Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
sidkshatriya 4 days ago

> It seems that things wouldn't work without a BIOS update: PyTorch was unable to find the GPU. This was easily done on the BIOS settings: it was able to connect to my Wifi network and download it automatically.

Call me traditional but I find it a bit scary for my BIOS to be connecting to WiFi and doing the downloading. Makes me wonder if the new BIOS blob would be secure i.e. did the BIOS connect over securely over https ? Did it check for the appropriate hash/signature etc. ? I would suppose all this is more difficult to do in the BIOS. I would expect better security if this was done in user space in the OS.

I'm much prefer if the OS did the actual downloading followed by the BIOS just doing the installation of the update.

ZiiS 4 days ago | parent | next [-]

I have never seen a BIOS that didn't allow offline updates? However SSL is much less processing then a WPA2 WiFi stack, I would certainly expect this to be fully secure and boycot a manufacturer who failed. Conversely updating your BIOS without worrying if your OS is rooted is nice.

adrian_b 4 days ago | parent [-]

Updating your BIOS without worrying if your OS is rooted can be easily and more securely done from an USB memory.

The BIOSes recent enough to be able to connect through the Internet normally have the option to use a USB memory from inside the BIOS setup.

Some motherboards can update the BIOS from a USB memory even without a CPU in the socket.

bityard 4 days ago | parent | prev | next [-]

You don't HAVE to update the bios over wifi, fwupd is perfectly able to do it as well.

imp0cat 4 days ago | parent | prev [-]

Isn't this pretty much standard in this day and age? HP for example also has this option in BIOS for their laptops (but you still can either download the BIOS blob manually in Linux or use the automatic updater in Windows if you want).

sidkshatriya 4 days ago | parent [-]

> Isn't this pretty much standard in this day and age?

If something is "standard" nowadays does it mean it is the right way to go ?

One of my main issues is that this means your BIOS has to have a WiFi software stack in it, have a TLS stack in it etc. Basically millions of lines of extra code. Most of it in a blob never to be seen by more than a few engineers.

Though in another a way allowing BIOS to perform self updates is good because it doesn't matter if you've installed FreeBSD, OpenBSD, Linux, Windows, <any other os> you will be able to update your BIOS.

ethbr1 4 days ago | parent | next [-]

> If something is "standard" nowadays does it mean it is the right way to go ?

Next thing you'll be telling me that you have a problem piping internet hosted install scripts directly into shell!

trvz 4 days ago | parent | prev [-]

I fully expect any BIOS to have millions of unnecessary lines of code already though. May as well have a bit more for user convenience.