Jump to content

IT'S WEDNESDAY!!! And we all know what that means.

Guest kallt_kaffe

By Guest kallt_kaffe
in ZTE Blade / Libra ROMs & ROM customisation

 Share

Recommended Posts

Guest Simon O

Guest Simon O

Posted
Posted
Probably the wrong thread for it, but while flb seb & kallt are all here...

We have a new hungarian update, posted by fonix232 posted this in IRC - http://www.t-mobile.hu/static/szoftverek/z...29TV1_00_00.zip

It is a new update format, a windows .exe file, needs the stock 'FTM' recovery program. It looks like there may be some hidden functions in the new flash program, if we can unlock them.

Awesome. Thanks for this (and fonix232!)

  • Replies 77
  • Created
  • Last Reply

Popular Days

Popular Days

Guest fonix232

Guest fonix232

Posted
Posted

Just ran through the code of the updater, it has definitely got some (many) other functions than flashing the phone, as I found probably buttons about backing up data, etc, asking info from the device (IMEI, and such), and so.

All the files are stored inside the binary, the first half is the code itself while the other half is a weird storage mode.

It contains all files binary, with MD5, and a path variant. Somthing like this:

[filename]some filler zero bytes[files\ path variant, may vary]zerobytes again[file MD5 value][filler zeros and probably file length][file content]

And that applies.

More weird, it has many notes of the default files, looks like ZTE is so dumb they are storing firmwares under C:\windows\sysdy\ and compile to E:!

It has also a reference to an unknown release called P726GV1.0.0B11_REL, maybe a Racer file (Blade always got P729B beginning), or V9?

Guest Pelemane

Guest Pelemane

Posted
Posted

I just installed this and it just asks "SIM network unlock PIN". My Blade is from Saunalahti so it has never been network locked but now it is. :(

Going back to CM7 :(

But it's nice to have you back in here KK :D

Guest Sebastian404

Guest Sebastian404

Posted
Posted
It has also a reference to an unknown release called P726GV1.0.0B11_REL, maybe a Racer file (Blade always got P729B beginning), or V9?

The Racer is P726....

Guest wbaw

Guest wbaw

Posted
Posted
Ah....

So your thinking the TPT will update the baseband... since the device has the same hardware the RIL should not change that much?

The camera lib is a bit more of a puzzle tho... unless the 'new devices' has a different camera from the 'old devices'?

He said they were updating old devices to 2.2, so the hardware must be compatible, assuming it's just a software update. Probably something in the hidden partitions that could be flashed with a tpt, or the windows flashing program.

Guest fonix232

Guest fonix232

Posted
Posted
The Racer is P726....

Okay then :D

IDK, maybe this flasher should work with that too.

There was a thread before with an experimental flasher tool made for the Racer, and compatible with the Blade, maybe something like that...

BTW based on the size, I suppose ZTE engineers were so lazy they wrote a fast UI for their debug tools and sent that to T-Mobile Hungary D:

Guest Sebastian404

Guest Sebastian404

Posted
Posted
Okay then :D

IDK, maybe this flasher should work with that too.

There was a thread before with an experimental flasher tool made for the Racer, and compatible with the Blade, maybe something like that...

BTW based on the size, I suppose ZTE engineers were so lazy they wrote a fast UI for their debug tools and sent that to T-Mobile Hungary D:

When I was looking for stock roms for the Racer, I found a simularly named file on a .tw website, but I could not download it... so I assume this flasher has been around for a while.

Guest wbaw

Guest wbaw

Posted
Posted (edited)
When I was looking for stock roms for the Racer, I found a simularly named file on a .tw website, but I could not download it... so I assume this flasher has been around for a while.

Yeah, it obviously has, looking through it there are some 2004 copyright notices, there's also this file name in there multicdmadownload.exe which seems to be used to unlock zte & huawei 3g dongles

added ...

Copyright © 1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005 by QUALCOMM, Incorporated. All Rights Reserved

1995!

Edited by wbaw
Guest Sebastian404

Guest Sebastian404

Posted
Posted
Probably the wrong thread for it, but while flb seb & kallt are all here...

We have a new hungarian update, posted by fonix232 posted this in IRC - http://www.t-mobile.hu/static/szoftverek/z...29TV1_00_00.zip

It is a new update format, a windows .exe file, needs the stock 'FTM' recovery program. It looks like there may be some hidden functions in the new flash program, if we can unlock them.

For anyone who is interested, this is TM_P729TV1.0.0B08.. the same rom as the previous TPT ...

Guest wbaw

Guest wbaw

Posted
Posted (edited)
For anyone who is interested, this is TM_P729TV1.0.0B08.. the same rom as the previous TPT ...

The flash program itself seems to be the interesting part, imo, for developers anyway. It's not much use to anyone else at the moment.

It says it's TM_P729TV1.0.0B03 when I run the exe, not actually installed it.

Edited by wbaw
Guest FelixL

Guest FelixL

Posted
Posted
So unless we can get hold if a TPT installation for this new "platform", we will need to create separate versions of custom ROMs for these phones. In the event that we can get hold of the "TPT" files for official 2.2 then I suppose we eventually switch ROM development over to the new "platform"?

Couldn't you change the Hungarian TPT to do this job? I thought you can change things there, or can you only swap the images that get installed?

Guest wbaw

Guest wbaw

Posted
Posted
Couldn't you change the Hungarian TPT to do this job? I thought you can change things there, or can you only swap the images that get installed?

we can only swap the .img files, the .mbn files are on hidden partitions that android can't access & we don't know how to dump. possibly a hacked version of the hungarian update .exe could be used to dump them, but it'd have to be decompiled, hacked & recompiled first.

Guest fonix232

Guest fonix232

Posted
Posted

Or, just figure out how to launch the original UI. I have a feeling it is the ZTE Internal Debug tool, it's GUI been swapped, etc.

I love how lazy the ZTE guys are :D

Guest FelixL

Guest FelixL

Posted
Posted (edited)

Didn't somebody dump the (old) hidden partitions using the RS-232 in the back of the device? Can we change them in the Hungarian TPT?

Edited by FelixL
Guest Redflake

Guest Redflake

Posted
Posted (edited)

Just installed the Swedish Chef. Oops I mean Swedish Spring and all seems ok so far.

UK oled OSF model circa October 2010.

Wifi working

GPS working

Camera working

Radio working

No sim lock problems. (Unlocked and running Giffgaff)

Contacts ok also reads sim contacts

Market working also as backup and restore enabled so restores most of your apps from android market.

Incoming call displays contact name correctly.

Apps to SD ok.

No idea on battery yet will give it a full charge tonight then see how it goes tomorrow. Previously on FLB that had good battery life so a bit to live up to, but so far so good.

:D

Edited by Redflake
Guest Nickman1200

Guest Nickman1200

Posted
Posted
Didn't somebody dump the (old) hidden partitions using the RS-232 in the back of the device? Can we change them in the Hungarian TPT?

No i don't think so.

RS323 on blade

Edit. I did a dump of the whole nand, but as I expect there is nothing until 0x2ac0000 (the start of recovery). I had the same problem with the pulse. The start of the nand where SBL etc should be is not readable, it all dumps as FF up until the start of the normal partitions.
Guest rickywyatt

Guest rickywyatt

Posted
Posted (edited)

i found the admin password for that program you are taking about and the program can be found here

Edited by rickywyatt
Guest oh!dougal

Guest oh!dougal

Posted
Posted
I just installed this and it just asks "SIM network unlock PIN". My Blade is from Saunalahti so it has never been network locked but now it is. :(

Going back to CM7 :(

But it's nice to have you back in here KK :D

The problem. as such, is in your understanding of the locking mechanism.

Your Saunalahti phone *IS* actually "locked" - its just that the Saunalahti firmware (like some of the prototype Froyo leaks) doesn't check the lock!

You'll see the exact same 'problem' when you install most custom firmware.

Its simple (and free) to unlock. No reason not to.

Guest Pelemane

Guest Pelemane

Posted
Posted
The problem. as such, is in your understanding of the locking mechanism.

Your Saunalahti phone *IS* actually "locked" - its just that the Saunalahti firmware (like some of the prototype Froyo leaks) doesn't check the lock!

You'll see the exact same 'problem' when you install most custom firmware.

Its simple (and free) to unlock. No reason not to.

Ok that's interesting 'cause this has not happened before and I have used JJ, MCR, FLB, some Sebs roms, Finnish Fillyjonk, CM7 and Honeycomb rom.

I was just curious to see if this is better than JJ but I'm happy with CM7. :D

Guest Len Ash

Guest Len Ash

Posted
Posted
Ok that's interesting 'cause this has not happened before and I have used JJ, MCR, FLB, some Sebs roms, Finnish Fillyjonk, CM7 and Honeycomb rom.

I was just curious to see if this is better than JJ but I'm happy with CM7. :D

So just unlock it... what's the problem?

Guest Pelemane

Guest Pelemane

Posted
Posted
So just unlock it... what's the problem?

Yes I could do that but still I'm wondering why this ROM needs to be unlocked and all those other ROMs doesn't.

I understand now that it's not a big problem, but it just isn't normal.

Guest Simon O

Guest Simon O

Posted
Posted
i found the admin password for that program you are taking about and the program can be found here

So with admin mode will this allow us to basically pull all the stuff needed for TPT from a device?

Guest
This topic is now closed to further replies.
 Share
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept