EFI File renaming
Ilias Apalodimas
ilias.apalodimas at linaro.org
Tue Nov 12 15:27:07 CET 2024
On Tue, 12 Nov 2024 at 16:22, Traut Manuel LCPF-CH <Manuel.Traut at mt.com> wrote:
>
> Hi Ilias,
>
> On Tue, Nov 12, 2024 at 03:46:48PM +0200, Ilias Apalodimas wrote:
> > Hello Manuel,
> >
> > On Tue, 12 Nov 2024 at 15:21, Traut Manuel LCPF-CH <Manuel.Traut at mt.com> wrote:
> > >
> > > Hi,
> > >
> > > systemd-boot counting logic requires [0] to be implemented.
> > >
> > > Is anybody already working on this?
> >
> > I am not aware of any patches
>
> thanks for the quick response.
>
> > > If not we plan to add the functionality in fs/fs.c and fs/fat - correct?
> >
> > We don't have plans for it, but explaining any use cases you have might help
>
> systemd-boot is able to do bootcounting by renaming the UKI image [0]
> the code that triggers the not implemented code section is here [1].
>
> With this it is possible to have watchdog based A/B switching on systems
> without a writeable u-boot environment. And therefore it is a nice
> method to implement measured boot.
The A/B is ok, but I cant understand how that realted to measured
boot. The TPM access, UKI infrastucture etc, will work fine without
A/B
Thanks
/Ilias
>
> Regards
> Manuel
>
> [0] https://uapi-group.org/specifications/specs/boot_loader_specification/#boot-counting
> [1] https://github.com/systemd/systemd/blob/3304a029b847e87da51f7a8ad8c118111508e009/src/boot/boot.c#L1407
>
> > Cheers
> > /Ilias
> > >
> > > Cheers
> > > Manuel
> > >
> > > [0] https://elixir.bootlin.com/u-boot/v2025.01-rc1/source/lib/efi_loader/efi_file.c#L971
More information about the U-Boot
mailing list