Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Jon McCune
On Mon, Feb 6, 2017 at 2:04 PM, Matthew Garrett wrote: > On Mon, Feb 06, 2017 at 09:53:57AM -0800, Jon McCune wrote: > > > I'm not sure about measuring the commands that GRUB runs. GRUB's config > > file is a shell-like language, and measuring that file should give a >

Re: [PATCH v3] disk/mdraid1x: Fix >2TB RAID detection with BIOS

2017-02-06 Thread Robert LeBlanc
On Wed, Jan 25, 2017 at 3:02 PM, Robert LeBlanc wrote: > Changes in v3: > - Fix to return if not out of range instead of breaking out of the > loop. > > Changes in v2: > - Only continue checking for other metadata versions if we get an out > of range error and

Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Vladimir 'phcoder' Serbinenko
Le Mon, Feb 6, 2017 à 11:11 PM, Matthew Garrett a écrit : > On Mon, Feb 06, 2017 at 07:58:37PM +, Vladimir 'phcoder' Serbinenko > wrote: > > On Mon, 6 Feb 2017, 17:44 Matthew Garrett wrote: > > > > > On Sun, Feb 05, 2017 at 01:28:20PM +,

xen: Fix parsing of XZ kernel.

2017-02-06 Thread Vladimir 'phcoder' Serbinenko
In case of xz, the uncompressed size is appended to xz data which confuses our xz decompressor. Trim it. Daniel, Andrei, Alexander, do you agree that this should go into 2.02? --- grub-core/loader/i386/xen_file.c | 30 -- 1 file changed, 24 insertions(+), 6

xen: Fix handling of GRUB chainloading.

2017-02-06 Thread Vladimir 'phcoder' Serbinenko
In case of GRUB we put remapper after domain pages and not at 0x0. In this case we use max_addr to put remapper. Unfortunately we increment max_addr as well in this case resulting in virt mapping mapping page at old max_addr and trying to boot using new max_addr. Daniel, Andrei, Alexander, do you

Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Matthew Garrett
On Mon, Feb 06, 2017 at 07:58:37PM +, Vladimir 'phcoder' Serbinenko wrote: > On Mon, 6 Feb 2017, 17:44 Matthew Garrett wrote: > > > On Sun, Feb 05, 2017 at 01:28:20PM +, Vladimir 'phcoder' Serbinenko > > wrote: > > > See verify.h for the interface. Obviously if you

Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Matthew Garrett
On Mon, Feb 06, 2017 at 09:53:57AM -0800, Jon McCune wrote: > I'm not sure about measuring the commands that GRUB runs. GRUB's config > file is a shell-like language, and measuring that file should give a pretty > good indication of its behavior. In the grey area between "what is code?" > and

Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Vladimir 'phcoder' Serbinenko
On Mon, 6 Feb 2017, 17:44 Matthew Garrett wrote: > On Sun, Feb 05, 2017 at 01:28:20PM +, Vladimir 'phcoder' Serbinenko > wrote: > > See verify.h for the interface. Obviously if you need changes in the API, > > please say. > > I think that's a starting point, but it

Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Jon McCune
Matthew, On Mon, Feb 6, 2017 at 8:43 AM, Matthew Garrett wrote: > On Sun, Feb 05, 2017 at 01:28:20PM +, Vladimir 'phcoder' Serbinenko > wrote: > > See verify.h for the interface. Obviously if you need changes in the API, > > please say. > > I think that's a starting

Re: Support for TPM measurements on UEFI systems

2017-02-06 Thread Matthew Garrett
On Sun, Feb 05, 2017 at 01:28:20PM +, Vladimir 'phcoder' Serbinenko wrote: > See verify.h for the interface. Obviously if you need changes in the API, > please say. I think that's a starting point, but it doesn't seem sufficient for some of the cases I care about. For instance, measuring