Revisiting the Macintosh ROM Easter Egg

← Back to Stories (view on slashdot.org)

Revisiting the Macintosh ROM Easter Egg

Posted by timothy on Thursday August 23, 2012 @04:13AM from the when-engineers-play dept.

eldavojohn writes "NYCResistor has published photos of what they call 'Ghosts in the ROM' after dumping Apple Mac SE ROM images from a roadside Motorola 68000-era Macintosh and looking at all the data (they mention an Easter egg reference to this from 1999). They go into some nice detail about the strategy for extracting this data from a discarded unit and noticing structure. There's also other data that they weren't able to identify, which causes one to wonder how many other Easter eggs are lying about in various ROM chips and what modern Easter eggs must be shipping with software/hardware today."

36 of 98 comments (clear)

Min score:

Reason:

Sort:

Of course... by Darkness404 · 2012-08-23 04:19 · Score: 2

Of course there are easter eggs stored in ROMs. You only need to look as far as to video games to find long rants hidden in there (just see http://www.bretz.ca/dave/tetrisrant.htm for an example)

--
Taxation is legalized theft, no more, no less.
1. Re:Of course... by cpu6502 · 2012-08-23 04:31 · Score: 5, Interesting
  
  My first easter egg was in the old Atari console game "Adventure". If you found a hidden room and carried a magic one-pixel sprite (dot) into that room, it displayed the name of the programmer.
  Of course once Atari learned about it they had a fit because they wanted programmers to remain anonymous, and that's one of the reasons four programmers quit Atari and founded Activision. They wanted name credit for their artistic creations.
  
  --
  My AC stalker: " I personally agree with your posts most of the time, but that won't keep me from modding you troll"
Easter Egg/spyware by jaymz666 · 2012-08-23 04:24 · Score: 2

One man's easter egg can easily be another man's malware. This sounds kind of cool, until you realise there could be any number of malicious "easter eggs"
1. Re:Easter Egg/spyware by rhsanborn · 2012-08-23 04:25 · Score: 5, Insightful
  
  Let's even consider that they aren't malicious, but simply untested. It's a bunch of code that's possibly vulnerable to an exploit.
2. Re:Easter Egg/spyware by wiedzmin · 2012-08-23 04:26 · Score: 3, Interesting
  
  ikr. a little while ago there was an easter egg of a hardcoded admin username and password in some HP hardware... recently there's an easter egg of some hardcoded keys... fun fun fun.
  
  --
  Bow before me, for I am root.
3. Re:Easter Egg/spyware by Darkness404 · 2012-08-23 04:30 · Score: 5, Insightful
  
  ...So? You take this risk anytime you use closed source software (or anytime you don't view the source of an open source software program, and your compiler, etc.)
  
  How do you know your web browser right now doesn't have malware built in? After all, have you read the entire source for Firefox/Chrome/Safari/Internet Explorer/Opera for the exact version you are using?
  
  --
  Taxation is legalized theft, no more, no less.
4. Re:Easter Egg/spyware by BenJury · 2012-08-23 05:29 · Score: 4, Insightful
  
  It's a shame isn't it? We have to forgo these fun little tit-bits for these sorts of issues.
  
  --
  Blatant Advert: Android Apps!
5. Re:Easter Egg/spyware by John+Hasler · 2012-08-23 05:32 · Score: 2
  
  > How do you know your web browser right now doesn't have
  > malware built in? After all, have you read the entire source
  > for Firefox...?
  No, but many others have, and many, many others, including me, have the opportunity to do so. This makes embedding malware in it impractical.
  
  --
  Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.
6. Re:Easter Egg/spyware by thorntonmark · 2012-08-23 06:10 · Score: 3, Insightful
  
  http://scienceblogs.com/goodmath/2007/04/15/strange-loops-dennis-ritchie-a/
7. Re:Easter Egg/spyware by Gr8Apes · 2012-08-23 06:27 · Score: 2
  
  Yep, recall the maze in Excel? How much bloat did that add to Excel?
  
  --
  The cesspool just got a check and balance.
8. Re:Easter Egg/spyware by firewrought · 2012-08-23 06:53 · Score: 4, Interesting
  
  One man's easter egg can easily be another man's malware. This sounds kind of cool, until you realise there could be any number of malicious "easter eggs".
  Um, no. Easter eggs and malware are completely separate camps. By the time you hit upon an easter egg, you've already committed to trusting a progammer's intentions and work quality. Discovering he or she has a sense of humor too does not cause injury to you. By the same token, a virus is a virus, even if it plays a cute animation.
  While you imply that we should regard easter eggs with a certain suspicion, I gather what's really making you uncomfortable is the fact that there's hidden functionality in that binary you're running. Guess what... easter eggs or not, most software is loaded with hidden functionality: easter eggs, diagnostic functions, test code, old screens, unused modules, compatibility modes, experimental features, platform-specific and customer-specific hacks, and, yes, sometimes malware. Easter eggs have merely made you reexamine some false assumptions you had.
  
  --
  -1, Too Many Layers Of Abstraction
9. Re:Easter Egg/spyware by jaymz666 · 2012-08-23 07:00 · Score: 2
  
  The early cases of spyware, in Bonzi Buddy and Gator, could certainly be considered easter eggs.
10. Re:Easter Egg/spyware by iampiti · 2012-08-23 07:25 · Score: 2
  
  In some old CPUs (Z80 maybe?) some illegal opcodes were discovered to have interesting side effects. Thus, programmers started using them as regular instructions.
  It goes without saying that they had to be implemented exactly the same way in later revisions (o compatible versions) of the CPUs.
11. Re:Easter Egg/spyware by Luyseyal · 2012-08-23 07:28 · Score: 3, Informative
  
  How about an entire flight simulator easter egg?
  -l
  
  --
  Help cure AIDS, cancer, and more. Donate your unused computer time to worldcommunitygrid.org. Join Team Slashdot!
12. Re:Easter Egg/spyware by hairyfeet · 2012-08-23 09:47 · Score: 4, Insightful
  
  Oh bullshit. Did everyone forget the Quake 3 malware that sat in the repos for a year and a fricking half? For something that is INSANELY popular like Firefox then MAYBE, just maybe, you've had a couple of dozen guys that aren't the actual devs look at the thing. For the rest, the bazillion little packages that make up your average distro that nobody ever seems to even think about until it breaks? Not a chance. Tell me have YOU gone through the FF source code? How about the Libre Office source? If the answer is no then WTF makes you think anybody else has?
  Just because something CAN be done does not mean it HAS been done, there is a difference. Finally have you looked at some of the source for the obfuscated C contest entries? With that you know ahead of time there is malware in it yet many devs here would be hard pressed to find it, so what makes you think that on code where nobody knows if it has or hasn't and aren't expecting to find anything nasty that you or anyone else would spot the bug if it were obfuscated and hidden among a half a million lines of code?
  
  --
  ACs don't waste your time replying, your posts are never seen by me.
13. Re:Easter Egg/spyware by keytoe · 2012-08-23 09:50 · Score: 2
  
  One man's easter egg can easily be another man's malware. This sounds kind of cool, until you realise there could be any number of malicious "easter eggs"
  If you want to start from the 'unexpected code' position, then the difference between an easter egg and malware is solely based on intent.
  For mine - I had to rewrite some software that handled magnetic card reader hardware for a POS system. We were transitioning to a completely different OS, but I had the original source to use as a template. The old code had an easter egg in it, so as an homage to the original developer I made sure the new version did as well.
  Whenever you swiped a CostCo membership card, instead of playing the stock failure audio tone it would play a short recording of his dog barking.
  
  --
  Culture is more than commerce
Decline of Easter Eggs by AnotherAnonymousUser · 2012-08-23 04:25 · Score: 3, Insightful

In the increasingly litigious world of software, it seemed like a lot of Easter eggs disappeared from operating systems and from business software. Software became professional and had less use for a sense of humor, undocumented code became a possible liability, and it seems to be looked upon a little more as having no place in the business world. Which is said, I think.
1. Re:Decline of Easter Eggs by geekoid · 2012-08-23 04:42 · Score: 3, Insightful
  
  Code is getting a lot more complex. When it's 4 people putting a game together? then you can stick an Easter egg and all laugh about it. when its 20 developers, 12 QA people, and a few million lines of code? it because an addition thing to manage.
  TO answer your question:
  I often out Easter eggs in my code, but I do most my work on my own.
  Also, jokes.
  
  --
  The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
*cracks whip* by fuzzyfuzzyfungus · 2012-08-23 04:25 · Score: 2

If you have time for easter eggs, you clearly aren't coding hard enough; and if the product has space for easter eggs, we clearly haven't shaved the BOM hard enough!
I expect this nonsense to be gone in revision B, no matter how many nights and weekends it takes!
Chips come in power of 2 sizes by tepples · 2012-08-23 04:35 · Score: 2

if the product has space for easter eggs, we clearly haven't shaved the BOM hard enough!
Say you have a program that fits in the first 412 KiB of a 512 KiB chip. No, it wouldn't be possible to trim that down to 256 KiB, the next smaller chip, on the provided budget. What else should the developers put into the unused space?
1. Re:Chips come in power of 2 sizes by Anonymous Coward · 2012-08-23 04:38 · Score: 3, Funny
  
  What else should the developers put into the unused space?
  A compression routine that would allow the machine code to fit in the 256kb to begin with?
2. Re:Chips come in power of 2 sizes by tepples · 2012-08-23 04:44 · Score: 4, Informative
  
  A compression routine that would allow the machine code to fit in the 256kb to begin with?
  The ROMs of old world Macs were execute-in-place, meaning they didn't need to be copied to RAM first. Adding compression would require 412 KiB of RAM to hold the decompressed machine code. At the time, that was considered a huge chunk of RAM for a computer like the Mac.
we made it, commodore f*cked it up by cathector · 2012-08-23 04:40 · Score: 4, Interesting

my favorite easter egg was in the early amiga 'rom' (kickstart) -
if you held down both shift keys, both ctrl keys, one of the function keys, then inserted a floppy disk,
the screen would briefly flash "the amiga - we made it, commodore fucked it up'.
1. Re:we made it, commodore f*cked it up by cathector · 2012-08-23 05:35 · Score: 2
  
  i'm speaking from experience.
  this would have been in kickstart 1.1 or possibly even 1.0,
  it was taken out of later editions of kickstart.
  also it flashed very quickly, which perhaps might lead to some confusion as to whether it was real or not.
  to get it to stay up for even a second i had to launch a bunch of background tasks to slow the whole machine down.
2. Re:we made it, commodore f*cked it up by Anonymous Coward · 2012-08-23 05:54 · Score: 3, Informative
  
  It's genuine and in Workbench 1.2.
  LShift-RShift-LAlt-RAlt-ejectdisk-F1 prints "The Amiga, Born a Champion"
  LShift-RShift-LAlt-RAlt-insertdisk-F1 prints "We made Amiga, They fucked it up"
  In Workbench 1.3, Commodore changed the latter message to "Still a Champion"
Re:These days we call them "backdoors" by geekoid · 2012-08-23 04:44 · Score: 2

Backdoor and easter eggs are different things, and they have both always been around as long as computers have been around.

--
The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
Apple ][ easter egg by v1 · 2012-08-23 04:48 · Score: 3, Interesting

I recall on my //c I could type "VERIFY" (with no filename, or with no DOS booted) and it would return
COPYRIGHT (C) 1984 APPLE COMPUTER (beep!)
I heard a rumor, I'm not sure if it was urban legend or real, that some company pirated apple's rom into their apple 2 clone and it went to court. And in court, they had brought in a clone computer that was "not infringing" and the prosecution asked them to type "VERIFY" and hit return. The message that displayed on their machine closed the case.
Anyone know if that really happened?

--
I work for the Department of Redundancy Department.
1. Re:Apple ][ easter egg by Dwedit · 2012-08-23 05:10 · Score: 3, Interesting
  
  Tried that on an emulator in several different modes.
  Nothing but "?SYNTAX ERROR"s all around.
  Do you have any evidence that this command is real?
2. Re:Apple ][ easter egg by AttyBobDobalina · 2012-08-23 05:43 · Score: 3, Informative
  
  Could this be what you are recalling? http://www.folklore.org/StoryView.py?project=Macintosh&story=Stolen_From_Apple.txt&characters=Steve%20Capps&sortOrder=Sort%20by%20Date&detail=high&showcomments=1
3. Re:Apple ][ easter egg by tlhIngan · 2012-08-23 07:32 · Score: 3, Informative
  
  I heard a rumor, I'm not sure if it was urban legend or real, that some company pirated apple's rom into their apple 2 clone and it went to court. And in court, they had brought in a clone computer that was "not infringing" and the prosecution asked them to type "VERIFY" and hit return. The message that displayed on their machine closed the case.
  Anyone know if that really happened?
  It's true, but not quite that cut-and-dried.
  It was Apple Computer v. Franklin Computer (yes the Franklin of "spelling ace" and other handheld device fame).
  Basically, because the Apple II schematics were in the box, Franklin claimed they could build a clone and use Apple's software, which existed only as machine-readable binary (the copyright of which was unknown). That one case basically locked down the status of object code being copyrightable.
  Bell and Howell however obtained a license from Apple to clone it.
4. Re:Apple ][ easter egg by v1 · 2012-08-23 08:33 · Score: 2
  
  Tried that on an emulator in several different modes.
  Nothing but "?SYNTAX ERROR"s all around.
  Do you have any evidence that this command is real?
  Minor brainfart on my part. It wasn't in the ROM, this was the DOS (3.2) that did it. It was a DOS intercepted command, "VERIFY", to read all blocks from a file to verify it. (mostly useless) If typed without any filename supplied, it would display the above message. It was a copyright message from the DOS, not the BASIC ROM. my bad there. It's been awhile ;)
  They had their DOS copied by several companies. (FastDisk One was my personal favorite, and it WAS fast) At one point I managed to decompile it and got the source code into merlin pro assembler and was able to mod and recompile it. Beagle Bros also provided some function similar to that, I think in their DoubleTake and DBug software, patching the keyboard intercept vector to add functionality. Amazing what they managed to pull off with DBug. (I owned 23 of their titles, most of them! good stuff!) Ahhh the good ol days. Sometimes I wish I knew a fifth as much about my current computer as I knew about my //c back then... and if you're seriously questioning if any of this is real, you can just 3D0G outa here ;)
  
  --
  I work for the Department of Redundancy Department.
Re:Research? by Impy+the+Impiuos+Imp · 2012-08-23 04:55 · Score: 3, Interesting

The comments at TFA point out how you know you're old when your common knowledge is someone else's hacker archaeological project.
Isaac Asimov's prediction in Foundation may prove true -- in there scientists (at least 30 kiloyears in the future) argue about the validiy of the "millenial depth" theory, that you only needed to delve into the past 1000 years of history or science papers, and that if it wasn't talked about there, it wouldn't be any further back.
As to the hidden malware issue, read the prologue of Vernor Vinge's A Fire Upon the Deep. It's readable on Amazon (except page 4 for some odd reason). There's some, literally, galactic-class malware hidden in static data.

--
(-1: Post disagrees with my already-settled worldview) is not a valid mod option.
Re:Research? by Zadaz · 2012-08-23 05:05 · Score: 5, Insightful

Christ, what an asshole.
Yes, this was known. But the process of pulling them off the ROMs yourself? Documenting the process? Yeah, no one was kind enough to wrap all that up in one place. It's a fun read and if you're not careful even you, Mighty Internet Commenter, might learn something.
Shut the hell up and contribute. Bitching gets no one anywhere.
Re:Long long ago by hey0you0guy · 2012-08-23 05:15 · Score: 3, Informative

http://www.apologeticspress.org/apcontent.aspx?category=13&article=925
I'll admit to mine... by respice · 2012-08-23 06:26 · Score: 3, Interesting

I'm a tech writer, and years ago, on a project, I had a dialog box in a project that had a bunch of tabs. In the help, I put screenshots of each tab. If you were looking at the help for tab "A" and clicked on tab "B," "C," D," etc. in the project, the help for that page would come up, and the screenshots were aligned with one another. Anyway, if you clicked the "Help" button in the screenshot on one and only one of the tabs (in the help, mind you), we jumped to a new page with a picture of the entire doc team and our names. The head of the doc team knew - he was even in the picture - but I don't think anyone else in management knew. There was one SE who knew, and she used to demonstrate it for easily-amused customers.

Now who else will admit to their Easter Eggs?
Re:lots of chips had images on them by gasmasher · 2012-08-23 07:21 · Score: 3, Informative

You are probably thinking of the Silicon Zoo. Fun site.