[NOT WORKING(FOR NOW)][BOOTLOADER] SuperCID 11111111

Search This thread
By:
Advanced…
G

gbueno6

Senior Member
Nov 20, 2011
405
140
Barcelona
By the way, do we need to have the bootloader re/locked instead of unlocked? I'm asking this because in the original thread (http://xdaforums.com/showthread.php?t=1671396) it is said after writing the superCID to unlock the bootloader!!
@the people who succesfully write the supercid, did you have the bootloader relocked or unlocked?

Thank you very much!
 
N

nadzorni

Senior Member
Jan 22, 2013
50
6
Koroska
from htc one x thread

IMG_0502.jpg
 
vogonpoetlaureate

vogonpoetlaureate

Senior Member
Feb 4, 2013
188
260
Megabrantis Cluster
gbueno6 said:
Thanks!

I see "ro" so that's why is not working. It seems strange considering I have flashed neXus V3 kernel which has System Protection Disabled but I've flashed it again and see if I see "rw" instead of "ro".

Thank you again!

EDIT: Tried again with a "fresh" flash of neXus kernel and no way to make it work. I'm getting kind of desperate :(
Click to expand...
Click to collapse

Yeah my mistake. System write protection shouldn't matter here, since /dev is mounted separately and is rw to the root user. I believe there is something else affecting the ability of some people to overwrite their block files in /dev. I'm looking into it.

---------- Post added at 02:51 PM ---------- Previous post was at 02:49 PM ----------
meyssam said:
I have tried it with system protection off even and still the same...
What I need is just to flash back to the the factory firmware, My phone is Asian (Singapore) and I coudnt find the Asian RUU till now...
I cant flash the European version because of the CID...
I dont know what to do...
Click to expand...
Click to collapse

You'll want to get SuperCID because we currently only have European RUU.
 
vogonpoetlaureate

vogonpoetlaureate

Senior Member
Feb 4, 2013
188
260
Megabrantis Cluster
Further testing is revealing some problems as some folks are unable to write the file back to the phone. We're looking into it, but in the meantime, could anyone who has had success following the steps outlined in the OP please report their ROM, kernel and hboot versions. Thanks for your patience.
 
  • Like
Reactions: TheGreenSephiroth
MaartenXDA

MaartenXDA

Senior Member
Oct 2, 2012
1,971
1,159
Amsterdam
Yeah. Guys, this will not work for now. I don't know what I did but it doesn't work for me anymore.

We need someone to find out how to disable /dev/ write protection without S-Off.
 
navmad

navmad

Senior Member
Jan 10, 2013
417
98
Seattle
MaartenXDA said:
Yeah. Guys, this will not work for now. I don't know what I did but it doesn't work for me anymore.

We need someone to find out how to disable /dev/ write protection without S-Off.
Click to expand...
Click to collapse

What!!!... I had been trying this since morning and couldnt get it working.. No matter what I do, it just shows the same HTC_038 :D...

Thought i was doing something wrong...!!!

How did you make it work man?????
 
jcase

jcase

Retired Forum Mod / Senior Recognized Developer
Feb 20, 2010
6,308
15,761
Raleigh NC
One of the bootloaders (probably sbl2) is write protecting the mmcblk0p7 block device. It may "look" like it has been written, but has not.
 
navmad

navmad

Senior Member
Jan 10, 2013
417
98
Seattle
jcase said:
One of the bootloaders (probably sbl2) is write protecting the mmcblk0p7 block device. It may "look" like it has been written, but has not.
Click to expand...
Click to collapse

But how could only Maarten do this? :-o

---------- Post added at 11:58 PM ---------- Previous post was at 11:55 PM ----------

@MaartenXDA... You must have done something RIGHT dude.
:confused:
 
navmad

navmad

Senior Member
Jan 10, 2013
417
98
Seattle
Re: [BOOTLOADER] SuperCID 11111111

MaartenXDA said:
Lol, nope.
I think it's like jcase said, it shows that it's changed, but it actually isn't.

Sent from my awesome fridge
Click to expand...
Click to collapse

If that's the case, I'd say you started a premature thread :D...

Anyways, I learned a lot in one day..

Thanks bud. :)

Sent from my HTC Desire X using xda premium
 
vogonpoetlaureate

vogonpoetlaureate

Senior Member
Feb 4, 2013
188
260
Megabrantis Cluster
Re: [BOOTLOADER] SuperCID 11111111

Yeah, it seems that /dev/block/mmcblk0p7 has a secure flag set that prevents writing to it. In order for us to get SuperCID, we need to develop a workaround for that first. At least we know now where the CID is kept. So that's something to work with. :)

Sent from my HTC Desire X using xda premium
 
R

rogers_law

New member
Mar 21, 2009
1
0
I did the way what you show, but everytime i reboot it, it still keep on the same cid, my cid is VODAP022
 
vogonpoetlaureate

vogonpoetlaureate

Senior Member
Feb 4, 2013
188
260
Megabrantis Cluster
A few things I've learned about this partition ( /dev/block/mmcblk0p7 ).

  • It has a secure_flag that acts like the system write protection. This flag is set from the bootloader before the kernel loads. So even though you appear to be able to overwrite the file using dd, it does nothing.
  • The partition houses the CID, IMEI, and radio config data ( rcdata.img ).
  • It is entirely likely that S-OFF is achieved through this file as well.
  • A hardware device exists that claims to support setting the Desire X to SuperCID. Others have achieved this on other devices using a procedure probably such as the one described here.
  • Your local mobile phone repair technician may be able to get you SuperCID if they have such a device.
  • Software hacks have been devised to defeat the secure_flag on other HTC devices by means of a kernel module.
  • It's possible that such solutions might work on the Desire X platform, but the software would need to be ported and tested by an experienced kernel hacker/developer.
  • SuperCID is desirable for two main reasons. First, it's good for non-European users who need to use the European RUU (the only one we have available atm) to restore their phones to stock ROM. Second, it will potentially enable the Facepalm S-OFF folks to port their S-OFF utility to the Desire X.

So when will a software solution to SuperCID be available for the Desire X? Probably not for a while. A hardware solution is reported to exist, and may be the only solution for now.
 
Last edited:
  • Like
Reactions: ramprasad5394, TheGreenSephiroth, hell_lock and 3 others
H

hell_lock

Inactive Recognized Developer
Jan 20, 2012
5,970
5,173
27
New Delhi
Re: [BOOTLOADER] SuperCID 11111111

vogonpoetlaureate said:
A few things I've learned about this partition ( /dev/block/mmcblk0p7 ).

  • It has a secure_flag that acts like the system write protection. This flag is set from the bootloader before the kernel loads. So even though you appear to be able to overwrite the file using dd, it does nothing.
  • The partition houses the CID, IMEI, and radio config data ( rcdata.img ).
  • It is entirely likely that S-OFF is achieved through this file as well.
  • A hardware device exists that claims to support setting the Desire X to SuperCID. Others have achieved this on other devices using a procedure probably such as the one described here.
  • Your local mobile phone repair technician may be able to get you SuperCID if they have such a device.
  • Software hacks have been devised to defeat the secure_flag on other HTC devices by means of a kernel module.
  • It's possible that such solutions might work on the Desire X platform, but the software would need to be ported and tested by an experienced kernel hacker/developer.
  • SuperCID is desirable for two main reasons. First, it's good for non-European users who need to use the European RUU (the only one we have available atm) to restore their phones to stock ROM. Second, it will potentially enable the Facepalm S-OFF folks to port their S-OFF utility to the Desire X.

So when will a software solution to SuperCID be available for the Desire X? Probably not for a while. A hardware solution is reported to exist, and may be the only solution for now.
Click to expand...
Click to collapse

I will look into making the module for this phone soon. Thanks for the informative post

Sent from my HTC Desire X using xda app-developers app
 
  • Like
Reactions: TheGreenSephiroth and vogonpoetlaureate
You must log in or register to reply here.

Similar threads

//.dax
[DU][DEV]Developers Unite- The future of DX Development
Replies
3K
Views
332K
J
junkie994
A
[INDEX] HTC Desire X (protou) - Everything Desire X is here! [21/11/2013]
Replies
244
Views
234K
samarth sathe
samarth sathe
hasoon2000
  • Locked
[TOOL] HTC Desire X All-In-One Toolkit V3.0 [7-16-2013] [PERM ROOT] [Noob-Proof]
Replies
195
Views
231K
kinfauns
kinfauns
ckpv5
[rom] [01.01.14] mySENSEdx5 RC4.0 (JB | Sense 5.0)
Replies
2K
Views
358K
blackdog7
blackdog7
GtrCraft
[ROM] SuperSENSE-dx5 1.02 (04-01-2014) JB 4.1.2 | Sense 5
Replies
1K
Views
180K
W
wojtdh

Top Liked Posts

24 Hours All time
  • There are no posts matching your filters.
  • 12
    MaartenXDA
    MaartenXDA
    DO NOT TRY, THIS WILL NOT WORK FOR NOW.

    Hey guys, here's the manual for how to get SuperCID WITHOUT S-OFF.

    NOTE: THIS IS NOT FOR BEGINNING USERS, YOU WILL CHANGE THE BOOTLOADER WHICH MIGHT BRICK YOUR DEVICE, BE CAREFUL

    Thanks to vogonpoetlaureate for finding where the CID is, he's a great guy so go thank him!


    Assuming you have ADB (Android Debugging Bridge) installed, open up your command prompt and type this:

    Code: 
    su
dd if=/dev/block/mmcblk0p7 of=/sdcard/mmcblk0p7
    Now you have it dumped on your SD-Card

    Next, type "exit" and again, "exit".

    Type
    Code: 
    adb pull /sdcard/mmcblk0p7
    BE SURE YOU KNOW WHAT SIZE IT IS BEFORE CONTINUING

    Open the file with your HEX-Editor, assuming you have one downloaded. I personally use XVI32.

    You will see your CID on the fourth line, in my case it's HTC__E11.

    Change it to 11111111 and save the file as mmcblk0p7MOD. BE SURE IT'S THE EXACT SAME SIZE AS BEFORE.

    When you're back in command prompt, type
    Code: 
    adb push mmcblk0p7MOD /sdcard/mmcblk0p7MOD

    Type
    Code: 
    adb shell
su
dd if=/sdcard/mmcblk0p7MOD of=/dev/block/mmcblk0p7

    Reboot to bootloader, (adb reboot-bootloader) and go into fastboot.

    Type
    Code: 
    fastboot oem readcid

    It should read 11111111.

    Thanks to grankin01 for the base thread: http://xdaforums.com/showthread.php?p=26516911#post26516911

    I AM NOT RESPONSIBLE FOR BRICKED DEVICES



    It works with me, PLEASE, if it works with you reply here!
    View
    6
    vogonpoetlaureate
    vogonpoetlaureate
    A few things I've learned about this partition ( /dev/block/mmcblk0p7 ).

    • It has a secure_flag that acts like the system write protection. This flag is set from the bootloader before the kernel loads. So even though you appear to be able to overwrite the file using dd, it does nothing.
    • The partition houses the CID, IMEI, and radio config data ( rcdata.img ).
    • It is entirely likely that S-OFF is achieved through this file as well.
    • A hardware device exists that claims to support setting the Desire X to SuperCID. Others have achieved this on other devices using a procedure probably such as the one described here.
    • Your local mobile phone repair technician may be able to get you SuperCID if they have such a device.
    • Software hacks have been devised to defeat the secure_flag on other HTC devices by means of a kernel module.
    • It's possible that such solutions might work on the Desire X platform, but the software would need to be ported and tested by an experienced kernel hacker/developer.
    • SuperCID is desirable for two main reasons. First, it's good for non-European users who need to use the European RUU (the only one we have available atm) to restore their phones to stock ROM. Second, it will potentially enable the Facepalm S-OFF folks to port their S-OFF utility to the Desire X.

    So when will a software solution to SuperCID be available for the Desire X? Probably not for a while. A hardware solution is reported to exist, and may be the only solution for now.
    View
    5
    H
    hell_lock
    Great work! I have contacted the devs of facepalm to get us S-OFF. They were waiting for us to get superCID .
    View
    4
    B
    BABAK236
    Jann F said:
    now read the thread again and carry on...
    it istn't possible yet to write to those partitions due to S-On till now.
    We need some people from the Revolutionary team to investigate our chances, but till now we're trapped with the device we have.
    Click to expand...
    Click to collapse

    Hi
    I have Super CID on Desire_X ....i did via Jtag..(Device is S-On)
    So,,What's You Need? Partition Info?System Dump?? or Anything...??

    if i can Help,Plz let me know How can i help....


    Thanks

    C:\Users\Babak>fastboot getvar all
    (bootloader) version: 0.5
    (bootloader) version-bootloader: 1.24.0000
    (bootloader) version-baseband: 1.10.40.23
    (bootloader) version-cpld: None
    (bootloader) version-microp: None
    (bootloader) version-main: 1.18.401.1
    (bootloader) version-misc: PVT SHIP S-ON
    (bootloader) serialno: SH2A1LY0xxx
    (bootloader) imei: 352795056xxxxxx
    (bootloader) meid:
    (bootloader) product: proto
    (bootloader) platform: HBOOT-8225
    (bootloader) modelid: PM6610000
    (bootloader) cidnum: 11111111
    (bootloader) battery-status: good
    (bootloader) battery-voltage: 0mV
    (bootloader) partition-layout: HTC
    (bootloader) security: on
    (bootloader) build-mode: SHIP
    (bootloader) boot-mode: FASTBOOT
    (bootloader) commitno-bootloader: dirty-46aff746
    (bootloader) hbootpreupdate: 12
    (bootloader) gencheckpt: 0
    all: Done!
    Click to expand...
    Click to collapse
    View
    3
    vogonpoetlaureate
    vogonpoetlaureate
    Re: [BOOTLOADER] SuperCID 11111111

    Thanks for the step-by-step Maarten. Very helpful.

    Sent from my HTC Desire X using xda premium
    View

New posts