Skip to content

DuPAL-PAL-DUmper/dupico_firmware

BranchesTags

Repository files navigation

DuPAL V3 "dupico" firmware

Introduction

The DuPAL (Dumper of PALs) is a set of software and hardware instruments that I developed to help me bruteforcing and analyzing PLCs (and ROMs, and other things), with the objective of eventually being able to dump and save the ones in the circuit boards I have around.

Note: The current version of this firmware is compatible with DuPAL V3 "dupico" boards only.

Sponsorship

PCBWay_logo

This project is kindly sponsored by PCBWay. PCBWay specializes in manufacturing high-quality PCBs and makes them affordable to hobbyist and professionals alike.

The range of services they offer include PCB prototyping, assembly, instant quotes for your order, a verification process by a team of experts and an easy to use, hassle-free order process.

I'm grateful to PCBWay for the support in creating this project.

Building

Building requires an ARM toolchain, CMake and both FreeRTOS and the Pico SDK checked out, with their locations set respectively in the environment variables FREERTOS_KERNEL_PATH and PICO_SDK_PATH.

TODO: Add better build instructions.

Connecting to the DuPAL V3

Connecting the USB connection of the Pico to the PCB will present a virtual serial port to which you can connect. Upon connection, you should get strings similar to the following, in your terminal:

REMOTE_CONTROL_ENABLED

Control protocol

TODO: describe the binary protocol

Hardware notes

Recognizing three-state outputs

To recognize wether a pin is an input, an output, or an output in hi-z mode, the DuPAL uses the following method:

Every possible output is connected to the MCU (actually to the shift registers, but this is beside the point) by using two pins:

  • One connection will be direct, and will be to an input of our microcontroller
  • The second connection will be through a resistor of relatively high value (e.g. 10k) to an output pin of our microcontroller
    IC                              MCU
             |       Resistor  |
Unknown PIN  |-----o--/\/\/\---| Output PIN
             |     |           |
             |     `-----------| Input PIN

The board will then do the following:

  1. Set the MCU output as high
  2. Read the MCU input
    • If it is low, then the IC pin is an output (because it's in a different state than what we're pulling it to be)
    • If it is high, go on with the test
  3. Set the MCU output as low
  4. Read the MCU input
    • If it is high, then the IC pin is an output
    • Otherwise, the IC pin is either an input or an output in hi-Z (see below)

Note that, in case the power is not applied to the socket (See the Power command above), the output pins of the registers connected to the socket will not be enabled, and all the pins will be pulled low with weak (470K) pulldowns.

About

Firmware for the DuPAL V3 "dupico" board

Topics

hardware reverse-engineering freertos pal eprom pico dumping rp2040 dupal dupico

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases 9

v0.2.2 Latest
Aug 24, 2024
+ 8 releases

Packages

No packages published

Languages