On Mon, Mar 18, 2013 at 08:40:14AM +0000, James Bottomley wrote: > The object here is to make the NV+BS variables accessible (at least read only) > at runtime so we can get a full picture of the state of the EFI variables for > debugging and secure boot purposes. I'd really prefer not to do this - the reason these aren't flagged as RT is that they're not supposed to be visible at runtime and may break certain security assumptions. If there's a real development purpose to this then it ought to be guarded as a config option. -- Matthew Garrett | mjg59@xxxxxxxxxxxxx -- To unsubscribe from this list: send the line "unsubscribe linux-efi" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html