[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Xen.efi and secure boot



>>> On 27.11.12 at 10:50, George Dunlap <George.Dunlap@xxxxxxxxxxxxx> wrote:
> On Mon, Nov 26, 2012 at 9:51 PM, Alan Cox <alan@xxxxxxxxxxxxxxxxxxx> wrote:
>> You want to sign a small bootloader that is tightly auditable and do your
>> own key management within that for anything else. I would think you'd be
>> able to make use of the Linux bootloader work.
>>
> 
> I was thinking of people who wanted to install their own keys.  Some people
> think that since you have EFI you shouldn't need a bootloader. :-)

I think boot loader is the wrong term - shim loader is what our folks
use (i.e. just a wrapper to deal with the key problem). That would
wrap grub2.efi (or whatever its name) as well as xen.efi or (if
someone cares) elilo.efi.

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.