[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] [PATCH RFC 0/7] Change xen.efi build and add SHIM_LOCK verification into efi_multiboot2()


As in subject... This way we get:
  - one binary which can be loaded by the EFI loader,
    Multiboot and Multiboot2 protocols,
  - if we wish, in the future we can drop xen/xen.gz
    and build xen.efi only,
  - crash dumps generated by the xen.efi loaded from
    the EFI loader can be analyzed by crash tool,
  - simpler code,
  - simpler build,
  - Xen build will no longer depend on ld i386pep support.

This is RFC, so, e.g. xen.mb.efi does not boot if loaded from EFI loader.

  - make xen.mb.efi bootable from EFI loader which probably requires
    some changes in the code relocating trampoline,
  - drop old PE build code,
  - remove build recipes for old PE code,
  - drop xen ELF build recipes (now or later?),
  - cleanup the code.


 xen/Makefile                 |   14 ++++---
 xen/arch/x86/Makefile        |    1 +
 xen/arch/x86/Rules.mk        |    2 +
 xen/arch/x86/boot/head.S     |  197 
 xen/arch/x86/efi/efi-boot.h  |   12 +++++-
 xen/arch/x86/efi/stub.c      |    5 ++-
 xen/arch/x86/xen.lds.S       |   16 ++++++-
 xen/common/efi/boot.c        |   19 ++++++---
 xen/include/xen/compile.h.in |    1 +
 9 files changed, 245 insertions(+), 22 deletions(-)

Daniel Kiper (7):
      xen: Introduce XEN_COMPILE_POSIX_TIME
      xen/x86: Manually build PE header
      xen/x86: Add some addresses to the Multiboot header
      xen/x86: Add some addresses to the Multiboot2 header
      efi: split out efi_shim_lock()
      xen/x86/efi: Verify dom0 kernel with SHIM_LOCK protocol in 
      xen/x86: Build xen.mb.efi directly from xen-syms

Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.