Tool to Insert/Replace SLIC in Phoenix / Insyde / Dell / EFI BIOSes

I have made a test file for this bug.
Hope we can find a working method to separate EFI1.1 from Tiano without catching memory corruptions in poorly written 10 years old Intel code.
View attachment 28137

 

Found the source of the crash, it's in EfiDecompress.c, this part of MakeTable function :

Code:

if (Len <= TableBits) {
   for (Index = Start[Len]; Index < NextCode; Index++) {
      Table[Index] = Char;
   }
   ...

Table array has 2^TableBits size (which can be 8 or 12), but writing to Table[256] or Table[4096] will corrupt the heap.
Index variable above will become exactly 256 on that file, triggering the crash. It can be fixed by adding a check like this:

Code:

   for (Index = Start[Len]; Index < NextCode; Index++) {
      // Check to prevent possible heap corruption
      if (Index >= (UINT16) (1U << TableBits))
         return (UINT16)BAD_TABLE;
      Table[Index] = Char;
   }

It's not a good idea to make patches like that, I know, but it works.

 

Well done!!
You are better at this than I am!

A

 

No, I'm not. Maybe a bit closer to low level, but nothing more.
I think it must somehow be reported to TianoCore developers, because FFS files like that are like time bombs for BIOS.
I bet no one knows now what Tiano algorithm is all about, because of that "//Ported from ASM routine" commentary.

Thanks for finding this gem, Serg008.

 

New version - see first post
A

 

Acer xc600

Dear all,

I am trying to get Windows 7 Enterprise to install on an ACER XC600. The device was bought without windows, but I have enough licenses of windows lying around. I am trying to install Windows 7 Enterprise and activate it using KMS. KMS activation checks the SLIC table, I guess, and refuses to install because there is a table, but it does not have a value for any OEM license in it. I think I have two options: Either get rid of the SLIC table altogether. In that case, I understand, KMS activation should just work. Or get an SLIC table with a valid OEM entry in it.

I can use this tool, and if I put in ACER SLIC and SLP files (containing the string "AcerSystem") as well as the "RW Everything report" and check "module", it will generate a BIOS for me. What I do not understand is why the field for "Key File" is greyed out. How can the resulting SLIC table have a valid entry for, say, Windows 7 Professional, if I do not put in a product key? What am I missing? Have not tried flashing the resulting BIOS yet. Any help is appreciated...

Thx...

 

SLIC tables do not carry keys. Only MSDM ones do, and MSDM is for Windows 8.
All you need is a valid SLIC table (pubkey, marker).

 

Thanks. So if I use the generated BIOS, and do not brick it, Win 7 Enterprise should activate via KMS? Thanks!

 

You need to login to view this posts content.

 

I want to update the BIOS on an MPC laptop from SLIC 2.0 to 2.1. Can I do that and keep the data in the BIOS which identifies it as an MPC?

I installed a multi-OEM detecting Win 7 and it saw it as an Acer, which is odd because it's made by Samsung and some of the identifying code in the BIOS is $SAMSUNGPC.

So far I've yet to find a version of WinPhlash that will work on Win 7 Ultimate x64. Found a version that's supposed to work, but it quits with an error message about updating DXE drivers. I enabled the Administrator account and logged in with it. No difference in how it doesn't work.

 

You need to login to view this posts content.

 

No luck at all with MPC BIOS modding. Seems like I'm the only person wanting to mod any MPC BIOS to SLIC 2.1.

 

You need to login to view this posts content.

 

Hi
This tool is compatibile with *.hdr bios file ?
Dell bios is secured by Armadillo yes ? How to unpack hdr file ?

 

PhoenixTool v2.51

Does anyone still have the download link for PhoenixTool251.zip?

 

Hello,

I also get "error 5" or something "Invalid RW Everything report". Used Phoenixtool 2.52 and RW newest version.

 

Fixed in 2.53
A

 

Dear Andy,

please let me thank you for all your hard work since many years. Nice to have members
like you who keep the real MDL spirit alive and don't register to request the latest iso file.


Inge

 

You need to login to view this posts content.