From 8f69c663b94a882f16e57e76a9584a5423ad8918 Mon Sep 17 00:00:00 2001
From: Francis Rowe General questions
@@ -359,6 +369,112 @@
Back to top of page
+ It is extremely unlikely that any post-2013 AMD hardware will ever be supported in libreboot, due to + severe security and freedom issues; so severe, that the libreboot project recommends avoiding all modern AMD hardware. + If you have an AMD based system affected by the problems described below, then you should get rid of it as soon as possible. The main issues are as follows: +
++ This is basically AMD's own version of the Intel Management Engine. It has + all of the same basic security and freedom issues, although the implementation is wildly different. +
++ The Platform Security Processor (PSP) is built in on all Family 16h + + systems (basically anything post-2013), and controls the main x86 core startup. PSP firmware is + cryptographically signed with a strong key similar to the Intel ME. If + the PSP firmware is not present, or if the AMD signing key is not + present, the x86 cores will not be released from reset, rendering the + system inoperable. +
++ The PSP is an ARM core with TrustZone technology, built onto the main + CPU die. As such, it has the ability to hide its own program code, + scratch RAM, and any data it may have taken and stored from the + lesser-privileged x86 system RAM (kernel encryption keys, login data, + browsing history, keystrokes, who knows!). To make matters worse, the + PSP theoretically has access to the entire system memory space (AMD + either will not or cannot deny this, and it would seem to be required to + allow the DRM "features" to work as intended), which means that it has + at minimum MMIO-based access to the network controllers and any other + PCI/PCIe peripherals installed on the system. +
++ In theory any malicious entity with access to the AMD signing key would + be able to install persistent malware that could not be eradicated + without an external flasher and a known good PSP image. Furthermore, + multiple security vulnerabilities have been demonstrated in AMD firmware + in the past, and there is every reason to assume one or more zero day + vulnerabilities are lurking in the PSP firmware. Given the extreme + privilege level (ring -2 or ring -3) of the PSP, said vulnerabilities + would have the ability to remotely monitor and control any PSP enabled + machine. completely outside of the user's knowledge. +
++ Read https://www.coreboot.org/AMD_IMC. +
++ Read https://www.coreboot.org/AMD_IMC. +
++ Handles some power management for PCIe devices (without this, your laptop + will not work properly) and several other power management related features. +
++ The firmware is signed, although on older AMD hardware it is a symmetric key, which means + that with access to the key (if leaked) you could sign your own modified version and run it. + Rudolf Marek (coreboot hacker) found out how to extract this key in this video demonstration, and + based on this work, Damien Zammit (another coreboot hacker) partially replaced it with + free firmware, but on the relevant system (ASUS F2A85-M) there were still other blobs present (Video BIOS, and others) preventing + the hardware from being supported in libreboot. +
++ This is responsible for virtually all core hardware initialization on modern AMD systems. In 2011, + AMD started cooperating with the coreboot project, releasing this as source code under a + free license. In 2014, they stopped releasing source code and started releasing AGESA + as binary blobs instead. This makes AGESA now equivalent to Intel FSP. +
++ Read the Intel section #microcode. AMD's updates are practically the same, though + it was found with much later hardware in AMD that you could run without microcode updates. It's unknown + whether the updates are needed on all AMD boards (depends on CPU). +
++ AMD seemed like it was on the right track in 2011 when it started cooperating with + and releasing source code for several critical components to the coreboot project. + It was not to be. For so-called economic reasons, they decided that it was not + worth the time to invest in the coreboot project anymore. +
++ For a company to go from being so good, to so bad, in just 3 years, shows + that something is seriously wrong with AMD. Like Intel, they do not deserve your + money. +
++ Given the current state of Intel hardware with the Management Engine, it + is our opinion that all performant x86 hardware newer + than the AMD Family 15h CPUs (on AMD's side) on anything post-2009 on Intel's + side is defective by design and cannot safely be + used to store, transmit, or process sensitive data. "Sensitive data" is + any data in which a data breach would cause significant economic harm to + the entity which created or was responsible for storing said data, so + this would include banks, credit card companies, or retailers (customer + account records), in addition to the "usual" engineering and software + development firms. +
++ +
+ +Probably not. There are several privacy, security and freedom issues with these laptops, due to the Intel chipsets @@ -464,17 +580,6 @@
-- Libreboot has support for some AMD platforms, with more on the horizon. - See ../docs/hcl/index.html. -
-- More AMD-related information will be added to this page at a later date. -
-