<vulpes2[m]>
I've discovered a bug, LEDs without a label will not work when aliased to `led-boot`, `led-failsafe`, etc.
goliath has quit [Quit: SIGSEGV]
Tapper has quit [Ping timeout: 480 seconds]
danitool has quit [Quit: Cubum autem in duos cubos, aut quadratoquadratum in duos quadratoquadratos]
minimal has quit [Quit: Leaving]
ptudor has quit [Ping timeout: 480 seconds]
<soxrok2212>
so i found a strange u-boot header in a flash dump on my xdr6086, dd'ed it out and now trying to open it in ghidra to RE it and hopefully find what i need, but ghidra doesnt recognize like any of it
<soxrok2212>
any tips?
<soxrok2212>
u-boot is apparently xz compressed (or at least can be, and is in this case) now in mtk devices. i have it extracted i believe
<soxrok2212>
s/extracted/decompressed
ptudor has joined #openwrt-devel
<soxrok2212>
think i mightve found an overflow or a bug O.o
valku has joined #openwrt-devel
valku has quit []
felix has quit []
felix has joined #openwrt-devel
cbeznea has joined #openwrt-devel
guidosarducci has quit [Remote host closed the connection]
guidosarducci has joined #openwrt-devel
hanetzer3 has joined #openwrt-devel
hanetzer2 has quit [Ping timeout: 480 seconds]
cbeznea has quit [Read error: Connection reset by peer]
<karlp>
vulpes2[m]: what do you mean with your led labels? if you have no label, no colour and no function, you get a sysfs entry for the node name. if you have color, or function you get <colour>:<function> even if that leaves dangling ':'
<karlp>
you could be running itno something not handling bad filenames?
Tapper has joined #openwrt-devel
csrf has quit [Ping timeout: 480 seconds]
robimarko has joined #openwrt-devel
G10h4ck has joined #openwrt-devel
G10h4ck has quit [Ping timeout: 480 seconds]
bluew has quit [Ping timeout: 480 seconds]
bbezak has joined #openwrt-devel
schwicht has joined #openwrt-devel
schwicht_ has joined #openwrt-devel
torv has quit [Remote host closed the connection]
schwicht has quit [Ping timeout: 480 seconds]
schwicht_ has quit [Read error: Connection reset by peer]
schwicht has joined #openwrt-devel
torv has joined #openwrt-devel
minimal has joined #openwrt-devel
zarzarzar has joined #openwrt-devel
zarzarzar_ has quit [Read error: Connection reset by peer]
<soxrok2212>
love finding buffer overflows in bootloaders :)
<Habbie>
hah
<soxrok2212>
no idea how to make it useful though
torv has quit [Remote host closed the connection]
torv has joined #openwrt-devel
<Habbie>
soxrok2212, surely somebody will one day run into a similar device with some lock on it
<Habbie>
soxrok2212, i know i have a bootloader here for which an overflow would be welcome
<soxrok2212>
i should phrase it differently. i have a use for it but i dont know how to put it to use for that problem
<soxrok2212>
:)
<Habbie>
hehehe
<soxrok2212>
very hard to debug a bootloader when i dont have any access to the device outside of uart input to a restricted console :P
<Habbie>
yes
mrkiko has quit [Quit: leaving]
madwoota has quit [Ping timeout: 480 seconds]
minimal has quit [Quit: Leaving]
madwoota has joined #openwrt-devel
valku has joined #openwrt-devel
<rmilecki>
hauke: i thought my quilt was borked because it was insisting on full diff of simple file rename
<rmilecki>
i see your quilt did the same in the b97e5ac78596 ("bcm4908: Refresh kernel patches")
<rmilecki>
can quilt be made smarted to handle renames without full diff?
<rmilecki>
ynezz: ?
goliath has quit [Quit: SIGSEGV]
Ansuel has joined #openwrt-devel
<Ansuel>
stintel if you can check the email i sent some info about the idea of putting preinstall precompiled tools in a container
<soxrok2212>
Ansuel: i got u-boot extracted from that bin
<soxrok2212>
and found a 0-day in it
<Ansuel>
interesting?
<soxrok2212>
apparently mtk xz compresses BL2 and fip packages now, so it was in there, just compressed
<soxrok2212>
theres 2 more commands that arent blocked, go and goash
<Ansuel>
did you check if it does scan for some magic bootenv to unlock everything?
<soxrok2212>
i attempted to. i can't get ghidra to properly open the bin so most of it has been hexdump/string searching. haven't found anything yet. i think the goash command does that but it expects some string (singed key/cert?) to unlock it
<soxrok2212>
but that code also has the overflow
<soxrok2212>
go will attempt to launch an application in member, goash i think starts a console but im not sure yetf
<soxrok2212>
in memory* not in member
<soxrok2212>
you can point go to a memory address and it'll execute it if it can
<Ansuel>
strange that ghidra can't open the bin there shouldn't be anything special in how it's compiled
<soxrok2212>
then the xz compressed data starts at 0x20088, so i basically dd'ed out everything from 0x20088 until it was followed by 0x0000 which is apparently standard for xz compressed data, but mkimage doesn't do that and im not sure if mtk tools that build the bin do either so i don't know where it actually ends
<soxrok2212>
i also dont know if i need to stick the uncompressed data back in at 0x20088 and then decompile the whole bin from 0x20000 with that strange u-boot header
<soxrok2212>
i can see go and goash in memory but when i look for references in code they dont seem to exist which doesn't make sense
minimal has joined #openwrt-devel
guidosarducci has quit [Remote host closed the connection]
guidosarducci has joined #openwrt-devel
goliath has joined #openwrt-devel
Ansuel has quit [Ping timeout: 480 seconds]
dansan has quit [Quit: The C preprocessor is a pathway to many abilities some consider to be unnatural.]
Ansuel has joined #openwrt-devel
midicase has quit [Quit: Leaving]
dansan has joined #openwrt-devel
<vulpes2[m]>
karlp: sorry, forgot to mention that I do have color and function defined in my dt
<hauke>
rmilecki: the kernel refresh check in the github CI was failing
<hauke>
it would be nice if quilt would detect a rename
MaxSoniX has quit [Quit: Konversation terminated!]
zer0def has quit [Ping timeout: 480 seconds]
ptudor has quit [Ping timeout: 480 seconds]
ptudor has joined #openwrt-devel
zer0def has joined #openwrt-devel
schwicht_ has joined #openwrt-devel
schwicht has quit [Read error: Connection reset by peer]
AtomiclyCursed has quit [Quit: ZNC 1.8.2 - https://znc.in]
AtomiclyCursed has joined #openwrt-devel
srslypascal has quit [Ping timeout: 480 seconds]
bbezak has quit [Ping timeout: 480 seconds]
Borromini has joined #openwrt-devel
bbezak has joined #openwrt-devel
Borromini has quit [Quit: Lost terminal]
Lynx- has joined #openwrt-devel
cbeznea has quit [Quit: Leaving.]
valku has quit [Quit: valku]
robimarko has quit [Quit: Leaving]
Q__ has quit [Quit: Client limit exceeded: 20000]
Ansuel has quit [Quit: Probably my PC decided to sleep or I decided to sleep.]
Znullptr has quit [Ping timeout: 480 seconds]
Lynx- has quit [Quit: Going offline, see ya! (www.adiirc.com)]
iyesin has joined #openwrt-devel
<iyesin>
Hello folks. I have a question regarding policy of accepting 3rd-party patches. The thing is: I currently using two OrangePI R1 Plus LTS (and one non-lts) boards as openwrt routers. I'm totally fine with them except the fact I need to use kinda outdated openwrt fork by Xunlong. I would be much happier to see this platform as fully supported by OpenWRT. Integrating Xunlong's patches into openwrt main tree does not seems extremely hard to me.
<iyesin>
I'm ready to invest my resources (my time and money) into this work. My question is: is there any legal/political/ethical show stoppers for this kind of work?
<slh>
Disclaimer: I'm not an OpenWrt developer and the following is just my unfounded opinion, but sunxi and rockchip are traditionally targets with very little to no patching, as they're pretty actively developed upstream in mainline linux - so ideally the patches go into linux-next first and are merely backported to OpenWrt, so they'll go away after the next kernel bump
<vulpes2[m]>
<iyesin> "Hello folks. I have a question..." <- This board is sufficiently similar to the nanopi r2s that you might have a good chance of being able to get it working with a dt similar to that.