|
How to find these LGP addresses
|
|
| loquat | Дата: Воскресенье, 27.11.2011, 16:25 | Сообщение # 1 |
|
Подполковник
Имя: loquat
С нами с: 26.03.2010
Сообщений: 115
Модель телефона: S7Cv47&SK6Cv50
Статус: Offline
| I have port this patch to S7Cv47, but there are two problems
1.there are few key functions in firmware(can find in IDA), but do not know what they do
These are possible key codes
Print, New file, Activate(theme), play(sound)
2.I do not know how to find their LGP addresses to change
Code ;Own structure of sub-menu in card-explorer
;(c) Visad
;(r) 1nvisible
;Version: 0.8
;E71Cv41
739CE4: 00 00
739D44: 03 03
739D5C: 04 04
739D74: 06 06
739DA4: 08 08
739E04: 0B 0B
739E1C: 0C 0C;
739E34: 02 02
739E94: 0F 0F
739EC4: 11 11
739EDC: 1D 1D
739EF4: 1C 1C
/*
key function codes:
0x00 default, use 1st choice in Option menu
0x01 unknown
0x02 Send
0x03 Move
0x04 Copy
0x05 unknown
0x06 Delete
0x07 DelAll
0x08 Mark/Unmark
0x09 MarkAll
0x0A unknown
0x0B Newdir
0x0C Rename
0x0D Sort
0x0E Attributes
0x0F Drive info
0x10 Options
0x11 Help
0x15 Cancel(when copying or moving)
0x16 Back
0x17 unknown
0x18 Open/View
0x1C Search
0x1D Format MMC
0x1E Eject MMC
0x1F Set as ...
0x21 ->contact
0x22 Preview(theme)
0x23 Edit
0x24 Manage licences
0x25 unknown
0x26 Update(JAVA)
0x27 Security(JAVA)
0x28 unknown
0x29 Online settings(Java)
*/
Table-tennis,volleyball,swimming
Good good study,day day up.
Lifting my head I watched the brignt moon,Lowering my head I dreamed that I'm home.
|
| |
| |
| loquat | Дата: Воскресенье, 27.11.2011, 17:13 | Сообщение # 2 |
|
Подполковник
Имя: loquat
С нами с: 26.03.2010
Сообщений: 115
Модель телефона: S7Cv47&SK6Cv50
Статус: Offline
| Subdirectory
Parent directory
Table-tennis,volleyball,swimming
Good good study,day day up.
Lifting my head I watched the brignt moon,Lowering my head I dreamed that I'm home.
|
| |
| |
| loquat | Дата: Вторник, 29.11.2011, 08:32 | Сообщение # 3 |
|
Подполковник
Имя: loquat
С нами с: 26.03.2010
Сообщений: 115
Модель телефона: S7Cv47&SK6Cv50
Статус: Offline
| S7Cv47
Code ROM:A029D1FE loc_A029D1FE: ; A029D1BC�j
ROM:A029D1FE 2D 69 LDR R5, [R5,#0x10]
ROM:A029D200 53 4F LDR R7, =0x4209
ROM:A029D202 A8 07 LSLS R0, R5, #0x1E
ROM:A029D204 10 D5 BPL loc_A029D228
ROM:A029D204
ROM:A029D206 56 4C LDR R4, =0xA8D79378 ; Remote control via flash SMS
ROM:A029D208 66 61 STR R6, [R4,#0x14] ; Remote control via flash SMS
ROM:A029D20A FF F7 48 FD BL sub_A029CC9E ; Remote control via flash SMS
ROM:A029D20A
ROM:A029D20E 00 28 CMP R0, #0
ROM:A029D210 04 D0 BEQ loc_A029D21C
ROM:A029D210
ROM:A029D212 02 20 MOVS R0, #2
ROM:A029D214 66 F0 5F F8 BL sub_A03032D6
ROM:A029D214
ROM:A029D218 00 20 MOVS R0, #0
ROM:A029D21A 60 61 STR R0, [R4,#0x14]
ROM:A029D21A
ROM:A029D21C
ROM:A029D21C loc_A029D21C: ; A029D210�j
ROM:A029D21C 00 22 MOVS R2, #0
ROM:A029D21E 39 1C MOVS R1, R7
ROM:A029D220 0F 20 MOVS R0, #0xF
ROM:A029D222 DC F7 10 EE BLX sub_A0279E44
ROM:A029D222
ROM:A029D226 00 24 MOVS R4, #0
ROM:A029D226
ROM:A029D228
ROM:A029D228 loc_A029D228: ; A029D204�j
ROM:A029D228 68 07 LSLS R0, R5, #0x1D
ROM:A029D22A 18 D5 BPL loc_A029D25E
ROM:A029D22A
ROM:A029D22C FF F7 F7 FC BL sub_A029CC1E
ROM:A029D22C
ROM:A029D230 00 28 CMP R0, #0
ROM:A029D232 02 D0 BEQ loc_A029D23A
ROM:A029D232
ROM:A029D234 02 20 MOVS R0, #2
ROM:A029D236 66 F0 4E F8 BL sub_A03032D6
ROM:A029D236
ROM:A029D23A
ROM:A029D23A loc_A029D23A: ; A029D232�j
ROM:A029D23A 00 22 MOVS R2, #0
ROM:A029D23C 39 1C MOVS R1, R7
ROM:A029D23E 0F 20 MOVS R0, #0xF
ROM:A029D240 DC F7 00 EE BLX sub_A0279E44
ROM:A029D240
ROM:A029D244 71 E0 B loc_A029D32A
Table-tennis,volleyball,swimming
Good good study,day day up.
Lifting my head I watched the brignt moon,Lowering my head I dreamed that I'm home.
|
| |
| |
| loquat | Дата: Вторник, 29.11.2011, 08:32 | Сообщение # 4 |
|
Подполковник
Имя: loquat
С нами с: 26.03.2010
Сообщений: 115
Модель телефона: S7Cv47&SK6Cv50
Статус: Offline
| S68Cv51
Code ROM:A026BD4A loc_A026BD4A: ; CODE XREF: sub_A026BCBA+50�j
ROM:A026BD4A 2D 69 LDR R5, [R5,#0x10]
ROM:A026BD4C A8 07 LSLS R0, R5, #0x1E
ROM:A026BD4E 0F D5 BPL loc_A026BD70
ROM:A026BD50 77 61 STR R7, [R6,#0x14] ; Remote control via flash SMS
ROM:A026BD52 FF F7 4A FD BL sub_A026B7EA ; Remote control via flash SMS
ROM:A026BD56 00 28 CMP R0, #0
ROM:A026BD58 04 D0 BEQ loc_A026BD64
ROM:A026BD5A 02 20 MOVS R0, #2
ROM:A026BD5C 83 F0 D1 FA BL sub_A02EF302
ROM:A026BD60 00 20 MOVS R0, #0
ROM:A026BD62 70 61 STR R0, [R6,#0x14]
ROM:A026BD64
ROM:A026BD64 loc_A026BD64: ; CODE XREF: sub_A026BCBA+9E�j
ROM:A026BD64 00 22 MOVS R2, #0
ROM:A026BD66 0F 20 MOVS R0, #0xF
ROM:A026BD68 46 49 LDR R1, =0x4209
ROM:A026BD6A DD F7 F2 E9 BLX sub_A0249150
ROM:A026BD6E 00 24 MOVS R4, #0
ROM:A026BD70
ROM:A026BD70 loc_A026BD70: ; CODE XREF: sub_A026BCBA+94�j
ROM:A026BD70 68 07 LSLS R0, R5, #0x1D
ROM:A026BD72 10 D5 BPL loc_A026BD96
ROM:A026BD74 FF F7 F9 FC BL sub_A026B76A
ROM:A026BD78 00 28 CMP R0, #0
ROM:A026BD7A 50 D1 BNE loc_A026BE1E
ROM:A026BD7C 6F E0 B loc_A026BE5E
Table-tennis,volleyball,swimming
Good good study,day day up.
Lifting my head I watched the brignt moon,Lowering my head I dreamed that I'm home.
|
| |
| |
| Evgr | Дата: Вторник, 29.11.2011, 22:45 | Сообщение # 5 |
|
Волшебник
Имя: Евгений
С нами с: 07.05.2007
Сообщений: 874
Модель телефона: E71v45x2, EL71v45
Статус: Offline
|
try this patch for S7C and it should now be easily ported to S68C
E71v45, CL61v00db128@E71, EL71v45x2, S75v47, S68v52, C72v22
curious
"...нам хотя бы на излёте заглянуть за..."
|
| |
| |
| loquat | Дата: Среда, 11.04.2012, 11:04 | Сообщение # 6 |
|
Подполковник
Имя: loquat
С нами с: 26.03.2010
Сообщений: 115
Модель телефона: S7Cv47&SK6Cv50
Статус: Offline
| Code ; Switch display light on/off in keylock by custom key
; (c) Evgr
; (p) loquat
; (idea) serega65, AceCrip
966B2E: F9F756FF DBF7CCEC ;delete timer
9424C8: 584D4C222061747472696275 00C09FE51CFF2FE1,0xA152E391
306D46: 0223E05E 27F120EB ; any key in keylock before screensaver
42E388: FFFFFFFFFFFFFFFFFFFFFFFF 00C09FE51CFF2FE1,0xA152E3A1
308742: 00F019FA 25F128EE ; red key and volume keys after screensaver
42E394: FFFFFFFFFFFFFFFFFFFFFFFF 00C09FE51CFF2FE1,0xA152E3C5
35E28E: 0223E05E D0F088E8 ; any digit key, star, hash, navi button, softs after screensaver
42E3A0: FFFFFFFFFFFFFFFFFFFFFFFF 00C09FE51CFF2FE1,0xA152E3D5
+15BCB0
#pragma enable old_equal_ff
13D26E0: 03B52748C7DF8C0103BC294A904700BD
13D26F0: 00B5606880681A2802D00223E05E00BD
13D2700: 60684068FF38943801D100F01DF801BC
13D2710: 2630004700B50C2C01D09CDF00BD00F0
13D2720: 13F800BD00B5606880681A2802D00223
13D2730: E05E00BD60684068FF38943801D100F0
13D2740: 03F801BC38300047FFB50D480F4908A2
13D2750: 01324DDF0121FF230A480078002801D0
13D2760: 002201E008480278002008DFFFBDC046
13D2770: 00B5002001210022FF2308DF00BDC046
13D2780: 0xA8A7F100,0xA8D07D20,0xA8DADCBC,0x00000503 ; 0xA8D80544 freeRAM 8 bytes
13D2790: 0xA09609DF
#pragma disable old_equal_ff
13D2756: FF FF ; delay for illumination on/off
13D278C: 0x00000503 0x00000503 ; 043Bh=1083*6/1300=~5 secs illumination duration
;any key before screensaver
13D26F6: 1A 1A ; 0x1A navi center
;red key and volume keys after screensaver
13D2716: 0C 0C ; 0x0C red key
;any digit key, star, hash, navy button, softs after screensaver
13D272A: 1A 1A ; 0x1A navi center
+0
Table-tennis,volleyball,swimming
Good good study,day day up.
Lifting my head I watched the brignt moon,Lowering my head I dreamed that I'm home.
|
| |
| |
