#3582 NORM Trial-3: Issues with secure boot from USB.
Zarro Boogs per Child
bugtracker at laptop.org
Tue Sep 18 20:46:42 EDT 2007
#3582: Issues with secure boot from USB.
---------------------------------+------------------------------------------
Reporter: cscott | Owner: wmb at firmworks.com
Type: defect | Status: new
Priority: normal | Milestone: Trial-3
Component: ofw - open firmware | Version:
Keywords: | Verified: 0
---------------------------------+------------------------------------------
I created a flash key with a signed forth script on it which called test-
all. The idea is to have a signed key which had diagnostic tools for use
by field technicians. I observed the following problems:
a) you need both actos.zip and runos.zip, since you don't know whether the
problematic machine has a valid activation lease. FAT doesn't have
hardlinks or symlinks. If the key is ext2, it is "hard" for people to
make.
b) The keyboard is off unless you hold down 'X' during boot. I probably
need to learn the forth magic to turn an off keyboard on. With the
keyboard off, you can't proceed past the touchpad test. (Console output is
also turned off w/o 'X', but I've previously learned the magic to reenable
it.)
c) I think (although because of the above, I have not verified) that OFW
will dump you to a prompt at the end of the script. This isn't acceptable
for 'secure boot'. We should either hang, crash, power off, or use a
"press any key to reboot" prompt when the loaded script finishes.
(Picking any one of these options doesn't preclude the script from
offering one of the others itself.)
--
Ticket URL: <https://dev.laptop.org/ticket/3582>
One Laptop Per Child <https://dev.laptop.org>
OLPC bug tracking system
More information about the Bugs
mailing list