Friday, March 24th 2017
Jailbreaking American Tractors with Ukrainian Firmware
Tractors are some of the most beloved and benign pieces of automotive technology, and some of the very first applications of the internal combustion engine, after cars. Tinkering with the classic free-breathing (natural aspiration) engines of old tractors is something arguably every mechanical engineer has ever done. Over the ages however, tractors and other farm equipment have gotten increasingly complex. The engines became smaller (and hence more fuel-efficient), and technologies such as turbochargers and electronic fuel injection shored power and torque back up to the levels of larger free-breathing engines. Running the engine is now handled by a small embedded computer called the ECU (engine control unit). Likewise, running the various ancillaries on farming equipment such as harvesters have been governed by electronics. The more there's electronics, the less there is that a spanner can fix, and that has become a big problem in America.
Some popular farm equipment manufacturers such as John Deere have taken greed cleverly disguised as "quality assurance" to the same levels as the Apple iPhone. On the iPhone, you can't just install third-party software that hasn't been vetted by Apple and distributed through the App Store. Free software activists have criticized this for stiffing innovation, because Apple's software doesn't give users unrestricted access to the hardware that they've paid for. John Deere and some of its competitors are in the same league. They've outfitted their tractors and farm equipment with electronics that make it practically impossible to perform "unauthorized" repair. If your crop is up for harvest and your harvester is throwing a fit, you have no option but to take it back to a John Deere service center, or other repair shops "authorized" by the company. If you've replaced a part yourself, a guy with a laptop has to come over to your farm, and "activate" that part. American farmers aren't taking kindly to this, and help is coming from the most unlikely of places.
Back in October 2016, John Deere made its customers sign a license agreement to purchase their equipment, which forbids unauthorized repair or modification; and prevents farmers from suing the company for "crop loss, lost profits, loss of goodwill, loss of use of equipment … arising from the performance or non-performance of any aspect of the software (driving the equipment)." This presents an existential threat to farmers, as their livelihoods are at the mercy of receiving product service from only one source (manufacturer and its licensed shops), and prevents them from fixing the equipment on their own, should they go down at an inopportune time.
Here's what's wrong. John Deere wants to control the supply of spare parts for its products. Each time you replace a major part (eg: the transmission case), the part change has to be updated onto the ECU. The ECU is connected all major components of the tractor, and stores a table with their electronic serial numbers. When a part is replaced, its serial number has to be registered with the ECU, so it can validate that a genuine John Deere part has been installed. Trouble is, this validation costs some serious dime - John Deere charges $230, plus $130/hr for an "authorized mechanic" to drive into your farm and validate the part by plugging in the ECU to a laptop with the validation software.
Activists are pushing state-level legislation in the US state of Nebraska, that invalidates John Deere's agreements, and grants farmers the "right to repair" their equipment. In the meantime, farmers are taking to the Internet, for a Ukrainian custom firmware available on certain Eastern European invite-only, paid online forums. Farmers can flash the ECU and other electronics of their farm-equipment with this custom firmware, which effectively jail-breaks them, making them easier to repair. This has sprung up an entire industry of ECU modding equipment and unauthorized software, which isn't free, but is a must-have for any farmer. The key-generator that spits out part-validation keys goes for $99, firmware PayLoad (PLD) file encryptor/decryptor, which gets through John Deere's encryption, goes for $499, and cables that plug your tractor to a PC, for about $80. They may seem expensive and perhaps even predatory, but for farmers who intend to run their tractors for over a decade, it's a windfall in long-term savings.
This brings back the classical debate about whether you truly own the hardware of a $1000 iPhone, and if not, why not. When farmers pay hundreds of thousands of dollars for their farm equipment, shouldn't they completely own it, and use/repair it as they please? Or has purchasing a tractor become purchasing a service rather than a product? Tell us in the comments below.
Source:
Vice
Some popular farm equipment manufacturers such as John Deere have taken greed cleverly disguised as "quality assurance" to the same levels as the Apple iPhone. On the iPhone, you can't just install third-party software that hasn't been vetted by Apple and distributed through the App Store. Free software activists have criticized this for stiffing innovation, because Apple's software doesn't give users unrestricted access to the hardware that they've paid for. John Deere and some of its competitors are in the same league. They've outfitted their tractors and farm equipment with electronics that make it practically impossible to perform "unauthorized" repair. If your crop is up for harvest and your harvester is throwing a fit, you have no option but to take it back to a John Deere service center, or other repair shops "authorized" by the company. If you've replaced a part yourself, a guy with a laptop has to come over to your farm, and "activate" that part. American farmers aren't taking kindly to this, and help is coming from the most unlikely of places.
Here's what's wrong. John Deere wants to control the supply of spare parts for its products. Each time you replace a major part (eg: the transmission case), the part change has to be updated onto the ECU. The ECU is connected all major components of the tractor, and stores a table with their electronic serial numbers. When a part is replaced, its serial number has to be registered with the ECU, so it can validate that a genuine John Deere part has been installed. Trouble is, this validation costs some serious dime - John Deere charges $230, plus $130/hr for an "authorized mechanic" to drive into your farm and validate the part by plugging in the ECU to a laptop with the validation software.
This brings back the classical debate about whether you truly own the hardware of a $1000 iPhone, and if not, why not. When farmers pay hundreds of thousands of dollars for their farm equipment, shouldn't they completely own it, and use/repair it as they please? Or has purchasing a tractor become purchasing a service rather than a product? Tell us in the comments below.
53 Comments on Jailbreaking American Tractors with Ukrainian Firmware
EDIT: Read the article... (wondering why this is at TPU and not GN outside of throwing anything remotely technical on the wall for a couple quid.. :p)
The way I look at it is that most hardware on farm equipment that breaks and is field serviceable like teeth, stalk stompers, and snouts aren't going to have ECUs, and therefore, are still field serviceable. The moment John Deere starts requiring service people to change those parts, the farmers (John Deere is literally costing them money) and service people (why am I wasting time doing something the farmer could do) will revolt.
Farmers don't have the time nor equipment to do a transmission swap where the ECU is used so this doesn't hurt farmers as much as it hurts independent equipment service people which, let's be honest, don't really exist already.
Edit: Let me be very clear: old farm equipment is pretty rare to see. Farming in the USA is all about the economics of scale. Scale means bigger equipment. Bigger equipment means new equipment. I think a lot of US farm equipment gets sold to other countries where there is demand for big machinery but not enough funds to buy new. If memory serves, there is actually companies in the USA that exist for the express purpose of buying used equipment in the USA and selling it abroad.
If I had to guess, Ukraine probably ended up with some of this older equipment that is functionally obsolete in the USA. They likely salvaged the part from a different machine and installed it on a mostly working machine to make it operational again discovering the ECU locks. That's likely when they set off to jailbreak it because the manual labor was already done.
One really wonders where world goes.. somehow it doesnt feel like good direction.
Or Mother Russia (they make some too).