Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Simos 12.1 CAL Data flash #157

Open
TheFlashBold opened this issue Feb 13, 2025 · 2 comments
Open

Simos 12.1 CAL Data flash #157

TheFlashBold opened this issue Feb 13, 2025 · 2 comments

Comments

@TheFlashBold
Copy link

Simos 12.1 CAL Data stuck in CBOOT after flash.
I updated to FL_8V0906264E__0003 via frf, which was fine.
When modifying CAL Data and flashing it, my ecu is stuck in CBOOT.
Reflashing the original CAL Data fixes it.
Since VW_flash updates the checksum, this should work and i dont need to unlock the ecu right or do I misunderstand something?
@bri3d
Copy link
Owner

bri3d commented Feb 17, 2025

No, there are two parts, checksum and signature checking. Simos12.1 has signature checking so it would need to be unlocked to disable the signature checking. I don't have an unlocking patch made for Simos12.1. I believe you could do it the same way I did for Simos18 but there are also simpler exploits available for Simos12 (I believe you can sneak a CBOOT which has been marked as valid into the CAL area and it won't be sig checked again, for example)

@TheFlashBold
Copy link
Author

Thank you.
Any resources where I could start and how to modify the CBOOT?
When opening the bin in ghidra with tc1979 definitions, it doesn't seem right.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@bri3d @TheFlashBold