Hey mates,
my XZ1c (unlocked) just received the new OTA in Germany, security patch level October 1st.
Anyone an idea what has changed? There is no official changelog or at least I didn't find any
Hello.
I got it too.
No change log on the notification, so i do not know too.
BlueBorne vulnerability fixed
I can confirm BlueBorne vulnerability fix too. No news on camera fix :/ BTW Can we use somehow the BlueBorne vulnerability to root XZ1C? Or to backup TA partition (DRM keys)?
Good question...
Davka said:
BlueBorne vulnerability fixed
Click to expand...
Click to collapse
Yeah, but for that only the update didn't need 300MB I guess
Camera "distortion" (mind the quotes) is unchanged.
Anybody using a VPN to get this update? Because I just tried VPN locations in Germany, Japan, and Austria with no luck on getting the new OTA.
I think that would not work, it's based on the emei and rom canal on the phone, so using a vpn will not change anything.
If you are on a USA model, and that the update is not released yet for the USA version, changing for EU country will not change anything.
And even if it's released for usa, it could be a little bit later for your phone, as sometimes they restricted to some IMEI not to push on all the phone in the same time.
Just updated. Don't feel any different compare to .324 aside from october security update.
Sent from my XZ1 Compact using XDA Labs
3 new things I notice after using this firmware for 1-2 days:
1) The login process to google account with 2-steps verification activated is hassle free now. In previous firmware I had trouble getting and entering the verification code, and thus had to manually disable the 2-step verification before I could login.
2) Maybe placebo, but I feel I get a better and more stable mobile data connection. Previously it felt like even though the mobile data was active and the icon shows connected to 3G, but occationally I couldn't do anything related to internet connection until I turn off and on again the mobile data. Maybe it was due to bad signal from provider on that day too, I don't know.
3) Very minor adjustment; when we press the volume up/down button it used to show 'ring volume', but its now 'ring and notification volume'.
Still no update for my phone Is has a china IMEI. Maybe i just have to wait.
What's different in the firmware update..
I did an extract and compare against the UK 324 and 374 versions and came up with a rough list.
The contents of these SIN files are exactly the same:
adspso_X-FLASH-ALL-C93B.sin
amss_fs_1_X-FLASH-ALL-C93B.sin
amss_fs_2_X-FLASH-ALL-C93B.sin
appslog_X-FLASH-ALL-C93B.sin
bluetooth_X-FLASH-ALL-C93B.sin
bootloader_X_BOOT_MSM8998_LA1_1_O_77_X-FLASH-ALL-C93B.sin (all boot SINs, actually, but this is the one that gets loaded)
cache_X-FLASH-ALL-C93B.sin
diag_X-FLASH-ALL-C93B.sin
fsmetadata_X-FLASH-ALL-C93B.sin
ramdump_X-FLASH-ALL-C93B.sin
ssd_X-FLASH-ALL-C93B.sin
persist_X-FLASH-ALL-C93B.sin
Qnovo_X-FLASH-ALL-C93B.sin
userdata_X-FLASH-ALL-C93B.sin
All *.ta files are the same.
Now for the differences.
amss_fsg_X-FLASH-ALL-C93B.sin:
MCC 240 was moved from the [mcc_list name="eu_b4_mccs"] config to a new [mcc_list name="swe_mccs"] config.
elabel-G8441-row-row_201709190503668.1_47.1.A.2.374_X-FLASH-LTALABEL-C93B.sin:
Added a regulatory label for Malaysia.
fotakernel_X-FLASH-ALL-C93B.sin (Ramdisk only, didn't extract the kernel):
crashtag specifies new firmware version
sepolicy bits changed
prop.default has "ro.setupwizard.rotation_locked=false" added
kernel_X-FLASH-ALL-C93B.sin (Ramdisk only, didn't extract the kernel):
crashtag specifies new firmware version
sepolicy bits changed
init.sony-platform.rc had this line removed: setprop persist.bluetooth.btsnooppath "/sdcard/btsnoop_hci.log"
modem_X-FLASH-ALL-C93B.sin:
Changed audio, modem, qdsp6m, and sensor blobs
oem_X-FLASH-ALL-C93B.sin:
"ssid=_The Cloud X" added to preset_networks.conf
APN updates
"com.amazon.avod.thirdpartyclient.apk" added
ee_ims & telefonica specific modem configs added
Overlay APK changes (I didn't check the changes)
Version & region changes (R8B->R12B)
system_X-FLASH-ALL-C93B.sin:
/app/[lots changed, haven't extracted]
/bin/dnsmasq changed
/bin/customization/modem/* changed
/etc/firmware/(I honestly can't tell if it's a real change or just recompile changes)
/etc/permissions/privapp-permissions-google.xml added: permission name="android.permission.DISPATCH_PROVISIONING_MESSAGE"
/framework/(all oat, odex, art changed, no vdex's were changed except: boot-framework.vdex, boot-ims-common.vdex, boot-telephony-common.vdex)
/framework/framework-res.apk changed
/lib/hw/bluetooth.default.so changed
/lib/modules/* (I honestly can't tell if it's a real change or just recompile changes)
/lib/libandroid_runtime.so, libaudioflinger.so, libmediaplayerservice.so, libminikin.so, libpdfium.so, libsqlite.so, libstagefright.so, libstagefright_foundation.so, libstagefright_soft_avcdec.so, libvorbisidec.so
/lib64/hw/bluetooth.default.so
/lib64/libandroid_runtime.so, libaudioflinger.so, libdeqp_somc.so, libmediaplayerservice.so, libminikin.so, libnfc-nci.so, libpdfium.so, libsqlite.so, libstagefright.so, libstagefright_foundation.so, libstagefright_soft_avcdec.so, libvorbisidec.so
/priv-app/[lots changed, haven't extracted]
build.prop -> "ro.expect.recovery_id"
vendor_X-FLASH-ALL-C93B.sin:
/app/[lots change, haven't extracted],
/bin/hw/illumination_service
/bin/sct_service, sensors.qcom, updatemiscta
/etc/permissions/handheld_core_hardware.xml added
/etc/sepolicy/[files] some changes
/lib/camera/libexcal_multiframe_nr_plugin.so, libexcal_snapshot_ctrl_plugin.so
/lib/modules/qca_cld3_wlan.ko
/lib/soundfx/libdownmix.so, libreverbwrapper.so
/lib/libcammw.so, libexcal_system.so (face and object tracking?), libmmcamera2_iface_modules.so, libmmcamera2_imglib_modules.so, libmmcamera2_mct.so, libmmcamera2_sensor_modules.so, libmmcamera2_stats_modules.so, libOmxVenc.so, libpf.so (OMX video related), libril-qc-qmi-1.so
/lib64/soundfx/libdownmix.so, libreverbwrapper.so,
/lib64/libpf.so, libril-qc-qmi-1.so
build date changed
ro.setupwizard.rotation_locked=false added to props
There might be bits that I missed in the changed SINs, but the unchanged ones are unchanged.
Bear in mind that with the split firmware bits, sometimes it's difficult to determine if, say, "tzsuntory.b01" was actually changed, or if it was just a header difference due to a recompile. So I'm just ignoring the ones that I "think" are the same. That said, if I'm ignoring it, it's because it was contained in a SIN file that has other changes as well.
EDIT: I forgot to add that userdata_X-FLASH-ALL-C93B.sin is also unchanged.
Related
DISCLAIMER:
I WILL NOT BE HELD RESPONSIBLE IF YOU BRICK YOUR PHONE AFTER FOLLOWING THIS GUIDE. BUT I ASSURE YOU THAT THESE FIRMWARES HAVE BEEN PERSONALLY TESTED BY ME AND WORKS WITHOUT ANY HINDRANCE!!!
COPYRIGHT NOTICE: ;D ;D ;D
If anyone wishes to share my work with other users on other forums, they are free to do so under the condition that they credit me in their post and if possible link to my post here.
Thank You.
***************** THE FIRST MODIFIED INDIAN FIRMWARES ******************
****************************** ENJOY ********************************
A very good afternoon to all fellow wavers!!! ;D ;D ;D I am finally done with my exams and have finished the modification to the Indian bada 1.2 (DDKD1) and bada 1.0.2 (DDJI2). ;D ;D
NOTE: For some features to work, you will have to first flash to the modified DDJI2 and then flash to DDKD1. SO I advice everyone that they flash DDJI2 (1.0.2) first. Thank you for your understanding.
Firmwares Included:
1. Modified DDJI2.
2. Modified DDKD1. Only includes the CSC and PFS files, since they are the ones which were modified. So first you will need to download the actual DDKD1 from here: http://rapidshare.com/files/459305949/DDKD1.rar (THANKS TO ROHIRRIM ) and then replace the CSC and PFS files with the files I am uploading. Sorry for the inconvenience, but my net sucks.
For those who want CALL RECORDING, I am separately uploading two files: apps_compressed.bin and a CSC file. NOTE: If you flash these two files, you will have call recording, but you won't be able to update with kies anymore. Kies will show your firmware as S8500JVKC1/S8500ODDKD1. So the choice is yours. For more detailed explanation on how to get call recording keep reading.
Links to the files:
Modified DDJI2 - http://www.multiupload.com/1P61TNH9U0
Modified DDKD1 - http://www.multiupload.com/GMBM6PPQBY
NOTE: You will need 7-zip to extract files. Its free. You can google for it. Thanks.
CHANGE LOGS:
1. Bada 1.0.2 - DDJI2:-
a. The default browser bookmarks are now editable and can be deleted.
b. Social Hub Premium
c. Max MMS size is now 600 KB.
d. Faster GPS. (Lock within a minute under clear sky. ;D)
e. Now max receiver address for messages is 100. (In original DDJI2 it was 50.)
f. Faster booting. About 10 second faster switch on and about 5 sec faster switch off.
g. The default and only CSC region is India. So no need of pre-configuration worries.
h. Deleted all the pre-installed java apps.
i. Included Utalk java locked app with background running and push notifications.
j. Changed Java heap sizes for better java app performance.
k. Increased media player, music player, recorder and VOICE CALL volumes.
l. Deleted the pre-loaded images except the default theme background image,
m. Flash and ad-blocking is now enabled as default.
n. Improved the Secondary Camera (Front Camera) recording quality and increased it's framerate.
o. Increased the youtube streaming bitrate while on wifi.
j. Includes ASPHALT 5 (v1.1.1)
2. Bada 1.2 - DDKD1
a. All the features of Bada 1.2.
b. Support for Youtube 3d.
c. All the features mentioned in DDJI2.
For Social Hub Premium with bada 1.2:
If you want to enjoy Social Hub Premium on DDKD1, you need to first flash to DDJI2. Or else it won't work.
For Call Recording:
For call recording, you will need to flash to the modified DDJI2 and then the modified DDKD1. After that you will need to flash only the apps_compressed.bin file, link to which I am posting below. BUT AS I SAID EARLIER, if you want call recording, YOU CAN'T UPDATE USING KIES ANYMORE.. Your firmware will now look as: S8500JVKC1/S8500ODDKD1 (INU). This is because the apps_compressed.bn is fro the Turkish firmware. I have also included the Turkish CSC file with Indian pre-configuration. So if you wish you can flash the CSC file too to change your CSC version also to TURKISH one.
Download link:
apps_compressed.bin: http://www.multiupload.com/T7E7ZMRKWU
CSC file: http://www.multiupload.com/JI63RFB4YM
HOW TO FLASH:
Here is a video guide on how to flash, made by an user from this forum: Samsung Wave Flashing Guide
I have also attached a pdf guide to this post. The guide is from samfirmware.com. Remember not to check bootchange in multiloader even though the pdf guide asks you to do so.
WHAT TO DO IF AN ERROR COMES UP DURING FLASHING:
If during flashing, multiloader show an error like "Error: apps write" or "Errror: Rc1 write" or aything else for that matter, do not panic. First thing to do is press port search again and re-download the whole firmware again. If the error shows again, close multiloader, remove your phone from the usb, turn it off and then go back to download mode again. Open multiloader and then connect your phone. Then browse for the firmware files again, press port search and press Download. This time it should work without errors.
WHAT TO DO BEFORE FLASHING:
Before each flash, it is recommended that you do a hard reset. Type in "*2767*3855#" without quotes onto the keypad. Remember to take out the sim card and memory card before doing a hard reset. Also remember to backup all the stuff stored on the phone since the hard reset and flashing process wipes away internal memory.
WHAT TO DO AFTER FLASHING:
After each flash do a hard reset again. After the final flash, followed by a hard reset, do the following:
1. Pre-configuration:
Although the Pre-Configuration is already set to INU, and even though there are no other Pre-Configuration options, it is recommended to do the Pre-config process.
How to proceed:
Type in "*#5239870*#" without quotes. Select Pre-configuration. Type in the following in the password field without quotes: "*#27236*#" an press confirm. You will only see INU and it is already selected but it is better to select it again. NOTE: This process is similar to a hard reset. So remove sim and memory card.
2. Voice quality
Enter *#197328640#
1. Choose "[5] Audio"
2. Choose "[1] CP Config"
3. Choose "[1] RCV Config"
4. Choose "[7] Rx AGC"
5. Set "[0] enable flag" to 0 (both read and write)
Repeat step 3 with 2/3/4 (EAR/SPK/BTH).
3. Battery Callibration:
Type "*#0228#" without quotes. Then charge your phone until the top three parameters are 100%. If charging stops in between, unplug charger and then plug it again. Do this until you get 100% on all three.
4. Camera Update: (VERY RISKY!)
If you want to see the camera improvements I mentioned, please follow his step. But this process is very risky.
Caution: Do this very carefully. Make sure you are not out of battery before you proceed.
1. Enter *#36287#
2. Press 3
3. Wait for 4 minutes!! Do not touch your phone during the update process. Do nothing until it says that update is complete!!!
FOR SOCIAL HUB PREMIUM WITH FACEBOOK AND ICQ:
The default Social Hub premium only supports Yahoo, MSN and Google. If you want facebook and ICQ follow the guide in these two websites:
http://www.bada-blog.de/2011/02/17/anleitung-icq-account-mit-dem-google-talk-account-verknupfen/
http://badanation.de/topic.php?t=3313
NOTE: The websites are in German. So use google translate. If someone from this forum who is a native German and could translate the guide for us, it would be great! ;D ;D
Hope everybody has a great time ;D ;D ;D ;D ;D ;D
d. Faster GPS. (Lock within a minute under clear sky. ;D)
Click to expand...
Click to collapse
how did you do this??
thanks in advance
haha, ...
For faster gps there is some ini file to be editrd
change some adress to supl.google.com
i forgot what those "some" is
kadavil said:
For faster gps there is some ini file to be editrd
change some adress to supl.google.com
i forgot what those "some" is
Click to expand...
Click to collapse
hahahahaha
that change kills gps on bada 1.2
also it doesn't make it that much fast to drop down the time from 7-10 min to 1min
anyway thanks for telling
1. You say you have deleted the pre-loaded images, what about audio files?
2. Does your firmware allow Facebook to update via Samsung Apps for Facebook chat?
3. How about adding Answering Machine to the firmware?
no it doesnt :O
my gps works perfectly after changing those settings, its really fast and very accurate
@ TC can u increase the sms memory because it sux only 1300 sms memory dude
For a faster gps, I edited the ini files to enable auto download, data receive type from 2 to 1, device type to 1 from 3, enabled magnetic sensor and enabled ULTSon. Also there is a gps property in the csc file which you can change to s-gps (simultaneous gps).
And these settings do not harm the gps in anyway and its blazing fast on the Indian firmware at least.
The message memory setting is somewhere deep in the system files which are heavily protected. Most probably they are one of the .so file in the ShpAPP dump.
sinstoic said:
1. You say you have deleted the pre-loaded images, what about audio files?
2. Does your firmware allow Facebook to update via Samsung Apps for Facebook chat?
3. How about adding Answering Machine to the firmware?
Click to expand...
Click to collapse
1. I have deleted the pre-loaded images except for the default theme image. I have also deleted most of the ringtones save a few and also deleted the alert tones which are not used as default by the phone.
2. Yes, the facebook app can be updtaed.
3. I didn't understand what you meant here??
Does this custom rom support launching of spoofed apps from menu...
Some Bada Firmware has answering machine. This saves quite some money by avoiding operator voicemail service.
m90ultimate said:
Does this custom rom support launching of spoofed apps from menu...
Click to expand...
Click to collapse
The DDJI2 (Bada 1.0.2) firmware I posted, does support spoofing from menu. That's because it's an older firmware. However DDKD1 (Bada 1.2) doesn't support spoofing.
GPS+
Hello Astrotom forgive my bad English.
I would like clarification on the GPS function +, if you've made the changes you can make all the FW?
Can you explain how?
In all the firmware I tested the GPS + does not work.
I confirm with you that your firmware when you enable GPS + downloads work data and the 3G icon blinks and turns red?
Then you find the kb downloaded packet data?
DDKD1 carcked games r working?
can u make lockscreen as bada 1.2
did any body experienced JPJH1 middle eat version 1.02.It has buit in ans macine along with call rec. only SHP is not there. Can we extract the app frow th FW n install in ddkd1 or ddjI2.. Thank you for the gr8 work
masterdex said:
Hello Astrotom forgive my bad English.
I would like clarification on the GPS function +, if you've made the changes you can make all the FW?
Can you explain how?
In all the firmware I tested the GPS + does not work.
I confirm with you that your firmware when you enable GPS + downloads work data and the 3G icon blinks and turns red?
Then you find the kb downloaded packet data?
Click to expand...
Click to collapse
Yes. The gps+ setting works for me. The 3G icon turns red and downloads the satellite data valid for 168 hours or so. And once you download that data, you never need to worry about gps locks as long as you are outdoors. You will get a alock within seconds there on. However if you disable location services, the data will have to be downloaded again and it may take a minute or two.
Good
astrotom said:
Yes. The gps+ setting works for me. The 3G icon turns red and downloads the satellite data valid for 168 hours or so. And once you download that data, you never need to worry about gps locks as long as you are outdoors. You will get a alock within seconds there on. However if you disable location services, the data will have to be downloaded again and it may take a minute or two.
Click to expand...
Click to collapse
Thank you for responding.
It would be good that you've done as you communicate to Samsung, because they still were not able to activate the GPS service +.
I do not doubt your words, but I want to be sure before risking overwriting.
I think this is one of the biggest bugs Bada.
Hi All,
Can anyone give me some pointers updating this classic Nok? [6700-C1]
I have the following files downloaded;
rm470__13.10.mcusw [25,813kb]
rm470__13.10.ppm_mb [5,549kb]
rm470__13.10_ISM_007.image_mb_ae_bronze [23,471kb]
as well as this (Nokia BEST (BB5 Easy Service Tool) by Infinity-Box Team ver 1.51) service tool and the Nokia Care Suite installed
Are there any tutes or step-by-steps [or just general advice?] on how to make sure this goes well? To start, do these look like the right files for Euro / English update 13.10?
Its fairly obvious where to reference the .mcusw and the .ppm_mb - not sure where to choose the .image file or what other options to take from the 'Flashing' menu
Thanks a mill!
Looks like the .image file is selected in CNT1
Was wondering what bronze means and ppm_mb - is that the language file?
This looks like it has what I need http://mobile-sn.org/files/Nokia-6700-Classic-RM-470-product-code-0570877/90816.html?lang=en
For GB + Ireland - but no longer exists
Crap - just spent over an hour searching - seems like all there ever are links to files on Nokia's old site which disappeared when M$ took over.
I bloody hate M$
ヽ(ಠ_ಠ)ノ
Anyone got a mirror server with all the old Nok stuff?
Here is 13.1 in the following 3 files;
rm470__13.10.mcusw
rm470__13.10.ppm_sp
rm470__13.10_ISM_020.image_sp_silver
So sp=Spanish [but you can select English and other EU langs later] and silver=theme highlights that shipped with the silver/chrome version.
I flashed this using Best and it went ok only for one annoying point. I found out that after v10.5 they changed the mail client and you can no longer manually enter your mail providers exact details. So, if the auto stuff fails - you fail too because you cannot enter settings yourself. This sucks big time. How to overwrite an individual app on S40?
If you dont need to do email then this is probably a reasonable upgrade from v7.6
Here are files: https://1drv.ms/u/s!AppjETAtk8PvcVXWaN3aeH4fDzE
This may also be useful?
http://mobilestore786.blogspot.co.uk/2014/12/all-nokia-latest-flash-files.html
Just seen that there is a new firmware out for our Xperia's. Can we have some feedback from people who have downloaded it.
Date of security patch?
Fixes restarts?
Power consuption?
Anything to report.
Got it OTA 5 minutes ago. Can only report December 1st security patch so far.
Wow they must be having serious issues with recent releases, what with the abnormally frequent revisions and pulling some offline.
Glad they included the December patch in the latest release.
Still sucks to be stuck on .374 though, with no camera distortion fix
@mhaha
Could you check if the app drawer opens if you swipe up in home screen (and you can go back to homescreen by swiping down in app drawer)? This seems to be new in this build. (I can not check if it works in an older one.)
nospherato said:
@mhaha
Could you check if the app drawer opens if you swipe up in home screen (and you can go back to homescreen by swiping down in app drawer)? This seems to be new in this build. (I can not check if it works in an older one.)
Click to expand...
Click to collapse
This was a new feature implemented on a recent update to the home launcher app (11.0.A.0.8), and since I updated it, I have this function in .374.
It's not tied to the firmware version.
EDIT: I updated the app through Google Play, they have a list of changes posted for the new launcher. Wish they'd do the same for firmware updates...
Hm, strange.. Mine xperia home version 10.2.A.3.25 says it's up to date. Also the changelog only says "bugfixes". (inside "more" only generic stuff like "full integrated google-feed etc.)
Hm, okay.. inside the home settings it says 11.0.A.0.5
Installed on my phone last night. It seems very smooth, I can't find any problems.
Bluetooth problems I had with connecting to things seems to have resolved. Previously the phone wouldn't automaically connect to a device, even though it was the only thing in range.
The camera fix is the most obvious thing, this will be new for people who didn't get the 47.1.A.5.51
Monitoring battery life now to see how it compares.
Phone just rebooted, so the new firmware didn't fix that.
I still have Bluetooth issues, i.e it wont automatically start playing music but FF/REW seems a bit better, but i still get no track names on my cars inbuilt head unit.
Seems a Little bit smoother imo. Still apps still freezes from time to time. Seems like battery is back to normal again. If u experience batterydrain anomaly, try updating play service to .51 Beta from apkmirror.
So far .49 seems good, the battery seems to be much improved ?
All,
I would note that it appears (per screenshot here) that you can't downgrade to a previous version once you've installed the 47.1.A.8.49 firmware.
I suspect they have enabled Qualcomm's bootloader versioning which prevents the system from booting when it detects the older version.
This probably means that there is a serious and potentially easy to exploit vulnerability in the previous versions of the bootloader. Note the many closed source Qualcomm vulnerabilities listed in the December ASB.
It's possible that someone will eventually discover what those vulnerabilities are and come up with a way to root without unlocking the bootloader.
Personally, I'm staying away from this update for a while.
EDIT: I was wrong. See below.
pbarrette said:
All,
I would note that it appears (per screenshot here) that you can't downgrade to a previous version once you've installed the 47.1.A.8.49 firmware.
Click to expand...
Click to collapse
The update screen has always had that disclaimer though, for each and every update I've ever received - and I've owned nearly every Xperia compact.
If you only go the official route, downgrading was never an option.
If they implemented a way of preventing one from flashing an older firmware even when using third party tools like Flashtool or newflasher, then that indeed is news, and bad news at that. But the screenshot is largely irrelevant.
unfortunately I don't receive any updates for mine it's still on "47.1.A.2.374"
When I'm conected to WLAN and search for new updates via "Settings --> System --> Softwareupdate" it tells me that I already have the newest updates installed
mhaha said:
The update screen has always had that disclaimer though, for each and every update I've ever received - and I've owned nearly every Xperia compact.
If you only go the official route, downgrading was never an option.
If they implemented a way of preventing one from flashing an older firmware even when using third party tools like Flashtool or newflasher, then that indeed is news, and bad news at that. But the screenshot is largely irrelevant.
Click to expand...
Click to collapse
You're correct and I was wrong.
A user was trying to downgrade and was getting boot-loops and another user pointed out the statement in the ROM.
I knew that there were a lot of closed source Qualcomm updates and assumed that Sony implemented version rollback prevention.
They did not.
I was wrong.
I pulled the attestation certificates from all of the firmware versions released thus far and compared them.
They are identical.
Code:
CN = Yoshino com-2 Attestation Cert
OU = 01 0000000000000001 SW_ID
OU = 02 0005E0E100010004 HW_ID
OU = 03 0000000000000000 DEBUG
OU = 04 0001 OEM_ID
OU = 05 00020000 SW_SIZE
OU = 06 0004 MODEL_ID
OU = 07 0001 SHA256
O = Sony Mobile Communications Inc.
L = Lund
S = N/A
C = SE
Note that the "SW_ID" is the bit used to implement rollback prevention and is actually supposed to be read in two parts:
0000000000000001
The red bit is the version number and the green bit is the image identifier.
Essentially, the version number hasn't changed, so we can still roll-back to a previous version.
The user with the problem likely has some other problem unrelated to bootloader versioning.
I apologize for the misinformation.
pbarrette said:
You're correct and I was wrong.
A user was trying to downgrade and was getting boot-loops and another user pointed out the statement in the ROM.
I knew that there were a lot of closed source Qualcomm updates and assumed that Sony implemented version rollback prevention.
They did not.
I was wrong.
I pulled the attestation certificates from all of the firmware versions released thus far and compared them.
They are identical.
Code:
CN = Yoshino com-2 Attestation Cert
OU = 01 0000000000000001 SW_ID
OU = 02 0005E0E100010004 HW_ID
OU = 03 0000000000000000 DEBUG
OU = 04 0001 OEM_ID
OU = 05 00020000 SW_SIZE
OU = 06 0004 MODEL_ID
OU = 07 0001 SHA256
O = Sony Mobile Communications Inc.
L = Lund
S = N/A
C = SE
Note that the "SW_ID" is the bit used to implement rollback prevention and is actually supposed to be read in two parts:
0000000000000001
The red bit is the version number and the green bit is the image identifier.
Essentially, the version number hasn't changed, so we can still roll-back to a previous version.
The user with the problem likely has some other problem unrelated to bootloader versioning.
I apologize for the misinformation.
Click to expand...
Click to collapse
Do you know how i might go about troubleshooting the problem? I'm grateful for newflasher and can follow directions pretty well, but obviously something went slightly wrong. Is it my own fault for not flashing over my user data? it worked fine when i flashed from .51 to .7.1.
billbond4 said:
I still have Bluetooth issues, i.e it wont automatically start playing music but FF/REW seems a bit better, but i still get no track names on my cars inbuilt head unit.
Click to expand...
Click to collapse
I had the issue with not getting the track names as well. Solved by changing AVRCP to version 1.4 in developer options and then re-pairing (forget the device and then pair again) with my Kenwood head unit. Media controls also work fine.
Im_A_Decoy said:
I had the issue with not getting the track names as well. Solved by changing AVRCP to version 1.4 in developer options and then re-pairing (forget the device and then pair again) with my Kenwood head unit. Media controls also work fine.
Click to expand...
Click to collapse
I have a Pioneer and I don't have any problems, regardless avrcp version
Im_A_Decoy said:
I had the issue with not getting the track names as well. Solved by changing AVRCP to version 1.4 in developer options and then re-pairing (forget the device and then pair again) with my Kenwood head unit. Media controls also work fine.
Click to expand...
Click to collapse
Thanks so much for this. This workaround fixed the title display in my Hyundai .
Does anyone of you also get worse battery run times? Mine phone is (only 30min sot) in standby for 1d14h and already at 45%... Standby showing 17% consume, Android OS12%, mobile standy 8% and (RCS) phone 7% which all together seems pretty much... Before this update I got runtimes for 4days+, not I already have to charge after 3 days.
(I did not uninstall or install any new apps.)
Custom 21.329.01.00.00 firmware and 17.100.19.01.00 web interface for E5770
The firmware is based on the original global firmware version 21.329.01.00.00. It can be installed on any technological firmware, or updated from a modified firmware.
Flash using balongflash (Windows, Linux).
Attention!
This firmware can render your device unbootable! Use it only if you are aware of all the risks and consequences. In case of any problems, do not wait for help, you're on your own. Do not install firmware by non-tech-savvy people request, and do not sell routers with this firmware preinstalled.
Changes:
Firmware digital signature verification in the firmware server is disabled
Added support for IPv6 on mobile networks (disabled by default, could be activated "ipv6" script)
ADB installed and Telnet activated (disabled by default, controlled from the OLED menu)
The stock versions of busybox, iptables and ip6tables programs are replaced with full-fledged ones
The "atc" utility is installed to send AT commands from the console
Installed "ttl" script for modifying (fixing) TTL (for IPv4) and HL (for IPv6)
Installed "imei" script to change IMEI
A local transparent proxy server "tpws" and a script "anticensorship" are installed to circumvent censorship to sites from the registry of prohibited sites in Russian Federation (IPv4 only)
Added DNS over TLS resolver stubby (version 1.5.1, compiled with OpenSSL 1.0.2p) and DNS-level adblock (IPv4 only)
Added extended menu on OLED screen
Added RNDIS and ECM Ethernet switching functionality without a switch program on a computer
All NVRAM items are unlocked
AT^DATALOCK code is disabled
Added kernel module TUN/TAP (for OpenVPN and other programs)
Added OpenVPN (version 2.4.6, compiled with OpenSSL 1.0.2p) and scripts for DNS redirection
Added curl (version 7.63.0, compiled with OpenSSL 1.0.2p)
Added EXT4 kernel module and swap support
Added script for installing Entware application repository
Added script "adblock_update", for updating the list of advertising domains
Added script to change MAC address of Wi-Fi in Extender mode (script "wifiext_mac") and USB MAC addresses (script "usb_mac")
Removed mobile connection logging (mobile logger) to extend flash memory lifetime
Multilingual web interface with GSM/UMTS/LTE band selection menu
The extended menu on the OLED screen allows you to manage network mode (LTE/3G/GSM), TTL modification, circumvent censorship, ad blocking, IMEI change, USB composition, control access to the web interface, Telnet and ADB.
TTL modification and IMEI change require a reboot. The remaining menu items are applied instantly.
To activate extended menu, press left (WPS) button 7 times on Wi-Fi information screen.
The "anticensorship" script helps to bypass Deep Packet Inspection (DPI) systems on some operators in order to bypass web site blocking. It starts the local proxy server from zapret complex https://github.com/bol-van/zapret, modifying the packets in such a way as to complicate their analysis, and redirects all traffic to ports 80 (for HTTP) and 443 (for HTTPS) to local proxy. The proxy server works autonomously, without any third-party server on the Internet. It is recommended to use it in conjunction with DNS over TLS, in order to prevent possible DNS hijacking by the operator.
Advertisement blocking is performed on DNS level with dnsmasq DNS server. It works with DNS over TLS as upstream, requests for which are redirected if the corresponding menu item is activated from the OLED screen. EasyList and RuAdList https://forums.lanik.us/viewtopic.php?f=102&t=32524 from raletag and AdAway https://adaway.org/hosts.txt are used as an ad lists.
Ad-blocking at the DNS level works worse than full-fledged content blockers in browsers (AdBlock, µBlock), but it works on any device and in any program without additional settings.
You can also control ad blocking with the "dns_over_tls" script.
Domain lists could be updated using "adblock_update" command.
Entware application repository allows you to install additional Linux software from the armv7sf-k3.2 entware repository http://bin.entware.net/armv7sf-k3.2/Packages.html, using "opkg" package manager used in open source firmware for OpenWRT routers. Entware is installed using the "entware install" command. Entware files are installed in /opt, which is mounted in /online/opt. You can install many programs on 30 MB free space after installation on /online partition.
The router and Entware environments are independent of each other, the installed Entware software cannot be called from the router's environment, and the firmware programs and scripts cannot be called from the Entware. This was done to ensure that the installed packages would not conflict with files in the firmware.
To gain access to the Entware environment, use the "entware shell" command, to exit, type exit (or press CTRL+D).
Entware is designed for advanced users who understand how to customize and use installable programs. About 15 MB of free RAM is available in the router, the launch of heavy programs can lead to the crash of important services for the router (especially when DNS over TLS is enabled), remember that.
Download link
https://github.com/Huawei-LTE-routers-mods/Huawei_E5770_mod_fw_webui
More information about Huawei LTE routers (zeronet network): https://zn.amorgan.xyz/1HegcCNqxTuhPaHmjZwPGZ9LY34vXD6H1V/
E5770 O2 FW version 21.200.19.01.405 SIM unlock
Huawei E5770 from British O2 network with firmware version 21.200.19.01.405 could be unlocked for free with a special firmware, without disassembling the device.
This firmware is based on 21.200.19.01.405 version and could be installed without flash code.
E5770s_Update_21.200.19.01.405_o2_simunlock_signed.7z
If you want to install another official firmware or a custom firmware, you need to downgrade 21.200.19.01.405 to a special technological firmware version 21.180.99.10.00, which does not check firmware digital signatures.
E5770s_DOWNGRADE_o2_21.200.19.01.405_to_21.180.99.10.00_signed.7z
To install the firmware, press both RESET button (on the back of the device) and POWER button, connect it to the PC and use balongflash software (Windows, Linux)
More information about Huawei LTE routers (zeronet network): https://zn.amorgan.xyz/1HegcCNqxTuhPaHmjZwPGZ9LY34vXD6H1V/
Thabks for the share. Is it possible to unlock all bands to use it anywhere in the globe?
link not working
Hi I tried downloading the modded firmware but it only goes to 20% every time then hangs. can you fix please or host somewhere else.
many thanks
abiliotiago said:
Thabks for the share. Is it possible to unlock all bands to use it anywhere in the globe?
Click to expand...
Click to collapse
No, that's a hardware limitation. Different hardware modifications have different radio hardware. They could be converted by soldering some components though.
paybelb said:
Hi I tried downloading the modded firmware but it only goes to 20% every time then hangs. can you fix please or host somewhere else.
many thanks
Click to expand...
Click to collapse
You can download ZeroNet and download it from there, because ZeroNet to Internet gateways are unreliable.
E5770 FW version 21.327.01.00.1133, 21.200.19.01.405, 21.318.01.02.07 downgrade to technological 21.180.99.10.00
This special firmware allows installing technological firmware on firmware versions mentioned in the title, without entering OEM code (AT^DATALOCK), and without using test-point (needle method).
Technological firmware allows installing any other firmware (even with incorrect or corrupted signature), without any restrictions.
WARNING: If you flash this firmware, you won't be able to revert your old firmware version because there's no official firmware files of these version available in public access. You can install any other firmware though.
→ E5770s_DOWNGRADE_21.318.01.02.07_to_21.180.99.10.00 ←
→ E5770s_DOWNGRADE_21.327.01.00.1133_to_21.180.99.10.00 ←
→ E5770s_DOWNGRADE_21.200.19.01.405_to_21.180.99.10.00 ←
More information about Huawei LTE routers (zeronet network): https://zn.amorgan.xyz/1HegcCNqxTuhPaHmjZwPGZ9LY34vXD6H1V/
ValdikSS said:
No, that's a hardware limitation. Different hardware modifications have different radio hardware. They could be converted by soldering some components though.
Click to expand...
Click to collapse
Thanks for the explanation.
Which router do you recommend for the most compatibility LTE worldwide?
abiliotiago said:
Thanks for the explanation.
Which router do you recommend for the most compatibility LTE worldwide?
Click to expand...
Click to collapse
Probably something with Qualcomm chipset, which I'm not savvy in.
It depends on LTE bands or countries you're planning to use the device.
ValdikSS said:
Probably something with Qualcomm chipset, which I'm not savvy in.
It depends on LTE bands or countries you're planning to use the device.
Click to expand...
Click to collapse
Not sure right now
I just wanted something that could work for holidays wherever I decided to go
Thanks
unfortunatly balong_flash doesn't seem to work on windows 10
zebignasty said:
unfortunatly balong_flash doesn't seem to work on windows 10
Click to expand...
Click to collapse
worked fine for me on Windows 10 Pro
Version 2.3.1. Based on firmware 21.329.01.00.00 and webui 17.100.19.01.00
Changes since v2.3:
Firmware:
* Fix passwd_def telnet default password file
* Fix OpenVPN NAT scripts: properly remove added FORWARDING and INPUT DROP rules, clarify README
* Clarify net.{down,up} scripts
There are more than one variant of E5770.
Will this firmware work on E5770S-923 model?
BarakOsama said:
There are more than one variant of E5770.
Will this firmware work on E5770S-923 model?
Click to expand...
Click to collapse
Yes it will.
Hi OP,
my device is stuck on download mode.
can you please explain the flashing steps for the custom firmware.
As per your Read-Me the firmware should be flashed by balong_flash FLASH_FILE.BIN command.
Whats unclear to me is which file is to be flashed first. There are 2 .bin files in the custom firmware archive.
It will be a great help if you can give a step-by-step guide.
BarakOsama said:
Hi OP,
my device is stuck on download mode.
Click to expand...
Click to collapse
First of all, to install custom firmware you need to install technological firmware somehow. You can't install it just by flashing, it will require flash code which cannot be obtained easily. To bypass flash code check, I made downgrading firmwares for several firmware versions. You need to install downgrading firmware for your current firmware version, which will downgrade to technological firmware, and from technological firmware you can install any firmware, including custom one.
What exact steps did you perform, what exact result did you get?
ValdikSS said:
First of all, to install custom firmware you need to install technological firmware somehow. You can't install it just by flashing, it will require flash code which cannot be obtained easily. To bypass flash code check, I made downgrading firmwares for several firmware versions. You need to install downgrading firmware for your current firmware version, which will downgrade to technological firmware, and from technological firmware you can install any firmware, including custom one.
What exact steps did you perform, what exact result did you get?
Click to expand...
Click to collapse
After two days of googling I found the original firmware I had on the device and now the device is working again :victory:
Can you provide me a downgrading firmware to E5770s-923 21.316.03.00.1133 firmware version?.
E5770s_UPDATE_21.316.03.00.1133_WEBUI_17.100.13.02.1133_MRE5.zip
I flashed the custom firmware.
But somehow I cannot access the extended menu.
Software version: 21.329.01.00.00
Web UI version: 17.100.19.01.00
BarakOsama said:
I flashed the custom firmware.
But somehow I cannot access the extended menu.
Software version: 21.329.01.00.00
Web UI version: 17.100.19.01.00
Click to expand...
Click to collapse
You need to press left button 7 times on the wi-fi information screen.
some background,
I am after thorough tests on the topic of how it works VoLTE and VoWiFi And what causes it to be activated in some providers and in some not.
The source from which I drew all a lot of information was: https://volteromania.blogspot.com/p/samsung-voltevowifi-settings.html?m=1
Actually, I followed all the steps but got stuck on the most important part.
In order to start communication for VoLTE It is necessary to define a profile IMS.
Samsung chose - unlike APN Not to allow any user to create such a profile, but the profiles are inside files json in the file /system/priv-app/imsservice/imsservice.apk
I am very interested in trying to edit the files json These, but all my attempts were unsuccessful.
I have a Samsung S21 ultra Rooted, on which I perform the tests.
I can't edit the APK without hurting him. Any change in it causes the application not to load - and completely disables the service IMS and the registration.
The files I want to edit are in
/priv-app/imsservice/imsservice.apk/res/raw
It's files json simple.
Maybe someone can help me?
im curruntly trying to enable Volte on Samsung SM-N920L korean phone in defferent region..no luck..im rooting for you..if any succuss please let we know too..
I gave up.
This is Samsung's behavior on purpose to make consumers have to replace the phones.
Anyway, in the technical part,
In Android 13, in my opinion, this is not completely possible, since every change in the application damages the signature, but even in older versions it is necessary to change the Java code as well, And as you know it is compiled.
I spent many hours on this, with several devices, I purchased a Galaxy 7 for the tests, and I failed.
I do not know if this still works, but on my SM-9700 (HK) with Android 10 I made VoLTE work in Germany by copying the "product/omc/DBT/conf" from a SM-970F to the corresponding TGY directory of the SM-9700.
I was able to run volte on the galaxy s7.
It requires a lot of changes.
Including in the smali files of the application imsservice.apk and it was a nightmare.
In my case I had to add a brand new provider that didn't appear anywhere, maybe that's why everything was complicated and maybe if it's a defined operator and just enabling the option is simpler.
Anyway,
It really wasn't easy, but I had most of the information from the first post I wrote, but I was also able to find a lot on my own.
It is not easy.
Maybe Samsung will release the source code (including java) of the imsservice.apk application and then it will be easier..
Have you ever tried just copying the content of the conf directory from another phone?
This made VoLTE work on my Hong Kong Note10 (Snapdragon) in Germany.
ZXR said:
Have you ever tried just copying the content of the conf directory from another phone?
This made VoLTE work on my Hong Kong Note10 (Snapdragon) in Germany.
Click to expand...
Click to collapse
I have nowhere to copy. I don't have a phone that works with the same carrier I wanted to test. I had to write all the settings myself.
Which carrier do you need? We (the forum) might copy it for you.
shmuel0990 said:
I was able to run volte on the galaxy s7.
It requires a lot of changes.
Including in the smali files of the application imsservice.apk and it was a nightmare.
In my case I had to add a brand new provider that didn't appear anywhere, maybe that's why everything was complicated and maybe if it's a defined operator and just enabling the option is simpler.
Anyway,
It really wasn't easy, but I had most of the information from the first post I wrote, but I was also able to find a lot on my own.
It is not easy.
Maybe Samsung will release the source code (including java) of the imsservice.apk application and then it will be easier..
Click to expand...
Click to collapse
Can you please share knowlage with us..im tring for days now..i tried with csc options..added everything in customer.xml ,others.xml
i read the files inside immservice app..there are lines for my carrier.. cant understand what to add..by the way using a activity manager.. i opened a ims settings page..
Is there something i can change for carrier? Photo attached
prasadmanjulago said:
Can you please share knowlage with us..im tring for days now..i tried with csc options..added everything in customer.xml ,others.xml
i read the files inside immservice app..there are lines for my carrier.. cant understand what to add..by the way using a activity manager.. i opened a ims settings page..
Is there something i can change for carrier? Photo attached
Click to expand...
Click to collapse
t what phone is this
I tried Galaxy S7, Android 8.
I don't think the solution I came up with is suitable for every device.
shmuel0990 said:
t what phone is this
I tried Galaxy S7, Android 8.
I don't think the solution I came up with is suitable for every device.
Click to expand...
Click to collapse
thanks. i succeeded yesterday...i didnt edit imsservice.apk
i found enforceskippingpackages.xml file in system/csc_contents folder
in the only couple of lines
imsservices.apk
imslogger.apk
imssettings.apk etc
i removed those ims lines.. then volte worked.. i already added enable volte lines on csc/others.xml and customer.xml before.
i didnt edit anything on the attached screenshot i sent on above reply
thanks,,,
prasadmanjulago said:
thanks. i succeeded yesterday...i didnt edit imsservice.apk
i found enforceskippingpackages.xml file in system/csc_contents folder
in the only couple of lines
imsservices.apk
imslogger.apk
imssettings.apk etc
i removed those ims lines.. then volte worked.. i already added enable volte lines on csc/others.xml and customer.xml before.
i didnt edit anything on the attached screenshot i sent on above reply
thanks,,,
Click to expand...
Click to collapse
Hello, I don't know how it made to work for you. I have the same problem but the ims lines are already no longer present in the enforceskippingpackages.xml file and the volte does not work...
thib66 said:
Hello, I don't know how it made to work for you. I have the same problem but the ims lines are already no longer present in the enforceskippingpackages.xml file and the volte does not work...
Click to expand...
Click to collapse
i already made some changes to others.xml and customer.xml file also..What country are you? Send me telegram or whatsapp no..ill send my files and figure whays wrong
shmuel0990 said:
t what phone is this
I tried Galaxy S7, Android 8.
I don't think the solution I came up with is suitable for every device.
Click to expand...
Click to collapse
I have an S7 and I need to do exactly what you did - add a brand new provider. Can you share more precise details on how you did it?
prasadmanjulago said:
thanks. i succeeded yesterday...i didnt edit imsservice.apk
i found enforceskippingpackages.xml file in system/csc_contents folder
in the only couple of lines
imsservices.apk
imslogger.apk
imssettings.apk etc
i removed those ims lines.. then volte worked.. i already added enable volte lines on csc/others.xml and customer.xml before.
i didnt edit anything on the attached screenshot i sent on above reply
thanks,,,
Click to expand...
Click to collapse
Hi,
I would like to have your guidance
I have a LG v60 L-51a docomo model where field test option (hidden menu ) is disabled.
I am unable to enable volte in India to use jio.
Searched various options seems no way out. However i was able to locate hidden apps by using 3party launcher app. LG ims. But unable to launch hidden menu to changed ims settings. Help me to by pass this application to enable volte.
I don't know if this will help anyone, or if anyone can help me, but...
SM910v, (verizon wireless) with T-Mobile SIM
6.01 Marshmallow (please read the rest anyway)
4G/LTE Data works.
Voice calls fall back to 2G/Edge, ie no VoLTE.
-------- HOWEVER -------
Changing the sales_code.dat from VZW to TMO enables VoLTE, and it works great.
(it breaks the settings pages, though, so it's not a solution)
When sales_code is VZW, then IMS Settings-->IMS Information:
All are "false", Registration Information is "no profile is registered", although the profile "T-Mobile VoLTE/RCS" is available and status is 'on' in the Manage IMS Profiles page.
I can not find a way to 'register' it.
When sales_code is TMB,
then, in IMS Settings-->IMS Information:
All are "true", Registration Information is "T-Mobile VoLTE/RCS",
And, of course, VoLTE works great.
I mention this in this thread because just having the correct profile present & available may not be enough. At least in my case, it appears that the sales_code (or some other CSC function) flips a flag somewhere that allows the profile to become selected/active. I've been trying to find it for six weeks, with no luck yet. Thanks for reading.