On 3/20/25 17:36, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 14:46, Alexander Graf wrote:
On 20.03.25 13:08, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
Hello,
A new version of the rhboot secure boot shim was released yesterday
https://github.com/rhboot/shim/rele
On Do, 20.03.25 09:38, Mate Kukri (mate.ku...@canonical.com) wrote:
> Hello,
>
> A new version of the rhboot secure boot shim was released yesterday
> https://github.com/rhboot/shim/releases/tag/16.0.
>
> This version contains an implementation of the
> LoadImage/StartImage/Exit/etc API set, which
On 21.03.25 01:26, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
Let's first figure out how all of this works without shim. Then we can
look at whether we need to and how we can extend the shim/sd-boot
interface to make that case work as well. Please don't start off
On Fri, 21 Mar 2025 at 09:22, Alexander Graf wrote:
>
>
> On 21.03.25 09:12, Ard Biesheuvel wrote:
> > On Fri, 21 Mar 2025 at 09:05, Alexander Graf wrote:
> >>
> >> On 21.03.25 01:26, Luca Boccassi wrote:
> >>> On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> Let's first figure out how
On Do, 20.03.25 22:36, Luca Boccassi (luca.bocca...@gmail.com) wrote:
> > > so I think your suggestion of adding a new API to shim is the best
> > > solution. Once a formal API is established, we remove the chances of
> > > accidental/unaware breakages going forward, which would be a very
> > > po
On Thu, 20 Mar 2025 at 23:36, Luca Boccassi wrote:
...
>
> The shim maintainers have expressed interest in providing a protocol
> that allows us to correctly configure loadimage so that it doesn't
> check the signature and it doesn't measure, which is what we need.
> I'll provide further updates o
On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> Let's first figure out how all of this works without shim. Then we can
> look at whether we need to and how we can extend the shim/sd-boot
> interface to make that case work as well. Please don't start off
> assuming everyone runs shim in secur
On Fri, 21 Mar 2025 at 08:05, Alexander Graf wrote:
>
>
> On 21.03.25 01:26, Luca Boccassi wrote:
> > On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> >> Let's first figure out how all of this works without shim. Then we can
> >> look at whether we need to and how we can extend the shim/sd-b
On Fr, 21.03.25 07:23, Harry G Coin (hgc...@gmail.com) wrote:
> > I'm afraid we are not aligned on that - shim exists because hardware
> > exists, non-tech-savvy users exist, and distributions exist, and the
> > intersection of all three matters. I understand you focus on the VM
> > case, which is
On Fri, 21 Mar 2025 at 15:30, Lennart Poettering wrote:
>
> On Fr, 21.03.25 07:23, Harry G Coin (hgc...@gmail.com) wrote:
>
> > > I'm afraid we are not aligned on that - shim exists because hardware
> > > exists, non-tech-savvy users exist, and distributions exist, and the
> > > intersection of al
On Fri, 21 Mar 2025 at 14:37, Lennart Poettering wrote:
>
> On Do, 20.03.25 22:36, Luca Boccassi (luca.bocca...@gmail.com) wrote:
>
> > > > so I think your suggestion of adding a new API to shim is the best
> > > > solution. Once a formal API is established, we remove the chances of
> > > > accide
On Fr, 21.03.25 00:26, Luca Boccassi (luca.bocca...@gmail.com) wrote:
> On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> > Let's first figure out how all of this works without shim. Then we can
> > look at whether we need to and how we can extend the shim/sd-boot
> > interface to make that c
On Do, 20.03.25 12:08, Luca Boccassi (luca.bocca...@gmail.com) wrote:
> On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
> >
> > Hello,
> >
> > A new version of the rhboot secure boot shim was released yesterday
> > https://github.com/rhboot/shim/releases/tag/16.0.
> >
> > This version contains an
On Fr, 21.03.25 11:06, Luca Boccassi (luca.bocca...@gmail.com) wrote:
> On Fri, 21 Mar 2025 at 08:05, Alexander Graf wrote:
> >
> >
> > On 21.03.25 01:26, Luca Boccassi wrote:
> > > On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> > >> Let's first figure out how all of this works without sh
On 21.03.25 09:12, Ard Biesheuvel wrote:
On Fri, 21 Mar 2025 at 09:05, Alexander Graf wrote:
On 21.03.25 01:26, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
Let's first figure out how all of this works without shim. Then we can
look at whether we need to and ho
On Fri, 21 Mar 2025 at 09:05, Alexander Graf wrote:
>
>
> On 21.03.25 01:26, Luca Boccassi wrote:
> > On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> >> Let's first figure out how all of this works without shim. Then we can
> >> look at whether we need to and how we can extend the shim/sd-b
On 20.03.25 23:36, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 14:46, Alexander Graf wrote:
On 20.03.25 13:08, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
Hello,
A new version of the rhboot secure boot shim was released yesterday
https://github.com/rhboot/shim/rel
On Thu, 20 Mar 2025 at 14:46, Alexander Graf wrote:
>
> On 20.03.25 13:08, Luca Boccassi wrote:
> > On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
> >>
> >> Hello,
> >>
> >> A new version of the rhboot secure boot shim was released yesterday
> >> https://github.com/rhboot/shim/releases/tag/16.0.
On 3/20/25 15:46, Alexander Graf wrote:
On 20.03.25 13:08, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 11:00, Mate Kukri
wrote:
Hello,
A new version of the rhboot secure boot shim was released yesterday
https://github.com/rhboot/shim/releases/tag/16.0.
This version contains an implementatio
On 20.03.25 13:08, Luca Boccassi wrote:
On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
Hello,
A new version of the rhboot secure boot shim was released yesterday
https://github.com/rhboot/shim/releases/tag/16.0.
This version contains an implementation of the
LoadImage/StartImage/Exit/etc AP
On 20.03.25 11:59, Lennart Poettering wrote:
On Do, 20.03.25 09:38, Mate Kukri (mate.ku...@canonical.com) wrote:
Hello,
A new version of the rhboot secure boot shim was released yesterday
https://github.com/rhboot/shim/releases/tag/16.0.
This version contains an implementation of the
LoadImag
On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
>
> Hello,
>
> A new version of the rhboot secure boot shim was released yesterday
> https://github.com/rhboot/shim/releases/tag/16.0.
>
> This version contains an implementation of the
> LoadImage/StartImage/Exit/etc API set, which is exposed both v
22 matches
Mail list logo
