Ford Truck Enthusiasts Forums

Notices
2017 - 2022 Super Duty The 2017-2022 Ford F250, F350, F450, F550 & F600 Super Duty Pickup and Chassis Cab
Sponsored by:
Sponsored by: CARiD

Custom Screen Animation

Thread Tools
 
Search this Thread
 
Old Jan 8, 2019 | 08:41 PM
Share
  #16  
h20camper's Avatar
h20camper
Logistics Pro
5 Year Member
Liked
Loved
Community Favorite
Joined: Apr 2017
Posts: 3,924
Likes: 321
From: Lost in the Ozone....
Originally Posted by Tricon
I could see them using the MD5's just for file integrity, and the HMAC to stop idiots like us from borking the whole thing.
This seems most likely to me too.
 
Reply
0
Old Jan 8, 2019 | 10:43 PM
Share
  #17  
Section179's Avatar
Section179
Fleet Mechanic
Joined: Apr 2018
Posts: 1,502
Likes: 166
I think you need to switch to NoSQL in the cloud and explore a blockchain alternative for decentralizing transactions.

 
Reply
0
Old Jan 9, 2019 | 01:20 AM
Share
  #18  
2009kr's Avatar
2009kr
Cargo Master
10 Year Member
Photogenic
Photoriffic
Shutterbug
Joined: Aug 2015
Posts: 2,400
Likes: 15
Originally Posted by Tricon
It looks like they actually have MD5 sums for the individual files that are loaded in their .der certificate files. But....this just seems to easy to circumvent? 2009kr, how did you come to the conclusion on the HMAC system, did you alter something and try to install it?

Here's a snippet from one of the image certificates:

Type = Utility
Post-Script = GB5T-14G386-AB.sh
File1 = GB5T-14G386-AB.sh
File1 Hash Value = 01bced7dc9f78d69a35ce5c3f0712b8516330e827c1a97b658 3ab1d2fbb01dbf
File1 Size = 2231
File2 = utloggingutility
File2 Hash Value = d2a94381cdda68004ee55bd0c437f3f0148cd489733f8c4469 ad63b52df675e1
File2 Size = 85628
File3 = Decoded_ODL.xml
File3 Hash Value = 9d23e743e31f7075f06d88f198297122e82a2f851fac53adab f761a5c6dd731c
File3 Size = 9478
Save Location = /tmp/
For my 2009, there was a field in the image called HMAC. Did any of the files you loked at contain a signature or HMAC? If there is a signature, it be at least 1024 bits long, likely 2048.

it's fairly straightforward to verify that some authentication is used in addition to the hash's integritity function. First see if you can generate the the same hash for one of the files. The hash values you show are 256 bits long, so I'd try SHA256 first. (MD5 is half that length.) Once you can do that, you have verified that you have the right algorithm, the file is just hashed in its entirety, and there isn't a salt (or the hashes aren't HMACs).

With this information, change one of the internal files (the .XML one is a nice candidate), recalculate the hash, put the changed file and new hash back in and see if the truck will accept it. I'm not optimistic though.
 
Reply
0
Old Jan 9, 2019 | 06:28 AM
Share
  #19  
kry226's Avatar
kry226
Fleet Mechanic
Veteran: Army
5 Year Member
Community Favorite
Top Answer: 1
Joined: Dec 2016
Posts: 1,818
Likes: 544
From: Florida
I'm sorry. I've apparently stumbled into the wrong thread.
 
Reply
0
Old Jan 9, 2019 | 06:34 AM
Share
  #20  
2009kr's Avatar
2009kr
Cargo Master
10 Year Member
Photogenic
Photoriffic
Shutterbug
Joined: Aug 2015
Posts: 2,400
Likes: 15
Originally Posted by kry226
I'm sorry. I've apparently stumbled into the wrong thread.
Changing embedded software isn't as easy as it used to be. As our vehicles get more and more complex, mod discussions will look more and more like this.
 
Reply
0
Old Jan 9, 2019 | 09:44 AM
Share
  #21  
wicked 2018's Avatar
wicked 2018
Posting Guru
Joined: Mar 2018
Posts: 1,055
Likes: 9
a little off subject, but how do you access the Sync diagnosis screen on the SD's? I know you can plug in Forscan to change the startup images, but seems easier to do it through the diagnosis screen
 
Reply
0
Old Jan 9, 2019 | 10:44 AM
Share
  #22  
h20camper's Avatar
h20camper
Logistics Pro
5 Year Member
Liked
Loved
Community Favorite
Joined: Apr 2017
Posts: 3,924
Likes: 321
From: Lost in the Ozone....
Originally Posted by wicked 2018
a little off subject, but how do you access the Sync diagnosis screen on the SD's? I know you can plug in Forscan to change the startup images, but seems easier to do it through the diagnosis screen
  • On newer trucks without a CD player, you press and hold the steering wheel right menu button, then press and hold the dash's right menu button.
  • On trucks with CD player, you press and hold eject and scan at the same time for up to 20 seconds. (I've never actually tested this as my truck is 2019 without CD player.)
Remember, through the diagnostics menu, the image changes are not permanent.


 
Reply
0
Old Jan 9, 2019 | 11:52 AM
Share
  #23  
Alaskan_Warbird's Avatar
Alaskan_Warbird
Posting Guru
Joined: Mar 2018
Posts: 1,962
Likes: 11
From: Fairbanks, AK
Originally Posted by 2009kr
Changing embedded software isn't as easy as it used to be. As our vehicles get more and more complex, mod discussions will look more and more like this.
That's a fact. Personally, I'm glad they've made it more secure, even if it is more difficult for us to ethically hack our own vehicles.
 
Reply
0
FTE Stories

Ford Trucks for Ford Truck Enthusiasts

story-0

This Hennessey Takes the Expedition Tremor's Off-Roading Capability to the Next Level

 Verdad Gallardo
story-1

Top 10 Fords at 2026 Carlisle Ford Nationals

 Joe Kucinski
story-2

3 Best / 3 Worst Parts of Modern Ford Ownership

 Brett Foote
story-3

10 Amazing Upgrades That Solve Common Ford Truck Owner Headaches

 Pouria Savadkouei
story-4

Every 2026 Ford Engine Explained

 Brett Foote
story-5

10 Ugly Ford Trucks That We Still Kinda Love

 Joe Kucinski
story-6

10 Things Every Truck Owner NEEDS (2026 Edition)

 Michael S. Palmer
story-7

Rezvani's Latest Post-Apocalyptic Monster Is a Ford F-150 Raptor Underneath

 Verdad Gallardo
story-8

Top 10 Most Expensive Ford Trucks Ever Sold on Bring a Trailer

 Joe Kucinski
story-9

2027 Ford Super Duty Buyer's Guide (Every Model, Engine, & Package)

 Brett Foote
Old Jan 9, 2019 | 03:30 PM
Share
  #24  
kry226's Avatar
kry226
Fleet Mechanic
Veteran: Army
5 Year Member
Community Favorite
Top Answer: 1
Joined: Dec 2016
Posts: 1,818
Likes: 544
From: Florida
Originally Posted by 2009kr
Changing embedded software isn't as easy as it used to be. As our vehicles get more and more complex, mod discussions will look more and more like this.
No, you're absolutely correct. I was just joshing, but I actually was able to follow most of the discussion.
 
Reply
0
Old Apr 8, 2019 | 02:06 PM
Share
  #25  
alabamatoy's Avatar
alabamatoy
Mountain Pass
Joined: Jul 2002
Posts: 196
Likes: 2
From: Madison USA
Originally Posted by 2009kr
Changing embedded software isn't as easy as it used to be. As our vehicles get more and more complex, mod discussions will look more and more like this.
And we need to stand up to the OEMs and corporations for the Right to Repair. I believe that I own my truck, not Ford, and if I want to replace the code in it, I should be able to do so. Ford should have to allow its code to be reviewed for security purposes etc and we should be able to purchase all the same tools and parts and info that the dealers can purchase.

See https://repair.org/ Support if you agree.
 
Reply
0
Old Apr 8, 2019 | 04:22 PM
Share
  #26  
Tricon's Avatar
Tricon
Logistics Pro
5 Year Member
Photogenic
Photoriffic
Shutterbug
Joined: Apr 2017
Posts: 3,674
Likes: 51
From: SoCal
Originally Posted by alabamatoy
And we need to stand up to the OEMs and corporations for the Right to Repair. I believe that I own my truck, not Ford, and if I want to replace the code in it, I should be able to do so. Ford should have to allow its code to be reviewed for security purposes etc and we should be able to purchase all the same tools and parts and info that the dealers can purchase.

See https://repair.org/ Support if you agree.
I agree with the right to repair, but not that you should be able to change the code of your truck. You don't own the patents, and they certainly shouldn't warranty your truck for anything you change on it. I can only imagine the lawsuits they would have to fight if you changed the drive by wire code and it borked at went full throttle at a school crossing or something. I totally understand that need in vehicles...in Android or iOS phones not so much.
 
Reply
0
Old Apr 8, 2019 | 07:16 PM
Share
  #27  
alabamatoy's Avatar
alabamatoy
Mountain Pass
Joined: Jul 2002
Posts: 196
Likes: 2
From: Madison USA
Well, I believe I should be able to change my own product, but in so changing it that should relieve Ford of responsibility....unless their design is found to be at fault. I can put different wheels and tires or change the engine program (Banks etc), why shouldn't I be able to change other aspects of the code? I hate all these nagging safety things that are designed to protect stupid people from themselves.
 
Reply
0
Old Apr 8, 2019 | 09:00 PM
Share
  #28  
h20camper's Avatar
h20camper
Logistics Pro
5 Year Member
Liked
Loved
Community Favorite
Joined: Apr 2017
Posts: 3,924
Likes: 321
From: Lost in the Ozone....
Originally Posted by alabamatoy
to protect stupid people from themselves.
Stupid people need to be protected from themselves.
 
Reply
0
Old Apr 9, 2019 | 02:02 AM
Share
  #29  
Favored's Avatar
Favored
Junior User
Joined: Mar 2019
Posts: 71
Likes: 0
Originally Posted by h20camper
Stupid people need to be protected from themselves.
People need to be protected from stupid people.
 
Reply
0
Old Apr 9, 2019 | 06:46 AM
Share
  #30  
h20camper's Avatar
h20camper
Logistics Pro
5 Year Member
Liked
Loved
Community Favorite
Joined: Apr 2017
Posts: 3,924
Likes: 321
From: Lost in the Ozone....
True that!
 
Reply
0



Advanced Search
Reply Closed Thread Share
Forum Jump

All times are GMT -5. The time now is 04:48 PM.

story-0
This Hennessey Takes the Expedition Tremor's Off-Roading Capability to the Next Level

Slideshow: The VelociRaptor Expedition gains a lift, upgraded suspension, Brembo brakes, and trail-ready equipment while retaining the stock 440-horsepower EcoBoost V6.

By Verdad Gallardo | 2026-06-12 11:01:55


VIEW MORE
story-1
Top 10 Fords at 2026 Carlisle Ford Nationals

Slideshow: Top 10 Fords at 2026 Ford Nationals

By Joe Kucinski | 2026-06-09 11:10:08


VIEW MORE
story-2
3 Best / 3 Worst Parts of Modern Ford Ownership

Based on years of owning multiple modern Ford products.

By Brett Foote | 2026-06-09 10:53:36


VIEW MORE
story-3
10 Amazing Upgrades That Solve Common Ford Truck Owner Headaches

SPONSORED: From muddy boots to rain-soaked cargo, these upgrades address some of the most common frustrations Ford truck owners face every day.

By Pouria Savadkouei | 2026-06-08 18:50:34


VIEW MORE
story-4
Every 2026 Ford Engine Explained

Here's everything you need to know about every Ford engine available for the 2026 model year.

By Brett Foote | 2026-06-05 12:58:01


VIEW MORE
story-5
10 Ugly Ford Trucks That We Still Kinda Love

Slideshow: 10 ugly Ford trucks that we still kinda love.

By Joe Kucinski | 2026-06-03 09:51:16


VIEW MORE
story-6
10 Things Every Truck Owner NEEDS (2026 Edition)

Slideshow: the best gifts for dads & grads

By Michael S. Palmer | 2026-06-03 15:43:58


VIEW MORE
story-7
Rezvani's Latest Post-Apocalyptic Monster Is a Ford F-150 Raptor Underneath

Slideshow: Called the Fortress, the 850-horsepower pickup combines Raptor underpinnings with military-inspired features, survival equipment, and a starting price of $285,000.

By Verdad Gallardo | 2026-06-03 11:38:36


VIEW MORE
story-8
Top 10 Most Expensive Ford Trucks Ever Sold on Bring a Trailer

Slideshow: 10 most expensive Ford trucks ever sold on Bring a Trailer.

By Joe Kucinski | 2026-05-27 16:24:34


VIEW MORE
story-9
2027 Ford Super Duty Buyer's Guide (Every Model, Engine, & Package)

Here's everything that has changed for the latest model year.

By Brett Foote | 2026-05-27 16:17:28


VIEW MORE