Re: Use PCI ROMs from EFI boot services
From: H. Peter Anvin
Date: Wed Dec 05 2012 - 20:04:10 EST
On 12/05/2012 04:57 PM, Matthew Garrett wrote:
> "H. Peter Anvin" <hpa@xxxxxxxxx> wrote:
>> I don't think there is anything security-sensitive about that
>> information, at least not to root. I could be wrong, of course; I
>> wouldn't mind security people telling me about that.
> I don't think there's anything at present, but we'll want to pass the hibernation encryption key from the bootloader to the kernel in the near future. setup_data seems like the easiest way to do that.
And that presumably would be something that cannot be exposed to root?
If so we may want to use one of the bits in the setup_data type field as
a security flag, perhaps...
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/