[PATCH v2 3/3] blsuki: Add uki command to load Unified Kernel Image entries

A Unified Kernel Image is a single UEFI PE file that combines a UEFI boot stub, a Linux kernel image, an initrd, and further resources. The uki command will locate where the uki file is and create a GRUB menu entry to load it. Signed-off-by: Alec Brown --- docs/grub.texi | 26 +++

Re: [PATCH v3 05/10] tss2: Add TPM 2.0 NV index commands

On Mon, Jan 13, 2025 at 11:07:08AM +0800, Gary Lin wrote: > The following TPM 2.0 commands are introduced to tss2 to access the > TPM non-volatile memory associated with the NV index handles. > > - TPM2_NV_DefineSpace > - TPM2_NV_UndefineSpace > - TPM2_NV_ReadPublic > - TPM2_NV_Read > - TPM2_NV_Wri

Re: [PATCH v4 05/12] tpm2_key_protector: Unseal key from a buffer

On Fri, Mar 21, 2025 at 03:59:01PM +0800, Gary Lin wrote: > Extract the logic to handle the file buffer from the SRK recover > function to prepare to load the sealed key from the NV index handle, > so the NV index mode can share the same code path in the later patch. > The SRK recover function now

[PATCH v2 1/3] blsuki: Add blscfg command to parse Boot Loader Specification snippets

The BootLoaderSpec (BLS) defines a scheme where different bootloaders can share a format for boot items and a configuration directory that accepts these common configurations as drop-in files. Signed-off-by: Peter Jones Signed-off-by: Javier Martinez Canillas Signed-off-by: Will Thompson Signed

[PATCH v2 2/3] blsuki: Check for mounted /boot in emu

Irritatingly, BLS defines paths relatives to the mountpoint of the filesystem which contains its snippets, not / or any other fixed location. So grub2-emu needs to know whether /boot is a separate filesystem from / and conditionally prepend a path. Signed-off-by: Robbie Harwood Signed-off-by: Ale

[PATCH v2 0/3] Add commands to load BLS and UKI files

v2: - Improved function prefixes to indicate internal blsuki functions. - Added enums to indicate output from vercmp functions. - Separated bls and uki create_entry functions to improve readability. - Updated uki code to only store keyvals of necessary PE sections. - Fixed a bug where an extr

[PATCH v4 12/12] INSTALL: Document the packages needed for TPM2 key protector tests

The TPM2 key protector tests require two external packages: swtpm-tools and tpm2-tools. Add those two packages to the INSTALL file to inform the user to install those packages before starting the TPM2 key protector tests. Signed-off-by: Gary Lin --- INSTALL | 1 + 1 file changed, 1 insertion(+)

Re: [PATCH v2 2/3] blsuki: Check for mounted /boot in emu

Le mar. 25 mars 2025, 10:15, Alec Brown a écrit : > Irritatingly, BLS defines paths relatives to the mountpoint of the > filesystem which contains its snippets, not / or any other fixed > location. So grub2-emu needs to know whether /boot is a separate > filesystem from / and conditionally prepen