Rendered at 00:50:13 GMT+0000 (Coordinated Universal Time) with Cloudflare Workers.
thejazzman 4 days ago [-]
PSA: If your wall connector loses wifi, it'll just throw your charging schedules out the window and turn on/off sporadically. This is especially noteworthy if you have Time of Use billing :| SET THE TIMER ON THE CAR DIRECTLY!
eleveriven 4 days ago [-]
It also fits the broader theme here: too much important behavior seems to live in the "application layer" of the charger, while the more durable source of truth is elsewhere.
rblatz 4 days ago [-]
I spent an hour yesterday getting the wall connector back on my wifi. Apparently last October when I added wifi 7 access points my network started working in WPA2/WPA3 mode and the wall connector wasn’t compatible with that. Ended up having to create a second SSID with WPA2 only support to get it back online.
Supposedly the newest update fixes that, but I haven’t taken the time to test that out.
But WiFi is shocking my fragile on these wall connectors, I’ve had a lot of trouble keeping it connected to my home network over the years.
f001 3 days ago [-]
Does the tesla wall connector offer Ethernet? Honestly I feel like most devices that are not expected to move around should at least offer it as an option (exceptions being for things where it’s not feasible like smart bulbs, smart locks, etc). If anything it’ll remove congestion for things that can’t realistically be wired.
nerdsniper 24 hours ago [-]
OTOH it would be super cool if we normalized wiring light sockets, outlets, and wall switches with low-voltage ethernet cable and had a simple way for mass-produced lightbulbs to plug into a wired network.
Too many problems to count:
- High voltage and low voltage wiring should generally be kept separated for safety reasons. Light sockets could probably be moved to low-voltage-only to power just LED bulbs but this wouldn't work for wall outlets which need to be 120-240V. Plus I like having the option to install 120V halogen bulbs wherever color rendering really matters!
- We'd also have to "normalize" having a separate network just for IoT stuff that only communicated in/out of its own LAN boundary via an actually-secure gateway with generic open protocols. (Pipe dream without government enforced standards similar to or piggy-backing on building codes)
- (Most) electricians notoriously suck at understanding low-voltage wiring.
- Probably more that I'm too lazy to think about but these two are already show stoppers for the next 10-30 years.
a10c 4 days ago [-]
or, use Home Assistant to handle your charging schedules.
I have a Volvo. Twice a year when DST changes, the schedule is afterwards one hour off. Been this for 3 years now.
compounding_it 4 days ago [-]
[flagged]
m463 4 days ago [-]
Your comment makes no sense. The tesla wall connector is a home charging port you install in your garage.
compounding_it 4 days ago [-]
I knew this is about wall charger at home but I assumed ‘time of use billing’ was some kind of billing system for the charger that’s implemented.
lexicality 4 days ago [-]
some people have variable electrical tariffs, so electrical use in the middle of the night is usually much much cheaper than the middle of the day.
pjc50 4 days ago [-]
That's done on the property's electricity smart meter.
m463 4 days ago [-]
I hate the gen 3 wall connector.
It creates a wifi access point in your garage that you cannot turn off:
TeslaWallConnector_<unique-id>
some people were able to downgrade their firmware to a version that didn't do that, but i guess this article shows telsa got rid of that ability.
I would love to be able to hack any firmware to disable that.
I also read that a connected tesla car can force an over-the-air firmware update maybe through the charging cable or wifi, but I haven't verified that.
ralph84 4 days ago [-]
The SSID stops broadcasting after the unit is commissioned, unless you're using power sharing between multiple units. In that case the SSID is used for the units to communicate.
m463 4 days ago [-]
by commissioned you mean "connect it to your home wifi and let it talk to tesla"? (i won't do that)
because it hasn't gone away after configuring the setup stuff (amps, etc)
darkwater 4 days ago [-]
Yes, obviously. If you didn't want that, you should have bought another charger, maybe Bluetooth only, and add your home-grown layer on top of it.
elteto 3 days ago [-]
Can I ask why don't you want a Tesla charger talking to Tesla? Seems a bit odd if you already own a Tesla vehicle that is just piping the data to Tesla all the time.
BuildTheRobots 4 days ago [-]
Is it possible to connect it to your wifi but block it talking to the internet? I'd be curious to know if that stops the built in SSID.
Rohansi 4 days ago [-]
Mine did
ralph84 4 days ago [-]
And make sure the firmware is up to date. Mine is at 26.2.2.
iugtmkbdfil834 4 days ago [-]
Thank you. This information is not listed anywhere and I am currently getting quotes for solar panel build.
4 days ago [-]
jp191919 3 days ago [-]
I put mine on an isolated IOT network.
mystraline 4 days ago [-]
Repeat after me:
An owner voluntarily downgrading firmware to gain control of your hardware IS NOT A HACK.
And if an adversary is doing this, then they have already breached yoir physical security.
wolrah 4 days ago [-]
This exploit is delivered through the charging cable to the wall box. These wall boxes are sometimes intentionally located in public spaces with the intent of allowing public charging, and Tesla has features specifically for that use case, so that cable is absolutely expected to be plugged in to untrusted vehicles.
_flux 4 days ago [-]
It clearly seems people have different meanings to the word, then.
For example, if I am able to gain root access to a WiFi access point I own, even though the vendor has tried to prevent it, then yes, I would call it a hack. To me, it doesn't matter why or who is doing the steps.
In fact, I believe I have never before heard someone combine the meaning of the word to be related to the ownership of the device being hacked.
I suspect the number of people understanding the word in your way is a minority. Redefining terms doesn't help build mutual understanding: here we are taking a word some think has negative connotations and then remove the thing they think should be cool and ok, and then suggest that this is actually the real meaning of the word. Personally I don't think this is how words should be wielded.
wtallis 3 days ago [-]
> In fact, I believe I have never before heard someone combine the meaning of the word to be related to the ownership of the device being hacked.
Ownership implies authorization, and using the term "hacking" exclusively to refer to gaining unauthorized access to someone else's computer is a common usage that you must surely have encountered before.
_flux 3 days ago [-]
So, this website being called "Hacker news", means.. ?
While hacking is used to to refer to illicit activities, I do actually believe that the same activities can also be performed e.g. on your own devices, or with permission, and still be called hacking. So in my view, I do not believe legality is the defining term, but the actual things you do; oftentimes useful for illegal activities.
But I must assume there is a group of people who consider the term to be loaded with that exclusion, so I should take this into account.
However, to me "hacking your own devices" as a concept seems crystal clear, and is not a contradictory term.
oneshtein 4 days ago [-]
> For example, if I am able to gain root access to a WiFi access point I own, even though the vendor has tried to prevent it, then yes, I would call it a hack.
Yep. The owner of the device can sue you.
alt227 3 days ago [-]
Why would they sue themselves?
NooneAtAll3 3 days ago [-]
that's the point? it's not a hack because you own the device, thus it's nonsensical
abofh 4 days ago [-]
It's a car the charging port is a viable physical perimeter, letting people inject code at the pump is a risk of design, not user error.
zelon88 4 days ago [-]
I thought the same thing. How white hat do you have to be to consider ineffective DRM a vulnerability?
4 days ago [-]
kube-system 4 days ago [-]
Eh, that’s a bad generalization. defense in depth is a thing and there are many cases where you’d want to protect against attackers with physical access
zelon88 4 days ago [-]
This isn't designed to stop attackers with physical access. This is designed to stop casual tinkerers and shade tree mechanics.
You know what isn't vulnerable? A "dumb" offline charger. You know what doesn't make any money or turn the consumer into another product? A "dumb" offline charger.
If it were about physical security, the suggested fix would be to remove the communication from the port entirely.
Companies shouldn't get to make something simple and secure into something inherently insecure and then iterate security into it. Like drive by wire steering, or brakes. Nobody asked for these things and if you ask ANYONE who works on, builds, or actually enjoys cars the consensus is NOBODY wants it.
But there are enough sophomoric, pedestrian car owners out there who gawk at the senseless overdeployment of technology and think "this is so convinient" and don't see it as 1) regulatory barrier building and gatekeeping 2) enabling vendor lock in 3) overcoming right to repair legislation. So the knowledgeable and enthusiastic voices of reason who care about cars get drowned out by the hoard of pedestrian geeks who couldn't imagine operating a car without at least a 16 inch touchscreen.
In security, the best defense is not introducing a vulnerability at all. There is value in having less code. For example, if your PaaS doesn't collect user SSNs... then it can't lose SSNs in a breach.
The question here should not be "why is this not secure." The question should be "why does this even need to be secure in the first place?" We have a very simple task to do and we've complicated it so much we've introduced vulnerability that didn't exist previously.
kube-system 3 days ago [-]
I was commenting on the hasty generalization, not this specific case.
> If it were about physical security, the suggested fix would be to remove the communication from the port entirely.
You can’t charge without negotiating charging rates. Communication is a requirement. Every EV does this. Heck, every cell phone does this.
> Like drive by wire steering, or brakes. Nobody asked for these things and if you ask ANYONE who works on, builds, or actually enjoys cars the consensus is NOBODY wants it.
Every hybrid and EV for the past 20 years has brake by wire. That’s how regenerative braking works.
AlotOfReading 4 days ago [-]
Any system where your defense in depth involves UDS is pretty much guaranteed to be broken though.
taneq 4 days ago [-]
Arguably it’s a crack. A good one, though.
aussieguy1234 4 days ago [-]
I mean its still technically hacking, but not all hacking is bad/illegal.
pram 4 days ago [-]
They shouldn’t be able to do it through the charging cable though lol
4 days ago [-]
cryptoegorophy 4 days ago [-]
Why use Tesla wall connector in a first place and not just the standard nema/dryer outlet with the Tesla cord/charger? It seems like people are overpaying for nothing.
tenuousemphasis 4 days ago [-]
I can do 48A @ 240V with my wall connector. It's also very convenient.
thechao 4 days ago [-]
I do as well with a NEMA?
neither_color 2 days ago [-]
Breaker size =/= charging speed. Breakers are oversized for safety reasons. The Wall Connector is on a 60A breaker and charges at 48A. NEMA 14-50 outlets are on 50A breakers but can't charge your car at 48A. 40 iirc, and the mobile connector that comes with the car maxes out at 32A.
I've had both setups and whether the full amperage charger is worth it or not depends on your use case. If you're just going to plug it in overnight, it doesn't matter. It's about an hour's difference for a top up. If you're going to wait for your car to charge and unplug it because you share the charger or have to run an extension over a public sidewalk, then the faster speed is worth it.
grosswait 4 days ago [-]
I don’t think the mobile charger allows more than 32A continuous over NEMA, even on a 50A receptacle
bluGill 3 days ago [-]
There are a lot of different mobile chargers, if you don't like the specs on the Tesla charger buy a different one. Though do beware that cheap 50A receptacles cannot handle 50 amps continuous. They are for stoves (max 40A), or welders (low duty cycle since you spend more time in setup then welding - assembly lines use better receptacles)
MiscIdeaMaker99 3 days ago [-]
I can confirm this. Our Model 3 doesn't charge as fast using a NEMA 14-50 plug connected via the Tesla-provided mobile charger.
When we moved to a new house, we bought a Tesla wall charger, and it indeed charges at higher amps, but I don't know if the extra speed has necessarily been worth it since we primarily charge the car overnight.
jp191919 3 days ago [-]
It costed less for me to install a tesla wall connector over a NEMA receptacle, as the NEMA 14-30 and 14-50 require a neutral wire and a GFCI breaker.
doublepg23 3 days ago [-]
I did a lot of research on
home charging at r/evcharging and the consensus always favored hardwiring your EVSE if possible.
elteto 3 days ago [-]
Do dryer outlets work outdoors?
stronglikedan 3 days ago [-]
You don't want to use a standard outlet, since it's not designed to handle full current(?) for hours. There are special outlets for EV charging, and they work outdoors. Just be very sure to have a GFCI breaker behind it.
jp191919 3 days ago [-]
They do. As long as installed properly with a GFCI breaker.
spacebanana7 4 days ago [-]
One thing I'm really scared of is EV charger software being modified by users, hackers or bugs to pull max power at times that don't suit the grid.
In the UK, for example 10 million EVs all pulling 7kw would overwhelm the roughly 70GW potential of the grid. Even a million EVs charging at an inconvenient time could add a 7GW draw which is enough cause a problem.
neilalexander 3 days ago [-]
Incoming voltage monitoring is a requirement for EV chargers in the UK. The sudden huge demand would result in a voltage drop, the chargers would then detect the under-voltage condition and they'd stop charging.
spacebanana7 3 days ago [-]
Would the voltage drop before the fuse blew in local transforms?
Modern grids have batteries to manage instantaneous spikes of demand so there’d be a race.
braiamp 4 days ago [-]
It will first damage the batteries very fast, second, most users don't want to mess with that, they want to plug and play. So, on both counts your fears are misplaced.
spacebanana7 4 days ago [-]
In the event of an internet outage, wall box chargers are legally required to default on. In practice most chargers interpret this as taking the full 7kw - whether this is a bug or misreading of the intent of the law doesn't really matter from the perspective of the grid.
Large ISP outages that affect millions of people are not uncommon on a decade by decade basis, and I suspect an uncomfortable number of UK EV chargers are in some way linked to eu-west-2.
It sounds like a genuine attack vector to me. If someone hacked say teslas firmware supply chain and made all chargers pull max power at the same time, it could be a national infrastructure crippling attack.
throwway120385 3 days ago [-]
Where would they dump the power? You need a load of some sort. 7kW requires a voltage drop between a hot and a neutral. If it's a 1V drop then you're going to get a hot load of amps.
alt227 3 days ago [-]
Into what it was designed for, maybe.... a car?!
Im thinking in an attack situation hackers might plan for say a 3am mass dump and pull on the grid by all cars that are charging overnight. This would definitely be possible by altering firmware, and would be bad enough to blow some local substations for sure.
spacebanana7 3 days ago [-]
I may be misunderstanding your concern but the idea would be for Tesla to dump the energy into car batteries or powerwall storage.
ac29 3 days ago [-]
I've never seen a charger in the US that doesnt operate 24/7 regardless of grid load, is this different in other countries?
4 days ago [-]
486sx33 4 days ago [-]
Why would I want to hack the bootloader for a wall charger? Asking for a friend
culi 4 days ago [-]
You can bypass vehicle restrictions. You could potentially then use it for J1772-compatible EVs (like a Chevy Bolt or Nissan Leaf)
Or just for the spirit of actually owning the shit you pay for.
m463 4 days ago [-]
I don't think there are any restrictions. I think j1772 might just work with an adapter (adapt from the nacs plug to the j1772 plug)
I thought tesla even made a j1772 native wall connector.
mprime1 4 days ago [-]
There are some restrictions.
I had the foolish idea of installing a Tesla charger at home to charge my Bolt. I’ve been unable to ever use it.
The wall charger works fine with Teslas.
My car and adapter charge fine at Tesla superchargers.
But the home Tesla charger refuses to charge my Bolt.
(Yes I disabled vehicle restrictions and tried all sorts of combinations of settings for weeks before giving up. Tesla support was useless of course)
Restriction or bug, same difference.
doublepg23 3 days ago [-]
A NACS to CCS (L3) adapter won’t work with L2 chargers, you’ll need a NACS to J1772 adapter.
They make a "universal charger" for this express purpose. It even has the adapter embedded in the holster, so you can either grab just the NACS connector, or the connector + J1772 adapter in one smooth motion.
Just don't try to use that adapter on another NACS connector like the Mobile Connector, it'll get stuck and you'll have to do some magnet shenanigans to get it off (ask me how I know...)
NACS on Level 2 has the same number of pins, but speaks a different protocol than J1772, so just a normal "dumb" adapter won't work. You either need a Connector that can speak J1772, or a TeslaTap.
tass 3 days ago [-]
If you’re using the same adapter successfully at a supercharger, you have the wrong adapter for AC (level 1/2) charging.
cogman10 4 days ago [-]
Really gross. I have a gen 1 charger and it's dumb as bricks. Basically just a giant relay.
I guess I could see why you might want to restrict who can use your charger, but I really prefer the "dumb as bricks" version I currently have.
gwbas1c 3 days ago [-]
> I thought tesla even made a j1772 native wall connector.
At least a few years ago, they would openly recommend it for non-Teslas.
I thought NACS brought some changes to Level 1 and 2 that aren't backwards compatible with J1772? I know there's an oddball voltage in there so you can put a NACS charger on a lamppost where J1772 would require a transformer; but I didn't think there were protocol issues too.
bluGill 3 days ago [-]
J1772 is 120V or 208-240V. Those are by far the most common voltages in the US. (208 is what you get when you take a US 3 phase system and connect to two phases - this is somewhat common and most people don't know or care that their apartment is wired like that). I have seen other voltages at industrial sites, but I wouldn't expect that in a lamppost.
gwbas1c 3 days ago [-]
277 volts, which is line to neutral in a 480 volt three-phase system. It's common for lamp posts in parking lots.
J1227 would require a transformer, but NACS doesn't.
akerl_ 4 days ago [-]
Can confirm. I've used an adapter to charge 2 different non-Tesla cars off my wall connector.
adamsb6 4 days ago [-]
I use my Gen 1 Tesla Wall Connectors to charge my NACS-native Lucid Gravity.
decimalenough 4 days ago [-]
What vehicle restrictions? This is for the Tesla home charger, not Superchargers.
culi 4 days ago [-]
Older models are locked to Tesla vehicles. Tesla has regional restrictions in many parts of the world.
You also never know when there could be another update and your region becomes one of those that has these restrictions.
Rebelgecko 4 days ago [-]
Some don't support j1772 adapters with non Tesla vehicles
brianwawok 4 days ago [-]
Exactly. Charge both my Tesla and my leaf with mine.
ashoeafoot 4 days ago [-]
[dead]
kotaKat 4 days ago [-]
Publicly accessible piece of equipment that could have a pseudo-trusted connection to an internal network (since they're connected to the Tesla Cloud(tm)).
Picturing someone rolling up to a charger outside of a large office building, 'plugging in', exploiting the charger via the communications, then using the charger to pivot inwards.
Supposedly the newest update fixes that, but I haven’t taken the time to test that out.
But WiFi is shocking my fragile on these wall connectors, I’ve had a lot of trouble keeping it connected to my home network over the years.
Too many problems to count:
- High voltage and low voltage wiring should generally be kept separated for safety reasons. Light sockets could probably be moved to low-voltage-only to power just LED bulbs but this wouldn't work for wall outlets which need to be 120-240V. Plus I like having the option to install 120V halogen bulbs wherever color rendering really matters!
- We'd also have to "normalize" having a separate network just for IoT stuff that only communicated in/out of its own LAN boundary via an actually-secure gateway with generic open protocols. (Pipe dream without government enforced standards similar to or piggy-backing on building codes)
- (Most) electricians notoriously suck at understanding low-voltage wiring.
- Probably more that I'm too lazy to think about but these two are already show stoppers for the next 10-30 years.
It creates a wifi access point in your garage that you cannot turn off:
some people were able to downgrade their firmware to a version that didn't do that, but i guess this article shows telsa got rid of that ability.I would love to be able to hack any firmware to disable that.
I also read that a connected tesla car can force an over-the-air firmware update maybe through the charging cable or wifi, but I haven't verified that.
because it hasn't gone away after configuring the setup stuff (amps, etc)
An owner voluntarily downgrading firmware to gain control of your hardware IS NOT A HACK.
And if an adversary is doing this, then they have already breached yoir physical security.
For example, if I am able to gain root access to a WiFi access point I own, even though the vendor has tried to prevent it, then yes, I would call it a hack. To me, it doesn't matter why or who is doing the steps.
In fact, I believe I have never before heard someone combine the meaning of the word to be related to the ownership of the device being hacked.
I suspect the number of people understanding the word in your way is a minority. Redefining terms doesn't help build mutual understanding: here we are taking a word some think has negative connotations and then remove the thing they think should be cool and ok, and then suggest that this is actually the real meaning of the word. Personally I don't think this is how words should be wielded.
Ownership implies authorization, and using the term "hacking" exclusively to refer to gaining unauthorized access to someone else's computer is a common usage that you must surely have encountered before.
While hacking is used to to refer to illicit activities, I do actually believe that the same activities can also be performed e.g. on your own devices, or with permission, and still be called hacking. So in my view, I do not believe legality is the defining term, but the actual things you do; oftentimes useful for illegal activities.
But I must assume there is a group of people who consider the term to be loaded with that exclusion, so I should take this into account.
However, to me "hacking your own devices" as a concept seems crystal clear, and is not a contradictory term.
Yep. The owner of the device can sue you.
You know what isn't vulnerable? A "dumb" offline charger. You know what doesn't make any money or turn the consumer into another product? A "dumb" offline charger.
If it were about physical security, the suggested fix would be to remove the communication from the port entirely.
Companies shouldn't get to make something simple and secure into something inherently insecure and then iterate security into it. Like drive by wire steering, or brakes. Nobody asked for these things and if you ask ANYONE who works on, builds, or actually enjoys cars the consensus is NOBODY wants it.
But there are enough sophomoric, pedestrian car owners out there who gawk at the senseless overdeployment of technology and think "this is so convinient" and don't see it as 1) regulatory barrier building and gatekeeping 2) enabling vendor lock in 3) overcoming right to repair legislation. So the knowledgeable and enthusiastic voices of reason who care about cars get drowned out by the hoard of pedestrian geeks who couldn't imagine operating a car without at least a 16 inch touchscreen.
In security, the best defense is not introducing a vulnerability at all. There is value in having less code. For example, if your PaaS doesn't collect user SSNs... then it can't lose SSNs in a breach.
The question here should not be "why is this not secure." The question should be "why does this even need to be secure in the first place?" We have a very simple task to do and we've complicated it so much we've introduced vulnerability that didn't exist previously.
> If it were about physical security, the suggested fix would be to remove the communication from the port entirely.
You can’t charge without negotiating charging rates. Communication is a requirement. Every EV does this. Heck, every cell phone does this.
> Like drive by wire steering, or brakes. Nobody asked for these things and if you ask ANYONE who works on, builds, or actually enjoys cars the consensus is NOBODY wants it.
Every hybrid and EV for the past 20 years has brake by wire. That’s how regenerative braking works.
I've had both setups and whether the full amperage charger is worth it or not depends on your use case. If you're just going to plug it in overnight, it doesn't matter. It's about an hour's difference for a top up. If you're going to wait for your car to charge and unplug it because you share the charger or have to run an extension over a public sidewalk, then the faster speed is worth it.
When we moved to a new house, we bought a Tesla wall charger, and it indeed charges at higher amps, but I don't know if the extra speed has necessarily been worth it since we primarily charge the car overnight.
In the UK, for example 10 million EVs all pulling 7kw would overwhelm the roughly 70GW potential of the grid. Even a million EVs charging at an inconvenient time could add a 7GW draw which is enough cause a problem.
Modern grids have batteries to manage instantaneous spikes of demand so there’d be a race.
Large ISP outages that affect millions of people are not uncommon on a decade by decade basis, and I suspect an uncomfortable number of UK EV chargers are in some way linked to eu-west-2.
[1] https://www.legislation.gov.uk/uksi/2021/1467/regulation/7/m...
Im thinking in an attack situation hackers might plan for say a 3am mass dump and pull on the grid by all cars that are charging overnight. This would definitely be possible by altering firmware, and would be bad enough to blow some local substations for sure.
Or just for the spirit of actually owning the shit you pay for.
I thought tesla even made a j1772 native wall connector.
I had the foolish idea of installing a Tesla charger at home to charge my Bolt. I’ve been unable to ever use it.
The wall charger works fine with Teslas. My car and adapter charge fine at Tesla superchargers.
But the home Tesla charger refuses to charge my Bolt. (Yes I disabled vehicle restrictions and tried all sorts of combinations of settings for weeks before giving up. Tesla support was useless of course)
Restriction or bug, same difference.
This is the one I use https://ev-lectron.com/products/lectron-tesla-to-j1772-adapt...
Just don't try to use that adapter on another NACS connector like the Mobile Connector, it'll get stuck and you'll have to do some magnet shenanigans to get it off (ask me how I know...)
NACS on Level 2 has the same number of pins, but speaks a different protocol than J1772, so just a normal "dumb" adapter won't work. You either need a Connector that can speak J1772, or a TeslaTap.
I guess I could see why you might want to restrict who can use your charger, but I really prefer the "dumb as bricks" version I currently have.
At least a few years ago, they would openly recommend it for non-Teslas.
I thought NACS brought some changes to Level 1 and 2 that aren't backwards compatible with J1772? I know there's an oddball voltage in there so you can put a NACS charger on a lamppost where J1772 would require a transformer; but I didn't think there were protocol issues too.
J1227 would require a transformer, but NACS doesn't.
You also never know when there could be another update and your region becomes one of those that has these restrictions.
Picturing someone rolling up to a charger outside of a large office building, 'plugging in', exploiting the charger via the communications, then using the charger to pivot inwards.