Related
[size=+1]Greetings From the Diamond Elite Project Team (currently only Olipro and Cmonex, so, any other skilled devs wanted - please PM Olipro and/or Cmonex, don't PM this account, we rarely check it)[/size]
We are proud to announce the release of Hard-SPL for *ALL* Diamond devices, overcoming the new MPU protection on the device.
[size=+2]NOTE: This is NOT a SIM unlocker - it also doesn't unlock Security for other radios. if you need that, GO HERE[/size]
As an added feature, the Hard-SPL requires signed code even after flashing... we chose to do this for several reasons.
1) safety... we will begin releasing all available Diamond resources re-signed with our certificate, this means you don't need to worry about flashing something incompatible, if it's something bad, we won't sign it.
2) reliability; If you want something signed, just ask, we will be able to verify that it's not going to be something that breaks the device, as has been the case with the Elf ROM disaster.
We'll be releasing a developer edition in the future; we will continue to maintain the signed SPL as this is quite nice for total and utter noobs afraid of bricking their device.
Flash this now, [size=+2]Go to our separate thread listing Supported ROMs for ROMs you can flash[/size]
[size=+2]Installation Instructions:[/size]
1) Download, extract to an empty folder.
2) Run RomUpdateUtility.exe, Have Phone Synced with PC in Windows Mobile
3) follow steps, check device for prompts after PC shows loading bar.
4) SPL flashes, job done.
Anyone having problems with the device entering SSPL automatically, please copy SSPLManual.exe to the device and run it. then once the screen is black, run RUU manually.
IMPORTANT NOTES:
1. do not try to use this SSPL to flash anything else other than an SPL file. it explicitly blocks other flashes anyway. SSPL is *never* a good way to flash OS images
2. INSTALLING THIS WILL HARD-RESET THE DEVICE
Thanks to Walshieau for a **** load of testing!
All Project Donations gratefully accepted
INSTALLING THIS WILL HARD-RESET THE DEVICE
TROUBLESHOOTING TIPS:
- read the instructions.
- read the instructions.
- read the instructions.
- Anyone having problems with the device entering SSPL automatically (your device doesn't even go to black screen), please copy SSPLManual.exe to the device and run it. then once the screen is black, run RUU manually (you run the RUU on the PC, if it isn't obvious).
- if you get connection error in RUU after the device goes to black screen, then try a different USB port, also do not use USB hub, you can also try rebooting your PC, and can try using another PC. read the thread for even more tips that I don't remember now. also you can try unticking advanced network functionality in start menu / settings / connections / usbtopc applet.
- if SSPL-Manual.exe or enterbootloader.exe fails to run (says missing component or similar), try a hard reset of the device.
- CDMA (Sprint or Telus) diamonds need my other hardspl:, head over to: CDMA (not GSM) diamond hardspl - ONLY use this if your diamond does not use GSM protocol for radio!!! otherwise you will brick the device!!!
UPDATE: 1.37 Hard-SPL
for those who need 1.37 due to some screen fuzziness issues on some newer diamonds, here it is with hardspl patches:
- Developer Edition: can flash unsigned code. Version: 1.37.OliNex
- Signed Edition: can only flash preapproved signed code. Version: 1.38.OliNex (of course still based on 1.37).
please see Attachment below for Signed Edition!!
for Developer Edition, see the developer hardspl thread of course.
(use attachment Hard-SPL-Diamond-OliNex.zip to get the RUU package to flash the 1.38 NBH from HardSPL_OliNex138_Signed.zip. just overwrite the NBH file with 1.38 NBH)
I recommend you flash the original HardSPL, as that one is MFG. only flash the 1.37/1.38 if you experience the fuzzy display issue.
UPDATE 2: 1.93 Hard-SPL
(placeholder for now, but you can already download unsigned version in the Developer HardSPL thread!)
if someone's diamond came with 1.93 SPL originally, maybe this HardSPL based on 1.93 will work better than the olders. I have a report that someone has black screen with older SPL's.
but even if your diamond didn't come with 1.93 stock, but 1.37/1.38 doesn't fix screen problems (fuzzy screen, flickering, etc.), it is recommended to try this 1.93 HardSPL.
if your diamond works fine with original HardSPL, no need to flash this one.
IMPORTANT: all in all, I recommend you flash the original HardSPL, as that one is MFG and easier to deal with if there is some problem. only flash the 1.37/1.38 or 1.93 if you have screen issues.
if it was some other version and you still have issues after trying 1.37/1.38 and 1.93, then please let us know.
Stock SPL's for warranty reasons:
visit the http://forum.xda-developers.com/showthread.php?t=400411 (Signed ROMs) thread, see post #20.
(or visit Developer HardSPL thread post #39, same thing.)
Thank you. I am going to flash..
panosha said:
Thank you. I am going to flash..
Click to expand...
Click to collapse
enjoy! you won't imagine how much work it was for me to get this ****er (SSPL) working
anyway, this has been tested on radio versions 0.91 and 0.93, I don't think it is radio specific, but if you have some newer radio version (haven't seen any yet) and have trouble with running SSPL or flashing it, let us know.
also, the SSPL screen is black, not tricolour, that's just the way it is. only preproduction diamond had it tricolour.
last note: do not try to use this SSPL to flash anything else other than an SPL file. it explicitly blocks other flashes anyway. SSPL is *never* a good way to flash OS images.
Thanx a lot guys, awesome work.
Thanks Olinex
i agree to the idea of olipro, it is good to the community ...especially for new comer who had not muc experience in rom flashing
but i think for developer and some experienced user , a unsigned version is neccessary for daily testing like :
1) if i am cooking a rom and wanna flash into the device to had a real test , i need to wait u guys to sign..u guys may busy and wasting unneccessary time for signing some "beta" rom ...example I made a hermes rom before ..which had chinese build in support, i had made more than 5 nbh for my own testing ....:S .. u can imagine if need signed .. i need to bother "olinex" tooo many time
look forward for a developer unsigned ver
@leofungwai.
can't you just sign this HSSPL code with you own certificate before getting this thing on of course if that's the case? should be straight forwar, really..
also, it should allow for flasing genuine firmwares signed by vendors, meaning hardware vendor's certificate is still must be valid.
And if it doesn't then, what happens if device is stucked in bootloader or doesn't boot into OS anymore? that would make difficult for reverting back to original SPL.
SecureGSM said:
can't you just sign this HSSPL code with you own certificate before getting this thing on of course if that's the case? should be straight forwar, really..
Click to expand...
Click to collapse
Surely you're not THAT stupid?
testing now
hi all testing now updating soon
First of all great work guys!
I am trying to flash my Diamond from a Windows XP machine. I start the RUU and when the progress bar appears it halts at 0% and after some time starts about a connection problem, my diamond is not going in bootloader mode. So I started my Diamond mannualy in 3 color mode and started the RUU again. Again it halts at 0% and is there now for about 5 mins. Can you help me out guys?
RvBCrS
Great!
And thanks for the TEAM!!!
Just installed it.
Worked.
this makes a Hard Reset on the Device.
Now will try to update with a different rom.
Nadavi.
what is that suppposed to mean? calling someone stupid is already bad but that was my question.
The way I understood, if your SPL code is checking for presence of your certificate "attached" to the NBH, then if the certificate in your SPL code is patched to different certificate, then SPL will not complain about code is not being signed by your certificate anymore. call this stupidity, but I am not going to put something on my device I would not be able to remove with out third party *permission* to do so.
again, I can be wrong. I am not a programmer, but then your explanation is confusing.
Very strange, if I start the RUU updater with my phone booted in Windows Mobile, it try's to start EnterBootloader.exe but that crashes with an exception window!?!
just reset the device and try again. it MUST be done from windows
Olipro said:
just reset the device and try again. it MUST be done from windows
Click to expand...
Click to collapse
Thanks olipro for you response, I rebooted my device and did it again with windows mobile booted, waited for device center connection, and again got the exception on "Enterbootloader.exe" very strange it looks like a .NET exception window.. I have a Dutch Mobile edition, don't know if that matters..
SecureGSM said:
what is that suppposed to mean? calling someone stupid is already bad but that was my question.
The way I understood, if your SPL code is checking for presence of your certificate "attached" to the NBH, then if the certificate in your SPL code is patched to different certificate, then SPL will not complain about code is not being signed by your certificate anymore. call this stupidity, but I am not going to put something on my device I would not be able to remove with out third party *permission* to do so.
again, I can be wrong. I am not a programmer, but then your explanation is confusing.
Click to expand...
Click to collapse
yes... patched to a different certificate, therefore, requiring files that you flash to be signed with it.
If you want to get rid of it, you can have a stock HTC SPL signed with it.
Personally I like this because our released ROMs have no SPL in and a dedicated rollback desired for warranty purposes can be used with no chance of mistake
SecureGSM said:
@leofungwai.
can't you just sign this HSSPL code with you own certificate before getting this thing on of course if that's the case? should be straight forwar, really..
also, it should allow for flasing genuine firmwares signed by vendors, meaning hardware vendor's certificate is still must be valid.
And if it doesn't then, what happens if device is stucked in bootloader or doesn't boot into OS anymore? that would make difficult for reverting back to original SPL.
Click to expand...
Click to collapse
you can't, because the SSPL also requires this custom signing to flash the HSPL...
your point is very good about allowing for stock ROMs.
we actually can have a way to do that
though hopefully this won't last long and the unsigned "developer version" will be available to everyone soon. I strongly disagree with the original idea anyway.
same
same here stuck in 0 %
motin said:
same here stuck in 0 %
Click to expand...
Click to collapse
did the screen actually go black (i.e. into bootloader)
WooooooT great job guys!!!!
when you run the new rom from europe then it will boot to the 3 bootolader mode you can see your spl installed and then not mov any more from 0%
I own HTC diamond from my carrier - Orange.
Its 1.93 rom.
I really wish to upgrade the rom, try different new roms for making the device faster and cleaner from things I dont use or need.
I read threads regarding dumping the rom and I understand that its possible.
Now after that, for upgrading to another rom I need to upgrade the hspl too.
This procedure voids the warrenty as well? Is it possible to dump that files also?
I dont want to void the warrenty.
I wanna be sure its possible to dump all the files I need in order to restore them for having my warrenty when I'll need that
I really appreciate the help.
ok for now....
im not a very experienced user also.. but what i know is... every provider has its own varrinty rules... for some any change in rom hspl or anything else is a broken rule and you loose it... for others it is just the problem that is interristing ... means.. if you have to use your varrinty because you speaker is broken or microphone.... you still have the rights becuase it is not caused by the rom..
as long you can turn you phone into bootloader mode you can change everything back to normal... as far as i know
But is it possible to take all the needed files from my specific device and not downloading it from the wiki's threads of roms?
In that case, What is needed for completely restoring *everything* back to normal?
Thanks again
eranyanay said:
But is it possible to take all the needed files from my specific device and not downloading it from the wiki's threads of roms?
In that case, What is needed for completely restoring *everything* back to normal?
Thanks again
Click to expand...
Click to collapse
You will find information here about dumping your OS (by pof) and Splash screen (search my Rogers Canada dumped ROM thread for info).
There are already threads where you can download the Radio and SPL that matches your device's version (so you don't need to back those up).
When you want to restore everything back, do so in this order:
- Flash back the stock Radio
- Flash back the stock Splash Screen
- Flash back the stock OS (ROM)
- Finally, use the SSPL method to flash back the original stock SPL.
You'll be back to factory state.
Thanks, another small, last two questions
dsixda said:
You will find information here about dumping your OS (by pof) and Splash screen (search my Rogers Canada dumped ROM thread for info).
There are already threads where you can download the Radio and SPL that matches your device's version (so you don't need to back those up).
When you want to restore everything back, do so in this order:
- Flash back the stock Radio
- Flash back the stock Splash Screen
- Flash back the stock OS (ROM)
- Finally, use the SSPL method to flash back the original stock SPL.
You'll be back to factory state.
Click to expand...
Click to collapse
Thanks for the comment.
I used the information I found in the thread you told me about, for backing up my splash screen.
About the details in the device information,
-ExtROM is included in the rom backup?
-What is Protocol version?
About the radio, is it built-in inside the rom? When I flash to another rom does it change?
Some threads I found here saying Yes, and some saying No..
Can the radio or stock spl can be customized by the cellular operator? Or Theres no need to bother breaking my head how to back up those two as well?
And last thing is about the files I have now, .raw and .nb, How can I check and see they are all fine, that I backed up right..to check if they're not corrupted?
Is there a way for that?
By doing all that I could actually save my warrenty for future purpose?
okay, guys, I have a few question that I am hoping it can be answered before I advernture ito flashing my rom.
First of all, I relaly appreaciate all of the people who work so hard getting the rom updated. You guys rocks.
Now, this is the first time I am going to flash to my tilt 2. As I have read the flashing the GSM phone guide (which I am hoping that's the guide I should be following to flash). I am just a bit confused as to how to do it.
It appears to me that I must flash the SPL unlocker in order to flash to the any rom am I correct? Just curious what exactly does it do? If I flash it, would tehre be any issue if I decided to go back to the original rom. I saw that at HTC's site, they have stock rom for ATT phone (http://www.htc.com/us/support/tilt-2-att/downloads/)so if I want to go back, can I just use that file and flash it back? Or I need to flash to a diff HardSPL? before I can use it?
Also, i am curious as to are there any program that will let me keep all of the settings and stuff up to date. in my past where I have the hp's ipaq. I had a tool where after I flash teh rom or do a hardreset, I can run that tool to revert all of the program and configurations (of course, I had a backup file first).
Let me just double check:
basically
1-hardspl
2-rom
3-all set
again, my phone is ATT tilt 2, I would really appreciate any information.
The SPL is kind of similar to the BIOS in your computer; it performs very low-level functions, and functions as a bootloader, among other things. The SPL is responsible for flashing new ROMs to the device, and the SPL that comes on your device won't let you flash ROMs not signed by HTC. HardSPL is a patched SPL that removes this ROM signature check, allowing any ROM, official or custom, to be flashed. The way HardSPL is designed also makes it more difficult (though not impossible!) to brick your device.
If you ever want to restore your original SPL (for warranty purposes,etc.) there are a few threads which explain how to do this, and the HardSPL thread has all the SPLs available for download. If you flash the package from AT&T, your ROM will be the original ROM, but the SPL will still be HardSPL, which isn't okay if you're returning the device for warranty purposes since they check for that. As I said, there are a few threads which have full tutorials for restoring your AT&T Tilt2 to stock.
For backup, there are tons of solutions out there such as the User Customization types (XDA User Customization and Sashami), as well as the full backup and restore suites (Sprite backup, SPB backup). I've automated everything on my device with XDA User Customization, so I don't know much about the full backup and restore suites, though a backup and restore suite might be more what you're looking for based on your description.
Lastly, you have the order of flashing correct. Optionally, you can flash a radio ROM later on, but if this is your first time flashing, you might want to wait awhile until you're more comfortable with flashing.
OMGHAX 900th post!
I bought my tp2 last year before it dropped here in the US.
I bought it from a company that said HTC sent them the phone as a tester or something along those lines and it was in a special box and so on when i got it.
Now i asked the guy a while back about the phone and he replied with this
(Yes you won't be able to do that please do not lock up the handset, you will want to use that bootloader when the ROMs start coming. FYI there should be wm6.5 uploaded on the net. I cannot disclose where but if you search you should be able to find it. Depending how the rom is cooked you should be able to flash it w/o any issues. The device will take custom builds)
How do i get it to bootloader so i can see tell what is going on with my phone?
I have not even upgraded to 6.5 yet because I have been so over trying to get it to work and my ROM FLASHER moved from LA to TX.
So i am entertaining suggestions, I have a mac too so that is why i have not been able to flash it myself.
Just turn the device completely off, then press the power button while holding the volume down button. You should see some lines of text, with the second line being your SPL version. Post it here, if you would. By the sound of it, your device is probably superCID and security unlocked, meaning you can flash any official HTC ROM that is signed by HTC. It's extremely doubtful that the device would have HardSPL considering HardSPL is kind of the opposite of HTC, and they wouldn't generally use the products their hacking community has created.
If you don't have HardSPL, you can always put it on your Rhodium and flash ROMs as you would on any other Rhodium.
DaveTheTytnIIGuy said:
Just turn the device completely off, then press the power button while holding the volume down button. You should see some lines of text, with the second line being your SPL version. Post it here, if you would. By the sound of it, your device is probably superCID and security unlocked, meaning you can flash any official HTC ROM that is signed by HTC. It's extremely doubtful that the device would have HardSPL considering HardSPL is kind of the opposite of HTC, and they wouldn't generally use the products their hacking community has created.
If you don't have HardSPL, you can always put it on your Rhodium and flash ROMs as you would on any other Rhodium.
Click to expand...
Click to collapse
Yeah it says
RHOD100 32M SS-BC
SPL-0.79.0000
and says Security Unlocked at the top of the screen.
So how can i change the windows to 6.5 or update the ROM all together to something far better? I tried to get it from the HTC site but when i enter my serial number it says that i do not have the right phone but thats not accurate.
Remember I have an apple computer so unless i can do it via SyncMate (not likely) i need other options.
Thanks loads
If you have a Mac and for some reason or another cannot get access to a Windows computer, you cannot HardSPL. However, since your device is security unlocked and superCID, you can still flash any HTC signed ROM, regardless of carrier or branding. If you don't HardSPL, then I would recommend flashing the 6.5 update for the unlocked European Rhodium, found here. If you would rather flash an official Rhodium ROM from another country or operator, a full list of Rhodium shipped ROMs is available here.
However, keep in mind that since you don't have HardSPL, you cannot flash from the SD card. This means you must flash using the included EXE, which probably means you need access to a Windows computer anyway (maybe you can flash using the EXE on a Mac one way or another, but I don't know how).
I would personally recommend finding a Windows computer to use so you can HardSPL once, whether it be a public computer, a friend's computer, etc. Once you HardSPL, you can flash official and custom ROMs, reduce your chances of ever bricking your device because of a flash, and flash your device with other ROMs via your microSD card, so you never need access to a PC again. This may seem like more work now, but it will save you plenty of time in the long run, since you can flash your device as much as you want without needing a Windows computer.
DaveTheTytnIIGuy said:
If you have a Mac and for some reason or another cannot get access to a Windows computer, you cannot HardSPL. However, since your device is security unlocked and superCID, you can still flash any HTC signed ROM, regardless of carrier or branding. If you don't HardSPL, then I would recommend flashing the 6.5 update for the unlocked European Rhodium, found here. If you would rather flash an official Rhodium ROM from another country or operator, a full list of Rhodium shipped ROMs is available here.
However, keep in mind that since you don't have HardSPL, you cannot flash from the SD card. This means you must flash using the included EXE, which probably means you need access to a Windows computer anyway (maybe you can flash using the EXE on a Mac one way or another, but I don't know how).
I would personally recommend finding a Windows computer to use so you can HardSPL once, whether it be a public computer, a friend's computer, etc. Once you HardSPL, you can flash official and custom ROMs, reduce your chances of ever bricking your device because of a flash, and flash your device with other ROMs via your microSD card, so you never need access to a PC again. This may seem like more work now, but it will save you plenty of time in the long run, since you can flash your device as much as you want without needing a Windows computer.
Click to expand...
Click to collapse
Ok i guess I have to go to Best Buy and get an open box computer or something.
Is there some place on here that will show a fast step by step on how to flash.
I go to the ROM section and its flooded with stuff saying do this dont do that. I would like to be able to the library, go to this site, plug in press a button that says make my phone the **** again, then sign off and come home.
Suggestions ?
Thanks
This is probably what you're looking for. It's a step by step tutorial for flashing HardSPL and custom ROMs, written for beginners.
not wanting to wait for a software exploit that may never come,user Sonic2756 has stepped up and purchased an htc service card,or java card,to provide the vzw one community with a "right now!" s off option. make sure yuo thank him in this thread: Purchased a JavaCard for S_OFF
this method uses an official htc java card to turn off the phones security data. the card exists as a legitimate tool for cell phone shops and re-sellers,primarily for the purpose of removing the phones simlock.
since this method of s off is somewhat unusual,this thread is intended to help support folks that are unsure of the differences and similarities.
first and foremost,these are my words,sonic has not helped with these posts,tho i hope he will let me know if theres anything he wants changed. if any info you see here and use melts your phone into a little pile of aluminum goo,its not sonics fault,nor is it mine. use this info at your own risk.
in this first post,i thot a few FAQs needed to be put in one place,as they are being asked over and over again in the thread.
Frequently Asked Questions
Q: what is s off?what does it do for me?
A: in a nutshell,s-off=security off. it removes all security checks and allows access to all partitions of the phone this means you can:
-change hboot
-change splash inage
-change radios
-flash unsigned files
-go backwards in firmware versions
-other things that maybe ill add later
Q: is this legit??
A:yes,it is. as mentioned above,the java card is a legitimate tool used by some large cell phone repair shops and re-sellers.
Q: how does this work?
A:the java card is plugged into a USB On The Go cable,and plugged into the phone. the java card contains htc-signed diagnostic files wich are used to clear security data. when the phone is booted to hboot with the java card plugged in,it finds the diagnostic file and jumps to a mode where the user can clear "s58" data. this removes any simlock,changes the CID to a generic "supercid",and most importantly,turns off the phones radio secure flag. hooray!
this not sonic,nor is this an htc one. it is a one X using the same method,it will give you a good idea what the process looks like:
HTC One X S-OFF
Q: what exactly is a java card?
A: simply,a java card is an sd card with a microprocessor in it. if someone wishes to provide a more detailed definition,id be happy to put it here. a bit more info here
Q: can we clone the java card so everyone can have s off?
A: yes. but its complicated,and the card to begin with is expensive. there have been some technical discussions about this in sonic's original thread. the simple answer is that it is not easy,or practical to clone the java card.
Q: why do i have to pay for this?? shouldnt s off be free?
A: if you have a prollem paying for this service,you are welcome to purchase your own java card and offer the service for free. as has been stated,the java card is expensive- upwards of $1000 depending how may credits are included.
further,even if a software exploit was available,it is good custom to donate to the devs who brought you the tool. remember,no one here owes you custom roms,s-off,etc. support your devs and what they bring you. in this case,sonic has purchased an expensive htc tool,shipping supplies,and has to invest a great deal of time getting your phone s-offed,packed up,and hauled back to the post office. not to mention the website he has set up for the service. there is nothing wrong with making his $$ back,and a bit extra for his time and efforts.
Q: is the card good forever?
A: NO! the java card has a limited number of uses. he has stated he can sell about 250 s off services,and do 10 developer phones for free. after those credist are gone,you are SOL unless a new exploit is found,or there is enuff interest for sonic to buy a second card.
Q: how do i know how many credits are left?
A:Sonic's website shows the number of avaiable spots left, right above the quantity select/add to cart,in the "product description". simply go to the website,then click the htc one picture.
Q: if im allready unlocked,should i still get s off?
A: in my opinion,yes. s off is better. it allows more options to recover soft-bricked devices,and allows access to all partitions. an s on phone is still doing plenty of security checks. it also allows a permantly installed recovery to install the boot image. the downside is that your phone WILL let you brick it if your not careful. know what your flashing and why. double check md5 sums to verify the integrity of your downloads. a corrupt bootloader ot radio can damage your phone,potentially unrecoverably. if you just asked "what is an md5sum?" stop and google it now. there are numerous md5summers avaialable for free on the vast interweb,download one and start using it.
Q: if im allready unlocked and running a custom rom and recovery,do i need to take any precautions?
A: yes. the diag file is designed to work on stock software and firmware. i would strongly recomend to:
-restore a bone stock nandroid,or flash a bone stock rom
-reflash your stock recovery
-reflash your stock boot image if you were running a custom kernel
-select 'factory reset' option from hboot
Q: will this wipe my phone?
A: yes it will. so back up your sd card to the pc,and be prepaired to have to re-set everything up when you get it back.
Q: does my phone need to be active?
A: no it does not.
Q: do you need my sim card?
A: no he does not.
Q: what is the turn around time?
A: again,these are my words. from the thread,5-7 days. please remember sonic has real life activities to attend to,so you may want to wait until the initial wave has subsided. if he has alot of phones to do,it may take him longer.
Q: im a tight ass,can i use cheaper shipping?
A: yes,you can. the initial shipping is picked and paid for by you. be as tight as you want. the return shipping is priority mail with $600 worth of isurance. if you have such faith in the united states post office,and humanity that you do not feel this is needed,then you can chose the cheaper return shipping option sonic has provided.
Q: how do i activate a spare phone while mine is away?
A:it depends on the phone. if you have another 4g vzw phone,you can simply swap over your active sim. if the sim is larger in the spare phone,adapters do exist for extremely cheap on ebay and amazon. alternately,you can call vzw or go to their website to activate an older 3g device.
Q: how do i activate my phone when it comes back?
A: like you normally would. s off by itself does not change anything about the phone or how it oporates. its what you do afterward/modify that can have an impact on "normal" operation. so if you moved your sim into another phone,just move it back. if you mailed your phone directly to sonic with the protective film still on it,then take everything out of the box and activate just like you would if it had just come from vzw.
Q: will i be able to unlock the bootloader if my phone is s off?
A: yes. when the phone comes back,it will have "supercid". this ignores the mid(model id) check that htcdev does on the phone,and will let you get a token and unlock.
Q: are there advantages to unlocking the bootloader?
A: you have a couple extra fastboot commands you can use:
fastboot flash partition imagename.img
and
fastboot boot imagename.img
these commands are useful to install recovery,and boot images into phone memory. with fastboot bootfor example,you can temporarily launch recovery on the phone to flash su if you dont want to permantly install it.
Q: so do i NEED to unlock the bootloader to install recovery?
A: no,you do not. you can install recoveries and all other partitions as zip files. more info on that later.
Q: does superCID give you any benefits?
A: in a word,no. on a gsm device where you have multiple carrier and regional firmwares that will work,supercid is of value. with a device on vzw,you can only use vzw ruus anyway since this is a unique cdma/lte device. further,accepting an OTA with supercid could leave you unrecoverably bricked,plus it may interfer some some verizon functions(i remember inc 4g users having issue,but the details escape me)
IMO,after unlocking your bootloader,if you choose to do so,you should change your CID back to stock VZW__001 (thats 2 underscores- cid is always 8 digits)
Q: is my cid unique to my particulare phone?
A: no,it is not. it is unique to a carrier or region. all verizon phones ever made have a cid of VZW__001
Q: how do i change my cid back to stock?
A: with this fastboot command:
fastboot oem writecid VZW__001
Q: why is my cid always present on the hboot screen?
A: i dont know htc's logic,but this is simply what the phone does while its s off. it will display whatever your cid is,and is not dependent of your bootloader being locked or unlocked.
Q: what about the TAMPERED and unlocked/relocked badges?
A: if your phone was unlocked when you sent it in, youll get it back factory fresh locked. the tampered badge,i am unsure of at this time,and will update as more info is obtained.
if you sent in a brand new phone,it obviously wont be different(with exception of s off)
one of the big advantages of s off,is that the tampered flag is not triggered by adding a custom recovery or kernel,and since s off removes the various write protections that exist,it is posible to reset either flag. more info on the lock status flag here
Q: will an OTA change my s-off or lock status?
A: it is possible. altho,it is highly unlikely since turning the radio secure flags on via an OTA would also do so on legitimate pre-release test phones.
however...
it really is not reccomended that you try and take an OTA while rooted. a custom recovery is unable to install HTC's OTA pacakage,and attempting to do so ca jam you up horribly. taking an OTA with bloat and system files remove will typicaly result in failure,and taking an OTA with supercid could lead to a processor "do not boot" mode,wich is very effectively a hard brick only recoverable via jtag. or a new device.
the best way to update a rooted device is to update the rom with a recovery-flashable zip file,and the firmware extracted from the OTA package. this will update you just like taking the OTA. there is nothing magical about over the air updates. please,just do it manually. leave the OTAs for the stock crowd.
last and not least!
Q: im convinced! what do i do once i get back my stock,s-off phone?
A: please see post 2
_____________________________________________________________________________________________
the above was just off the top of my head,ill add to them later as they come to me,feel free to post if you have further questions,costructuve criticism,or feedback.
once you have recieved your stock,s off device back,your basic steps are:
1)change CID back to stock verizon
2)install a recovery
3)install a rom or root access
you have 2 options to install recovery:
1)unlock the bootloader and use fastboot commands
2)leave the bootloader locked,and flash a recovery as a zip file in RUU mode
either way works. i personally always keep my bootloader unlocked so i can use fastboot commands,but we dont know for sure if the lock status flag can be reset,so the bootloader screen reads locked again.
its remotely possible that it may be difficult to reset the lock status flag,so if being locked for a possible warranty exchange is important to you,dont unlock just yet. relocked is the best you can do without some trickery.
to "root by recovery" is not a new concept. once there are no write protections,its easy to install a custom recovery,and use that recovery to either insert the superuser files into the stock rom,or replace the rom entirely.
1) change cid back to stock verizon
this is actually very easy. simply put the phone in fastboot,change to fastboot directory,and enter in a cmd window:
fastboot oem writecid VZW__001
yes,those must be capital letters,and there are 2 underscores.
2) install a recovery
via one of these 2 methods:
1)unlock the bootloader
your phone has come back from sonic with "supercid",wich will allow you to unlock the bootloader natuarally via the htcdev website. see this post for a bit more info on that.
unlocking the bootloader is fairly straightforward,just make sure you use a vzw one specific image. download from one of the following threads:
twrp
clockworkmod touch or classic
the image is easily installed via an unlocked bootloader with the following command:
fastboot flash recovery imagename.img
for example,recovery named CW_touch_recovery:
fastboot flash recovery CW_touch_recovery.img
the image must be in your fastboot working directory.
if you need more specific help with unlock/recovery flashing you can use this guide.
2) keep locked bootloader
the bootloader can stay locked for this method. you can in fact use this to install a new image to any partition,as long as the image is packed up in a proper file.
this assumes a working adb/fastboot and drivers installed. if you dont have these things,you can use this guide from above,downloading the files in post 1,and following the set up adb and prepair to root part in step 2.
once you have adb and fastboot working,download one of the following recovery zip files. do NOT unzip or extract.
twrp: http://www.mediafire.com/download/6gbk9s5y6angyf9/openrecovery-twrp-2.6.0.1-m7vzw.zip
CW touch: http://www.mediafire.com/download/43h8k47blfboci9/recovery-clockwork-touch-6.0.3.6-m7vzw.zip
CW classic: http://www.mediafire.com/download/w57cqx7cpmxbz44/recovery-clockwork-6.0.3.6-m7vzw.zip
your zip file is flashed in the following manner:
if youre working with a booted,operational phone,you can flsh the file in the following manner:
-open a cmd window
-change to adb/fastboot directory
cd c:\foldername
(cd c:\mini-adb if youve used any of my guides )
-place the zip file you want to flash into adb/fastboot directory
-enable usb debug,disable fastboot,plug in phone
-check for connectivity
adb devices (should return serial number)
-boot to fastboot
adb reboot bootloader
-check for connectivity again
fastboot devices
-flash the file
fastboot erase cache
fastboto oem rebootRUU (will put you in ruu mode,black screen silver htc letters)
fastboot flash zip zipfilename.zip (will send and flash the file. dont interupt it while the cmd window shows its writinging,and the green status bar is moving on the phone screen)
*sometimes a file will fail with a pre-update error. this is normal,just enter again:
fastboot flash zip zipfilename.zip
and this time it will finish
-when you get "finished" and "OK"
fastboot reboot-bootloader (takes you back to fastboot)
-reboot back to the OS
fastbooot reboot
you can use this if you dont have an operational phone as well. you just need to manually put the phone in fastboot(select from hboot menu) then skip the "adb" commands and start with fastboot devices
Click to expand...
Click to collapse
3) install a rom or root access
this is a simple matter of using recovery to either flash superuser,or flash a new rom. in either case,MAKE A BACKUP OF YOUR STOCK UNROOTED ROM!
flash superuser just as you would a rom,after a cache/dalvik wipe. theres tons of info out there on using recovery,so im not going in to great detail on that here.
i dont have this device(well,i dont have the vzw version) so dont ask me whats the best rom to flash. browse the development and original development sections and pick a couple out to try.
if you wish to just run rooted stock,i perosnally prefer superSU to other versions of superuser. you can download it from this thread
_____________________________________________________________________________________________
optional:
if you sent in your phone with a custom recovery installed,and it still is displaying the tampered banner,see this thread to remove it: http://forum.xda-developers.com/showthread.php?p=46182709#post46182709
if you want to lock,or unlock your bootloader without messing with htcdev,see this thread for those directions: http://forum.xda-developers.com/showthread.php?t=2470340
if you want to restore your supermid from PN073**** back to stock verizon,see this thread:
http://forum.xda-developers.com/showthread.php?t=2490777
_____________________________________________________________________________________________
*work in progress. there will likely be some revisions,but i wanted to get something up for the folks whose devices are coming back
mine too!
thanks for this. Guess I need to order a sim adapter so I can mail my phone off.
nrfitchett4 said:
thanks for this. Guess I need to order a sim adapter so I can mail my phone off.
Click to expand...
Click to collapse
your welcome. ill get some more added to it,how tos and such in the next day or 2. but for now im tired and 5am comes early,lol.
for what its worth,ive used sim adapters like these:
http://www.amazon.com/Micro-card-ad...=1378950374&sr=8-14&keywords=sim+card+adapter
and these:
http://www.amazon.com/eForCity-Micr...=1378950374&sr=8-13&keywords=sim+card+adapter
and personally found the ones with an open back to be a lil easier to use. i switch my sim around alot(to the point its wearing out and ill prolly need a new one soon )
saved
thank you!
Thanks
Sent from my HTC6500LVW using Tapatalk 4
scotty1223 said:
your welcome. ill get some more added to it,how tos and such in the next day or 2. but for now im tired and 5am comes early,lol.
for what its worth,ive used sim adapters like these:
http://www.amazon.com/Micro-card-ad...=1378950374&sr=8-14&keywords=sim+card+adapter
and these:
http://www.amazon.com/eForCity-Micr...=1378950374&sr=8-13&keywords=sim+card+adapter
and personally found the ones with an open back to be a lil easier to use. i switch my sim around alot(to the point its wearing out and ill prolly need a new one soon )
Click to expand...
Click to collapse
yeah, just found one that has adapters for nano up to mini. Will be here friday. Will have to live with the rezound for a week.
Thanks so much for making this!
I'm working with Sonic on this (mainly setting up and maintaining the website), but I would like to offer some insight on the JavaCard:
A Javacard is a special type of microsd card (smart card, this is the same thing as those NFC wallets or whatever that use a smart cards) that contains a microprocessor. It also has a signed and encrypted java applet that is set up to run whatever the maker wants it to. In this case HTC set it up to communicate with the phone for diagnostic services. It is also capable of carrier unlocking the phone. Due to digital signatures (when this card is almost burned I'm planning on taking a look at it) the card only has a certain number of phones that can be s offed or unlocked (it works on a credit system - 2 credits s off 1 credit carrier unlock). Everything on the card is locked up like fort knox to my knowledge but we shall see!
We also currently have the diag files needed for several other phones and can S-off them too. Not sure of all of them atm but Sonic posted it in the other thread a few days ago.
Cheers!
Sent from my SGH-M919 using xda app-developers app
Question, If where s-offed then HTCdev unlock with super sid then change the sid to VZW but somehow get locked again I.e. OTA update, is it possible to unlock again or change the sid back to super sid to unlock?
Sent from my ADR6425LVW using Tapatalk 2 - my one is out getting' s-offed
RebelShadow said:
Question, If where s-offed then HTCdev unlock with super sid then change the sid to VZW but somehow get locked again I.e. OTA update, is it possible to unlock again or change the sid back to super sid to unlock?
Click to expand...
Click to collapse
+1 I had the same question.
And again, why would you take said OTA to begin with? It goes against every principle of rooting. If you root, you NEVER take OTA's.
If you get it, either post the ota zip or link and wait for someone to patch the base up with it. It doesn't make the update better if you take the one that downloads to your phone versus flashing an updated rom.
I don't know what it is about OTA's that makes people willing to jump through hoops just to take the "official" one.
CNexus said:
And again, why would you take said OTA to begin with? It goes against every principle of rooting.
If you get it, either post the ota zip or link and wait for someone to patch the base up with it. It doesn't make the update better if you take the one that downloads to your phone versus flashing an updated rom.
I don't know what it is about OTA's that makes people willing to jump through hoops just to take the "official" one.
Click to expand...
Click to collapse
I can't speak for RebelShadow but I meant more along the lines of if we S-OFF and something happens - via VZW - that reestablishes S-ON.. can it be S-OFF'd again without the Java Card?
I mean I don't know if there is anything VZW could do to reestablish S-ON, and I've heard even if they could they wouldn't because they would mess with legitimate developers.
It's not that I want to take OTA's, I'd refuse them and wait for the community to provide it. It was more of a 'what happens if S-OFF is switched back to S-ON'?
If S-OFF ever gets toggled back to s-on, the game is over. You would need some updated exploit or another java card round.
It's like leaving your house with your keys inside. There's no way back in unless you find some back door.
So I originally had an unlocked bootloader with Twrp recovery and sent it to sonic for s-off. He did his java card magic and now I'm good. Mine has tampered now and just curious what is the best way, if possible right now, to get rid of it?
isoh said:
Thanks so much for making this!
I'm working with Sonic on this (mainly setting up and maintaining the website), but I would like to offer some insight on the JavaCard:
A Javacard is a special type of microsd card (smart card, this is the same thing as those NFC wallets or whatever that use a smart cards) that contains a microprocessor. It also has a signed and encrypted java applet that is set up to run whatever the maker wants it to. In this case HTC set it up to communicate with the phone for diagnostic services. It is also capable of carrier unlocking the phone. Due to digital signatures (when this card is almost burned I'm planning on taking a look at it) the card only has a certain number of phones that can be s offed or unlocked (it works on a credit system - 2 credits s off 1 credit carrier unlock). Everything on the card is locked up like fort knox to my knowledge but we shall see!
We also currently have the diag files needed for several other phones and can S-off them too. Not sure of all of them atm but Sonic posted it in the other thread a few days ago.
Cheers!
Sent from my SGH-M919 using xda app-developers app
Click to expand...
Click to collapse
your quite welcome! just my little part to help you guys out,this is a great service that is being offered. sonic has done my one x,but i was unsure the extent that he is willing to do other devices,i figure folks can contact him prior to purchasing the service if they wish for other models to be done. better way to say it,i was unsure how much he wanted to advertise the other models he had the diags for. if the vzw s-offs slow down,id be happy to add the list of phones to the OP,and replicate this in other forums. im sure the tegra 3 one x and x+ crowds would have some interest,those devices have been out a long time with no exploit for s off,and no real hope on the horizon.
my one x is one of my favorite all time devices. i use it at work,and use my one in the evenings. im actually considering seeking out a black one x to send him as well
thanks for the insight on the java card,ill add it,or a link to it,in the OP
RebelShadow said:
Question, If where s-offed then HTCdev unlock with super sid then change the sid to VZW but somehow get locked again I.e. OTA update, is it possible to unlock again or change the sid back to super sid to unlock?
Sent from my ADR6425LVW using Tapatalk 2 - my one is out getting' s-offed
Click to expand...
Click to collapse
one4thewings said:
+1 I had the same question.
Click to expand...
Click to collapse
an OTA is unlikely to change your lock status,or your radio secure flag. while it is technically possible,this would also break legitimate test devices functionality,so the chances of it are slim to none.
there is not much reason to relock your bootloader with s off. you can run an ruu with the phone unlocked. to directly answer your question,however,if you did relock the bootloader,you can easily change the cid back to 11111111 with the same comand and re-unlock
fastboot oem writecid xxxxxxxx
or
fastboot oem writecid 11111111
to re-supercid
Thank you for answering without the "OTA" rant. I not not concerned with taking an OTA as I'm planning on using a custom ROM but was asking as a what if / just in case scenario.
Sent from my ADR6425LVW using Tapatalk 2
deleted due to dumb post
andybones said:
so once we get the phone back and we have unlocked with htc dev to get unlocked bootloader, and want to go back to stock CID
the fastboot command is
"fastboot oem writecid xxxxxxxx"
and not just "fastboot oem writecid"
or do you have to have those (8) "x"'s?
Click to expand...
Click to collapse
Not quite sure if I know what you're saying, but to go back to the stock CID is:
fastboot oem writecid VZW__001
I think the x's he put are just to show that you can put in any 8 numbers, as long as they're all the same (ie. 22222222, 77777777) to get Super-CID back.
Nevermind, 11111111 is Super, VZW__001 is stock.
PapaSmurf6768 said:
Not quite sure if I know what you're saying, but to go back to the stock CID is:
fastboot oem writecid VZW__001
I think the x's he put are just to show that you can put in any 8 numbers, as long as they're all the same (ie. 22222222, 77777777) to get Super-CID back.
Click to expand...
Click to collapse
ahh sh*t I am a dumb$$, thank you
I see now that the "VZW__001" is the 8 x's and different for each carrier, thank you!
got confused for a second there.