Czy wolisz polską wersję strony elektroda?
Nie, dziękuję Przekieruj mnie taminsmod wrote:Improved BL602 erase logging
//REQ frame
// ,-------+------+-------------+-------+----------,
// | MAGIC | TYPE | DATA_LEN | DATA | CRC8 |
// | 1 | 1 | 2 | N | 1 | <- size (bytes)
// '-------+------+-------------+-------+----------'
//ACK frame
// ,-------+------+-------------+-------+----------+----------,
// | MAGIC | TYPE | DATA_LEN | DATA | status | CRC8 |
// | 1 | 1 | 2 | N | 1 | 1 | <- size (bytes)
// '-------+------+-------------+-------+----------+----------'
/** magic */
#define MAGIC 0xA5 // start of a frame
#define ACK_MAGIC 0x5A
/** massage type */
#define STATE_ERR 0xFF
#define STATE_SYN 0x00
#define STATE_RAM_DOWNLOAD 0x01
#define STATE_FLASH_DOWNLOAD 0x02
#define STATE_FLASH_UPLOAD 0x03
#define STATE_FLASH_ERASE 0x04
#define STATE_FLASH_CHIPERASE 0x05
#define STATE_RUN 0x06
#define STATE_BOUND 0x07
#define STATE_EFUSE 0x08
#define STATE_MAX 0x08
/** status */
#define STATUS_SUCCESS 0x00
#define STATUS_ERROR 0x01
#define STATUS_ADDR_ERROR 0x02
#define STATUS_TYPE_ERROR 0x03
#define STATUS_LEN_ERROR 0x04
#define STATUS_CRC_ERROR 0x05
/** RESPONSE */
#define RESPONSE_FAIL 0xFF
#define RESPONSE_OK 0x00
#define RESPONSE_SYNC_BOOTROM 0x01
#define RESPONSE_SYNC_SBL 0x02
/** ACK message define */
#define ACK_OK 0x00
#define ACK_ERR 0x01
/** message response status */
#define MSG_OK 0x00
#define MSG_ERR -1
/** sync */
#define SYNC_REQUEST_VALUE 0x73796E63 /* sync */
#define SYNC_REQUEST_SIZE 0x04
#define SYNC_REQUEST_TIMEOUT 120 // 2 min
/** all size */
#define HEAD_SIZE 4
#define CFG_SIZE 8
#define ACK_SIZE 6
#define CMD_DATA_MAX_LEN (4 + 1 + 1024*64 + 2) //max command data length 64K
#define RESPONSE_SIZE 0x01
#define LOAD_MAX_SIZE_BIG 0x10000
...
...
insmod wrote:Improved syncing, now it will attempt to sync 500 times before giving up.
insmod wrote:Supports full chip erase.
insmod wrote:but if buttons are enabled - then it's finished
p.kaczmarek2 wrote:why we don't actually have a retry in Beken sector erase/read/write code?
OBK WiFi Downloader.
positional arguments:
filename specify file_crc.bin
optional arguments:
-h, --help show this help message and exit
-d DEVICE, --device DEVICE
Target device, default 192.168.0.1:8888
-s STARTADDR, --startaddr STARTADDR
burn flash address, defaults to 0x11000
-l LENGTH, --length LENGTH
length to read, defaults to 0x1000
-b BAUDRATE, --baudrate BAUDRATE
burn uart baudrate, defaults to 921600
-u, --unprotect unprotect flash first, used by BK7231N
-r, --read read flash
-w, --write write flash
-t, --test test flash (generate pattern, write, read, verify)
-v, --verify verify flash
-w -s 0 -u OpenBK7231N_QIO_1.18.193.bin
Short test:
-u -t -s 0 -l 0x2000
Long test:
-u -t -s 0 -l 0x100000
p.kaczmarek2 wrote:@divadiow would you be able to prepare "OBK self replication" setup? Like that:
insmod wrote:And W600 doesn't support flash read
TL;DR: New BK7231GUIFlashTool v98+ adds SPI flashing for Beken chips; sample 4,096 KB flash detected. “Only a CH341 SPI programmer is required.” Use CH341A D2 to toggle CEN, send 0xD2, then read/write like generic SPI. [Elektroda, p.kaczmarek2, post #21711721]
Why it matters: It lets you recover bricked BK7231/BK7252 devices without a working bootloader, using low‑cost tools.
Who this is for: DIYers, repair techs, and firmware engineers asking how to unbrick or mass‑flash Beken SoCs via SPI with a CH341A and the latest tool.
