Welcome to XDA

Search to go directly to your device's forum

Register an account

Unlock full posting privileges

Ask a question

No registration required
Post Reply

[GUIDE] Radio S-OFF, SuperCID, SimUnlock + Root

OP Apache14

1st December 2010, 04:41 PM   |  #1  
Apache14's Avatar
OP Recognized Developer
Thanks Meter: 551
 
875 posts
Join Date:Joined: Feb 2009
Donate to Me
More
Hi ppl here is a guide on how to gain radio S-OFF, Super CID , SimUnlock

What You Need
-- This File
-- If on OSX / Linux ADB binary (they are not included in the .zip)

-------------------------------------------------------------------------------------------

Bits in red Are Only for people who dont already have perm root

Bits in Blue are for everyone

-------------------------------------------------------------------------------------------

1) Extract the zip file (to your adb directory if on mac / linux)

2) Open a command prompt / shell and navigate to your where you extracted the files


3) run
Quote:

adb install visionaryplus-r14.apk

4) open visionary on phone

5) tick Run visionary.sh after root" and "set system r/w after root"

6) Now click "temproot now" and wait 30 - 60 sec


7) run line per line
Quote:

adb push gfree /data/local
adb shell
su
cd /data/local
chmod 777 gfree
./gfree
sync
reboot



Now We Are Radio S-OFF and SuperCID + SimUnlocked

8) If you where not already perma rooted run visionary Temp root, then perm root.

[To Check]

1) run
Quote:

adb reboot bootloader

ON SHIP HBOOT
Just check the top line if you see
SHIP S-OFF (it worked )

SHIP S-ON (it didnt )

ON ENG HBOOT
2) tap bootloder option
3) use vol down to get to system info and tap
4) check CID for CID-11111111 (if you have this all is done 100%)
5) reboot

[PROBLEMS]
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @@

IF THIS DOESNT WORK AND U GET
Quote:

***WARNING***: Did not find brq filter.

Get either a stock kernel CM/SENSE or my buzz-1.0.7 as its confirmed working on those

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @@


[FAQ]
Does this install the ENG hboot ?
Quote:

No as that is no longer required, still an opition if you want to gain the extra functions

How can i install custom recovery for roms without ENG hboot ?
Quote:

Just get rom manger from marked and install with that

What does all this mean ?
Quote:

Radio S-OFF = we have s-off regardless or hboot we are using so if you update the hboot s-off will stay
Super CID = Allow to install RRU's from ANYONE

[CREDITS]
Paul O'Brien for visionary
scotty2 and others who found the method to patch P7
everyone else who has worked on the G2 root and wpthis
Last edited by Apache14; 1st December 2010 at 05:53 PM.
The Following 13 Users Say Thank You to Apache14 For This Useful Post: [ View ]
1st December 2010, 04:54 PM   |  #2  
emx_o's Avatar
Senior Member
Flag Munich
Thanks Meter: 37
 
368 posts
Join Date:Joined: Aug 2009
More
hey there, thanks for the guide but something didnt work while running ./gfree
Code:
./gfree
Section header entry size: 40
Number of section headers: 44
Total section header table size: 1760
Section header file offset: 0x000138b4 (80052)
Section index for section name string table: 41
String table offset: 0x000136fb (79611)
Searching for .modinfo section...
 - Section[16]: .modinfo
 -- offset: 0x00000a14 (2580)
 -- size: 0x000000cc (204)
Kernel release: 2.6.32.25-Buzz-1.0.6-OCUV
New .modinfo section size: 212
Attempting to power cycle eMMC... OK.
Searching for mmc_blk_issue_rq symbol...
 - Address: c02ccc70, type: t, name: mmc_blk_issue_rq, module: N/A
Kernel map base: 0xc02cc000
Kernel memory mapped to 0x40001000
Searching for brq filter...
 - ***WARNING***: Did not find brq filter.
Patching and backing up partition 7...
after some seconds it rebooted on its own but nothing happened to my cid. any ideas?
The Following User Says Thank You to emx_o For This Useful Post: [ View ]
1st December 2010, 04:56 PM   |  #3  
starbase64's Avatar
Senior Member
Flag Lennestadt
Thanks Meter: 636
 
3,141 posts
Join Date:Joined: Apr 2007
Donate to Me
More
Question
same here
1st December 2010, 05:03 PM   |  #4  
Apache14's Avatar
OP Recognized Developer
Thanks Meter: 551
 
875 posts
Join Date:Joined: Feb 2009
Donate to Me
More
That will be the live kernel patching failing as it cant find where to patch .... try running with my 1.0.7 kernel and then restore back (shuld run on stock kernels)... as i know that works ill relay this info to scotty2 and see if he can fix for these kernels.

Can you post your kernel info from the about phone menu ?
The Following User Says Thank You to Apache14 For This Useful Post: [ View ]
1st December 2010, 05:08 PM   |  #5  
emx_o's Avatar
Senior Member
Flag Munich
Thanks Meter: 37
 
368 posts
Join Date:Joined: Aug 2009
More
Quote:
Originally Posted by Apache14

Can you post your kernel info from the about phone menu ?

here it is

2.6.32.25-Buzz-1.0.6-OCUV
buzz@Hive #66
Sat Nov 27 18:38:35 GMT2010
1st December 2010, 05:09 PM   |  #6  
nintendolinky's Avatar
Senior Member
Flag Wakefield, West Yorkshire
Thanks Meter: 274
 
1,222 posts
Join Date:Joined: May 2009
Donate to Me
More
Worked great
To verify all went well, do this:
Plug in your phone to your computer
In the Terminal/command line, type this:
PHP Code:
 adb shell 
this puts you in the phone's shell. now it's a simple matter of the following:
(note the # is your prompt. Don't type the "#". The lines without the # are returned by the phone.)
PHP Code:
# stop ril-daemon
# cat /dev/smd0 &
# echo -e 'ATE1\r' > /dev/smd0
0
#
# echo -e 'ATV1\r' > /dev/smd0
OK
# echo -e 'AT@CID?\r' > /dev/smd0
@CID11111111

OK
echo -'AT@SIMLOCK?40\r' > /dev/smd0
# AT@SIMLOCK?40
@SIMLOCK00

OK
#echo -e 'AT@SIMLOCK?AA\r' > /dev/smd0
 
AT@SIMLOCK?AA
@secu_flag0

OK 
It should look something like that anyway. It may look slightly different if you were typing while the computer was sending you back information.
Did it work? Here's what you're looking for:
@CID: 11111111 <--- this response means you have superCID! Congrats!
@SIMLOCK= 00 <--- this means your simlock is off. Mazel Tov!
@secu_flag: 0 <--- this means your radio is S-OFF. Hurrah!
The Following User Says Thank You to nintendolinky For This Useful Post: [ View ]
1st December 2010, 05:20 PM   |  #7  
starbase64's Avatar
Senior Member
Flag Lennestadt
Thanks Meter: 636
 
3,141 posts
Join Date:Joined: Apr 2007
Donate to Me
More
Question
Hi,

not work for me.

Code:
Microsoft Windows [Version 6.1.7600]
Copyright (c) 2009 Microsoft Corporation. Alle Rechte vorbehalten.

C:\Users\Administrator>d:

D:\>cd D:\Handy\HTC Desire HD\SuperCID

D:\Handy\HTC Desire HD\SuperCID>adb push gfree /data/local
adb server is out of date.  killing...
* daemon started successfully *
1939 KB/s (683255 bytes in 0.344s)

D:\Handy\HTC Desire HD\SuperCID>adb shell
# su
su
# cd /data/local
cd /data/local
# chmod 777 gfree
chmod 777 gfree
# ./gfree
./gfree
Section header entry size: 40
Number of section headers: 44
Total section header table size: 1760
Section header file offset: 0x000138b4 (80052)
Section index for section name string table: 41
String table offset: 0x000136fb (79611)
Searching for .modinfo section...
 - Section[16]: .modinfo
 -- offset: 0x00000a14 (2580)
 -- size: 0x000000cc (204)
Kernel release: 2.6.32.25-Buzz-1.0.6-OCUV
New .modinfo section size: 212
Attempting to power cycle eMMC... OK.
Searching for mmc_blk_issue_rq symbol...
 - Address: c02ccc70, type: t, name: mmc_blk_issue_rq, module: N/A
Kernel map base: 0xc02cc000
Kernel memory mapped to 0x40001000
Searching for brq filter...
 - ***WARNING***: Did not find brq filter.
Patching and backing up partition 7...

D:\Handy\HTC Desire HD\SuperCID>
with friendly greet

starbase64
1st December 2010, 05:34 PM   |  #8  
Apache14's Avatar
OP Recognized Developer
Thanks Meter: 551
 
875 posts
Join Date:Joined: Feb 2009
Donate to Me
More
For the moment

IF THIS DOESNT WORK AND U GET

***WARNING***: Did not find brq filter.

Get either a stock kernel CM/SENSE or my buzz-1.0.7 as its confirmed working on those
1st December 2010, 05:36 PM   |  #9  
starbase64's Avatar
Senior Member
Flag Lennestadt
Thanks Meter: 636
 
3,141 posts
Join Date:Joined: Apr 2007
Donate to Me
More
Thumbs up
Hi,

now works (or not ), but system info is no longer available on bootloader

with friendly greet

starbase64
Attached Thumbnails
Click image for larger version

Name:	IMG_1144.jpg
Views:	1404
Size:	52.5 KB
ID:	453798  
1st December 2010, 05:40 PM   |  #10  
Apache14's Avatar
OP Recognized Developer
Thanks Meter: 551
 
875 posts
Join Date:Joined: Feb 2009
Donate to Me
More
Yep it worked :P

Look at the top SHIP S-OFF

Post Reply Subscribe to Thread

Tags
desirehd, root, s-off
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes