[DEV] r/w access to /system [SuperCID]

---

Hi folks!

My desire should arrive within a week or so. The past days i tried to collect as much data about getting full root-access with r/w access to /system.
We probably need a modified SSPL and a HardSPL. So far i've tried to contact cmonex, gauner1986 and haykuro to help us here.

So there is the first question to you (desire owners): Do we have jtag on the desire? Haykuro asked me; jtag is required otherwise testing is impossible.

Quote:

Originally Posted by Haykuro

you guys got jtag on it? If not it'd be brick heaven as we work on that

UPDATE 1:
We found one device with r/w-access to /system, but we don't know where the security flag is set, so we can't set it to "normal" phones.
Adam235 is currently analyzing the dumped files.

UPDATE 2:
ahmgsk provided his recovery. Playtime.
http://www.multiupload.com/XTRBWD6ML2

Update 3:
Nand was unlocked for the EVO 4G. Maybe this helps us.

Update 4:
New root method, which should work with any new 2.1 HTC Phone, but we still don't have full write access to /system:
http://forum.androidspin.com/showthr...3939#post13939

Well first off, good luck.

Don't we need schematics to know that or at the very least to rip apart the Desire to access motherboard and possibly find JTAG pins ?

Any less barbaric way? :<

Quote:

Originally Posted by sruon

Well first off, good luck.

Don't we need schematics to know that or at the very least to rip apart the Desire to access motherboard and possibly find JTAG pins ?

Any less barbaric way? :<

It seems this is the only way...

Anyone has high res picture of the desire MB ?

Quote:

Originally Posted by i6bazar

Anyone has high res picture of the desire MB ?

some one have posted it on modaco irc channel, but u need a full working xda-china account, after register i still have problem

http://www.xda-china.net/thread-52190-1-1.html

Here's some pictures of the Desire. Credits to original poster(百事可乐) of Xda-china !

Judging by the usb bricking showing the phones as qualcomm devices, and further by the mention of some Qualcomm development/debug tools mentioned on XDA, i'd say if anything, the JTAG connection is obtained via the USB port, and is activated by somehow switching the device to the debug mode.

Quote:

Originally Posted by alias_neo

Judging by the usb bricking showing the phones as qualcomm devices, and further by the mention of some Qualcomm development/debug tools mentioned on XDA, i'd say if anything, the JTAG connection is obtained via the USB port, and is activated by somehow switching the device to the debug mode.

It think also that this can be a possibility

Ahem...I think you mean joint first JD.

Thanks for the input so far.

Over at modaco someone got a phone with full r/w access to system.

Anyone got an idea which addresses we need to dump the spl with pmemdump?