[PATCH] Fix objcopy copy modes per architecture

From: Christian Storm Use objcopy with target=efi-app for * x86 across the board(s) * aarch64 with gnu-efi > 3.0.15 Use objcopy with binary copy mode for * arm * riscv64 * aarch64 with gnu-efi = 3.0.15 This list is compiled from gnu-efi's gnuefi/crt0-efi-.S assembler files over the releases

Re: [ANNOUNCE] EFI Boot Guard 0.17 released

Hi, >> here comes a release 0.17 of EFI Boot Guard. It's primarily consists of >> internal improvements, specifically to support latest gnuefi release >> 3.0.18. There are also several new compile-time features such as a boot >> delay to help debugging errors, silent boot and adjustable env

Re: bg_setenv --confirm sets all configuration ustate to OK

Hi, >>> I haven't tried this with the latest version. >> >> I checked the code, and this is indeed intended behavior: >> `journal_process_action` has some special logic in place (see [1]), which >> results in calling `ebg_env_setglobalstate` if `ustate` is to be updated. >> This >> function

[PATCH] Use --no-warn-rwx-segments only when needed

From: Christian Storm GNU binutils 2.39 introduced a warning for LOAD segments with RWX permissions. Due to the default Werror, the build fails for non- x86 machines when using binutils >= 2.39 and gnu-efi <= 3.0.15. x86 machines didn't have a faulty linker script in the first place. The

Re: [PATCH v2] Fix arm + riscv support for gnu-efi > 3.0.15

From: Christian Storm With gnu-efi >= 3.0.16, the binary format assemblage doesn't work anymore due to lds and crt0 changes. Hence, with gnu-efi >= 3.0.16, use the efi-app target. For gnu-efi == 3.0.15, still use the binary assemblage. >>> >>> <= 3.0.15, I

Re: [PATCH v2] Fix arm + riscv support for gnu-efi > 3.0.15

>> From: Christian Storm >> >> With gnu-efi >= 3.0.16, the binary format assemblage >> doesn't work anymore due to lds and crt0 changes. >> >> Hence, with gnu-efi >= 3.0.16, use the efi-app target. >> For gnu-efi == 3.0.15, still use the binary assemblage. > > <= 3.0.15, I assume. Yes, but

[PATCH v2] Fix arm + riscv support for gnu-efi > 3.0.15

From: Christian Storm With gnu-efi >= 3.0.16, the binary format assemblage doesn't work anymore due to lds and crt0 changes. Hence, with gnu-efi >= 3.0.16, use the efi-app target. For gnu-efi == 3.0.15, still use the binary assemblage. Signed-off-by: Christian Storm --- Rewrite to esape

[PATCH] ci: Make CI build verbose

From: Christian Storm Make the CI build print out commands executed to allow for better contextualization of build errors. Signed-off-by: Christian Storm --- .github/workflows/main.yaml | 10 +- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/main.yaml

Re: [PATCH] Fix arm support for gnu-efi > 3.0.15

Hi Jan, >>> From: Christian Storm >>> >>> With gnu-efi >= 3.0.16, the binary format assemblage for >>> arm doesn't work anymore due to lds and crt0 changes. >>> >>> Hence, with gnu-efi >= 3.0.16 and binutils >= 2.38, use the >>> efi-app-${ARCH} target. For gnu-efi == 3.0.15, use the binary

Re: efibootguard on qemux86_64 fails with emulation error

Hi, >> I would like to add that we were using gnu-efi 3.0.17, and by >> downgrading it to 3.0.15, it now works. >> >> That probably means that gnu-efi is the culprit here. >> > > Christian is looking into that topic, you may have seen some patches of > him on the list. He told me that there is

[PATCH] Fix arm support for gnu-efi > 3.0.15

From: Christian Storm With gnu-efi >= 3.0.16, the binary format assemblage for arm doesn't work anymore due to lds and crt0 changes. Hence, with gnu-efi >= 3.0.16 and binutils >= 2.38, use the efi-app-${ARCH} target. For gnu-efi == 3.0.15, use the binary assemblage, not needing binutils efi-app

[PATCH] Fix CopyMem() Wdiscarded-qualifiers

From: Christian Storm For gnu-efi < 3.0.17, efilib.h reads VOID CopyMem ( IN VOID *Dest, IN CONST VOID *Src, IN UINTNlen ) while for gnu-efi >= 3.0.17, it reads VOID EFIAPI CopyMem ( IN VOID *Dest, IN VOID *Src,

[PATCH] Don't exploit constructors for probing functions

From: Christian Storm gnu-efi 3.0.16 commit 4f8b339 dated 2023-03-28 "Make ELF constructors and destructors work: .init_array" introduces proper support for ELF constructors and destructors transcribing it to EFI binaries. With the watchdog drivers' __attribute__((constructor)) decorated

[PATCH] Add silent boot feature

Implemented as compile-time switch, enabling silent boot suppresses informational messages by EFI Boot Guard so that, e.g., EFI splash screens are not overwritten. Warning and error messages will still be printed. Signed-off-by: Christian Storm --- configure.ac| 10 ++

Re: [PATCH] configure: make libcheck dependency check unconditional

Hi, >> From: Christian Storm >> >> libcheck is used in tools/tests which is not >> dependent on the bootloader EFI being built. >> >> Signed-off-by: Christian Storm >> --- >> configure.ac | 3 ++- >> 1 file changed, 2 insertions(+), 1 deletion(-) >> >> diff --git a/configure.ac b/configure.ac

[PATCH] configure: make libcheck dependency check unconditional

From: Christian Storm libcheck is used in tools/tests which is not dependent on the bootloader EFI being built. Signed-off-by: Christian Storm --- configure.ac | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/configure.ac b/configure.ac index b000603..1dfee62 100644 ---

Re: [PATCH 1/3] efi: implement systemd boot loader interface

Hi, > This patch implements the LoaderDevicePartUUID part of the systemd boot > loader interface to pass data from the loader to the OS / systemd. The > data is passed via EFI variables which are set by the first-stage loader > (the one on the ESP), or alternatively by the first loader that is >