Author Topic: Hacking the Rigol MSO5000 series oscilloscopes  (Read 179312 times)

BobRyan, Sparky, w5cpu, ted616 and 3 Guests are viewing this topic.

Offline Martin72

  • Frequent Contributor
  • **
  • Posts: 574
  • Country: de
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1350 on: October 06, 2019, 03:47:30 pm »
Quote
but the trick with pressing "single" with the original firmware (01.01.04.04) from Rigol on USB-stick failed?

See :

https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-series-oscilloscopes/msg2655762/#msg2655762

First I don´t get the "secret menu" too.


Offline forfly

  • Newbie
  • Posts: 2
  • Country: de
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1351 on: October 06, 2019, 04:25:43 pm »
Many thanks!

(pressing "single" several times immediatly after power on did the job at the first try.)
 

Offline mabl

  • Regular Contributor
  • *
  • Posts: 100
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1352 on: October 07, 2019, 07:18:22 am »
Oh, shit, I saw the same for-ever-boot-screen as Antlanpz, but the trick with pressing "single" with the original firmware (01.01.04.04) from Rigol on USB-stick failed? Are there any other suggestions to restore to factory default?

You should not need to do manual patching if you want to apply a bspatch. You can use my automatic patcher to apply any patch you want. You will have to provide the proper checksums, which will be checked and the patch only applied if everything worked.
 

Offline tv84

  • Frequent Contributor
  • **
  • Posts: 925
  • Country: pt
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1353 on: October 07, 2019, 06:55:36 pm »
For those that want to use the UART port and can't because their PCB misses the inline Res, just to inform that it is a Res = 0 ohms.
 
The following users thanked this post: thm_w, 2N3055, bmx, serg_77

Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1354 on: October 09, 2019, 09:33:40 am »
Greetings to all. There was a problem: I installed the DS5000Update_01.01.04.08 version (I can’t change it to another). When creating a Putty link over SSH. After entering the word "boot" and continuing, it says that "access is closed"
5 times, after which it does not hang much ... What can be done?  :(  Thank you very much!

 

Online Aztlanpz

  • Regular Contributor
  • *
  • Posts: 93
  • Country: us
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1355 on: October 09, 2019, 09:41:19 am »
Why are you doing that look at the post by Agnes
 


Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1357 on: October 09, 2019, 04:10:11 pm »
Hello again to everyone. It seems that something is not right ... After connecting via LAN cable, with the PuTTY program (Windows 10 installed), after entering "root" it writes to enter the password, but does not respond to typing, only to Enter. At the same time, it says "Access denitd" after 5 presses "Enter" is buggy ... I did a reset at startup ... It does not help! Maybe something I'm doing wrong? Thank you very much!
« Last Edit: October 09, 2019, 04:46:18 pm by Urzov »
 

Offline Martin72

  • Frequent Contributor
  • **
  • Posts: 574
  • Country: de
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1358 on: October 09, 2019, 04:19:41 pm »
Hi,

Did you follow the instructions from the post I´ve linked here before ?

Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1359 on: October 09, 2019, 05:00:44 pm »
I did everything on points! Updated to version “8”, rebooted (turned it off and on), erased the update from USB, wrote the file to enable SSH, turned on SSH, connected the cable to the PC, launched PuTTY with the address, ... But it doesn’t enter the password!
 

Online PA0PBZ

  • Super Contributor
  • ***
  • Posts: 4151
  • Country: nl
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1360 on: October 09, 2019, 05:07:01 pm »
after entering "root" it writes to enter the password, but does not respond to typing, only to Enter.

Passwords are (almost) always hidden, so just type the password and hit enter.
Keyboard error: Press F1 to continue.
 

Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1361 on: October 09, 2019, 06:39:54 pm »
Oh .. It turned out with a password! But he can not find either: "cp / rigol / appEntry / media / sda1 /" nor: "cd / media / sda1" I think and more ...   :-[ What can I do? Thank!
« Last Edit: October 09, 2019, 06:45:08 pm by Urzov »
 

Offline TK

  • Super Contributor
  • ***
  • Posts: 1153
  • Country: us
  • I am a Systems Analyst who plays with Electronics
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1362 on: October 09, 2019, 06:45:34 pm »
Oh .. It turned out with a password! But he can not find either: "cp / rigol / appEntry / media / sda1 /" nor: "cd / media / sda1" I think and more ...   :-[ What can I do? Thank!
You are doing it wrong... there must be a space after cp.
« Last Edit: October 09, 2019, 06:55:44 pm by TK »
 

Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1363 on: October 09, 2019, 07:11:07 pm »
Thank you, I realized it! But it is not clear in "Step 7". Do you need to register the path to the USB drive to create a "bspatch" file in it? Can you please for more details. Thank!
 

Offline TK

  • Super Contributor
  • ***
  • Posts: 1153
  • Country: us
  • I am a Systems Analyst who plays with Electronics
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1364 on: October 09, 2019, 07:14:49 pm »
Thank you, I realized it! But it is not clear in "Step 7". Do you need to register the path to the USB drive to create a "bspatch" file in it? Can you please for more details. Thank!
Every file involved in the bspatch execution must be located in the same directory... I assume appEntry is in your USB drive, so yes... change directory to the USB drive where all the files are located before executing bspatch.
 

Offline tv84

  • Frequent Contributor
  • **
  • Posts: 925
  • Country: pt
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1365 on: October 09, 2019, 07:40:51 pm »
Learning linux commands in a scope's shell is not the best scenario...
 
The following users thanked this post: Martin72

Offline Martin72

  • Frequent Contributor
  • **
  • Posts: 574
  • Country: de
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1366 on: October 09, 2019, 07:42:11 pm »
 ;D


Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1367 on: October 09, 2019, 07:55:08 pm »
I don’t understand "Step 7" ... How to copy "bspatch" to the root of the USB drive. How to set the address on a USB drive so that it creates a “bspatch” file in it How do I understand after creating a “bspatch” file it needs to be renamed to “appEntry”? Confused ... Thanks!
 

Offline TK

  • Super Contributor
  • ***
  • Posts: 1153
  • Country: us
  • I am a Systems Analyst who plays with Electronics
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1368 on: October 09, 2019, 09:40:00 pm »
bspatch is the linux/unix command you need to execute on the appEntry application you copied from your scope to the USB drive. 

It is a "Binary patch" tool.  You apply it to the original appEntry using the file that contains the information on what to patch, then you copy the resulted appEntry file back to the scope.
 

Offline mabl

  • Regular Contributor
  • *
  • Posts: 100
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1369 on: October 10, 2019, 04:12:45 am »
Oh, shit, I saw the same for-ever-boot-screen as Antlanpz, but the trick with pressing "single" with the original firmware (01.01.04.04) from Rigol on USB-stick failed? Are there any other suggestions to restore to factory default?

You should not need to do manual patching if you want to apply a bspatch. You can use my automatic patcher to apply any patch you want. You will have to provide the proper checksums, which will be checked and the patch only applied if everything worked.

I want to again point out, that manual patching, such as described by Angus and others is not required. Especially, if you know what to patch, have the MD5 sums of the binary before and after patch. Just use my new patcher firmware and create a proper configuration file containing the file name of the bspatch file, and the two md5 sums before and after patch. It works with any firmware, does not require SSH and is pretty safe.  Especially, if you have never interacted with Linux on a shell only.
 

Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1370 on: October 10, 2019, 04:49:05 pm »
Hello! I saved the file (appEntry) to the USB drive with the command: "cp / rigol / appEntry / media / sda1 /". I'm trying through Ubuntu with the files "appEntry" and "appEntry_01_01_04_08.bpatch" to create "appEntryPatched". But "bspatch" does not work, nor how it doesn’t work, it isn’t anywhere ... Does anyone have a working "bspatch" utility? Thank you very much!
 

Offline NoisyBoy

  • Regular Contributor
  • *
  • Posts: 167
  • Country: us
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1371 on: October 10, 2019, 05:26:57 pm »
You really should pay attention to what mabl has to say, it will save you a lot of headache if you are having trouble with the process.  He has spent a lot of time to create tools to help the less experienced owners to avoid the exact challenges you are facing.
 
The following users thanked this post: thm_w

Offline Urzov

  • Contributor
  • Posts: 9
  • Country: ua
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1372 on: October 10, 2019, 05:46:51 pm »
Good! I'll try as Mabl suggests. There are questions: where to get "name_of_patch.bpatch" What is it? The file: appEntry is mentioned in the patch.txt file. File "appEntry" to take the one that created the command "cp / rigol / appEntry / media / sda1 /" Thank you!
« Last Edit: October 10, 2019, 06:18:13 pm by Urzov »
 

Offline mabl

  • Regular Contributor
  • *
  • Posts: 100
  • Country: 00
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1373 on: October 10, 2019, 06:28:37 pm »
  • file_to_patch - do not change, since  /rigol/appEntry is the file you want to patch. No need to put appEntry on the USB
  • file_to_patch_md5sum - do not change, if you want to patch firmware version 01.01.04.08 and  its appEntry
  • patch_file - change value to the name of your patch file and put this patch file on USB
  • after_patch_md5sum - change to value to the expected checksum after  patch_file was applied to file_to_patch.
« Last Edit: October 10, 2019, 06:43:46 pm by mabl »
 

Offline texaspyro

  • Super Contributor
  • ***
  • Posts: 1307
Re: Hacking the Rigol MSO5000 series oscilloscopes
« Reply #1374 on: October 11, 2019, 01:52:41 am »
  • after_patch_md5sum - change to value to the expected checksum after  patch_file was applied to file_to_patch.

Where/how does one come up with this checksum?
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf