Forum RSS Feed Follow @ Twitter Follow @ Twitter

Thread Rating:
  • 11 Vote(s) - 4.64 Average
  • 1
  • 2
  • 3
  • 4
  • 5
(UEFI) Dell XPS 15z L511z modded BIOS - and HOWTO
#31
Ho All ,

However I'm not free now as I'm studying for my next exam , but there is something you need to knew to avoid wasting your time Smile

1) the bios is UEFI and its structure is totally different from normal phoenix .
As a result its impossible to open it using PBE tool .
when i try tracing options or menus , i use ida disassembler and andys tool no more .

2) UEFI has advanced structure and not easily broken by mods .
when i do something wrong in the menus setup module , the result is just noteboom will not able to access setup setting , But its able to boot normally ..
Its the same when modifying vbios , if something wrong , only this module will not work .
The same for all module except sensetine ones like boot block .
So , if you manage to only mod menus and vbios WITH TAKING CARE IN THE FLASH PROCESS ( like keeping battery charged and connected so nothing bad happen when electricity is down and so on ) ,,,, then , i think no need for recovey now .

3) i don't knew how to mod vbios but i knew only about checksum and bios structure , other modules and modifying some other things ( this is for UEFI )

Thank you and Happy new year for you all Smile
Ahmed


"Many of life's failures are people who did not realize how close they were to success when they gave up." Smile
find
quote
#32
thx ahmed, I apreciate your explanation and time, specially with a lot of stuff pending to do like exams.

as for the moment, my modded bioses work fine getting the vbios moded by nvitor, wish I could use also the new vbios version, but for the moment its ok if there is no way to switch them.

when you will finish the exams, I would apreciate a little help for the logo splash logo replacement by another custom logo or show the POST messages.

like you said, there is only a chance to break modded modules, however the splash module is a part of the normal boot, I mean, if I flash a corrupted splash module, will the system bypass the splash and boot normally, or will it keep stuck at the fail splash forever? being unable to boot, wich can be considered like a brick.



find
quote
#33
Hey all - happy new year!

@Kasar - I'm not sure if my subsystem ID was different - the version seems to be set with the firmware. That said it may be the reason why it's not working on yours. Just for your info, under device manager my HW ids are as follows: 10DE & 0DF5 & 04461028. Hope this helps!

@Ahmed - Thanks for the info! I've had a look at the raw code inside the BIOS hex files and there are some very interesting options (overclocking, undervolting, changing GPU card priorities) that I can't wait for them to be enabled Smile There's a document I've been given in another forum:

http://dl.dropbox.com/u/16173714/Unlock%...torial.pdf

We can't use PBE for our UEFI ROMs, but the method is a very interesting way to be able to unlock the BIOS menus. Sounds a bit risky IMHO but I'll wait for your expertise when you return from your exams Smile

Cheers
jkbuha
find
quote
#34
Hi Jkbuha ,

This document is for standard phoenix bios unlock not for the UEFI and the UEFI is totally different Smile
Did you find the setup module for your UEFI bios and found strings for the options !
if yes , then you should notice that this module is 64bit DLL file and needs disassembly by IDA and then find menus and trace options ,,,,,,,,, i have reached few results in this and will complete after my exams Smile

Please note that if you have opened the bios and found options using the method in the document , then its normal phoenix bios not uefi tiano core bios .
I knew this document , its for Kizwan from NBR and he had teached me before how to unlock normal phoenix bios ,,,,, He is good and experienced person Smile
Till now, i haven't seen any one unlocked UEFI , so don't try searching as i had searched a lot before ,,,,,,,, you will end with finding UEFI documentation from intel no more Smile
Just a question , have you found these strings in setup module or another one !

Thank you,
Ahmed


"Many of life's failures are people who did not realize how close they were to success when they gave up." Smile
find
quote
#35
(01-01-2012, 11:58 AM)AHMED HOSSAM Wrote: Did you find the setup module for your UEFI bios and found strings for the options !
if yes , then you should notice that this module is 64bit DLL file and needs disassembly by IDA and then find menus and trace options ,,,,,,,,, i have reached few results in this and will complete after my exams Smile

Just a question , have you found these strings in setup module or another one !

Thank you,
Ahmed

No I can't open my BIOS with PBE which proves your point that it's a UEFI not EFI Bios. Andy's tool also indicates that it's UEFI SecureTiano so we're both on the same track.

I've attached the file that I've found the strings in. Basically I've done a hex search through the entire folder for some known text in the BIOS and this is one of the most commonly occurring files Smile IDA thinks it's a Z80 file - which probably means it's non executable, but let me know what you think Smile

Cheers
jkbuha


Attached Files
.rar   CFEF94C4-4167-466A-8893-8779459DFA86_1_1048.rar (Size: 55.92 KB / Downloads: 14)
find
quote
#36
I will check the file later as I'm using mobile now but its size is only 55kB so i guess its not setup module ,,,,,,,,,,,, search for your menus names and other options and i guess you will not find them in this file Smile
IDA automaticallt select z80 for any file , but you should choose intel metapc and open the file in 64bit mode in ida then you found its 64bit DLL .
I will post more info here after i finish my next exam ( after 2 days ) as i will have some free time .

Thank you,
Ahmed


"Many of life's failures are people who did not realize how close they were to success when they gave up." Smile
find
quote
#37
Thanks Ahmed - the uncompressed size is approx 300kb and is one of the larger files but I'll wait for your expertise to guide me accordingly Smile

I guess we could use Andy's tool to point out some of the more interesting files - there seems to be some modules classified as DxeCore or Application (there are also Driver and Freeform) inside the Structure breakdown list. What would be the main BIOS setup module called?

Most importantly - GOOD LUCK for your upcoming exams mate - don't worry about this - your studies are more important Smile

Cheers
jkbuha
find
quote
#38
Hi all!

I've added a new undervolted GT-540M mod for the 15z to the first post, based on the newer firmware. This works fine on my machine - including overclocking - but please test and let me know!

Next up - I'll await Ahmed to finish his exams and then we'll be working on unlocking the BIOS! Watch this space...

Cheers
jkbuha
find
quote
#39
hey, jkbuha
I need your help relating a 15z brick, someone send me a message asking he had a bricked 15z caused by a corrupt bios, dont worry, it isnt caused by one of your moded bios, but I still need your help cause I am unable to extract the files from the dell's exe file containing the update, cause my hardware is different than 15z and the updater dont let me even extract the files to the temp folder.

could you upload the files inside the exe? I think them got extracted at the temp folder using the tutorial I posted at the other topic.

I'm interested at the winplash default folder comming with the stock 15z bios

I'm specially looking for a .fd file

I found FvRecovery.fd file inside my l502x winflash folder.

I'm trying something like this
http://www.acer-userforum.de/bios-bios-u...-bios.html

keep in mind that his laptop is fully bricked, this means if we got this working we will not just helping him to recover his system, we will also get a working method for all of us, so we can write a documented recovery method.

thank you in advance
find
quote
#40
(01-02-2012, 06:39 PM)kasar Wrote: hey, jkbuha
I need your help relating a 15z brick, someone send me a message asking he had a bricked 15z caused by a corrupt bios, dont worry, it isnt caused by one of your moded bios, but I still need your help cause I am unable to extract the files from the dell's exe file containing the update, cause my hardware is different than 15z and the updater dont let me even extract the files to the temp folder.

could you upload the files inside the exe? I think them got extracted at the temp folder using the tutorial I posted at the other topic.

I'm interested at the winplash default folder comming with the stock 15z bios

I'm specially looking for a .fd file

I found FvRecovery.fd file inside my l502x winflash folder.

I'm trying something like this
http://www.acer-userforum.de/bios-bios-u...-bios.html

keep in mind that his laptop is fully bricked, this means if we got this working we will not just helping him to recover his system, we will also get a working method for all of us, so we can write a documented recovery method.

thank you in advance

Morning mate Smile

Sure - here are the files I've extracted from my 15z winflash. There's the fvrecovery.fd file for the 15z. Let me know if you have any luck in creating a rescue disk for your friend!

Best of luck!

Cheers
jkbuha



Attached Files
.rar   winflash.rar (Size: 1.39 MB / Downloads: 23)
find
quote


Forum Jump:


Users browsing this thread: 2 Guest(s)
Expand chat
Expand chat
Expand chat

To join us in the community live chat, please register or log-in