print the existing errors out first, before pr

[PATCH v14 05/20] libtasn1: fix the potential buffer overrun

In _asn1_tag_der(), the first while loop for the long form may end up with a 'k' value with 'ASN1_MAX_TAG_SIZE' and cause the buffer overrun in the second while loop. This commit tweaks the conditional check to avoid producing a too large 'k'. This is a quick fix and may differ from the official u

[PATCH v14 19/20] tpm2: Enable tpm2 module for grub-emu

As a preparation to test TPM 2.0 TSS stack with grub-emu, the new option, --tpm-device, is introduced to specify the TPM device for grub-emu so that grub-emu can share the emulated TPM device with the host. Since grub-emu can directly access the device node on host, it's easy to implement the esse

[PATCH v14 14/20] tpm2: Support authorized policy

This commit handles the TPM2_PolicyAuthorize command from the key file in TPM 2.0 Key File format. TPM2_PolicyAuthorize is the essential command to support authorized policy which allows the users to sign TPM policies with their own keys. Per TPM 2.0 Key File(*1), CommandPolicy for TPM2_PolicyAuth