On Mon, 2016-07-04 at 20:37 +0100, Grant Likely wrote: > Random question: Does anybody (kernel or distros) do anything with > the MemoryOverwriteRequestControl EFI variable? I was asked by a > platform engineer for input on what Linux needs, and I didn't have an > answer for him. The usual answer for these cases is to do what Tianocore does. Currently, the kernel does nothing with this, but you'd more expect something in userspace to do something with it, probably a component of the TSS. > Reference: section 5 of > https://www.trustedcomputinggroup.org/wp-content/uploads/Platform-Res > et-Attack-Mitigation-Specification.pdf That's a bit of an old Spec. Microsoft has been busy updating this stuff: https://msdn.microsoft.com/en-us/windows/hardware/drivers/bringup/device-guard-requirements Tianocore head seems to do all of this. James -- To unsubscribe from this list: send the line "unsubscribe linux-efi" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
