grub

~dannf/grub:tftp-and-img-base

Git
lp:~dannf/grub
tftp-and-img-base

Last commit made on 2020-11-09

Get this branch:: git clone -b tftp-and-img-base https://git.launchpad.net/~dannf/grub

Only dann frazier can upload to this branch. If you are dann frazier please log in for upload directions.

Branch merges

Merged into ~ubuntu-core-dev/grub/+git/ubuntu:ubuntu at revision d9e8e943f2f8cb65c0e4c088966df8a1ed00e36f

Julian Andres Klode: Approve on 2020-11-10

Diff: 4181 lines (+578/-393)

118 files modified

debian/.git-dpm (+2/-2)
debian/changelog (+9/-0)
debian/patches/0074-uefi-firmware-rename-fwsetup-menuentry-to-UEFI-Firmw.patch (+1/-1)
debian/patches/0075-smbios-Add-a-linux-argument-to-apply-linux-modalias-.patch (+1/-1)
debian/patches/0076-ubuntu-Make-the-linux-command-in-EFI-grub-always-try.patch (+2/-2)
debian/patches/0077-ubuntu-Update-the-linux-boot-protocol-version-check.patch (+1/-1)
debian/patches/0081-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch (+1/-1)
debian/patches/0082-safemath-Add-some-arithmetic-primitives-that-check-f.patch (+3/-3)
debian/patches/0083-calloc-Make-sure-we-always-have-an-overflow-checking.patch (+7/-7)
debian/patches/0084-calloc-Use-calloc-at-most-places.patch (+86/-86)
debian/patches/0085-malloc-Use-overflow-checking-primitives-where-we-do-.patch (+23/-23)
debian/patches/0086-iso9660-Don-t-leak-memory-on-realloc-failures.patch (+1/-1)
debian/patches/0087-font-Do-not-load-more-than-one-NAME-section.patch (+1/-1)
debian/patches/0088-gfxmenu-Fix-double-free-in-load_image.patch (+1/-1)
debian/patches/0089-lzma-Make-sure-we-don-t-dereference-past-array.patch (+1/-1)
debian/patches/0090-tftp-Do-not-use-priority-queue.patch (+1/-1)
debian/patches/0091-script-Remove-unused-fields-from-grub_script_functio.patch (+1/-1)
debian/patches/0092-script-Avoid-a-use-after-free-when-redefining-a-func.patch (+4/-4)
debian/patches/0093-hfsplus-fix-two-more-overflows.patch (+1/-1)
debian/patches/0094-lvm-fix-two-more-potential-data-dependent-alloc-over.patch (+1/-1)
debian/patches/0095-efi-fix-some-malformed-device-path-arithmetic-errors.patch (+4/-4)
debian/patches/0096-linuxefi-fail-kernel-validation-without-shim-protoco.patch (+4/-4)
debian/patches/0097-Fix-a-regression-caused-by-efi-fix-some-malformed-de.patch (+1/-1)
debian/patches/0098-efi-Fix-use-after-free-in-halt-reboot-path.patch (+9/-9)
debian/patches/0099-chainloader-Avoid-a-double-free-when-validation-fail.patch (+1/-1)
debian/patches/0100-relocator-Protect-grub_relocator_alloc_chunk_addr-in.patch (+4/-4)
debian/patches/0101-relocator-Protect-grub_relocator_alloc_chunk_align-m.patch (+13/-13)
debian/patches/0102-relocator-Fix-grub_relocator_alloc_chunk_align-top-m.patch (+1/-1)
debian/patches/0103-linux-loader-avoid-overflow-on-initrd-size-calculati.patch (+1/-1)
debian/patches/0104-linux-Fix-integer-overflows-in-initrd-size-handling.patch (+1/-1)
debian/patches/0105-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch (+1/-1)
debian/patches/at_keyboard-module-init.patch (+1/-1)
debian/patches/bash-completion-drop-have-checks.patch (+1/-1)
debian/patches/blacklist-1440x900x32.patch (+1/-1)
debian/patches/bootp-new-net_bootp6-command.patch (+3/-3)
debian/patches/bootp-process-dhcpack-http-boot.patch (+2/-2)
debian/patches/cherrypick-lsefisystab-define-smbios3.patch (+2/-2)
debian/patches/cherrypick-lsefisystab-show-dtb.patch (+1/-1)
debian/patches/cherrypick-smbios-module.patch (+7/-7)
debian/patches/core-in-fs.patch (+1/-1)
debian/patches/default-grub-d.patch (+2/-2)
debian/patches/disable-floppies.patch (+1/-1)
debian/patches/dpkg-version-comparison.patch (+1/-1)
debian/patches/efi-variable-storage-minimise-writes.patch (+8/-8)
debian/patches/efinet-set-dns-from-uefi-proto.patch (+2/-2)
debian/patches/efinet-set-network-from-uefi-devpath.patch (+2/-2)
debian/patches/efinet-uefi-ipv6-pxe-support.patch (+2/-2)
debian/patches/gettext-quiet.patch (+1/-1)
debian/patches/gfxpayload-dynamic.patch (+6/-6)
debian/patches/gfxpayload-keep-default.patch (+2/-2)
debian/patches/grub-install-backup-and-restore.patch (+2/-2)
debian/patches/grub-install-pvxen-paths.patch (+1/-1)
debian/patches/grub-legacy-0-based-partitions.patch (+1/-1)
debian/patches/grub.cfg-400.patch (+1/-1)
debian/patches/ieee1275-clear-reset.patch (+1/-1)
debian/patches/ignore-grub_func_test-failures.patch (+1/-1)
debian/patches/insmod-xzio-and-lzopio-on-xen.patch (+2/-2)
debian/patches/install-efi-fallback.patch (+1/-1)
debian/patches/install-efi-ubuntu-flavours.patch (+1/-1)
debian/patches/install-locale-langpack.patch (+1/-1)
debian/patches/install-powerpc-machtypes.patch (+6/-6)
debian/patches/install-stage2-confusion.patch (+1/-1)
debian/patches/maybe-quiet.patch (+10/-10)
debian/patches/mkconfig-loopback.patch (+3/-3)
debian/patches/mkconfig-mid-upgrade.patch (+1/-1)
debian/patches/mkconfig-nonexistent-loopback.patch (+2/-2)
debian/patches/mkconfig-other-inits.patch (+2/-2)
debian/patches/mkconfig-recovery-title.patch (+8/-8)
debian/patches/mkconfig-signed-kernel.patch (+2/-2)
debian/patches/mkconfig-ubuntu-distributor.patch (+2/-2)
debian/patches/mkconfig-ubuntu-recovery.patch (+4/-4)
debian/patches/mkrescue-efi-modules.patch (+1/-1)
debian/patches/net-read-bracketed-ipv6-addr.patch (+4/-4)
debian/patches/no-devicetree-if-secure-boot.patch (+2/-2)
debian/patches/no-insmod-on-sb.patch (+3/-3)
debian/patches/olpc-prefix-hack.patch (+1/-1)
debian/patches/ppc64el-disable-vsx.patch (+1/-1)
debian/patches/probe-fusionio.patch (+2/-2)
debian/patches/quick-boot-lvm.patch (+1/-1)
debian/patches/quick-boot.patch (+8/-8)
debian/patches/restore-mkdevicemap.patch (+6/-6)
debian/patches/series (+2/-0)
debian/patches/skip-grub_cmd_set_date.patch (+1/-1)
debian/patches/sleep-shift.patch (+2/-2)
debian/patches/tftp-rollover-block-counter.patch (+80/-0)
debian/patches/ubuntu-add-devicetree-command-support.patch (+1/-1)
debian/patches/ubuntu-add-initrd-less-boot-fallback.patch (+5/-5)
debian/patches/ubuntu-boot-from-multipath-dependent-symlink.patch (+1/-1)
debian/patches/ubuntu-dejavu-font-path.patch (+1/-1)
debian/patches/ubuntu-dont-verify-loopback-images.patch (+1/-1)
debian/patches/ubuntu-efi-allow-loopmount-chainload.patch (+3/-3)
debian/patches/ubuntu-efi-console-set-text-mode-as-needed.patch (+1/-1)
debian/patches/ubuntu-fix-lzma-decompressor-objcopy.patch (+1/-1)
debian/patches/ubuntu-flavour-order.patch (+2/-2)
debian/patches/ubuntu-grub-install-extra-removable.patch (+1/-1)
debian/patches/ubuntu-install-signed.patch (+1/-1)
debian/patches/ubuntu-linuxefi-arm64-set-base-addr.patch (+68/-0)
debian/patches/ubuntu-linuxefi-arm64.patch (+1/-1)
debian/patches/ubuntu-linuxefi.patch (+30/-30)
debian/patches/ubuntu-mkconfig-leave-breadcrumbs.patch (+1/-1)
debian/patches/ubuntu-recovery-dis_ucode_ldr.patch (+2/-2)
debian/patches/ubuntu-resilient-boot-boot-order.patch (+6/-6)
debian/patches/ubuntu-resilient-boot-ignore-alternative-esps.patch (+1/-1)
debian/patches/ubuntu-shorter-version-info.patch (+1/-1)
debian/patches/ubuntu-skip-disk-by-id-lvm-pvm-uuid-entries.patch (+1/-1)
debian/patches/ubuntu-speed-zsys-history.patch (+1/-1)
debian/patches/ubuntu-support-initrd-less-boot.patch (+4/-4)
debian/patches/ubuntu-temp-keep-auto-nvram.patch (+1/-1)
debian/patches/ubuntu-tpm-unknown-error-non-fatal.patch (+1/-1)
debian/patches/ubuntu-zfs-enhance-support.patch (+3/-3)
debian/patches/uefi-firmware-setup.patch (+2/-2)
debian/patches/uefi-secure-boot-cryptomount.patch (+1/-1)
debian/patches/vsnprintf-upper-case-hex.patch (+1/-1)
debian/patches/vt-handoff.patch (+3/-3)
debian/patches/wubi-no-windows.patch (+1/-1)
debian/patches/zpool-full-device-name.patch (+1/-1)
grub-core/loader/efi/linux.c (+15/-0)
grub-core/net/tftp.c (+14/-3)

Branch information

Name:: tftp-and-img-base

Repository:: lp:~dannf/grub

Recent commits

d9e8e94... by dann frazier on 2020-11-09

merge patched-ubuntu into ubuntu

633e57c... by Javier Martinez Canillas <email address hidden> on 2020-09-10

tftp: Roll-over block counter to prevent data packets timeouts

Commit 781b3e5efc3 (tftp: Do not use priority queue) caused a regression
when fetching files over TFTP whose size is bigger than 65535 * block size.

  grub> linux /images/pxeboot/vmlinuz
  grub> echo $?
  0
  grub> initrd /images/pxeboot/initrd.img
  error: timeout reading '/images/pxeboot/initrd.img'.
  grub> echo $?
  28

It is caused by the block number counter being a 16-bit field, which leads
to a maximum file size of ((1 << 16) - 1) * block size. Because GRUB sets
the block size to 1024 octets (by using the TFTP Blocksize Option from RFC
2348 [0]), the maximum file size that can be transferred is 67107840 bytes.

The TFTP PROTOCOL (REVISION 2) RFC 1350 [1] does not mention what a client
should do when a file size is bigger than the maximum, but most TFTP hosts
support the block number counter to be rolled over. That is, acking a data
packet with a block number of 0 is taken as if the 65356th block was acked.

It was working before because the block counter roll-over was happening due
an overflow. But that got fixed by the mentioned commit, which led to the
regression when attempting to fetch files larger than the maximum size.

To allow TFTP file transfers of unlimited size again, re-introduce a block
counter roll-over so the data packets are acked preventing the timeouts.

[0]: https://tools.ietf.org/html/rfc2348
[1]: https://tools.ietf.org/html/rfc1350

Fixes: 781b3e5efc3 (tftp: Do not use priority queue)

Suggested-by: Peter Jones <email address hidden>
Signed-off-by: Javier Martinez Canillas <email address hidden>
Reviewed-by: Daniel Kiper <email address hidden>

Bug-Ubuntu: https://bugs.launchpad.net/bugs/1900773
Origin: upstream, https://git.savannah.gnu.org/cgit/grub.git/commit/?id=a6838bbc6726ad624bd2b94991f690b8e9d23c69
Last-Updated: 2020-11-09
Patch-Name: tftp-rollover-block-counter.patch

97097f6... by Javier Martinez Canillas <email address hidden> on 2020-04-23

efi: Set image base address before jumping to the PE/COFF entry point

Upstream GRUB uses the EFI LoadImage() and StartImage() to boot the Linux
kernel. But our custom EFI loader that supports Secure Boot instead uses
the EFI handover protocol (for x86) or jumping directly to the PE/COFF
entry point (for aarch64).

This is done to allow the bootloader to verify the images using the shim
lock protocol to avoid booting untrusted binaries.

Since the bootloader loads the kernel from the boot media instead of using
LoadImage(), it is responsible to set the Loaded Image base address before
booting the kernel.

Otherwise the kernel EFI stub will complain that it was not set correctly
and print the following warning message:

EFI stub: ERROR: FIRMWARE BUG: efi_loaded_image_t::image_base has bogus value

Resolves: rhbz#1825411

Signed-off-by: Javier Martinez Canillas <email address hidden>
[ dannf: Offset adjustment to apply to Ubuntu's GRUB ]

Bug-Ubuntu: https://bugs.launchpad.net/bugs/1900774
Origin: https://github.com/rhboot/grub2/commit/1d5ef08216edec4d31d0e10cfdb30b5ebfef7a45
Last-Updated: 2020-11-09
Patch-Name: ubuntu-linuxefi-arm64-set-base-addr.patch

13b8f84... by Dimitri John Ledkov on 2020-10-01

releasing package grub2 version 2.04-1ubuntu35

5649e23... by Dimitri John Ledkov on 2020-10-01

Do not finalize params twice on arm64. LP: #1897819

0511ec4... by Dimitri John Ledkov on 2020-10-01

merge patched-ubuntu into ubuntu

26335cb... by Dimitri John Ledkov on 2020-09-14

configure.ac: one more dejavu font search path

Debian/Ubuntu ship dejavu font in a subdir of truetype.

Patch-Name: ubuntu-dejavu-font-path.patch

f38282a... by Julian Andres Klode on 2020-09-11

Cherry-pick back parts of "Load arm with SB enabled."

These parts got lost in our 2.04 rebase, let's add them back.

Pick (grub_efi_physical_address_t)(grub_efi_uintn_t) cast from
fedora-34 instead, it seems to cause compilation error on armhf
to not do the (grub_efi_uintn_t) cast first.

Bug-Ubuntu: https://bugs.launchpad.net/1862279
Origin: vendor, https://github.com/rhboot/grub2/commit/2786ab864cf00c15123320671f653e9a36ba12b4
Patch-Name: ubuntu-linuxefi-arm64.patch

e07b23a... by Dimitri John Ledkov on 2020-09-28

postinst.in, grub-multi-install: fix logic of skipping installing onto any device, if one chose to not install bootloader on any device. LP: #1896608

6757868... by Dimitri John Ledkov on 2020-09-14

releasing package grub2 version 2.04-1ubuntu34

grub

~dannf/grub:tftp-and-img-base

Branch merges

Related source package recipes

Related snap packages

Related charm recipes

Branch information

Recent commits