this post was submitted on 23 Mar 2025
300 points (95.5% liked)

Selfhosted

44953 readers
468 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
300
[Discussion] What would it take to selfhost some of the backend that Tesla's connect to? (lemmy.ca)
submitted 2 days ago* (last edited 2 days ago) by otter@lemmy.ca to c/selfhosted@lemmy.world
62 comments fedilink hide all child comments
 

I saw this article earlier:

Tesla 'going bankrupt' is endpoint of protests, says local organizer

In the spirit of right to repair, self-hosting, giving a second life to old devices, and limiting data collection by car companies:

  • What are some considerations?
  • Are there any projects worth keeping an eye on?

An example that came to mind was Valetudo, which is a cloud replacement for vacuum robots enabling local-only operation. Some robot vacuums are easy to install this on, and others require more invasive modifications.

What I've found so far:

  • FreedomEV, a project that was presented at FOSSDEM 2019 but doesn't have recent activity
  • TeslaMate, which is a popular and active selfhosted data logger for Teslas, but not necessarily a replacement for the software
top 50 comments
sorted by: hot top controversial new old
[–] DocMcStuffin@lemmy.world 94 points 2 days ago (1 children)

The right to repair. It's going to require the ability to make changes to the software on the vehicle. At a minimum the ability to replace the public encryption keys used to communicate with the servers. The bootloader and software is probably locked behind signing keys; so you need to be able to disable or add your own keys. I doubt anyone has access to the full protocols used to communicate with the servers. So, the full technical standard need to be released (which is never going to happen) or reversed engineered through unencrypted traffic analysis and reverse engineering the software.

A good right to repair law could require some of that be releasable while the company is still active or all if the company goes belly up. IIRC there was a smaller EV company that went bankrupt and there was a concern that once the servers were shutdown the vehicles would be bricked. Not sure what happened in the end. In any case, cars as IOT is the stupidest idea ever created.

[–] silverlose@lemm.ee 19 points 2 days ago

This is the answer. Though there’s a really small chance someone reverse engineers the whole thing, but I ain’t doin it.

[–] bigDottee@geekroom.tech 87 points 2 days ago (3 children)

Assuming that Tesla goes bankrupt, actually shuts down forever, and shuts its servers down…

At a minimum someone would have to find out where the software sends and receives data from. Then you’d have to reverse engineer the software to control the vehicles.

Then you’d have to reprogram the software to send to your C&C server. I don’t think it would really take all that much to host that… it’s getting there that’s difficult.

[–] Diplomjodler3@lemmy.world 25 points 2 days ago (1 children)

You'd likely need all kinds of cryptographic keys to get anywhere with that. Tesla is unlikely to ever publish those, even if they go bankrupt.

[–] kabi@lemm.ee 12 points 2 days ago (1 children)

On the upside: if you mod your car to get around all that, you'll probably be able to emulate old consoles on it and play pokemon games while driving.

[–] elvith@feddit.org 10 points 2 days ago (1 children)

...But will it run DOOM?

[–] dutchkimble@lemy.lol 2 points 1 day ago

Pretty sure someone would have already done it. Anything with a screen and some sort of computer behind it is low hanging fruit for doom. It's shit like running it on a calculator using potatoes that raises the bar!

[–] dreadbeef@lemmy.dbzer0.com 18 points 2 days ago* (last edited 2 days ago) (1 children)

If I had a Tesla and someone smart enough to hack into I wouldn't doubt I could probably figure out how they build their dashboards and reverse engineer them, they're most likely browser based or qt or something like it. It'd be too costly to do it in anything else and Id bet many spacex dashes are the same tech. But I ain't rich enough to get one of those things so someone else has to. There's only so many ways to draw pixels on a screen in the name of profit

[–] AtHeartEngineer@lemmy.world 18 points 2 days ago (1 children)

They are browser based, their whole UI and much of the in car backend is a JavaScript.

[–] bobs_monkey@lemm.ee 28 points 2 days ago

JavaScript

Ah, they're that kind of evil.

[–] scrubbles@poptalk.scrubbles.tech 12 points 2 days ago

Yeah it'd be a LOT of constant wireshark and reverse engineering to figure out every API it calls. Then probably something in the middle to sit on the host, need to figure out https certs since you'd be spoofing the host, and of course making sure you get the responses absolutely correct.

Not impossible, but it's not trivial anymore either.

[–] ramble81@lemm.ee 45 points 2 days ago (4 children)

Something else that people don’t think about besides the backend server is the connectivity. A lot of these cars use LTE with eSIMs that can’t be replaced, and getting an internet package for it will be next to impossible since Tesla gets them at bulk rates. Once upon a time cars did allow “bring your own SIM cards” but not anymore. Also as cars get older the cell networks get shut down. Some companies did offer upgrades but that was few and far between. Most just said “sorry, you’re SOL”.

So even if you could hack your car, your car won’t have any way of talking to a custom endpoint.

[–] EuroNutellaMan@lemmy.world 27 points 1 day ago (1 children)

And this is another reason why putting internet on cars is a bad idea

[–] ramble81@lemm.ee 9 points 1 day ago* (last edited 1 day ago) (3 children)

I mean, what’s the alternative? It’s not like it has to have internet. Anything internet connected is mainly quality of life:

  • Traffic
  • Remote (app) features
  • Music

Except maybe Teslas, damned if I know what they do. But they’re nice to have things that generally require realtime updates but the car functions just fine as a car without it.

[–] stetech@lemmy.world 8 points 1 day ago* (last edited 1 day ago) (1 children)
  • Traffic
  • Phone (CarPlay/Android Auto (yes I know Tesla doesn’t have them, a garbage decision you’ll have to live with if you bought one))
  • Remote (app) features
  • Don’t care/want/need, plus security risk. If you really can’t do without, use WiFi when at home, and no-idea-what for when on the go.
  • Music
  • See point 1, also “dumb” media devices via Bluetooth/USB should be possible.
[–] ramble81@lemm.ee 3 points 1 day ago

Again though, they are all quality of life things. You don’t have to use it on most cars. Don’t want it, don’t pay for it and don’t use it. So just like giving people the choice of AA/CP, what’s wrong with giving them the choice of using those features?

load more comments (2 replies)
load more comments (3 replies)
[–] Seasm0ke@lemmy.world 24 points 2 days ago (1 children)

If you bought a live service car you're probably shit out of luck

load more comments (1 replies)
[–] fmstrat@lemmy.nowsci.com 23 points 1 day ago (1 children)

Realistically they would get a bailout "for the consumer".

More likely than central hosting would be some of the same people enabling faster modes via software hacks currently making them run offline.

[–] xye@lemm.ee 3 points 1 day ago

Bailout, or government ownership run by DOGE? I hear they have some servers available - well, soon.

[–] hempster@lemm.ee 17 points 1 day ago* (last edited 1 day ago)

I wait for the day when we install Graphene OS Automotive Edition on the car

[–] Grass@sh.itjust.works 17 points 2 days ago

probabaly full replacement of the motor controller and user facing hardware. basically a diy ev conversion using tesla motors but converting the tesla itself. you would lose features but they would be lost regardless.

[–] otter@lemmy.ca 16 points 2 days ago* (last edited 2 days ago) (2 children)

Some brainstorming from me:

  • Ideally people do not buy more teslas
  • An initial goal would be to use the vehicle without it phoning home. Would the TeslaMate project be sufficient for that?
  • Long term, would it be possible to replace the software running on the car's console? Or would it be better to tear out the console and replace it with something else?

Alternatively, what would a recycling/conversion program look like?

[–] 30p87@feddit.org 10 points 2 days ago

I'd guess that, like all tech that's highly locked down, it will be very hard to do anything with - like Apple devices.

So the only thing to do right now is - not updating.

[–] navi@lemmy.tespia.org 5 points 2 days ago

Everything that polls Tesla data goes through (at lease negotiated access) Tesla servers.

That includes TesMate, TeslaFi, Tessie, etc.

[–] thelittleblackbird@lemmy.world 11 points 2 days ago (2 children)

First, second and third most important point is : Tesla needs to allow the connection to an alternative server.

The fourth should be access to the api and data that are exchanged.

You shouldn't mess with the FW of your own car even for some innocent feature like this one, you don't know/understand the interactions that may happen between different Sw components and the hw layer, you can not provide a similar of level of testing, including some worst case scenarios, that can make your car unsafe during some problems or unforeseen conditions. And perhaps also, the car could loose its license for driving....

If tesla allows that, then we can start speaking about it. But last time I check on that was not possible

[–] OptimusPrimeDownfall@discuss.tchncs.de 19 points 2 days ago* (last edited 2 days ago) (2 children)

That mentality is how we got here in the first place. A person should have a right to understand and repair/modify everything happening in devices they own. Because they don't, we get stuck in the shitty situation where Elon Musk can unlock any Tesla he pleases and I can't refuse to send my data to him. Or any other car manufacturer. Or tractor manufacturer. Or IoT manufacturer.

[–] wreckedcarzz@lemmy.world 4 points 2 days ago* (last edited 2 days ago) (4 children)

Mixed feelings on this. Yeah, you buy it you should own it. But if your ability to fuck with a two-ton rolling death machine puts my ass at risk, we've got a fucking problem.

[–] poweruser@lemmy.sdf.org 4 points 2 days ago (2 children)

I have some bad news for you - any random idiot with a driver's license and a two-ton death machine already puts your ass at risk, all the time. We call it "traffic" because we've just gotten used to it

[–] thelittleblackbird@lemmy.world 3 points 2 days ago

It is not comparable, not even by far.

Assuming your are not a psycho, to safely drive a car is orders of magnitude (in plural) easier than modifying the Sw in a safe and deterministic way.

It is not only that bad people exists, it is about that making a small mistake can kill you

[–] wreckedcarzz@lemmy.world 3 points 2 days ago (3 children)

I'm talking 'I disabled the awareness requirement of autopilot' or 'I fucked with the object detection and here goes my beta test yolo' or 'I added a button to disable all the lights so I can covertly street race' or...

[–] nBodyProblem@lemmy.world 2 points 1 day ago* (last edited 1 day ago) (1 children)

Have you never heard of tunes?

Any idiot can make substantial software changes to almost any modern car with easily available inexpensive hardware. Look up Cobb, ECUtek, openflashtablet, Hondata, etc

You literally just plug it into a port and flash the software

load more comments (1 replies)
[–] Auli@lemmy.ca 2 points 1 day ago (1 children)

And? People can already do this with most cars.

[–] wreckedcarzz@lemmy.world 2 points 1 day ago

There's a difference between 'physical work required' and 'plug in this dongle and run the exe' though

[–] MachineFab812@discuss.tchncs.de 2 points 2 days ago (1 children)

Imagine thinking Tesla has all-that-much in place to prevent those things in a stock configuration. Full-stop, any self-driving is one of the first features anyone trying to disconnect their cars from Tesla servers would lose outright.

load more comments (1 replies)
[–] Auli@lemmy.ca 1 points 1 day ago

Nothing has stopped people with ice vehicles.

load more comments (2 replies)
[–] thelittleblackbird@lemmy.world 2 points 2 days ago (2 children)

Then don't buy tesla, or force legislation about introducing such feature.

But make yourself a favor and don't play Russian roulette with something that you can not understandbecause there are not data available.

And for final tip, if you really cares about that then enforce the fsf (fsf.org)

load more comments (2 replies)
[–] Voroxpete@sh.itjust.works 8 points 2 days ago

Yeah, the potential for real hazard to life and limb is very high here. This isn't like fucking around with your IOT lightbulbs. This could kill somebody.

[–] jagged_circle@feddit.nl 10 points 2 days ago (1 children)

You're better off building an open source car. Teslas aren't complicated

load more comments (1 replies)
[–] NeoNachtwaechter@lemmy.world 9 points 2 days ago

Not in these next 4 years.

Afterwards, if judges still exist, you can try to force Tesla (with the help of judges) to allow your right to repair.

[–] brucethemoose@lemmy.world 9 points 2 days ago* (last edited 2 days ago)

A problem is volunteers and critical mass.

Open source "hacks" need a big pool of people who want something to seed a few brilliant souls to develop it in their free time. It has to be at least proportional to the problem.

This kinda makes sense for robot vacuums: a lot of people have them, and the cloud service is annoying, simpler, and not life critical.

Teslas are a whole different deal. They are very expensive, and fewer people own them. Replicating even part of the cloud API calls is a completely different scope. The pool of Tesla owners willing to dedicate their time to that is just… smaller.

Also, I think buying a Tesla, for many, was a vote of implicit trust in the company and its software. It’s harder for someone cynical of its cloud dependence to end up with an entire luxury automobile.

[–] Shimitar@downonthestreet.eu 8 points 2 days ago* (last edited 2 days ago) (1 children)

I am pretty sure it would be impossible.

That connection I expect to be secured by using signature keys that are private and would need to be released by Tesla to allow anybody connect its car to a different back end.

[–] dreadbeef@lemmy.dbzer0.com 9 points 2 days ago* (last edited 2 days ago)

And remove the need for keys to exchanged and suddenly the impossible is possible. Access to the hardware can always beat any software, it just needs wits. It has to communicate over some sort of NIC or other chip that can be desoldered and replaced with a custom firmware. Or its pins might have a Linux socket connection. Who knows how many insecure holes are there once you have access to the boards. Once you get there it, and enough people care to do it, it can be as easy as an ifixit guide away with an open source board or something, or hopefully just a flash of firmware away.

[–] lambalicious@lemmy.sdf.org 5 points 2 days ago (1 children)

Just sell the car to a derby demolition show. We all win.

[–] theneverfox@pawb.social 5 points 2 days ago (1 children)

That's wasteful and dangerous

Harvest the beast for batteries and GPUs

[–] owenfromcanada@lemmy.world 1 points 2 days ago

Then sell it to a demolition derby show.

[–] Wilco@lemm.ee 3 points 19 hours ago

It sucks that the stick is rising. Trumps asshats are actually investing.

[–] MITM0@lemmy.world 1 points 19 hours ago

What about Comma-AI ?

load more comments
view more: next ›