Adam Joseph
0f15fd86a8
kgpe/linux.config: remove sb700 watchdog-related settings
...
The KGPE-D16 southbridge contains a watchdog; the kernel module for
this watchdog is sp5100_tco.
Unfortunately this watchdog keeps its counter in the main system CPU
RAM. This means that the IOMMU will block the watchdog's attempts
to read and write its own counter (through the SMBus, which is PCI
device 0000:00:14.0), resulting in massive amounts of dmesg spam
like this:
```
pci 0000:00:14.0: AMD-Vi: Event logged [IO_PAGE_FAULT domain=0x0004 address=0xfdf9103300 flags=0x0030]
piix4_smbus 0000:00:14.0: AMD-Vi: Event logged [IO_PAGE_FAULT domain=0x0004 address=0xfdf9103300 flags=0x0030]
```
Setting the IOMMU to allow these accesses is a headache, and
pointless anyways: the KGPE-D16 board disallows the use of the
watchdog by the CPU; it is reserved for the exclusive use of the
BMC. Attempting to enable the watchdog does nothing; the enable bit
will not turn on. Recent kernels check for this situation and
report when it is detected:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f7781b067522aa269213e8025c80cbed1868d349
Fortunately there is *another* watchdog on the motherboard, inside
the `W83667HG-A` SuperIO chip, and it is supported by
`w83627hf_wdt.ko`. Subsequent commits to ownerboot will use *that*
watchdog instead.
Dump of my collection of possibly-related links:
- https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=266325
- https://forums.freebsd.org/threads/ivhd-errors-after-upgrade-host-to-13-1.85234/
- https://lists.linuxfoundation.org/pipermail/iommu/2015-October/014523.html
- https://lkml.org/lkml/2014/4/22/562
- https://bugzilla.kernel.org/show_bug.cgi?id=170741
- https://marc.info/?l=linuxbios&m=152035277020470&w=2
2 years ago
Adam Joseph
6cf5223d41
ecfw: move flashing scripts to separate derivation
2 years ago
Adam Joseph
e5824b756d
ecfw: fix comment
2 years ago
Adam Joseph
4cf0b70ae3
ecfw: fix version attr
2 years ago
Adam Joseph
cab2ef5655
README.md: update roadmap
2 years ago
Adam Joseph
1ce5815fc1
README.md: move roadmap to top of page
2 years ago
Adam Joseph
036e75e542
README.md: link to more details about ecfw write protection
2 years ago
Adam Joseph
bdebb940c9
platform/kevin/ecfw: init
2 years ago
Adam Joseph
1b9d35c10d
flashrom: append -chromebook to pname and $out/bin-name when forChromebook==true
2 years ago
Adam Joseph
9ff6fba57c
ectool: remove redundant EXTRA_CFLAGS
2 years ago
Adam Joseph
9e592c9751
ectool: make boardName a non-package argument
2 years ago
Adam Joseph
30ac75903b
src/util/ectool/: init
2 years ago
Adam Joseph
c40ed36e6b
src/util/flashrom: move from src/flashrom
2 years ago
Adam Joseph
709bb2104d
src/plat/*: allow to override hostPlatform
2 years ago
Adam Joseph
0bdf6e9355
src/plat/*: pass `lib` as a parameter instead of reimporting it
2 years ago
Adam Joseph
ed0d745ca4
kgpe: add missing `mkdir` and path component
2 years ago
Adam Joseph
d90863f36b
coreboot: use python3
2 years ago
Adam Joseph
2bf7048655
README.md: fix typo
2 years ago
Adam Joseph
400ca67b14
README.md: fix link
2 years ago
Adam Joseph
98ff0a6132
README.md: current plans
2 years ago
Adam Joseph
a0ba72a30a
README.md: mention nvramtool
2 years ago
Adam Joseph
364ab1d34d
README.md: shout out to PrawnOS
2 years ago
Adam Joseph
f0eef409de
README.md: mention google's flashrom-wp chromebook fork
2 years ago
Adam Joseph
576e50fc85
flashrom: add option for google chromebook fork
2 years ago
Adam Joseph
6243fa9245
src/coreboot: expose src attr in passthru.src
2 years ago
Adam Joseph
018e75000a
optionally build nvramtool, put it and the .layout files in the initramfs
2 years ago
Adam Joseph
7a93f3a128
update coreboot-toolchain to deal with changes in nixpkgs 21.11
2 years ago
Adam Joseph
427d6beaae
update nixpkgs to 21.11
2 years ago
Adam Joseph
bceb4820f4
factor out lib as an optional argument
2 years ago
Adam Joseph
5fa23513f9
factor out pkgsFun as an optional argument
2 years ago
Adam Joseph
7fa5116288
doc/owner-controlled.md: mention debian and gnuk
2 years ago
Adam Joseph
ece2e5c052
add links
2 years ago
Adam Joseph
8eaa402ba1
doc/platform/kevin/notes.md: mention CONFIG_INITRAMFS_SOURCE issue
2 years ago
Adam Joseph
b8729694c2
doc/platform/am1i/notes.md: mention iommu situation
2 years ago
Adam Joseph
0bf512385d
coreboot: add linux-command-line parameter for CONFIG_LINUX_COMMAND_LINE
2 years ago
Adam Joseph
184d2421b2
kgpe: include microcode updates for 63xx cpus
2 years ago
Adam Joseph
9658f9f551
kgpe/coreboot.config: remove extraneous CONFIG_LOCALVERSION
2 years ago
Adam Joseph
1732d9c14e
src/coreboot: add console-loglevel parameter
2 years ago
Adam Joseph
040bcdbd79
docs: add platform-specific notes for each platform
2 years ago
Adam Joseph
44caf3407c
src/kernel: use 5.10.148 on all platforms
...
This commit bumps the kgpe and am1i platforms to 5.10.148 for the
pre-kexec() kernel, so all platforms now use the same version.
2 years ago
Adam Joseph
8c8c0017ca
em100: fix meta.maintainers
2 years ago
Adam Joseph
a180b832e7
kgpe: flashrom.layout no longer needed
...
Since a6cd35, ownerboot includes a patch to flashrom which allows
nested (but non-overlapping) fmap regions, so the flashrom.layout
file is no longer necessary.
2 years ago
Adam Joseph
1a0e0922ac
ok, then care about science
2 years ago
Adam Joseph
2c6a837b48
src/kevin/atf: roll back ~9months to fix suspend-to-ram
...
ATF v1.6 on gru-kevin causes the laptop to reset itself instead of
waking up from suspend-to-ram. The cause of this problem is
something in the ~835 commits prior to the v1.6 release.
For now, let's simply use an older commit from upstream;
suspend-to-ram is pretty important for laptops.
TODO: git bisect and revert only the commits that cause this problem.
2 years ago
Adam Joseph
4a2a89d88a
src/kernel: bump non-gru-kevin kernels for Linux wifi RCE
...
This bumps the kernel version on non-gru-kevin to 5.10.148, which
has fixes for the notorious Linux kernel wifi RCE exploits:
CVE-2022-41674, CVE-2022-42719, and CVE-2022-42720.
2 years ago
Adam Joseph
b70f108dce
platform/kevin: bump kernel to version with wifi RCE fixes
...
This bumps the kernel version on gru-kevin to 5.10.148, which has
fixes for the notorious Linux kernel wifi RCE exploits:
CVE-2022-41674, CVE-2022-42719, and CVE-2022-42720.
On all other platforms the ownerboot kernel is used only to kexec()
another long-lived kernel, and is therefore built without wifi
support and not vulnerable.
The gru-kevin laptop cannot use kexec() due to unfixable bugs in
mid-2010s versions of ARM's GICv3.
In some cases this bug can be worked around by having the
pre-kexec() kernel not fully initialize the GIC:
https://lore.kernel.org/lkml/20180921195954.21574-1-marc.zyngier@arm.com/
Unfortunately this workaround leaves the gru-kevin's screen in a
glitchy state post-kexec() which makes the laptop mostly unusable.
2 years ago
Adam Joseph
a6cd353a3e
src/flashrom: allow nested regions
2 years ago
Adam Joseph
5ed3f4cf89
src/flashrom/0001...patch: reformat for git-am
2 years ago
Adam Joseph
bd0335d03a
doc/owner-controlled.md: format heading
2 years ago
Adam Joseph
ef770e025e
doc: remove unfinished footnote (mispush)
2 years ago