Switch to full style
Discussions related to DFL tools: general chat, firmware requests
Post a reply

Regen 01 from 110

August 29th, 2018, 16:30

Hi My Dear Friends,
As per DFL Manual, one can read that 01 can be regenerated using 110. I tried this various times manually, however i get a static file error. I tried to refer structure of a donor 01 and tried to arrange things extracted from 110 so that it kind of matches the 01 donor structure. All the time the checksum was maintained and length was kept as original by filling FF at the end till the length in this case was 3000. I am still unable to load this generated module in RAM however it can be loaded in the module list in DFL and shows only 31,33 and one or two more mods.....So i did something funny, loaded donor 01 in RAM and loaded this CREATED 01 into the DIR list and it would locate the 4 modules correctly :D

I do not wish to use any DONOR 01 as I have seen sometimes a single WD may contain more than one service area firmwares written at different starting addresses.

Where should I look up so that I can successfully learn to create 01 from 110..

Thanks

--

Re: Regen 01 from 110

August 29th, 2018, 16:37

Could you upload an example of a valid 01h/110h module pair?

Re: Regen 01 from 110

August 29th, 2018, 16:40

Usually it's best to find a close donor and use that module 01 as a starting point. Then just make the adjustments to the module locations.

It's pretty easy to do that in PC-3000. I usually just use the modules search in SA to determine all their locations and then manually modify the table. I've never actually tried using module 110 for that purpose.

Are you sure that all the copies of module 01 are bad? A lot of new drives now have 4 copies of the SA. Usually, you can get enough sectors to put it back together again.

Re: Regen 01 from 110

August 29th, 2018, 16:51

HI fzabkar

HI data-medics

Thanks for your reply. Posting it in the next 10 mins.

<3 you Guys.


--

Re: Regen 01 from 110

August 29th, 2018, 17:06

Hi these are the files
Attachments
FILES.zip
110, 01 that i created (02-01 ie second attempt of creating 01) and donor ref 01
(9.3 KiB) Downloaded 138 times

Re: Regen 01 from 110

August 30th, 2018, 0:08

ISTM that the order of the module records in module 01h is not important, in which case all that one would need to do would be to edit the checksum and the module ID (from 0x0110 to 0x0001). You might need to confirm that the ABA of module 01 matches its ABA in the active ROM directory (0Bh or 20Bh).

Code:
Offset(h) 00   02   04   06   08   0A   0C   0E

00000000  524F 594C 0100 3000 1001 1800 A63B 5A0E  ROYL..0.....¦;Z.
     change from 1001 to 0100 ^^^^      ^^^^^^^^^ recalculate checksum

110.bin

Code:
Offset(h) 00   02   04   06   08   0A   0C   0E   10

00000000  524F 594C 0100 3000 1001 1800 A63B 5A0E 3030
00000012  3032 3030 3030 0102 0302 0500 0600 0000 0700
00000024  0800 0000 0900 0000 0A00 0000 6B01 1202 0100   first record
              0x16B = number of records ^^^^

00000036  1800 0318 9000 39C3 0500 39C3 0500
........
00001986                                     1202 6D80
00001998  0B00 0318 0000 33B4 0000 33B4 0000 0002 6E80   last record
                                             ^^^^^^^^^
000019AA  2100 0318 0000 3EB4 0000 3EB4 0000 FFFF FFFF   (0x12 x 0x16B) + 0x32 = 0x19B8
000019BC  FFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFF

01 REF DONOR.rpm

Code:
Offset(h) 00   02   04   06   08   0A   0C   0E   10

00000000  524F 594C 0100 3000 0100 1800 0C32 6892 3030
00000012  3032 3030 3030 0102 0302 0500 0600 0000 0700
00000024  0800 0000 0900 0000 0A00 0000 AD01 1202 3500
              0x1AD = number of records ^^^^
00000036  0A00 0318 8000 0000 0000 0000 0000

BTW, your manually created "02-01" module is reporting only 5 records. Was that your intention?

Code:
Offset(h) 00   02   04   06   08   0A   0C   0E   10

00000000  524F 594C 0100 3000 1001 1800 E385 1322 3030
00000012  3032 3030 3030 0102 0302 0500 0600 0000 0700
00000024  0800 0000 0900 0000 0A00 0000 0500 1202 3500
             0x0005 = number of records ^^^^

00000036  0A00 0318 8000 1800 0000 1800 0000

Re: Regen 01 from 110

August 31st, 2018, 16:00

fzabkar, Hi mi Amigo, Sorry I just got caughtup with some stupid college assignments.

Yes, the strange part it it showed just a five or four modules. It pointed to 31 and it opened up perfectly too.

I did not rename it as 01 instead of the long ugly name it currently has.


--
Dont wish to do do some thread jumping.
I have a kermit which I am practicing on and have a few boards which are bricked.

I tried to locate those resistances which enable the external rom and found out a 22k is missing between E61 and GND.

cant locate anything more... any leads there would help too...

I just do not have any guru in my life for low level embedded systems reverse engineering. However my final year project in college is a DSP based Opamp circuit parameter analyzer which is currently in the matlab stage and will be done on a Cypress FM4 or some other ARM device..... I would love to learn embedded reverse engineering and just dont know where to start. Any leads there will help me for life.

Thanks,

--

https://forum.hddguru.com/viewtopic.php?t=20324&start=

Re: Regen 01 from 110

August 31st, 2018, 16:17

sin wrote:I have a kermit which I am practicing on and have a few boards which are bricked.

I tried to locate those resistances which enable the external rom and found out a 22k is missing between E61 and GND.

cant locate anything more... any leads there would help too...

It's a very looong thread, but @Severence has done a lot of work in this area, including software for RAM dumps:

http://www.hddoracle.com/viewtopic.php?f=3&t=1983

Re: Regen 01 from 110

September 2nd, 2018, 15:02

Hi

i have seen some drives just do not have a copy of 01 in 110


So if some one possibly damages 01 and rest of the SA is fine and no 01 donor perfectly matches to read the whole SA.... wrong donors show many modules as read ok, checksum error (and mark them with a cross in DFL to indicate checksum or/and header issue)

I believe one could still copy all the tracks (provided rom is left intact with its adaptive)
and try to extract Mods from the Tracks manually..

Finally using a donor 01 which has appropriate lengths for the modules (or if not, manually edit lengths in mod table)
and patch the important mods for DR and still DR guy can get away with it by having ID the drive and extracting the data too..
Right?


--

Re: Regen 01 from 110

September 2nd, 2018, 15:46

That sounds OK to me.

Re: Regen 01 from 110

September 3rd, 2018, 12:38

Great Thanks! Have a great day ahead.

Re: Regen 01 from 110

September 30th, 2018, 8:59

I'm under the impression that normaly using a module 01 from another drive of the same model, family and FW version will work just fine ...
Post a reply