[meta-intel] [PATCH RFC 0/4] First pass at combo app and secure boot support

California Sullivan california.l.sullivan at intel.com
Fri Jun 9 18:30:52 PDT 2017 

Hi all,

I'm sure this will take a few iterations, but I'm ready to start getting
some feedback.

This first iteration is only including patches for basic support of the
combo app as an EFI_PROVIDER. There are a couple reasons why I'm not
doing this just yet.

While its possible to use wic with it thanks to the uefiapp_deploy
function, the init scripts in the initramfs we currently ship are made
for live images, and will attempt to mount and boot a rootfs.img, which
will fail.

Work is being done in OE-core to switch the init scripts to
initramfs-framework, and expand the capabilities of initramfs-framework
to support live booting. These changes should solve the first issue
entirely, so I don't think the alternative of creating and using our own
initramfs is appropriate.

The second issue is that this class is dependant on an INTIRD_IMAGE.
This means that the class cannot be added via IMAGE_CLASSES in a global
context (such as local.conf), as it would create a circular dependency.
So, in order to apply this while using wic alone, we would need to
conditionally inherit it on every non-initrd/initramfs image target
through bbappends, which would be a little messy. I've already tried
that workaround successfully, but I'm currently brainstorming solutions
looking for something cleaner.

If you have any questions, suggestions, or critiques, let me know.

Thanks,
Cal

California Sullivan (4):
  systemd-boot: Add patch to systemd boot stub to fix kernel command
    line
  systemd-boot_%.bbappend: compile and deploy EFI stub
  recipes: move sbsigntool from refkit to meta-intel
  classes: Add uefi-comboapp bbclass

 classes/uefi-comboapp.bbclass                      | 196 +++++++++++++++++++++
 ...ub-append-LoadOptions-to-command-line-ins.patch |  55 ++++++
 .../systemd-boot/systemd-boot_%.bbappend           |   9 +
 .../sbsigntool/sbsigntool-native_git.bb            |  74 ++++++++
 4 files changed, 334 insertions(+)
 create mode 100644 classes/uefi-comboapp.bbclass
 create mode 100644 common/recipes-bsp/systemd-boot/systemd-boot/0001-boot-efi-stub-append-LoadOptions-to-command-line-ins.patch
 create mode 100644 common/recipes-support/sbsigntool/sbsigntool-native_git.bb

-- 
2.5.5

More information about the meta-intel mailing list