Thread: [DEVs] Firmware Summary
View Single Post
Old 02-21-2013, 04:59 PM   #30
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
K5pw, main-5.3.0
The search continues for dot-config files with a little bit of prep work.
Spoiler:

Code:
core2quad uimage $ od -A d -t x1 ku-5.3.0.img | grep '1f 8b 08 00'
0266448 1f 8b 08 00 00 00 00 00 02 03 ed 92 3d 6f d3 50
0266896 07 4d c7 b8 e0 84 06 00 00 1f 8b 08 00 00 00 00
0483136 54 1a 02 00 1f 8b 08 00 00 00 00 00 00 03 ed dd
0484880 00 00 00 00 1f 8b 08 00 00 00 00 00 00 03 ed 9b
0488576 6a 0e 00 00 1f 8b 08 00 00 00 00 00 00 03 ed d8
0488912 16 00 00 00 4f 01 00 00 00 00 00 00 1f 8b 08 00
0488960 95 64 00 00 00 00 00 00 29 00 00 00 1f 8b 08 00
0489184 d1 00 00 00 1f 8b 08 00 00 00 00 00 00 03 45 cf
0489392 ca 00 00 00 1f 8b 08 00 00 00 00 00 00 03 ed d8
0489664 00 00 00 00 1f 8b 08 00 00 00 00 00 00 03 63 65
0489712 29 00 00 00 1f 8b 08 00 00 00 00 00 00 03 4d cf
0489872 14 01 00 00 a0 00 00 00 00 00 00 00 1f 8b 08 00
0490048 28 01 00 00 1f 8b 08 00 00 00 00 00 00 03 ed dd
0493840 bc e2 0c f8 02 00 00 00 00 00 00 00 1f 8b 08 00
0499744 02 00 00 00 1f 8b 08 00 00 00 00 00 00 03 ed dd
0506112 00 00 00 00 1f 8b 08 00 00 00 00 00 00 03 ed 9d
0515616 f3 6b f0 6f 70 1c 68 6b 0c f8 02 00 1f 8b 08 00
0520464 f9 3f a2 14 3f cf 0c f8 02 00 00 00 1f 8b 08 00
0528640 f8 02 00 00 1f 8b 08 00 00 00 00 00 00 03 ed dd
0531520 e7 1f 00 00 27 0b 00 00 00 00 00 00 1f 8b 08 00

core2quad uimage $ od -A d -t x1 ku-5.3.0.img | grep '1f 8b 08 00'
- - - -
3889920 47 5f 53 54 1f 8b 08 00 57 fb 05 50 02 03 94 5c

That trailing one is too big to be a dot-config file on the end of it.

Moving right along, try to pull an initramfs (irfs) 'cpio -H newc' archive off of the trimmed image.
Spoiler:

Code:
core2quad uimage $ od -A d -t x1 ku-5.3.0.img | grep '30 37 30 37 30 31'
0102368 30 37 30 37 30 31 30 30 30 30 30 32 44 31 30 30
0102480 65 76 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0102720 6f 6e 73 6f 6c 65 00 00 30 37 30 37 30 31 30 30
0102848 30 37 30 37 30 31 30 30 30 30 30 32 44 35 30 30
0102960 65 76 2f 7a 65 72 6f 00 30 37 30 37 30 31 30 30
0103088 6d 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0103328 6d 69 63 00 30 37 30 37 30 31 30 30 30 30 30 32
0103568 61 74 63 68 64 6f 67 00 30 37 30 37 30 31 30 30
0103696 63 30 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0103824 30 37 30 37 30 31 30 30 30 30 30 32 44 44 30 30
0104064 74 79 6d 78 63 33 00 00 30 37 30 37 30 31 30 30
0104192 63 34 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0104432 62 2f 30 00 30 37 30 37 30 31 30 30 30 30 30 32
0104560 2f 66 62 2f 30 00 00 00 30 37 30 37 30 31 30 30
0104688 6b 30 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0104816 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0104944 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0105072 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0105200 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0105328 30 37 30 37 30 31 30 30 30 30 30 32 45 39 30 30
0105456 30 37 30 37 30 31 30 30 30 30 30 32 45 41 30 30
0105584 30 37 30 37 30 31 30 30 30 30 30 32 45 42 30 30
0105712 30 37 30 37 30 31 30 30 30 30 30 32 45 43 30 30
0105840 30 37 30 37 30 31 30 30 30 30 30 32 45 44 30 30
0105952 65 76 2f 6d 74 64 00 00 30 37 30 37 30 31 30 30
0106080 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0106208 30 37 30 37 30 31 30 30 30 30 30 32 46 30 30 30
0106448 74 64 2f 33 00 00 00 00 30 37 30 37 30 31 30 30
0106576 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0106704 30 37 30 37 30 31 30 30 30 30 30 32 46 34 30 30
0107712 6f 6f 70 30 00 00 00 00 30 37 30 37 30 31 30 30
0107840 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 32
0107968 30 37 30 37 30 31 30 30 30 30 30 32 46 45 30 30
0108208 32 63 00 00 30 37 30 37 30 31 30 30 30 30 30 33
0108336 30 37 30 37 30 31 30 30 30 30 30 33 30 31 30 30
0108576 32 63 2f 32 00 00 00 00 30 37 30 37 30 31 30 30
0108704 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 33
0108832 6e 74 30 00 30 37 30 37 30 31 30 30 30 30 30 33
0108960 6e 74 31 00 30 37 30 37 30 31 30 30 30 30 30 33
0109072 30 30 2f 70 72 6f 63 00 30 37 30 37 30 31 30 30
0109312 30 37 30 37 30 31 30 30 30 30 30 33 30 39 30 30
0109424 69 62 00 00 30 37 30 37 30 31 30 30 30 30 30 33
0188048 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 33
0188176 30 37 30 37 30 31 30 30 30 30 30 33 30 43 30 30
0188288 6e 74 00 00 30 37 30 37 30 31 30 30 30 30 30 33
0211472 30 37 30 37 30 31 30 30 30 30 30 33 30 46 30 30
0247920 30 37 30 37 30 31 30 30 30 30 30 33 31 30 30 30
0339456 30 37 30 37 30 31 30 30 30 30 30 33 31 32 30 30
0339568 69 6e 00 00 30 37 30 37 30 31 30 30 30 30 30 33
0352928 01 00 00 00 00 00 00 00 30 37 30 37 30 31 30 30
0360704 30 37 30 37 30 31 30 30 30 30 30 33 31 35 30 30
0362944 30 37 30 37 30 31 30 30 30 30 30 33 31 36 30 30
0810096 30 37 30 37 30 31 30 30 30 30 30 33 31 37 30 30
0834608 30 37 30 37 30 31 30 30 30 30 30 33 31 38 30 30
0911120 00 00 00 00 30 37 30 37 30 31 30 30 30 30 30 33
1008432 69 6c 00 00 30 37 30 37 30 31 30 30 30 30 30 30
4046512 6f 70 74 69 6f 6e 00 30 37 30 37 30 31 00 6e 6f
Only the first occurance is of any interest at the moment:
Code:
core2quad uimage $ od -A d -t x1 ku-5.3.0.img | grep '30 37 30 37 30 31'
0102368 30 37 30 37 30 31 30 30 30 30 30 32 44 31 30 30

core2quad uimage $ dd if=ku-5.3.0.img bs=1 skip=102368 of=ku-5.3.0-irfs.cpio
4616224+0 records in
4616224+0 records out
4616224 bytes (4.6 MB) copied, 18.2067 s, 254 kB/s

core2quad uimage $ mkdir ku-5.3.0-irfs
core2quad uimage $ cd ku-5.3.0-irfs
core2quad ku-5.3.0-irfs $ sudo su

core2quad ku-5.3.0-irfs # cpio -i -d -m  --no-absolute-filenames -I ../ku-5.3.0-irfs.cpio
cpio: Removing leading `/' from member names
1770 blocks

core2quad ku-5.3.0-irfs # ls -l
total 28
drwxr-xr-x 2 root root 4096 2013-02-21 15:53 bin
drwxr-xr-x 7 root root 4096 2013-02-21 15:53 dev
lrwxrwxrwx 1 root root   18 2013-02-21 15:53 init -> /bin/recovery-util
drwxr-xr-x 3 root root 4096 2013-02-21 15:53 lib
drwxr-xr-x 3 root root 4096 2013-02-21 15:53 mnt
drwxr-xr-x 2 root root 4096 2012-10-30 20:47 proc
drwx------ 2 root root 4096 2012-10-30 20:47 root
drwxr-xr-x 2 root root 4096 2012-10-30 20:47 sys

core2quad ku-5.3.0-irfs # cd ..
core2quad uimage # tar --create --gzip --file=main-5.3.0-irfs.tar.gz ku-5.3.0-irfs
core2quad uimage # exit


The initramFS is attached here, but it seems clear that Amazon started to strip the dot-config file off with the 5.2 firmware series.

Next, they might even realize they are making their compiled initramfs code GPL by statically linking it into the kernel image. A provision was added to the kernel back in 2005 for exactly the case of vendors that did not want their initramfs code to catch the GPL virus. Ah, but not even the professionals seem to read the documentation.
Attached Files
File Type: gz main-5.3.0-irfs.tar.gz (419.5 KB, 218 views)
Last edited by knc1; 02-21-2013 at 05:08 PM.
knc1 is offline   Reply With Quote