hot take: ban IHVs from ever writing softwarepic.twitter.com/ZFAZWM7GnG
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
That's reasonable, if it happens under the full control and authorization of the OS. It's not if it happens behind the OS's back through sketchy unseen and unreviewed code.
yes, it happens when the OS calls a EFI function to set a EFI variable...
It happens because the OS calls the SetVariable function which exists for this purpose
If you allow EFI code from system or peripheral firmware to run on the metal, it can happen any time they decide they want to. That's the problem. It should _only_ be possible when OS does it.
No. It can only happen when the OS calls into said EFI code. Functions don't just call themselves
Like when some hardware driver calls into firmware on the metal in ring0 with unrestricted memory access rather than actually implementing the functionality itself.
The only times the kernel calls into UEFI are To exit boot services mode To ger/set firmware variables As a last ditch way of rebooting As a last ditch way of getting/setting the time (no RTC driver) To set wake from power off timers
That's a smaller set than I expected, but still much more than it should be, and would benefit from virtualization if the user wants any of that functionality.
Fortunately there's always: # CONFIG_EFI is not set
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.