On 2010/06/25 19:31, Carl-Daniel Hailfinger wrote:
On OpenBSD we decided that those /dev/pci write access are similar to /dev/mem access, and thus decided to control it using the same sysctl, in order not to create more knobs.
So if I understand you correctly, full /dev/pci and /dev/mem access should be possible with securelevel=0, and we shouldn't screw with allowaperture at all? No problem, I am happy to change the flashrom docs.
Ah, I've tracked down why securelevel gets changed from 0 to 1 (which is what I was asking about re securelevels). It's init(8). To avoid this and have /dev/{pci,mem} access on a running system, temporarily set securelevel=-1 in /etc/rc.securelevel.
flashrom is something you won't run on every boot, so I think requiring securelevel=0 for the few times you need to access flash is perfectly fine.
Agreed.