Hacking the Rigol MSO5000 series oscilloscopes

[TK]

I think the complain is about the quality of the square wave of the integrated waveform generator

[NoisyBoy]

If it is the square wave distortion he is referring to, that’s normal for that scope.  Low grade AWGs is not going to give you crisp square wave at high frequency.

[DeKu]

Im Sorry. Seems i left out the most important Part. The Colourgrading isnt an Issue as i can turn it on an off myself.

I actually meant the poor quality of the "supposedly" Square Form. But if thats a known "Issue" cause of the poor quality AWG, than my Question is already answered.

ty

[Cerebus]

Yup, not the best squarewave.

For comparison top trace Rigol internal G1 10 MHz, bottom trace HP3325A synthesiser. The HP is at the top of its square wave range there - the Rigol has in theory another 5 MHz to go, but as we're seen, it's fugly.



And at 1 MHz:

[mabl]

Has anyone done the 01.02.00.02? Can you please confirm that the steps above are the correct ones?

https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-series-oscilloscopes/msg2963402/#msg2963402

Yes they should work. Nice work of  delfinom, and it also includes patches against online updates. I applied a similar patch to 00.01.02.00.03 and it works well for me.

[NoisyBoy]

Hey mabl,

Similar patch as in the exact same patch?

[mabl]

Similar patch as in the exact same patch?

Similar, as in opened-up a disassembler, looking at the chances and applying a similar modification to the slightly moved functions version in the new firmware. So not the exact same patch.  I just wanted to encourage everyone to look at the newest firmware.

Also, I would like to stress that my patcher will check the MD5 sumes before and after the patch. So it is very hard to corrupt the system using it.

[el_man]

Similar patch as in the exact same patch?

Similar, as in opened-up a disassembler, looking at the chances and applying a similar modification to the slightly moved functions version in the new firmware. So not the exact same patch.  I just wanted to encourage everyone to look at the newest firmware.

Also, I would like to stress that my patcher will check the MD5 sumes before and after the patch. So it is very hard to corrupt the system using it.

Thanks mabl for the clarification. Is there any chance to post the bspatch file and MD5 sums for 00.01.02.00.03.

[tv84]

So it is very hard to corrupt the system using it.

Assuming that the patch is well done...   A faulty patch with correct hashes will still not work.  (just decided to nitpick a bit... )

[mabl]

So it is very hard to corrupt the system using it.

Assuming that the patch is well done...   A faulty patch with correct hashes will still not work.  (just decided to nitpick a bit... )

Haha right you are. It assumes the patch is good. I was implicitly thinking people would develop and test their patches via SSH. But funny enough, I did my patch on 00.01.02.00.03 and directly used the patcher, and only while patching realized what I was doing without much of a safety net. It worked, but in the worst case scenario I would have had to reflash from the bootloader.

[sbehnke]

So it is very hard to corrupt the system using it.

Assuming that the patch is well done...   A faulty patch with correct hashes will still not work.  (just decided to nitpick a bit... )

Haha right you are. It assumes the patch is good. I was implicitly thinking people would develop and test their patches via SSH. But funny enough, I did my patch on 00.01.02.00.03 and directly used the patcher, and only while patching realized what I was doing without much of a safety net. It worked, but in the worst case scenario I would have had to reflash from the bootloader.

I'd love to get a copy of that 00.01.02.00.03 patch as well. It does not appear I can go back to 00.01.02.00.02 after putting 00.01.02.00.03 on, unless there's a tip for that.

[ZXSpectrum]

Hello. I bought an oscilloscope with firmware 00.01.02.00.03 tell me how to patch it?

[Martin72]

Hi,

Just search in this thread and you´ll find the answer..

[typoknig]

Hello. I bought an oscilloscope with firmware 00.01.02.00.03 tell me how to patch it?

I don't think anyone has posted a patch for 00.01.02.00.03 yet, though some have claimed to have developed a patch for that version. The most recent version a patch has been uploaded for is 00.01.02.00.02 and the instructions for using it are here.

[ZXSpectrum]

Is it possible to flash on top of 00.01.02.00.03 patched 00.01.02.00.02?

[sbehnke]

I did figure it out. My USB drive I was using was not very compatible for whatever reason. I switched to a different USB stick and was able to go backward in time. If you repeatedly press the SINGLE button on your scope as it boots, you'll get an option to restore the firmware and you can use an older version.

[typoknig]

Is it possible to flash on top of 00.01.02.00.03 patched 00.01.02.00.02?

IDK for sure, but based on this post and the two after it, I would say no.

[ZXSpectrum]

Everything turned out Flashed 00.01.02.00.02 using the menu on the SINGLE button, and then launched the patch from answer # 1558
Thanks to all!

[ykurban]

is there a tutorial for MSO 5204 or its same for all mso 5000 series?

current firmware: 00.01.01.04.08
hw: 01.01.000

[skander36]

Hi , congratulations !
The procedure is the same for all MSO 5000 .
For 04.08 - here - https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-series-oscilloscopes/msg2785686/#msg2785686
for newer 02.02 - you must replace md5 sum in patch.txt , and bspatch file with the ones from here - https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-series-oscilloscopes/msg2943152/#msg2943152
But I have a question , as I have seen that on the other thread there is another who show the oscilloscope options panel . Why you aren't get MSO Bundle license (Serial Decoding , WaveGEN,PWR analisys) . It was supposed to be until the end of march valid. You acquired in April ?

[electricMN]

Hi , congratulations !
....
But I have a question , as I have seen that on the other thread there is another who show the oscilloscope options panel . Why you aren't get MSO Bundle license (Serial Decoding , WaveGEN,PWR analisys) . It was supposed to be until the end of march valid. You acquired in April ?

He probably hasn't registered on Rigol's web site. That's how you get the key to enable the free options. It's best to make sure the scope works before adding the options just in case there's a problem with the options.
They've extended the free options through the end of April.

[skander36]

Yes, the license is coming by email and code inside must be registered on Rigol site.
Even if the hack is enabling all options is better that you have it officially enabled. With bundle options you miss only BW and Memory .

[NoisyBoy]

Rigol has implemented some changes on their site to force one to his regional Rigol page.  In the US, we can no longer reach the  international, EU, or China site, they all redirect us back to the rigolna site. 

I know the promo is available in the US, but not sure if that's true in Turkey (I presume that would go to the EU site).  If it is available in Turkey, I agree it is better to get the promo so you will get the legit free licenses in perpetuity without fear that the hack will not work with some future firmware version.

[ykurban]

Thanks for quick reply.

Patch worked fine

I bought a few months ago from Turkey, where unfortunately bundle was not available

Now its like a new device! Thank you.

[skander36]

Maybe you should try to apply for the bundle to your seller or directly to Rigol . You have nothing to loose but gaining .