[SeaBIOS] [PATCH] Add option to only execute CBFS option ROMs
Timothy Pearson
tpearson at raptorengineeringinc.com
Wed Feb 11 04:07:24 CET 2015
On 02/10/2015 08:02 PM, Peter Stuge wrote:
> Timothy Pearson wrote:
>>>> Is there anything else that needs to be done before this can be merged?
>>>
>>> Have you considered creating a more fine-grained control knob than
>>> simply global on/off?
>>>
>>> Maybe a BDF blacklist, perhaps stored in CBFS?
>>
>> I might implement something like that in the future if I have
>> time/inclination, but for now the on/off switch is sufficient.
>
> Sufficient sure, but it is certainly using a sledgehammer to pound a nail.
>
> Adding a blacklist instead is probably very quick. Pretty please? :)
> (Ultimately Kevin will decide, but maybe he also likes a blacklist.)
I can try. I am nowhere near as familiar with SeaBIOS as I am with
coreboot so this might take longer than expected.
>
>> The proposed patch also allows the user to have a completely
>> blob-free system if desired.
>
> More general wins over fan(boy|girl) idealistic every time with me.
There are reasons to want a blob-free system, including security. I
would hardly call it "fanboy idealism" to, for instance, not want to
rely on a signed closed-source Microsoft bootloader to launch Linux, yet
the situation here is not all that different in that we rely on
untrusted, unknown code to initialize hardware before passing control on
to a FOSS payload. When there are FOSS replacements available it can
make sense to eliminate the blobs.
--
Timothy Pearson
Raptor Engineering
+1 (415) 727-8645
http://www.raptorengineeringinc.com
More information about the SeaBIOS
mailing list