Show newer
Lup Yuen Lee 李立源

Reverse Engineering the Driver on ... All shall be explained here

lupyuen.github.io/articles/wif

Show thread
1
Lup Yuen Lee 李立源

Quantitative Analysis of Decompiled Firmware is nearly complete! Actual lines of WiFi code to be reverse engineered: 10,500

Google Sheets: docs.google.com/spreadsheets/d

Show thread
1
Lup Yuen Lee 李立源

PineCone with Huawei HarmonyOS? 🤔

1
Lup Yuen Lee 李立源

Firmware: 87,000 lines of Decompiled Code have been classified ... 24,000 more lines to go!

Google Sheets: docs.google.com/spreadsheets/d

Show thread
1+
Lup Yuen Lee 李立源

GitHub Search shows something that partially matches Driver PHY Layer ... But the BL602 decompiled code seems to have more stuffing inside 🤔

github.com/lupyuen/bl602-604/b

Show thread
1
Lup Yuen Lee 李立源

2,500 lines of Decompiled Code in Supplicant seem to match Rockchip RK3399 ... Leaving 700 lines to be deciphered

Google Sheets: docs.google.com/spreadsheets/d

Show thread
1
Lup Yuen Lee 李立源

Decompiled Supplicant ... Looks similar to Rockchip RK3399 🤔

github.com/lupyuen/rk3399-kern

Show thread
1
Lup Yuen Lee 李立源

Work In Progress: What's inside the Demo Firmware ... And how many lines of code need to be Reverse Engineered

Google Sheets: docs.google.com/spreadsheets/d

Show thread
1
Lup Yuen Lee 李立源

Matching the Decompiled Functions with AliOS / RivieraWave Source Code ... And identifying the differences

Google Sheets: docs.google.com/spreadsheets/d

Show thread
1
Lup Yuen Lee 李立源

Load the Decompiled Functions into a spreadsheet ... For easier crunching

Google Sheets: docs.google.com/spreadsheets/d

Show thread
1
Lup Yuen Lee 李立源

Let's do Quantitative Analysis of the Decompiled Demo Firmware ... How many lines of code do we actually need to Reverse Engineer ... Now that we've found some matching source files?

github.com/lupyuen/bl602nutcra

Show thread
1
Lup Yuen Lee 李立源

Thankfully Library libwifi was compiled with Assertions Enabled ... Makes Reverse Engineering simpler 👍

github.com/lupyuen/bl602nutcra

Show thread
1
Lup Yuen Lee 李立源

Here's the Decompiled Supplicant that handles WiFi Authentication ... Decompiled code looks readable

github.com/lupyuen/bl602nutcra

Show thread
1
Lup Yuen Lee 李立源

Creamy and super garlicky 🤤

Show thread
1
Lup Yuen Lee 李立源

Cheesy Garlic Toast

1+
Lup Yuen Lee 李立源

Payload Handler calls rxu, txl and txu functions ... Fortunately these are defined in the AliOS / RivieraWaves Source Code we saw earlier

github.com/lupyuen/bl602nutcra

Show thread
1
Lup Yuen Lee 李立源

txl_payload_handle handles Payloads by doing ... nothing! But txl_payload_handle_backup seems to be the right function that handles WiFi Payloads 🤔

github.com/lupyuen/bl602nutcra

Show thread
1+
Lup Yuen Lee 李立源

Here are the Event Handlers for WiFi Kernel ... txl_payload_handle looks interesting ... Let's hunt for it

github.com/lupyuen/AliOS-Thing

Show thread
1
Lup Yuen Lee 李立源

Back to ke_evt_schedule, the function in Driver Kernel that handles every WiFi Event ... Let's hunt for ke_evt_hdlr and discover the WiFi Events

github.com/lupyuen/AliOS-Thing

Show thread
1
Lup Yuen Lee 李立源

Chicken Soup with carrots, potatoes, onions, garlic, ginger and barley 🤤

Show thread
0
Show older

rustlang

1.43K

pinetime

701

lora

543

iot

270

raspberrypi

121

vscode

56

spi

12

swd

7

tiktok

6

scratch

2
Qoto Mastodon

QOTO: Question Others to Teach Ourselves
An inclusive, Academic Freedom, instance
All cultures welcome.
Hate speech and harassment strictly forbidden.

Trending now

Resources

Developers

What is Mastodon?

qoto.org

More…

v3.5.19-qoto · Privacy policy