Search found 80 matches

by hedak
Thu Feb 27, 2014 10:12 pm
Forum: [C] Firmware
Topic: Modifying /mtd_exe of active partition
Replies: 4
Views: 6568

Modifying /mtd_exe of active partition

Hi again, today i'd like to share how to modify exe.img within /mtd_exe of the active partition (2nd i.e.) without the need of any pc tools except a ssh/telnet client. Be warned that i tested this on my C7700 (T-VALDEUC 3011.0) only. I highly recommend to have the other partition (1st i.e.) working ...
by hedak
Tue Feb 25, 2014 10:11 pm
Forum: [C] Firmware
Topic: Patching exeDSP
Replies: 22
Views: 10800

Re: Patching exeDSP

Thx juuso! (i already thought it was too detailed or too hard or whatever) @Mk?: i think there are several '0x1a' in the 59MB code ;) I didn't try whether that's the same, but i will check that (EDIT: it's not the same!). BTW i'm still preparing how to failsafe test patched exeDSP. Before doing that...
by hedak
Mon Feb 17, 2014 7:37 pm
Forum: [C] Firmware
Topic: Patching exeDSP
Replies: 22
Views: 10800

Re: Patching exeDSP

Ok, i will explain in detail, but first i will quote erdem_ua: If you download a program, EULA will say something about "disassembling, decompiling, reverse engineering is prohibited". But there is no string about on firmware download pages of Samsung. And again no such a string in Firmware image or...
by hedak
Sun Feb 16, 2014 9:09 pm
Forum: [C] Firmware
Topic: Patching exeDSP
Replies: 22
Views: 10800

Patching exeDSP

Hallo again, i wanted to share some information/progress i made patching exeDSP (of my UE46C700 FW T-VALDEUC-3011.0): It started when i read the init scripts of SamyGO. In 01_01_catch_crap.init i stumbled across the line 'bin/busybox date -s "2011-06-23 13:45:00"'. After doing some research getting ...
by hedak
Wed Feb 05, 2014 9:57 pm
Forum: [C] Firmware
Topic: Modifying rootfs image
Replies: 6
Views: 4369

Re: Modifying rootfs image

Second question is answered now too: offset of authuld's hash and size in rootfs is hardcoded in kernel (getAuthUld() in secureboot.c). Hint was given here: http://forum.samygo.tv/viewtopic.php?f=2&t=655&p=15338&hilit=0x1000#p15338 As its stated there, the offset is 0x1000 (4096 decimal) before the ...
by hedak
Tue Feb 04, 2014 8:43 pm
Forum: [C] Firmware
Topic: Modifying rootfs image
Replies: 6
Views: 4369

Re: Modifying rootfs image

Yes, that is imaginable, but luxury ;) For me it is more interesting to figure out the meaning of the first 16 of theses 20 bytes and where the offset to these 20 bytes is hardcoded/located. Maybe i could do this by zeroing the first 16 bytes of these 20 bytes and see what happens on exlink during b...
by hedak
Tue Feb 04, 2014 6:11 pm
Forum: [C] Firmware
Topic: Modifying rootfs image
Replies: 6
Views: 4369

Re: Modifying rootfs image

With my current knowledge: yes! In detail: the size doesn't really matter (as long as it is smaller than the max size) because you can correct the size and the hash in cmac partition/image. The limiting factor is the need of authuld's binary correct size at the correct offset. But as i wrote above t...
by hedak
Mon Feb 03, 2014 9:55 pm
Forum: [C] Hardware
Topic: [solved] Cycle reboot UE46C7700 - T-VALDEUC
Replies: 68
Views: 19922

Re: [solved] Cycle reboot UE46C7700 - T-VALDEUC

As you suggested i created a new topic about modifying rootfs here: https://forum.samygo.tv/viewtopic.php?f=10&t=7247 :)
by hedak
Mon Feb 03, 2014 9:53 pm
Forum: [C] Firmware
Topic: Modifying rootfs image
Replies: 6
Views: 4369

Modifying rootfs image

Hallo SamyGO community, i just wanted to share some information/experience about modifying my C7700's rootfs. My basic knowledge is based on this post: http://forum.samygo.tv/viewtopic.php?f=2&t=68&sid=a378ceaac1273691f2b18d882c9459e0#p343 Following this i wanted to add some CIP rescue scripts in ca...
by hedak
Mon Jan 20, 2014 7:41 pm
Forum: [C] Hardware
Topic: C Series EEPROM research
Replies: 17
Views: 10100

Re: C Series EEPROM research

As i found out during my unbrick procedure my SoC EEPROM content was static after every boot. Maybe because i unplugged cable wire. Furthermore i have FastStart feature (ATM disabled) which (i read) keeps data available for about one day. That could help to figure it out a bit easier. BTW i'm coding...

Go to advanced search