On Mon, Nov 28, 2022 at 04:46:10PM +0100, Gerd Hoffmann wrote: > On Mon, Sep 26, 2022 at 10:24:58AM +0200, Ard Biesheuvel wrote: > > When the memory protections were implemented and enabled on ArmVirtQemu > > 5+ years ago, we had to work around the fact that GRUB at the time > > expected EFI_LOADER_DATA to be executable, as that is the memory type it > > allocates when loading its modules. > > > > This has been fixed in GRUB in August 2017, so by now, we should be able > > to tighten this, and remove execute permissions from EFI_LOADER_DATA > > allocations. > > Data point: https://bugzilla.redhat.com/show_bug.cgi?id=2149020 > tl;dr: fedora 37 grub.efi is still broken.
This is also the case with existing Ubuntu releases, as well as AlmaLinux 9.1 and RHEL 8.7[*]. While it does appear to be fixed for the upcoming Ubuntu 23.04 (presumably via [**]), I plan to revert this patch in Debian/Ubuntu until it is more ubiquitous. Do you want to do the same upstream? I'm not sure at what point it would make sense to reintroduce it, given we can't force users to upgrade their bootloaders. -dann [*] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025656 [**] https://git.launchpad.net/~ubuntu-core-dev/grub/+git/ubuntu/commit/?id=a0ee822f1c85fcf55066996ab51c5cf77e2728b2) -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#97814): https://edk2.groups.io/g/devel/message/97814 Mute This Topic: https://groups.io/mt/93922691/21656 Group Owner: devel+ow...@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
