Raw2Riff [Jtag FF converter]

[TestBox2]

Hi by all.

some time we need converted file from ORT to Riff or Medusa to Riff and back.


As i see raw_format used 512 byte nand + 16 byte spare .

I ask about why 512 + 16 when NAND Block 2048kb.

- thet mean 1 block read by jtag by 4 tact.





FileFormat exp:


RAW = block + spare + block + spare + block+ spre + block + spare. [until end]

RIFF = block + block + block + block + spare + spare + spare + spare. [until end]








Here is main algo of converting Raw2Riff:

Code:

 
Procedure MsgBox(Msg: string);
var Capt: String;
begin
Capt:=(' Res = ');
MessageBox(0, PChar(Msg), PChar(Capt), MB_DEFAULT_DESKTOP_ONLY);
end;
 
Procedure _progress(begining,finalise:cardinal);
 begin
   Form1.Pp.MinValue:=0;
   Form1.Pp.MaxValue:=100;
   Form1.Pp.Progress:=round((begining/finalise)*100);
 end;
 
function _ExtractFileName(const FileName: string): string;
var
  I: Integer;
  _FileName:String;
begin
_FileName:=ExtractFileName(FileName);
  I := LastDelimiter('.' + PathDelim + DriveDelim, _FileName);
  if (I > 0) and (_FileName[I] = '.') then
    Result := Copy(_FileName, 1, i-1) else
    Result := '';
end;
 
procedure TForm1.Button1Click(Sender: TObject);
var
loader1,loader2,loader3:TStream;
loader4:TmemoryStream;
n,nsize,i:cardinal;
s,data:string;
begin
//Raw2Riff
s:=(ExtractFileDir(Application.ExeName));
OpenDialog1.InitialDir:=s+'\';
OpenDialog1.Execute;
if OpenDialog1.FileName='' then exit;
Edit1.Text:=_ExtractFilename(OpenDialog1.FileName);
loader1:=Nil;
loader2:=Nil;
 
loader1:=TFileStream.Create(OpenDialog1.FileName,fmOpenRead);
loader2:=TFileStream.Create(_ExtractFilename(OpenDialog1.FileName)+'_2riff.bin',fmCreate);
loader3:=TMemoryStream.Create;
loader3.position:=0;
nsize:=512;
repeat
s:=''; SetLength(S,nsize);
n:=loader1.Read(s[1],nsize);
if n<>nsize then begin MsgBox('not care = 512 '+inttostr(n)); s:=Copy(S,1,n); end;
loader2.Write(s[1],length(s));
s:=''; SetLength(S,16);
n:=loader1.Read(s[1],16);
loader3.Write(s[1],length(s));
_progress((loader1.position),(loader1.size));
until  ((loader1.position)>=(loader1.size));
 
loader3.position:=0;
s:=''; SetLength(S,loader3.size); 
loader3.Read(s[1],loader3.size);
loader2.Write(s[1],length(s)); 
 
loader1.Free;
loader2.Free;
loader3.Free;
 
end;

ERRORS Correction!

My converter true convert files as cleared parts of nand, and converted dump can be parsed at files sbl, amss ets..


But - something i not know, this is EFS have different spare
checksumm, and converting dump can write by jtag only from 0...to.. end of AMSS.



If any ppls know how to fixed filesystem _spare checksumm . u can finalised my algo to complett jtag flash converter.

[kr0m]

Are you really thinking all nand devices have the same architecture ?

[TestBox2]

Quote:

Originally Posted by kr0m

Are you really thinking all nand devices have the same architecture ?

Hi, as i know exist two main (Nand + 1NAND) structure, 512 and 2048 PageSize.

And about Jtag - yes, i try look both type.

[kr0m]

And what about nand device like micron 512(vid 2C/fid BC) with separated spare area ?

[TestBox2]

Quote:

Originally Posted by kr0m

And what about nand device like micron 512(vid 2C/fid BC) with separated spare area ?

As i say jtag fullflash convert working true for 512 and 2024 PageSize

Tested at ZTE MF190 = 512 ,HWU E173 - 2048 and many other modems .

But not mistake Partition_Size with RAW to BIN convertor .



This two dumps i do convert by my JTAG RAW to BIN converter and make parsing Qualcom FFS parts of files, all work fine!

Partition parsing have different explanation:

PageSize = 2048
BlkSize = 131072
PagesInBlk = 64



E173EU1_11.126.56.17.272_ok.bin
Partition detected! - method 1

- Partition in dump detected, start parsing...
---------------------------------------------------------------
Flash size 128MB : $20000
Bad_Block MAP vers : 00000001
Bad_Block counter : 00000000

- Check_NAND ok, No one BAD-Block found!
QCSBL_Size : 0000BB80 48000_dec
OEMSBL_Size : 0003D6DD 251613_dec
AMSS_Size : 00EAA4E2 15377634_dec

- Autoanalyse real size for QCSBL OEMSBL AMSS - ok.
0:MIBIB : Found!
Nand_Page : 00000000 -- start blk num
Nand_Size : 0000000A -- end blk num
Fls_Address : 00000000 - start in nand hex
File_Size : 00140000 - end in nand hex

0:SIM_SECURE : Found!
Nand_Page : 0000000A
Nand_Size : 00000006
Fls_Address : 00140000
File_Size : 000C0000

0:QCSBL : Found!
Nand_Page : 00000010
Nand_Size : 00000004
Fls_Address : 00200000
File_Size : 00080000

0:OEMSBL1 : Found!
Nand_Page : 00000014
Nand_Size : 00000006
Fls_Address : 00280000
File_Size : 000C0000

0:OEMSBL2 : Found!
Nand_Page : 0000001A
Nand_Size : 00000006
Fls_Address : 00340000
File_Size : 000C0000

0:AMSS : Found!
Nand_Page : 00000020
Nand_Size : 00000086
Fls_Address : 00400000
File_Size : 010C0000

0:FOTA : Found!
Nand_Page : 000000A6
Nand_Size : 00000002
Fls_Address : 014C0000
File_Size : 00040000

0:EFS2 : Found!
Nand_Page : 000000A8
Nand_Size : 00000034
Fls_Address : 01500000
File_Size : 00680000

0:MMC : Found!
Nand_Page : 000000DC
Nand_Size : 00000312
Fls_Address : 01B80000
File_Size : 06240000

0:OEMINFO : Found!
Nand_Page : 000003EE
Nand_Size : 00000011
Fls_Address : 07DC0000
File_Size : 00220000












PageSize = 512
BlkSize = 16384
PagesInBlk = 32


MF190S_64MB_04JUL_Mobinil.bin
Partition detected! - method 1

- Partition in dump detected, start parsing...
---------------------------------------------------------------
Flash size 64MB : $4000
Bad_Block MAP vers : 00000001
Bad_Block counter : 00000000

- Check_NAND ok, No one BAD-Block found!
QCSBL_Size : 0000B2BC 45756_dec
OEMSBL_Size : 0003F875 260213_dec
AMSS_Size : 00F2C566 15910246_dec
NANDPRG_Size : 0001D97C 121212_dec

- Autoanalyse real size for QCSBL OEMSBL AMSS - ok.

0:MIBIB : Found!
Nand_Page : 00000000
Nand_Size : 0000000A
Fls_Address : 00000000
File_Size : 00028000

0:SIM_SECURE : Found!
Nand_Page : 0000000A
Nand_Size : 00000006
Fls_Address : 00028000
File_Size : 00018000

0:QCSBL : Found!
Nand_Page : 00000010
Nand_Size : 00000005
Fls_Address : 00040000
File_Size : 00014000

0:OEMSBL1 : Found!
Nand_Page : 00000015
Nand_Size : 00000012
Fls_Address : 00054000
File_Size : 00048000

0:OEMSBL2 : Found!
Nand_Page : 00000027
Nand_Size : 00000012
Fls_Address : 0009C000
File_Size : 00048000

0:AMSS : Found!
Nand_Page : 00000039
Nand_Size : 00000521
Fls_Address : 000E4000
File_Size : 01484000

0:FOTA : Found!
Nand_Page : 00000624
Nand_Size : 00000047
Fls_Address : 01890000
File_Size : 0011C000

0:FTL : Found!
Nand_Page : 0000066B
Nand_Size : 00000040
Fls_Address : 019AC000
File_Size : 00100000

0:EFS2 : Found!
Nand_Page : 000006AB
Nand_Size : FFFFFFFF
Fls_Address : 01AAC000
File_Size : FFFFC000

[COVVA]

Alexey because you no post .exe aplication converter for alls?

[kr0m]

Quote:

Originally Posted by TestBox2

As i say jtag fullflash convert working true for 512 and 2024 PageSize

Tested at ZTE MF190 = 512 ,HWU E173 - 2048 and many other modems .

But not mistake Partition_Size with RAW to BIN convertor .

Your program will not works with this nand flash with 512 page size too because of separated spare area i have told before.

[NiRaV.SoN!]

Quote:

Originally Posted by COVVA

Alexey because you no post .exe aplication converter for alls?

Search for X-Parser Free Edition


Edit : Its not converter

[COVVA]

Please give me link x-parser free edition to download.. i was searching but no found program .. thanks

[TestBox2]

Quote:

Originally Posted by kr0m

Your program will not works with this nand flash with 512 page size too because of separated spare area i have told before.

Exept spare - all work fine!

[COVVA]

Alexey no is possible:.

Make tool to do compatibility dumps ort,riffbox,medusa,gpgjtag --

Converter files???

[E:V:A]

This is very interesting. Could you provide some more info about how you found the offsets and distinguish different partitions. I.e. How do you know which is which of MIBIB, OEMSBL, AMSS etc?

I'm trying to extract some FW from memory dump, in THIS thread.

Thanks.