I used chipsec to evaluate my hardware.
And I got following report:
[-] Software has write access to SPI flash descriptor
[-] FAILED: SPI flash permissions allow SW to write flash descriptor
I look at the chipsec source code and find that this is read from frap
register(SPIBAR + 50h).
However I can't find the spec how to read the SPI flash descriptor itself.
I find some code from flashrom:
It reads SPI flash descriptor using MMIO, but also I don't know how to
write it.(it has no effect when write to the same register with read).
Hello Chipsec Community!
There will be a Chipsec Community Meeting: Wednesday, December 1st, 2021 @ 9 PT/12 ET/17 GMT
If interested, please participate! Details can be found on the wiki:
Hope to see you there!
Security Researcher/Chipsec Developer
Firmware Infrastructure and Automation
Foundational Software Technologies
Software and Advanced Technology Group
Confidentiality Notice | This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential or proprietary information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, immediately contact the sender by reply e-mail and destroy the original and all copies of the message.