From 1259e9722245e0e5e1b11110556ddea5a40c6930 Mon Sep 17 00:00:00 2001 From: Holger Hans Peter Freyther Date: Tue, 27 Dec 2016 22:07:13 +0100 Subject: 33c3: Some re-wording, size changes.. looking at FOTA again --- 2016/33c3/33c3-modems.adoc | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/2016/33c3/33c3-modems.adoc b/2016/33c3/33c3-modems.adoc index 21e1aee..fc71492 100644 --- a/2016/33c3/33c3-modems.adoc +++ b/2016/33c3/33c3-modems.adoc @@ -375,7 +375,7 @@ cd /cache/ufs;ls == recovery and applypatch -* Android ~4.0 based https://android.googlesource.com/platform/bootable/recovery.git/+/android-4.0.4_r2.1[recovery.git] +* Qualcom uses https://android.googlesource.com/platform/bootable/recovery.git/+/android-4.0.4_r2.1[recovery.git] from Android ~4.0 * Updates are zip files with deltas, SHA1+RSA * recovery started on boot, drives applypatch ---- @@ -386,7 +386,7 @@ cd /cache/ufs;ls == Qualcomm EC20 firmware upgrade -image:images/redbend.png[height=76,role="gimmick_right"] +image:images/redbend.png[width="30%",role="gimmick_right"] * Based on the recovery.git code * But for some reason using RedBend for the update (legacy?) @@ -396,10 +396,11 @@ image:images/redbend.png[height=76,role="gimmick_right"] == RedBend (delta update) software -* Used in OMA DeviceManagement? (e.g. https://www.blackhat.com/docs/us-14/materials/us-14-Solnik-Cellular-Exploitation-On-A-Global-Scale-The-Rise-And-Fall-Of-The-Control-Protocol.pdf[Mathew Solnik]) +* Used in OMA DeviceManagement as well? (e.g. https://www.blackhat.com/docs/us-14/materials/us-14-Solnik-Cellular-Exploitation-On-A-Global-Scale-The-Rise-And-Fall-Of-The-Control-Protocol.pdf[Mathew Solnik]) * Lots of starring at hexdumps, lots of help from Dieter Spaar * Created tools to partially extract and create .diff files -* Heavy in pointers/offsets, not robust, crashes +* Heavy in pointers/offsets, not robust +* Crashes on crafted files * Not cryptographically signed! image:images/delta_header.png[width="80%"] @@ -440,7 +441,7 @@ Start download fota for update.zip * Osmocom project has gained support for 3G/3.5G during 2016 * Osmocom suffers from lack of contributions :( -* We want to motivate more contriutions +* We want to motivate more contributions ** _Accelerate 3.5G_ programme provides 50 free 3.5 femtocells to contributors ** tell us how you would use your free femtocell to improve Osmocom ** Call for Proposals runs until January 31st, 2017. -- cgit v1.2.3