bugGNU GRUB - Bugs: bug #51418, Support for opal specification...


You are not allowed to post comments on this tracker with your current authentication level.

bug #51418: Support for opal specification self-encrypting disks and pre-boot authentication

Submitter:  J B <daijizai>
Submitted:  Sat 08 Jul 2017 04:46:15 PM UTC
Votes: 301
Category:  Security Severity:  Major
Priority:  5 - Normal Item Group:  Feature Request
Status:  None Privacy:  Public
Assigned to:  None Originator Name: 
Open/Closed:  Open Release:  other
Release:  Reproducibility:  None
Planned Release:  None

Sat 08 Jul 2017 04:46:15 PM UTC, original submission:  

Opal drives load an initial EFI from a secure MBR which then unlocks the drive and allows access to the disk.

While a GNU Linux solution exists (https://github.com/sedutil/sedutil), it requires a soft reboot after unlocking from the pre-boot authentication (PBA) image instead of chainloading the unlocked EFI partition. On some machines this relocks the disk.

With the inclusion of new OPAL support code in the 4.11 Linux kernel release it makes sense that new supporting features should be added to recognized bootloaders to allow the community to take advantage of a feature available to Windows users for years.

The GRUB project should consider creating an opal compatible PBA image for use with self-encrypting disks to unlock the drive and chainload the primary grub installation.

J B <daijizai>


(Note: upload size limit is set to 16384 kB, after insertion of the required escape characters.)

No files currently attached


Depends on the following items: None found

Items that depend on this one: None found


Carbon-Copy List
  • -email is unavailable- added by synapse66 (Voted in favor of this item)
  • -email is unavailable- added by arisu (Voted in favor of this item)
  • -email is unavailable- added by curiousam (Voted in favor of this item)
  • -email is unavailable- added by flowswitch (Voted in favor of this item)
  • -email is unavailable- added by daijizai (Submitted the item)

    There are 301 votes so far. Votes easily highlight which items people would like to see resolved in priority, independently of the priority of the item set by tracker managers.


    Follow 4 latest changes.

    Date Changed by Updated Field Previous Value => Replaced by
    2020-10-20 synapse66 Carbon-Copy- Added synapse66
    2020-05-03 arisu Carbon-Copy- Added arisu
    2018-05-22 curiousam Carbon-Copy- Added curiousam
    2017-12-03 flowswitch Carbon-Copy- Added flowswitch

    Back to the top

    Powered by Savane 3.14-0ec7.
    Corresponding source code