|
|
|
Vampirtc
|
 |
« Reply #101 on: July 24, 2011, 07:22:00 AM » |
|
I compiled my own and tested yours, doesn't seem to work. Tried with several voltages as well.
|
|
|
|
|
Logged
|
|
|
|
Czarodzij
Member
Posts: 41
Electronic Wizard
|
|
« Reply #102 on: July 24, 2011, 03:57:41 PM » |
|
Today we tried on several winbond's.
With pot I tried to pulldown in range 20r to 1r, got status 8c before 8ohm, below 8ohm I got FF and after 4-5sec drive freezes. So I tried to find where exacly is the border. After calibration found "place" where I got status firstly 8E, next 0F, C0, and after next intro I got SPI status 8E. So I think that drive understood some commands send by russian tool but cant clear status registry.
|
|
|
|
|
Logged
|
|
|
|
|
Pacote-san
|
|
« Reply #103 on: July 24, 2011, 04:07:10 PM » |
|
TX annouced the mod  |
|
|
|
« Last Edit: July 24, 2011, 04:22:52 PM by Pacote-san »
|
Logged
|
|
|
|
Czarodzij
Member
Posts: 41
Electronic Wizard
|
|
« Reply #104 on: July 24, 2011, 04:11:28 PM » |
|
Image has broken link:)
|
|
|
|
|
Logged
|
|
|
|
Czarodzij
Member
Posts: 41
Electronic Wizard
|
|
« Reply #105 on: July 24, 2011, 04:29:57 PM » |
|
 If this is not only illustrative photo it will be more complex than pulldown the pin, |
|
|
|
|
Logged
|
|
|
|
|
Pacote-san
|
|
« Reply #106 on: July 25, 2011, 03:16:38 AM » |
|
T-X is $#!tting with fear that someone release the method first
i posted that i hope someone releases the HEX for the pic + diagrams and they just deleted my post out of nowhere
|
|
|
|
|
Logged
|
|
|
|
bluemimmos
Hacker
Posts: 70
Its me, me, me and only me...... :D
|
|
« Reply #107 on: July 25, 2011, 03:20:37 AM » |
|
@Pac0te-san can u upload it here, the hex file and the schemetics...
will bve glad to see it..
|
|
|
|
|
Logged
|
|
|
|
|
Pacote-san
|
|
« Reply #108 on: July 25, 2011, 05:37:35 AM » |
|
@Pac0te-san can u upload it here, the hex file and the schemetics...
will bve glad to see it..
Read my post again... |
|
|
|
|
Logged
|
|
|
|
|
glaze83
|
|
« Reply #109 on: July 25, 2011, 05:44:41 AM » |
|
just a guess, but I think the unlock code will be run on the pic since it can sync with the chip's clock and raise cs high on the rising edge of the clock cycle.
could we not do this a ghetto way by setting a loop in the russian unlock program to repeatedly send the set write status register while we connect and disconnect the resistor? We'd have to get it right at some point?
|
|
|
|
|
Logged
|
|
|
|
bluemimmos
Hacker
Posts: 70
Its me, me, me and only me...... :D
|
|
« Reply #110 on: July 26, 2011, 01:03:51 AM » |
|
where is gremia; i think he would have made the boat ashore... and where are other developers, are they being bought up by TX?  just a dirty guess, to make a pic to do so, we need to first find is it really the cs going low and high again or not; otherwise we cant make it a go... |
|
|
|
|
Logged
|
|
|
|
bluemimmos
Hacker
Posts: 70
Its me, me, me and only me...... :D
|
|
« Reply #111 on: July 26, 2011, 01:35:04 AM » |
|
looking at the sputnik360 design and news from logic-sunrise; it is clear that someone has sold the info for winbound to tx. and from the news it was clear that they are using pic 12c508 and on the sputnik360 there is place for the same chip with same leg numbers. so it is sure that we need to sync the unlcok tool with the clock of the mxic chip. thats what i guess; any pic programmer; what about those who made xbox360 spi nand flashers. where are they; we need you pic programmers. |
|
|
|
|
Logged
|
|
|
|
|
engine620
|
|
« Reply #112 on: July 26, 2011, 01:56:12 AM » |
|
looking at the sputnik360 design and news from logic-sunrise; it is clear that someone has sold the info for winbound to tx. and from the news it was clear that they are using pic 12c508 and on the sputnik360 there is place for the same chip with same leg numbers. so it is sure that we need to sync the unlcok tool with the clock of the mxic chip. thats what i guess; any pic programmer; what about those who made xbox360 spi nand flashers. where are they; we need you pic programmers. here you are link for a datasheet of 12c508 pic: http://www.farnell.com/datasheets/6002.pdfthis pic need an external oscillator, with a clock (i i have read well) of 4 Mhz. Oh, another info: i've opened another slim and i found winbound 1335WE 1022... still not tested with any resistor, just wait for our developers here! |
|
|
|
|
Logged
|
|
|
|
|
rolf2
|
|
« Reply #113 on: July 26, 2011, 05:50:15 AM » |
|
this pic need an external oscillator, with a clock (i i have read well) of 4 Mhz.
there is internal RC oscilator as well . R. |
|
|
|
|
Logged
|
|
|
|
|
the-green
|
|
« Reply #114 on: July 26, 2011, 06:38:20 AM » |
|
Hope that we could one day make a home-made of this "sputnik360" gadget !! that will be fantastic !!  I had a question please ? did any one know if the brasilean hack need the trace cut too  |
|
|
|
« Last Edit: July 26, 2011, 06:39:59 AM by the-green »
|
Logged
|
|
|
|
|
Vampirtc
|
|
« Reply #115 on: July 26, 2011, 07:05:40 AM » |
|
I might be able to do it, but I need some info first: is Winbond inside MT1335WE? According to diagram here: http://www.one-winged-angelz.eu/Photos/MT1335WE_MT1339E_Pinout.pngIf it is inside are AUX4-AUX1 directly connected to Winbond? Basically I need to access Winbond SPI CLK, CS, in and out directly. If both is true, are there any easier to solder points on the PCB for AUX4,3,2 and 1? |
|
|
|
|
Logged
|
|
|
|
|
tingedace
|
|
« Reply #116 on: July 26, 2011, 07:40:20 AM » |
|
just a guess, but I think the unlock code will be run on the pic since it can sync with the chip's clock and raise cs high on the rising edge of the clock cycle.
could we not do this a ghetto way by setting a loop in the russian unlock program to repeatedly send the set write status register while we connect and disconnect the resistor? We'd have to get it right at some point?
If someone can explain with a timing diagram what needs done, I can code it. I feel we need some explanation of what the current code is doing before messing about otherwise it's shooting in the dark. |
|
|
|
|
Logged
|
|
|
|
|
CLaeR
|
|
« Reply #117 on: July 26, 2011, 04:30:05 PM » |
|
I might be able to do it, but I need some info first: is Winbond inside MT1335WE? According to diagram here: http://www.one-winged-angelz.eu/Photos/MT1335WE_MT1339E_Pinout.pngIf it is inside are AUX4-AUX1 directly connected to Winbond? Basically I need to access Winbond SPI CLK, CS, in and out directly. If both is true, are there any easier to solder points on the PCB for AUX4,3,2 and 1? yep flash chip inside mt controller. i think aux pins is active when drive in vendor mode so u can try. and if u cannot change registers then u can try find wp pin and connect 3.3v to WEL enable. |
|
|
|
|
Logged
|
|
|
|
|
Vampirtc
|
|
« Reply #118 on: July 26, 2011, 05:01:59 PM » |
|
Trying to communicate by AUX didn't work, not even in Vendor. Will try with WP pin.
|
|
|
|
|
Logged
|
|
|
|
|
Pacote-san
|
|
« Reply #119 on: July 27, 2011, 12:48:26 AM » |
|
Hope that we could one day make a home-made of this "sputnik360" gadget !! that will be fantastic !! I had a question please ? did any one know if the brasilean hack need the trace cut too We will, as soon as someone gets hold of one (or sooner if T-X releases the DIY before) and if no one saw it yet... T-X addressing this specific thread, you wont be able to read my posts cause they "banned" my account (only mods can read what i post) http://www.team-xecuter.com/forums/showthread.php?p=398469 |
|
|
|
|
Logged
|
|
|
|
|
