Issue 3035020: Add "kern_guid=%U" to the secure boot kernel command-line template.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Issue 3035020: Add "kern_guid=%U" to the secure boot kernel command-line template. (Closed)

Created:
10 years, 5 months ago by Bill Richardson

Modified:
9 years, 6 months ago

Reviewers:
Randall Spangler, vb, gauravsh

CC:
chromium-os-reviews_chromium.org, Mandeep Singh Baines, anush, sosa

Base URL:
ssh://git@chromiumos-git//crosutils.git

Visibility:
Public.

Description

Add "kern_guid=%U" to the secure boot kernel command-line template. With the newest Chrome OS BIOS and bootstub, this will be expanded to the booted kernel partition's UniqueGuid, so that the kernel device can be determined with certainty, since the BIOS and kernel may enumerate drives differently. You can identify the booted kernel partition at runtime with something like this: sudo cgpt find -1 -u \ $(cat /proc/cmdline | sed 's/.*kern_guid=$[0-9a-f-]\+$.*/\1/')

Patch Set 1 #

Created: 10 years, 5 months ago

Download [raw] [tar.bz2]

		Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+1 line, -0 lines)			Patch
	M	build_kernel_image.sh	View		1 chunk	+1 line, -0 lines	0 comments	Download

Messages

Total messages: 3 (0 generated)

Expand Messages | Collapse Messages

Bill Richardson

10 years, 5 months ago (2010-07-23 01:47:43 UTC) #3

Testing:

This is a multiple-repository change set. All three of these
changes must have landed before any changes will be visible:

  http://codereview.chromium.org/3056014/show
  http://codereview.chromium.org/2832078/show
  http://codereview.chromium.org/3035020/show

AND a Chrome OS BIOS that incorporates CL 3056014 must also
be used.

If all that has happened, boot the device, log in, switch to
a console, and run

  cat /proc/cmdline

You should see a term something like this (the actual
numbers will be different):

  kern_guid=af208ed8-788f-6841-b250-8654755089a3


That GUID should correspond to the kernel partition, which
you can display using the cgpt tool. For example,

  sudo cgpt show /dev/sda

Of course, you'll want to replace /dev/sda with the actual
root device (which you can find by running "rootdev").


If the kern_guid numbers are all zeros or a simple '%U' or
is not present at all, not all changes have landed (or
something is broken).

Expand Messages | Collapse Messages