[25.01.2011] WARNING! Do not flash JM*,KA*... README! [Patch released, L/N supported]

Search This thread
By:
Advanced…
P

P1ro

Member
May 19, 2007
40
0
goattee said:
I never realized what stupidity I am capable of! Can you believe I chose to completely flake out and disregard this warning? If you can see the humor of my stupid mistake and can also tell me how to fix the situation, I will promise to be much more careful in the future!

THE SITUATION
- I have a rooted international GT-P1000 (GSM) with stock Gingerbread ROM
[currently reads: GINGERBREAD.DX..JPI Kernel 2.6.35.7 root@DELL125#2 Baseband version P1000DKJPE].
- I ran this bootloader patch in spite of an explicit warning that doing so under those conditions would break things. (Hanging my head in shame.)
- The tablet starts up and runs normally right now. And is still rooted.
- BUT while booting, the screen shows a vertical scramble of colors before stabilizing and displaying the launcher's home screen.
- An attempt to put the tablet into stock recovery mode shows that same vertical color bar covering the recovery menu choices.

I would like to install CM9 for p1 soon.

QUESTIONS
- Is there a simple way to reverse the changes made my this bootloader patch?
(And would that be the only thing I need to do? How?)
- Should I/can I load a custom recover app? (And if so, at what point?)
- What should I do to prevent problems in flashing the new ROM?
- Can I use ODIN to load and flash CM9 even though I cannot read the stock recovery?
- Do I have to load a different bootloader patch? Kernel?

(Please recommend what I should download or threads I should read. I promise to have a better attention span before acting!)

In advance thanks for putting up with foolish mistakes like mine.
Click to expand...
Click to collapse


well i have same problem as this guy, weird colours at screen, i only getting old bootloaders to get working, CF-Root boot but thats all, cant do much with it.

My tabler is a P1000n (p1n) overcome team dont have kernels for p1n tablets, if anyone know what i can download or try please.

my p1n tablet had a UBJM6 firmware or it should be that one.
 
Last edited:
T

tphone

Senior Member
Aug 7, 2007
52
0
I also made the mistake that #581 and #603 made. Now I think that I have permanently crippled my TMobile Galaxy Tab since the bootloader patch may have damaged the core part of the system. The device show garbled boot screen but eventually does boot back into Overcome v 2.0.0. However, the USB can not be detected by the PC. I have to use the phone keypad trick "*#7284#" to set the USB to PDA for the device to be recognized by the PC. I've tried to use Odin to reflash but when I put the device in download mode, Odin can't detect the device. If I boot into Overcome and make USB available with by dialing as above, Odin can detect the device but can not flash anything because it hangs up and times out in the communication. I've tried using ROM Manager to flash the device just boot into garbled screen and stay does nothing. I've tried to perform factory reset, but that is also does not do anything. I think that my device is permanently crippled beyond repair. The hardware is working find and I hate to recycle it. If anyone has an idea what I should try, please let me know.
Thank you.
 
I

Ichijoe

Senior Member
Feb 11, 2007
606
92
Frankfurt am/Main
Ok I don't mean to blow new life into a what seems to be a dead thread... But!
I was recently given a neused Samsung Galaxy Tab P1000 (Voda Branded), GSM for my Birthday.
Since then I've pretty much found that Battery life gets bettter the closer to v2 I get, and progressively worsen the closer to v4 I get.
Now I think I might have forked up by installing these JK* JM* etc Froyo ROMs. (Wasn't easy to find them either). In any case to use that *.apk from the first page I had to downgrade back to JK2, which seemed to be ok zImage was only 4.33Mb.

Long story short I reinstalled that ROM again, then rechecked the Bootloader(s) again, and it said that I was clean.
I then installed the Overcome 4.1.0 ROM again. Having checked the state of my Bootloader(s) again under Overcome.
It states that my Bootloaders are again locked -- e.g. SIGNED.

My question does signed = locked?
Should I aspire myself towards having unlocked Bootloader(s)?
Or does it even matter after Froyo?
 
P

priyana

Senior Member
Jul 21, 2007
3,172
1,278
All GB bootloader for P1000 are signed but none are locked.
Only in Froyo it matters.

I hope you didn't try to patch GB bootloader. It will be broken if you did. You will see those rainbow colours like some of those who did.

Sent from my GT-N7100 using xda app-developers app
 
  • Like
Reactions: Ichijoe
I

Ichijoe

Senior Member
Feb 11, 2007
606
92
Frankfurt am/Main
priyana said:
All GB bootloader for P1000 are signed but none are locked.
Only in Froyo it matters.

I hope you didn't try to patch GB bootloader. It will be broken if you did. You will see those rainbow colours like some of those who did.

Sent from my GT-N7100 using xda app-developers app
Click to expand...
Click to collapse

Yeah I did do just, that, and yep I was blessed by the "Rainbow" Effect durring the boot sequence. Once it got into the OS it was normal again.
In any case a fresh install via Oden was enough to fix it.

Interestingly though I noticed that Froyo seems to give the best Battery life where JB/ICS/GB report ~25% Battery Froyo reports back ~50%, or nearly double the current amount of life. Right now my Tab seems to get about 6 1/2h with mid to lowesh-high (i.e. Google Music), usage. I have since given up any hope of playing any Gamez on this. Thanks to only 512Mb RAM. Even on GB this thing lags badly.
 
barberboy420

barberboy420

Senior Member
Aug 15, 2011
1,209
165
I have the sprint t217 model and I rooted a few days ago on the kingoapp website. I'm trying to flash a rom but I'm new to the galaxy tab. Any tips suggestions?

Sent from my SM-T217S using Tapatalk
 
You must log in or register to reply here.

Similar threads

Chainfire
[11.05.2011][CF-Root v3.3] JJ*, JM*, KA*, JQ1 - su+busybox+CWM3/RFS
Replies
382
Views
339K
V
video maker
alroger
[ROM]CM10.1[JB][4.2.2][Kernel 3.0][SGT7][P1000/N/L/C]OpenPDroid[20130913][RETIRED]
Replies
2K
Views
646K
qm4n76
qm4n76
ani55
Alpha 3![ICS AOSP]{GSM/CDMA/P1000L/N}{DEV}{WIP} 11/12/11 TEAM DEVELOPMENT
Replies
2K
Views
835K
P
priyana
cdesai
  • Locked
[ROM][4.0.4][MTD] CyanogenMod 9.0.0 | READ : http://goo.gl/rkEeh
Replies
4K
Views
1M
cdesai
cdesai
alroger
[ROM][CM10][JB][4.1.2][SGT7][P1000/N/L][PDroid][20121127][RETIRED]
Replies
670
Views
288K
P
priyana

Top Liked Posts

24 Hours All time
  • There are no posts matching your filters.
  • 226
    Chainfire
    Chainfire
    DO NOT USE THIS ON THE GINGERBREAD RELEASES ! THE SAMSUNG GINGERBREAD RELEASES DO HAVE SIGNED BOOTLOADERS, BUT THEY ARE NOT LOCKED. In other words, you can still flash custom kernels and such, and the bootloader patch will only break things, not fix them.

    To read the history of this problem, see the 2nd post of this thread (scroll down).

    A number of new firmwares for the Samsung Galaxy Tab come with "signed / protected" bootloaders. These new bootloaders prevent you from flashing custom or otherwise unsigned kernels on the device. Trying to do so anyway will result in errors and usually requires you to reflash your ROM completely.

    I hope everybody here has learned the lesson not to just flash anything that SamFirmware releases ;)

    The patch
    After a great many hours of researching, testing and coding, myself (Chainfire) and Rotohammer have come up with a patch that works on most devices (currently all known GSM Tab variants), and flashes back unprotected JJ4 (T-Mobile ?) bootloaders, or the original P1000N bootloaders for the Latin models. The app only patches when it finds protected bootloaders, and you have to press a button for that, so the app can also be used to look at your current status.

    The patch has been tested repeatedly and with success on (0 bricks so far):

    - GT-P1000 Euro/International/Unbranded Galaxy Tab
    - SGH-I987 AT&T Galaxy Tab
    - SGH-I987 Rogers Galaxy Tab
    - SGH-T849 T-Mobile Galaxy Tab

    - GT-P1000L Latin Galaxy Tab (use LATIN version!)
    - GT-P1000N Latin Galaxy Tab (use LATIN version!)

    Additional thanks to: koush, neldar, richardtrip, AColwill, farahbolsey, deezid, wgery, tmaurice, rmanaudio, crisvillani, alterbridge86, ivannw, themartinohana, luisfer691 (in no particular order!)

    Please note that even though there have not been any bricks so far, replacing bootloaders is a very dangerous operation that may BRICK your device, and you should think twice before using the patch. Using the patch is completely AT YOUR OWN RISK!

    Instructions
    Download the attached APK, install it on your device, and run it. It will show you a status screen, and if your device is compatible and you have protected bootloaders, the bottom entry "Patch bootloaders" will become available. Tapping it will start the patch procedure.

    Note that the patch requires root !

    Mini-FAQ

    --- After the fix, my "zImage" still shows signed ! Is this a problem ?

    No, this is perfectly fine! What matters is that "PBL", "SBL" and "SBL_Backup" are not signed. If "zImage" is signed, it means this ROM can be flashed onto a device that has signed bootloaders. UNsigned "zImage"s can NOT be flashed on signed bootloaders. This is the origin of the problem, because custom kernels are always UNsigned "zImage"s !

    --- Can I now flash any ROM and just use this application to fix the bootloaders ?

    Technically yes. But it would be stupid to do so. Flashing bootloaders (what this app does) is VERY dangerous, it is the only way to really brick a Tab. If you want to flash a new ROM, make sure it DOES NOT contain bootloaders. Remove them yourself, or wait for somebody else (like Rotohammer) to remove the bootloaders and post the "safe" ROM. Even though this patch is available, if at all possible, you should always try to avoid having to use it.

    CDMA tabs
    There is currently no support for CDMA Galaxy Tabs, nor do we know if support is needed at this time.

    LINKING
    You are expressly forbidden to repost the APK elsewhere. If you post about this, post a link to this thread, not to the download (or a repost of the download).

    Download
    Don't forget to donate and/or press the thanks button!

    For non-XDA members who cannot access the attachment, here are multiupload links:
    Euro / International / Unbranded / AT&T / Rogers / T-Mo: http://www.multiupload.com/EMOCU1S0V2
    Latin (P1000L and P1000N): http://www.multiupload.com/3TJ3YWMWJR

    MAKE SURE TO SELECT THE RIGHT DOWNLOAD!
    View
    17
    Chainfire
    Chainfire
    WARNING! Do not flash JM6/9/A/C/D/E/F... Before reading this !

    THIS POST, #2 OF THIS THREAD, IS HISTORICAL AND LEFT HERE "FOR THE RECORD". SEE THE FIRST POST FOR WHAT IS CURRENT!








    BREAKING NEWS / JAN 15: A fix has been found ! See this post. Also see the bounty thread: http://xdaforums.com/showthread.php?t=906464.

    This really applies to other ROMs as well, but the "new" JM6/9/A/C/D/E/F ROMs specifically.

    Some of these ROMs include new bootloaders. These bootloaders check checksums/signatures in various parts of the firmwares. The "normal" Samsung ROMs, nor custom ROMs and kernels, have these checksums.

    The result is that once flashed, you cannot revert to older/official/custom Samsung ROMs, and you are pretty much stuck using one of these four ROMs, as they are the only ones containing the right checksums.

    At least TRIPLE CHECK if you want to flash one of these ROMs, that what you are flashing DOES NOT include the new bootloaders ( boot.bin and sbl.bin ). I know from the CF-Root thread that a fair number of you are already too late, but I thought to warn new users anyways. Some modders (like rotohammer) already usually remove these parts, but still triple check everything to make sure.

    There is no known fix. I know, I've tried all of them some people suggested in other threads. None of them really works. Sure, with some effort, you can get a different firmware to somewhat run, but you'll still be using the "checksum" bootloaders and the kernel will not be modified. You will still be running the kernel from the "checksum" firmware you loaded earlier. You will not be able to do full flashes, nor will KIES updates work.

    Hopefully somebody will find a real solution for this issue for those already affected. If so, please post it in this thread.

    Are you affected ?

    NEW DEC 28: See SGTBootloaderCheck script below!

    It is hard to say for sure without actually trying to flash a non-JM6/A/C/D kernel without the correct checksum. Here's a screenshot of the error you'll get:
    zimage.jpg


    If you still have the original files for the ROM you flashed, but do not want to try flashing a non-Samsung-stock kernel, there are some indicators:
    - Rename all .tar.md5 files to .tar
    - Extract all the .tar files with WinRAR

    - Look at the resulting files:
    --- Includes "boot.bin" (primary bootloader)
    --- Includes "sbl.bin" (secondary bootloader)
    If one or both are present, this indicates new bootloaders are being flashed. That does not make it certain if they are "protected" or not, though. But if a large zImage is also present (see the next item), it is very likely they are.

    - Look at the resulting files:
    --- "zImage" (kernel)
    If zImage is about 7800 kb (as opposed to 4000 - 5500 kb that is normal), it is very likely this kernel includes a checksum. If you want to be 100% sure, open zImage in a hex editor, and go all the way to the end. There will be a few mb of 0's, followed by 128 bytes checksum - the very last 128 bytes in the file.

    Such a zImage can be flashed both on "original" and the new "protected" bootloaders. The "protected" bootloaders can only flash these zImage, not the smaller variants.

    If you have boot.bin, sbl.bin and a 7800 kb zImage, it is 99% likely flashing this ROM will give you a "protected" bootloader.

    Some tech

    Once these ROMs are flashed, it is required updates to "boot", "sbl", "zImage" have a 128-byte checksum/signature. In boot.bin and sbl.bin these are near the end, in zImage (7800 kb files) they are the very last 128 bytes. Only firmwares with a zImage that have this signature will be flashable (which at the time of this writing are only JM6/A/C/D).

    I have no idea how this signature is generated as of yet, so "faking it" is also not an option. If somebody figures that out, please post it in this thread. Then we could just insert the signatures in the older bootloaders and flash them back (still a dangerous effort by itself).

    I think, and possible others will correct me on this, the verification goes as follows, on a running device:

    - PBL ( boot.bin ) checks SBL ( sbl.bin ) signature
    - SBL checks kernel ( zImage ) signature

    While flashing, I think it's the SBL that verifies the PBL/SBL/kernel flash, and refuses to write if the signature isn't correct.

    Possible solutions

    Flashing back "unprotected" bootloaders from older ROMs through either Odin or Heimdall does not work. These older bootloaders do not have the required signatures/checksums and thus the flash will fail.

    A possible solution would be rooting the device, using Koush' bmlunlock, and dd'ing back bml1 and bml4 from backups, complete bypassing the flash checks. This is a very very dangerous to be trying out though, and unless you really know what you are doing, I wouldn't attempt it. Maybe someone has Samsung repair center contacts or a JTAG unit close by ? :)

    Personal note

    I have tried to flash back older bootloaders and kernels several times and in several ways (from for example JJ4) but this fails. Odin said it succeeded the very last time I tried, however it really didn't, as my device is now a full (user-wise) brick. It doesn't even turn on to show me the "phone --- | --- pc" error screen. So I guess I need to make a trip to the nearest Samsung repair center (200 miles away). Too bad my car also broke down today :D Guess it'll be some time (and money) before I have a working Tab again. Note that the brick was a problem with Odin, probably, not directly caused by the protected bootloaders themselves.

    Update: Tab is back and working :) Replaced mobo, so I no longer have the signed bootloaders myself.

    NEW DEC. 28: SGTBootloaderCheck

    Attached is also SGTBootloaderCheck. This is a script run on your Windows PC through ADB to check your bootloaders. It requires root, SuperUser, and a working ADB connection.

    Just unzip the archive to a new folder, and double-click "check.bat". That should dump your bootloaders and kernel, copy them to your computer, check the content for signatures, and let you know the result.

    I can't guarantee it works, but it should :)

    Attached

    An archive with some relevant files for those who want to do some research. DON'T FLASH THESE FILES !!!

    ( 467, 909 )
    View
    16
    Chainfire
    Chainfire
    Ok, I have spoken to Rotohammer, and he has sent me the files for the fix.

    It is a sensitive fix, and thus we are not just releasing it. We will be making an APK that does the unlocking for you, so there's no chance you mess up the commands and brick your device. That is, at least, if we don't mess up the APK ;)

    Expect the APK to go into (closed!) testing early next week, with hopefully a public release early the week after that.
    View
    10
    rotohammer
    rotohammer
    Landroid said:
    rotohammer, you're the man! did u already figure out the steps u are going to do, or are they still the same u posted here some time ago?
    Click to expand...
    Click to collapse

    I flashed a protected bootloader, then tried flashing a stock at&t kernel as well as CF-Root, both failed to flash. Then I flashed the recovery bootloaders using the jtag box, and I now Its unprotected.

    Next step: force a new sbl via redbend!
    View
    5
    rotohammer
    rotohammer
    Landroid said:
    rotohammer and chainfire, any progress on this???
    Click to expand...
    Click to collapse

    http://xdaforums.com/showpost.php?p=10572161&postcount=24
    View

New posts