[PATCH v8 00/10] UEFI NX support and NX Linux loader using shim loader protocol

[Mate Kukri]

This consists of:
- Derivative of Fedora NX patches to make GRUB itself work under NX.
- Julian Andres Klode's loader framework patch (used in Debian and Ubuntu for 
the downstream loader).
- Shim loader protocol integration using the above loader framework.
- Check to disallow using the legacy Linux loader when NX is required.

Julian Andres Klode (1):
  efi: Provide wrappers for load_image, start_image, unload_image

Mate Kukri (6):
  modules: load module sections at page-aligned addresses
  nx: add memory attribute get/set API
  nx: set page permissions for loaded modules.
  nx: set the nx compatible flag in EFI GRUB images
  efi: Use shim's loader protocol for EFI image verification and loading
  efi: Disallow fallback to legacy Linux loader when shim says NX is
    required.

Peter Jones (3):
  modules: make .module_license read-only
  modules: strip .llvm_addrsig sections and similar.
  modules: Don't allocate space for non-allocable sections.

 grub-core/genmod.sh.in             |   5 +-
 grub-core/kern/dl.c                | 139 +++++++++++++++++++++++++----
 grub-core/kern/efi/efi.c           |  57 ++++++++++++
 grub-core/kern/efi/mm.c            | 109 ++++++++++++++++++++++
 grub-core/kern/efi/sb.c            |  59 +++++++-----
 grub-core/loader/efi/chainloader.c |  13 ++-
 grub-core/loader/efi/linux.c       |  40 +++------
 include/grub/dl.h                  |  11 ++-
 include/grub/efi/api.h             |  32 +++++++
 include/grub/efi/efi.h             |  42 +++++++++
 include/grub/efi/pe32.h            |   2 +
 include/grub/efi/sb.h              |   5 +-
 include/grub/mm.h                  |  35 ++++++++
 util/mkimage.c                     |   1 +
 14 files changed, 471 insertions(+), 79 deletions(-)

-- 
2.39.2