Issue #2024
openIssue #2025: Enable to recreate the EFS partition completely from scratch
Find offset and encoding of IMEI in the EFS for libsamsung-ipc
0%
Updated by Denis 'GNUtoo' Carikli over 4 years ago
Libsamsung-ipc already has a tool to compute the checksum of the EFS nv_data.bin files, so we can change their content.
The idea would be to write a tool to restore the EFS.
As the EFS is usually printed under the battery, users would lookup the EFS there and would give that to the tool.
Some XDA threads have probably the information for various devices.
It would be interesting to have information for any of the devices that are or could be supported by libsamsung-ipc, so if anyone has links to that it would be nice to post it here.
Updated by Denis 'GNUtoo' Carikli over 4 years ago
- Parent task set to #1869
This would be useful to be able to reconstruct EFS from scratch.
Updated by Denis 'GNUtoo' Carikli over 4 years ago
- Parent task changed from #1869 to #2025
Updated by Denis 'GNUtoo' Carikli over 4 years ago
- Device Galaxy Nexus (I9250), Galaxy Note (N7000), Galaxy Note 2 (N7100), Galaxy Note 8.0 (N51xx), Galaxy S (I9000), Galaxy S 2 (I9100), Galaxy S 3 (I9300), Galaxy Tab 2 10.1 (P51xx), Galaxy Tab 2 7.0 (P31xx) added
Updated by Denis 'GNUtoo' Carikli over 4 years ago
- https://git.replicant.us/contrib/GNUtoo/hardware_replicant_libsamsung-ipc/log/?h=patches-todo/modem-tools
- https://git.replicant.us/contrib/GNUtoo/hardware_replicant_libsamsung-ipc/tree/tools/rfs-imei.c?h=patches-todo/modem-tools
However the only device with an XMM616 I have is the Galaxy S, and it's EFS is completely gone. Because of that I wasn't able to manage to verify that the original tool or my modifications are supposed to work.
Also once the nv_data.bin has been rebuilt from LineageOS, I still wasn't able to change the IMEI:- Some fields weren't set, I could clearly see things like 'REV__' and 'Not Active'
- The IMEI is 004999010640000 which is the default IMEI
- The IMEI field was reset to 0xFFFFFFFF in the first RFS messages right after restarting the Replicant RIL
- After changing the IMEI, I also tried changing 'Not Active' and many other fields, adjusted the checksum, and here again the IMEI fields was overwritten with 0xFFFFFFFF.
- I tried setting the IMEI to 004999010640000 with the tool, and here again the field was changed to 0xFFFFFFFF again, probably even after trying to change some fields like 'Not Active' too.
edit1: add more background.
Updated by Denis 'GNUtoo' Carikli almost 4 years ago
- Device Galaxy Nexus (GT-I9250) added
Updated by Denis 'GNUtoo' Carikli almost 4 years ago
- Device Galaxy Note (GT-N7000) added
Updated by Denis 'GNUtoo' Carikli almost 4 years ago
- Device Galaxy Note 2 (GT-N7100) added
Updated by _I3^ RELATIVISM over 3 years ago
- Type of work C programming, Wiki editions added