[GRUB PATCH RFC 00/18] i386: Intel TXT secure launcher

grub-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[GRUB PATCH RFC 00/18] i386: Intel TXT secure launcher

From:	Daniel Kiper
Subject:	[GRUB PATCH RFC 00/18] i386: Intel TXT secure launcher
Date:	Tue, 5 May 2020 01:21:14 +0200

Hi,

This is an RFC patchset for the GRUB introducing the Intel TXT secure launcher.
This is a part of larger work known as the TrenchBoot. Patchset can be split
into two distinct parts:
  - 01-12: preparatory patches,
  - 13-18: the Intel TXT secure launcher itself.

The initial implementation of the Intel TXT secure launcher works. However,
there are still some missing bits and pieces, e.g.:
  - SINIT ACM auto loader,
  - lack of RMRR support,
  - lack of support for MLEs larger than 1 GiB,
  - lack of TPM 1.2 support.
  - various fixes and cleanups.

Commands introduced by this patchset: tpm_type, slaunch, slaunch_module (not
required on server platforms) and slaunch_state (useful for checking platform
configuration and state; based on tboot's txt-stat).

Daniel

[Prev in Thread]

Current Thread

[Next in Thread]

[GRUB PATCH RFC 00/18] i386: Intel TXT secure launcher, Daniel Kiper <=
- [GRUB PATCH RFC 03/18] i386/msr: Extract and improve MSR support detection code, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 05/18] i386/memory: Rename PAGE_SIZE to GRUB_PAGE_SIZE and make it global, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 04/18] i386/memory: Rename PAGE_SHIFT to GRUB_PAGE_SHIFT, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 01/18] i386/msr: Merge rdmsr.h and wrmsr.h into msr.h, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 06/18] mmap: Add grub_mmap_get_lowest() and grub_mmap_get_highest(), Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 09/18] efi: Make shim_lock GUID and protocol type public, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 10/18] efi: Return grub_efi_status_t from grub_efi_get_variable(), Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 11/18] efi: Add a function to read EFI variables with attributes, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 13/18] i386/slaunch: Add basic platform support for secure launch, Daniel Kiper, 2020/05/04
- [GRUB PATCH RFC 14/18] i386/txt: Add Intel TXT definitions header file, Daniel Kiper, 2020/05/04

Prev by Date: [GRUB PATCH RFC 11/18] efi: Add a function to read EFI variables with attributes
Next by Date: [GRUB PATCH RFC 13/18] i386/slaunch: Add basic platform support for secure launch
Previous by thread: [PATCH 1/1] GRUB_SESAME support. (Take 2)
Next by thread: [GRUB PATCH RFC 03/18] i386/msr: Extract and improve MSR support detection code
Index(es):
- Date
- Thread