Attention is currently required from: Patrick Rudolph, Benjamin Doron, Angel Pons.
Why cling to the WPD bit? AFAIR, there is an exploitable race, e.g. one
core is busy SMI handling and before it is done resetting the WPD bit
another core already started a write cycle. And that's why the InSMM.STS
thing was invented. I'm not 100% sure. It was said the race was fixed,
but my interpretation was that only InSMM.STS fixes it.
In any case I would prefer a warning at the Kconfig option that this
probably isn't secure. Or just implement InSMM.STS right away. Then you
don't even need to reset WPD, AIUI.
To view, visit change 40830. To unsubscribe, or for help writing mail filters, visit settings.