From bbe7cb5529e724f53d0ed956be7cddd3cceafe0b Mon Sep 17 00:00:00 2001 From: Arne Fitzenreiter Date: Thu, 1 Jul 2021 09:08:02 +0200 Subject: [PATCH] grub: remove os_probes_disabled warning the os_prober is disabled by default because it opens an attack vector. u Signed-off-by: Arne Fitzenreiter --- lfs/grub | 1 + .../grub-2.06-remove_os_prober_disabled_warning.patch | 11 +++++++++++ 2 files changed, 12 insertions(+) create mode 100644 src/patches/grub/grub-2.06-remove_os_prober_disabled_warning.patch diff --git a/lfs/grub b/lfs/grub index 7b020a436e..cc1581306f 100644 --- a/lfs/grub +++ b/lfs/grub @@ -98,6 +98,7 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects)) @$(PREBUILD) @rm -rf $(DIR_APP) $(DIR_APP_EFI) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE) + cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/grub/grub-2.06-remove_os_prober_disabled_warning.patch cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/grub/grub-2.02_disable_vga_fallback.patch cd $(DIR_APP) && autoreconf -vfi diff --git a/src/patches/grub/grub-2.06-remove_os_prober_disabled_warning.patch b/src/patches/grub/grub-2.06-remove_os_prober_disabled_warning.patch new file mode 100644 index 0000000000..310bbcb6d8 --- /dev/null +++ b/src/patches/grub/grub-2.06-remove_os_prober_disabled_warning.patch @@ -0,0 +1,11 @@ +diff -Naur grub-2.06/util/grub.d/30_os-prober.in grub-2.06.new/util/grub.d/30_os-prober.in +--- grub-2.06/util/grub.d/30_os-prober.in 2021-04-12 16:39:21.000000000 +0200 ++++ grub-2.06.new/util/grub.d/30_os-prober.in 2021-06-19 09:25:08.973408717 +0200 +@@ -27,7 +27,6 @@ + . "$pkgdatadir/grub-mkconfig_lib" + + if [ "x${GRUB_DISABLE_OS_PROBER}" = "xtrue" ]; then +- grub_warn "$(gettext_printf "os-prober will not be executed to detect other bootable partitions.\nSystems on them will not be added to the GRUB boot configuration.\nCheck GRUB_DISABLE_OS_PROBER documentation entry.")" + exit 0 + fi + -- 2.39.5