When compiling coreboot for my Intense PC, I used binary blobs extracted from stock firmware. The ME/TXE firmware version is 8.1.20.1336 and this contains multiple security vulnerabilities. Unfortunately, running me_cleaner on ME blob breaks SATA [1], so next best thing is updating to latest ME blob released by CompuLab. However, this seems not so straight forward.
Latest BIOS update for Intense PC was downloaded from here: https://fit-iot.com/files/download/intense-pc/bios/16-04-2018/ipc_2.2.400.5.img.zip I unpacked and mounted the image like this: # mount -o loop,offset=16384 ipc_2.2.400.5.img /mnt/ This is the interesting files found in /mnt/ afterwards: 81723002.ME (7843840 bytes) BIOS_IMG.bin (16777216 bytes) I tried to extract intel fd modules from BIOS_IMG.bin: $ ifdtool -x BIOS_IMG.bin File BIOS_IMG.bin is 16777216 bytes Flash Region 0 (Flash Descriptor): 00000000 - 00000fff Flash Region 1 (BIOS): 00d00000 - 00ffffff Flash Region 2 (Intel ME): 00003000 - 00cfffff Flash Region 3 (GbE): 00001000 - 00002fff Flash Region 4 (Platform Data): 00fff000 - 00000fff (unused) However flashregion_2_intel_me.bin is just an empty file and the ME data is in 81723002.ME: $ hexdump flashregion_2_intel_me.bin 0000000 0000 0000 0000 0000 0000 0000 0000 0000 * 0cfd000 $ me_cleaner.py --check 81723002.ME ME/TXE image detected Found FPT header at 0x10 Found 23 partition(s) Found FTPR header: FTPR partition spans from 0x180000 to 0x24a000 ME/TXE firmware version 8.1.72.3002 Public key match: Intel ME, firmware versions 7.x.x.x, 8.x.x.x Checking the FTPR RSA signature... VALID Setting location of 81723002.ME in CONFIG_ME_BIN_PATH during configuration of coreboot seems not to work. Another important thing I found in coreboot documentation: "Warning: Sandybridge Chipsets need a matching ME blob and IFD ! The board won't boot at all if one of them is invalid." So if I understand correctly, I have to compile coreboot with the following files extracted from ipc_2.2.400.5.img: flashregion_0_flashdescriptor.bin flashregion_2_intel_me.bin 81723002.ME The flashregion_3_gbe.bin extracted from stock firmware, also used when compiling coreboot the first time. Does this sound right? Also, what is the correct way to convert 81723002.ME into the proper flashregion_2_intel_me.bin? Thanks in advance! Regards, Mogens Jensen [1]: https://github.com/corna/me_cleaner/issues/119 _______________________________________________ coreboot mailing list -- [email protected] To unsubscribe send an email to [email protected]
