Hi
It looks like this bug is biting us now.
https://review.coreboot.org/c/coreboot/+/64521 removed the heap from SMM
(because it's not needed and a bad idea).
Now that the heap is gone the FX_SAVE area is actually overwriting the
handler. So this vulnerability is not hypothetical anymore
it
Hi
The obvious easy solution is to not use SMM but that's a different topic.
I think it should also be doable to write unit tests that would do a setup
for 1 (1 is often a special case) and many cpus and see that things like
stubs, stack, save state, permanent handler, ... don't overlap.
I
arthur, what might we do with either the build process or startup to
avoid this problem in future? Do you think we could find a way to
catch this programmatically soon, rather than humanly too late?
On Mon, Apr 11, 2022 at 2:48 AM Arthur Heymans wrote:
>
> Hi
>
> After last week's SMM loader
3 matches
Mail list logo