On Mon, 14 Apr 2025, Alejandro Vallejo wrote: > Though I'm starting to get urges to rewrite many of this error handlers > as asserts, on the basis that "why do we think it's ok to boot with > malformed DTBs"? A safe system that doesn't boot is more helpful than an > unsafe one that boots everything except a critical component for you to > find later on.
It is totally OK to panic on boot if a malformed DTB was passed. See the number of panics in xen/arch/arm/dom0less-build.c.
