On Fri, 2013-03-01 at 17:11 -0800, H. Peter Anvin wrote: > On 03/01/2013 03:30 PM, David Woodhouse wrote: > > On Sat, 2013-03-02 at 00:07 +0100, Borislav Petkov wrote: > >> Hmm, yeah, that's nasty. This also means option #2 can go too because > >> of the fixed addresses. Option #1 is also kinda polluting user address > >> space > > > > User address space is there to be polluted. Create a "kernel thread" for > > invoking EFI, except that this kernel thread actually has userspace page > > tables. Set up those page tables however the hell you like, and then > > just make sure you always invoke EFI runtime services from that thread. > > > > Just FYI: as far as I know we already have such a "thread". In that case it seems like this option is fairly much a no-brainer. Do we make any calls to runtime services during early boot (before we'd have such a thread set up for use)? -- dwmw2
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
