From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0.migadu.com ([2001:41d0:403:58f0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms8.migadu.com with LMTPS id iK0nEfTPymVvFAAAqHPOHw:P1 (envelope-from ) for ; Tue, 13 Feb 2024 03:12:04 +0100 Received: from aspmx1.migadu.com ([2001:41d0:403:58f0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0.migadu.com with LMTPS id iK0nEfTPymVvFAAAqHPOHw (envelope-from ) for ; Tue, 13 Feb 2024 03:12:04 +0100 X-Envelope-To: larch@yhetil.org Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=lunabee.space header.s=purelymail2 header.b=sfattE12; dkim=fail ("headers rsa verify failed") header.d=purelymail.com header.s=purelymail2 header.b=BJOXcbns; spf=pass (aspmx1.migadu.com: domain of "guix-patches-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-patches-bounces+larch=yhetil.org@gnu.org"; dmarc=pass (policy=none) header.from=gnu.org ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1707790324; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding:resent-cc: resent-from:resent-sender:resent-message-id:in-reply-to:in-reply-to: references:references:list-id:list-help:list-unsubscribe: list-subscribe:list-post:dkim-signature; bh=MsHE7c++VQKz0Lo5RQYvdqOFD6VSWcSqX/ZlPBR0D2I=; b=neU3sBF8p8Xv68LKHXyHtJkjzPo9f06TYZA9k/Iis7KBUbPXHnIidiatuaTAtWojnjsegs qh4jIRPLD6QiiWVJcc1sHLT9WKt+0EPDu8Td4ReB0huHs1D9GwrOqDFbgF6LAZS5aG1DqS 9M2Vwga1HrI+IlhKQ1JXvIvOzDYq4vLYGxwn5iiEcSOYq1oYUgme4HyCZ8kGbe/D4lUFMx 5IKj24jUUmWmgLmS8oz/rgyiH5jcQJ1K7Dbn6znaPKJA0QHK9CSzKxU8pPhkdadrdgWyXR SH7xXF4WHKW5vzXDqfW7dP4cVoGHWN4ZQt6rmVOZRaAQaLPmF+oHWNMjpVaxUg== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=lunabee.space header.s=purelymail2 header.b=sfattE12; dkim=fail ("headers rsa verify failed") header.d=purelymail.com header.s=purelymail2 header.b=BJOXcbns; spf=pass (aspmx1.migadu.com: domain of "guix-patches-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-patches-bounces+larch=yhetil.org@gnu.org"; dmarc=pass (policy=none) header.from=gnu.org ARC-Seal: i=1; s=key1; d=yhetil.org; t=1707790324; a=rsa-sha256; cv=none; b=r5SddSlyvK3exuLFidvx7C9hiTP5PlrDuaMD0GMVjOto9A+qwcuJXUYXjVsIAUsONL1BIG F8zrMG3eLjogBgZ3Xjchkvou5BmCEtkfhX5BG1u3JqglbKoYXPvpDucOE87K5B2QbRZUC2 N/Ome3M/cZUZ8gIiDk1EasxLQPblcNC/k5AWx7+jo5caQ9nxpjZF2JNB08GVEAJ/wWeVBr S9R2FSoZSCfft35uIGXsWm/12uipIrPisd6zj48ql/FDJHBsjBjUe4ychM0f7dVr4sdUF1 r+y2bDZvjvC9U89nTIUYW5M+nWr3cq2t9QtsWjN83sRwFEi5Uxk4xZaG++L2PA== Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id A1BBC3CE28 for ; Tue, 13 Feb 2024 03:12:03 +0100 (CET) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1rZiGx-0001gy-7K; Mon, 12 Feb 2024 21:11:47 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1rZiGv-0001gL-8c for guix-patches@gnu.org; Mon, 12 Feb 2024 21:11:45 -0500 Received: from debbugs.gnu.org ([2001:470:142:5::43]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1rZiGv-0005hy-0N for guix-patches@gnu.org; Mon, 12 Feb 2024 21:11:45 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1rZiHB-0003HX-Ka for guix-patches@gnu.org; Mon, 12 Feb 2024 21:12:01 -0500 X-Loop: help-debbugs@gnu.org Subject: [bug#68524] [PATCH v2 2/2] gnu: bootloaders: Add uefi-uki-bootloader. Resent-From: Lilah Tascheter Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Tue, 13 Feb 2024 02:12:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 68524 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: 68524@debbugs.gnu.org Cc: Vagrant Cascadian , Hilton Chain , Herman Rimm , Efraim Flashner Received: via spool by 68524-submit@debbugs.gnu.org id=B68524.170779031212585 (code B ref 68524); Tue, 13 Feb 2024 02:12:01 +0000 Received: (at 68524) by debbugs.gnu.org; 13 Feb 2024 02:11:52 +0000 Received: from localhost ([127.0.0.1]:37972 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1rZiH2-0003Gv-En for submit@debbugs.gnu.org; Mon, 12 Feb 2024 21:11:52 -0500 Received: from sendmail.purelymail.com ([34.202.193.197]:42754) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1rZiGz-0003GI-Nf for 68524@debbugs.gnu.org; Mon, 12 Feb 2024 21:11:50 -0500 DKIM-Signature: a=rsa-sha256; b=sfattE12iY8Ece6X2yQE5odAuBwXjUsKLE3/hG5PnWzusm23O4VbDeNAiRfSZTNdRhT1idB2SDIQft6CZSKbSegabHDseyWvhfNQoseIaXLWZaaGspuk5uRxEoo6RZIBOfINKbSbljdrxpUdLLiyIC9CpgPnlpRcfnjAzYsDa9ags5Ae4T87SnDk+UHVifsqNPdsigdH3W1UjsNOWQYIH4pdy2KFvs6nwhna1KdXxVATT1I64IIKHkzmh6is4DUVXzf7cB0lBdYj/bdhJJd3bRxllL9f6mLFbXB1WSONqXHPG4vDmEnhq19HnieAOZzmWIw1a3SeIM/8dmK0tX1ctA==; s=purelymail2; d=lunabee.space; v=1; bh=y5aeoexECaySDA9hrGQ//bb5NtUi+wNC6sd3aC74J+o=; h=Received:Subject:From:To; DKIM-Signature: a=rsa-sha256; b=BJOXcbnshLUy23EP830EeKZlKX0TeygRw9dAT29D3YBuaU4EgQpjhKgXmJ4ubgWM0c7yF8ASxs+JRF382gUMLCbf6UuifTBXgUEMq/utxPn7GM6ZQv3LhucrbAdDRFQw+kKL9fmfI/z8wU1wF4L46E43ht56SLLFkdGAgEGcwgqpqQfysse8C7hXW3LtVAZdGK7H1xqLKzar82Ms7L5uxTvnH9ct3XHVNnblO2NiA/rAlvq+u9yKB4J3q/wR9Rmttf7AJFkIMpRghKSIUjFDL+z/iLlzBzQRujGHNmdl3kq9HYd3EvOOO1f6XVKgdiMTtvkPzv8+/5ZDldQeeg54RQ==; s=purelymail2; d=purelymail.com; v=1; bh=y5aeoexECaySDA9hrGQ//bb5NtUi+wNC6sd3aC74J+o=; h=Feedback-ID:Received:Subject:From:To; Feedback-ID: 8937:2070:null:purelymail X-Pm-Original-To: 68524@debbugs.gnu.org Received: by smtp.purelymail.com (Purelymail SMTP) with ESMTPSA id 1344397455; (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384); Tue, 13 Feb 2024 02:11:20 +0000 (UTC) Message-ID: <05032c80273155fb72fad87d3fedb36fa73c9a28.camel@lunabee.space> Date: Mon, 12 Feb 2024 20:11:18 -0600 In-Reply-To: <87a5o6n8v9.wl-hako@ultrarare.space> References: <22f2967a552454baade056c60a37c02e36a048a5.1706435500.git.lilah@lunabee.space> <87a5o6n8v9.wl-hako@ultrarare.space> Organization: Dissociation for Heresiographal Computation Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable User-Agent: Evolution 3.46.4 MIME-Version: 1.0 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , From: Lilah Tascheter via Guix-patches Reply-To: Lilah Tascheter Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org Sender: guix-patches-bounces+larch=yhetil.org@gnu.org X-Migadu-Flow: FLOW_IN X-Migadu-Country: US X-Migadu-Spam-Score: -6.97 X-Migadu-Queue-Id: A1BBC3CE28 X-Spam-Score: -6.97 X-Migadu-Scanner: mx11.migadu.com X-TUID: sWODgEFTL2cN heyo! thanks for the review :) I'll submit a revised patch, but had a question be= fore I get to work on it. > I tried to adjust uki.scm before commenting, so here's a paste of my > adjusted version, in case some of my comments are not expressed clearly: > https://paste.sr.ht/~hako/62bb15503290273e869520e12466718ebb82e000 nighttime sky I didn't realize reinstall-bootloader existed. shit. at this point, I don't think the install-uki.scm hack is a good idea. to ge= t this fully functioning, will probably have to do some more invasive edits t= o the bootloader system, since the current one pretty much assumes an extlinux/grubalike (which is what necessitated install-uki in the first pla= ce). RFC on the following plan: * add secure-boot-cert and secure-boot-key fields to bootloader-configurati= on. * deprecate configuration-file and configuration-file-generator in the bootloader struct, and instead create an install-configuration-file field= , similar to install-bootloader. default procedure will be to do the curren= t install-boot-cfg (gnu build install) using the deprecated fields. * rework uki.scm to, instead, run efibootmgr in install-configuration-file = and install the uki.efi files in install-bootloader. remove the separation be= tween uefi-uki-signed-bootloader and uefi-uki-bootloader, instead working off t= he new bootloader-configuration fields. this plan should work with reinstall-bootloader, even though it uses the de= fault bootloader-configuration, since files are only signed during installation proper. opinions? thanks, lilah