I’m trying to unlock the bios menu for Alienware m15 R1. I only changed some menu options from Default to User with AMIBCP and saved it as biosmod.bin (8mb) with the bios I get from “FPTw.exe -bios -d biosreg.bin”. Surprisingly, the bios lock is disabled by default. I was able to dump the ME region with “FPTw.exe -d dump.bin”.
However, after flashing the mod bios with “FPTw.exe -bios -f biosmod.bin”, it does not boot anymore. I had to flash the bios back to original dump.bin with SPI Programmer to boot again.
I wonder if someone could help me take a look at what I can do? I attach both the dump bios and my mod with AMIBCP. Thanks.
P.S. Also, I dumped a rom file from another chip on the MB through SPI Programmer, CH341A, as dumpunknown.bin, which does not seem to be bios. I also found out I had to use setup_var_3 from https://github.com/datasone/grub-mod-setup_var to change hidden bios options in the meantime.
Microsoft Windows [Version 10.0.18363.1082] (c) 2019 Microsoft Corporation. All rights reserved.
C:\Windows\system32>cd C:\Users\user\Desktop\Intel CSME System Tools v12 r27\MEInfo\WIN32
C:\Users\Kevin\Desktop\Intel CSME System Tools v12 r27\MEInfo\WIN32>MEInfoWin.exe -verbose Intel (R) MEInfo Version: 12.0.68.1606 Copyright (C) 2005 - 2020, Intel Corporation. All rights reserved.
Windows OS Version : 10.0
LPC Device Id: A30D. Platform: Cannonlake Platform General FW Information FW Status Register1: 0x90000245 FW Status Register2: 0x66000506 FW Status Register3: 0x00000020 FW Status Register4: 0x00004000 FW Status Register5: 0x00001F01 FW Status Register6: 0x444003C9
CurrentState: Normal ManufacturingMode: Disabled FlashPartition: Valid OperationalState: CM0 with UMA InitComplete: Complete BUPLoadState: Success ErrorCode: No Error ModeOfOperation: Normal SPI Flash Log: Not Present Phase: HOSTCOMM Module PhaseStatus: UNKNOWN ME File System Corrupted: No FPF and ME Config Status: Committed FW Capabilities value is 0x31119540 Feature enablement is 0x31119540 Platform type is 0x71000391
Platform Type Mobile FW Type Production Last ME Reset Reason Unknown BIOS boot State Post Boot Slot 1 Board Manufacturer 0x00000000 Slot 2 System Assembler 0x00000000 Slot 3 Reserved 0x00000000 Capability Licensing Service Enabled Local FWUpdate Enabled OEM ID 00000000-0000-0000-0000-000000000000 Integrated Sensor Hub Initial Power State Enabled Intel(R) PTT Supported Yes Intel(R) PTT initial power-up state Enabled OEM Tag 0x00 TLS Disabled
Intel(R) ME code versions: BIOS Version 2.5.0 Vendor ID 8086 FW Version 12.0.64.1551 H Consumer LMS Version 1915.12.0.1257 MEI Driver Version 1914.12.0.1256
IUPs Information PMC FW Version 300.2.11.1024 OEM FW Version 0.0.0.0000 ISHC FW Version 0.0.0.0000
PCH Information PCH Version 11 PCH Device ID A30D PCH Step Data B1 PCH SKU Type Production PRQ Revenue PCH Replacement State Disabled PCH Replacement Counter 0 PCH Unlocked State Disabled
Flash Information SPI Flash ID 1 EF4018 SPI Flash ID 2 Not Available Host Read Access to ME Enabled Host Write Access to ME Disabled Host Read Access to EC Disabled Host Write Access to EC Disabled
FW Capabilities 0x31119540 Protect Audio Video Path - PRESENT/ENABLED Intel(R) Dynamic Application Loader - PRESENT/ENABLED Intel(R) Platform Trust Technology - PRESENT/ENABLED Service Advertisement & Discovery - NOT PRESENT Persistent RTC and Memory - PRESENT/ENABLED
End Of Manufacturing Post Manufacturing NVAR Config Enabled No HW Binding Enabled End of Manufacturing Enable Yes
Intel(R) Protected Audio Video Path Keybox Not Provisioned Attestation KeyBox Not Available EPID Group ID 0x28C1 Re-key needed False PAVP Supported Yes
Security Version Numbers Minimum Allowed Anti Rollback SVN 1 Image Anti Rollback SVN 9 Trusted Computing Base SVN 1
FW Supported FPFs FPF UEP ME FW *In Use --- --- ----- Enforcement Policy 0x03 0x03 0x03 EK Revoke State Not Revoked Not Revoked Not Revoked # Not Revoked=0, Revoked=1 PTT Enabled Enabled Enabled # Disabled=0, Enabled=1 OEM ID 0x00 0x00 0x00 OEM Key Manifest Present Present Present Present # Not Present=0, Present=1 OEM Platform ID 0x00 0x00 0x00 OEM Secure Boot Policy 0x79 0x79 0x79 CPU Debugging Enabled Enabled Enabled # Enabled=0, Disabled=1 BSP Initialization Enabled Enabled Enabled # Enabled=0, Disabled=1 Protect BIOS Environment Enabled Enabled Enabled # Disabled=0, Enabled=1 Measured Boot Enabled Enabled Enabled # Disabled=0, Enabled=1 Verified Boot Enabled Enabled Enabled # Disabled=0, Enabled=1 Key Manifest ID 0x01 0x01 0x01 Persistent PRTC Backup Power Enabled Enabled Enabled # Enabled=0, Disabled=1 RPMB Migration Done Disabled Disabled Disabled # Disabled=0, Enabled=1 SOC Config Lock Done Not Done Done # Not Done=0, Done=1 SPI Boot Source Enabled Enabled Enabled # Enabled=0, Disabled=1 TXT Supported Disabled Disabled Disabled # Disabled=0, Enabled=1
ACM SVN FPF 0x00 BSMM SVN FPF 0x00 KM SVN FPF 0x00 OEM Public Key Hash FPF 8D342B25F825DD3B0F6B677F988955C5B8B0E4E2FEC5AEF63B7A0AE13AE3A7D0 OEM Public Key Hash UEP 8D342B25F825DD3B0F6B677F988955C5B8B0E4E2FEC5AEF63B7A0AE13AE3A7D0 OEM Public Key Hash ME FW 8D342B25F825DD3B0F6B677F988955C5B8B0E4E2FEC5AEF63B7A0AE13AE3A7D0 PTT Lockout Override Counter FPF 0x04
The full dump (dump.bin 16mb with ME), however, does not show any color for the same Setup module: (Aren’t they supposed to be the same?) Does that mean if I flash with the full 16mb with edited Setup module, the laptop wouldn’t be bricked?
