-
Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.
Windows 10 SMM Mitigations (Firmware Protection) missing for Ryzen 3000?
- Thread starter Yagma
- Start date
- Joined
- Dec 16, 2017
- Messages
- 2,729 (1.18/day)
- Location
- Buenos Aires, Argentina
| System Name | System V |
|---|---|
| Processor | AMD Ryzen 5 3600 |
| Motherboard | Asus Prime X570-P |
| Cooling | Cooler Master Hyper 212 // a bunch of 120 mm Xigmatek 1500 RPM fans (2 ins, 3 outs) |
| Memory | 2x8GB Ballistix Sport LT 3200 MHz (BLS8G4D32AESCK.M8FE) (CL16-18-18-36) |
| Video Card(s) | Gigabyte AORUS Radeon RX 580 8 GB |
| Storage | SHFS37A240G / DT01ACA200 / WD20EZRX / MKNSSDTR256GB-3DL / LG BH16NS40 / ST10000VN0008 |
| Display(s) | LG 22MP55 IPS Display |
| Case | NZXT Source 210 |
| Audio Device(s) | Logitech G430 Headset |
| Power Supply | Corsair CX650M |
| Mouse | Microsoft Trackball Optical 1.0 |
| Keyboard | HP Vectra VE keyboard (Part # D4950-63004) |
| Software | Whatever build of Windows 11 is being served in Dev channel at the time. |
| Benchmark Scores | Corona 1.3: 3120620 r/s Cinebench R20: 3355 FireStrike: 12490 TimeSpy: 4624 |
Please either fill the system specs page https://www.techpowerup.com/forums/account/specs
or post the specs here in the thread so that we can know the hardware you're dealing with.
But, apparently you have to meet a lot of requirements for Firmware Protection?
This MS article seems to be related to your issue, although I'd feel more confident if some more experienced people and specially someone with actual experience on this particular kind of thing could confirm it.
or post the specs here in the thread so that we can know the hardware you're dealing with.
But, apparently you have to meet a lot of requirements for Firmware Protection?
This MS article seems to be related to your issue, although I'd feel more confident if some more experienced people and specially someone with actual experience on this particular kind of thing could confirm it.
System Guard Secure Launch and SMM protection - Windows Security
Explains how to configure System Guard Secure Launch and System Management Mode (SMM protection) to improve the startup security of Windows 10 devices.
docs.microsoft.com
Yes I have read this a few times but I don't know how to detect which of these the UEFI/OEM provides and which it does not... or if windows 10 is even capable of utilizing the latest technologies offered by AMD.
I am using an Asus TUF x570 Gaming Plus, Ryzen 3600, and Windows 10 2004.
I am using an Asus TUF x570 Gaming Plus, Ryzen 3600, and Windows 10 2004.
- Joined
- Aug 29, 2005
- Messages
- 7,079 (1.04/day)
- Location
- Asked my ISP.... 0.0
| System Name | Lynni PS \ Lenowo TwinkPad T480 |
|---|---|
| Processor | AMD Ryzen 7 7700 Raphael \ i7-8550U Kaby Lake-R |
| Motherboard | ASRock B650M PG Riptide Bios v. 2.02 AMD AGESA 1.1.0.0 \ Lenowo 20L60036MX Bios 1.47 |
| Cooling | Noctua NH-D15 Chromax.Black (Only middle fan) \ Lenowo WN-2 |
| Memory | G.Skill Flare X5 2x16GB DDR5 6000MHZ CL36-36-36-96 AMD EXPO \ Willk Elektronik 2x16GB 2666MHZ CL17 |
| Video Card(s) | Asus GeForce RTX™ 4070 Dual OC GPU: 2325-2355 MEM: 1462| Nvidia GeForce MX™ 150 2GB GDDR5 Micron |
| Storage | Gigabyte M30 1TB|Sabrent Rocket 2TB| HDD: 10TB|1TB \ SKHynix 256GB 2242 3x2 |
| Display(s) | LG UltraGear 27GP850-B 1440p@165Hz | LG 48CX OLED 4K HDR | AUO 14" 1440p IPS |
| Case | Asus Prime AP201 White Mesh | Lenowo T480 chassis |
| Audio Device(s) | Steelseries Arctis Pro Wireless |
| Power Supply | Be Quiet! Pure Power 12 M 750W Goldie | 65W |
| Mouse | Logitech G305 Lightspeedy Wireless | Lenowo TouchPad & Logitech G305 |
| Keyboard | Akko 3108 DS Horizon V2 Cream Yellow | T480 UK Lumi |
| Software | Win11 Pro 23H2 UK |
| Benchmark Scores | 3DMARK: https://www.3dmark.com/3dm/89434432? GPU-Z: https://www.techpowerup.com/gpuz/details/v3zbr |
If my memory is correct I read back when this was discovered it was only AMD APU's that had this flaw but I am not sure if it's also the whole Ryzen series.
- Joined
- Dec 16, 2017
- Messages
- 2,729 (1.18/day)
- Location
- Buenos Aires, Argentina
| System Name | System V |
|---|---|
| Processor | AMD Ryzen 5 3600 |
| Motherboard | Asus Prime X570-P |
| Cooling | Cooler Master Hyper 212 // a bunch of 120 mm Xigmatek 1500 RPM fans (2 ins, 3 outs) |
| Memory | 2x8GB Ballistix Sport LT 3200 MHz (BLS8G4D32AESCK.M8FE) (CL16-18-18-36) |
| Video Card(s) | Gigabyte AORUS Radeon RX 580 8 GB |
| Storage | SHFS37A240G / DT01ACA200 / WD20EZRX / MKNSSDTR256GB-3DL / LG BH16NS40 / ST10000VN0008 |
| Display(s) | LG 22MP55 IPS Display |
| Case | NZXT Source 210 |
| Audio Device(s) | Logitech G430 Headset |
| Power Supply | Corsair CX650M |
| Mouse | Microsoft Trackball Optical 1.0 |
| Keyboard | HP Vectra VE keyboard (Part # D4950-63004) |
| Software | Whatever build of Windows 11 is being served in Dev channel at the time. |
| Benchmark Scores | Corona 1.3: 3120620 r/s Cinebench R20: 3355 FireStrike: 12490 TimeSpy: 4624 |
Did a few quick searches over Reddit and Microsoft's Github for their documentation and it seems that you need to comply with all the requirements listed in the MS document I posted before (including a TPM 2.0 module, which isn't something common), for starters, and even so, this feature is only available on Windows 10 Enterprise running on 8th gen Intel vPro systems and later and some ARM systems. Not AMD.
On top of that, it seems that it can get very picky even on devices that were certified for this.
Leaving the links here
github.com
On top of that, it seems that it can get very picky even on devices that were certified for this.
Leaving the links here
Pull requests · MicrosoftDocs/windows-itpro-docs
This repository is used for Windows client for IT Pro content on Microsoft Learn. - Pull requests · MicrosoftDocs/windows-itpro-docs
github.com
Last edited:
- Joined
- Feb 18, 2005
- Messages
- 5,238 (0.75/day)
- Location
- Ikenai borderline!
| System Name | Firelance. |
|---|---|
| Processor | Threadripper 3960X |
| Motherboard | ROG Strix TRX40-E Gaming |
| Cooling | IceGem 360 + 6x Arctic Cooling P12 |
| Memory | 8x 16GB Patriot Viper DDR4-3200 CL16 |
| Video Card(s) | MSI GeForce RTX 4060 Ti Ventus 2X OC |
| Storage | 2TB WD SN850X (boot), 4TB Crucial P3 (data) |
| Display(s) | 3x AOC Q32E2N (32" 2560x1440 75Hz) |
| Case | Enthoo Pro II Server Edition (Closed Panel) + 6 fans |
| Power Supply | Fractal Design Ion+ 2 Platinum 760W |
| Mouse | Logitech G602 |
| Keyboard | Logitech G613 |
| Software | Windows 10 Professional x64 |
Sounds like this is something you'd need to reach out directly to AMD about.
Did a few quick searches over Reddit and Microsoft's Github for their documentation and it seems that you need to comply with all the requirements listed in the MS document I posted before (including a TPM 2.0 module, which isn't something common), for starters, and even so, this feature is only available on Windows 10 Enterprise running on 8th gen Intel vPro systems and later and some ARM systems. Not AMD.
On top of that, it seems that it can get very picky even on devices that were certified for this.
Leaving the links here
Pull requests · MicrosoftDocs/windows-itpro-docs
This repository is used for Windows client for IT Pro content on Microsoft Learn. - Pull requests · MicrosoftDocs/windows-itpro-docs
Thank you windwhirl for your concise and insightful post, hopefully all of these features can be implemented with an appropriate bios update! We can hope and wait.
- Joined
- Feb 21, 2006
- Messages
- 1,978 (0.30/day)
- Location
- Toronto, Ontario
| System Name | The Expanse |
|---|---|
| Processor | AMD Ryzen 7 5800X3D |
| Motherboard | Asus Prime X570-Pro BIOS 5003 AM4 AGESA V2 PI 1.2.0.B |
| Cooling | Corsair H150i Pro |
| Memory | 32GB GSkill Trident RGB DDR4-3200 14-14-14-34-1T (B-Die) |
| Video Card(s) | AMD Radeon RX 7900 XTX 24GB (24.3.1) |
| Storage | WD SN850X 2TB / Corsair MP600 1TB / Samsung 860Evo 1TB x2 Raid 0 / Asus NAS AS1004T V2 14TB |
| Display(s) | LG 34GP83A-B 34 Inch 21: 9 UltraGear Curved QHD (3440 x 1440) 1ms Nano IPS 160Hz |
| Case | Fractal Design Meshify S2 |
| Audio Device(s) | Creative X-Fi + Logitech Z-5500 + HS80 Wireless |
| Power Supply | Corsair AX850 Titanium |
| Mouse | Corsair Dark Core RGB SE |
| Keyboard | Corsair K100 |
| Software | Windows 10 Pro x64 22H2 |
| Benchmark Scores | 3800X https://valid.x86.fr/1zr4a5 5800X https://valid.x86.fr/2dey9c |
The recently released Asus 2407 bios for my board has this fix I believe.
This article covers gigabyte's bios update for this fix, Asus has already released theirs so update your TUF board.
www.techpowerup.com
This article covers gigabyte's bios update for this fix, Asus has already released theirs so update your TUF board.
GIGABYTE AMD Motherboard Adopt the Latest AGESA Microcode
GIGABYTE TECHNOLOGY Co. Ltd, a leading manufacturer of motherboards, graphics cards, and hardware solutions, announced today the latest BIOS update just recently for AMD platform motherboards. It not only supports 3rd Gen. AMD Ryzen XT desktop processors, but also provides effective solutions...
Last edited:
The recently released Asus 2407 bios for my board has this fix I believe.
This article covers gigabyte's bios update for this fix, Asus has already released theirs so update your TUF board.
GIGABYTE AMD Motherboard Adopt the Latest AGESA Microcode
GIGABYTE TECHNOLOGY Co. Ltd, a leading manufacturer of motherboards, graphics cards, and hardware solutions, announced today the latest BIOS update just recently for AMD platform motherboards. It not only supports 3rd Gen. AMD Ryzen XT desktop processors, but also provides effective solutions...
I'm using it right now and it did patch an SMM vulnerability of sorts but it doesn't allow for Firmware Protection to be enabled in windows 10. Maybe the UEFI now includes its own protections that do the same or better.