tlaurion
commented
6 years ago @mfc you can comment out GPG in boards/x230-flash/x230-flash.conf
Closed mfc closed 5 years ago
tlaurion
commented
6 years ago @mfc you can comment out GPG in boards/x230-flash/x230-flash.conf
mfc
commented
6 years ago will that prevent me from configuring U2F/Yubikey?
tlaurion
commented
6 years ago @mfc x230-flash use is only to permit internal flash of the x230.rom.
There is no current use of GPG being integrated into x230-flash.
tlaurion
commented
6 years ago I would suggest to use that branch for the moment, so that you benefit from fbwhiptail and coreboot 4.8.1 since those merges were not integrated into master yet.
flawedworld
commented
6 years ago @mfc Try increase cbfs size
merge
commented
6 years ago While it could be nice to have a 4M coreboot build with flashrom on a shell included, IMO x230-flash is a mess and causes too much confusion :)
I'd do away with it completely and document first-time installation more "generically" using runtime-Linux, or not at all. Upgrading, as in http://osresearch.net/Upgrading could probably deserve to become more streamlined though.
tlaurion
commented
6 years ago @merge : seriously, I think x230-flash should still exist but be minimal and used only to call something like flash-gui.sh to propose which 8MB firmware to flash and nothing else.
The result of this would be easy to use by anybody, UX wise, pushing inclusion of keys and all other tasks into gui-init.sh, called from the 8MB flash image anyway.
That implies a cleaning of dependencies of fbwhiptail since the image is still too big to fit 4mb, with weird dependencies being currently required while not needed for the present x230-flash use case.
TODO: Will report back blockages. Tried to reduce x230-flash footprint before but was facing issues deactivating more modules under x230-flash while introducing FBWHIPTAIL dependencies back into x230-flash board config)
@kylerankin @osresearch @flammit : I suggest that flash-gui.sh and gui-init.sh be straightened with validation of fbwhiptail being configured and output to the console otherwise, just like generic-init is doing right now. This way, FB presence would benefit UX aesthetic only, without loosing GUI guidance gained by gui-init and flash-gui. The user should'nt need manually load USB modules (usb-init), mount usb key (mount-usb) and know the path of his roms and keys to be able to flash a rom. The user shouldn't have to know exactly what scripts he needs to call in which order when not having a FB (generic-init usage as opposed to gui-init). This would permit to maintain once and deploy on every platform, FB or not.
@merge : My perspective on this is that documentation should exist only when GUI is not self-explanatory. The code documents itself, while the UX should be facilitated without having to read doc. We should focus more on user inclusion, not implying those are geeks because they need better security.
tlaurion
commented
6 years ago @flawedworld :
Try increase cbfs size
Tried in the past, but now it would be handy.
Current config/coreboot-x230.config is CONFIG_CBFS_SIZE=0x700000.
user@build-x230:~/Downloads/heads$ make BOARD=x230-flash -j4
2018-10-12 16:02:47-04:00 INSTALL-MODULE drivers/usb/host/ehci-pci.ko
2018-10-12 16:02:47-04:00 INSTALL-MODULE drivers/usb/host/ehci-hcd.ko
2018-10-12 16:02:47-04:00 INSTALL-MODULE drivers/usb/host/xhci-pci.ko
2018-10-12 16:02:47-04:00 INSTALL-MODULE drivers/usb/host/xhci-hcd.ko
2018-10-12 16:02:47-04:00 SYMLINK bin/busybox
2018-10-12 16:02:47-04:00 INSTALL-MODULE drivers/usb/storage/usb-storage.ko
2018-10-12 16:02:47-04:00 INSTALL-BIN build/pciutils-3.5.4/lspci
2018-10-12 16:02:47-04:00 INSTALL-BIN build/flashrom-1.0/flashrom
2018-10-12 16:02:47-04:00 INSTALL-BIN build/fbwhiptail/fbwhiptail
2018-10-12 16:02:47-04:00 INSTALL-BIN build/fbwhiptail/whiptail
2018-10-12 16:02:47-04:00 MAKE cbmem
make[1]: Entering directory '/home/user/Downloads/heads/build/coreboot-4.8.1/util/cbmem'
2018-10-12 16:02:47-04:00 INSTALL-LIB build/libpng-1.6.34/.libs/libpng16.so.16
make[1]: Nothing to be done for 'all'.
make[1]: Leaving directory '/home/user/Downloads/heads/build/coreboot-4.8.1/util/cbmem'
2018-10-12 16:02:47-04:00 INSTALL-LIB build/cairo-1.14.12/src/.libs/libcairo.so.2
2018-10-12 16:02:47-04:00 INSTALL-LIB build/pixman-0.34.0/pixman/.libs/libpixman-1.so.0
2018-10-12 16:02:47-04:00 INSTALL-LIB build/pciutils-3.5.4/lib/libpci.so.3.5.4
2018-10-12 16:02:47-04:00 INSTALL-LIB build/musl-1.1.15/lib/libc.so
2018-10-12 16:02:47-04:00 INSTALL-LIB build/pciutils-3.5.4/../../install/lib/libpci.so.3
2018-10-12 16:02:47-04:00 CPIO build/x230-flash/heads.cpio
2018-10-12 16:02:47-04:00 INSTALL-LIB build/zlib-1.2.11/libz.so.1
2018-10-12 16:02:47-04:00 INSTALL boards/x230-flash/x230-flash.config
2018-10-12 16:02:47-04:00 INSTALL-BIN build/coreboot-4.8.1/util/cbmem/cbmem
2018-10-12 16:02:47-04:00 HASH 20615be9af9de637db09bac79dd9fb32cf223d6d dirty x230-flash
2018-10-12 16:02:47-04:00 UNCHANGED build/x230-flash/heads.cpio
2018-10-12 16:02:52-04:00 CPIO build/x230-flash/tools.cpio
2018-10-12 16:02:52-04:00 UNCHANGED build/x230-flash/tools.cpio
2018-10-12 16:02:52-04:00 MAKE coreboot
tail /home/user/Downloads/heads/build/log/coreboot.log
-----
make[1]: Entering directory '/home/user/Downloads/heads/build/coreboot-4.8.1'
error: pathspec '3rdparty/blobs' did not match any file(s) known to git.
GEN generated/bootblock.ld
CP bootblock/arch/x86/bootblock.ld
LINK cbfs/fallback/bootblock.debug
OBJCOPY cbfs/fallback/bootblock.elf
OBJCOPY bootblock.raw.bin
Created CBFS (capacity = 4063192 bytes)
CBFS fallback/romstage
CBFS cpu_microcode_blob.bin
CBFS fallback/ramstage
CBFS cmos_layout.bin
CBFS fallback/dsdt.aml
CBFS fallback/payload
E: Could not add [../../build/x230-flash/bzImage, 4191645 bytes (4093 KB)@0x0]; too big?
E: Failed to add '../../build/x230-flash/bzImage' into ROM image.
E: Failed while operating on 'COREBOOT' region!
E: The image will be left unmodified.
make[1]: *** [Makefile.inc:920: x230-flash/coreboot.pre] Error 1
make[1]: Leaving directory '/home/user/Downloads/heads/build/coreboot-4.8.1'
make: *** [Makefile:356: /home/user/Downloads/heads/build/coreboot-4.8.1/x230-flash/.build] Error 1increasing the x230-flash cbfs size is not an option. The whole point of x230-flash is to be 4M. That's how we enable easy hardware-flashing / first-time bootstrapping.
for x230 it's 7M and could be increased even further if we choose to depend on me_cleaner being applied (which would add some more complexity to first-time flashing of course).
tlaurion
commented
6 years ago @merge : any idea how to get that little additional space needed to have CAIRO, FBWHIPTAIL in to directly call flash-gui.sh from init from x230-flash 4MB rom?
merge
commented
6 years ago at first sight from your logs, the microcode update comes to mind...
tlaurion
commented
5 years ago Or maybe whiptail only without FBWhiptail. Will try!
nemanjan00
commented
5 years ago It would be nice if someone provided coreboot.rom for x230-flash until it can be built again...
tlaurion
commented
5 years ago @nemanjan00 : simply comment out CONFIG_GPG under board/x230-flash/x230-flash.conf
nemanjan00
commented
5 years ago Thanks, integrated that into my CI. :D
tlaurion
commented
5 years ago @nemanjan00 : your CI exports coreboot.rom instead of x230-flash.rom in its "download artifacts" :)
nemanjan00
commented
5 years ago Fixed
i am not able to make
BOARD=x230-flash, this is the error i get while trying makex230-flashon debian-9 (using newest heads code commit1d27c93). if the issue is the make version (Wrong make detected: 4.1) let me know how to force it to use 4.2. thanks!