Hi everybody,
- Sandy Bridge accepts an Intel ME firmware with just the FTPR partition, both with and without a valid FPT (the partition table of the Intel ME image). The system doesn't power off after 30 minutes, and the ME reports a successful initialization (see attached cbmem). To be extra safe we wrote a small Python script that removes all the non-fundamental partitions and creates a new FPT with a single partition entry (following the structure in [1] and some hints from Igor Skochinsky).
I failed to build a usable coreboot image for my own X220, so I made a "crippled/cleansed" ME from factory bios image via Nicola's script and insert the crippled ME back to the factory bios via coreboot's ifdtool. Then I flashed the modified factory bios to the laptop.
Now my x220 has survived nearly one hour, and the MEI has disappeared from PCI bus, but, additionally, the integrated NIC ceased to be functional with such error seen from dmesg:
[ 2.608150] e1000e: probe of 0000:00:19.0 failed with error -3
I do not know whether this phenominon has been observed, but I believe it may be natural after ME gets crippled, since I have experienced a broken integrated NIC on an HP eliteboot 8460p whose ME is broken.
This phenominon may suggest on such platform, the functionality of integrated NIC is actually implemented by the overlord called ME, and thus the integrated NIC is ME's backdoor.
The output of lspci(8) is attached.