Matthew Garrett Has a Fix To Prevent Bricked UEFI Linux Laptops

hypnosec writes "UEFI guru Matthew Garrett, who cleared the Linux kernel in Samsung laptop bricking issues, has come to rescue beleaguered users by offering a survival guide enabling them to avoid similar issues. According to Garrett, storage space constraints in UEFI storage variables is the reason Samsung laptops end up bricking themselves. Garrett said that if the storage space utilized by the UEFI firmware is more than 50 percent full, the laptop will refuse to start and ends up being bricked. To prevent this from happening, he has provided a Kernel patch."

more than 50 per cent full = fail is bad

[Joe_Dragon]

more than 50 per cent full = fail is bad and Samsung needs to come out with a bios update to fix that.

Re:more than 50 per cent full = fail is bad

Welcome to the world of supposedly "disposable" electronics. I seriously wouldn't be surprised if Samsung told people with affected devices to "buy a new one," or Apple if the situation were reversed. Apple might even go as far as to say something with real balls, like "it's your fault for how you're holding it" in the case of the iPhone antenna issue.

It makes you wonder where it's all coming from resource-wise. One tablet, even a piece of shit tablet, requires a litany of rare earth minerals, petroleum for plastic, other ingredients in its production...as does a desktop or a laptop. Some countries seem less attuned to the potential shortage than others...Canada, for example, recently eliminated the penny from its currency. I can see the point in that one, the penny has basically been devalued to the point of being worthless to most people...HOWEVER, to the telecom and broadband industry who both need the copper, it's quite valuable. It's also getting too expensive to extract it out of the ground -- how expensive? Enough to eliminate the penny entirely so that the copper can be put to better use.

It's a shame that Slashdot doesn't cover similar topics very frequently!

Re:more than 50 per cent full = fail is bad

It was probably very well intentioned - to avoid the UEFI partition becoming full and causing errors.

Re:more than 50 per cent full = fail is bad

[SuricouRaven]

Something like this should never have gotten through testing. Samsung must have tested using only a single OS or a closely related family (ie, Windows) - and that is no way to test if a piece of code is going to behave under all circumstances.

Re:more than 50 per cent full = fail is bad

[broken_chaos]

They didn't even test the UEFI nvram (not a partition) filling up. If they had, they would have seen that, oh, wow, it bricks the laptop entirely.

Re:more than 50 per cent full = fail is bad

[Goaway]

Remember, if Apple hasn't done anything wrong, you can take something somebody else did, and pretend they did it even worse! That's how evil Apple is!

Re:more than 50 per cent full = fail is bad

Remember, if Apple hasn't done anything wrong, you can take something somebody else did, and pretend they did it even worse! That's how evil Apple is!

And in most cases it would be absolutely true, no pretending about it.

Re:more than 50 per cent full = fail is bad

Uhh, there has been almost no copper (less than 5%, used for copper plating them) in Canadian pennies from 1997 onwards. They were basically all zinc or steel.

So your theory about the Canadian penny being abolished "so the copper can be put to better use" is nonsense.

They merely became too costly to produce, relative to their value. The correct course of action would not to have been to abolish the penny, however. Instead, measures should have been taken to increase the value of the Canadian dollar. This would have thus made each existing penny more valuable, and with sufficient deflation would have made them feasible for everyday use again.

While this may have hurt the natural resources sector, or those foolish enough to take out loans, any suffering is well-deserved.

Re:more than 50 per cent full = fail is bad

"would" That's future conditional. aka hypothetical. aka pretending.

retard.

Re:more than 50 per cent full = fail is bad

[Goaway]

I can't help but notice a complete and utter lack of anything resembling facts in your post.

Re:more than 50 per cent full = fail is bad

[ais523]

The same bug can brick Samsung laptops on Windows too. It's just that it was noticed on Linux first.

Re:more than 50 per cent full = fail is bad

[Impy+the+Impiuos+Imp]

We've put error logging in our products, and had an upper limit on how much data it could write, then started a circular buffer, then beat the hell out of it to make sure it ran fine.

So, too, for basically any data storage. This was just sloppy on somebody's part.

Re:more than 50 per cent full = fail is bad

[fuzzyfuzzyfungus]

It was probably very well intentioned - to avoid the UEFI partition becoming full and causing errors.

Are you not seeing the insanity of avoiding errors caused by being 100% full by bricking the device at 50% full?

More broadly, for what possible reason would Samsung handle UEFI storage in such a fucked-up way? How many decades now have we had computers with some sort of mass-storage device that had to be treated sanely?

Re:more than 50 per cent full = fail is bad

[fuzzyfuzzyfungus]

Something like this should never have gotten through testing. Samsung must have tested using only a single OS or a closely related family (ie, Windows) - and that is no way to test if a piece of code is going to behave under all circumstances.

Something like this should never have gotten through design. "Oh, I'm sure nothing will actually try to store nearly as much data in the nonvolatile storage region as the system offers to store, it'll be fine!" is Not a valid plan. Obviously, any finite storage device cannot fulfill arbitrary storage demands; but that's why you have a graceful way of saying 'sorry, no more space', rather than silently accepting the attempt and then falling over dead.

Re:more than 50 per cent full = fail is bad

640k should be enough for anyone.

Re:more than 50 per cent full = fail is bad

50 per cent = 320k, which should still be enough for anyone.

Re:more than 50 per cent full = fail is bad

[ilsaloving]

Unfortunately you've already got +5 insightful so I can't mod you +1 funny. Unless you weren't trying to be funny, in which case I'd mod you +1 ironic.

(Hint to people who don't get it: UEFI is a replacement to BIOS. There's no such thing as a 'BIOS' with UEFI.)

Re:more than 50 per cent full = fail is bad

[davester666]

You obviously aren't working on a product that is sold with no margin.

Re:more than 50 per cent full = fail is bad

[Chrisq]

Remember, if Apple hasn't done anything wrong, you can take something somebody else did, and pretend they did it even worse! That's how evil Apple is!

How dare Apple flame my comments like that!

Re:more than 50 per cent full = fail is bad

[Hal_Porter]

Get back in the cattle truck, Apple apologist!

Re:more than 50 per cent full = fail is bad

[ZiggyM]

There is probably a good reason for not allowing more than 50% full. For example assuming the firmware never gets larger than 50%, you have the other 50% as guaranteed space to write the new firmware version. Simply patching firmware is dangerous because of a power failure leaving you in the middle of the patch. Instead, you write the entire new version on the other 50% and then jump to the new firmware without possibility of partial writes. Of course, the bricking part is not the best way to handle it.

Re:more than 50 per cent full = fail is bad

maybe they did this on purpose

From the same manufacturer samsung SGH 5339i mobile phone is about 80% full for dalvik cache when your receive it, allowing you to install very few apps from the market

unless you root it and use a partition to store such cache, not quite easy for average phone users

problem fixed?

So all I have to do now is checkout the latest git, build the right kernel with the right drivers and replace the one in the laptop's protected storage area. There are probably 5 persons capable of doing this on their bricked laptops.

Re:problem fixed?

[cheater512]

No the bricked laptops are still bricked. This just stops more laptops from falling to the same bug.

That's great, but can they be fixed once bricked?

[John+Hasler]

n/t

Re:Bad Unified Extensible Firmware Interface...or?

[Sir_Sri]

---The UEF Interface seems to work just fine with Win OS and iOS. How is that a bios problem?

Samsungs implementation of UEFI is the problem, not the UEFI specification. No, it's not a 'bios' problem, UEFI replaced bios, but Samsung seems to have done something odd in their implementation of UEFI.

"---Gee wonder why the great mass migration to Linux hasn't happened?

Well sure, that has always been an issue. Linux apparently isn't important enough for companies to bother testing for it, which means it only works with contrived hacks, which means no one uses it, which means companies don't think it's important enough to bother testing for it.

If it's bricked...

Just sue on the small claims court.

You pay like 35 pounds to issue the legal challenge, and you almost automatically win because the problem is due to a defective product.

Samsung on the other hand will have to show as represented by some lawyer, and has to pay everything.

If it doesn't show, they will get a decision by default, which is almost the same...

Why do you think companies do replace items like that instead of flatly refusing?

Because they can't afford the bad publicity and the continuously court auditions.

Besides, don't even try to do a class action... is way more fun to have the company to run amok between 1000 court rooms almost at the same time...

BTW i'm not a lawyer and this is not legal advise. :)

Re:If it's bricked...

[Nemyst]

Most companies don't ever bother showing up to small claims. Unless the item you're claiming a replacement/repair on is really, really expensive, it's usually more cost-effective for them to get the default decision and pay up than to get a representative in court.

They largely do this because few people go through the hassle of using small claims court in the first place. It's a bit more complicated than just paying a nominal fee, though that depends on your country's laws, but it's usually worth it.

No...Bad Unified Extensible Firmware Interface

[tuppe666]

The UEF Interface seems to work just fine with Win OS and iOS. How is that a bios problem?

http://www.pcworld.com/article/2027819/not-just-linux-windows-can-brick-samsung-laptops-too.html No bad on Windows too.

Please don't quote other peoples comments as fact, I suggest you check out the reply to it.

As for the Mass Migration to Linux, that happened with Android, which is set to become the most installed OS this year.

Re:No...Bad Unified Extensible Firmware Interface

As for the Mass Migration to Linux, that happened with Android, which is set to become the most installed OS this year.

No. You're making the classic zealot's mistake of moving the goalposts to a different game. The "Great Mass Migration to Linux" was referring to desktop and laptops PCs, not phones, tables, or other hardware. Also note that while Android runs on the Linux kernel, it doesn't readily run GNU/Linux software.

Re:No...Bad Unified Extensible Firmware Interface

Well, this is a kernel issue, so in a way the GP is right. But really, it's more accurate to say the desktop/laptop OS wars are over and GNU/Linux lost big time. In the long-term GNU/Linux will probably dominate what little sliver of market is still taken up by desktops/laptops as commercial support disappears from that market segment, but the main computing platform appears to be switching to the pocket and tablet form-factors, which are dominated by Android and iOS at the moment (although the quick rise of iOS and the subsequent quick rise of Android overtaking iOS are both recent events, so it's far too early to call that fight over).

Re:No...Bad Unified Extensible Firmware Interface

It only started referring to desktop and laptop PCs when people like you moved the goal posts to not include servers and geek PCs (you know geeks, the people who used to be recognizable by them owning a PC).

If Linux had grabbed the PC market, INSTEAD of the smart phone market, people like you would be telling us that the PC market is dead, the smart phone is where the future lies.

Re:No...Bad Unified Extensible Firmware Interface

[recoiledsnake]

As for the Mass Migration to Linux, that happened with Android, which is set to become the most installed OS this year.

That means it must be time to remove the anti-trust restrictions on Microsoft and Windows, right?

Re:When you go Linux....

[Cito]

You can sometimes on many "bricked" devices like linksys router bricks after borking a dd-wrt install
and on the samsung laptops as well by playing with the jtag

http://en.wikipedia.org/wiki/Joint_Test_Action_Group

most stuff has jtag support and in some cases you can use the jtag header to unbrick a device.

I've unbricked an old WRT54GL after a screwup I did on an older dd-wrt install few years ago using jtag.

it's not something a normal user would be able to do or have confidence in doing, so yea in most cases the normal user will never unbrick.

Re:Bad Unified Extensible Firmware Interface...or?

[fluffy99]

It's been demonstrated that this bug can be elicited from Windows as well. And Windows expects to be able to write even more info than Linux was. Linux was just the first to expose the problem by trying to use UEFI variables to hold kernel panic info (Apple does something similar). IT didn't help that the UEFI driver itself caused the kernel panic, after which the kernel writes some debug log info to the UEFI to support later postmortem analysis.

KISS

[gmuslera]

The fix is in the wrong place. Is basically broken hardware, something that run as root/admin (intended or not) could brick them at any time. Is a problem just waiting to happen, avoiding them is the right solution.

Re:KISS

[John+Hasler]

> The fix is in the wrong place.

Yes, of course, but only Samsung can put it in the right place. At least this is a workaround for people who already made the mistake of buying one of these pieces of junk.

Re:KISS

[F.Ultra]

Not for people owning the hardware that want to be able to use it without the risk of bricking it until Samsung comes out with a fixed UEFI (if they ever do).

Re:KISS

[sjames]

It's more accurately a work-around. It's certainly in the wrong place and ultimately not "the right thing", but has the advantage that it doesn't depend on a potentially unwilling or unable party to at least get it to not brick. As such, it may be 'the best we can do without Samsung' and as such, it's useful.

It also adds a bit of shame factor. See that Samsung? Some guy sitting in his office can make your hardware work better (with Linux) than your own engineers. How sad is that?!

If that doesn't make someone at Samsung beet red in the face and desperate to release a properly corrective patch, they deserve to lose in the market.

Re:KISS

[ArsenneLupin]

These devices came out less than 2 years ago. So they are all still under warranty. Brick them, bring them back to the shop, get a refund, and buy a non-broken device instead.

Re:KISS

[ArsenneLupin]

Why do they keep the hardware? Simply get them exchanged for non-broken hardware.

Re:KISS

[ArsenneLupin]

If that doesn't make someone at Samsung beet red in the face and desperate to release a properly corrective patch, they deserve to lose in the market.

Maybe it does, but that still doesn't mean that a fix will be coming. It's not as if developing the fix was expensive, but you've got to consider all the overhead: meetings, heavy testing procedures, etc.

Re:KISS

[sjames]

Meetings perhaps, but clearly there's not much in the way of testing procedures if a big ugly bug like that got out. Even if there is a lot of testing and this was an anomaly, what';s the patch going to do, double dog brick the laptop?

Re:KISS

[ArsenneLupin]

The purpose of these test procedures is not to find bugs (they didn't find this bricking issue afterwards), but it's to delay fixes, if ever a bug is found.

Case in point: a large Luxembourgish bank encountered such an issue in their homebanking product (login impossible with some of the Luxtrust smartcard products). The broken version was put online beginning of June 2012 and customers were complaining already within days afterwards. Before the end of Une, it was known (by customers) what the problem was (literally, a single typo in a config file), and that the upstream provider (Luxtrust) had a fix. Yet, the bank still refused to roll out a fix. There excuse was "we'd have to redo our expensive test suite again, and we don't have any budget for that". To this day, the issue is still unfixed. Way to reward people who paid 50€ out of their own pocket for an extra-secure smartcard...

Re:KISS

[F.Ultra]

Probably because they are unaware of the problem. Better to have a "temporary" fix in the kernel so that _that_ day these people tries to install Linux they don't get bricked devices. Not every one follows the tech news you now.

It depends on the cpu and the manufacturing....

procedure. Some ARM chips have bootstrap code that will talk to a usb device (i.e. looks like a serial port, sort of), and there is a program that lets you load the initial software no matter what's in flash. That usb port might just be a header or a bunch of pads on the cpu.

With other devices you have to go into a jtag port, (i.e. a header or perhaps just solder pads) load a tiny program into ram, and use THAT to program the flash.

If they build them with empty flash, there has to be a way to do the initial load. If they build them with programmed flash, it might not be possible without unsoldering the flash chip(s) or something like that.

Re:A host file would have prevented the damage

Third time apk spam has gotten through my HOSTS file. PROOF apk is a liar yet again!

Why do people trust Samsung software?

Seriously. Anything they can write code for will be buggy, insecure and crap.

Re:A host file would have prevented the damage

Obviously APK filled his hosts files with backdoors before distributing them to ensure he doesn't block himself.

Re:That's great, but can they be fixed once bricke

[LordLucless]

If they can, they weren't bricked in the first place. That's what "bricked" means.

Re:A host file would have prevented the damage

[myowntrueself]

You have got way too much time on your hands.

English for Slashdot editors

[wonkey_monkey]

According to Garrett, storage space constraints in UEFI storage variables is the reason Samsung laptops end up bricking themselves.

Is? Is?

Re:English for Slashdot editors

[formfeed]

According to Garrett, storage space constraints in UEFI storage variables is the reason Samsung laptops end up bricking themselves.

Is? Is?

I think your one of them Gramer-Nazi's who is always wanting to correct other people's posting.
Just sit on you're hands for one's!

Re:When you go Linux....

[LordLimecat]

I never knew that thats what JTAG stood for. Sounds much cooler than "debugging interface", more like its a team of crack hackers who spend their friday nights chilling with the DevGru (Seal Team 6) guys.

Re:Bad Unified Extensible Firmware Interface...or?

[denbesten]

---The UEF Interface seems to work just fine with Win OS and iOS. How is that a bios problem?

Perhaps a car analogy will help. Imagine there is a bridge that semi trucks hit when they try to go under, but a cars and pickups do not. Without more facts, one can't really say if the problem is that the trucks are too tall or the bridge is too short. In this case, they investigated and discovered the bridge was built shorter than the bridge building rules require. The short-term fix is to post "no semi" signs and use less-tall trucks to get to the other side. The proper fix is to jack up the bridge.

The patch announced today is the "less-tall truck".

What happened to Open Firmware?

It amazes me, because every system I've seen that uses UEFI introduces some pretty incredible epic failures across the board.

What really boggles my mind is that we had an awesome CLI based firmware environment eons ago going by the name of "Open Firmware" (or OpenBoot). Sun's boxes ran it, even Apple's old PowerPC rigs had an OF console accessible by CMD-OPT-O-F (if I'm not mistaken). OF really was pretty elegant and clean, more importantly it seemed to work really well.

Is there some reason Open Firmware hasn't been ported to x86 and placed into widespread use?

Why is it that we have to put up with this atrocity known as UEFI? It just seems like one of the most convoluted and horribly implemented systems. Kind of reminds me of the EISA days, actually, which left me screaming for a box with some sane firmware and a hardware architecture that wasn't explicitly designed to boot CP/M and DOS.

Re:What happened to Open Firmware?

We have coreboot, but due to lack of support by a few major players, building a coreboot-capable machine takes more planning ahead of time than most people want to do, plus there's the whole "Flash your mobo" step, which turns a lot of people off. Plus, there is only one board supported that works with any kind of recent Intel CPU, unless you go for a server board.

Re:What happened to Open Firmware?

[BitZtream]

OpenBoot, like BIOS, was replaced by EFI years ago. The PC windows world is JUST now picking up on the EFI bandwagon that everyone else has been on for years.

Re:When you go Linux....

[Hal_Porter]

The name is a contrast to the Divided Test Action Group, which collapsed because of internecine squabbling that led to layoffs, punch ups in the parking lot and eventually drive by shootings.

Brian Damage, their former CTO, is currently serving fourteen life sentences in a SuperMax prison for a flame thrower revenge attack on the Floor 6.

Life imitates art

[Kiwikwi]

Are you not seeing the insanity of avoiding errors caused by being 100% full by bricking the device at 50% full?

Reactor explosion timer destroyed. Reactor Explosion Uncertainty Emergency Preemption Protocol activated. This facility will self-destruct in two minutes.

There are degrees of bricked.

Bricked for us means the customer can't do anything and it has to come back to us (the factory), and we've got to connect it up to our equipment and redo the initial load. If they're built with programmed flash, that means replacing a chip, which with modern manufacturing processes is a dicey operation.

Re:That's great, but can they be fixed once bricke

[serviscope_minor]

If they can, they weren't bricked in the first place. That's what "bricked" means.

Yay! Can we get into an argument as to what bricked means?

I have a friend with a reflow station, so I can replace busted chips. So *your* hardware isn't *truly* bricked. Etc.

Re:Bad Unified Extensible Firmware Interface...or?

[Jesus_666]

Oh, golly. Samsung didn't fully understand the tech they're working with and implemented it in a braindead way that enters an embarassing failure mode almost immediately after hitting the market. Between this and /dev/exynos-mem I think I'll stop trusting Samsung with anything involving firmware for the time being...

Re:Bad Unified Extensible Firmware Interface...or?

[ArsenneLupin]

No, the problem is that on the approach to the bridge is a sign "height limitation 3m", but actually the bridge has only 1.5m clearance. Cars still pass, but even the tiniest lorry will bump into it.

Re:A host file would have prevented the damage

Please ban this idiot away with some regex magic!

Re:That's great, but can they be fixed once bricke

[LordLucless]

Yay! Can we get into an argument as to what bricked means?

Yay! Let's make it a relative term. I've got a friend who's an idiot. For him, hitting the off switch "bricks" the phone, cause he can't figure out how to fix it from that state.