Eljakim/amlogic
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
09804766033fc6dce332c91e8f9ef6201196d364
amlogic/documentation/source/s905x3/emulation.rst
Eljakim Herrewijnen 0980476603 initial
2024-03-30 21:13:26 +01:00

69 lines
4.1 KiB
ReStructuredText
Raw Blame History

Emulation
=========
Figure out where the stack is set:
.. figure:: find_stack_address.png
The stack is set at: ``0xfffe3800``.
Devices
-------
The goal is to make a fuzzer for the ``USB`` and ``I2C`` devices.
To get insight and help with reverse engineering an emulator is being developed.
UART Device
###########
UART is implemented in software. When the device boots it always sends a message over UART, this can now be printed:
.. code-block:: text
print(bytes(self.get_device("UART").get_rx()))
b'BL:511f6b:\x00\x00\x00\x00\x00\x00;FEAT:FF800228:0;POC:0;RCY:0;USB:0;'
Timer Device
############
Timer device is also implemented.
TODO
####
* Implement USB device
* Dump Efuses from reference device and use it in the emulator, along with an efuse device
I2C Device
##########
Quickly after boot a string is read from I2C.
According to several sources on the internet this I2C device is in the HDMI port(TODO check this).
I2C is a serial protocol, which relies on 2 lines, SCK for clock and SDA for data. For this SoC and using the emulator we can see that GPIO25 is used for SCL and GPIO27 for SDA.
For Emulating this
Explanation of I2C according to ChatGPT:
.. code-block:: text
The I2C (Inter-Integrated Circuit) protocol is a popular serial communication protocol used for communication between integrated circuits (ICs) in various electronic devices. It was developed by Philips (now NXP Semiconductors) and is widely adopted due to its simplicity and versatility.
Key features of the I2C protocol include:
Master-Slave Architecture: The I2C bus typically consists of one or more master devices and multiple slave devices. The master device initiates and controls the communication, while the slave devices respond to commands and provide data or services.
Two-Wire Communication: I2C utilizes two lines for communication: a serial data line (SDA) and a serial clock line (SCL). Both lines are bidirectional, allowing data to be transmitted in both directions.
Addressing: Each slave device on the I2C bus has a unique address, allowing the master device to communicate with specific slaves. Addressing can be 7-bit or 10-bit, depending on the device and the variant of the I2C protocol.
Start and Stop Conditions: Communication on the I2C bus is initiated by the master device by asserting a start condition (a falling edge on SDA while SCL is high). The start condition indicates the beginning of a transmission. The master also sends a stop condition (a rising edge on SDA while SCL is high) to indicate the end of a transmission.
Data Transmission: Data is transferred in bytes (8 bits) between the master and slave devices. Each byte is followed by an acknowledgment (ACK) or not-acknowledgment (NACK) bit, indicating whether the receiver successfully received the data.
Clock Synchronization: The I2C protocol relies on the synchronized clock signals on the SCL line. Both the master and slave devices operate based on this clock signal.
Standard and Fast Modes: The I2C protocol supports two main modes: Standard Mode (up to 100 kbit/s) and Fast Mode (up to 400 kbit/s). Some devices also support High-Speed Mode (up to 3.4 Mbit/s) and Ultra-Fast Mode (up to 5 Mbit/s).
Multi-Master Support: I2C supports multi-master communication, allowing multiple master devices to coexist on the same bus. Collision detection and arbitration mechanisms are employed to prevent conflicts and ensure proper communication.
The I2C protocol is commonly used for various purposes, including connecting sensors, memory devices, displays, and other peripheral devices to microcontrollers, embedded systems, and other electronic devices. It provides a simple and efficient means of serial communication with minimal wiring requirements.
It's important to note that different devices and implementations may have specific variations or additional features built on top of the basic I2C protocol. Therefore, it's always recommended to refer to the device datasheet or the specific implementation documentation for detailed information on the usage and configuration of I2C in a particular system.
Reference in New Issue View Git Blame Copy Permalink