|
woj
|
 |
« on: August 10, 2017, 01:57:29 PM »
|
|
|
Perhaps a tough one, perhaps not, maybe there is someone here that would know...
I am in progress of putting up my private OBD mode flasher for ME7.9.10 (Fiat/Alfa). It now works in principle, but I am not able to flash anything but the 2 data blocks / sectors (128K). Neither can MPPS v16 which I CAN-sniffed to aid the work. I tried a couple of different scenarios of block sequencing and calling write boot/code/data fingerprint commands before erasing/flashing, nevertheless, each time I try to even erase anything beyond data blocks it gives me an error code (hex 31 or hex 24 depending on the situation). Even more, I have to erase and write the flashable blocks by specifying them as one (giving the start address of 0x0A0000 and size 0x20000, doing it in two 64K pieces does not work either).
The question is: should I expect that this is indeed not possible, or should I expect that there is some specific sequencing and address ranging in the requests that makes it work? If the latter, does anybody have any hints? I do this on the bench and have working boot-mode flashing, so I can try practically anything, I just need to know what.
Knowing if, for example, KESS can do it would already help. Anyone?
Oh, and this is through the CAN interface if not clear by now.
|
|
|
|
« Last Edit: August 10, 2017, 02:39:30 PM by woj »
|
Logged
|
|
