LG GT540 Hacking

Yes, I still use this dinosaur :) Originally running Android 1.6 Donut, I have been hacking around on this device to turn it into my own portable hackbox. I’ve found out a lot more than LG would probably want me to know, based on the config.gz found in SwiftDroid and the default config as found in the original source by LG.

I will fill in more parts as I find them.

  • CPU: Qualcomm MSM7227 (ARM11/v6l) (qsd/msm)
  • RAM: 128MB RAM & 128MB NAND flash (?)
  • GPU: Qualcomm Adreno 200 (w/3D acceleration) (hw3d)
Now you can find the above on Wikipedia just by Googling the model number. What’s more interesting is this:
  • GSM Radio: MSM RMnet SMD interface (HSDPA) * (rmnet)
  • WLAN: Broadcom BCM4329. (This chipset supports monitor mode for aircrack-ng!) (bcm4329)
  • Camera: Sony ISX005 (or compatible) (isx005)
  • SDIO: SDIO is supported by MSM7227, with OS support (?)
  • Touchscreen : Elan 8232 i2c touchscreen (event & e8232)
Installing a Native Debian installation on the GT540
  • Follow the instructions at http://www.irregular-expression.com/?p=30 as far as Step 6 – debootstrap part 2
  • mkdir ~/gt540kernel
  • cd ~/gt540kernel
  • git clone https://github.com/Mur4ik/swiftdroid_kernel.git
  • echo “deb http://www.emdebian.org/debian/ lenny main” >> /etc/apt/sources.list
  • apt-get install build-essential gcc-4.3-arm-linux-gnueabi
  • export ARCH=arm
  • export CROSS_COMPILE=arm-linux-gnueabi
  • cd swiftdroid-kernel
  • make msm_defconfig
At this point I dropped into make menuconfig and tweaked some bits and pieces. I noticed especially in the default msm_defconfig that the support for the accelerometer, compass and alarmingly enough WiFi was disabled.
It would appear I’m going to have to release a patch at some point because LG’s and Mur4ik’s custom code additions won’t compile for toffee, not to mention they make me want to cry. There’s missing #defines, struct fields, deprecated code and virtually no comments. To save others headaches I may well also put up a working zImage for those who want life simple. :)
Please note this is a work in progress. I’m working through the kernel at the moment, trying to eliminate all kinds of errors/bugs/etc. As I progress I’ll update this page. -Chris

One Response to LG GT540 Hacking

  • TheFrizz says:
    October 17, 2011 at 4:16 pm

    Been searching for months on getting monitor mode working for my SGS fascinate (also bcm4329). Have you been able to successfully inject packets with yours? If so please do tell how.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Chris Northcott © 2012. All Rights Reserved.

XHTML 1.1 CSS 3.0

Powered by WordPress and WordPress Theme created with Artisteer.