2024-12-30 –, Saal ZIGZAG
Language: English
Gaining a reasonable level of trust on the firmware that runs your everyday activities
Corebootable or not corebootable, that is the question.
The nerdiest nerds already corebooted their old X230 ThinkPads... but what about your new ThinkPad, or even your gaming rig? Well, Intel has a trick called the "BootGuard" inside the Management Engine.
It is supposed to protect the firmware and only allow updates from signed sources... somewhat like the Secure Boot. This means we can't coreboot our newer machines, right?
..right? Well, for that to work... it needs team-play between OEMs and Intel, which doesn't always work out.
In this talk you will learn how to port coreboot to modern Intel systems - how we did it and even got to game on them.
We'll go over coreboot development, tell you how to find <del>potential subjects</del> compatible mainboards and what it would take to boot on them!). We'll explain what are "payloads", which one is right for you, and what it takes to make such system run mainline Linux.
We'll also take a look at current state of AMD systems and how they're doing with OpenSIL (which will replace AGESA in the coming years).
I am a ANTI* cat with a hyper-fixation on flora mate at night, scrum survivor at day.
People describe me as "a talented hardware and software developer that turns hugs into code".. which is correct, but don't ask me to write C++.
Accidentally created a Activitypub alternative called Versia.. but instead its a full ecosystem.
I also developed Activitypub servers a year ago, before that.
There is no better hardware fixation that porting Coreboot to a newly bought mainboard at 3am, just to play Sea of Thieves on it!
