[coreboot] restrict SMI
ron minnich
rminnich at gmail.com
Sun Jul 29 23:54:19 CEST 2018
Florentin wrote this:
I just peeked inside the pdf and tumbled upon the following statement
(page4):
"The latest reasoning for replacement of SMI is driven by a future OS
requirement that
restricts the use of SMI as a means to communicate with the system
firmware."
Can someone enlighten me what this "future OS requirement" means?..
Thanks in advance,
Florentin
OK, the future OS requirement is not complicated in my view. Nobody trusts
SMM, or should ever have trusted SMM from the beginning, and many companies
have reached the decision that SMM is a monstrous security hole and must
die. SMI being the way one gets into SMM, both SMI and SMM are, we hope,
soon to be a thing of the past. Not soon enough for me ...
ron
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.coreboot.org/pipermail/coreboot/attachments/20180729/f4eac98d/attachment.html>
More information about the coreboot
mailing list