[HELP PROJECT] "Data Crashes" Project [HELP PROJECT]

mestrini · 08:05 PM

[HELP PROJECT] "Data Crashes" Project [HELP PROJECT]

DATA CRASHES PROJECT:

If you have a G3 device in "Data Crashes" state check the CID collection to find the matching file to flash. Read bellow for the complete explanation about the theory and the procedure.

Theory:
Basis:
It's a known fact that the Wizard (and maybe Prophet) uses a DES encryption key from a list of 100 possible keys to decrypt the info of a CID block which is then verified by the cprog.exe utility. The 'key index' (list position) is calculated using the values from the DOC chip uniqueid which is a permanent value and the CID block must have been encrypted with same key otherwise the phone will never get to understand it and go in "Data Crashes" mode.

Theory:
There are two possibilities to get the "Data Crashes":
1- Corrupted CID block with invalid checksum;
2- Good CID block encrypted with different key index other than the one generated by the DOC chip uniqueid.

In scenario 2 if one is able to flash a good CID block encrypted with the correct key index then the problem will go away.

Purpose:
Since i've tested myself that it's possible to flash another phone's CID block with same key index and have phone work normally i purpose to make a collection of 100 good SuperCID blocks to cover all the 100 DES keys.

Even though only G3 devices downgraded to SPL 1.x allow to flash the CID block i won't discourage G4 members to contribute their CID blocks as they can be used in G3 devices (tested myself)

So i ask you to please contribute with dumps (unlocked or not) from the CID block of your devices.

In case you don't know how to provide what i'm looking for this is how to:
HOW TO SHARE:
1- Make the dump:

Get Wizard Service Tool (LINK) and use the "Read ROM" button to read the CID block (see pic below)

or... get itsme's pdocread.exe and make the dump with: pdocread.exe -n 1 0 0x10000 [filename.bin] using windows 'DOS' console (command)

2- Read the key index: (optional)

Use Wizard Service Tool and read "Device Info" to check the key index of your phone and post it along with the dump.

3- Share it:

Removed the email address as i no longer have time to assist this project (sorry)
You can still leave the file here as i get mail notifications but...

NOTE: For all those that have used lokiwiz you might have the file already since lokiwiz makes a backup and also creates new (unlocked) file to flash to the phone. It's the one of the *.bin files.

For all those afraid of sharing the file i assure you that there's no danger since i can mask the CID IMEI present in the dump so that it shows all FF's and your anonymity is guaranteed

HOW TO FLASH:
1- Get the CID file corresponding to your wizard's key index:

Use Wizard Service Tool and read "Device Info" to check the key index of your phone and, if you're lucky, get it from the collection in post bellow

2- Upload CID file with Wizard Service Tool:

Select "Write ROM" button and then "CID block (bdk 1)" to flash the file already in your hard-drive (SPL must be 1.xx !!!!)

3- Soft-reset the phone:

final step either via WST button or wizards side hole

mestrini

The theory has been confirmed!
2007/07/04 - emiconi recovered his wizard for FREE by flashing the apropriate CID block (http://forum.xda-developers.com/show...3&postcount=41 )

2007/10/18 - Another one bytes the dust. Kheops_974 fixed his phone after 3!! months of waiting for key #1
(http://forum.xda-developers.com/show...&postcount=186 )

2007/11/01 - And one more for the fixing count (http://forum.xda-developers.com/show...&postcount=203) hehe

2007/11/28 - Once again a phone comes back to life after a LONG time of inactivity (http://forum.xda-developers.com/show...&postcount=226)

2008/09/25 - Another success story (http://forum.xda-developers.com/show...&postcount=303)

mestrini · 03:03 AM

The list shows the keys that STILL HAVEN'T BEEN PROVIDED!!

If you have them please share the keys listed bellow:
key #07
key #09
key #13
key #17
key #29
key #33
key #43
key #63
key #67
key #71
key #85

MISSING = 11

key #80 - not released yet (having problems to handle it)
TOTAL = 89

thanks
mestrini

EDIT (2008-03-31)
Attached is the 8th collection with the 88 files gathered so far and all with MASKED IMEIs . They are spanned in 5 parts for easier downloading and with a max of 20 files per archive (starting at 0). So if you want to get a specific key just make the math

Someone noticed me once that some files are still SIM locked. It isn't a big deal since with bootloader 1.xx you can easily unlock it with Wizard Service Tool

As always you use these files at your OWN RISK but feedback is always VERY welcome
cheers

I apologize to all those that sent and also others that keep sending keys for not responding to mails or acknowledge the offerings but i haven't had much time to do it (had mails from November...)

nishadks · 06:05 PM

Key index #94 attached -but removed later. But badly need CID block for key index #66

Someone could please post and that will be great help.

Thanks - Nishad

nishadks · 18th May 2007, 10:44 AM

Great and thanks for mestrini...

Thanks mestrini for sharing this knowledge

dr.moh · 18th May 2007, 01:56 PM

Quote:

Originally Posted by nishadks

Thanks mestrini for sharing this knowledge

i invite everyone to share his CID dump to cover the needed blocks so as to solve this noisy problem totally

mestrini · 18th May 2007, 02:03 PM

Quote:

Originally Posted by dr.moh

i invite everyone to share his CID dump to cover the needed blocks so as to solve this noisy problem totally

thanks for helping this cause m8s

i really hope this proves to be a valid theory so that G3 devices can have a free solution for this problem.

cheers
mestrini

the-equinoxe · 11:49 AM

here is my cid-block (super CID) key index 94.
(key-index as showed by Mestrini's tool)

Thanks for trying to solve this problem mestrini!!

EDIT: removed the file since Mestrini downloaded it already.

mestrini · 19th May 2007, 06:41 PM

Come On People!!

Come on you guys!! This is a community forum and it shouldn't be only the ones with broken phones to try to help each other.

Everyone with working phone is a potential helper and should consider contributing to this task by providing a good/unlocked CID dump of a key index not yet provided.

Who doesn't like to get solutions for free? So get your wizards and make some dumps to share.

Right now the most wanted key indexes are: 66 for nishadks and 81 for peran.

Thanks in advance fellow members