Slashdot Mirror

← Back to Stories (view on slashdot.org)

More Power To The Firmware

Posted by michael on from the press-f2-to-enter-setup dept.

An anonymous reader writes "In More Power To The Firmware Amit Singh talks about technical details of EFI, the next-gen BIOS replacement standard Intel, Microsoft and others are pushing. This is a very informative piece where he talks of issues with legacy BIOS, how it affects those who develop in the firmware environment and how EFI plans to solve these problems. EFI usage examples are included, including a programming example. He contrasts EFI with Open Firmware as well. IMO the second half of the article is even more interesting, where sample FORTH code is provided for displaying a window/mouse pointer GUI inside the Apple/Mac firmware! And of course, there's code for a new 'Towers of Hanoi' animation using the Mac firmware (remember Hanoimania?). Aspiring Mac Firmware Hackers could also check out the suggested projects ;-)"

19 of 226 comments (clear)

  1. Re:I'm not a tech guru type... by Oddly_Drac · · Score: 4, Informative

    "but can you imagine any sort of Windows-dependent BIOS?"

    No. Luckily, the article didn't mention one.

    --
    Oddly Draconis
    Too cynical to live, too stubborn to die.
  2. mouse control in bios is nothing new by Anonymous Coward · · Score: 1, Informative

    i had an amd 486dx4/100 motherboard back in the mid 90s that had a full gui windowing system to configure the bios that relied on the mouse (tabs were used, too). i think it was 640x480 or something very similar.

  3. Linux Kernel discussion by eddy · · Score: 5, Informative

    Here's a link to an older KT entry; "Status And Discussion Of EFI (Extensible Firmware Interface) Support"

    Explains some history, rationale and technical details.

    --
    Belief is the currency of delusion.
  4. Re:I'm not a tech guru type... by maxwell+demon · · Score: 4, Informative
    ...but can you imagine [...] a Windows-based BIOS of some type where the OS actually IS the BIOS?

    Well, given that there's LinuxBIOS ...
    --
    The Tao of math: The numbers you can count are not the real numbers.
  5. Re:I'm not a tech guru type... by Anonymous Coward · · Score: 2, Informative

    Ans what about Amiga OS. THe OS was the BIOS. at least for A1200 and before

    just wait until the 1st BIOS virus

  6. pocket pc by minus_273 · · Score: 2, Informative

    heh reminds me of a pocket pc where the Windows OS is in the ROM

    --
    The war with islam is a war on the beast
    The war on terror is a war for peace
    1. Re:pocket pc by minus_273 · · Score: 2, Informative

      "Sleek, expandable, and wireless-enabled, the Compaq iPAQ 3835 Pocket PC offers a powerful mobile computing tool that fits in the palm of your hand. It comes with 64 MB RAM and 32 MB ROM, a fast 206 MHz Intel StrongArm processor, and a bright LCD screen that displays 65,000 colors."
      no it is defiently in the 32mb of ROM. When you changed your OS you probably overwrote windows and put linux (im assuming thats what it is) on it.

      --
      The war with islam is a war on the beast
      The war on terror is a war for peace
  7. Re:I'm not a tech guru type... by x0n · · Score: 4, Informative

    The OS is the BIOS? Either you're trolling [but given your subject disclaimer, perhaps not], or you misunderstand the concept of abstraction layers, and their ordering. The BIOS cannot be dependent on Windows, it sits beneath the OS. The OS is dependent on it. Drivers, in effect, are mini-BIOSs in themselves. They abstract out the different hardware devices to a standard windows API. The BIOS that comes with your machine abstracts out the out-of-the-box components of your motherboard among other things. Sometimes windows drivers talk to the bios, but mostly they skip it altogether.

    - Oisin

    --

    PGP KeyId: 0x08D63965
  8. Re:I'd prefer an Open Bios... by drinkypoo · · Score: 2, Informative
    The complexity has to be somewhere. If the BIOS gets simpler the devices have to be more complicated to take up the slack. You can't rely on the OS handling the hardware until it boots, after all, so you have to get there somehow. The BIOS doesn't need to talk to the sound card or anything like that, because autoconfiguration of the basic parameters of devices are handled by plug and play, which is an integral part of the PCI specification (though perhaps not by that name, I've never actually read the specification.) Adapter cards and onboard peripherals get IRQs, IOports, and memory ranges from the PCI system controlled by the BIOS. But, what do you do after that? Currently in the PC world the BIOS jumps (JMPs, even) into the adapter BIOS and executes some of its code from ROM, optionally caching that ROM into "shadow" memory and executing it from there for speed, but once the OS loads the driver takes over and the BIOS isn't really used. AFAIK Linux only communicates with the BIOS at boot time, while loading assorted drivers, to find out what kind of parameters they should use, but many drivers go straight to the hardware and don't even bother with it.

    Anyone know how often Windows currently jumps into the BIOS today? However often it is, it will become moreso when DRM becomes a BIOS function...

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  9. PC's like the xbox by Stevyn · · Score: 2, Informative

    I hope this doesn't mean that PCs will be sold like Xboxes. I don't want to have to intall a mod chip on my laptop to run linux. I like the idea of the BIOS having more function and power, but I want it to do more than just prevent code from being executed. This should definately be an open standard otherwise Microsoft or Intel will have too much control. It's one thing to boot into windows and have that muck up your computer, but it's different when microsoft code is running on a linux box.

    Since microsoft doesn't seem to like to innovate anymore, I wonder why they are pushing for this. Linux has shown that you don't need security at the hardware level to prevent viruses from taking down your computer.

    So far I don't see many benefits the user will notice and enjoy. I'm not trying to spread DRM FUD because this article doesn't talk about it, I'm just asking why Microsoft cares so much to push this.

  10. hmm Innovatyion 10 years late? by linuxislandsucks · · Score: 1, Informative

    You mean after ten years of proven success in both SUN AND APPLE SYSTEMS Intel finally gets PCI religon?

    That is right folsk intle is finally enacting the last part of the PCI psec.. should we jump and cheer for it after ten years of foot dragging?

    --
    Don't Tread on OpenSource
  11. As any Apple //e user knows by Gothmolly · · Score: 2, Informative

    CALL -151

    --
    I want to delete my account but Slashdot doesn't allow it.
  12. Rom Based OS != BIOS by nurb432 · · Score: 3, Informative

    While the OS may have been in ROM, Like the Atari ST's, that doesnt make it the actual BIOS.

    By its very definition, the BIOS is a much lower level block of code. the true hardware abstraction layer, that the OS rides on top of..

    Sure its also in a ROM of some sort, perhaps even the same chips.. but that still doesnt really make a ROM based OS a 'BIOS'..

    --
    ---- Booth was a patriot ----
  13. Re:I'm not a tech guru type... by Alsee · · Score: 4, Informative

    Developers (that means you) will have to be able to sign their own software, or the system would be pointless. This would be an extra command in the makefile, no biggie.

    You don't understand Trusted Computing. It's not about signing software. There's no need to sign at all. What happens is if you change the software at all - even a single instruction - that that software no longer works with and existing data and can no longer communicate with other programs on the internet.

    The Trust chip generates a hash of the software. The hash is linked to an encryption key. If you change the software you lose the hash and can no longer get the the decryption key at all. Nothing works anymore. Very biggie.

    -

    --
    - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
  14. Re:Para para para noia by Mr.+Neutron · · Score: 3, Informative

    Just because DRM is there doesn't mean software will be DRM-protected. And just because software vendors aren't DRMing their products doesn't mean TPTB won't impose DRM on all electronic components.

    It's like Macrovision. About 90% of commercial VHS tapes are not Macrovisioned. But 100% of VCRs are Macrovision-compliant by law. Sure, you can purchase deMacrovision boxes for legal use, but most people aren't going to go through the trouble. The same thing will happen with computer hardware. All computer components manufactured for sale in the US will be "trusted." The enterprising and resourceful geek will get all of his components direct from Asia and either run Linux or a dusty old copy of XP/Longhorn, but for all practical purposes, DRM will be everywhere. It may not be taken advantage of by everyone, but it will be everywhere.

    --
    dinner: it's what's for beer
  15. Re:I'm not a tech guru type... by DeathPenguin · · Score: 2, Informative

    >>just wait until the 1st BIOS virus

    There have already been several, that was one problem with using DOS.

  16. Re:I'm not a tech guru type... by Alsee · · Score: 2, Informative

    Anyway, there will have to be a mechinism to upload your own hashes or the system will be useless for anything but tivos and xboxes.

    That's what I'm saying - there is NO way to "upload hashes". And there is no need to attach any signature to the EXE at all.

    When you run the program the Trust chip generates a hash value for the program. There is no hash attached to the program. There is no signature attached to the program. The chip generates a hash of the software on the fly, and uses that to generate or access an encryption key. Any data that program wants to read or send goes through that encryption key.

    YOU HAVE NO CONTROL over the hash.
    YOU HAVE NO CONTROL over the encryption key.

    The system does not verify that the software is has a "good" signature. It allows absolutely any software to run. The only thing it does is see if the software has changed. If the software is changed then it will still run, but it won't work. It won't be able to read any existing data and it won't be able to talk to other programs it's supposed to talk to.

    There is a whole big elaborate system built on top of this. But fundamentally it is designed to deny you control over your own computer. Trusted computing is about the owner not being trusted, instead other people can Trust that your computer will enforce rules against you, and that you will be powerless to tell your computer to do something different.

    When you run Trusted DRM music software, that software has a certain hash. That hash produces a specific encryption key. All of your DRM music files are encrypted with that key. With that key the chip then decrypts the DRM files for the player and it can play your music.

    However you are forbidden to ever know that encryption key. If you change the DRM music player in any way - perhaps some sort of change that would break the DRM protection - then the chip generates generates a different for the changes software. With a different hash you can no longer get the decryption key. So even if you broke the player's DRM system, the player can no longer read the music files.

    The RIAA can then Trust that your computer will not allow you to do anything except exactly what the RIAA decide to allow you to do. Exactly no more and no less than what the program they gave you will let you do or force you to do.

    -

    --
    - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
  17. Nope by Anonymous Coward · · Score: 2, Informative

    The Amiga is kind-of unique. The OS _is_ the BIOS, as well as everything else.

    Turn the Amiga on, the 680x0 reset vector runs. Through board logic, the Kickstart ROM is mapped to 0x00000000 as well as its usual location, and the lowest points of the ROM point out the jump address for the reset vector. The 68000 goes there, it's the INIT code of exec.library. Exec performs a self test on the board logic, the memory and the custom chips. It then searches for expansion cards (creates expansion.library), attached disk drives (trackdisk.device) and HDs (scsi.device (regardless of whether you have an IDE or SCSI hardware interface)), PCMCIA card disks (carddisk.device), etc.

    The graphics.library writes direct to Amiga hardware. The audio.device, in ROM, writes direct to Amiga hardware. potgo.resource, cia[a|b].resource, misc.resource, disk.resource, etc, are all arbitration mechanisms for custom chip registers. Sure, dos.library can load filesystems from disk once it's initialised by a HD or disk standard bootblock, but the basic 6 Amiga filesystems are in ROM. intuition.library and its high level BOOPSI stuff like loadable gadgets, images, datatypes are built on top of layers.library, which is built on top of hardware-hitting graphics.library.

    So there is tight integration between the hardware and the OS. There's no low-level code offering a hardware independent API to AmigaOS... that's AmigaOS itself. You can't put another OS there without adding in half of what AmigaOS did, in order to maintain the Amiga hardware. There's a lot of stuff that came after the Amiga designs (such as MMUs), and there's no official OS interface to it. They're not initialised by the OS. Random application programs fought over them with no OS supervision.

  18. Re:Mac Firmware by Graff · · Score: 2, Informative
    I suppose it's possible since you can update the firmware, but does Apple keep information about how to program the firmware proprietary, or is it open for people to tinker with?

    Apple provides plenty of information and links to information on the Apple Open Firmware Home Page. They even have a good sense of humor. The machine that the site is running on is located at "bananajr6000.apple.com"!
    --
    Sapere aude!