
|
INFO - FAQ - CC2-Forum - CCPro-Forum |
|
> Even if you are able to enter the monitor mode, you could not do any other thing than clearing the > FLASH (without knowing the security bytes -> protection against reading the memory) You're correct. That is a pretty big part of the problem. But I do believe that there are several ways to get these security bytes. It would help if I could get the Monitor ROM of the chip for analysis. The datasheet is not perfectly clear but it seems that without the security bytes it is still possible to read and write to RAM. From there it should be easy to get the job done (i.e. dump the flash) with the RUN command ($28). > Beside of this i don't quite understand what you are going to do. > What bytes do you want to patch? There is no OS listing availabe. So, what is the sense of > a blind patch? It is not a blind patch. If I can get the binary dump, I can disassemble it, understand it (at least part of it) and find what I need to patch (it is a very simple bugfix). > And moreover, a single byte patch is not possible. You have to clear a 64 byte page and rewrite it. Yes, according to the datasheet the flash page size is 64 bytes and a write row is 32 bytes. But apparently in Monitor Mode, command $49 allows to write one byte at a time (I guess that either the Monitor ROM or the Flash ROM take care of writing a full row). |
| Antwort schreiben |