On 8/5/2021 12:01 PM, Dan Williams wrote:
That's why I think the builtin allow list hook is still needed. Thoughts?
I see nothing that prevents a built-in allow list to augment the
driver-core default. Is there a gap I'm missing?
Okay so you're suggesting to build the builtin allow list on top of the
existing framework?
I thought Greg's suggestion was to only rely on user space only.
But if we have a way to change the authorized defaults by device (not
just bus) from inside the kernel at early boot that could well work.
Doing it only on the bus level I suspect wouldn't work though.
-Andi
