Develop Bugs

Internal menu

http://wenku.baidu.com/view/e27ca2c66137ee06eff91876.html
After reading this I tried Code:
*#7092463*#
Several nice Settings, infos... and tests.
Like Touchscreentest with Coordinates, look weird Pic...
Bad. Not every Firmware support this Code.
JI5 for instance no chance... Reason I think is here:
http://forum.xda-developers.com/showthread.php?t=895526
We should more investigate this file...
I saw for S8000 they were also lucky to find new Code...
http://code.google.com/p/jetdroid/wiki/JetBootloader
I think this menu is active, only other Code needed for higher Firmware...
Best Regards

It seems not the Firmware Version is mandatory...
.. it seems this menu is locked...
I compared 2 Waves with same Firmware.
First no success. Second success... but after several Flashs I lost access to Internal menu.
Now after playing with AT commands... it is back.
It seems we can unblock... I have only no idea how exactly I've unblocked Internal menu.
Best Regards

Rsrc2_S8500(Low).rc2
Rsrc2_S8500(Mid).rc2 ----> it seems this can access Internal menu
It seems *.RC2 is the Block for Internal menu.
Compare both files, you see only 1 Byte difference.
Maybe this means something like, Low Security, Middle Security... maybe there are higher Settings possible...
I will check this.
Best Regards

how come this menu exists on wave 525 regardless of firmware?

hmm, I think I'm missing something here. In all the firmwares I've downloaded not once have I seen a Rsrc2_S8500(Mid).rc2.
Can you upload yours or otherwise let us know where we can get one from please.
Also can you tell us which firmware you're running please?
Cheers in advance,
D.

you can make yours as MID or even High with Wave remaker
http://forum.xda-developers.com/showthread.php?t=1028714
Don't forget to give a thanks to ho1od

Enter Code into handset:
Code:
[B]*#33284*#[/B]
= Debug Level (Low, Midle, High)
Best Regards

adfree said:
Enter Code into handset:
Code:
[B]*#33284*#[/B]
= Debug Level (Low, Midle, High)
Best Regards
Click to expand...
Click to collapse
Cheers Adfree - that's exactly what I was looking for ... I'm gonna try figure out decent keymaps for the android port
9600 Baud and check the setting UE Awake...
Ok...
Volume + = 0x54
Volume - = 0x55
Call = 0x50
Home = 0x53
Hangup = 0x51
Camera Halfpress = 0x8e
Camera Fullpress = 0x8d
Standby = 8f
now... how to change these into values for the s3c-keypad.kl file...

duxxyuk said:
now... how to change these into values for the s3c-keypad.kl file...
Click to expand...
Click to collapse
sorry to be off topic...
but...
the Android kernel interpets things differently, you can look at the kernel dmesg log when pressing the buttons if you want to see what is attached where, but some keys don't work from fota loader yet, people not interested in the dev side (like fixing fota or kernel issues instead of trying to install android apps) should wait for a proper release.

Not sure if before... but Backup and Restore seems possible on KK5...
Searching for folder where it is stored...
Best Regards

adfree said:
Not sure if before... but Backup and Restore seems possible on KK5...
Searching for folder where it is stored...
Best Regards
Click to expand...
Click to collapse
Thanks adfree
in before firmwares backup and restore works with kies but i dont know is it
available with phone or no .
can you please tell me how can i access to this menu ? i want to test it with other firmwares

Normally the answer is in this Thread...
Anyway.
Menu is blocked if not on Debug Level Mid or High... So first step:
*#33284*#
Later set back to Low to prevent Bluescreens.
Second step is:
*#7092463*#
Then:
4 Module Setting
11 Sync
At the moment no idea where Backupfile is stored...
In WinComm I saw this:
Code:
SmlBackupRestoreDebugHistoryResult: Cannot make config file!(/User/Mass/SmlMgr/_LastBnRHistory.txt)
I will deeper research...
Please remember. At your own risk. No idea if sideeffects...
Best Regards

any try to restoring failed
the error is : Restoring fail ( Manifest error or no Manifest ! )
---------- Post added at 12:30 PM ---------- Previous post was at 12:18 PM ----------
with stune :
User > SyncML
there is some *.cfg files
what is your idea is them backup files ?

Code:
+[059]=> [622.092]Packaging Start[/Media/_SamsungBnR_/Message.bk]
+[060]=> [622.109]Packaging Finish[/Media/_SamsungBnR_/Message.bk]:[Success]
+[061]=> [622.147]Packaging Start[/Media/_SamsungBnR_/MusicSetting.bk]
+[062]=> [622.166]Packaging Finish[/Media/_SamsungBnR_/MusicSetting.bk]:[Success]
I was able to create folder:
/User/Mass/SmlMgr/
Then file is written after Backup _LastBnRHistory.txt
Maybe I am blind, can't find yet folder /Media/_SamsungBnR_/
Maybe hidden or I am blind...
At the moment toooo lazy to backup again all files and searching for *.bk extension...
Maybe later more...
About Restore...
Success, but I have nothing installed yet and no SD card...

with stune :
User > SyncML
there is some *.cfg files
see below image :

there is some *.cfg files
Click to expand...
Click to collapse
Strange, I thought they are for FOTA...
I'll update to bada 1.0 and check again...
Maybe then more success to find *.bk files...
Best Regards

XXKL6 on my S8530 shows me Total Heap Mem.
245.760K
This seems 40 MB more then on bada 1.2...
Will check S8500...
Best Regards

adfree said:
XXKL6 on my S8530 shows me Total Heap Mem.
245.760K
This seems 40 MB more then on bada 1.2...
Will check S8500...
Best Regards
Click to expand...
Click to collapse
I can confirm this number in S8500... in XXKK7, 245.760 K... It seems that S8500 and S8530 are identical in memory issues..
Cheers!

Maybe we can find this info from S8600, S7250 and so on...
S8600 should have "more"... maybe...
Best Regards

that's right adfree, my s8600 show me more!

AT Commands + other kind of Commands

In amss.bin you can find several AT Commands...
Few short tested by me:
AT+DEVEXTMEMINSCHK?
Hmmm. returns only 2
No idea, I thought something for Memory...
AT+USERMEM
Returns 0k or maybe okay
AT+HEADERINFOSHOW?
Shows for instance the Memory name...
MemoryName:KAC007021M(S8500)
Btw... This is exact what we can read on Application Processor Chip.
1 hint that RAM is integrated with S5PC110 Processor...
Best Regards
TRY at your own risk. I have no idea what could happen.

s8500 support several types of at commands.
First type is common at commands set (70 commands), including AT+CPIN, AT+CMGR etc
the second (samsung specific, 171 commands) has many useful commands like etc
s8500 support 293 at commands (including common commands like AT+CPIN, AT+CMGR, and samsung specific like AT+IMEITEST, AT+CPU also)
complete list in attachment.
Do not use if you do not know what the command is for

AT+PRODUCTCODE?
Result:
AT+PRODUCTCODE? +PRODUCTCODE: GT-S8500BAADBT
If I enter:
AT+PRODCODE
Result:
Invalid Parameter
Hmmm. I'm not up to date in using AT commands.
Is it maybe possible to change Product Code via AT Command?
How is the correct Syntax for AT+PRODCODE ?
There are more interesting Commands.
Best Regards
P.S.:
I was only in Kies Mode, maybe other results in Debug Mode possible...

AT+DEVCONINFO
MN(GT-S8500);BASE(GT-S8500);VER(S8500XXKK7/S8500OXAKK7);HIDVER(S8500XXKK7/S8500OXAKK7);PRD(GT-S8500BAADBT);SN();IMEI(3xxxxxx3);PN();TZVER(20111025);CON(AT,MTP);HVID(Osp:2097153,IntSys:2097154);LOCK(NONE);LIMIT(FALSE)
Oh, not realized before... few changes...
On previous bada 1.x... looks like this:
MN(GT-S8530);VER(S8530XXJL2/S8530OXFJK3);HIDVER(S8530XXJL2/S8530OXFJK3);PRD(GT-S8530BAASEB)
MN should be manufacturer I think... this is very funny text string.
Best Regards
Edit 1.
My fault... MN is Model Name...

Ooh, this reminds me of the days when I had a SonyEricsson T68 and K750.... Good ol days ... One thing missing from those days .. Our samsung wave telephones don't do the Bluetooth HID protocol...

How do you send these commands?
Can you post output from:
AT+DGLOCK
AT+LVOFLOCK
AT+DETALOCK
?

How do you send these commands?
Click to expand...
Click to collapse
You can choose... there are hundrets of Tools, or write your own Terminal...
Few Tools I've used for this...
Revskills very often...
WinComm
QuB...
.
.
AT+DGLOCK
AT+LVOFLOCK
AT+DETALOCK
Click to expand...
Click to collapse
I'm little wimpy old man as you know...
But as I have 0 info about this... I'm scared to lock something and brick my handset...
No idea how to unlock ...
I'll investigate more...
Google research etc. and report later more... I'll try to be on the safer site...
About DELTA files/FOTA...
http://www.megaupload.com/?d=Z53R1IVX
I have upload few of S8500.
Maybe we find Commands or way to install manually these *.cfg Deltas...
Maybe AT Command also work...
Best Regards
Edit 1.:
Found this... untested yet:
Code:
AT+FOTALOC
AT+FOTAREADY
AT+FOTASTART
Edit 2...
Or maybe more such DEV Commands...
GetFotaEngineVer
Get FOTA Engine Version
Edit 3...
Maybe for Update... beter search for something like this:
SML_DM_FUMO_STATE
Or SCOMO
SCOMO Download Complete go to ui event 1...
SCOMO...Warning!!!! Delta Over Size
DownloadAndUpdate...org.openmobilealliance.dm.firmwareupdate.devicerequest
http://www.openmobilealliance.org/t...ram/docs/ets/oma-ets-fumo-v1_0-20061215-c.pdf

I'm sure LVOFLOCK gets level of lock - doesn't overwrite anything
The same about DETALOCK (detailed lock)
Just don't remember what was the code for DGLOCK, so don't use it for now if u're scared. You won't find these in google I think, these are Samsung specific, maybe only Mocha specific.
//edit:
Btw, many of AT commands goes to AMSS, but only what AMSS do is calling Mocha function in AP corresponding to AT command and returning result. For eg LVOFLOCK make AMSS invoke Bada function (also accessible from QuB) GetLevelOfLock and get it's return value. Can you compare result of these 2 maybe?

http://electronix.ru/forum/index.php?act=attach&type=post&id=46875

Tested by me...
AT+FOTALOC?
: Others
This seems location... folder... Others
AT+FOTAREADY?
COPYRETRY
But AT+FOTASTART seems correct...
Handset reboots... like if I delete *.cfg files...
Hmmmmmmmmm.
Will log with WinComm... maybe then more info...
Best Regards

At+preconfig=2,tmb
at+lvoflock=1,0
at+factrst=0,1
at+lvoflock=0,0
600 pages FOTA OTA Command with explain :
http://www.scribd.com/doc/63560940/47/FOTA-Commands
http://www.google.fr/url?sa=t&rct=j...sg=AFQjCNFTQzBSwRrZg82TEZSOleqClg4dbA&cad=rja

AT+FOTASTART 2400258.cfg
Error...
AT+FOTASTART after Download of package, not start downloaded update.
Maybe wrong syntax or FOTA of Qualcomm part only... amss.bin...
I can't see anything with WinComm... maybe next try with QXDM... if amss related...
@ Tigrouzen
Many thanx for helpfull Links.
Best Regards

adfree said:
AT+FOTASTART 2400258.cfg
Error...
AT+FOTASTART after Download of package, not start downloaded update.
Maybe wrong syntax or FOTA of Qualcomm part only... amss.bin...
I can't see anything with WinComm... maybe next try with QXDM... if amss related...
@ Tigrouzen
Many thanx for helpfull Links.
Best Regards
Click to expand...
Click to collapse
But i remember some time Samsung change this thing like not AT+FOTAUIMODE but
AT&FOTAUIMODE
Now its work but no Carrier
In our wave AT+CPIN doesnt work but AT&CPIN works

Code:
AT+FOTALOC?
AT+FOTAREADY?
AT+FOTASTART
Short tried on bada 1.0... JE7 Firmware...
All 3 output was Error...
Okay, not included in amss...
2400258.cfg also as text String in apps_compressed...
Will play little bit with Delta... then move to XXJL2...
Best Regards

Little progress...
AT+DEVCONINFO
Code:
MN(GT-S8600);VER(S8600XXKJC/S8600DBTKJ4);HIDVER(S8600XXKJC/S8600DBTKJ4)...
My S8500...
Best Regards

Did you get S8600 fw on your S8500 !!!!
Man this JTAG playing could kill your phone
Best Regards

Nah, he got FW ID from S8600 on S8500, while S8600 ShpApp & RC may be possible to run on S8500 and vice versa, rather no way about other things. ;P

"DEVCONINFO"="MN(GT-S8600);BASE(GT-S7250);VER(S8600XXKK5/S8600DBTKL1);HIDVER(S8600XXKK5/S8600DBTKL1);PRD(GT-S8600HKADBT)
Click to expand...
Click to collapse
Many thanx to S8600 user for nice info.
Best Regards

AT+SECUKEY +SECUKEY:"DXDxxxxxxxxxxxx=="
OK
AT+AUTHKEY +AUTHKEY:FAIL
OK
AT+DEVAUTH +DEVAUTH:SUCCESS
OK
AT+CERTKEY +CERTKEY:"X5Mxxxxxxxxxxx=="
OK
AT+PASSWORDINPUT +PASSWORDINPUT:SUCCESS
OK
Found Commands in WsSyncml.so, see here:
http://forum.xda-developers.com/showpost.php?p=21541765&postcount=4
No idea yet, what it is.
Best Regards

b.kubica said:
complete list in attachment.
Click to expand...
Click to collapse
Nice post b.kubica
Are you aware of the Qualcomm commands?
AT+CLAC lists these extra commands:
$QCSIMSTAT
$QCCNMI
$QCCLR
$QCDMG - Diagnostic Mode initiation.
$QCDMR - Diagnostic Mode (Baud) Rate. at$qcdmr=? shows available baud rates, at$qcdmr? shows current baud rate
$QCDNSP
$QCDNSS
$QCTER
$QCSLOT
$QCPINSTAT
$QCPDPP - Packet Data Protocol authentication Parameters - see w w w . shapeshifter . se/2008/04/30/list-of-at-commands/
$QCPDPLT
$QCPWRDN
$QCDGEN
$BREW
$QCSYSMODE
$QCCTM
$SUSBC
$NWMDCHNG
$SHPSLEEP
Not sure what they do. All I've found so far is at$qcsysmode restarts the phone with what looks like a file list coming out on the serial port. BREW is the Qualcomm application language.
Does AT_OWANCALL exist in the ROM? That is sometimes used to set up UMTS/HSDPA connections.

Since XXKK5 Update over the Air aka FOTA for S8500/S8530 AND S8600

S8500XXKK5 is able to update Firmware over the Air... See here:
http://forum.xda-developers.com/showpost.php?p=19663390&postcount=17
This is DELTA files stuff... Header:
BPDZ
Seen in several Firmware packages...
Main file is in:
User\Mass\SyncML\Fota\*.cfg
5 MB
Additional files are in
User\SyncML\*.cfg
You can choose later with Reminder to Backup files.
Handset creates now NEW files like apps_compressed.bin.
Around 5 Minutes... See Video:
http://www.youtube.com/watch?v=jhKquCccyD8&feature=player_embedded
Now I have dump via JTAG KKV...
I will upload soon apps_compressed.bin for study...
Best Regards
Edit 1.
CONFIRMED devices:
Code:
S8500 DBT
S8530 XEF
S8600 XEF

KKV is FOTA Demo... internal test maybe...
In apps_compressed only 1 Byte change...
http://www.megaupload.com/?d=6UKRP1YY
Attention! This is not for Multiloader, as it is decrypted allready...
Taken from JTAG dump...
Decompress possible with TriX for instance.
RC1 seems also changed...
Will check also QMD part of CSC...
Visible is Samsung Logo from RC2... it is reverse during Boot.
Best Regards

In CSC QMD part...
14 times Flight Mode into FLIGHT MODE...
RC1... not exactly sure about changes...
Both files included... maybe RC1 dump not exact cutted at end...
http://www.megaupload.com/?d=Q1L5P3BV
If Bootloader is also affected, I'll test sooooon.
Again, NOT for Multiloader, only for Research.
Best Regards
P.S.:
Yes, it is possible to make valid file for Multiloader... but...

Major changes in Boot... dbl not checked... toooo lazy now...
I have removed the 128 KB from JTAG dump for better comparing.
NOT use in Multiloader!!!
You can brick your handset.
So I think this is evidence once more, that FOTA is very powerfull...
Best Regards

Thank you Adfree for your hardwork
I think it is time for someone to continue this from that point
Of course if you can do more you are more than welcome
So compression Algorithm is in the phone FW now somewhere .....
Apps_compressed.bin or FOTA ?!!!!
this Algorithm is wanted dead or alive
Best Regards

adfree said:
Major changes in Boot... dbl not checked... toooo lazy now...
I have removed the 128 KB from JTAG dump for better comparing.
NOT use in Multiloader!!!
You can brick your handset.
So I think this is evidence once more, that FOTA is very powerfull...
Best Regards
Click to expand...
Click to collapse
Nice news there's differente boot and ive found source il be post later
They use Nucleus for crypto source, embeddedXen 3.1.3 its an virtual machine
https://rapidshare.com/files/239917171/crypto.7z
All file on your boot file adfree is in. There's complete kernel source i can upload of course now i upload just partial source. The's is 2002 revision 1.3 but i see 3.1.3 exist and some compile it need search more
Last version its 4 you can find source her :
http://embeddedxen.git.sourceforge....9c15b5bd0ccc08732577063836662835c3dc5;hb=HEAD
but our version of boot its compiled with 3.1.3 version

Tigrouzen said:
Nice news there's differente boot and ive found source il be post later
They use Nucleus for crypto source, embeddedXen 3.1.3 its an virtual machine
https://rapidshare.com/files/239917171/crypto.7z
All file on your boot file adfree is in. There's complete kernel source i can upload of course now i upload just partial source. The's is 2002 revision 1.3 but i see 3.1.3 exist and some compile it need search more
Last version its 4 you can find source her :
http://embeddedxen.git.sourceforge....9c15b5bd0ccc08732577063836662835c3dc5;hb=HEAD
but our version of boot its compiled with 3.1.3 version
Click to expand...
Click to collapse
so are u saying source code or something like on android

prok**** said:
so are u saying source code or something like on android
Click to expand...
Click to collapse
non this some source code about crypto on boot in virtual machine

Tigrouzen said:
non this some source code about crypto on boot in virtual machine
Click to expand...
Click to collapse
... tell me what all we can do by this new discovery ..

prok**** said:
... tell me what all we can do by this new discovery ..
Click to expand...
Click to collapse
Ho1od or Rebellios can take a look at and maybe find some trick its not for us but for training also for decrypting some boot system, all its important

On KK5 S8530 I was not able to download something...
DMSetup.ini
Code:
#Settings
FirmwareMaxSize=98304
I think this means maximum 98 MB for Delta... in KK5.
From bada 1.0 JE7...
Code:
FirmwareMaxSize=10485760
Btw...
In Internal Menu you can access few Settings...
http://forum.xda-developers.com/showthread.php?t=906966
Best Regards

Code:
HttpReqInternal: Proxy address is 0, so conver to NULL
HttpReqInternal : HTTP[ 0 ] - https://www.ospserver.net/device/fumo/agreement/IMEI:[B][COLOR="Red"]YOURS ! Caution[/COLOR][/B] (smlCommonHttp.c : 373)
With WinComm you can log few things...
http://forum.xda-developers.com/showthread.php?t=928170
For connection to Server your IMEI is sent...
Best Regards

those who pass me the update that does not come out more 'on Fota?
thanks

It seems nearly all files affected by this "update" to KKV...
amss.bin also few Bytes in Name changed...
Code:
Q6270B-KPUBL-9.9.99999
dbl.mbn seems only untouched file.
Except that FFS, CSC, APP is nearly impossible to compare...
Maybe in 1 of cfg are details about changes... and files involved....
@ DevilM
Not exact understand... sorry. BUT...
"We" not sure how and who is able to Download KKV...
Maybe you need luck, or maybe access limitation by:
- time... maybe only from 5 - 7 morning
- maybe only 100 "user" can access at same time Server...
I don't know. Sorry.
Best Regards

FirmwareMaxSize=98304
It's probably max 96KB for delta file.
FirmwareMaxSize=10485760
is 10MB
I found Quram compression routine in XPKJ1 FOTA module. But it's partial and very, very huge. Probably does support only one type of compression, likely for Rsrc or some libraries. Do you think it's possible for you to dump S8500XXKKV delta and send to me?
Probably FOTA updates does support following commands:
ROM:473277CC DCD aDelta_op_image_updat ; "DELTA_OP_IMAGE_UPDATE"
ROM:473277D0 DCD aDelta_op_image_upd_0 ; "DELTA_OP_IMAGE_UPDATE_COMP"
ROM:473277D4 DCD aDelta_op_image_upd_1 ; "DELTA_OP_IMAGE_UPDATE_ENGINE"
ROM:473277D8 DCD aDelta_op_file_create ; "DELTA_OP_FILE_CREATE"
ROM:473277DC DCD aDelta_op_file_overwr ; "DELTA_OP_FILE_OVERWRITE"
ROM:473277E0 DCD aDelta_op_file_modify ; "DELTA_OP_FILE_MODIFY"
ROM:473277E4 DCD aDelta_op_file_remove ; "DELTA_OP_FILE_REMOVE"
ROM:473277E8 DCD aDelta_op_symlink_cre ; "DELTA_OP_SYMLINK_CREATE"
ROM:473277EC DCD aDelta_op_symlink_ove ; "DELTA_OP_SYMLINK_OVERWRITE"
ROM:473277F0 DCD aDelta_op_symlink_mod ; "DELTA_OP_SYMLINK_MODIFY"
ROM:473277F4 DCD aDelta_op_symlink_rem ; "DELTA_OP_SYMLINK_REMOVE"
ROM:473277F8 DCD aDelta_op_dir_create ; "DELTA_OP_DIR_CREATE"
ROM:473277FC DCD aDelta_op_dir_remove ; "DELTA_OP_DIR_REMOVE"
Click to expand...
Click to collapse
guess it's enumerated from OP_IMAGE_UPDATE = 0
IMAGE_UPDATE_COMP = 1
and so on.
Also a question, have you ever met "GCE" or "GLS" magic string in some files related to compression? Looks like compression method or what.
//edit:
Some about FOTA origin probably:
http://www.ospserver.net/terms/terms.html
That server is probably defined somewhere in SystemFS.

Oh, found this in Debug folder... Logfile
Code:
FOTAMGR > QuramMduceBEraseBlock: startBlk(1), blk_num(1), idx(0), physical addr(0x01140000), size(0x00040000)
FOTAMGR > QuramMduceBWriteData: addr(0x00040000), size(0x00004000), idx(0), physical addr(0x01140000)
FOTAMGR > QuramMduceBWriteData: addr(0x00044000), size(0x0003c000), idx(0), physical addr(0x01144000)
Do you think it's possible for you to dump S8500XXKKV delta and send to me?
Click to expand...
Click to collapse
I'll sleep about.... tooo paranoid...
Only 3 user have KKV update... 2 in Germany...
IP + IMEI + I don't know what else is stored in these files...
Ah, forgotten my phonenumber...
Best Regards

From KK5 its possible to update to KK6...
And KK7 also updateable... to KKV...
XXKK5
Code:
Type : Unofficial Version
Number : 1127
Builder : superuser
Host : S1-AGENT08
Date : 2011/11/[B]22[/B]
Time : 21:04:33
Size : 42730876 bytes
CheckSum : 0xf4ff0762
XXKK6
Code:
Type : Unofficial Version
Number : 1155
Builder : superuser
Host : S1-AGENT08
Date : 2011/11/[B]25[/B]
Time : 22:35:35
Size : 42730876 bytes
CheckSum : 0xf4f72020
It seems you need exact procedure and/or its only 1 time possible after complete Flash with Multiloader... then you can download FOTA...
My steps:
1.
Firmwareupdate via Multiloader!
2.
During first initial Steps... Choose ENGLISH as language
3.
Timezone seems irrelevant... I choose Bermuda...
4.
Ok... Ok...
Now you are able to navigate in menu...
5.
WLAN/Wi-Fi ... no need of active SIM... enter your Password to establish connection to Wi-Fi
6.
Go to Settings->Accounts
Config your Samsung Account
Now you could test if ... but I think no connection... only
You need to RESTART your handset... OFF... ON
After finish of Boot, maybe wait short... then:
Settings->General->Software update
Don't forget to choose Wi-Fi
Please. I need someone to compare files.
Please after Download choose LATER... to backup folder:
Code:
User\Mass\SyncML\Fota\*.cfg
5 MB +
Additional files are in
User\SyncML\*.cfg
NOT upload public, please contact me in private via PM.
Thanx in advance.
Best Regards

After my KK5 Multiloader update... now received 3 packages...
KK5->KK6->KK7->KKV
Last one not installed yet... maybe I'll wait little bit to get KK8 or something like this.
Hmmm. Not sure how final FOTA will work... but it seems you can only jump in minor steps...
As fantasy example:
If your device has "KK1" and latest Firmware is KK9... then maybe you have to download and install first:
KK2
KK3
.
.KK8
Each package a 5 MB...
Best Regards

OTA updates are available for Germany,Italy,UK and another 2 countries i forgot only.....also OTA install of the apps
so i got 0 chance to get such updates
Best Regards

so i got 0 chance to get such updates
Click to expand...
Click to collapse
Not tested yet... if SIM card is mandatory in device... (maybe I'll remove it for test)
BUT my SIM card is not more active... all actions over Wi-Fi...
Also not many users from Europe (or Germany) reports success...
I can only count 3 user from Germany... 1 from Romania...
We will see...
I hope more user can confirm working FOTA.
Thanx.
Best Regards

[Q] Firmware Installation Problem - ERR : Dbl Erase

Hi everyone!
Actually Im asking for my friend.
He tried to install a new firmware, and get this error message in downloader:
Download Start Ch[0]
BootLoader 1703.9KB OK[0.9s]
ERR : Dbl Erase
And on the device he get this message:
Abnormal SW Detected!
Upgrade Only
When he turn-on the device, its shows him the startup screen and its restart after that.
We've tried to install a few firmawares and even 1.2 official version, but still the same error messages.
Any Advice??

http://forum.xda-developers.com/showthread.php?t=1928495
Again.
Why you need Bootloader Change ?
Bootloader seems intact, working... OTHERWISE you would see NOTHING.
The only Question... Which Firmware before... bada 1 or 2...
As example XXLA1 DBT bada 2...
Hope this time more clear.
Best Regards

Im sorry for the double post. My mistake!
thanks for the answer, I'll try it.
(By the way, the firmware that was before is: official 1.2 firmware.)

I tried to install 2.0 firmware like u said, and that is the error message that i get:
Download Start Ch[0]
ERR : FOTA Erase
After that, I tried to install 1.2 firmware:
Download Start Ch[0]
Amss 12859.1KB OK[5.1s]
Error : Apps Write [0.3s]
Any idea?

Maybe problem is your battery percentage is finished ?

So just to Charge the phone, and then try again?

shaiws said:
So just to Charge the phone, and then try again?
Click to expand...
Click to collapse
but you can't charge now via adapter.You can charge it on other wave or change your battery and try reflashing
only suggestion

If it doesnt charge, so how can it be that the device can turn-on (until the startup screen, and then it restart) and also, use the download mode?

shaiws said:
If it doesnt charge, so how can it be that the device can turn-on (until the startup screen, and then it restart) and also, use the download mode?
Click to expand...
Click to collapse
as i said charge your battery on other phone or use new battery

I mean, I can turn-on the device, and also can use download mode.
When i turn-on the device, its shows me the startup screen and restart after that (loop).

turn off your device and connect it to the adabter
leave it connected for an hour then try to flash it after this....you may notice that your device might get hot while charging...don't worry
Best Regards

By the way, the firmware that was before is: official 1.2 firmware.
Click to expand...
Click to collapse
bada 1.x need Bootloader from 1.x Firmware...
bada 2.0 need Boot from 2.0
So try XXJL2 Firmware for instance...
Btw...
I'm from Germany so I use most DBT... German Firmware...
I have NO idea, what you mean with official 1.2 firmware in your country.
Please. Next time if you write something about Firmware then minimum info:
EXACT Firmwareversion.
Name of Firmware...
XXLA1 DBT was only example from me.
Best Regards
---------- Post added at 02:54 PM ---------- Previous post was at 02:45 PM ----------
If hebrew Firmware...
Then my GOOGLE search...
S8500BJJJI1
s8500BJJKC1 ---- bada 1.2
Try bada 1.x Firmware...
You can NOT mix Boot.
Boot 1.x Firmware 2.0 = NO
Boot 2.0 Firmware 1.x = NO
Best Regards

adfree said:
bada 1.x need Bootloader from 1.x Firmware...
bada 2.0 need Boot from 2.0
So try XXJL2 Firmware for instance...
Btw...
I'm from Germany so I use most DBT... German Firmware...
I have NO idea, what you mean with official 1.2 firmware in your country.
Please. Next time if you write something about Firmware then minimum info:
EXACT Firmwareversion.
Name of Firmware...
XXLA1 DBT was only example from me.
Best Regards
---------- Post added at 02:54 PM ---------- Previous post was at 02:45 PM ----------
If hebrew Firmware...
Then my GOOGLE search...
S8500BJJJI1
s8500BJJKC1 ---- bada 1.2
Try bada 1.x Firmware...
You can NOT mix Boot.
Boot 1.x Firmware 2.0 = NO
Boot 2.0 Firmware 1.x = NO
Best Regards
Click to expand...
Click to collapse
thank you I will try later...
btw we can not download any official firmware in Israel. I do not know why, but there is no one link for Israel firmware.:crying:
even in sammobile there is no link?? do you guess why??

even in sammobile there is no link?? do you guess why??
Click to expand...
Click to collapse
Really sorry. I'm German user from Germany... DBT is all I need.
So I have no idea what is in other countries...
But you could try XXJL2 DBT as test... because 1.2 Firmware
Long time ago I flashed some hebrew Firmware... WITHOUT Bootloader.
If not dream, it was success.
So Bootloader is not special...
Good luck.
Best Regards
Edit 1.
Firmware try this:
http://forum.xda-developers.com/showthread.php?t=1254775

adfree said:
Really sorry. I'm German user from Germany... DBT is all I need.
So I have no idea what is in other countries...
But you could try XXJL2 DBT as test... because 1.2 Firmware
Long time ago I flashed some hebrew Firmware... WITHOUT Bootloader.
If not dream, it was success.
So Bootloader is not special...
Good luck.
Best Regards
Edit 1.
Firmware try this:
http://forum.xda-developers.com/showthread.php?t=1254775
Click to expand...
Click to collapse
I will try it, thank you

bricked wave ????

hello,
i know that this isn't the right place for my question but i didn't find a forum dedicated to the same of my problem.
so my phone samsung wave s8500 running bada got the download mode in the boot.
when i on my phone i get just the download mode even if i did not press the combo keys power vol down camera buttons. i got always on the download mode and my phone dont want to start
i triyed to unbrik him using multiloaders v5.65 and upload all required fils succefully but always the same problem
so ??? do think that a hardware problem ??
please help me it's urgent
thanks in advance

ANY HELP???

Multiloader shows Errors?
Which Firmware you have tried?
XXLA1 for instance... bada 2...
Status before?
Working?
Or you bought in used condition... unknown status?
In other words...
More details please.
Attach Screenshot from Multiloader for instance...
Btw.
"Latest" Multiloader is 5.67
Best Regards

thanks for the best reply friend
firmware : S8500XPKG5 bada. downloaded from multiloader via download mode
status before : work normal
it was normal, i don't know what happened

when i uploaded the fota + boot files via this topic, i got an orange screen, then a green message appeared ' upload data to pc '
what can i do ?

hello echopros
if you have upload data to pc you wave is in download mode so you can upload the firmware with multiloader
( sometime when you change from bada1 to bada 2 the upload stop after the bootfile and you have this message )

1.
XPKG5 is OLDEST leaked bada 2 Firmware...
Google for XXLA1 DBT for instance...
2.
upload data to pc
Click to expand...
Click to collapse
This is NOT Download Mode... only as info...
http://forum.xda-developers.com/showthread.php?t=1176189
Download XXLA1
Then use Multiloader 5.67
ALL files including BOOTfiles...
Best Regards
---------- Post added at 04:11 PM ---------- Previous post was at 03:46 PM ----------
Here is good source for S8500 Firmware:
http://netfolder.in/folder.php?folder_id=M4w7E4h
Try S8500XXLA1_v2.0_DBT.zip
http://netload.in/datei5Usrafz3Cv.htm
Then feedback please...
Best Regards

yakapa40 said:
hello echopros
if you have upload data to pc you wave is in download mode so you can upload the firmware with multiloader
( sometime when you change from bada1 to bada 2 the upload stop after the bootfile and you have this message )
Click to expand...
Click to collapse
i know and i uploaded all needed files but no success i'll try what Adfree said and i'll told you the results
thanks all for replies

adfree said:
1.
XPKG5 is OLDEST leaked bada 2 Firmware...
Google for XXLA1 DBT for instance...
2.
This is NOT Download Mode... only as info...
http://forum.xda-developers.com/showthread.php?t=1176189
Download XXLA1
Then use Multiloader 5.67
ALL files including BOOTfiles...
Best Regards
---------- Post added at 04:11 PM ---------- Previous post was at 03:46 PM ----------
Here is good source for S8500 Firmware:
http://netfolder.in/folder.php?folder_id=M4w7E4h
Try S8500XXLA1_v2.0_DBT.zip
http://netload.in/datei5Usrafz3Cv.htm
Then feedback please...
Best Regards
Click to expand...
Click to collapse
i know that upload data to pc massage not download mode
but i told you that when i was in download mode and have uploaded just boot files + fota from the link that in the forum i got this message

when i upload all files check LSI . boot change . full download . master ROM
message appeared after download " All files complete "
the probleme
my phone didn't restart after download
and when i unplug the battery and plug it again and power the phone always the same problem i got in download mode again

Only to be sure.
Check this Picture:
http://forum.xda-developers.com/showpost.php?p=44783328&postcount=4
Its from S8530... but...
S8500 looks similar.
All files complete ? Look on right site...
Normally you have nothing to set... accept Full Download to choose all files including Boot...
If all files from XXLA1, then ONLY flash this RC2:
http://forum.xda-developers.com/showpost.php?p=44791652&postcount=9
Now maybe more infos available. Like this.
http://forum.xda-developers.com/showpost.php?p=44803131&postcount=10
See Blue Screen Picture...
Btw.
Your Windows Version is what?
Win 7 64 bit ? ?
Best Regards

I did the same job exept I choose Master download. Ok I will try againe like the picture. Thanks adfree for your help. See you

adfree said:
Only to be sure.
Check this Picture:
http://forum.xda-developers.com/showpost.php?p=44783328&postcount=4
Its from S8530... but...
S8500 looks similar.
All files complete ? Look on right site...
Normally you have nothing to set... accept Full Download to choose all files including Boot...
If all files from XXLA1, then ONLY flash this RC2:
http://forum.xda-developers.com/showpost.php?p=44791652&postcount=9
Now maybe more infos available. Like this.
http://forum.xda-developers.com/showpost.php?p=44803131&postcount=10
See Blue Screen Picture...
Btw.
Your Windows Version is what?
Win 7 64 bit ? ?
Best Regards
Click to expand...
Click to collapse
My windows is 8
Shall I do it in 7 or XP ?

I have NO Win 8 experiences...
Not tested.
Also never tested on 64 bit System...
32 bit XP 10000000 % working for me. :angel:
Before you try on other Windows...
Check RC2 file ONLY to flash.
http://forum.xda-developers.com/showpost.php?p=45210653&postcount=11
Maybe S8500 shows Bluescreen.
Maybe Memory damaged like this:
http://forum.xda-developers.com/showthread.php?t=1398528
Blue Screen can show hints like this:
Code:
Type : Unofficial Version
Number : 1243
Builder : superuser
Host : S1-AGENT08
Date : 2012/01/05
Time : 19:21:46
Size : 42730876 bytes
CheckSum : 0xf4e364eb
View :
S/W version:S8500+XX+LA1
Modem:Q6270B-KPRBL-1.5.45T
SHP:VPP R5 2.1.1
Build Host:S1-AGENT08
BuildAt:2012/01/05 19:21:46
App Debug Level : 0
Data Abort!Page Translation Fa
ult for (0x6c92d214) Read Acce
ss Detection
<Callstack information>
PC = 404327A6 _printf_str
LR = 404317F1 __printf
<Mocha Task Callstack>
__printf
_printf_char_common
_snprintf
_MemGetCurrentlyAllocatedMemLi
stEx
OemBmShutdown
__WmEventHandlerProc
__WmProcessEventInternal
WmProcessEvent
__BootTimerCallback
__WmProcessTimerEvent
__WmProcessEventInternal
WmMainLoop
MochaTask
ALL HW Information:
HW VERSION : S8500_REV07
IMEI VERSION : Not Active
Best Regards

yes you'r right MAN
the windows 8 does not work with the flash correctly
it's ok now the problem has been solved thank you very very much adfree
big thanks
so happy now
this is the best forum
i love it

hello friends
after download and all done with success some pads does not work correctly for example
clicking on call pad = going to camera
on midium pad : a message appeared ''captured'' then the screen freeze up ??
lock pad does not work anymore

Can you check label under battery...
Is this Retail device?
Or looks like this...
http://forum.xda-developers.com/showpost.php?p=43475042&postcount=11
Best Regards

adfree said:
Can you check label under battery...
Is this Retail device?
Or looks like this...
http://forum.xda-developers.com/showpost.php?p=43475042&postcount=11
Best Regards
Click to expand...
Click to collapse
the same phone and same details

i changed the rom by an other from a website http://tizenhub.com/2012/01/official-bada-2-0-firmware-s8500xxla1.html
then when all complete the keypad camera work but as volume, and the lock pad as camera ????¿¿¿¿ lol what happened to my mobile hehhe

the same phone and same details
Click to expand...
Click to collapse
You mean you have an NOT for Sale handset?
An prototype S8500 ?
Best Regards