The prospect of Windows 8’s planned Secure Boot restrictions has caused no end of controversy in the Linux world, where distributors and users of the free and open source operating system have been struggling to figure out just what it’s all going to mean for those who don’t embrace Windows.
“The purpose of this email is to widen the pool of people who are playing with UEFI Secure boot,” began a message late last month from James Bottomley, chair of the Linux Foundation’s Technical Advisory Board.
Based on Intel’s Tianocore
It turns out Bottomley has created a platform Linux developers can use to get around Secure Boot–specifically, a boot system based on Intel’s Tianocore, which is an open source implementation of the Unified Extensible Firmware Interface (UEFI).
The Intel Tianocore project just recently added the Secure Boot facility to its UEFI ROM images, he noted.
Also posted in a repository by Bottomley are a set of tools that can be used to sign EFI binaries, he said.
‘Far From Rock Solid’
The Linux Foundation Technical Advisory Board began looking into the situation “because it turns out to be rather difficult to lay your hands on real UEFI Secure Boot enabled hardware,” Bottomley pointed out.
This new contribution, however, is still “very alpha,” he warned. “The Tianocore firmware that does Secure Boot is only a few weeks old, and the sbsigning tools weren’t really working up until yesterday, so this is very far from rock solid.”
Still, after two distributions each made an early–and controversial–attempt at proposing a solution, it’s exciting to see this new, higher-level effort.
As Bottomley notes, this new virtual platform could give the various Linux distributions a new basis for experimentation that will help them come up with innovative solutions of their own.