Hacking Corrupted Boot0/1 trying to fix using Choidujour

[ressit]

i use this
[stock-POTENTIALLY_UNSAFE_FOR_GC_READER]
[FS_600-exfat_nocmac_nogc]
kip1=FS600-exfat_nocmac_nogc.kip1

Raj say firt time boot after use choijour need kip nocmac

--------------------- MERGED ---------------------------

My switch have this code after boot logo switch

 

[davexx]

Raj say firt time boot after use choijour need kip nocmac

--------------------- MERGED ---------------------------

My switch have this code after boot logo switch

i boot the [FS_600-exfat_nocmac_nogc] but it keep in bootloop

 

[davexx]

@Canna @mattytrog

i boot FS600-exfat_nocmac_nogc.kip1, when it stuck on switch logo i remove the battery i reboot inyecting payload hekate again and i see the battery percentage without the battery show me a normal value like 50% but without the battery.
if i remove on power off the battery then i power on i see 103% battery percentage

--------------------- MERGED ---------------------------

@mattytrog
you think its bq24193 chip? i can change it, but if i change the chip and i have the same issue, what can be?

 

[ressit]

Change emmc

 

[davexx]

Change emmc

why you think i need to change the emmc? if i use choidujour perfect i think my emmc is fine

 

[davexx]

@Canna @mattytrog

i try the 5pin M92T36 and it output 3.3v so its on correct value.

other test i do is to check testpads thanks to @Moquedami so i start on checking the cluster K

Cluster K

Pad # Name Type Levels Continuity Frequency Comment
1 GND
2 Unknown ?? 3.3V-0V None known N/A? Falls around same time pad K-7 falls, but immediately. No data observed as of yet.
3 Unknown
4 USB-PWR-WAVE? Square wave 0-3.3V A-9, A-10? ~11 Hz
5 USB-PWR-WAVE? Square wave 0-3.3V A-9, A-10? ~11 Hz Appears to mirror K4 Duty cycle 66.67% Low on screen lock Off until first interaction
6 USB-C V+ Supply Power
7 Unknown Power Supply? ~3V-0V None known N/A 0 when usb-c not plugged in, falls slowly on first interaction if USB-C plugged in. Power draw related?

this is my results

on hekate - only battery
pad 2 - 0v
pad 3 - 0v
pad 4 - 0v
pad 5 - 0v
pad 6 - 4.8 with usb connected
pad 7 - 4.8 with usb connected

on switch logo stuck - only battery

pad 2 - 0v
pad 3 - 0v
pad 4 - 2.1v
pad 5 - 2.1v
pad 6 - 0.4v
pad 7 - 0.3v

so the pad 4 y 5 when it try to boot have a lower voltage it need 3.3 and it show 2.1 i think that is my problem why dont boot.
replacing BQ24193 chip its possible to fix this low voltage ?

 

[mattytrog]

Possibly. Can you charge the battery temporarily to a decent voltage?

If the system then boots, then that narrows it to BQ24193 or battery.

 

[davexx]

Possibly. Can you charge the battery temporarily to a decent voltage?

If the system then boots, then that narrows it to BQ24193 or battery.

how can i do that?

 

[mattytrog]

how can i do that?

Use a VERY low current 4v supply. Try and trickle it up to a decent voltage

 

[davexx]

@mattytrog
i try bypassing the battery but it doesnt show the switch logo, i check the output of the battery and its fine it show 3.7v, how can i test the BQ24193 chip?

 

[mattytrog]

@mattytrog
i try bypassing the battery but it doesnt show the switch logo, i check the output of the battery and its fine it show 3.7v, how can i test the BQ24193 chip?

OK. Lets look at the facts.

You are getting constant battery level indications in Hekate
Battery is at a decent voltage
Replaced M92T36

So at the moment, I`m ruling out the BQ24193 as your battery stats are consistent.

I`d rebuild your NAND.

Back up BOOT0/1 and PRODINFO / PRODINFOF

It is easy to do. You MUST make sure you have decent backups of the above partitions. Backup, then backup again. And again.

Get your BIS keys, download memloader and hacdiskmount (and etcher)

I`m not going to make a guide of rebuilding NAND as Canna and Rajkosto have it covered already.

@Canna has made a brilliant guide HERE
Then follow Rajkosto`s guide HERE

 

[davexx]

OK. Lets look at the facts.

You are getting constant battery level indications in Hekate
Battery is at a decent voltage
Replaced M92T36

So at the moment, I`m ruling out the BQ24193 as your battery stats are consistent.

I`d rebuild your NAND.

Back up BOOT0/1 and PRODINFO / PRODINFOF

It is easy to do. You MUST make sure you have decent backups of the above partitions. Backup, then backup again. And again.

Get your BIS keys, download memloader and hacdiskmount (and etcher)

I`m not going to make a guide of rebuilding NAND as Canna and Rajkosto have it covered already.

@Canna has made a brilliant guide HERE
Then follow Rajkosto`s guide HERE

thanks @mattytrog
i have one question it about the 2.1v on my testpad what can be that?

about the both guide i did it, the except i didnt do a full rawnand because i dont have a mem of 32gb.
i extract all the keys, also i can create the files using firmware 5.1.0 and 6.0.0, i try both and modified the hekate.ipl but it still stuck on switch logo.
i did the recommend of @Canna about use the same firmware of the fuse (6) so i install the 5.1.0 but still same problem.

 

[Moquedami]

how can i do that?

i did this using a generic external battery charger (like the one used to charge phone batteries externally).

 

[davexx]

@mattytrog
i check some smd capacitor, and i see i have like 4 near of cpu and sdcard, that it show me continuity on both sides of capacitor on gnd so i will try to replace it and check if it boots or not

 

[mattytrog]

@mattytrog
i check some smd capacitor, and i see i have like 4 near of cpu and sdcard, that it show me continuity on both sides of capacitor on gnd so i will try to replace it and check if it boots or not

The capacitors will be fine I'm guessing.

You probably have inductors in parallel with them somewhere.

Or a t****** / ic is switched on to them.