systemd-stub feature parity

[RaitoBezarius]

We would like to have similar design and features as systemd-stub, ideally, lanzastub should be a drop-in replacement tailored for NixOS:

Random seed

• [ ] Support

SMBIOS

• [ ] Load command line via SMBIOS

Addons support

• [ ] Load command line addons

Sections in the stub

• [ ] DTB support
• [ ] Bootsplash support
• [x] Expected TPM2 PCR signatures
• [x] TPM2 PCR public key support

Companion files

• [x] Local credentials files specific to that generation
• [x] System extensions images
• [x] Global credentials

EFI variables passed to the OS

• [x] LoaderDevicePartUUID
• [x] LoaderFirmwareInfo
• [x] LoaderFirmwareType
• [x] LoaderImageIdentifier
• [x] StubInfo
• [x] StubFeatures
• [x] StubPcrKernelImage
• [x] StubPcrKernelParameters
• [x] StubPcrInitRDSysExts

[nikstur]

Working on this here makes it much harder for other people, especially systemd upstream but also maintainers of other distros to work on the next gen sd-stub in Rust. I'd rather see development happen somewhere else (maybe here: https://github.com/nikstur/sd-stub-rs) and then moved into the systemd namespace as soon as possible.

[nikstur]

This is a useful tracker, thx @RaitoBezarius But since we won't use it here, I closed the issue.

[RaitoBezarius]

As I am going to implement all of this first, then move it to sd-stub, I will track it here first.

[RaitoBezarius]

DTB support and bootsplash are hard to do, they are blocked on upstream support.

[clhodapp]

@RaitoBezarius which upstream?

[RaitoBezarius]

@RaitoBezarius which upstream?

uefi-rs :)

DTB is fixed now, bootsplash is still blocked.