Mapping and initializing USB and SATA ports on Gigabyte MZ33-AR1
Published at September 12, 2025 · Michał Żygowski · 26 min read
As the Gigabyte MZ33-AR1 porting effort progresses, coreboot has to add definitions for I/O bus initialization, such as SATA, USB and PCI Express. If you are curious how it is done on an AMD Turin-based system, read till the end....
Categories: firmware
AMD PSP blob analysis on Gigabyte MZ33-AR1 Turin system
Published at September 12, 2025 · Michał Żygowski · 14 min read
The blog post describes the analysis of PSP blobs on Gigabyte. MZ33-AR1. The analysis covers various aspects of stitching AMD firmware BIOS images and how a support for stitching Turin blobs was developed in coreboot....
Categories: firmware
Published at August 27, 2025 · Kamil Aronowski · 12 min read
The `init_on_free` Linux option ensures rigorous security by instantly zeroing out memory upon deallocation. In this follow-up, we build on our prior ram-wipe experiments to rigorously evaluate if `init_on_free` can serve as a robust safeguard, perhaps supplanting existing, less comprehensive memory wiping solutions....
Porting Gigabyte MZ33-AR1 server board with AMD Turin CPU to coreboot
Published at August 7, 2025 · Michał Żygowski · 20 min read
The blog post describes effort made to port a modern AMD server board to coreboot. The target is Gigabyte MZ33-AR1 supporting newest AMD EPYC server processor family Turin and OpenSIL....
Categories: firmware
ZarhusBMC: The second encounter - Porting OpenBMC to X11SSH part II
Published at July 31, 2025 · Mateusz Kusiak · 14 min read
In this blog post we share current progress of ZarhusBMC and porting OpenBMC to the x11ssh platform. We also give some insides on the caveats that come with preparing configuration for proprietary platform....
Categories: firmware miscellaneous os-dev
Securing embedded Linux: Secure Boot, encryption and A/B updates with Yocto
Published at July 25, 2025 · Michał Iwanicki · 28 min read
Generating UKI files, encrypting and decrypting rootfs in initramfs, A/B OTA updates with meta-otab and swupdate....
Published at July 17, 2025 · Michał Kopeć · 8 min read
EDK II is quickly becoming a big player in the ARM firmware space. In this blog post I will be exploring the process of porting EDK II to a new platform and the current state of this UEFI implementation on ARM based platforms....
Categories: firmware
TrenchBoot AEM gains support for UEFI installations
Published at June 10, 2025 · Krystian Hebel · 13 min read
A feature craved by many is finally here. AEM can now be used with Qubes OS installed under UEFI. Oh, and some automated testing. But mostly UEFI....
Categories: bootloader firmware hypervisor os-dev security
Automating Firmware Security: CI for DBX and Microcode Updates in Dasharo
Published at May 29, 2025 · Michał Kopeć · 10 min read
Microcode and DBX are critical components in establishing the security of your platform. This blog post will discuss how Dasharo automates their updates, making our firmware more transparent and your platform more secure....
Published at May 20, 2025 · Daniil Klimuk · 30 min read
This post will introduce some of the very popular attacks that target electronic devices - the RAM attacks, but the main topic will be the verification of ram-wipe software solution protection from the attacks....
Categories: security
.png){kind=small}
