Daniel Kiper

Please note that this talk has been cancelled as Daniel Kiper is no longer able to attend FOSDEM.

The presentation will discuss current state of GRUB upstream development.

The presentation will discuss current state of GRUB upstream development.

Warm welome to the Open Source Firmware, BMC and Bootloader devroom.

The presentation will discuss current state of GRUB upstream development and cooperation with distributions.

The first part of presentation will be focusing on last year, current and future GRUB development efforts. The second part will discuss cooperation between GRUB upstream and distros. In general it will show current progress in the project and main pain points. One of the goals of the presentation is to solicit some help from the community. Maintainers are quite busy and they are not able to solve all issues themselves. So, help from others is greatly appreciated. At the end of presentation Q&A session is planned.

Ampere Computing is a relatively new entrant into the server space, recently launching its 80-core ARM64 Altra processor on the Mt. Jade platform. In this talk, I'll cover the status of various open-source projects such as EDK2, LinuxBoot, OpenBMC and OpenOCD on Ampere's processors and platforms. For those interested in learning more about Ampere and our engagement in open-source firmware, this is the talk for you.

The presentation will discuss current state of GRUB upstream development and cooperation with distributions.

The first half of presentation will be focusing on last year, current and future development efforts. The second half will discuss cooperation between GRUB upstream and distros. In general it will show current progress in the project and main pain points. One of the goals of the presentation is to solicit some help from the community. Maintainers are quite busy and they are not able to solve all issues themselves. So, help from others is greatly appreciated. At the end of presentation Q&A session is planned.

For the last several years, hypervisors have played a key role in platform security by reducing the possible attack surface. At the same time, the hype surrounding computing and Internet of Things Gateways has led to an increase in network appliance devices. Our target was to create a less-insecure virtual network appliance using TrenchBoot, Trusted Platform Module 2.0 and AMD SKINIT Dynamic Root of Trust for Measurement to establish a Xen hypervisor with a meta-virtualized pfSense firewall. We are going to present it with an update of the status of support of TrenchBoot for AMD processors. This appliance is supported by are supported by apu2, a reliable low-SWaP x86 device from Swiss OEM PC Engines. It can be used as a Single Office / Home Office firewall or an industrial edge device and has mostly open-source hardware, coreboot firmware, mPCIe extensibility and an extended support lifecycle for the embedded Central Processing Unit and motherboard. In this talk, we will show how to create a system, which enables a significant portion of computations to the edge devices while maintaining security. Using a simple, well-known platform, we will conduct a secure boot using the Static Root of Trust for Measurement with coreboot, move to the Dynamic Root of Trust for Measurement by SKINIT in TrenchBoot and use all of this to provide a complete chain of trust for the Xen hypervisor, a virtual firewall appliance isolated by an input–output memory management unit (IOMMU) from the physical network interface controller (NIC) devices. We will present benchmark data on virtualization overhead, explain how this complexity can still be practical and outline the value of this stack. In the second part of presentation we will discuss current status of Intel TXT development in the GRUB and Linux kernel.

The presentation will discuss current state of GRUB upstream development and cooperation with distributions.

The first half of presentation will be focusing on last year and current development efforts. The second half will discuss cooperation between GRUB upstream and distros. In general it will show current progress in the project and main pain points. One of the goals of the presentation is to solicit some help from the community. Maintainers are quite busy and they are not able to solve all issues themselves. So, help from others is greatly appreciated. At the end of presentation Q&A session is planned.

The presentation will discuss current state of GRUB upstream development and cooperation with distributions.

Some time ago the GRUB maintainership has changed to streamline project maintenance. Right now maintainers try to improve various developments aspects including patch review process and cooperation with distros. So, they would like to highlight current challenges and know better what are the current distro requirements in regards to GRUB.

The presentation will show GRUB maintainers point of view in regards to cooperation. It will also discuss the issues related to the patches in distros which have never been usptreamd. The GRUB maintainers have some solution proposals for the problem which will be presented too. However, they also expect that distro maintainers will express their opinions during Q&A session.