Print

[podger]

I had some time to do some more testing today.... I have my own stuff to write and test so I do this purely for the good of the scene.....

I tested Benq and Sammy and all was good IMHO with version 0.8.. as you know there was small bug in 0.7 with Benq firmware...

I promised to take a look at hitachi spoofing, figured this would be Maximus's strongest area, no hurry, right! Had a look this evening... My target was to make my 79 ( the one I did all my testing on for 79Unlock, key location is 4E10...). My task to make it appear to be my Lite-On...

So DVDkey32'd my Lite-On as I don't have an Intel chipset or a spare IDE slot for a PATA-SATA adapter as my PC like so many others has a Hard drive on my primary IDE bus and a Burner and Kreon on the other...
Luckily, enough I have a Via 6421, I find it useful from time to time... for STUFF..

Lauched Maximus 0.8b, clicked "Perpare Spoofed Firmware"... picked up the 3 files and generated firmware...

Didn't open in FWTB... hardly a surprise... Max did say it wouldn't, but

Maximus: do you even know why???

I Opened the .bin file in Hexedit to have a little look.....



OMG, what a disaster...

small bit of background on hitachi

QUOTE

let me explain a small bit here.... when a Hitachi boots, it reads the checksum at 0x3E7FC... if its 0x00000000 (master checksum) it boots to normal code...
if it's not 0x0000000 it calculates the sum for range between 0x6000 and 0x3E800 in 32 bits and result should be zero.. the stored checksum at 0x3E7FC makes this happen
if the result is zero the drive boots to normal code.

if it's not is goes to Recovery code, this is in theory to allow you the fix up the drive...
this area also has an Inquiry and Identify string, but to all intents and purposes is unused, It can however be useful to say identify a spoofed drives original type...... see below

setting the master checksum is handy for modding as you can then effectively ignore it.

SO... heres what I found


The "Perpare Spoofed Firmware" left normal code untouched, so drive appears exactly as it did before the spoof...

Instead it patches the Recovery area.... As, I pointed out earlier this area could be useful for spotting the type of drive....
But guess what it now says Lite-On and FWTB can't identify that... ( maximus: no need to thank me for that, spotting it is thanks enough )

Now that's not all......

So guess where the "Perpare Spoofed Firmware" put my key, 4e10 you say.... NO!, 4f00, ... FFS Maximus... WTF is that about....

Did you even look at the code before you released... I mean did you even try it once...

As FWTB couldn't read the file, I sure most of you have not used this for Hitachi's so the damage is negligible


I manually spoofed my firmware and FWTB read it just fine and flashed the 2 sectors 4000 for the key and 3c000 for the identity/inquiry data without incident
ran DVDkey32 ( no key) and both strings were fine....


Oh and Maximus BTW....

If this was a pissing contest, I'd have let you go ahead and release FWTB 4.9 .... just to compound your mess....

[carranzafp]

QUOTE(Iriez @ Sep 24 2008, 05:02 PM)

No, we WILL worry about people giving credit where credit is due. Beta or not is no excuse. If its been 'opensource' information, then why has he not implemented it before? Kinda a lame excuse to wait all this time, and then oh-so coincidentally right after podger releases it.

The fact is, seventhson told podger about it, and gave him the 'ok' to make it public, and then maximus is now using it. That is the REAL story.

I do not understand the point of this release. Why did he not just implement it into fwtb? This is just a clone of dvdkey32 and mode_b.

Hi Iriez just looking back on previous msgs,

I dont use Seventhson code on this tool (I dont know if podger use it but not my case), seventhson code dont have its own atapi layer.  Let me know if you are meaning that everytime we say "modeb" we must add the "thanks to seventhson" because I think its pretty obvious, he discovered and documented the command.  Repeat I dont used seventhson code just invoked his documented command like slax does.  I thanked geremia and c4e for sharing me the key dumping information on the liteon/benq that is the important thing on the tool.

I could show you code listings on what was first, podger or maximus on modeb (strangly he posted 2 days after I told geremia I already have it coded on beta .01, the Modeb was the feature that I used to test my atapi layer from begginning)  but honestly I dont care what people thinks m8, the first to release a MODEB application for windows was Seventhson, its on its website. End of history.

Honestly m8 you disappoint me with your comments, I thinked had your support but apparentlly I was totally wrong with you.

[carranzafp]

QUOTE(podger @ Oct 11 2008, 01:16 AM)

Instead it patches the Recovery area.... As, I pointed out earlier this area could be useful for spotting the type of drive....
But guess what it now says Lite-On and FWTB can't identify that... ( maximus: no need to thank me for that, spotting it is thanks enough )

So guess where the "Perpare Spoofed Firmware" put my key, 4e10 you say.... NO!, 4f00, ... FFS Maximus... WTF is that about....

As FWTB couldn't read the file, I sure most of you have not used this for Hitachi's so the damage is negligible

Yes podger I see the problem and yes since nobody has used for hitachi is because of whats not been reported yet.  I am working on a fix at this moment.  

Sincerelly m8, whats the problem you have with me?  I mean its not about this software at all I really feel you want to chop my head, maybe I did something to hurt you on the past?  sincerelly dont remember.  I just starting to know about you for bashing me on every comment you post.  

[podger]

Maximus: Well ignore my last post and go after Iriez instead, why don't ya.......

Firstly: I first posted on Mode-B from window 6 months also...651006. Seventhson's exe proved hard to use for ports other than 1F0, 170, because of the necessity to know the ATA command block base register address, often undocumented...
At this time all I posted was a way to find the ATA command block base register and as a result use the tool. all credit to SeventhSon at that time.

Secondly: SuperMario descovered the E7 H I T 30 90 90 D0 01 and for the record Seventhson has never claimed to have found the documented command. He offers full credit on his site to Supermario...update_02_03_06

Thirdly: Seventhson has an exceptionly well written ATAPI layer driver.. requires you to know the ctrl port as is and uses the geek's hideout port IO driver.... hmmmmm, I wonder....

My second post on XBH on Mode-B came about as a result of work I did on DVDKey32 to remove the requirement to know ATA command block base register address, as again this made the tool hard to use, thanks to Seventhson and Uberfry.
With the requirement gone I recoded the Mode_b.exe ( with the express written permission of Seventhson BTW ), and I tested it and got others to test it for a few days. This made the tool easier to use and quite useful for people stuck with a spoofed unmodded 78/79.....Oh yeah that post was 3 days before I released it so I guess your 2 day head start is shot to shit...

I further improved the tool by adding a loop that continually sends the command until the drive acknowledges. So executing the comand with the drive off then powering it, the drive effectively powers up in mode B and doesn't lock up the controller card and the system.... You may come up against that issue if you ever decide to support ports other than 170 1F0...

[Iriez]

QUOTE(carranzafp @ Oct 10 2008, 07:31 PM)

Hi Iriez just looking back on previous msgs,

I dont use Seventhson code on this tool (I dont know if podger use it but not my case), seventhson code dont have its own atapi layer.  Let me know if you are meaning that everytime we say "modeb" we must add the "thanks to seventhson" because I think its pretty obvious, he discovered and documented the command.  Repeat I dont used seventhson code just invoked his documented command like slax does.  I thanked geremia and c4e for sharing me the key dumping information on the liteon/benq that is the important thing on the tool.

I could show you code listings on what was first, podger or maximus on modeb (strangly he posted 2 days after I told geremia I already have it coded on beta .01, the Modeb was the feature that I used to test my atapi layer from begginning)  but honestly I dont care what people thinks m8, the first to release a MODEB application for windows was Seventhson, its on its website. End of history.

Honestly m8 you disappoint me with your comments, I thinked had your support but apparentlly I was totally wrong with you.

Keep in mind that I work with, and represent, most of the developers in the entire scene. So when I see a software release that looks like it is using methods founded by other developers, and no thanks are given, Im going to call you out on it. It doesnt matter if i support you or if i do not support you. Its good to know that you took the 'concept' and expanded on it to make it your own, but keep in mind that the original concept was documented and created by Seventhson. You said so yourself that you just 'invoked his documented command', which means that you've used his work.

Just give thanks where thanks are due, and no one will be pissy about it. Yes, everytime you use it, you should give thanks. Its people like Seventhson that make possible today the work you do. You *should* be grateful enough to recognize and respect that on every release.

[carranzafp]

Podger:
I dont refused your previous comment (I responded already) was just matter of the timming on the posts.
and no point on going to dates on who did what all as i can say is that I have not ever heard about you doing modeb tool when I did mine,

Here is a small transcript of Geremia chat I would not post it if not was true chat

12/09/08  05:40:57 p.m.  [email protected]  SAYS:  well, you could also do an hitachi soft modeb
12/09/08  05:41:44 p.m.  [email protected]  SAYS:  with full control over sata at lower level, you can
12/09/08  05:42:00 p.m.  [email protected]  SAYS:  yes
12/09/08  05:42:06 p.m.  [email protected]  SAYS:  Indeed I did it  
12/09/08  05:42:10 p.m.  [email protected]  SAYS:  it works


Going to explain history in detail about supermario and seventhson is pointless for the the topic, of course thanks to them, they were foundation of all this, we are just catfight girls compared to them

There is one single thing I discover myself over their work, and worked fine, I was lucky for figure it out, but they were foundation.

Iriez:
I added Seventhson on the readme included on new fix, not inttentionally leaved out, for me was pretty obvious

[sparky2k1]

QUOTE(carranzafp @ Oct 10 2008, 08:13 PM)

And I think my software is also downloadable for free?  isn't?

Yes the SW may very well be free for download, but reading back on the flaws so far, I beleive this "free" SW should have been fully tested before use on the "Purchased Tool" that the SW is for.

Not much point having a car without having the petrol to run it.  (IMG:style_emoticons/default/wink.gif)

Granted the SW may work with other tools but I get the impression it was written specifically for the tool being sold.