[HN Gopher] Hacking an Audi: performing a man-in-the-middle atta...
___________________________________________________________________
Hacking an Audi: performing a man-in-the-middle attack on FlexRay
Author : pd0wm
Score : 39 points
Date : 2020-03-09 16:40 UTC (6 hours ago)
(HTM) web link (medium.com)
(TXT) w3m dump (medium.com)
| stuff4ben wrote:
| I wish I could hack my Lexus RX350's LKAS. It's pretty bad and
| seems to bounce left and right between the lanes. It gets to the
| point that I just shut it off since I don't want to fight it when
| driving long distances as it's very tiring. It's probably a
| timing issue as the computer isn't getting updates fast enough
| and has to keep correcting which causes the bouncing between the
| lane. A Tesla this is not!
| alphabettsy wrote:
| Does your vehicle actually have lane centering or just lane
| keep? Lane keep, which is more common, does not attempt to keep
| the vehicle in the middle of the lane. It just prevents
| departing the lane without signaling.
| Smoosh wrote:
| Part of the problem with these new technologies is that every
| car company gives each capability a unique name. It takes
| considerable effort to untangle the meaning of all the
| manufacturer-specific names to determine whether Audi Active
| Lane Assist is the same as Lexus Lane Keeping Assist but not
| Mercedes Distronic Plus unless it's Mercedes Distronic Plus
| with Steering Assist.
| crazysim wrote:
| LSSP? I've noticed that some TSSP openpilot users use an
| alternate steering angle sensor for their openpilot
| installations called ZSS because the stock sensor isn't too
| accurate.
|
| If this is stock though, there's more than just timing I think.
| mayank wrote:
| > It's pretty bad and seems to bounce left and right between
| the lanes.
|
| 2019 Audi SQ5, exact same problem, had to disable it too. I
| really wonder if these non-Tesla manufacturers are getting pre-
| fab'd chipsets from the same place. It's really an impediment
| rather than driver assist.
|
| I've noticed that it steers by itself pretty well on long
| curves, but anything other than and I'm weaving in the lane and
| begging for a roadside sobriety check.
| Glawen wrote:
| They do not know about Vector Canoe ? I did this "hacking" every
| other day when testing software on a prototype vehicle
| gburdell3 wrote:
| There's a pretty big difference between testing software with a
| protocol that you know and understand, and reverse-engineering
| the communications on a production vehicle.
| RealityVoid wrote:
| Maybe drifting a bit, but I hate the business model Vector has.
| They have reasonably good software, but their Canoe SW has that
| horrible scripting language that is... well, horrible, but that
| everybody uses and because it's historically been used and the
| vendors have all the test panels and whatnot in it, the
| developers are locked in to pay for exceptionally expensive SW
| for a sub-par product.
|
| Better than most other sw in automotive but it pales with open-
| source SW that does more complex things in other fields.
| pd0wm wrote:
| Seems like the https://www.vector.com/int/en/products/products-
| a-z/hardware... has some similar functionality. I have never
| used it, but by reading the documentation I'm not sure if it
| would have been useful here. The frame with ID 65 which needs
| be overwritten, actually contains 4 different messages
| indicated by the last byte in the payload. To properly time the
| modification you need to sync up on that, which the Vector box
| can't do.
|
| Also price on request, so probably not in the price range of
| our target audience.
| chews wrote:
| This is a fantastic writeup and it's truly brilliant what the
| very clever folks at comma.ai are up to.
|
| Very slick stuff indeed.
___________________________________________________________________
(page generated 2020-03-09 23:00 UTC)