Re: [PATCH v2] Add chainloaded image as shim's verifiable object

On Tue, Mar 09, 2021 at 05:18:22PM +0100, Daniel Kiper wrote: > On Fri, Mar 05, 2021 at 09:48:53PM +0800, Michael Chang via Grub-devel wrote: > > While attempting to dual boot Microsoft Windows with efi chainloader, it > > failed with below error when secure boot was enabled. > > > > error ../../gr

Re: [PATCH] Add chainloaded image as shim's verifiable object

On Tue, Mar 09, 2021 at 07:45:55PM +0100, Thomas Frauendorfer wrote: > On Mon, Mar 8, 2021 at 5:59 AM Michael Chang via Grub-devel > wrote: > > > > On Fri, Mar 05, 2021 at 01:49:00PM +, Dimitri John Ledkov wrote: > > > On Fri, Mar 5, 2021 at 1:34 PM Michael Chang wrote: > > > > > > > > On Fri

Re: Threading of patch series (was: [PATCH v6 00/14] error: Do compile-time format string checking on grub>)

..snip.. > I'm less concerned with the capabilities of other clients than I am for > how this negatively impacts the current workflow of people on this > list, which is what I'm trying to figure out. How does doing this > making things more difficult for people here? And specifically Daniel. Don't

Re: [PATCH] Add chainloaded image as shim's verifiable object

On Mon, Mar 8, 2021 at 5:59 AM Michael Chang via Grub-devel wrote: > > On Fri, Mar 05, 2021 at 01:49:00PM +, Dimitri John Ledkov wrote: > > On Fri, Mar 5, 2021 at 1:34 PM Michael Chang wrote: > > > > > > On Fri, Mar 05, 2021 at 12:21:49PM +, Dimitri John Ledkov wrote: > > > > This is not

Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round

On Tue, Mar 09, 2021 at 10:57:36AM -0500, Neal Gompa wrote: > On Tue, Mar 2, 2021 at 4:08 PM Daniel Kiper wrote: > > > > Hi Adrian, > > > > On Tue, Mar 02, 2021 at 08:37:14PM +0100, John Paul Adrian Glaubitz wrote: > > > Hi Daniel! > > > > > > On 3/2/21 7:00 PM, Daniel Kiper wrote: > > > > The Boo

Re: [PATCH] templates: Properly disable the os-prober by default

On Fri, Mar 05, 2021 at 10:15:36PM +0100, Philip Müller wrote: > - disable os-prober by default in grub-mkconfig.in by setting > GRUB_DISABLE_OS_PROBER to true > - fixes logic in 30_os-prober.in > > Reason for code shuffle in grub-mkconfig.in: > > The default was GRUB_DISABLE_OS_PROBER=false if

Re: [PATCH v2] Add chainloaded image as shim's verifiable object

On Fri, Mar 05, 2021 at 09:48:53PM +0800, Michael Chang via Grub-devel wrote: > While attempting to dual boot Microsoft Windows with efi chainloader, it > failed with below error when secure boot was enabled. > > error ../../grub-core/kern/verifiers.c:119:verification requested but > nobody cares:

Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round

On Tue, Mar 2, 2021 at 4:08 PM Daniel Kiper wrote: > > Hi Adrian, > > On Tue, Mar 02, 2021 at 08:37:14PM +0100, John Paul Adrian Glaubitz wrote: > > Hi Daniel! > > > > On 3/2/21 7:00 PM, Daniel Kiper wrote: > > > The BootHole vulnerability [1][2] announced last year encouraged many > > > people t