https://marc.info/?l=openbsd-cvs&m=151570987406841&w=2
Quote:
Log message:
Update the Intel microcode once the root filesystem has been mounted.
This depends on the intel-firmware package that contains newer Intel
microcode which will be installed automatically by fw_update(1).
The update should happen much earlier since updating the microcode can
add or remove not only feature flags but also whole features. For now
only update feature flags that are relevant to Spectre.
|
<Edit>
https://marc.info/?l=openbsd-tech&m=151588857304763&w=2
Quote:
Patrick and others commited amd64 Intel cpu microcode update code
over the last few days. The approach isn't perfect, but it is good
enough for a start. I want to explain the situation.
When you fw_update, you'll get the firmware files.
Upon a reboot, it will attempt to update the microcode on your cpus.
Maybe there isn't a new microcode.
|
</Edit>
It is worth to note that a lot of sources claims that updated microcode contains flaws.
https://support.lenovo.com/pl/pl/solutions/len-18282
Quote:
|
Withdrawn Broadwell & Haswell CPU Microcode Update: Intel provides the CPU microcode updates required to address Variant 2, which manufacturers like Lenovo then incorporate into their UEFI firmware. Intel has notified manufacturers of quality issues in the initial Broadwell and Haswell microcode updates with instructions to no longer distribute the affected microcode. As such, Lenovo has withdrawn previously issued UEFI firmware containing the affected Broadwell and Haswell CPU microcode.
|
http://www.dell.com/support/article/...-?lang=en#bios
Quote:
|
Intel has communicated a potential issue with the microcode included in these BIOS updates for Intel Xeon Haswell and Broadwell processors listed below.
|
__________________
Signature: Furthermore, I consider that systemd must be destroyed.
Based on Latin oratorical phrase
Last edited by e1-531g; 14th January 2018 at 02:37 PM.
Reason: Added edit, because saw Theo de Raadt mail to tech
|