From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1ShA62-0003cc-5D for garchives@archives.gentoo.org; Wed, 20 Jun 2012 01:52:38 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 1FFD2E06BE; Wed, 20 Jun 2012 01:52:19 +0000 (UTC) Received: from mail-bk0-f53.google.com (mail-bk0-f53.google.com [209.85.214.53]) by pigeon.gentoo.org (Postfix) with ESMTP id 7348EE068C for ; Wed, 20 Jun 2012 01:51:39 +0000 (UTC) Received: by bkcjk13 with SMTP id jk13so6424171bkc.40 for ; Tue, 19 Jun 2012 18:51:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=BK/n+iqHNfB2BNuzOVJE9xgz6v6UrQi+uEHxtXfALjI=; b=F5xOP7rut8O/JjUXFtvN8zHeikfUM4CtgMIuup6A9H8XpY+FMxCVRHyhuMso9Xqly1 eJiIt7JX0Qq1b8LIr+t/zXSEdZ/IikYvIL63945Ot5Y97PwgMw/Su4WJL1EBGxaxVUIR D6EaEd9GjlZbgVHseWJHrmvd8tXMM67te7/umbK7ynBFyqh/3GmGWcgil8oiNxgeOhEP TscahFODOux9mUytOENOA3is1OTuvOLZzN5FOw49bp2aRSEPDJtAenU0rjWQbnSOotGE kfhnOH+EzlxAsoXkjvgrFYD8bsFZ78aUjuw8AKgQSfMuuQyhjz8IqfRRNPuAeoNGK7AK dKdQ== Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Received: by 10.204.154.18 with SMTP id m18mr9595248bkw.23.1340157098546; Tue, 19 Jun 2012 18:51:38 -0700 (PDT) Sender: freemanrich@gmail.com Received: by 10.204.38.2 with HTTP; Tue, 19 Jun 2012 18:51:38 -0700 (PDT) In-Reply-To: <4FE1285B.2090006@gentoo.org> References: <4FE0F922.2090807@gentoo.org> <4FE1230D.8090502@gentoo.org> <4FE1285B.2090006@gentoo.org> Date: Tue, 19 Jun 2012 21:51:38 -0400 X-Google-Sender-Auth: vdT_a8hAsbVaaBL8gQV5xY5A8yk Message-ID: Subject: Re: [gentoo-dev] Killing UEFI Secure Boot From: Rich Freeman To: gentoo-dev@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 X-Archives-Salt: 2fbe196f-577c-488c-95f1-315c08bd3caa X-Archives-Hash: 31797b696ac2e8c543b080138cfdd40b On Tue, Jun 19, 2012 at 9:33 PM, Richard Yao wrote: > On 06/19/2012 09:25 PM, Rich Freeman wrote: > We would gain a faster boot process. We would also enable people to > avoid paying money for keys that can be revoked without a refund. > While I have no doubt that a determined team could make a firmware that booted marginally faster, I don't get the bit about not paying for keys. You don't have to pay anybody for a key to boot with UEFI - you just need to either disable secure boot, or install your own keys. I can't see how installing your own keys is going to be harder than flashing the entire BIOS, and if you still want secure boot presumably you still have to install your own keys. If somebody wants to make a generic UEFI bootloader for PCs they should by all means do so - I'm sure people would find use for it. I just don't see it as an essential ingredient for Gentoo. If I really wanted to mess with my BIOS I'd probably be loading core boot on it. Rich