129 points

Imagine only having one copy of the system so when a situation like this occurs, you lack the ability to automatically switch to a working one, re-download and retry, without danger of this occurring.

This was fixed a decade ago with Android. They could have literally taken the source code from aosp and added it, or at least converted it (if in different programming language), and never had this issue. It would cost $0 and minimal time. But no. That won’t ever happen. It’s built ford tough.

permalink
report
reply
37 points

While the implementation of an A/B update system wouldn’t be drag and drop from Android to a different OS, they absolutely could implement the same idea to prevent this issue.

The likely reason as to why is storage space, you need two copies of the system, while only one is running at a time. They probably put as little space into these infotainment systems as possible.

If they put more in new models, they’d then have to support two methods of updating the system. It’s easier to tell the customer on the rare occasion that an error does happen “oops we made a fucky wucky it’s on you to fix it”

permalink
report
parent
reply
16 points
*

There’s no way storage space is the issue. It would cost pennies per car and take up no additional space or power. The size of map/gps data would dwarf the OS by an order of magnitude or more.

permalink
report
parent
reply
7 points

You’re 100% right. It would be pennies for larger storage. However, that doesn’t mean they wouldn’t go for a smaller size to save those pennies.

I used to work on a car lot, and a disturbingly large number of cars had an SD card port that would only be used for map data. You had to purchase these cards from a dealer or the manufacturer specifically, and if you wanted map data the SD card had to be inserted. I saw this specifically on some Mazda, Mitsubishi, and Subaru models, though it wouldn’t surprise me if Ford uses the same method.

permalink
report
parent
reply
13 points

Yeah likely, and I’d be super pissed about this. You’re (ford) telling me you cheap fucks couldn’t be asked to install two like, shit, even cheap-ass comsumer-grade 100gb ssds or something at the cost of like $10 a pop, before ‘economies of scale’, in my fucking 50k vehicle. I want the tow bill comped, I want the repair comped, I want an equivalent rental vehicle comped for the entire duration of the repair, I want it in writing that if this shit happens again that I’m going to get the same treatment as I am now, and my time isn’t free either so I want complementary maintenance the next time I’m in here; or I’m driving straight through the front window as soon as the repair is done, and I’m not stopping with the first vehicle I crash into.

permalink
report
parent
reply
3 points
*

Yeah, I’ve worked on embedded systems (some projects involving automotive and heavy machinery), and the amount of penny-pinching they used when selecting components was pretty crazy. On one project I worked on, they didn’t want to spend an extra 30 cents for a microcontroller with more flash, so we had to be very cognizant of every byte we used. Flash was so tight, our firmware would only fit if we used the highest optimization setting on the compiler (making debugging very difficult).

permalink
report
parent
reply
7 points
*

That’s the old A/B that requires 2x storage.

The new method uses snapshotting and compression:

https://source.android.com/docs/core/ota/virtual_ab

permalink
report
parent
reply
2 points

Cars cost tens of thousands of dollars. A 1tb ssd costs tens of dollars.

permalink
report
parent
reply
1 point
Deleted by creator
permalink
report
parent
reply
29 points

I work on consumer electronic ear buds. Frigging ear buds, and we support this…

permalink
report
parent
reply

Even some decent modern Wi-Fi routers have such protection. There’s working and backup partition. If a firmware update fails, it boots using the previous working partition.

This is a better explanation (in this case for Cisco Linksys EA3500):

Like several other Linksys devices, the EA3500 has a dual firmware layout: working and backup partitions. Unless you manually choose which partition by doing a manual uboot/tftp install, firmware flashes occur on the backup partition and the EA3500 shall reboot from the backup partition following from a firmware flash. The backup partition becomes the new working partition when the reboot was successful. The former working partition becomes the new backup partition.

Source: https://openwrt.org/toh/linksys/ea3500

permalink
report
parent
reply
4 points

Motherboards for years have a backup firmware just in case you fry the primary firmware.

This Ford issue is laughable.

permalink
report
parent
reply
13 points

Ford is only focused on finding new ways of having your car break down in the middle of nowhere.

permalink
report
parent
reply
6 points

You don’t earn the name ‘found on road dead’ without having to innovate once in awhile.

permalink
report
parent
reply
4 points

Fix Or Repair Daily

eh my F250 is a beast and keeps on going. Only has broken down on me one time because of an oil pressure sensor. On a 7.3L diesel the oil flow is a must!

permalink
report
parent
reply
115 points

this is exactly what henry ford wanted to happen i did a seance and checked in with him

permalink
report
reply
47 points

Henry Ford when he learns that Jews are driving cars

permalink
report
parent
reply

I remember a few years back when farmers were in the news for using Russian hacks to get around this type of shit in their John Deere tractors. I thought, surely that won’t become a problem for regular cars… That was back when I still had some faith left in humanity to overcome capitalism’s bullshit.

permalink
report
reply
62 points

It was actually Ukrainians that provided the John Deere hacks.

permalink
report
parent
reply
26 points

Heroes

permalink
report
parent
reply
10 points

Russia only makes problems for Ukraine to solve, it appears. Lol

permalink
report
parent
reply
36 points

“tow truck” why on earth would a tow truck require smart components at all? This is multiple layers of stupidity and dystopian.

permalink
report
reply
45 points

I think it’s steps for the tow truck operator to perform before they can tow the now-undriveable car. Like getting it in neutral, disabling parking break, maybe disconnecting batteries.

permalink
report
parent
reply
2 points

Yeah that sounds completely unessesary to have such features when they can be done manually and probably with better compatibility (I’m guessing Ford tow trucks only connect to their proprietary standard)

permalink
report
parent
reply
3 points

Modern cars have some stupid functions in the form of nicities.

How are you going to put a car in neutral if it’s a push-button shift that’s unresponsive because the infotainment system has to boot for the transmission control module (probably for some stupid reason like being able to display errors like this).

My wife’s minivan has a push button shift. And automatic headlights. You want to go to the drive-in? Gotta hit the (pushbutton) park-brake to disable the auto headlights. And the radio will turn off every 30 minutes during the movie to save battery.

permalink
report
parent
reply
30 points

This should be a crime, punishable by total forfeiture of the company.

permalink
report
reply
28 points

Your description sounds very aggressive.

#"🇺🇸 Nationalize the Auto Industry 🇺🇸 "

sounds happy and patriotic.

permalink
report
parent
reply
7 points

Our country was founded on shooting at those who oppress us.

A little fire is at the very least patriotic.

permalink
report
parent
reply