[Ksummit-2012-discuss] [ATTEND] ACPI, UEFI, kernel security

Matthew Garrett mjg59 at srcf.ucam.org
Wed Jun 27 18:36:31 UTC 2012


On Wed, Jun 27, 2012 at 11:29:44AM -0700, Guenter Roeck wrote:

> In dealing with networking companies, I have seen 1) the desire to write many if
> not all PCI drivers as userspace drivers (please, don't shoot the messenger - I
> neither like nor approve that idea), and 2) to have a signed kernel as well as
> signed applications. Given that, I think it would be useful to permit PCI device
> access by signed applications.

Right now they'd get to just turn off secure boot - long term we may 
want something like that, yes.

-- 
Matthew Garrett | mjg59 at srcf.ucam.org


More information about the Ksummit-2012-discuss mailing list