Intel (Converged Security) Management Engine: Drivers, Firmware and Tools (2-15)

Some ME-related stuff leaked from Intel
https://twitter.com/deletescape/status/1291405688204402689
(look for magnet links in comments)


magnet:?xt=urn:btih: (Removed)

Thanks for letting us know guys but I’ll remove any links or attachments to these files in order to preserve what we have here.

Hello, is there anyway to pull a specific partition ID section and create a backup, something along the lines of C:\DRIVERS\WIN\ME\FWUpdLcl64.exe -save C:\Test.bin -partid ISHC.
I flashed the wrong ISHC firmware (Intel Integrated Sensor Hub Firmware for Windows 10 (64-bit) - ThinkPad), and lost access to sensors. I have two of the same laptops, one with functional sensors, could I pull the ISHC partition firmware from that through software?


Maybe. Run FWUpdLcl64 -save csme.bin, compress the resulting "csme.bin" file and attach/link it here.


Maybe. Run FWUpdLcl64 -save csme.bin, compress the resulting "csme.bin" file and attach/link it here.





https://1drv.ms/u/s!ArgNvCzXGkEX6E1pugF8tXkKoAE-?e=8NWLOV

Thanks for the assistance. I have uploaded the MEInfo and

for both the faulty and working laptop.

@ xLima

Ok, ISHC is not included at the FWUpdate Restore Point image but we can get it from the proper Lenovo ISH Update. What is your exact model?



LENOVO ThinkPad Yoga 260 Laptop - Type: 20FE-0010AU


I had to find a Yoga 260 SPI/BIOS dump to extract the ISHC firmware from it and even though the incompatible version you flashed is newer, you should be able to downgrade because the SVN hasn’t changed. Download the attachment and run "FWUpdLcl64 -f Yoga260_ISHC.bin -partid ishc".

Yoga260_ISHC.rar (204 KB)


I had to find a Yoga 260 SPI/BIOS dump to extract the ISHC firmware from it and even though the incompatible version you flashed is newer, you should be able to downgrade because the SVN hasn’t changed. Download the attachment and run "FWUpdLcl64 -f Yoga260_ISHC.bin -partid ishc".




Thanks again for all the help, encountering the following error.

1
2
3
4
5
6
7
8
9
10
 
C:\Windows\system32>C:\DRIVERS\WIN\ME\20200908.12222345\FWUpdLcl64 -F Yoga260_ISHC.bin -PARTID ISHC
 
Intel (R) Firmware Update Utility Version: 11.8.77.3664
Copyright (C) 2007 - 2020, Intel Corporation. All rights reserved.
 
Communication Mode: MEI
 
Warning: Do not exit the process or power off the machine before the firmware update process ends.
 
Error 8714: Firmware update not initiated due to file open or read failure
 



I tried with -OEMID and -allowsv, no luck. -generic gives a different error.

EDIT:
C:\Windows\system32>C:\DRIVERS\WIN\ME\20200908.12222345\FWUpdLcl64 -F Yoga260_ISHC.bin -PARTID ISHC -OEMID 4C656E6F-766F-0000-0000-000000000000 -generic -allowsv

CMD was run as Admin

I should have reported that my laptop sleeping issues has been fixed since upgrading to Windows 2004

all future updated can be fond on this thread https://community.intel.com/t5/Processor…-my/td-p/686736

I think I spammed this thread a lot


The way you’ve used Command Prompt will cause FWUpdate to look for the firmware in C:\Windows\System32, which is wrong.


The way you’ve used Command Prompt will cause FWUpdate to look for the firmware in C:\Windows\System32, which is wrong.





1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
 
Microsoft Windows [Version 10.0.19041.388]
(c) 2020 Microsoft Corporation. All rights reserved.
 

C:\Windows\system32>cd C:\DRIVERS\WIN\ISH\20200808.17135732\
 
C:\DRIVERS\WIN\ISH\20200808.17135732>FWUpdLcl64 -f Yoga260_ISHC.bin -partid ishc
 
Intel (R) Firmware Update Utility Version: 11.8.60.3561
Copyright (C) 2007 - 2018, Intel Corporation. All rights reserved.
 
Communication Mode: MEI
 
Warning: Do not exit the process or power off the machine before the firmware update process ends.
 
Error 8771: Invalid File.
 
C:\DRIVERS\WIN\ISH\20200808.17135732>
 


No luck unfortunately.

Ok, let’s try something. Download the attached archive, extract the Yoga260_ISHC folder to the desktop, open a command prompt as administrator at the Yoga260_ISHC folder and run:

FWUpdLcl64 -f csme.bin -partid ishc

If it doesn’t work, try:

FWUpdLcl64 -f csme.bin -partid ishc -oemid 4c656e6f-766f-0000-0000-000000000000

Yoga260_ISHC.rar (1.81 MB)



LEGEND! It works.

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
 
C:\DRIVERS\WIN\ISH\20200808.17575862>MEInfoWin64
 
Intel(R) MEInfo Version: 11.8.60.3561
Copyright(C) 2005 - 2018, Intel Corporation. All rights reserved.
 

 
Intel(R) ME code versions:
 
BIOS Version N1GETA2W (1.81 )
MEBx Version 11.0.0.0010
GbE Version 1.3
Vendor ID 8086
PCH Version 21
FW Version 11.8.77.3664 LP
Security Version (SVN) 3
LMS Version 2010.14.0.1499
MEI Driver Version 1952.14.0.1470
Wireless Hardware Version 2.1.77
Wireless Driver Version 20.70.17.1
 
FW Capabilities 0x31101640
 
Intel(R) Capability Licensing Service - PRESENT/ENABLED
Protect Audio Video Path - PRESENT/ENABLED
Intel(R) Dynamic Application Loader - PRESENT/ENABLED
Intel(R) Platform Trust Technology - PRESENT/ENABLED
 
Re-key needed False
Platform is re-key capable True
TLS Disabled
Last ME reset reason Firmware reset
Local FWUpdate Enabled
BIOS Config Lock Enabled
GbE Config Lock Enabled
Host Read Access to ME Disabled
Host Write Access to ME Disabled
Host Read Access to EC Disabled
Host Write Access to EC Disabled
SPI Flash ID 1 EF4018
SPI Flash ID 2 Unknown
BIOS boot State Post Boot
OEM ID 4c656e6f-766f-0000-0000-000000000000
Capability Licensing Service Enabled
OEM Tag 0x00000000
Slot 1 Board Manufacturer 0x000017AA
Slot 2 System Assembler 0x00000000
Slot 3 Reserved 0x00000000
M3 Autotest Disabled
C-link Status Disabled
Independent Firmware Recovery Disabled
EPID Group ID 0x1FBE
LSPCON Ports None
5K Ports None
OEM Public Key Hash FPF 0000000000000000000000000000000000000000000000000000000000000000
OEM Public Key Hash ME B81780CA1F680177E08349A29C256B6677BA4335078122BA149B9DCEB63687CD
ACM SVN FPF 0x0
KM SVN FPF 0x0
BSMM SVN FPF 0x0
GuC Encryption Key FPF 0000000000000000000000000000000000000000000000000000000000000000
GuC Encryption Key ME 0000000000000000000000000000000000000000000000000000000000000000
 
FPF ME
--- --
Force Boot Guard ACM Disabled Enabled
Protect BIOS Environment Disabled Enabled
CPU Debugging Enabled Enabled
BSP Initialization Enabled Enabled
Measured Boot Disabled Disabled
Verified Boot Disabled Enabled
Key Manifest ID 0x0 0x1
Enforcement Policy 0x0 0x3
PTT Enabled Enabled
PTT Lockout Override Counter 0x1
EK Revoke State Revoked
PTT RTC Clear Detection FPF 0x0
 


Output is different from other laptop in regards to sensor data, but sensors reappear in Device Manager and have confirmed that sensors are active.

EDIT: What I meant by sensor data is different is the CMD log during MEInfoWin64 output. Where the other laptop displays info on each sensor. All good though, just happy it works again.

How do I update this (highlighted with a red stripe)??? ASUS Z97-WS motherboard. Thanks!

123.png

@plutomaniac Hello guys, I have some question.

The first question: What different between [Intel Boot Guard] and [Boot Guard] ?

The second question:
{
I saw my laptop (Model Dell G3 3590) have [Boot Guard] because I executed [MEInfoWin64.exe -VERBOSE] command, here is the command result:

https://file.io/zsRECkqCq00f

[Measured/Verified Boot is enable]
Why I can update CSME although [Boot Guard] is enable ? If [Intel Boot Guard] is enable, can I also update CSME ?

}

The last question: Can I flash modify bios with [Boot Guard] or [Intel Boot Guard] enable ?

I hope you can answer my question, thank you~


None, BG is an Intel technology.


BG protects the BIOS, not CSME. You can update CSME normally via FWUpdate tool, as instructed in the OP.


No, that’s the whole point of the technology.

It is possible to use CH341A flasher to bypass bootguard ?

Intel CSME 14.0 Slim PCH-H A Firmware v14.0.33.1125

Capture1.PNG



Intel CSME 11.22 Corporate PCH-H B,A Firmware v11.22.79.1722

Capture2.PNG