Vmware UEFI firmware modding

Discussion in 'BIOS Mods' started by anti-t, May 28, 2012.

Tags:
  1. anti-t

    anti-t MDL Junior Member

    Oct 18, 2009
    73
    41
    0
    #1 anti-t, May 28, 2012
    Last edited by a moderator: Apr 20, 2017
    VMware UEFI firmware modding (impossible ?)

    I'm trying to mod the vmware EFI firmware (not the legacy vmware bios440) to add SLIC 2.1 and so far it appear that andyp's tool does not work on it or I'm doing something wrong. The tool detect vmware rom as EFI / Insyde Bios, but fail to add the slic. I've tried all methods.

    module method = fail with insufficient space to insert module
    dynamic method = No complete SLIC table found
    SSV2 = Unable to add slic code

    Clipboard01.jpg

    The vmware EFI boot is activated while inserting the following line in your .vmx file :

    Code:
    firmware = "efi"
    You apparently can add theses 2 lines to customize your EFI firmware whith your own files

    Code:
    efi32.filename = "efi32.rom"
    efi64.filename = "efi64.rom"
    The roms appear to be embedded within vmware-vmx.exe. Open this with 7zip for exemple and you will find them in ".rsrc/BINRES". I believe they are files 6020 and 6021

    I'd like to know if someone already managed to patch theses EFI roms and how. All constructive comments welcome !
     
  2. urie

    urie Moderator
    Staff Member

    May 21, 2007
    8,709
    3,066
    300
    You should really use a resource editor to extract the files, but any way do not select Dell as manufacturer select other and I tried dynamic method = No complete SLIC table found then selected Yes when choice came up to continue.

     
  3. anti-t

    anti-t MDL Junior Member

    Oct 18, 2009
    73
    41
    0
    I've already tried what you suggested, ignoring "No complete SLIC table found" message, then click yes to continue but when vmware rebooted, there was no slic detected. Selecting other mfg does not seem to help either.
     
  4. urie

    urie Moderator
    Staff Member

    May 21, 2007
    8,709
    3,066
    300
    Are you certain your modded bios is even getting used when calling it from your .vmx file, why don't you add it back into the vmware-vmx.exe with a resource editor. I loaded the modded bios back into andyp's tool and verified it with dell certificate.
     
  5. anti-t

    anti-t MDL Junior Member

    Oct 18, 2009
    73
    41
    0
    Hi urie

    andyp's tool doesn't apply slic to the firmware, the supposed slic'ed bios have exactly the same md5 checksum than the original bios file. When you load the supposed modded bios back, your not checking the bios itself but the loaded SLIC file against the loaded certificate. Thats why you have a match :rolleyes:

    Anyway, it seems I either missed something here or this VMware EFI firmware is not patchable with the tool.
     
  6. urie

    urie Moderator
    Staff Member

    May 21, 2007
    8,709
    3,066
    300
    The only suggestion I can make is you contact Andy'p the developer of the tool.
     
  7. Yen

    Yen Admin
    Staff Member

    May 6, 2007
    11,172
    10,931
    340
    Can you please upload the vmware-vmx.exe.

    I want to play with it and will provide an idea if got one.:)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  8. urie

    urie Moderator
    Staff Member

    May 21, 2007
    8,709
    3,066
    300
  9. Yen

    Yen Admin
    Staff Member

    May 6, 2007
    11,172
    10,931
    340
    @ anti-t
    A rw everything report made within the original VM would be handy.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  10. anti-t

    anti-t MDL Junior Member

    Oct 18, 2009
    73
    41
    0
    Hi Yen, What do you have in mind ?:rolleyes:

    In the meantime, I have installed windslic and it works on vmware EFI, but for educational purposes, I'd like to find a way with nice rom modding

    here is the RW vmware EFI report, made in a fresh win8crap RP install...

    View attachment EFI_vmware_AcpiTbls.zip
     
  11. Yen

    Yen Admin
    Staff Member

    May 6, 2007
    11,172
    10,931
    340
    #11 Yen, Jun 1, 2012
    Last edited: Apr 16, 2014
    To check the matter.:)

    The vmware-vmx.exe contains a Phoenix BIOS old structure and a EFI or at least EFI FV (firmware volumes). So I needed an rw report. It seems the active ACPITables come from the Phoenix BIOS, though.
    RW vmware EFI report shows ACPITables of the Phoenix BIOS

    -There is more knowlegde. We weren't able to decompose he entire EFI that time. There is no hybrid use.
    The tables completely reside in the EFI.

    So do you want the mod the 'inactive' EFI or just activate?
    For the latter just load the entire vmware-vmx.exe. into andy's tool and mod it.
    And yes the EFI cannot be modded yet, since there is no space to add the module and other methods don't work since there is no instance of a SLIC present, no DMI and NVRAM found.


    Wind SLIC applied at the Phoenix BIOS then I guess...
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  12. anti-t

    anti-t MDL Junior Member

    Oct 18, 2009
    73
    41
    0
    thanks Yen, that explain why the mod failed; As I said, it doesn't really matter coz there are others solutions. The purpose here was to learn efi modding through experimentation, without risking my mainboard firmware especially when I've no SPI programmer yet.