(github.com)

131 points hasheddan | 1 comments | 10 Oct 25 21:02 UTC | HN request time: 0s | source

Show context

treffer ◴[11 Oct 25 10:25 UTC] No.45547992[source]▶

>>45543746 (OP) #

Interesting. But who is OpenDevicePartnership?

Looking at the members on the repository this seems to be a Microsoft project?

replies(1): >>45548383 #

mariuolo ◴[11 Oct 25 11:45 UTC] No.45548383[source]▶

>>45547992 #

Can one even do UEFI firmware projects without at least keeping Microsoft in the loop?

As far as I remmeber, they control the issuance of keys for bootloaders. Or is this project supposed to do away with that?

replies(5): >>45551246 #>>45551954 #>>45670901 #>>45672708 #>>45674194 #

1. mjg59 ◴[22 Oct 25 17:51 UTC] No.45672708[source]▶

>>45548383 #

If you want to implement UEFI secure boot and verify existing signed objects then you need to incorporate Microsoft-issued certificates into your firmware, but that's very different from needing Microsoft to be in the loop - the certificates are public, you can download them and stick them in anything.

↑

Patina: a Rust implementation of UEFI firmware