Skip to content

Instantly share code, notes, and snippets.

View ArcaneNibble's full-sized avatar

R ArcaneNibble

57 followers · 0 following
View GitHub Profile
@ArcaneNibble
ArcaneNibble / notes.md
Created April 5, 2024 21:59
QingKe RISC-V XW opcode encoding

WCH QingKe RISC-V XW extension opcode encoding

This has been reverse engineered from the toolchain only and has not been tested on hardware.

The c.lbu, c.lhu, c.sb, and c.sh opcodes replace some standard opcodes (that the QingKe cores do not implement, as the replaced opcodes require the D extension), and they also appear to be compatible with "Huawei" extensions mentioned here.

The c.lbusp, c.lhusp, c.sbsp, and c.shsp opcodes exist in a "reserved" opcode block.

001 uimm[0] uimm[4:3] rs1` uimm[2:1] rd`  00			c.lbu		(replacing c.fld)
@ArcaneNibble
ArcaneNibble / test.c
Created March 27, 2024 04:22
CH579 deblobbing WIP
#include <stdint.h>
#include <string.h>
#include "CH579SFR.h"
void write_str(const char *s) {
for (uint32_t i = 0; i < strlen(s); i++) {
while (!(R8_UART1_LSR & RB_LSR_TX_FIFO_EMP)) {}
R8_UART1_THR = s[i];
}
@ArcaneNibble
ArcaneNibble / dr_trainer.md
Last active August 30, 2022 09:00

GATT

service 0xFFF0 characteristic 0xFFF2 --> commands service 0xFFF0 characteristic 0xFFF1 --> responses

packet format (both commands and responses)

0xB4 0x4B len type <payload> csum len -> number of bytes in payload csum -> add all of the previous bytes in the packet and truncate to 1 byte

fragmented bulk data (within payloads)

@ArcaneNibble
ArcaneNibble / cdcl.py
Created August 4, 2022 22:22
Teaching myself about SAT solvers -- CDCL
import sys
def parse_cnf(infn):
with open(infn, 'r') as f:
inp = f.readlines()
while inp:
l = inp[0]
inp = inp[1:]
@ArcaneNibble
ArcaneNibble / dpll.py
Last active August 4, 2022 22:19
Teaching myself about SAT solvers -- DPLL
import sys
def parse_cnf(infn):
with open(infn, 'r') as f:
inp = f.readlines()
# print(inp)
while inp:
l = inp[0]
@ArcaneNibble
ArcaneNibble / t5-boot.py
Created July 18, 2022 03:42
import struct
import time
import usb
dev = usb.core.find(idVendor=0x32f8, idProduct=0x424c)
# print(dev)
dev.set_configuration()
serno = usb.util.get_string(dev, dev.iSerialNumber)
@ArcaneNibble
ArcaneNibble / gist:153d958648987053aed474731b9f8156
Last active March 28, 2022 02:18
M1 Max ATCPHY efuses
OUTDATED PLEASE GO TO https://github.com/rqou/linux/tree/atc-m1max
if instance == 0
AUSPLL_CORE_AUSPLL_CFG_DCO_EFUSE_SPARE.RODCO_ENCAP_EFUSE = efuse 0xa10 >> 25
AUSPLL_CORE_AUSPLL_CFG_DCO_EFUSE_SPARE.RODCO_BIASADJ_EFUSE = efuse 0xa10 >> 22
@ArcaneNibble
ArcaneNibble / _jpeg_doc.md
Last active March 28, 2022 02:18
Attempt #7 - M1 (Max?) JPEG encoder/decoder block
@ArcaneNibble
ArcaneNibble / README.md
Created February 8, 2022 11:52
Set up reMarkable for easy hacking

Set up reMarkable for easy UI hacking

The reMarkable UI is primarily built using QML, but all of the files are embedded inside the binary as compiled Qt resources. For ease of hacking, it is possible to extract the files onto the filesystem and patch the binary to load the extracted files.

--> ONLY FOR FIRMWARE VERSION 2.11.0.442 on rM2 <--

Resource extraction

@ArcaneNibble
ArcaneNibble / convert_font_sheet.py
Created November 26, 2020 00:37
TWEWY font datamining and extraction
#!/usr/bin/env python3
import sys
from PIL import Image
infn = sys.argv[1]
outfn = sys.argv[2]
with open(infn, 'rb') as f:
indata = f.read()