From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from list by lists.gnu.org with archive (Exim 4.90_1)
	id 1oRbFc-0008Uv-ER
	for mharc-grub-devel@gnu.org; Fri, 26 Aug 2022 11:28:06 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:43298)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <glaubitz@zedat.fu-berlin.de>)
 id 1oRbFP-0008QS-6K
 for grub-devel@gnu.org; Fri, 26 Aug 2022 11:27:52 -0400
Received: from outpost1.zedat.fu-berlin.de ([130.133.4.66]:54879)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <glaubitz@zedat.fu-berlin.de>)
 id 1oRbFM-0007lU-Oz
 for grub-devel@gnu.org; Fri, 26 Aug 2022 11:27:50 -0400
Received: from inpost2.zedat.fu-berlin.de ([130.133.4.69])
 by outpost.zedat.fu-berlin.de (Exim 4.95) with esmtps (TLS1.3)
 tls TLS_AES_256_GCM_SHA384
 (envelope-from <glaubitz@zedat.fu-berlin.de>)
 id 1oRbEz-000aHs-F7; Fri, 26 Aug 2022 17:27:25 +0200
Received: from p57bd967e.dip0.t-ipconnect.de ([87.189.150.126]
 helo=[192.168.178.81]) by inpost2.zedat.fu-berlin.de (Exim 4.95)
 with esmtpsa (TLS1.3) tls TLS_AES_128_GCM_SHA256
 (envelope-from <glaubitz@physik.fu-berlin.de>)
 id 1oRbEz-0039ei-8r; Fri, 26 Aug 2022 17:27:25 +0200
Message-ID: <b71718cc-0e5d-5c1c-789b-4fd2b42172a9@physik.fu-berlin.de>
Date: Fri, 26 Aug 2022 17:27:24 +0200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
 Thunderbird/102.1.2
Subject: Re: [PATCH] Remove HFS support
To: Daniel Axtens <dja@axtens.net>
Cc: The development of GNU GRUB <grub-devel@gnu.org>
References: <20220819135755.vpfkmfyvysmdbzov@tomti.i.net-space.pl>
 <0F68F479-0EC8-4BF8-B21D-81B5FC725226@physik.fu-berlin.de>
 <871qtbowcj.fsf@dja-thinkpad.axtens.net>
 <181a0e9e-cf1c-a11f-e30f-2b14093462ad@physik.fu-berlin.de>
 <871qt3uo53.fsf@dja-thinkpad.axtens.net>
Content-Language: en-US
From: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
In-Reply-To: <871qt3uo53.fsf@dja-thinkpad.axtens.net>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Original-Sender: glaubitz@physik.fu-berlin.de
X-Originating-IP: 87.189.150.126
Received-SPF: pass client-ip=130.133.4.66;
 envelope-from=glaubitz@zedat.fu-berlin.de; helo=outpost1.zedat.fu-berlin.de
X-Spam_score_int: -41
X-Spam_score: -4.2
X-Spam_bar: ----
X-Spam_report: (-4.2 / 5.0 requ) BAYES_00=-1.9, NICE_REPLY_A=-0.001,
 RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001,
 SPF_HELO_NONE=0.001, SPF_PASS=-0.001,
 T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: grub-devel@gnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: The development of GNU GRUB <grub-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/grub-devel>,
 <mailto:grub-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/grub-devel>
List-Post: <mailto:grub-devel@gnu.org>
List-Help: <mailto:grub-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/grub-devel>,
 <mailto:grub-devel-request@gnu.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Aug 2022 15:27:52 -0000

On 8/26/22 15:31, Daniel Axtens wrote:
> I want _all_ grub code to reach a minimum standard of not crashing or
> corrupting memory in the presence of malicious input. HFS does not reach
> that standard.

I surely understand that although it sounds a little academic to me.

> Whether or not the HFS module could be omitted from a signed binary
> doesn't really bear on the fact that there are bugs in the code, the
> presence of bugs has been publicly known for over 18 months (see commit
> 1c15848838d9) and no-one has shown any intention of fixing the bugs.

Well, I wasn't fully aware of the situation. I am not doing GRUB work
professionally, it's just one of the many projects I sometimes touch.

> If you or someone else (someone from Gentoo, perhaps?) want make it fuzz
> clean, then that'd be great. If no-one is able to bring it up to what is
> *not* an especially high standard, then it should be considered
> abandoned by developers and therefore removed.

Sometimes code just works as-is that's why people don't complain.

> (And as I said in another email, HFS has in fact been built in to a
> signed binary recently. Module-based protection is great in theory but
> this example demonstrates that it falls down in practice.)

Isn't it up to the distributions what they support and what not?

>>> Have you checked that you can't boot them with HFS+? Because HFS+
>>> came in 1998, which was (AFAICT) pretty early on in the G3 lifecycle. So
>>> I'd be really surprised if the firmware didn't support booting from
>>> HFS+. I'd be very keen to hear.
>>
>> I have not tested that due to lack of time. The problem is that some early
>> firmware versions might have issues with HFS+ that we haven't verified
>> yet.
> 
> Any approach that says 'we must wait for test results for very old macs'
> puts the grub community in a bind. I'm not aware of anyone else stepping
> up to contribute test results on old macs, and I can't go across to an
> apple store and buy one. So in order to test this, the entire grub
> upstream stalls on (AFAICT) you personally.
> 
> This not the first time we find ourselves in this situation either.  For
> example, RH is carrying the 'powerpc-ieee1275: support larger core.elf
> images' series out of tree because they need it to boot on modern Power
> boxes. It broke on your machine in a way no-one else has reproduced, and
> I last emailled you asking for more information to debug the failure in
> May.

Well, I have tested the things you asked me to test. And besides that it didn't
work, I don't that we agreed on something else.

I am not the only one using it on old Macs, it's just me who is on this mailing
list. It's not like everyone using any software in the Linux world is subscribed
to any project's mailing list. I don't understand why some people assume that.

People will just at some point complain that it no longer works when they upgrade
their software running their distributions.

> For me, this is not a desirable, sustainable, or acceptable
> situation. For the project to sustainably support 24 year old macs, we
> need more than the tests you do in your free time.

Well, GRUB is supposed to be a universal bootloader, isn't it?

> Finally and in conclusion:
> 
>> What's wrong with retrocomputing? Debian's popcon currently reports more
>> machines running the 32-bit big-endian Debian port than the 64-bit little
>> endian port, see [1].
> 
> I have no complaint with running _old_ software on old hardware. That's
> a cool hobby and an important part of preserving the history of computing.
> 
> My complaint about running _new_ grub on very old hardware is that the
> inaccessibility of said hardware and the lack of a well-resourced

I don't think PowerMacs are really that inaccessible, are they? They are
usually easy to buy off eBay and other used hardware platforms.

The problem with removing hardware support is that you are continuously
making it harder to run software on these machines which would otherwise
run fine up to a point where it breaks rendering all the work that people
have poured into keeping these ports working useless.

POWER hardware is usually rather expensive, so PowerMacs are usually the
only kind of PowerPC hardware that most people can afford.

Adrian

-- 
  .''`.  John Paul Adrian Glaubitz
: :' :  Debian Developer
`. `'   Physicist
   `-    GPG: 62FF 8A75 84E0 2956 9546  0006 7426 3B37 F5B5 F913