I have a CompuLab Intense PC that has not been patched for
CVE-2017-8083 (no CloseMnf protection mechanism for write protection
of flash memory regions), which should allow me to install coreboot
without an external programmer according to
https://www.coreboot.org/Board:compulab/intense_pc
So far I have successfully compiled coreboot from master branch, with
binary blobs extracted from stock firmware.
1. The coreboot toolchain is built with command
'make crossgcc-i386 CPUS=$(nproc)' as shown in the tutorial, but my
system is x86-64 so should I have used 'make crossgcc-x64' instead?
2. As I'm not using an external programmer to flash coreboot, is it
correct to run flashrom like this 'flashrom -w coreboot.rom -p
internal'? or do I need to pass more arguments?
3. In my configuration, this option is set by default:
CONFIG_UNLOCK_FLASH_REGIONS=y, just to be sure, this will allow me to
flash all regions, including ME, again without an external programmer
after coreboot is installed?
Regards,
Mogens Jensen
_______________________________________________
coreboot mailing list -- [email protected]
To unsubscribe send an email to [email protected]
