Joined: 16 Apr 2016 Posts: 307 Location: California
Posted: Tue Oct 04, 2016 7:03 Post subject: Now that I think about it
I could just build a initramfs that issues the MTD command on boot by adding it to the OpenWRT Startup Script. Would be fast and would reboot the router into tftp mode.
that would work but I am not sure if auto nuking the firmware/nvram is the way to go reboot directly into tftpmode would be nice if it could be done without auto-nuking or at least change it to expect any .chk you throw at it
a botched mtd erase could end in permabrick if its interrupted or something unexpected happened
there has gotta be a way to get it to tftp any chk you throw it at once openwrt is loaded probly would involve including tftp client for recovery to override the cfe routine once openwrt was up that way you can use tftp32d and just have any old image renamed to say recovery.chk
I tried twice to reflash tomato from openwrt and it bombed each time eventually it crashed it self into a state where I was able to tftp the stock neargear firmware with good ol tftp2.exe (tfptd32 would't let me push a image no matter what I did)
Posted: Wed Oct 05, 2016 0:48 Post subject: Re: I actually put that in the notes...
sploit wrote:
I actually put that in the notes...
You cant use TFTP2 because the transfer times out with it.
As far as not being a good idea.... On the r6300v2 its a great idea because it forces it into tftp mode and awaits any valid firmware.
However I am unsure if the 6250 is different so I would have to get one and see.
Also for KONG
What router are you needing the most to be donated right now?
I was thinking you could include the tftp-client package in the openwrt build and have it run on startup
once its up then you could tftp any image in and use a script on the openwrtside to self flash
and in my case I was able to tftp2.exe the stock netgear firmware(I used tftpd32 to get the vmlinuz running ) Once I issued a `mtd erase firmware` thats how I ended up recovering it
after loading vmlinuz no matter what I did so I issued a mtd erase firmware and then booted it holding the reset button which put it in tftp mode
the ping went from the stander ed 5 second wait to TTL=100 constantly until you flashed something then it would reset and load the new firmware and the light turned from steady orange to flashing green indicating waiting for image once you wrote a image with tftp2.exe it would go timeout and then destination host unreachable as it rebooted and then resume loading the new image
after that I could flash anything I wanted with tftp2.exe from windows 10 (which should't work because of 10's new netstack but it did =/ )
I tried AT first then the stock netgear firmware both images where successfully sent by tftp2.exe but only the stock netgear one took which may or may not have been because of the image size and the stablity of the openwrt session
Posted: Wed Oct 05, 2016 19:54 Post subject: Re: I actually put that in the notes...
sploit wrote:
I actually put that in the notes...
You cant use TFTP2 because the transfer times out with it.
As far as not being a good idea.... On the r6300v2 its a great idea because it forces it into tftp mode and awaits any valid firmware.
However I am unsure if the 6250 is different so I would have to get one and see.
Also for KONG
What router are you needing the most to be donated right now?
I would like to examine the D7800, I looked through the GPL release and there is a slight chance that the DSL module is supportable since it comes with a lantiq cpe. I'm soon going to switch to VDSL I need to find me a VDSL modem or have a router with a comptible modem and this lantiq cpe has support for vectoring thus should work with german telekom.
Besides that I'm looking forward to the new Netgear R9000:
Judging by the label it seems like this unit comes with a 10GBit port:-)
Sounds like it could fix one of my problems, large file transfers from mobile units to a 10G backend via 60GHz wireless. Rumors tell me that you can transfer at ~2.5GBit if you have two of them. _________________ KONG PB's: http://www.desipro.de/ddwrt/
KONG Info: http://tips.desipro.de/
Joined: 16 Apr 2016 Posts: 307 Location: California
Posted: Fri Oct 07, 2016 20:40 Post subject: I cant speak for the r6400 but ..
I cant speak for the r6400 but ..
Considering they are similar in most ways there is definitely something wrong with the builds after 09/01/2016 and the image sizes jumped by almost 3 Megs. They are bricking the r6300v2's.
Kong's builds are stable and I have flawless runtime so stick with the Kong Builds until this gets resolved with Brainslayer.
I have noticed OpenVPN issues after 09/01/2016 on Brainslayer builds on other Netgear Models also.
the major problem with this router is that the cfe checks the header on the .chk firmware against a string in the "board_data" mtd partition, which is returned by the 'burnboardid' command in stock netgear firmware as board_id=U12H240T00_NETGEAR
if firmware was loaded which does not respect the board_data partition, or which changes the the board_data, or if the uploaded image does not contain the correct header, then the tftp ddaemon will not flash the uploaded firmware.
if the board_id partion has the correct stricng, then you have to upload a .chk image made for the r6300v2.
if the board_id partiton contains HDR0 (which occurred on mine by not going correctly back to stock from dd-wrt or tomato) then i *think* serial recovery is still required.
in my case (many times0 the router would send continual ttl=100 replies to ping, would accept a tftp'd image, but would not flash.
I tried the vmlinuz-via-tftpd many times and there was never an attempt to load the image.
the only way i got out of this mess was to tftp a hdr0 file (without he extra header in a .chk file) an issue the following coomadn on the serial console:
flash -noheader : flash1.trx
i have modofed the cfe on my R6300v2 to have boot_wait=on and board_id=U12H240T00_NETGEAR in nvram. but i havent tested the softbrick-resilience yet. i have in my head a modified xvortex cfe to get around all this board_data nonsense, but i'm not far into that project yet.
my knowledge of these subjects is entirely by extensive reading of these boards and too much time obsessing with my own devices. this is meant to be helpful and i invite more help. thank you
