UKI section offsets are hard-coded #2275
Labels
bug
Our bugs
Comments
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 13, 2023
Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended [here](systemd/systemd@0fa2cac#commitcomment-76747223) Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 13, 2023
Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended here: (systemd/systemd@0fa2cac#commitcomment-76747223) Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 13, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended here: (systemd/systemd@0fa2cac#commitcomment-76747223) * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 13, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended ee https://wiki.archlinux.org/title/Unified_kernel_image#Manually * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
3 tasks
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 14, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended ee https://wiki.archlinux.org/title/Unified_kernel_image#Manually * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 14, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended ee https://wiki.archlinux.org/title/Unified_kernel_image#Manually * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 14, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended ee https://wiki.archlinux.org/title/Unified_kernel_image#Manually * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 14, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended ee https://wiki.archlinux.org/title/Unified_kernel_image#Manually * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 16, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 16, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 16, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 16, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 16, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 16, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
johannbg
pushed a commit
that referenced
this issue
Mar 20, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes #2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
keentux
added a commit
to keentux/dracut
that referenced
this issue
Mar 22, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
aafeijoo-suse
pushed a commit
to aafeijoo-suse/dracut
that referenced
this issue
Jun 15, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com> (cherry picked from commit f32e95b)
pvalena
pushed a commit
to pvalena/dracut
that referenced
this issue
Jul 23, 2023
* Uefi section are creating by `objcopy` with hardcoded sections offset. This commit allow to have the correct offset between each part of the efi file, needed to create an UKI. Offsets are simply calculated so no sections overlap, as recommended in https://wiki.archlinux.org/title/Unified_kernel_image#Manually Moreover, efi stub file's header is parsed to apply the correct offsets according the section alignment factor. * Remove EFI_SECTION_VMA_INITRD, no need anymore as initrd section offset dynamically calculated Fixes dracutdevs#2275 Signed-off-by: Valentin Lefebvre <valentin.lefebvre@suse.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Looking at
dracut.shI can see that dracut is still hard-coding PE section offsets despite the warning in v252 release notes. This will cause overlapping PE sections at runtime should the stub's sections grow too much (our ci has been bitten by this, which is why ukify came about). It also fails to mark the.linuxsection as executable (on x86 it may be run in-place if the kernel is too old). Furthermore, a future systemd release may have EFI binaries with a non-zero image base. These hard-coded offsets will result in broken images that will be refused by firmware.You could fix all this and gain extra features by using ukify, but I guess there is a case of NIH going on.
The text was updated successfully, but these errors were encountered: