To be more precise, this was Nicola Corna’s project me_cleaner on Github.
The last gen this Python script would work on, was KabyLake 7th gen (this was also Purism’s Librem 13/15 v4 laptops’ arch.) On this particular architecture, something extraordinary was achieved: reducing the bloated IME firmware to only…4 tiny modules necessary for the CPU to initialize!
Deblobbing the IME in such ways and so deeply, didn’t please Intel at all - as you can imagine. They claimed that this was a breach of security of the way the CSME was designed in the first place: namely security by obscurity, the mantra of the entire Wintel industry and aficionados. They made it so that later generations of their processors’ architectures would not permit such deep scrub anymore, by way of encoding the partitions of the firmware with unknown/unpublished Huffman tables. This unfortunately put an end to Corna’s me_cleaner project.
5 Likes