Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

GRUB Bootloader Picks Up A Verifier Framework For Secure Boot, TPM, PGP Verification

Written by Michael Larabel in GNU on 9 November 2018 at 08:09 AM EST. 18 Comments

GNU

Landing in the GRUB boot-loader minutes ago is a new "verifiers" framework providing core verification functionality for the likes of UEFI Secure Boot, Trusted Platform Modules, and PGP.

The GRUB verifiers framework can be used by modules whereby the boot-loader needs to handle some verification steps at boot-time. The obvious focus on this verification framework is for security mechanisms like Secure Boot or TPM support.

This framework allows also verifying the kernel image to built, modules command lines, etc. The initial user of this framework is the PGP module for checking the GRUB image against a GnuPG signature. There is also a new EFI shim lock verifier module that was added that provides verification of kernels if UEFI Secure Boot is enabled.

This work was just merged into GRUB Git ahead of the eventual GRUB 2.04 release.

18 Comments

Related News

GCC 14 Compiler Adds AArch64 GNU/Hurd Support

GCC 14 Boasts Nice ASCII Art For Visualizing Buffer Overflows

GNU Poke 4.0 & Poke-ELF 1.0 Released For Dealing With Binary Data

GNU Coreutils 9.5 Can Yield 10~20% Throughput Boost For cp, mv & cat Commands

IBM Posts GCC Patches For -mcpu=power11 Support

GNU Linux-libre 6.8-gnu Dealing With Blobs From New Intel Drivers

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them

Linux 6.10 To Merge NTSYNC Driver For Emulating Windows NT Synchronization Primitives

Ubuntu Maker Canonical Announces New Collaboration With Qualcomm

Fedora 41 Looks To "-O3" Optimizations For Its Python Build

APT 2.9 Released: Debian's APT 3.0 To Have A New UI With Colors, Columnar Display & More

KDE's KWin Merges Wayland Explicit Sync Support

Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver

Gentoo Linux Now An SPI Project