[v2,10/10] fdt: Add device tree file type

Message ID	20181114131138.43713-11-agraf@suse.de
State	Superseded
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: domain of grub-devel-bounces+patch=linaro.org@gnu.org designates 2001:4830:134:3::11 as permitted sender) client-ip=2001:4830:134:3::11; From: Alexander Graf <agraf@suse.de> To: grub-devel@gnu.org Subject: [PATCH v2 10/10] fdt: Add device tree file type Date: Wed, 14 Nov 2018 14:11:38 +0100 Message-Id: <20181114131138.43713-11-agraf@suse.de> In-Reply-To: <20181114131138.43713-1-agraf@suse.de> References: <20181114131138.43713-1-agraf@suse.de> Precedence: list Reply-To: The development of GNU GRUB <grub-devel@gnu.org> Cc: "rickchen36 @ gmail . com" <rickchen36@gmail.com>, David Abdurachmanov <david.abdurachmanov@gmail.com>, schwab@suse.de, "greentime @ andestech . com" <greentime@andestech.com>, leif.lindholm@linaro.org, atish.patra@wdc.com, Michael Chang <mchang@suse.com>, Alistair Francis <Alistair.Francis@wdc.com>, Lukas Auer <lukas.auer@aisec.fraunhofer.de>, Paul Walmsley <paul.walmsley@sifive.com>, Bin Meng <bmeng.cn@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: grub-devel-bounces+patch=linaro.org@gnu.org Sender: "Grub-devel" <grub-devel-bounces+patch=linaro.org@gnu.org>
Series	Add RISC-V support \| expand [v2,00/10] Add RISC-V support [v2,01/10] efi: Rename armxx to arch [v2,02/10] PE: Add RISC-V definitions [v2,03/10] elf.h: Add RISC-V definitions [v2,04/10] RISC-V: Add setjmp implementation [v2,05/10] RISC-V: Add early startup code [v2,06/10] RISC-V: Add Linux load logic [v2,07/10] RISC-V: Add awareness for RISC-V reloations [v2,08/10] RISC-V: Add auxiliary files [v2,09/10] RISC-V: Add to build system [v2,10/10] fdt: Add device tree file type

Message ID

20181114131138.43713-11-agraf@suse.de

State

Superseded

Headers

Received-SPF: pass (google.com: domain of
	grub-devel-bounces+patch=linaro.org@gnu.org designates
	2001:4830:134:3::11 as permitted sender)
	client-ip=2001:4830:134:3::11; 
From: Alexander Graf <agraf@suse.de>
To: grub-devel@gnu.org
Subject: [PATCH v2 10/10] fdt: Add device tree file type
Date: Wed, 14 Nov 2018 14:11:38 +0100
Message-Id: <20181114131138.43713-11-agraf@suse.de>
In-Reply-To: <20181114131138.43713-1-agraf@suse.de>
References: <20181114131138.43713-1-agraf@suse.de>
Precedence: list
Reply-To: The development of GNU GRUB <grub-devel@gnu.org>
Cc: "rickchen36 @ gmail . com" <rickchen36@gmail.com>,
	David Abdurachmanov <david.abdurachmanov@gmail.com>, schwab@suse.de, 
	"greentime @ andestech . com" <greentime@andestech.com>,
	leif.lindholm@linaro.org, atish.patra@wdc.com,
	Michael Chang <mchang@suse.com>,
	Alistair Francis <Alistair.Francis@wdc.com>,
	Lukas Auer <lukas.auer@aisec.fraunhofer.de>,
	Paul Walmsley <paul.walmsley@sifive.com>, Bin Meng <bmeng.cn@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: grub-devel-bounces+patch=linaro.org@gnu.org
Sender: "Grub-devel" <grub-devel-bounces+patch=linaro.org@gnu.org>

Series

Add RISC-V support | expand

Commit Message

Alexander Graf Nov. 14, 2018, 1:11 p.m. UTC

We now have signature check logic in grub which allows us to treat
files differently depending on their file type.

Mark a loaded device tree as such and treat it like an overlayed ACPI
table. Both describe hardware, so I suppose their threat level is the
same.

Signed-off-by: Alexander Graf <agraf@suse.de>

---
 grub-core/commands/efi/shim_lock.c | 1 +
 grub-core/loader/efi/fdt.c         | 2 +-
 include/grub/file.h                | 2 ++
 3 files changed, 4 insertions(+), 1 deletion(-)

-- 
2.12.3


_______________________________________________
Grub-devel mailing list
Grub-devel@gnu.org
https://lists.gnu.org/mailman/listinfo/grub-devel

diff --git a/grub-core/commands/efi/shim_lock.c b/grub-core/commands/efi/shim_lock.c
index 01246b0fc..90dccb0c7 100644
--- a/grub-core/commands/efi/shim_lock.c
+++ b/grub-core/commands/efi/shim_lock.c
@@ -81,6 +81,7 @@  shim_lock_init (grub_file_t io, enum grub_file_type type,
       /* Fall through. */
 
     case GRUB_FILE_TYPE_ACPI_TABLE:
+    case GRUB_FILE_TYPE_DEVICE_TREE:
       *flags = GRUB_VERIFY_FLAGS_DEFER_AUTH;
 
       return GRUB_ERR_NONE;
diff --git a/grub-core/loader/efi/fdt.c b/grub-core/loader/efi/fdt.c
index a4c6e8036..d8ebe648e 100644
--- a/grub-core/loader/efi/fdt.c
+++ b/grub-core/loader/efi/fdt.c
@@ -123,7 +123,7 @@  grub_cmd_devicetree (grub_command_t cmd __attribute__ ((unused)),
       return GRUB_ERR_NONE;
     }
 
-  dtb = grub_file_open (argv[0]);
+  dtb = grub_file_open (argv[0], GRUB_FILE_TYPE_DEVICE_TREE);
   if (!dtb)
     goto out;
 
diff --git a/include/grub/file.h b/include/grub/file.h
index 19dda67f6..b8fb13017 100644
--- a/include/grub/file.h
+++ b/include/grub/file.h
@@ -93,6 +93,8 @@  enum grub_file_type
     GRUB_FILE_TYPE_FILE_ID,
     /* File holding ACPI table.  */
     GRUB_FILE_TYPE_ACPI_TABLE,
+    /* File holding Device Tree.  */
+    GRUB_FILE_TYPE_DEVICE_TREE,
     /* File we intend show to user.  */
     GRUB_FILE_TYPE_CAT,
     GRUB_FILE_TYPE_HEXCAT,

[v2,10/10] fdt: Add device tree file type

Commit Message

Patch