
Submission + - Will secure boot cripple linux compatability (dreamwidth.org)
MojoMax writes: The advent of Windows 8 is drawing ever nearer and recently we have learned that ARM devices installed with Windows 8 will not be able to disable the UEFI secure boot feature that many of us a deeply concerned about. However, UEFI is still a very real danger to linux and the freedom to use whichever OS you chose. Regardless of information for OEMs to enable customers to install their own keys, such as that published by the linux foundation (http://www.linuxfoundation.org/publications/making-uefi-secure-boot-work-with-open-platforms), there are still very serious and as yet unresolved issues with using secure boot and linux. These issues are best summarised quoting Matthew Garrett's words in his article "Why UEFI secure boot is difficult for Linux":
"Signing the kernel isn't enough. Signed Linux kernels must refuse to load any unsigned kernel modules. Virtualbox on Linux? Dead. Nvidia binary driver on Linux? Dead. All out of tree kernel modules? Utterly, utterly dead. Building an updated driver locally? Not going to happen. That's going to make some people fairly unhappy."
"Signing the kernel isn't enough. Signed Linux kernels must refuse to load any unsigned kernel modules. Virtualbox on Linux? Dead. Nvidia binary driver on Linux? Dead. All out of tree kernel modules? Utterly, utterly dead. Building an updated driver locally? Not going to happen. That's going to make some people fairly unhappy."