Uncategorized

U-Boot updates from ELC2017

As pointed out by the Phoronix article, Embedded Linux Conference had a few talks on U-Boot:

http://www.phoronix.com/scan.php?page=news_item&px=U-Boot-2017-State

http://events.linuxfoundation.org/sites/events/files/slides/ELC2017%20-%20State%20of%20the%20U-Boot.pdf

http://events.linuxfoundation.org/sites/events/files/slides/Enabling%20_New_Hardware_in_U-Boot.pdf

Standard
Uncategorized

more on ME Cleaner

I did a brief post on ME Cleaner, found on an article pointed out to me by a reader (i.e., I missed it). Phoronix has a story on ME Cleaner, including a pointer to it’s hardware/firmware-compatibility page, which I also missed:

https://github.com/corna/me_cleaner/wiki/me_cleaner-status

 

http://www.phoronix.com/scan.php?page=news_item&px=Intel-ME-Cleaning

https://github.com/corna/me_cleaner

https://firmwaresecurity.com/2016/11/30/me-cleaner/

 

Standard
Uncategorized

Coreboot adds U-Boot as a Payload

Michael Larabel of Phoronix reports that Coreboot now supports U-Boot as another payload option:

Coreboot users have generally relied upon the SeaBIOS or TianoCore payloads for booting up into a Linux distribution, but now a U-Boot payload is supported as another option. Intel-based Chromebooks have long been using U-Boot as a payload for Coreboot while now all of that support is going upstream. A commit today adds U-Boot as a possible payload for x86 systems when configured via the new Kconfig options. The commit by Google’s Martin Roth explains, “Graphics worked in U-Boot correctly by initializing the VBIOS and setting up a console mode. Tested in QEMU and on Minnowboard Max.”

More information:

http://www.phoronix.com/scan.php?page=news_item&px=Coreboot-U-Boot-Payload

http://anzwix.com/a/Coreboot/PayloadsAddUBootAsACorebootpayload

Standard
Uncategorized

FreeBSD 10.3.beta2’s UEFI changes

Excerpting Phoronix:

Over the past week were some fixes/improvements around FreeBSD’s UEFI support, “The UEFI ZFS loader has been updated to support the latest ZFS Boot Environment (BE) loader menu features” and “The UEFI boot loader received several improvements: /boot/config and /boot.config files now are adhered to, multi device boot support works and command line argument parsing has been added.”

http://www.phoronix.com/scan.php?page=news_item&px=FreeBSD-10.3-Beta-2
https://lists.freebsd.org/pipermail/freebsd-stable/2016-February/084145.html
https://www.freebsd.org/relnotes/10-STABLE/relnotes/article.html

Standard
Uncategorized

NVIDIA Nouveau Secure Boot

Quoting Michael of Phoronix:

NVIDIA Publishes Nouveau Patches For Secure Boot, Unified Firmware Loading

NVIDIA has released new patches today for helping the open-source Nouveau driver step towards properly supporting the GeForce GTX 900 “Maxwell” graphics cards as well as better supporting Tegra. The first patch series sent out today was authored by NVIDIA’s Alexandre Courbot and provides unified firmware loading functions. He explained, “This patchset centralizes the firmware-loading procedure to one set of functions instead of having each engine load its firmware as it pleases. This helps ensure that all firmware comes from the same place, namely nvidia/chip/. This changes where the firmware is fetched from for falcon/xtensa/bios, but these locations never seemed to have been official anyway. Also for most (all?) chips supported by Nouveau there is corresponding internal firmware, so disruption should be minimal/non-existent. If this assumption is wrong, feel free to drop patches 3-5. At the very least, firmware officially provided by NVIDIA should be looked up using the new functions for consistency.”[…]

http://www.phoronix.com/scan.php?page=news_item&px=Nouveau-Secure-Boot-FW

http://www.phoronix.com/scan.php?page=news_item&px=MTc5ODA

http://lists.freedesktop.org/archives/nouveau/2016-January/023814.html

http://lists.freedesktop.org/archives/nouveau/2016-January/023820.html

Standard
Uncategorized

Phoronix news

Earlier, I used to post stories I found on Phoronix. But these days that means too many posts, I can’t keep up with Phoronix, so I’m assuming if you care about Linux-based firmware security, you’re also reading Phoronix.com for their excellent news. For example, here’s a few of the recent stories:

http://www.phoronix.com/scan.php?page=news_item&px=Linux-4.4-ACPI-PM
http://www.phoronix.com/scan.php?page=news_item&px=TPM-2.0-Security-Linux-4.4
http://www.phoronix.com/scan.php?page=news_item&px=EFI-Updates-Linux-4.4

Michael makes better use of tags than I do as well:

https://www.phoronix.com/scan.php?page=news_topic&q=coreboot
https://www.phoronix.com/scan.php?page=news_topic&q=Hardware
https://www.phoronix.com/scan.php?page=news_topic&q=Intel
https://www.phoronix.com/scan.php?page=news_topic&q=AMD
https://www.phoronix.com/scan.php?page=news_topic&q=Linux%20Kernel
https://www.phoronix.com/scan.php?page=news_topic&q=NVIDIA
https://www.phoronix.com/scan.php?page=news_topic&q=Virtualization

 

Standard
Uncategorized

Linux firmware update

As pointed out on Phoronix, there’s a new blog post by Peter Jones of Red Hat on the status of firmware updates on Linux.

http://blog.uncooperative.org/blog/2015/09/16/an-update-on-firmware-updates/

Phoronix has been covering this much better than I have:

http://www.phoronix.com/scan.php?page=search&q=ESRT

http://www.phoronix.com/scan.php?page=search&q=fwupd

http://www.phoronix.com/scan.php?page=news_item&px=Linux-UEFI-Firmware-Sept

Standard