Zhuowei Zhang
@zhuowei.notnow.dev
Mostly bad puns. It's pronounced "joe-way". Happy to explain jokes.
he/him, opinions are my own. https://zhuoweizhang.net
Mastodon: https://notnow.dev/zhuowei
he/him, opinions are my own. https://zhuoweizhang.net
Mastodon: https://notnow.dev/zhuowei
Flash memory shortage hits the animation industry
bsky.app/profile/thev...
bsky.app/profile/thev...
Adobe Animate is shutting down next month
Adobe Animate is shutting down next month
Many creators still use Adobe Animate.
buff.ly
February 2, 2026 at 11:20 PM
Flash memory shortage hits the animation industry
bsky.app/profile/thev...
bsky.app/profile/thev...
Graydon! Graydon! It's Tony! Your cousin, Tony Hoare! You know that compile-time check you're looking for?
February 1, 2026 at 4:55 AM
Graydon! Graydon! It's Tony! Your cousin, Tony Hoare! You know that compile-time check you're looking for?
Gen Alpha smashes the stack with "gggggggggggggggggggggggggggggggggggggggggggggggggggggggggggggggg"... (0x67676767)
February 1, 2026 at 2:39 AM
Gen Alpha smashes the stack with "gggggggggggggggggggggggggggggggggggggggggggggggggggggggggggggggg"... (0x67676767)
I ported Starcruiser (my attempt at talking to a Meta Ray-Ban) to Python/Bumble.
Still doesn't work, and connecting to my Android emulator running Meta Ray-Ban firmware doesn't seem to help.
Based on the logcat, it seems the Meta Ray-Ban never reads the EnableEncryption packet. Time to run Frida..
Still doesn't work, and connecting to my Android emulator running Meta Ray-Ban firmware doesn't seem to help.
Based on the logcat, it seems the Meta Ray-Ban never reads the EnableEncryption packet. Time to run Frida..
January 31, 2026 at 8:39 PM
I ported Starcruiser (my attempt at talking to a Meta Ray-Ban) to Python/Bumble.
Still doesn't work, and connecting to my Android emulator running Meta Ray-Ban firmware doesn't seem to help.
Based on the logcat, it seems the Meta Ray-Ban never reads the EnableEncryption packet. Time to run Frida..
Still doesn't work, and connecting to my Android emulator running Meta Ray-Ban firmware doesn't seem to help.
Based on the logcat, it seems the Meta Ray-Ban never reads the EnableEncryption packet. Time to run Frida..
Thank you, GDPR, for protecting our right to amnesia plots in TV shows
(AFAIK, EU does not allow countries to store biometrics collected for national identity cards in a central database (fra.europa.eu/sites/defaul...), so shows can still have an EU citizen wake up with no memory of their name)
(AFAIK, EU does not allow countries to store biometrics collected for national identity cards in a central database (fra.europa.eu/sites/defaul...), so shows can still have an EU citizen wake up with no memory of their name)
fra.europa.eu
January 25, 2026 at 4:58 AM
Thank you, GDPR, for protecting our right to amnesia plots in TV shows
(AFAIK, EU does not allow countries to store biometrics collected for national identity cards in a central database (fra.europa.eu/sites/defaul...), so shows can still have an EU citizen wake up with no memory of their name)
(AFAIK, EU does not allow countries to store biometrics collected for national identity cards in a central database (fra.europa.eu/sites/defaul...), so shows can still have an EU citizen wake up with no memory of their name)
People who can read Chinese or Japanese, looking at GenAI output:
"Ha, ha, ha: 一"
"Ha, ha, ha: 一"
January 18, 2026 at 5:53 AM
People who can read Chinese or Japanese, looking at GenAI output:
"Ha, ha, ha: 一"
"Ha, ha, ha: 一"
WinRAR extraction shooter
January 4, 2026 at 12:02 AM
WinRAR extraction shooter
Aww, libslirp can’t be exploited by CVE-1999-0001 (OpenBSD patch), as far as I can tell after spending a month researching the CVE and a whole day testing libslirp.
www.cve.org/CVERecord?id...
github.com/openbsd/src/...
gitlab.freedesktop.org/slirp/libsli...
www.cve.org/CVERecord?id...
github.com/openbsd/src/...
gitlab.freedesktop.org/slirp/libsli...
www.cve.org
January 3, 2026 at 7:19 PM
Aww, libslirp can’t be exploited by CVE-1999-0001 (OpenBSD patch), as far as I can tell after spending a month researching the CVE and a whole day testing libslirp.
www.cve.org/CVERecord?id...
github.com/openbsd/src/...
gitlab.freedesktop.org/slirp/libsli...
www.cve.org/CVERecord?id...
github.com/openbsd/src/...
gitlab.freedesktop.org/slirp/libsli...
Waking up in a Las Vegas hotel room with no memory of what happened in 2009 that caused all movies/books/TV shows to begin with the protagonist waking up with no memory of what happened.
If I wanted in medias res I would just skip your book and read the sequel.
If I wanted in medias res I would just skip your book and read the sequel.
December 11, 2025 at 4:16 AM
Waking up in a Las Vegas hotel room with no memory of what happened in 2009 that caused all movies/books/TV shows to begin with the protagonist waking up with no memory of what happened.
If I wanted in medias res I would just skip your book and read the sequel.
If I wanted in medias res I would just skip your book and read the sequel.
"com/facebook/wearable/datax/JniHell.class"
Me too, Meta, me too
Me too, Meta, me too
December 7, 2025 at 6:03 PM
"com/facebook/wearable/datax/JniHell.class"
Me too, Meta, me too
Me too, Meta, me too
I wrote a blog post on CVE-2025-48593, an issue patched in Android's November Security Bulletin that only affected devices which act as Bluetooth headphones, such as smartwatches, smart glasses, and cars.
I examined the patch and wrote a proof-of-concept:
worthdoingbadly.com/bluetooth/
I examined the patch and wrote a proof-of-concept:
worthdoingbadly.com/bluetooth/
Proof-of-concept for CVE-2025-48593: No, this Android Bluetooth issue does NOT affect your phone or tablet
CVE-2025-48593, patched in November’s Android Security Bulletin, only affects devices that support acting as Bluetooth headphones / speakers, such as some smartwatches, smart glasses, and cars.
worthdoingbadly.com
December 2, 2025 at 1:31 AM
I wrote a blog post on CVE-2025-48593, an issue patched in Android's November Security Bulletin that only affected devices which act as Bluetooth headphones, such as smartwatches, smart glasses, and cars.
I examined the patch and wrote a proof-of-concept:
worthdoingbadly.com/bluetooth/
I examined the patch and wrote a proof-of-concept:
worthdoingbadly.com/bluetooth/
Amazing floats in the Macy Thanksgiving Parade yesterday:
-0.0, 1.1920929e-7, even 1.3211836e19!
-0.0, 1.1920929e-7, even 1.3211836e19!
November 28, 2025 at 9:37 PM
Amazing floats in the Macy Thanksgiving Parade yesterday:
-0.0, 1.1920929e-7, even 1.3211836e19!
-0.0, 1.1920929e-7, even 1.3211836e19!
Petition to replace "ARC Raiders"’s AI voice with Morshu
November 14, 2025 at 2:07 PM
Petition to replace "ARC Raiders"’s AI voice with Morshu
I wrote a proof-of-concept and writeup for CVE-2025-48593, an Android Bluetooth issue that only seems to affect devices that act as Bluetooth headsets / speakers.
(i.e. NOT phones, only smartwatches/wearables/cars. And only after pairing. So you can stop worrying.)
github.com/zhuowei/blue...
(i.e. NOT phones, only smartwatches/wearables/cars. And only after pairing. So you can stop worrying.)
github.com/zhuowei/blue...
GitHub - zhuowei/blueshrimp: Maybe a proof-of-concept for CVE-2025-48593
Maybe a proof-of-concept for CVE-2025-48593. Contribute to zhuowei/blueshrimp development by creating an account on GitHub.
github.com
November 14, 2025 at 5:25 AM
I wrote a proof-of-concept and writeup for CVE-2025-48593, an Android Bluetooth issue that only seems to affect devices that act as Bluetooth headsets / speakers.
(i.e. NOT phones, only smartwatches/wearables/cars. And only after pairing. So you can stop worrying.)
github.com/zhuowei/blue...
(i.e. NOT phones, only smartwatches/wearables/cars. And only after pairing. So you can stop worrying.)
github.com/zhuowei/blue...
Valve: Steam Machine
Microsoft: Teams Machine
Microsoft: Teams Machine
November 14, 2025 at 1:16 AM
Valve: Steam Machine
Microsoft: Teams Machine
Microsoft: Teams Machine
“You are all inside 'Half-Life 3',” Gabe Newell announces to horrified Americans as massive “Steam Frame” VR dome envelops nation
theonion.com/you-are-all-...
theonion.com/you-are-all-...
November 13, 2025 at 12:56 AM
“You are all inside 'Half-Life 3',” Gabe Newell announces to horrified Americans as massive “Steam Frame” VR dome envelops nation
theonion.com/you-are-all-...
theonion.com/you-are-all-...
Apple launches cross-body sock_seqpacket
November 11, 2025 at 2:43 PM
Apple launches cross-body sock_seqpacket
What's the least bad static site generator these days? Hugo? Docusaurus? Mdbook? Jekyll?
November 11, 2025 at 4:33 AM
What's the least bad static site generator these days? Hugo? Docusaurus? Mdbook? Jekyll?
I still have no idea how CVE-2025-48593 (the Bluetooth headphone issue) works, but now I know how to connect to the Bluetooth headphone service with Bumble, so I got that going for me, which is nice.
github.com/zhuowei/blue...
github.com/zhuowei/blue...
November 10, 2025 at 4:59 AM
I still have no idea how CVE-2025-48593 (the Bluetooth headphone issue) works, but now I know how to connect to the Bluetooth headphone service with Bumble, so I got that going for me, which is nice.
github.com/zhuowei/blue...
github.com/zhuowei/blue...
Debian GNU/kFreeDOS
November 8, 2025 at 4:07 PM
Debian GNU/kFreeDOS
Connecting Android Emulator's Bluetooth to a Linux computer, using Bumble (google.github.io/bumble/apps_...)
```
sudo modprobe hci_vhci
sudo chmod 666 /dev/vhci
python3 -m venv bumble_env
. bumble_env/bin/activate
pip3 install bumble
bumble-hci-bridge android-netsim vhci
```
for a local emulator.
```
sudo modprobe hci_vhci
sudo chmod 666 /dev/vhci
python3 -m venv bumble_env
. bumble_env/bin/activate
pip3 install bumble
bumble-hci-bridge android-netsim vhci
```
for a local emulator.
HCI Bridge - Bumble
google.github.io
November 5, 2025 at 4:42 AM
Connecting Android Emulator's Bluetooth to a Linux computer, using Bumble (google.github.io/bumble/apps_...)
```
sudo modprobe hci_vhci
sudo chmod 666 /dev/vhci
python3 -m venv bumble_env
. bumble_env/bin/activate
pip3 install bumble
bumble-hci-bridge android-netsim vhci
```
for a local emulator.
```
sudo modprobe hci_vhci
sudo chmod 666 /dev/vhci
python3 -m venv bumble_env
. bumble_env/bin/activate
pip3 install bumble
bumble-hci-bridge android-netsim vhci
```
for a local emulator.
Android November Security Bulletin's out:
source.android.com/docs/securit...
CVE-2025-48593 seems to be a Bluetooth headphone issue: android.googlesource.com/platform/pac...
CVE-2025-48581 seems to be in apexd: nvd.nist.gov/vuln/detail/...
cs.android.com/android/_/an...
source.android.com/docs/securit...
CVE-2025-48593 seems to be a Bluetooth headphone issue: android.googlesource.com/platform/pac...
CVE-2025-48581 seems to be in apexd: nvd.nist.gov/vuln/detail/...
cs.android.com/android/_/an...
Android Security Bulletin—November 2025 | Android Open Source Project
source.android.com
November 4, 2025 at 1:59 PM
Android November Security Bulletin's out:
source.android.com/docs/securit...
CVE-2025-48593 seems to be a Bluetooth headphone issue: android.googlesource.com/platform/pac...
CVE-2025-48581 seems to be in apexd: nvd.nist.gov/vuln/detail/...
cs.android.com/android/_/an...
source.android.com/docs/securit...
CVE-2025-48593 seems to be a Bluetooth headphone issue: android.googlesource.com/platform/pac...
CVE-2025-48581 seems to be in apexd: nvd.nist.gov/vuln/detail/...
cs.android.com/android/_/an...
I got a pair of Meta Ray-Ban Display glasses, and I've been trying to run its firmware in the Android Emulator:
Currently, in the emulator, the homescreen opens, just like the real device. However, most features tell me to pair with the Meta AI app, which I haven't gotten working yet.
#MetaRayban
Currently, in the emulator, the homescreen opens, just like the real device. However, most features tell me to pair with the Meta AI app, which I haven't gotten working yet.
#MetaRayban
November 1, 2025 at 11:22 PM
I got a pair of Meta Ray-Ban Display glasses, and I've been trying to run its firmware in the Android Emulator:
Currently, in the emulator, the homescreen opens, just like the real device. However, most features tell me to pair with the Meta AI app, which I haven't gotten working yet.
#MetaRayban
Currently, in the emulator, the homescreen opens, just like the real device. However, most features tell me to pair with the Meta AI app, which I haven't gotten working yet.
#MetaRayban
I'm trying to boot the Meta Ray-Ban Display's firmware in an Android Emulator.
Firmware:
drive.google.com/file/d/1Wd-A...
I got to this screen, which Android shows if you're mixing vendor and system partitions.
I just get a blank screen after this.
My script is github.com/zhuowei/meta... .
Firmware:
drive.google.com/file/d/1Wd-A...
I got to this screen, which Android shows if you're mixing vendor and system partitions.
I just get a blank screen after this.
My script is github.com/zhuowei/meta... .
November 1, 2025 at 9:46 AM
I'm trying to boot the Meta Ray-Ban Display's firmware in an Android Emulator.
Firmware:
drive.google.com/file/d/1Wd-A...
I got to this screen, which Android shows if you're mixing vendor and system partitions.
I just get a blank screen after this.
My script is github.com/zhuowei/meta... .
Firmware:
drive.google.com/file/d/1Wd-A...
I got to this screen, which Android shows if you're mixing vendor and system partitions.
I just get a blank screen after this.
My script is github.com/zhuowei/meta... .