Project

General

Profile

Actions

Bug #551

open

Segmentation fault 11 when trying to write

Added by Flaviu Ciobanu 4 months ago. Updated about 1 month ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Target version:
Start date:
08/17/2024
Due date:
% Done:

0%

Estimated time:
Affected versions:
Needs backport to:
Affected hardware:
Affected OS:
MacOS

Description

I previously successfully used flashrom to read and patch a MX25L6406E BIOS chip in a late 2013 15" MacBook Pro with a Ch341a programmer, but I am now having issues trying to write to a 25Q064A BIOS chip in a mid 2014 15" MacBook Pro.

I installed flashrom with homebrew.
I connected the SOP8 clip to the chip, then the adapter, then the CH341A.
I read the chip into an image.bin file 3 times and compared MD5 sums to make sure they were the same.
I then patched the file with UEFI Patch to unlock undervolting (https://github.com/IsmaelHG/UndervoltPatchMacBook).

I then ran the write command in terminal. You can see the command and the output pasted below ending in "Segmentation fault: 11".

Should I try erasing the chip first? I'm scared I will brick it if it still can't write afterward. What else can I try?

Terminal output:
sudo flashrom -V -p ch341a_spi -c N25Q064..3E -w /Users/Flyview/Downloads/UEFIPatch_0.28.0_mac/image.bin
flashrom 1.4.0 on Darwin 23.6.0 (x86_64)
flashrom is free software, get the source code at https://flashrom.org

flashrom was built with LLVM Clang 15.0.0 (clang-1500.3.9.4), little endian
Command line (7 args): flashrom -V -p ch341a_spi -c N25Q064..3E -w /Users/Flyview/Downloads/UEFIPatch_0.28.0_mac/image.bin
Initializing ch341a_spi programmer
libusb: info [darwin_detach_kernel_driver] no capture entitlements. may not be able to detach the kernel driver for this device
Device revision is 3.0.4
The following protocols are supported: SPI.
Probing for Micron/Numonyx/ST N25Q064..3E, 8192 kB: compare_id: id1 0x20, id2 0xba17
Added layout entry 00000000 - 007fffff named complete flash
Found Micron/Numonyx/ST flash chip "N25Q064..3E" (8192 kB, SPI) on ch341a_spi.
Chip status register is 0x00.
Chip status register: Status Register Write Disable (SRWD, SRP, ...) is not set
Chip status register: Block Protect 3 (BP3) is not set
Chip status register: Top/Bottom (TB) is top
Chip status register: Block Protect 2 (BP2) is not set
Chip status register: Block Protect 1 (BP1) is not set
Chip status register: Block Protect 0 (BP0) is not set
Chip status register: Write Enable Latch (WEL) is not set
Chip status register: Write In Progress (WIP/BUSY) is not set
This chip may contain one-time programmable memory. flashrom cannot read
and may never be able to write it, hence it may not be able to completely
clone the contents of this chip (see man page for details).
This flash part has status UNTESTED for operations: WP
The test status of this chip may have been updated in the latest development
version of flashrom. If you are running the latest development version,
please email a report to flashrom@flashrom.org if any of the above operations
work correctly for you with this flash chip. Please include the flashrom log
file for all operations you tested (see the man page for details), and mention
which mainboard or programmer you tested in the subject line.
You can also try to follow the instructions here:
https://www.flashrom.org/contrib_howtos/how_to_mark_chip_tested.html
Thanks for your help!
Reading old flash chip contents... read_flash: region (00000000..0x7fffff) is readable, reading range (00000000..0x7fffff).
done.
Segmentation fault: 11

Actions #1

Updated by Anastasia Klimchuk about 1 month ago

I have a suspicion that this bug is the same as this one: https://ticket.coreboot.org/issues/555 which was fixed, and the fix will be included in v1.5

I can't tell for sure because we don't have a stack trace, but 555 was discovered on OpenBSD which has more strict memory checks (same code worked on Linux). So it is possible that mac OS also is strict and the same issue repro.

Flaviu, just in case, if you will ever be trying this again, make sure you have v1.5 or build from source which includes the fix https://review.coreboot.org/c/flashrom/+/84234

Actions

Also available in: Atom PDF