ok, so i am still trying to make the adjustment from cooking on the wizard.. anyway on the wizard we were able to use a program called Typho5.exe to break apart the nbf files into several NB files, such as GSM.nb for the radio, OS.nb for the OS, etc... Then we were able to use nb2nbf wizard to package it all back up into a single NB file that was ready for flashing... IS THIS YET POSSIBLE on the hermes? i would really like to start cooking up some stuff on these things...
If missed this somewhere please feel free to smack me around a few times!
Its my impression that Hermes uses encrypted nbh files and won't accept nbf. They get decrypted on the fly on the hermes itself (which is why flashing takes so long) by the bootloader. We need to break this encryption to begin cooking hermes ROMS. At any rate, we can't break out the nbh information b/c it's encrypted. The only thing that's been broken out so far is imgfs which contains some of the WM based ROM components. pof can fill you in on the current state of this project I believe. He s/b back next week sometime.
What I do know is that the bootloader only loads information that has been signed correctly. I believe the current efforts are towards creating a bootloader that runs on a different cert (this is how imei-check does their unlocker), or removing the cert requirements altogether so the bootloader will simply accept a standard nbf format. Here's more info for you:
http://forum.xda-developers.com/showthread.php?t=274320
thanks slueth! I will keep an eye out for a solution... I think right now i would be content if i could find a way to flash the 1.20 radio on my 1.06 bootloader
That's (somewhat) easy. Downgrade to the 1.30 Cingular ROM on this site which has the 1.04 bootloader. Then unlock & SuperCID with pof's solution. Then you s/b able to upgrade back to v1.34 Cingular ROM (or try the TyTN 1.35) followed by flashing the 1.20 radio.
Of course, you'll lose your data, but as a wizard ROM cooker you're no doubt used to that
Be careful though! Hermes ROMs take 20-25 minutes to flash so you've got to have a rock solid USB connection on a computer that's doing nothing else for the duration of the exercise...
i have been through all of that already... i downgraded to the 1.04 ran the cid/sim unlock via the latest version. then flashed the radio rom just to make sure it all worked with no problem. Then flashed the latest cingular rom with bootloaded 1.06, then tried to flash the 1.20 radio, but it acts like its going to start, i get the status screen but it stays at 0% for 5 minutes then errors out and says its not for my phone...
ok, so im an idiot.. barrydavisjr set me straight... im cool on the radio deal now
To extract *.nb from NBH use nbh2dbh.pl and dbhdecode.pl as pointed on the wiki (NBH format page).
You'll get all the rom parts in *.nb, you'll need to modify dbhdecode for the hermes like this:
Code:
my %hdrtypes= (
0x100 => "IPL",
0x200 => "SPL",
0x300 => "GSM",
0x700 => "ExtRom",
0x600 => "MainSplash",
0x601 => "SubSplash",
0x400 => "OS",
);
To make an NBH out of *.nb files, you just need to do the inverse process (pack) but you'll not be able to sign it with a valid cert, so the bootloader will not allow you to flash it. As sleuth pointed out, a "patched" or modified SPL will allow you to flash unsigned or self-signed code... but this will still take some time.
Only radio can be converted the way you say, from NB to NBF and flash it if you have bootloader 1.04, on newer bootloaders this is not possible.
Related
Regardless of CID lock, bootloader version, etc.
This tool allow to flash your Hermes ROM bypassing CID and signature(*) check.
For flashing ROM copy SSPL-HERM.exe to your device and run it. Standart bootloader prompt should appear on screen, check SPL version number: if it ends with ".ds" then everything is fine. (Re)attach usb cable and run firmware update utility.
In case if something goes wrong during flashing you should flash your device with ROM accepted by standard bootloader (and have another try if you wish).
(*) code must be formally signed i.e. contain properly-formated signatures on their places, however no checking are performed against them. Actualy unsigned code flashing was tested by flashing original signed nbh image with few bytes in header and extrom section modified, but patches were designed to accept any properly formatted crap as a valid signature.
If you feel yourself as an advanced user and going to do things more complex than described above - read readme.txt before doing them !
Sticky!
great tool thanks a lot!
but i already have spl 1.01.
that is pretty cool!
could you provide us with the sourcecode?
Do the boot loader limitations still exist using this method i.e. can radio boot loaders be overwritten using this method?
aadadams said:
Do the boot loader limitations still exist using this method i.e. can radio boot loaders be overwritten using this method?
Click to expand...
Click to collapse
YES, i will post instructions in wiki later.... radio bootloader 0108 is not a problem anymore, we can flash radios in NBH with this
dutty said:
could you provide us with the sourcecode?
Click to expand...
Click to collapse
Sorry but no. Reason is simple - util was done offhand so code is crap. It is definitely not in the style I used to code to and it would be shameful for me to release it to public. However main idea is clearly described in readme and code itself is small enough to disassemble for details.
Do the boot loader limitations still exist
Click to expand...
Click to collapse
Better to ask pof cause I don't know hermes speciefic details. This util in whole is 1.09 SPL modified to be SuperCID on any device and accept unsigned (wrong-signed to be more correct) code. If there are additional limitations - they can be removed too. But firstly they must be figured out.
So, if I want to flash the cingular 1008 radio, I can do so without worry? Now, should I flash the radio by using this program, or can I just flash it 'normally' and still be able to use this program to go to the Trinity radio if/when that works?
SSPL doesn't rely on bl versions in your rom. While you can run executable from Win CE with trustlevel=2 (by default on PPC) you can use this program.
can this be used to somehow overwrite the radio boot loader? (as in not just flashing any radio rom, but flash the radio boot loader to a pre 0108?)
funks said:
can this be used to somehow overwrite the radio boot loader? (as in not just flashing any radio rom, but flash the radio boot loader to a pre 0108?)
Click to expand...
Click to collapse
No, if your radio bootloader is 0108 it will keep 0108 and won't be downgraded, but you can use it to flash any radio rom in NBH format, so radio bootloader 0108 is not a limitation anymore.
Will this amazing tool be useful in my post December X01HT phone?I am not super CIDed or Unlocked at all.I just wanted to install english ROM in my phone.
Yes it will be useful, wait a few hours and I will publish hermes unlocker v3 which will work on your post dec-2nd X01HT phone and any other Hermes no matter which bootloader version
You are great pof!And thanks to Des ,too.Waiting for your excellent v3 release.
...good times.
Hi
Now, if it is possible to start bootloader from running OS, is it possible to implement such things like dumping ROM to the microsd ?
This would be a great break through and it would possible to grab new OS (like x-bow)
scorpio16v said:
Hi Now, if it is possible to start bootloader from running OS, is it possible to implement such things like dumping ROM to the microsd ?
Click to expand...
Click to collapse
If this feature is implemented in spl but locked somehow then yes. If it is not implemented then in theory "yes" but in practice it would be simplier to write direct flash reader running from os than implementing that reader in bootloader.
Des, thanks for this tool!!!
Only one question, is there any tool to transform from .NB extracted ROM to .NBH signed (with anything) format?
And now onto heavy learning of ROM cooking, to start getting some worthwhile Hermes ROM updates, hopefully either AKU3.5 or Crossbow if possible...
In the last month, so much has changed for the Hermes, which is a much welcomed change though!
Thanks Des & Pof (as always) for all you massive efforts.
Brilliant work mate, I salute you! Bring on the homebrew cooking .
Does anyone know how to upgrade Radio 1.27 to 1.35 without getting BL 1.07 changed to BL 1.08??
There is no way. But then, why do you care what radio BL you have?
I just like having all possibilities of upgrading Hermes components back and forth. I am aware of Des's SSPL tool, but you need to be in Windows Mobile to use it.
However, I saw an interesting post where Izzard-UK managed to burn the OS.nbh from the Micro SD, it is probably possible to do the Radio and ExtrRom using some sort of file that will tell it which location to start Writing.
It looks like soon we will have have cleverer and more powerful tools.
Well, the technique for microSD loading of an nbh image is not new. I would say that if you can get bl 1.01MFG loaded then you're pretty much good to go with the sspl solution.
My Radio 1.35.00.11 upgrade failed with 114 Error and now Hermes starts in Bootloader mode.
What could go wrong and what to do?
I'm now running update again to see if it fails again or not.
I had XDA Live 0.10 + Radio 1.18, Bootloader 1.01 MFG as far as I remember.
@schriss: you need to go into bl with mtty & issue the following commands:
set 14 0
task 8
the first command sets the boot flag from "boot to BL" back to "Boot to OS"
the second command resets your hermes
This is the problem you would see if you were using a .nbf upgrader instead of an sppl upgrader. Bl 1.01MFG is missing commands and causes an abort.
However, sspl executes its own bl which is v1.09.
When you were doing the upgrade, when the RUU put your device in tri-color mode, what bl version was displayed?
Sleuth255 said:
@schriss: you need to go into bl with mtty & issue the following commands:
set 14 0
task 8
the first command sets the boot flag from "boot to BL" back to "Boot to OS"
the second command resets your hermes
This is the problem you would see if you were using a .nbf upgrader instead of an sppl upgrader. Bl 1.01MFG is missing commands and causes an abort.
However, sspl executes its own bl which is v1.09.
When you were doing the upgrade, when the RUU put your device in tri-color mode, what bl version was displayed?
Click to expand...
Click to collapse
I don't remember what was displayed, but you are right, I didn't use sppl upgrader because the link was broken and there was only one upgrade on FTP.
I've taken time and read WiKi and almost started flashing BL 1.04 hoping that it could let me run the upgrade again successfully - would that work?
I'm on mtty now trying your commands...
EDIT: That's the link that didn't work: ftp://xda:[email protected](GPS-Enabled)Trinity2Hermes-SSPL-comp.zip it's on GPS Driver first page.
EDIT2: Set 14 0 command helped, THANKS!
All radio-only links are still in the Wiki. The 1.35.00.11 link is still good there in the shipped radio only upgrades section. I'll check the GPS page & fix... The valid wiki link points to this file.
BL1.04 won't work if your radio is already using bl0108. Best to just use sspl and not worry about it.
Sleuth255 said:
There is no way. But then, why do you care what radio BL you have?
Click to expand...
Click to collapse
You mean even if we flash radio 1.27..00 with the newest 1.35.11 using sspl method, radiobootloader bl0107 will change to bl0108.
if this true why we should upgrade 1.27.00 to 1.35.11 and loose the ability to flash extracted radios in nbf format?
IIRC, you will loose the ability to enter some radio bootloader commands if you go to bl0108 with sspl. OTOH, you will gain the ability to use the latest radio ROMs for your device if you go the sspl route (since they are all bl0108 from 1.27 on). Those are the tradeoffs IMO.
I was in the Wiki looking around for various "task" commands when you are the in bootloader using TTY but I don't see anything outline the list of commands (e.g. task 32, task 8, etc...).
I thought may be there will be specific command to get the version of the Radio Bootloader from TTY.
Nevermind, I needed to dig deeper
I was in the same dilemma whether to use radio v1.27 or v1.35.
After much thinking, I decide to stick to radio v1.27 with HTC boot 0107.
I've done a bit of digging and it seems there really isn't much difference between the radio bootloader commands available in 0108 and 0107. I was mistaken. I was thinking about the Trinity Bootloader that was missing the commands that got you into the Radio bootloader AT interface...
So, bottom line IMO is there is no good reason to stick with an 0107 Radio bootloader. All the most current radios have the 0108 bl and with sspl, it's trivial to switch to any radio you want.
Sleuth,
Since this radio rom is GPS enabled, have you found that it uses more battery power compared to the 1.34 version? Or are the GPS chips always on anyway?
It doesn't use any more power unless an "[email protected]" command is issued to turn on the GPS radio. The only program that can do this on a hermes is superdave's VRSerial driver which you must install seperately.
How is the radio 1.35.00.11 compare with Radio 1.34.00.10??
Will it be better?
Sleuth255 said:
I've done a bit of digging and it seems there really isn't much difference between the radio bootloader commands available in 0108 and 0107. I was mistaken. I was thinking about the Trinity Bootloader that was missing the commands that got you into the Radio bootloader AT interface...
So, bottom line IMO is there is no good reason to stick with an 0107 Radio bootloader. All the most current radios have the 0108 bl and with sspl, it's trivial to switch to any radio you want.
Click to expand...
Click to collapse
my only concern is if the 1.35 rom is not as reliable/stable as the 1.20 rom i am using now, i am unable to go back since there is no SSPL radio for 1.20. The only versions i see in the wiki is 1.27, 1.34, 1.35
I updated my TyTN with the AKU 3.3 full update (OS, ExtROM, Radio 1.34 and the works).
Now I want to upgrade the radio to 1.35, since I have some connection problems, but wasn't it so that you couldn't do radio extracted rom only upgrades due to some reason?
Or can it be done with Des's SSPL bootloader?
[edit]
Never mind, found the answer and now running 1.35 Radio
[/edit]
@joej: its easy enough to make one for yourself from any Full NBH that has that radio. Table in Wiki will tell you which.
Welp, after one day with 1.35 radio I've decided to revert it back to 1.27. I've found that this 1.35 version is even worse than 1.34. The line has dropped (voice) 4-6 times / 1 hour talk.
I drive by car 2h/day the same route so there shouldn't be much difference between the signal quality along the way.
I have been reading all across the forums how to CID unlock, upgrade etc. However, I am not able to find the ways to do seeminly essential homework before trying to upgrade. These for me are:-
* Finding a way to completely backup all the stuff from original tytn. Like ROM, SPL, IPL, Radio, CIDlock etc. I feel that this is important as if ever I feel like going to the tried old one I should be able to and to preserve the warranty also. Also, the method to roll back if needed. This should be covering re CID locking the phone etc.
It makes sense to create a way to bring the phone to its completlely original shape if we need it
Thanks
Alber
alber786 said:
I have been reading all across the forums how to CID unlock, upgrade etc. However, I am not able to find the ways to do seeminly essential homework before trying to upgrade. These for me are:-
* Finding a way to completely backup all the stuff from original tytn. Like ROM, SPL, IPL, Radio, CIDlock etc. I feel that this is important as if ever I feel like going to the tried old one I should be able to and to preserve the warranty also. Also, the method to roll back if needed. This should be covering re CID locking the phone etc.
It makes sense to create a way to bring the phone to its completlely original shape if we need it
Thanks
Alber
Click to expand...
Click to collapse
You do not need to back up your spl, ipl, etc. because if you need to roll back you can just reflash them on, and they can be found around here and in the wiki.
You cannot un-CIDunlock, but if you use hardspl v7 it will "trick" your phone into thinking it is (when in reality it isnt) so that you do not have to actually unlock it. If you ever need to send it in you can just flash the old spl over it.
mcorrie1121 said:
You do not need to back up your spl, ipl, etc. because if you need to roll back you can just reflash them on, and they can be found around here and in the wiki.
You cannot un-CIDunlock, but if you use hardspl v7 it will "trick" your phone into thinking it is (when in reality it isnt) so that you do not have to actually unlock it. If you ever need to send it in you can just flash the old spl over it.
Click to expand...
Click to collapse
So you mean that hardspl doesnt CID unlock it? But isnt there really a way to extract the original components and then put them back again ?
thanks
Alber
alber786 said:
So you mean that hardspl doesnt CID unlock it? But isnt there really a way to extract the original components and then put them back again ?
thanks
Alber
Click to expand...
Click to collapse
HardSPL does not CID unlock. pof's Free Unlocker (a sticky thread) does the SIM and CID unlocking. HardSPL is a new set of bootloaders allowing upgrade utilities to access and read/write to the phone. The most important aspect of this (besides bypassing the CID check) is the security - it has some overwrite protection built in to prevent you from accidentally corrupting the bootloader area, rendering your phone a brick. HardSPL is a safety measure.
If you check THE WIKI here on xda for the Hermes, you will find some stuff on extracting. It is most probable that it will be FAR easier to find new versions of everything you have, rather than trying to back up and restore. The wiki contains MANY shipped ROMs to allow you to restore back to basically the original condition. LOOK HERE for MW5 shipped ROMs and LOOK HERE for WM6 shipped ROMs.
todd_jg said:
HardSPL does not CID unlock. pof's Free Unlocker (a sticky thread) does the SIM and CID unlocking. HardSPL is a new set of bootloaders allowing upgrade utilities to access and read/write to the phone. The most important aspect of this (besides bypassing the CID check) is the security - it has some overwrite protection built in to prevent you from accidentally corrupting the bootloader area, rendering your phone a brick. HardSPL is a safety measure.
If you check THE WIKI here on xda for the Hermes, you will find some stuff on extracting. It is most probable that it will be FAR easier to find new versions of everything you have, rather than trying to back up and restore. The wiki contains MANY shipped ROMs to allow you to restore back to basically the original condition. LOOK HERE for MW5 shipped ROMs and LOOK HERE for WM6 shipped ROMs.
Click to expand...
Click to collapse
what about the radio upgrade
the htc108 thing
its confusing
on pof's sticky it says to downgrade the radio if u have the htc 108..
but on the radio upgrade sticky, it says u can upgrade any phone[hermes] using custom ruu..
todd_jg said:
HardSPL does not CID unlock. pof's Free Unlocker (a sticky thread) does the SIM and CID unlocking. HardSPL is a new set of bootloaders allowing upgrade utilities to access and read/write to the phone. The most important aspect of this (besides bypassing the CID check) is the security - it has some overwrite protection built in to prevent you from accidentally corrupting the bootloader area, rendering your phone a brick. HardSPL is a safety measure.
If you check THE WIKI here on xda for the Hermes, you will find some stuff on extracting. It is most probable that it will be FAR easier to find new versions of everything you have, rather than trying to back up and restore. The wiki contains MANY shipped ROMs to allow you to restore back to basically the original condition. LOOK HERE for MW5 shipped ROMs and LOOK HERE for WM6 shipped ROMs.
Click to expand...
Click to collapse
Thanks a lot for the reply, I appreciate the time you spent in expaining this to me and providing these links.
I was wondering if HARDSPL is like shelltool where it will only allow upgrade or flashing of OS part. So, once I use the HARDSPL and flash say HTC official WM6 release or Dopod WM6, will I be ableto to get the bundled radio and SPL and IPL upgrades from these ROMS? and if yes then will HARDSPL get replaced by these SPLs and IPLs built into the ROMS? One more thing, will an upgrade like that can brick the phone as if I rum the official ROM it will try to upgrade the SPL and IPL (I am not sure).
What is the preferred way of upgrading ? unlocking CID by the tool or HARDSPL ?
I have read somewhere that lockwiz tool used for Wizard can save CID also and some tool and put it back also but I dont know how and if the same tool can do it for hermes?
Regards,
Alber
alber786 said:
Thanks a lot for the reply, I appreciate the time you spent in expaining this to me and providing these links.
I was wondering if HARDSPL is like shelltool where it will only allow upgrade or flashing of OS part. So, once I use the HARDSPL and flash say HTC official WM6 release or Dopod WM6, will I be ableto to get the bundled radio and SPL and IPL upgrades from these ROMS? and if yes then will HARDSPL get replaced by these SPLs and IPLs built into the ROMS? One more thing, will an upgrade like that can brick the phone as if I rum the official ROM it will try to upgrade the SPL and IPL (I am not sure).
What is the preferred way of upgrading ? unlocking CID by the tool or HARDSPL ?
I have read somewhere that lockwiz tool used for Wizard can save CID also and some tool and put it back also but I dont know how and if the same tool can do it for hermes?
Regards,
Alber
Click to expand...
Click to collapse
Most cooked roms are os only, but a few have a radio, etc. included. If its os only, flashing will only change the os. You can separately flash radio.
Hardspl is the best because its reversible. Well thats not the best word to describe it....id say because its not permanent. But u know what i mean
alber786 said:
Thanks a lot for the reply, I appreciate the time you spent in expaining this to me and providing these links.
I was wondering if HARDSPL is like shelltool where it will only allow upgrade or flashing of OS part. So, once I use the HARDSPL and flash say HTC official WM6 release or Dopod WM6, will I be ableto to get the bundled radio and SPL and IPL upgrades from these ROMS? and if yes then will HARDSPL get replaced by these SPLs and IPLs built into the ROMS? One more thing, will an upgrade like that can brick the phone as if I rum the official ROM it will try to upgrade the SPL and IPL (I am not sure).
What is the preferred way of upgrading ? unlocking CID by the tool or HARDSPL ?
I have read somewhere that lockwiz tool used for Wizard can save CID also and some tool and put it back also but I dont know how and if the same tool can do it for hermes?
Regards,
Alber
Click to expand...
Click to collapse
Mcorrie1121 is right. I will add a couple of things.
1. HardSPL is not *necessary* for flashing anything, it only makes it safer and allows you to flash ROMs with CIDs that do not match your device without CID unlocking. Your ROM is basically a few parts - OS, Radio, IPL, SPL, ExtROM, MainSplash and SubSplash. The HardSPL will replace the SPL only. Most non-carrier ROM releases are OS only. Most carrier ROMs (as you pointed out) have ALL of these things. As Mcorrie1121 pointed out, you can easily find a radio - check the wiki, search, etc.
2. Once you have upgraded to a cooked ROM (and HardSPL), you will still be able to upgrade to a Shipped Official ROM. You may need to "unpack" it and use the CustomRUU instead of the shipped updater. That is OK though.
3. HardSPL will not allow overwriting of the IPL/SPL except by another HardSPL (see mrvanx.org downgrade guides). You will not have a problem. It will keep your bootloader zone safe.
4. I don't think there is a preferred way. Some people unlock CID, others do not. There is no reason to *not* unlock it, unless you plan to send it back - and I have never heard of someone getting service rejected for this reason. Wring ROM, yes. CID unlocked, no. That said, maybe try without CID unlocking first and then if you find you need to do it for some reason, then do it. You really do not have to do it, since the Custom Updater bypasses the CID check anyway.
5. Regarding the 0108 Radio BL issue, don't worry much about that - it is an old problem. Just don't go below whatever version you have now.
todd_jg said:
Mcorrie1121 is right. I will add a couple of things.
1. HardSPL is not *necessary* for flashing anything, it only makes it safer and allows you to flash ROMs with CIDs that do not match your device without CID unlocking. Your ROM is basically a few parts - OS, Radio, IPL, SPL, ExtROM, MainSplash and SubSplash. The HardSPL will replace the SPL only. Most non-carrier ROM releases are OS only. Most carrier ROMs (as you pointed out) have ALL of these things. As Mcorrie1121 pointed out, you can easily find a radio - check the wiki, search, etc.
2. Once you have upgraded to a cooked ROM (and HardSPL), you will still be able to upgrade to a Shipped Official ROM. You may need to "unpack" it and use the CustomRUU instead of the shipped updater. That is OK though.
3. HardSPL will not allow overwriting of the IPL/SPL except by another HardSPL (see mrvanx.org downgrade guides). You will not have a problem. It will keep your bootloader zone safe.
4. I don't think there is a preferred way. Some people unlock CID, others do not. There is no reason to *not* unlock it, unless you plan to send it back - and I have never heard of someone getting service rejected for this reason. Wring ROM, yes. CID unlocked, no. That said, maybe try without CID unlocking first and then if you find you need to do it for some reason, then do it. You really do not have to do it, since the Custom Updater bypasses the CID check anyway.
5. Regarding the 0108 Radio BL issue, don't worry much about that - it is an old problem. Just don't go below whatever version you have now.
Click to expand...
Click to collapse
Thanks, I appreciate your help. Please tell me if I can put back WM5 back on it after upgrading.
Regards,
Alber
todd_jg said:
Mcorrie1121 is right. I will add a couple of things.
1. HardSPL is not *necessary* for flashing anything, it only makes it safer and allows you to flash ROMs with CIDs that do not match your device without CID unlocking. Your ROM is basically a few parts - OS, Radio, IPL, SPL, ExtROM, MainSplash and SubSplash. The HardSPL will replace the SPL only. Most non-carrier ROM releases are OS only. Most carrier ROMs (as you pointed out) have ALL of these things. As Mcorrie1121 pointed out, you can easily find a radio - check the wiki, search, etc.
2. Once you have upgraded to a cooked ROM (and HardSPL), you will still be able to upgrade to a Shipped Official ROM. You may need to "unpack" it and use the CustomRUU instead of the shipped updater. That is OK though.
3. HardSPL will not allow overwriting of the IPL/SPL except by another HardSPL (see mrvanx.org downgrade guides). You will not have a problem. It will keep your bootloader zone safe.
4. I don't think there is a preferred way. Some people unlock CID, others do not. There is no reason to *not* unlock it, unless you plan to send it back - and I have never heard of someone getting service rejected for this reason. Wring ROM, yes. CID unlocked, no. That said, maybe try without CID unlocking first and then if you find you need to do it for some reason, then do it. You really do not have to do it, since the Custom Updater bypasses the CID check anyway.
5. Regarding the 0108 Radio BL issue, don't worry much about that - it is an old problem. Just don't go below whatever version you have now.
Click to expand...
Click to collapse
Dear, please help me with one thing-I am terribly confused about the procedure to upgrade my JASJAM to WM6. I understand that one way is to CIS unlock it and install on it the official and dopod releases of WM6. I wanted to know how can I do the same using the HARDspl. I know that I can install the HARDSPL but after that what ??? Can I then run the offcial RUU from HTC or Dopod or I am supposed to do it some other way as I am afraid that it may contain the SPL and IPL and can break by phone OR I have to use some customRUU (I dont know) OR I am supposed to extract the OS from these official releases (I dont know how) OR ..
Can you please clear these confusion??
I have:-
* I-Mate JASJAM, CID locked i suppose as when I run official HTC or dopod it says this update utility is not for this
*I really wanted to save my devices complete state and a way to revert it to the way it was like SPL, IPL, OS, Radio, CID lock etc.
PLS pls help
Regards,
Alber
alber786 said:
Dear, please help me with one thing-I am terribly confused about the procedure to upgrade my JASJAM to WM6. I understand that one way is to CIS unlock it and install on it the official and dopod releases of WM6. I wanted to know how can I do the same using the HARDspl. I know that I can install the HARDSPL but after that what ??? Can I then run the offcial RUU from HTC or Dopod or I am supposed to do it some other way as I am afraid that it may contain the SPL and IPL and can break by phone OR I have to use some customRUU (I dont know) OR I am supposed to extract the OS from these official releases (I dont know how) OR ..
Can you please clear these confusion??
I have:-
* I-Mate JASJAM, CID locked i suppose as when I run official HTC or dopod it says this update utility is not for this
*I really wanted to save my devices complete state and a way to revert it to the way it was like SPL, IPL, OS, Radio, CID lock etc.
PLS pls help
Regards,
Alber
Click to expand...
Click to collapse
CLICK THIS LINK
There are upgrade guides there and guides to put it back the way it was (OS, Radio, IPL, SPL, MainSplash and SubSplash) - it is all covered.
The upgrade guides will get you through the upgrade process. The only thing you need to do after that to use an official upgrade is to unrar (using winrar or something) the executable file and take the nbh and us it with the CustomRUU, which can be found HERE .
I installed Olipro Hard SPL and am now able to try any wm6 ROM without SPL.
After having tried many of them, I would like to downgrade and try the last Qtek shipped ROM for wizard: QT_FR_9100_2170706_21707106_20710_180406.
But no matter how I try, I'm now unable to install that wm5 ROM.
Even my former SPV M3000 shipped ROM refuse to re-install.
I guess it's either a problem of RUU, or more probably a problem of SPL on those ROM.
I'd like to remove their SPL, but I don't know how to do.
Any tutorial, advice, or special no ID RUU that fits well those wm5 ROM?
The actual problem with this Rom is the RUU.
It won't let you downgrade.
However it is wise to get rid of the IPL/SPL, for safety and for keeping the hard SPL.
You can use typho5.exe to disassemble the ROM in parts, and use nbftool to re-assemble it without using the IPL/SPL.
They are available in the ROM kitchens.
Use the ruu in the hard spl thread for flashing.
Thanks for the reply, Equinoxe.
Actually I've already tried many RUU, not only the Ruu already included in the official ROM.
Mun RUU etc. But no luck, all kind of error occured but the the flashing remains impossible.
I'll try to find the tools you told me about and see whether removing IPL/SPL makes it easier to flash those ROM.
If you know any special RUU suitable for such a downgrade, please, let me know.
riri22 said:
Thanks for the reply, Equinoxe.
Actually I've already tried many RUU, not only the Ruu already included in the official ROM.
Mun RUU etc. But no luck, all kind of error occured but the the flashing remains impossible.
I'll try to find the tools you told me about and see whether removing IPL/SPL makes it easier to flash those ROM.
If you know any special RUU suitable for such a downgrade, please, let me know.
Click to expand...
Click to collapse
If Mun's RUU didn't do the trick, you better use the CORE pro kitchen.
You can extract the parts with typho5.exe
usage:
typho5.exe -x nk.nbf
all the parts will be created/extracted
Delete all the IPL_1 IPL_2 SPL_1 and SPL_2 parts
use nbftool to reassemble the ROM. (read the PDf to see the starting addresses, although nbftool should be patched to show the right addresses)
Good luck
EquinoXe
the-equinoxe said:
If Mun's RUU didn't do the trick, you better use the CORE pro kitchen.
You can extract the parts with typho5.exe
usage:
typho5.exe -x nk.nbf
all the parts will be created/extracted
Delete all the IPL_1 IPL_2 SPL_1 and SPL_2 parts
use nbftool to reassemble the ROM. (read the PDf to see the starting addresses, although nbftool should be patched to show the right addresses)
Good luck
EquinoXe
Click to expand...
Click to collapse
Hi Equinox, thanks for the reply.
I started trying to get typho working, but all I could see was a brief command prompt and nothing else.
Finally, I ended up using Molski DevPack, which already includes those tools, in quite an ergonomic way.
After finding a guide about using those tools, It took me, no kidding about 10 mn for the whole process and 5 more to do the flashing.
I used nb2nbf_wizard to reassemble the ROM with only the parts I wanted to keep, including the extended ROM.
Regarding the address, it did it automatically, except for the HTC logo that I did manually, and also for the name of the Extended and Logo I renamed according to the sample jpeg showing that soft in action.
Since I kept the extended ROM and the original splash and logo screen, and I now have an authentic Qtek Wizard, just for fun.
But the most important is the feeling of building one's own ROM, according to your own taste and choice. Wonderful.
You were right: after having removed SPL/IPL and rebuilt the ROM, the Mun RUU worked flawlessly to flash my so called Qtek ROM onto my wizard.
In the meantime, It got rid of the pile of miscellanous splash screens and logos that were left since the install of all previous wm6 ROM.
Thanks again for the tips.
P.S.: the guide I used to understand how to use the Molski DevPack:
http://forum.xda-developers.com/showthread.php?t=320910&highlight=RUU_2001
Can't update rom anymore
Info about phone
WIZA200
IPL 2.21.0001
SPL 2.21.olip
GSM 02.19.11
OS 6.0.0.0
TNT_5.0_Wizard_TouchFLO
Windows XP
Active Sync 4.5 (Works Fine)
When i try to install another ROM i get communication error[224] : DEVICE NOT RESPONDING
When i try to install Cert_SPCS.cab or EnableRapi.cab or TomTom i get installation of xxxx.cab was unsuccessful.
Please help
I hope someone provide me with some advice/pointers>
I've unpacked the latest Hermes Radio Rom (1.54.07.00) and then used NBHGEN to create a suitable unsigned ROM with a BREE100 header. I then copied the file to my micro-SD card as BREEIMG.NBH and used the Breeze variant of SSPL to flash the upgrade. All appeared to go well, the device went to the update screen and the progress indicated slowly went to 100% before announcing success.
However, on restart the OS still reports the radio as 1.38.00.10
Can anyone advise where my error is? Has anyone experienced this with a Hermes radio only SD card upgrade?
On further investigation the Breeze SSPL is reporting:
BREE100
IPL-SSPL by Des
BREE100
SPL-1.01
and rversion reports 108.
So is it just that the Breeze port of SSPL is just not current enough to allow radio upgrades now it has a 1.08 bootloader?
Ok from one of Prof's many helpful threads:
If you have a radio with HTC_BOOT 1.0108 on your device, you can't use extracted radio ROMs: This means you will not be able to flash radios in NBF format with MaUpgrade_NoID.exe anymore, you'll allways need to flash them in signed NBH format (ie: full ROM upgrade).
If you have a radio with HTC_BOOT 1.0108 on your device and flash a full ROM upgrade in NBH format, the radio will not be flashed unless your SPL version is 1.09.
If you have a radio with HTC_BOOT 1.0108 on your device and flash a full ROM upgrade in NBH format with SPL-1.09 on your device, your radio will be changed to the radio contained in the NBH file, HOWEVER the radio bootloader will stay the same HTC_BOOT 1.0108.
Click to expand...
Click to collapse