talos-petitboot/lib/types, branch masterBlackbird™ petitboot sourceshttps://git.raptorcs.com/git/talos-petitboot/atom?h=master2020-01-25T03:54:27+00:00ui/ncurses: Add preboot check option in the config screen2020-01-25T03:54:27+00:00Maxiwell S. Garciamaxiwell@linux.ibm.com2019-09-23T22:30:23+00:00urn:sha1:3513c7f934d97b1db34c5e4e1ce9c995844764bd
Petitboot might run some checks to validate the kernel images before
call the kexec load. This patch adds both 'preboot check' option in the
config UI screen and a NVRAM variable 'petitboot,preboot-check' to make
the user choice persistent.
The 'preboot check' is enabled by default. The 'petitboot,preboot-check'
is created on NVRAM only when 'preboot check' is disabled by the user.
NVRAM property changed to preboot-check, small label changes and help
text added by Jeremy Kerr <jk@ozlabs.org>.
Signed-off-by: Maxiwell S. Garcia <maxiwell@linux.ibm.com>
Signed-off-by: Jeremy Kerr <jk@ozlabs.org>
protocol,types: Add secure & trusted boot state to system info2020-01-23T01:02:43+00:00Jeremy Kerrjk@ozlabs.org2019-11-20T05:09:41+00:00urn:sha1:aa2d71a84ed6ba693b7dcde213c82c46f334f640
Add state of secure & trusted boot to struct system_info:
- fw_measurement: whether the firmware has been measured
- fw_enforcing: whether the firmware has been authenticated
- os_enforcing: whether the boot payload will be authenticated
Signed-off-by: Jeremy Kerr <jk@ozlabs.org>
lib/types: consolidate struct system_info layout with serialised version2020-01-23T01:02:43+00:00Jeremy Kerrjk@ozlabs.org2019-11-20T04:32:02+00:00urn:sha1:b2e5a7b63eb46e3ff268c8f781d8f590d09c6a02
We currently serialise the BMC MAC at the end of a system info message,
so update struct system_info to suit.
Signed-off-by: Jeremy Kerr <jk@ozlabs.org>
lib: Add AUTH_MSG_DECRYPT2019-03-05T20:54:10+00:00Samuel Mendoza-Jonassam@mendozajonas.com2019-02-14T23:39:30+00:00urn:sha1:5f8fa2c151b8f0e568dc4015b7d307250b354a04
Extend the auth_message struct to support the AUTH_MSG_DECRYPT
operation, allowing the existing authentications methods to be used for
passing a disk password from the UI to pb-discover.
In addition add DEVICE_TYPE_LUKS to identify encrypted disk devices.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
discover/platform-powerpc: read bootdev config from IPMI boot mailbox2018-12-13T00:26:10+00:00Samuel Mendoza-Jonassam@mendozajonas.com2018-11-29T04:36:31+00:00urn:sha1:78c3a044d2302bacf27ac2d9ef179bc35824af4c
The IPMI Get System Boot Options commands includes parameter 7, the
"boot initiator mailbox". This can be used to hold arbitrary data to
influence the boot order.
Use this to provide an alternate bootdev configuration to Petitboot that
will override the one saved to NVRAM. This provides more fine grained
override options than the existing device-type based overrides.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
ui/ncurses: Keep track of the default boot option2018-12-03T03:48:41+00:00Samuel Mendoza-Jonassam@mendozajonas.com2018-06-28T04:45:19+00:00urn:sha1:87017f0478536fcb927010618be483a5efe9260c
Keep track of the default boot option, and prefix its display name with
a '(*)' to point it out to the user.
This avoids having to authenticate with pb-discover even if only booting
the default option.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
ui/ncurses: Reset console options on boot2018-11-16T02:55:29+00:00Samuel Mendoza-Jonassam@mendozajonas.com2018-11-06T04:34:51+00:00urn:sha1:2bc0df4aa35a89c5af7e54f459e2bbde20ca6a7e
The ncurses UI sets a few console options at startup that are needed for
ncurses to work properly. These aren't reset however and can lead to
quirks like the cursor being invisible after kexecing to the next
kernel.
The UI process doesn't have time to reset these when it is killed by
kexec, so instead add a 'boot_active' field to status updates. This is
set by boot.c's update handler so the UI can assume it is about to boot
if it receives a status update with this field, and resets the console
options. If the boot is cancelled for any reason the status update will
reflect that and the console options are restored.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
lib: Add support and helpers for IPv6 host addresses2018-07-10T04:00:08+00:00Samuel Mendoza-Jonassam@mendozajonas.com2018-05-09T01:13:54+00:00urn:sha1:becf2b28d8b0aa561ac7e42db519071f8065d37f
Recognise IPv6 addresses and URLs, and allow an interface_info struct to
have both an IPv4 and IPv6 address.
The addr_scheme() helper returns the address family of a given address.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
discover/pxe-parser: Recognise plugin sources2017-08-15T03:03:22+00:00Samuel Mendoza-Jonassam@mendozajonas.com2017-02-14T04:56:14+00:00urn:sha1:9f191cc3c194ed51534c22e2dae15b2c08c8abc2
Extend the pxe-parser to recognise 'PLUGIN' as well as the usual 'LABEL'
when parsing a config file. 'PLUGIN' will be used to specify an option
that provides the location of an installable pb-plugin file, named by
the 'TARBALL' label.
Since plugin options are discovered via the same mechanism as boot
options treat them the same as boot options and at the 'type' field to
the boot_option struct to differentiate between them.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
lib: Add plugin_option type and protocol2017-08-15T01:40:09+00:00Samuel Mendoza-Jonassam@mendozajonas.com2017-02-14T04:56:55+00:00urn:sha1:98b04aa42a4f1dc8e585f00d75c3b28d9e9aa2a9
Add a new struct 'plugin_option' to represent pb-plugins that are
installed on the system. This consists of plugin metadata and an array
of installed executables.
This also adds two new pb-protocol actions to advertise the addition of
a new plugin_option, and to remove known plugin_options.
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>