Creating correct cfg

[bobbywan30]

Inside is the promised
SM-G975F,FD,X BIT U3 FLASH COMBINATION WITHOUT ETOKEN SOLUTION.rar

A

CFG is 1:1 same... so IMHO you waste your time with this...

B

I Filename I see U3... will check what your sboot .bin is...

Later more...

Edit 1.

Your sboot Bootloader from first post is:
N975FXXS8HVJ1

Version from repair package... the splittet BL stuff
FA90_N975FXXU1ASJ1


IMHO you need to split your sboot.bin...


Ehm not impossible... but hard...

bl should be the same IMHO... so you have 1 of 6 files...

Now only 5...

bl2.bin
dram_el3mon.bin
dram_train.bin
epbl.bin
s-boot.bin

Best Regards

hello and thank you for your interest. I had the U8 on the Samsung Note 10 Plus when it killed me.
look at the firmware that was on the phone in the picture
and this is the sboot.bin extracted from the firmware that was on the phone

 

[bobbywan30]

@adfree splitting sboot is not a big deal, we have the offsets (except for dram_train.bin) see posts #12, #28 between all the garbage.
(no thanks to @bobbywan30 for pointless spamming repeatedly same info again and again)

But I don't understand the differences between the CFG files, nor the meaning of these numbers 200 20.

for example

DNW_STORE e5250 fwbl1 200 20 bl1.bin

e5250: is the SoC
fwbl1: is the label
200: ?
20: ?
bl1.bin: is file extracted from sboot

but this CFG file looks different

DNW_STORE exynos down 200 20 bl1

exynos: some kind of "broad" SoC?
down: ?
200: ?
20: ?
bl1: is file extracted from sboot

also there is no DNW_WAIT maybe we should add?

@adfree splitting sboot is not a big deal, we have the offsets (except for dram_train.bin) see posts #12, #28 between all the garbage.
(no thanks to @bobbywan30 for pointless spamming repeatedly same info again and again)

But I don't understand the differences between the CFG files, nor the meaning of these numbers 200 20.

for example

DNW_STORE e5250 fwbl1 200 20 bl1.bin

e5250: is the SoC
fwbl1: is the label
200: ?
20: ?
bl1.bin: is file extracted from sboot

but this CFG file looks different

DNW_STORE exynos down 200 20 bl1

exynos: some kind of "broad" SoC?
down: ?
200: ?
20: ?
bl1: is file extracted from sboot

also there is no DNW_WAIT maybe we should add?

sorry alecxs. but I don't know the rules of the site and it wasn't on purpose

 

[bobbywan30]

IMHO in CFG "Running Gag"...

You need in main only file list... which are pushed to device...


I have at the moment limited time and energy... so ehm... I come back laaaater...

Best Regards

Edit 1.

Found my old success...

Gear S3 Root and Kernel Source! (Android Wear Port Thread)

Hey guys! Some of you might know me from the LG G5 scene, but I have since moved on from there and am hoping to make some progress with the Gear S3 :) After doing some digging and paying zero attention in class today, I came across the kernel...

forum.xda-developers.com

it doesn't work with the files you sent me
does not go beyond bl1
see in the photo

 

[bobbywan30]

thats wrong. you must not select everything from the top.

224000 - 263FFF = dram_el3mon.bin
start offset: 224000 (begin of el3mon)
end offset: 263FFF (end of el3mon)

     0 -   2FFF = bl1
  3000 -  15FFF = epbl.bin
 16000 -  67FFF = bl2.bin
   ...
 A4000 - 223FFF = s-boot.bin
224000 - 263FFF = dram_el3mon.bin

(refer to post #28)

as for the flashing, I don't know why it stuck. I don't know how to use this tool. I never used myself.

hi alecxs
I redid the files. as you said
now passes 3 cracks. 0 - 2FFF = bl1
3000 - 15FFF = epbl.bin
16000 - 67FFF = bl2.bin
but don't go any further
I think dram_el3mon.bin is to blame
I did as you said
start offset 224000 finish 263FFF
saved dram_el3mon.bin
look at the picture and the video

 

[bobbywan30]

thats wrong. you must not select everything from the top.

224000 - 263FFF = dram_el3mon.bin
start offset: 224000 (begin of el3mon)
end offset: 263FFF (end of el3mon)

     0 -   2FFF = bl1
  3000 -  15FFF = epbl.bin
 16000 -  67FFF = bl2.bin
   ...
 A4000 - 223FFF = s-boot.bin
224000 - 263FFF = dram_el3mon.bin

(refer to post #28)

as for the flashing, I don't know why it stuck. I don't know how to use this tool. I never used myself.

did you see my last post alecxs??
it seems that 224000 - 263FFF = dram_el3mon.bin is wrong

 

[bobbywan30]

@adfree splitting sboot is not a big deal, we have the offsets (except for dram_train.bin) see posts #12, #28 between all the garbage.
(no thanks to @bobbywan30 for pointless spamming repeatedly same info again and again)

But I don't understand the differences between the CFG files, nor the meaning of these numbers 200 20.

for example

DNW_STORE e5250 fwbl1 200 20 bl1.bin

e5250: is the SoC
fwbl1: is the label
200: ?
20: ?
bl1.bin: is file extracted from sboot

but this CFG file looks different

DNW_STORE exynos down 200 20 bl1

exynos: some kind of "broad" SoC?
down: ?
200: ?
20: ?
bl1: is file extracted from sboot

also there is no DNW_WAIT maybe we should add?

do you have any idea alecxs???

 

[bobbywan30]

IMHO in CFG "Running Gag"...

You need in main only file list... which are pushed to device...


I have at the moment limited time and energy... so ehm... I come back laaaater...

Best Regards

Edit 1.

Found my old success...

Gear S3 Root and Kernel Source! (Android Wear Port Thread)

Hey guys! Some of you might know me from the LG G5 scene, but I have since moved on from there and am hoping to make some progress with the Gear S3 :) After doing some digging and paying zero attention in class today, I came across the kernel...

forum.xda-developers.com

Howdy
do you have any idea about my last posts
I think /dram_el3mon.bin is wrong
do you have any ideea??

 

[alecxs]

dram_el3mon.bin comes after s-boot.bin. Maybe you're mixing up with dram_train.bin? I don't know the offset for dram_train.bin. use the old dram_train.bin from U1 or U3.

 

[bobbywan30]

dram_el3mon.bin comes after s-boot.bin. Maybe you're mixing up with dram_train.bin? I don't know the offset for dram_train.bin. use the old dram_train.bin from U1 or U3.

I've tried alecxs all the options... it doesn't go any further. it happens exactly like in my last posted video

 

[bobbywan30]

dram_el3mon.bin comes after s-boot.bin. Maybe you're mixing up with dram_train.bin? I don't know the offset for dram_train.bin. use the old dram_train.bin from U1 or U3.

alecxs. when I killed the phone, I proceeded and took an example from this video

 

[alecxs]

to my understanding, according to your video, it fails on bl2.bin

 

[adfree]

Ouch... chaos...

Can you please upload RESULT of your NEW splitted files?

So I can compare what you have...

In theory Header should similar... minimum few Bytes...

In other words I like to see these NEW extracted Files:

bl2.bin
dram_el3mon.bin
dram_train.bin
epbl.bin
s-boot.bin

Thanx in advance...

Best Regards

 

[bobbywan30]

to my understanding, according to your video, it fails on bl2.bin

bl1 ok epbl ok bl2 ok

 

[bobbywan30]

to my understanding, according to your video, it fails on bl2.bin

[COM8]Transfer Done : IMAGES/bl1 2023_02_05-13_05_183
[COM8]Transfer Done : IMAGES/epbl.bin 2023_02_05-13_05_338
[COM8]Transfer Done : IMAGES/bl2.bin 2023_02_05-13_05_780

 

[bobbywan30]

Ouch... chaos...

Can you please upload RESULT of your NEW splitted files?

So I can compare what you have...

In theory Header should similar... minimum few Bytes...

In other words I like to see these NEW extracted Files:

bl2.bin
dram_el3mon.bin
dram_train.bin
epbl.bin
s-boot.bin

Thanx in advance...

Best Regards

here are the files

 

[bobbywan30]

to my understanding, according to your video, it fails on bl2.bin

[COM8]Write thread Start################## 2023_02_05-13_05_539
[COM8]Transfer Done : IMAGES/bl1 2023_02_05-13_05_648
[COM8]Transfer Done : IMAGES/epbl.bin 2023_02_05-13_05_779
[COM8]Transfer Done : IMAGES/bl2.bin 2023_02_05-13_05_217
[COM8]Write Fail 2023_02_05-13_05_275

 

[adfree]

bl1
bl2.bin
dram_el3mon.bin
dram_train.bin
epbl.bin
s-boot.bin

bl1 differ between your repair package and now...

bl2.bin is 1:1 same... will check later if this is true... in your sboot.bin

dram_el3mon.bin differ but IMHO looks good... will check in sboot.bin

dram_train.bin is 1:1 same... will check in your sboot.bin...

epbl.bin differ... will check in sboot.bin

s-boot.bin differ... will check in sboot.bin

Later more...

Edit 1.

Btw...

If bl2.bin is 1:1 same... why not take bl1 from Original... maybe increased Security crap...

 

[bobbywan30]

bl1
bl2.bin
dram_el3mon.bin
dram_train.bin
epbl.bin
s-boot.bin

bl1 differ between your repair package and now...

bl2.bin is 1:1 same... will check later if this is true... in your sboot.bin

dram_el3mon.bin differ but IMHO looks good... will check in sboot.bin

dram_train.bin is 1:1 same... will check in your sboot.bin...

epbl.bin differ... will check in sboot.bin

s-boot.bin differ... will check in sboot.bin

Later more...

Edit 1.

Btw...

If bl2.bin is 1:1 same... why not take bl1 from Original... maybe increased Security crap...

I tried all the options. inverted leam. combined leam. leam extracted again.. still the same
[COM8]Write thread Start################### 2023_02_05-13_39_860
[COM8]Transfer Done : IMAGES/bl1 2023_02_05-13_39_970
[COM8]Transfer Done : IMAGES/epbl.bin 2023_02_05-13_39_102
[COM8]Transfer Done : IMAGES/bl2.bin 2023_02_05-13_39_540
[COM8]Write Fail

 

[adfree]

DNW_WAIT

Yout tried also wait Command?

Original

BL1
DNW_STORE exynos down 200 20 IMAGES/bl1
; EPBL
DNW_STORE exynos down 200 20 IMAGES/epbl.bin
; BL2
DNW_STORE exynos down 200 20 IMAGES/bl2.bin
; DRAM TRAINING
;DNW_STORE exynos down 200 20 IMAGES/dram_train.bin
; S-BOOT
DNW_STORE exynos down 2000 20 IMAGES/s-boot.bin
; Dram EL3
DNW_STORE exynos down 200 20 IMAGES/dram_el3mon.bin

Idea/Dream/untested with your device...

BL1
DNW_STORE exynos down 200 20 IMAGES/bl1
; EPBL
DNW_STORE exynos down 200 20 IMAGES/epbl.bin
DNW_WAIT
; BL2
DNW_STORE exynos down 200 20 IMAGES/bl2.bin
; DRAM TRAINING
;DNW_STORE exynos down 200 20 IMAGES/dram_train.bin
; S-BOOT
DNW_STORE exynos down 2000 20 IMAGES/s-boot.bin
; Dram EL3
DNW_STORE exynos down 200 20 IMAGES/dram_el3mon.bin
DNW_WAIT

Edit 1.

Look at my old crap:

Gear S3 Root and Kernel Source! (Android Wear Port Thread)

Hey guys! Some of you might know me from the LG G5 scene, but I have since moved on from there and am hoping to make some progress with the Gear S3 :) After doing some digging and paying zero attention in class today, I came across the kernel...

forum.xda-developers.com

 

[bobbywan30]

DNW_WAIT

Yout tried also wait Command?

Original

BL1
DNW_STORE exynos down 200 20 IMAGES/bl1
; EPBL
DNW_STORE exynos down 200 20 IMAGES/epbl.bin
; BL2
DNW_STORE exynos down 200 20 IMAGES/bl2.bin
; DRAM TRAINING
;DNW_STORE exynos down 200 20 IMAGES/dram_train.bin
; S-BOOT
DNW_STORE exynos down 2000 20 IMAGES/s-boot.bin
; Dram EL3
DNW_STORE exynos down 200 20 IMAGES/dram_el3mon.bin

Idea/Dream/untested with your device...

BL1
DNW_STORE exynos down 200 20 IMAGES/bl1
; EPBL
DNW_STORE exynos down 200 20 IMAGES/epbl.bin
DNW_WAIT
; BL2
DNW_STORE exynos down 200 20 IMAGES/bl2.bin
; DRAM TRAINING
;DNW_STORE exynos down 200 20 IMAGES/dram_train.bin
; S-BOOT
DNW_STORE exynos down 2000 20 IMAGES/s-boot.bin
; Dram EL3
DNW_STORE exynos down 200 20 IMAGES/dram_el3mon.bin
DNW_WAIT

Edit 1.

Look at my old crap:

Gear S3 Root and Kernel Source! (Android Wear Port Thread)

Hey guys! Some of you might know me from the LG G5 scene, but I have since moved on from there and am hoping to make some progress with the Gear S3 :) After doing some digging and paying zero attention in class today, I came across the kernel...

forum.xda-developers.com

I don't understand what you want to say