Author Topic: Hacking the Rigol MSO5000 series oscilloscopes  (Read 79945 times)

hobbs1210 and 2 Guests are viewing this topic.

Offline mrpackethead

  • Super Contributor
  • ***
  • Posts: 2381
  • Country: nz
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #125 on: December 07, 2018, 07:02:34 pm »
30A989AFC82C0A21139573591DE4E5FF37994F7D1506A9ACF2B5997005C2649F

Without any evidence of a hack, the people claiming it are losing face ( 丢脸 ) very quickly.     
« Last Edit: December 07, 2018, 07:08:54 pm by mrpackethead »
On a quest to find increasingly complicated ways to blink things
 

Offline Fungus

  • Super Contributor
  • ***
  • Posts: 9249
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #126 on: December 07, 2018, 07:24:24 pm »
30A989AFC82C0A21139573591DE4E5FF37994F7D1506A9ACF2B5997005C2649F

Without any evidence of a hack, the people claiming it are losing face ( 丢脸 ) very quickly.   

Yes, it's been, what, a whole 12 hours now?

I agree that if you're not going to publish then just keep your mouth shut but they might just be in bed or something.

I dont' have a scope yet ( get it in Jan ), and when i do, i'll be keen to see how the hacks work, but if i use the features, i'll just be doign the boring thing and paying for it.  ( because thats the right thing to do ).

If you're going to spend that much you should probably buy the R&S, not Rigol.  :popcorn:
« Last Edit: December 07, 2018, 07:27:07 pm by Fungus »
 

Offline TK

  • Frequent Contributor
  • **
  • Posts: 841
  • Country: us
  • I am a Systems Analyst who plays with Electronics
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #127 on: December 07, 2018, 10:21:55 pm »
did you notice what seemed to be the Build date of the firmware (top right of the screen)?  December 6... very strange... maybe it was someone from Rigol or a rogue employee
 

Offline tv84

  • Frequent Contributor
  • **
  • Posts: 459
  • Country: pt
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #128 on: December 07, 2018, 10:34:09 pm »
That's the current hour/date in the scope.
 

Offline timgiles

  • Regular Contributor
  • *
  • Posts: 222
  • Country: se
  • Programmer, DB architect
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #129 on: December 07, 2018, 10:46:07 pm »
Well anyone who has watched the latest episode of SouthPark can see there are some on this forum that have lost the ability to have patience - too much getting used to amazon next day ordering!

Let those working on it work. Rigol will do or not do - now and in the future. If they change their approach to all firmware, prehaps other workarounds will be found. Prehaps Rigol really is seeing this as a chance to capture several market slices - business with paid for licences and home hackers. We know it costs the same if it has a 200Mhz, 1Ghz (?) or 70Mhz label on it - so it can only be good for Riogl. Business, universities - are unlikely to hack.

Time will tell.
 
The following users thanked this post: tv84

Offline TopLoser

  • Supporter
  • ****
  • Posts: 1776
  • Country: gb
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #130 on: December 07, 2018, 10:53:23 pm »
That's the current hour/date in the scope.

No, it said ‘Build date’ on the photo
 

Offline tv84

  • Frequent Contributor
  • **
  • Posts: 459
  • Country: pt
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #131 on: December 07, 2018, 11:10:58 pm »
That's the current hour/date in the scope.

No, it said ‘Build date’ on the photo

:) Good point.

But I went to "wayback machine" to have a look at the images from Dave's+chinese pics and they all have consecutives hours.

The "build" is the time when the "screen dump" was built.
 

Offline glenenglish

  • Regular Contributor
  • *
  • Posts: 113
  • Country: au
  • AI6UM / VK1XX
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #132 on: December 09, 2018, 06:56:29 am »
If indeed Rigol pursue the market this way, and they monitor these forums, then in the interests of getting these sort of "Expandable" products, I suggest readers posting here to be nice with their comments.

I have  bought a 100 MHz version,  waiting on delivery. I'd like them and the local rep to make some decent margin on this scope, I think having an entry at the low price of the  70 MHz scope that is "Expandable" is canabalizing  their market, IMO they don't really have to go that cheap , unless they really have the cost right down to peanuts. In the west we might think 3x to 4x cost is about the minimum sell price for pro gear, but these guys often work on maybe 1.2 to 1.5x and it is just a numbers game.

Rigol's competition  are responsible for bringing high performance low cost scopes from all the A class manufacturers. It's the reason I support AMD with their Ryzen , and have all my systems here now Ryzen. (even though I can afford any processor I want) - they are responsible for holding Intel to account and providing some innovation in that market segment.
 
 

Offline Fungus

  • Super Contributor
  • ***
  • Posts: 9249
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #133 on: December 09, 2018, 07:44:14 am »
If indeed Rigol pursue the market this way, and they monitor these forums...

They've been doing it that way for quite a while:


« Last Edit: December 09, 2018, 07:47:26 am by Fungus »
 

Offline Fungus

  • Super Contributor
  • ***
  • Posts: 9249
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #134 on: December 09, 2018, 07:51:36 am »
One question: If this thing runs Linux and has a shell account then can it run batch files, etc?

What's installed in the system? Is there a C compiler?

Can you upload executable files and get it to do new things that way?

 

Offline nctnico

  • Super Contributor
  • ***
  • Posts: 16267
  • Country: nl
    • NCT Developments
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #135 on: December 09, 2018, 08:30:06 am »
One question: If this thing runs Linux and has a shell account then can it run batch files, etc?

What's installed in the system? Is there a C compiler?

Can you upload executable files and get it to do new things that way?
Forum member RHB is having a long term plan for something like that. A lot of scopes run on the Zync platform nowadays so except for the ADCs and display size many oscilloscopes are practically identical. Don't get excited yet because writing firmware for an oscilloscope is a massive task but once there is a core feature set then it shouldn't be hard to port it to different hardware platforms.
There are small lies, big lies and then there is what is on the screen of your oscilloscope.
 

Offline mrpackethead

  • Super Contributor
  • ***
  • Posts: 2381
  • Country: nz
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #136 on: December 10, 2018, 08:39:27 am »
So “hypothetically” if a hack existed that took a 70mhz model to 350 what would the preference here be?  Share it? Hide it? Wait six months?

Another party ( not the rgwan lot ) has claimed they have enabled 350 and has said it’s reasonably trivial. They are unsure of what to do.  It’s entirely for educational purposes only and if you need 350m then you should buy the license.  This is however a very interesting thing if you are interested in the security of embedded systems
On a quest to find increasingly complicated ways to blink things
 

Offline rgwan

  • Contributor
  • Posts: 23
  • Country: us
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #137 on: December 10, 2018, 05:42:50 pm »
Well thats really strange. They said that it is trival. So, how about you to ask them for the reason why they dont choose to release it now?

Btw, you have said that you re interested in embedded system security, why do you dont analyze firmware yourself? The process of analysing is more fun than the answer. So, dont hesitate to wait our answer anymore. Try to find your own! LOL

 
 

Online maginnovision

  • Frequent Contributor
  • **
  • Posts: 446
  • Country: us
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #138 on: December 10, 2018, 07:31:58 pm »
Well thats really strange. They said that it is trival. So, how about you to ask them for the reason why they dont choose to release it now?

Btw, you have said that you re interested in embedded system security, why do you dont analyze firmware yourself? The process of analysing is more fun than the answer. So, dont hesitate to wait our answer anymore. Try to find your own! LOL

They may have done something different than you from the sounds of it. No mention of unlocking the rest of the options just the bandwidth.
 

Offline Rerouter

  • Super Contributor
  • ***
  • Posts: 3797
  • Country: au
  • Question Everything... Except This Statement
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #139 on: December 10, 2018, 08:13:48 pm »
Walking through the firmware behind the devices can be an interesting way to spend a rainy afternoon, I never would have assumed my Siglent was full of unicorn's and pikachu's
 

Offline tv84

  • Frequent Contributor
  • **
  • Posts: 459
  • Country: pt
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #140 on: December 10, 2018, 08:46:09 pm »
The Christmas gift for all Rigol fans out here:

Go to /rigol/shell/start.sh

and add the "-fullopt" to the command line that executes appEntry (before the &).

PS: And it's not an hack. It's a feature!
 
The following users thanked this post: Sparky, KeBeNe, thesgoat, dpenev, thm_w, TopLoser, mrpackethead, bitseeker, darthcloud

Offline Fungus

  • Super Contributor
  • ***
  • Posts: 9249
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #141 on: December 10, 2018, 08:51:06 pm »
Do these things come with a text editor? Vim?  :popcorn:
 

Offline TopLoser

  • Supporter
  • ****
  • Posts: 1776
  • Country: gb
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #142 on: December 11, 2018, 01:19:48 am »
The Christmas gift for all Rigol fans out here:

Go to /rigol/shell/start.sh

and add the "-fullopt" to the command line that executes appEntry (before the &).

PS: And it's not an hack. It's a feature!

How odd! That was remarkably easy to do...

No change to the 'Option list' but lots of options are now enabled...

Nice to have the 2 sig gens working, that's easy to test.
200M memory depth works
Power analysis is available

I'd be interested to know what the bandwidth was now... Off to find a decent signal generator under my desk...
« Last Edit: December 11, 2018, 01:25:34 am by TopLoser »
 

Offline Fungus

  • Super Contributor
  • ***
  • Posts: 9249
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #143 on: December 11, 2018, 01:48:25 am »
How odd! That was remarkably easy to do...

Disappointed? You wanted more of a fight...?  :popcorn:

If the bandwidth has changed to 350Mhz then nobody else is going to be selling oscilloscopes to hobbyists in the next few years.

 

Offline RobBarter

  • Regular Contributor
  • *
  • Posts: 50
  • Country: gb
    • www.bedrocksystems.co.uk
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #144 on: December 11, 2018, 02:30:36 am »
Would be interested to find out if this also turns a 2 channel into 4 channel.  I assume the same technique would work on a MSO7000?
minimal sig so a single msg doesn't take up the entire page!
 

Offline commongrounder

  • Frequent Contributor
  • **
  • Posts: 308
  • Country: us
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #145 on: December 11, 2018, 02:37:16 am »
Would be interested to find out if this also turns a 2 channel into 4 channel.  I assume the same technique would work on a MSO7000?
Was also thinking the same thing, although, for the US$99.00 difference, you get the two additional 350 MHz probes. That’s assuming they perform well for the price.
 
The following users thanked this post: thm_w, Rémi

Offline TopLoser

  • Supporter
  • ****
  • Posts: 1776
  • Country: gb
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #146 on: December 11, 2018, 02:40:55 am »
Can’t say if it turns a 2 channel into a 4 channel, mine is the 5074. I paid the extra 90 euros for a 4 channel as that way I got warranty on all 4 channels and an extra couple of probes. I would imagine it enables 4 channels though, can’t see why it wouldn’t.

Anybody with  a 7000 series can give it a go, it’s a very simple process.
 

Offline commongrounder

  • Frequent Contributor
  • **
  • Posts: 308
  • Country: us
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #147 on: December 11, 2018, 02:45:08 am »
Can’t say if it turns a 2 channel into a 4 channel, mine is the 5074. I paid the extra 90 euros for a 4 channel as that way I got warranty on all 4 channels and an extra couple of probes. I would imagine it enables 4 channels though, can’t see why it wouldn’t.

Anybody with  a 7000 series can give it a go, it’s a very simple process.
I don’t think there are any two-channel 7000 series scopes. The base model is the 7014 four channel.
 

Offline TopLoser

  • Supporter
  • ****
  • Posts: 1776
  • Country: gb
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #148 on: December 11, 2018, 02:50:35 am »
The software options were of more interest, and the AWGs. Plus the extra bandwidth of course.
« Last Edit: December 11, 2018, 02:56:07 am by TopLoser »
 

Offline TopLoser

  • Supporter
  • ****
  • Posts: 1776
  • Country: gb
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #149 on: December 11, 2018, 04:07:09 am »
Ok, all I can find is a crappy 160MHz generator.

Two screen captures attached, one before 'enhancement', one after.  Note that the fastest timebase has changed from 5ns/div to 1ns/div - that must be a clue something is going on! Signal voltage shows less attenuation after 'enhancement'.

Also note the appearance of the 2 sig gen buttons on the bottom of the screen.


« Last Edit: December 11, 2018, 04:14:27 am by TopLoser »
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf