I found an amazon basics color changing smart light bulb attached to a lamp my neighbor threw in the apartment dumpster.
-
@scribblesonnapkins guessing that's beyond the scope of what @MLE_online is after here, but it *is* making me wonder what people have done in this vein to try and defeat the secure boot
@SnoopJ @MLE_online
They have on other processors but I don't know about this one. -
@MLE_online I like to think of it as percussive maintenance lol
@larrybiggs You can only call it that when you hammer on it. I just sawed the case open
-
Ok, it's controlling a BP1838 3 channel dimmable LED driver chip: https://datasheet4u.com/datasheets/BPS/BP1638CJ/1495890
If someone out there is smart and wants to try throwing some code together to see if it will work outside of the amazon ecosystem, let me know and I'll try loading it onto the ESP32
I have no idea which pins of the esp32 those lines going to the LED driver are associated with, btw. They put a giant blob of very stiff silicone over all of that
-
@SnoopJ @MLE_online
They have on other processors but I don't know about this one.@scribblesonnapkins @MLE_online it looks like the kind of fault injection you're thinking of was performed on a cousin chip, I would guess the secure boot is pretty much the same across the family of chips and would be susceptible to the same attack:
Espressif ESP32: Bypassing Secure Boot using EMFI
Raelize provides top-notch embedded device security serrvices like consultancy, testing, research and training.
(raelize.com)
pretty neat, I like that write-up quite well
-
Ok, it's controlling a BP1838 3 channel dimmable LED driver chip: https://datasheet4u.com/datasheets/BPS/BP1638CJ/1495890
If someone out there is smart and wants to try throwing some code together to see if it will work outside of the amazon ecosystem, let me know and I'll try loading it onto the ESP32
@MLE_online oh easy, but I bet someone would beat me to it. so, I'll hold off trying.
-
@MLE_online oh easy, but I bet someone would beat me to it. so, I'll hold off trying.
@RueNahcMohr what if everyone says that and no one does it?
-
I have no idea which pins of the esp32 those lines going to the LED driver are associated with, btw. They put a giant blob of very stiff silicone over all of that
@MLE_online I remove conformal coating (which is usually silicone-based) with acetone. Maybe put some on the pcb and let it work its way under the blob?
-
@RueNahcMohr what if everyone says that and no one does it?
@MLE_online then there will still be someone who tips first and finishes before I do.
I would like to see the blob side of the pcb tho. -
@MLE_online then there will still be someone who tips first and finishes before I do.
I would like to see the blob side of the pcb tho.@RueNahcMohr here you go. I got most of the blob off
-
Hey yeah! Esp32 pico!
@MLE_online
Aside from everything else, it is simply utterly ridiculous to have a computer in a fucking lightbulb. -
@MLE_online
Aside from everything else, it is simply utterly ridiculous to have a computer in a fucking lightbulb.@botvolution that's because it's not a lightbulb. It's bezosnet spying device
-
I found an amazon basics color changing smart light bulb attached to a lamp my neighbor threw in the apartment dumpster.
Apparently you can only change the color by giving the bulb access to your wifi network and using the alexa app on your phone. Very stupid.
@MLE_online #Amazon is notorious for crippling products to force their walled garden.
-
I have no idea which pins of the esp32 those lines going to the LED driver are associated with, btw. They put a giant blob of very stiff silicone over all of that
It looks like it's specifically one of these
ACK Solution
Espressif offers an easy way for users to build Alexa-connected devices with Espressif’s Alexa Connect Kit (ACK) hardware and software.
Espressif Systems (www.espressif.com)
-
@RueNahcMohr here you go. I got most of the blob off
@MLE_online @RueNahcMohr That looks like a wireless card attached to a power supply. The blob may have the logic underneath. It might be a gate array, if they don't need to ever change the IP they talk to. Some companies hate paying programmers, and who needs a CPU, anyway? I haven't noticed anything to store the IP data yet, but I'm more software/firmware than hardware. It probably isn't socketed, because that would cost money in the form of pennies. Product numbers off of the stuff under the blob would be helpful.
-
@botvolution that's because it's not a lightbulb. It's bezosnet spying device
@MLE_online @botvolution The EnshittiBulb
on that same note I'm planning on writing my state representatives about AB 2047 because that just sounds like an absolute License to Enshittify for the few 3d printer manufacturers who would jump through all those hoops and probably do it by tying their devices, including ones bought with public funding for schools, to a cloud service that can just Go Away and brick the printers, or force you to buy the manufacturer's own RFID tagged filament
-
Ok, it's controlling a BP1838 3 channel dimmable LED driver chip: https://datasheet4u.com/datasheets/BPS/BP1638CJ/1495890
If someone out there is smart and wants to try throwing some code together to see if it will work outside of the amazon ecosystem, let me know and I'll try loading it onto the ESP32
@MLE_online dump its firmware.
-
@MLE_online @RueNahcMohr That looks like a wireless card attached to a power supply. The blob may have the logic underneath. It might be a gate array, if they don't need to ever change the IP they talk to. Some companies hate paying programmers, and who needs a CPU, anyway? I haven't noticed anything to store the IP data yet, but I'm more software/firmware than hardware. It probably isn't socketed, because that would cost money in the form of pennies. Product numbers off of the stuff under the blob would be helpful.
@steter @RueNahcMohr It's an ESP32 pico v3 zero attached to a power supply
-
@MLE_online dump its firmware.
@maehw I don't know how to do that
-
@MLE_online @botvolution The EnshittiBulb
on that same note I'm planning on writing my state representatives about AB 2047 because that just sounds like an absolute License to Enshittify for the few 3d printer manufacturers who would jump through all those hoops and probably do it by tying their devices, including ones bought with public funding for schools, to a cloud service that can just Go Away and brick the printers, or force you to buy the manufacturer's own RFID tagged filament
@vxo @botvolution You should explain what AB 2047 is for people who don't know what that is.
The lawmaker proposing that bill is also proposing to require drivers licenses for ebike. She's on a roll with stupid ideas right now
-
@MLE_online
Aside from everything else, it is simply utterly ridiculous to have a computer in a fucking lightbulb.@botvolution @MLE_online many not-so-smart lighbulbs have an 8-bit microcontroller on them. I saw an emulation of the Manchester SSEM running on one once
