Re: apex-1.3.31 and sercomm flash header

To: Rod Whitby <rod@whitby.id.au>
Cc: Marc Singer <elf@buici.com>, debian-arm@lists.debian.org
Subject: Re: apex-1.3.31 and sercomm flash header
From: Martin Michlmayr <tbm@cyrius.com>
Date: Sat, 5 Aug 2006 12:25:54 +0200
Message-id: <[🔎] 20060805102554.GF29320@deprecation.cyrius.com>
In-reply-to: <[🔎] 44D3FAD4.3040306@whitby.id.au>
References: <20060722000729.GA32540@buici.com> <44C1D685.30707@whitby.id.au> <20060722090651.GF16475@deprecation.cyrius.com> <20060729010643.GA13582@buici.com> <[🔎] 20060804224453.GB29320@deprecation.cyrius.com> <[🔎] 20060804234904.GA32608@buici.com> <[🔎] 44D3FAD4.3040306@whitby.id.au>

* Rod Whitby <rod@whitby.id.au> [2006-08-05 11:26]:
> I agree.  We should use overlapping partitions instead of using 1MB for
> the second stage bootloader.  We have previously used this technique for
> the Unslung firmware to fool the Linksys binaries, so we know that it
> doesn't confuse the linux mtd code.

I'm afraid this doesn't appear to work.  While I can generate an image
with overlapping partitions with slugimage, RedBoot still crashes.

This one didn't work:

RedBoot 0x00000000      0x00040000
EthAddr 0x0003FFB0      0x00000006
SysConf 0x00040000      0x00020000
Loader  0x00060000      0x00100000
Kernel  0x00080000      0x00100000 <- overlaps with Loader
Ramdisk 0x00180000      0x00660000
FIS directory   0x007E0000      0x00020000
Payload 0x007E1000      0x0001EFF0
Trailer 0x007FFFF0      0x00000010

Whereas this one does:

RedBoot 0x00000000      0x00040000
EthAddr 0x0003FFB0      0x00000006
SysConf 0x00040000      0x00020000
Loader  0x00060000      0x00100000
Kernel  0x00160000      0x00100000 <- no overlap
Ramdisk 0x00260000      0x00580000

> We also have the source code for the Linksys modifications to
> RedBoot, so we can look at that to see if there is another way to
> fool the Linksys RedBoot 'boot' command.

If you can take a look and let me know how to fool it, I'll be glad to
test it.
-- 
Martin Michlmayr
http://www.cyrius.com/

Reply to:

Follow-Ups:
- Re: apex-1.3.31 and sercomm flash header
  - From: Rod Whitby <rod@whitby.id.au>

References:
- Re: apex-1.3.31 and sercomm flash header
  - From: Martin Michlmayr <tbm@cyrius.com>
- Re: apex-1.3.31 and sercomm flash header
  - From: Marc Singer <elf@buici.com>
- Re: apex-1.3.31 and sercomm flash header
  - From: Rod Whitby <rod@whitby.id.au>

Prev by Date: Re: apex-1.3.31 and sercomm flash header
Next by Date: Re: apex-1.3.31 and sercomm flash header
Previous by thread: Re: apex-1.3.31 and sercomm flash header
Next by thread: Re: apex-1.3.31 and sercomm flash header
Index(es):
- Date
- Thread