• Introducing XDA Computing: Discussion zones for Hardware, Software, and more!    Check it out!
  • Fill out your device list and let everyone know which phones you have!    Edit Your Device Inventory

[GUIDE] Unlocking JioFi 3 JMR540 & JMR541 for all networks

Search This thread

abhimortal6

Senior Member
Mar 6, 2014
149
161
Gwalior
I was able to fix it! Just put the sim in.....
@abhimortal6 How did you modify the rootfs? Planning on making a few more mods to the filesystem It is getting detected as a UBIFS file system but a lot of the extractors seem to be facing errors etc.

UBI read/extract tools available on git works partially it’s just matter of changing offsets. I do not have actual configurations right now but comparison with a generic UBI image will let you see things more clearly hope that helps. FYI device’s partition table gets easily corrupted, allocation is weird in this devices OG devs knew this so device have a recoveryfs if OTA updates fails. You’ll need to trim out UBI after packing.
 

Mysteriouslog6

Senior Member
Aug 21, 2018
115
19
LG V20
Xiaomi Redmi Note 5 Pro
UBI read/extract tools available on git works partially it’s just matter of changing offsets. I do not have actual configurations right now but comparison with a generic UBI image will let you see things more clearly hope that helps. FYI device’s partition table gets easily corrupted, allocation is weird in this devices OG devs knew this so device have a recoveryfs if OTA updates fails. You’ll need to trim out UBI after packing.
Thanks! I understood everything till the trim out UBI after packing , I was somehow able to get it extract the files with some errors but I am planning on making it with zero errors. Maybe we can run OpenWRT on this one day! (I wouldn't have high hopes for that)
 

iamabhijha

New member
Jun 26, 2021
1
0
Hello @abhimortal6, You have done a great thing I'm too impressed because I was also trying to unlock my jiofi but unfortunately the internet was filled with fake information but Your method is legit.

Can you please help me to unlock my jiofi m2 model too?
I want to learn from u how these things get done.
 

abhimortal6

Senior Member
Mar 6, 2014
149
161
Gwalior
Thanks! I understood everything till the trim out UBI after packing , I was somehow able to get it extract the files with some errors but I am planning on making it with zero errors. Maybe we can run OpenWRT on this one day! (I wouldn't have high hopes for that)
OpenWRT? device is already based on Android you can basically do everything and more with it. On paper it can be used as portable sniffer without any software modifications. OpenWRT will also disable 4G functionality as RIL drivers are closed source. Glad you progressed with image tools
 

abhimortal6

Senior Member
Mar 6, 2014
149
161
Gwalior
Hello @abhimortal6, You have done a great thing I'm too impressed because I was also trying to unlock my jiofi but unfortunately the internet was filled with fake information but Your method is legit.

Can you please help me to unlock my jiofi m2 model too?
I want to learn from u how these things get done.
Hello kind sir, I humbly accept your gratitude. As I've previously said dumping and reverse engineering requires hardware or in simple terms physical access to the device as it requires constant trial and error with patched software to test on device. If you are familiar with Linux, reverse engineering ARM binaries and embedded devices you can perform these task on your own. I'm trying to get hands on these devices via OLX but until then there's nothing I can do about it.
 
Last edited:

abhimortal6

Senior Member
Mar 6, 2014
149
161
Gwalior
Hi , so does anyone know how to enable 3g in the modded firmware? @Ashish123456 had asked me for help but I don't know how to do this neither can I test it as I only have Jio Sims any help? @abhimortal6
All the required binaries are in usr/bin and /sbin. Make changes permanent through init script. Refer this comment of mine
 
D

Deleted member 11682747

Guest
Hello kind sir, I humbly accept your gratitude. As I've previously said dumping and reverse engineering requires hardware or in simple terms physical access to the device as it requires constant trial and error with patched software to test on device. If you are familiar with Linux, reverse engineering ARM binaries and embedded devices you can perform these task on your own. I'm trying to get hands on these devices via OLX but until then there's nothing I can do about it.
Bro you are doing something incredible .....i mean this is what many were waiting for soo long......many had their jiofi lying of no use.....just tested on JMR541.....was quite lucky enough to have one..........tested on Vi network....12Mbps.....now we can switch sim according to location with best service providing operator......

IN ONE SENTENCE.....
 

Attachments

  • EXVuZRdUcAA7gPO.jpg
    EXVuZRdUcAA7gPO.jpg
    102.1 KB · Views: 20
  • Haha
Reactions: abhimortal6

abhimortal6

Senior Member
Mar 6, 2014
149
161
Gwalior
Bro you are doing something incredible .....i mean this is what many were waiting for soo long......many had their jiofi lying of no use.....just tested on JMR541.....was quite lucky enough to have one..........tested on Vi network....12Mbps.....now we can switch sim according to location with best service providing operator......

IN ONE SENTENCE.....
@YASHTRONX Thank you for your kind words, its one the things that keep me motivated and one is your happiness. Enjoy take care
 

Sokolov_1984

New member
Jul 2, 2021
2
0
Hello Friend! Great job - you're done! The firmware works in Russia. There was a small problem in one of the telecom operators. The fact is that I cannot enter the dot signs in the field where the name is the name of the APN. What to do in this case?

Community Verified icon
Снимок экрана 2021-07-02 в 20.17.47.png
 

abhimortal6

Senior Member
Mar 6, 2014
149
161
Gwalior
Hello Friend! Great job - you're done! The firmware works in Russia. There was a small problem in one of the telecom operators. The fact is that I cannot enter the dot signs in the field where the name is the name of the APN. What to do in this case?

View attachment 5353085View attachment 5353087
Hi, I’ll suggest you to use “internet” as apn. For us in India it is auto configured after that.
 
  • Like
Reactions: Sokolov_1984

Top Liked Posts

  • There are no posts matching your filters.
  • 1
    thnx
    Just Extract the zip file and copy the location of system.img like C:\Users\Name\Desktop\system.img on a windows pc. And the paste the location while flashing like this
    buddy but i already flashed : )
    1
    D
    Deleted member 11682747
    Hello kind sir, I humbly accept your gratitude. As I've previously said dumping and reverse engineering requires hardware or in simple terms physical access to the device as it requires constant trial and error with patched software to test on device. If you are familiar with Linux, reverse engineering ARM binaries and embedded devices you can perform these task on your own. I'm trying to get hands on these devices via OLX but until then there's nothing I can do about it.
    Bro you are doing something incredible .....i mean this is what many were waiting for soo long......many had their jiofi lying of no use.....just tested on JMR541.....was quite lucky enough to have one..........tested on Vi network....12Mbps.....now we can switch sim according to location with best service providing operator......

    IN ONE SENTENCE.....
    1
    Thanks friend !!! thanks a lot , I just create this account to say you thanks !!!!
    1
    Hello Friend! Great job - you're done! The firmware works in Russia. There was a small problem in one of the telecom operators. The fact is that I cannot enter the dot signs in the field where the name is the name of the APN. What to do in this case?

    View attachment 5353085View attachment 5353087
    Hi, I’ll suggest you to use “internet” as apn. For us in India it is auto configured after that.
    1
    @abhimortal6 thanks for making jiofi useful : ]

    also, if anyone facing problems doing the procedure then checkout this video
    how to unlock jiofi link : https://youtu.be/fPPZdFILphc
    i hope u will find it useful
  • 12
    Unlocked Firmware for JioFi 3 JMR540 & JMR541

    Disclaimer
    I am not responsible for any kind of damage to your device.
    Use this firmware at your own risk
    Post is for educational purpose only.


    ONLY FOR JMR 540 & JMR 541


    I was able to dump and reverse engineer JioFi 3's firmware to see if I can unlock the SIM restrictions. JioFi 3 is designed by Foxconn it uses generic firmware. Unlocking took time though. Tested with Vi, Airtel.



    Guide

    Make sure you're on same firmware version
    • JMR 540 - FXN_JMR540_R6.16
    • JMR 541 - FXN_JMR541_R3.10
    If not please use the device for sometime it'll autoupdate.


    1. Locate your device model and download the respective Firmware and extract it to a known location


    2. Install drivers and tools (skip if already installed)

    • Install Fastboot drivers ( google it for mac and linux it's easy to find)
    • Install Fastboot ( google it for mac and linux it's easy to find)

    3. Prepare device

    • Remove battery from JioFi 3
    • Locate reset pin hole button
    • Lay down JioFi 3
    • Use Paper Clip / SIM Ejector Tool to press button inside (using sharp object is not recommended)
    • Keep pressing button down and insert USB cable
    • Release button as soon as all the LEDs in Display turns RED. This means device is in boot loader mode

    4. Flashing Unlocked Firmware

    • Open adb and fastboot tools terminal
    • Enter following to check if device is connected

    • fastboot devices

    • It will return something like this
    • baxxxxx fastboot

    • This means device is connected. If your device doesn't show up here please check drivers in Device manager
    • Now first erase the system partition

    • fastboot erase system

    • It will return something like this
    • erasing 'system'... OKAY [ 1.104s] finished. total time: 1.105s

    • Now flash the firmware
    • fastboot flash system "D:\system.img" ( replace path )

    • It should return something like this
    • sending 'system' (34306 KB)... OKAY [ 1.276s] writing 'system'... OKAY [ 9.462s] finished. total time: 10.741s

    • Now send reboot command to device
    • fastboot reboot

    • You'll notice device will reboot normally now you can unplug the cable.

    Congratulations your device is now unlocked and you can reinsert battery and another SIM for testing.

    Firmware will take long time than usual to boot do not panic.

    4. Changing APN
    • Insert SIM connect with JioFi 3 wait it to intialize
    • Open Web UI from browser (http://jiofi.local.html/)
    • Now login (default username/pwd is administrator/administrator)
    • In Network Tab you'll find setting for changing APN
    • Put it on manual and enter "internet" as APN (without quotes)
    • Hit apply/save device will reboot again automatically and it'll auto connect
    • Just wait patience is the key here it'll connect.

    If something goes WRONG or you want to UNDO you can re flash original firmware which is provided in this post.


    Original backup




    FAQs

    1. Q. My device is not visible in fastboot devices
      A. Confirm driver installation a faulty cable can also be the issue.
      .
    2. Q. Everything went well but still no changes in dashboard
      A. After successful flash if you still don't see the changes your device is probably booting from recovery partition. Try flashing recovery partition by
      fastboot erase recoveryfs
      fastboot flash recoveryfs "D:\system.img"
      .


    3. Q. After resetting device from pin hole button it shows INVALID SIM.
      A. This is supposed to happen just reboot the device it'll work again.
      .
    4. Q. Can I undo all this and get back to original firmware
      A. Yes just flash the original firmware provided in post and reset the device.







    Mentions:
    Thanks to
    Karuppusamy for testing it on JMR541.


    What about JioFi 2, 4, 5, 6?
    Reverse Engineering takes lot of time and coffee. Until I get physical access to device I won't be able to unlock it. I'm constantly searching them on OLX as soon as I get hands on I'll surely try to RE and unlock it. I'll update the same here if there is no update here at the time of your reading then I haven't got the device yet so please don't spam for update hope you understand that I don't get anything by doing these things, I do it for liberation of locked hardware to meet it's real destiny and of course for the people. I also have a day job so no I cannot guide or teach you, hope you understand why.



    1
    successfully unlocked my jiofi 3 JMR541. tested with voda and its working well and good. Thanks a ton for this bro.
    I was late in checking this thread and got shipped airtel unlocked mifi from home.
    1
    successfully unlocked my jiofi 3 JMR541. tested with voda and its working well and good. Thanks a ton for this bro.
    I was late in checking this thread and got shipped airtel unlocked mifi from home.
    Can you show us dashboard screenshot. This will help other users to verify
    1
    bro is unlocking more 4g bands or manual selection of bands can be done ?
    Totally possible even 3G but it can't be done through WebUI it'll requires shell access.
    1
    Totally working! thanks a ton a bro <3