On Fri, Mar 12, 2021 at 04:24:53PM +0100, Marek Marczykowski-G??recki wrote: > On Thu, Mar 11, 2021 at 10:34:02AM -0800, Bob Eshleman wrote: > > We would like to start a working group for secure boot support in Xen > > to coordinate the various interested parties and set out a plan for > > the feature and its implications for the whole Xen system. > [...] > > We'd love to hear from anyone interested in such a group and how the > > community as a whole feels about such an effort. > > Count me in too. > > Also, I'm cc-ing Trammell, who might be interested too.
Thanks for the invite, Marek. I'm also interested in discussing how to lockdown a running Xen system. Now that the unified EFI image patches have been merged, we can boot with a little more integrity and hopefully transfer the chain of trust to a trustworthy system. -- Trammell
