IoT

Posted on by Jean-Luc Aufranc (CNXSoft) - 7 Comments on BrakTooth vulnerabilities impact closed-source Bluetooth stacks used in chips from Espressif, Intel, Qualcomm…

BrakTooth vulnerabilities impact closed-source Bluetooth stacks used in chips from Espressif, Intel, Qualcomm…

BrakTooth

BrakTooth is a family of new security vulnerabilities in commercial, closed-source Bluetooth Classic stacks that range from denial of service (DoS) via firmware crashes and deadlocks to arbitrary code execution (ACE) in certain IoT devices. A team from Singapore has discovered 16 new security vulnerabilities after evaluating 13 Bluetooth devices from 11 vendors, but after browsing through the list of certified Bluetooth devices with impacted processors, they estimate it could impact 1400 devices. We can see the list of BrakTooth-impacted SoCs include some familiar names like Intel AX200 (found in many laptops and computers through M.2 cards), Espressif Systems ESP32, Texas Instruments CC2564C, Qualcomm CSR8811/CSR8510, Bluetrum AB32VG1 board (based on AB5301A SoC) which I’ve just reviewed, and more… The good news is that most vendors have either already submitted a patch or working on it. Espressif, Infineon (previously Cypress), and Bluetrum already have released patchsets for their firmware. It’s really […]

Posted on by Jean-Luc Aufranc (CNXSoft) - No Comments on LILYGO T-32C3 – A small ESP32-C3 WiFi & BLE IoT module with 4MB flash

LILYGO T-32C3 – A small ESP32-C3 WiFi & BLE IoT module with 4MB flash

LILYGO-TTGO-T-32C3

We’re slowly starting to see more hardware-based on ESP32-C3 RISC-V processor, and LILYGO T-32C3 is a compact module based on the WiFi & Bluetooth LE processor that includes 4MB flash and a PCB antenna. I’d expect T-32C3 to be eventually found in the company’s smartwatches and development boards, and it joins other ESP32-C3 modules from AI Thinker. LILYGO T-32C3 module specifications: SoC – Espressif ESP32-C3 RISC-V processor @ 160 MHz with 400 KB SRAM, 384 KB ROM, 8KB RTC SRAM, 2.4 GHz WiFi 4, Bluetooth 5.0 LE & Mesh Storage – 4MB flash On-board PCB antenna I/Os – 22x castellated holes with GPIO, 3x ADC, SPI, UART, I2C, Boot, Reset, 5V, 3.3V, GND Dimensions – 23 x 11 x 3.5 mm (4-layer PCB) Note the USB interface is not listed in the specs, but USB DN and DP signals are located on GPIO18 and GPIO19 so USB should also be […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 5 Comments on OpenRemote fully open-source IoT platform targets OEMs and DIY projects

OpenRemote fully open-source IoT platform targets OEMs and DIY projects

OpenRemote Architecture

OpenRemote claims to be a 100% open-source IoT platform suitable for DIYs as well as OEMs. The asset management platform can help with the tracking of vehicle fleets, energy systems, or crowds, help to build smart cities, smart buildings, smart airports, and more. While most cloud IoT platforms rely on open-source tools, the software hosted on the providers’ servers is usually closed-source as we’ve seen in our comparison between Microsoft Azure IoT, Balena, and Particle, but OpenRemote is different will the full stack being released under an AGPLv3 open source license. OpenRemote 3.0 software is comprised of four main blocks: The Frontend is comprised of Consoles (native iOS and Android apps), Web components and Templates, as well as a System Administration interface used to create dashboards and control panels. Manager – headless Java application to capture the current asset states and includes Asset Management, State & Historical Data, Event Processing […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 11 Comments on M5Stamp Pico ESP32-PICO-D4 module ships with a heat-resistant plastic shell

M5Stamp Pico ESP32-PICO-D4 module ships with a heat-resistant plastic shell

M5Stamp Pico

Most WiFi IoT modules are designed to be integrated into products with an enclosure, but the M5Stamp Pico module based on ESP32-PICO-D4 SiP comes with a removable heat-resistant plastic shell that protects the 3D antenna and components, while leaving space to solder headers and/or a Grove connector. The tiny module also comes with a button and RGB LED, and like other ESP32-based M5Stack hardware, M5Stamp Pico is programmable with UIFlow graphical programming platform and compatible with Arduino, MicroPython, and the ESP-IDF. M5Stamp Pico specifications: System-in-Package – Espressif Systems ESP32-PICO-D4 SiP with dual-core processor @ 240MHz, 520KB SRAM, 4MB flash, and 2.4 GHz Wi-Fi 4 up to 150 Mbps and Bluetooth 4.2 BR/LE connectivity Antenna – 2.4 GHz 3D antenna I/Os – 2.54mm pitch header with ADC, DAC, touch sensor, SD/SDIO/MMC host controller, SPI, SDIO/SPI slave controller, EMAC, PWM, UART, I2C, I2S, IR remote controller, up to 12x GPIO, pulse counter […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 6 Comments on ClusBerry Rack houses up to four hot-swappable Raspberry Pi CM4 modules

ClusBerry Rack houses up to four hot-swappable Raspberry Pi CM4 modules

Clusberry Rack

TECHBASE ClusBerry Rack supports up to four Raspberry Pi CM4 based modules which can be added and removed on the fly thanks to a lockable mechanism that reminds me of hot-swappable drives found in NAS. Using the same ClusBerry I/O mainboards as found in the earlier ClusBerry 9500-CM4 and ClusBerry-2M industrial systems, each Raspberry Pi Compute Module 4 inside the ClusBerry Rack offer one Gigabit Ethernet port, one USB host, one micro USB service port, and an RS-232/485 serial port. TECHBASE is not the best company when it comes to describing its products, possibly because those are customizable, and in this case, they don’t show the other side of the enclosure with all ports… But based on the PDF we’ve received, you should be able to create a system with four modules offering the following features each: Optional video output – HDMI Networking – 1x Gigabit Ethernet port (option for […]

Posted on by Jean-Luc Aufranc (CNXSoft) - No Comments on Leverage ESP32-S3 AI capabilities with the ESP-DL library

Leverage ESP32-S3 AI capabilities with the ESP-DL library

ESP32-S3 AI ESP-DL library

ESP32-S3 is the first Espressif wireless processor with AI instructions, and ESP-DL library for ESP-IDF allows you to easily leverage those AI instructions using boards such as the ESP32-S3-DevKitC-1. The ESP-DL library provides APIs for Neural Network (NN) Inference, Image Processing, Math Operations, and Deep Learning Models that make full use of ESP32-S3’s AI instructions with a 16-bit face recognition model running 6.25 faster, while the 8-bit model is 2.5 times faster than without acceleration. The ESP-DL library can be used as a project component. For instance, it can be used as a submodule of ESP-WHO computer vision framework, by simply copying it to the esp-who/components/ directory. The Model Zoo contains several pre-trained models for (human) face detection & recognition, and cat face detection, with more being developed including color detection and hand-pose detection. Espressif Systems also provides tools to use your own models, and a convention tool allowing you […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 2 Comments on Qualcomm QRB5165 system-on-module is made for robotics applications

Qualcomm QRB5165 system-on-module is made for robotics applications

Open-Q 5165RB SOM

Lantronix Open-Q 5165RB is a tiny System-on-Module (SoM) based on the same Qualcomm QRB5165 octa-core IoT processor we’ve just seen in Qualcomm Flight RB5 5G Platform high-end drone reference design. The ultra-compact (50x29mm) module comes with 8GB LPDDR5, 128GB UFS flash, multiple MIPI camera and display ports, WiFi 6 and Bluetooth 5.1, and various I/Os. Lantronix Open-Q 5165RB module specifications: SoC – Qualcomm QRB5165 SoC built on 7nm technology with Octa-core CPU with 1x Kryo Gold prime @ 2.84 GHz, 3x Kryo Gold @ 2.42 GHz, 4x Kryo Silver @ 1.81 GHz Hexagon 698 DSP with quad Hexagon Vector eXtensions Adreno™ 650 GPU @ up to  587 MHz Spectra 480 Image Signal Processor Adreno 665 Video Processing unit  – Decode up to 4K240/8K60, Encode up to 4K120/8K30, Concurrent 4K60 decode & 4K30 encode for wireless display NPU230 Neural Processing unit SPU240 Secure Processing unit Up to 15 TOPS of combined […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 7 Comments on Realtek AP-Router SDK vulnerabilities could impact millions of routers and IoT devices

Realtek AP-Router SDK vulnerabilities could impact millions of routers and IoT devices

Realtek SDK vulnerabilities

The IoT Inspector Research Lab has discovered four high and critical vulnerabilities in the Realtek AP-Router “Jungle” SDK used for RTL819x SoCs that could impact millions of WiFi routers and dongles. An attacker can use a network attack, e.g. without physical access to the device, to generate a buffer or stack overflow helping him access the system and execute his own code. Realtek has released an advisory (PDF) with patchsets for all four vulnerabilities so you should upgrade the firmware if you can. Summary of the four vulnerabilities: CVE-2021-35392 – Realtek Jungle SDK version v2.x up to v3.4.14B provides a ‘WiFi Simple Config’ server called wscd or mini_upnpd that implements both UPnP and SSDP protocols. The server is vulnerable to a heap buffer overflow that is present due to unsafe crafting of SSDP NOTIFY messages from received M-SEARCH messages ST header. CVE-2021-35393 – Also impacts ‘WiFi Simple Config’ server (wscd […]

UP 7000 x86 SBC