Skip to main content Link Menu Expand (external link) Document Search Copy Copied
OpenCore Configuration

OpenRuntime

OpenRuntime is an OpenCore plugin implementing OC_FIRMWARE_RUNTIME protocol. This protocol implements multiple features required for OpenCore that are otherwise not possible to implement in OpenCore itself as they are needed to work in runtime, i.e. during operating system functioning. Feature highlights:

  • NVRAM namespaces, allowing to isolate operating systems from accessing select variables (e.g. RequestBootVarRouting or ProtectSecureBoot).
  • Read-only and write-only NVRAM variables, enhancing the security of OpenCore, Lilu, and Lilu plugins, such as VirtualSMC, which implements AuthRestart support.
  • NVRAM isolation, allowing to protect all variables from being written from an untrusted operating system (e.g. DisableVariableWrite).
  • UEFI Runtime Services memory protection management to workaround read-only mapping (e.g. EnableWriteUnprotector).