How do manufacturers generate bootloader unlock codes? - General Topics

I was really interested in knowing if anyone has some kind of information on how this is done? Manufacturers can now lock their bootloader behind a code that they can only generate and give to you; and the phone somehow knows if it is correct or not without connecting to the internet. All this without the algorithm of it being cracked. What gives?
An example of this would be Huawei no longer giving out bootloader unlock codes screwing everyone over - but I did see someone managed to crack the algorithm for one specific chipset.
Not really a question but more of a general discussion to see opinions and theories, maybe even insiders?

Related

Making FREE a G1 unlock code calculator

Hello,
I bought a T-Mobile G1(it was originally donated for testing of a Open-Source project ) for tying to reverse engineer an unlock code calculator.
Since those scam sites did it i may able to it to.
So i am here to asking it if bought some codes ( and it worked of course ) if you can paste it here and the respective IMEI to help me get some relations whit it.
If you that someone did a calculator before ( and is Open-Source of course please tell me ). Also another ways of passing the unlock will be welcome.
I will keep you informed of my study.
Regards,
Alfredo Palhares
i had a code about a year ago, cant find it, but u can get one by calling tmobile if u have a g1 or mt3g for 3 or more months
IMEI: removed
Unlock Code: removed
Moderator edit: you should not be posting this information publicly, for your own protection I have removed it - Chainfire
If you want to share your code and imei with him, I suggest doing so in private. This is personal information that should not be shared in public.
Also be certain that you TRUST him with this information.
Unlock codes bought online come from HTC's database. There is no algorithm, as they are randomly generated and assigned. So these efforts will not get you anywhere, I'm afraid.
And don't post IMEIs in public - someone can easily block your phone with it, certainly in the UK...
a question comes to mind, how were the old htc unlockers created e.g. for the hermes and the kaiser? they must have used algorithms otherwise how else would they have been possible? if thats true, could there be an algorithm that cracks the random generation of the unlock codes for the HTC android phones?
warsng said:
a question comes to mind, how were the old htc unlockers created e.g. for the hermes and the kaiser? they must have used algorithms otherwise how else would they have been possible? if thats true, could there be an algorithm that cracks the random generation of the unlock codes for the HTC android phones?
Click to expand...
Click to collapse
If you are referring to the free apps that unlocked the phones, as far as I know (so maybe not completely correct) they actually crack the phone to make it think it is not locked, they don't calculate the code.
i was going to post mine. i would have loved to contribute but why not make the info public.. it cannot hurt anything
IMEI's are actually open to abuse. I'm not saying the thread starter isn't trustworthy, but I don't know for sure that he is. If you want to cooperate with the opening poster, that's fine, and it's your risk - private message him the information. In that case, the info isn't public for potential abusers either (who can just Google for these numbers).
Would be nice but not possible
Chainfire said:
If you are referring to the free apps that unlocked the phones, as far as I know (so maybe not completely correct) they actually crack the phone to make it think it is not locked, they don't calculate the code.
Click to expand...
Click to collapse
do you think a similar thing is possible on g1/other htc android phones?
warsng said:
do you think a similar thing is possible on g1/other htc android phones?
Click to expand...
Click to collapse
Probably, but I'm not an expert on this subject, so my opinion doesn't really count
warsng said:
do you think a similar thing is possible on g1/other htc android phones?
Click to expand...
Click to collapse
Everything is in flash.
It is a matter of figuring out WHERE in flash, and being able to read/write to those addresses. The JTAG thread is a good starting point.
It would be just as easy to call HTC and beg.
Otherwise call TMobile and wait patiently for them to get around to call HTC, for HTC to get around to find it and sent it to TMobile, for Tmobile to get around to e-mail you the code.
I just thought it was funny people publishing their codes and the Mods running in to delete them, for their own good.
Mods "To Protect, serve, lecture and admonish"
itsjefflol said:
IMEI: removed
Unlock Code: removed
Moderator edit: you should not be posting this information publicly, for your own protection I have removed it - Chainfire
Click to expand...
Click to collapse
Ahh I didn't realize anyone could do anything with your imei, anyhow that was my old phone's imei and unlock code, the phone's in a million pieces anyway so no harm done I guess
Older phones used an algorithm to calculate an unlock code. The algorithms got cracked and the unlockers appeared.
HTC took a different approach of assigning a random lock code to each phone and retaining a private database of the IMEI/unlock codes which they could tightly control.
So a software solution is unlikely, but as you can get the unlock code through normal channels, it's not really necessary.
28 days
it took 28 days for my unlock code to come through from t-mob, but have an orange sim in it now and i am just plucking up the courage to root and put froyo on.
hello, i need to unlock my kaiser 100 at&t, can yuo help me? imei is 354384015858756
giosixa said:
hello, i need to unlock my kaiser 100 at&t, can yuo help me? imei is 354384015858756
Click to expand...
Click to collapse
Did you not read the rest of the forum lol, posting your IMEI is bad...
especially if you are in the UK... Plus, wrong section -_-
Just buy a code off ebay for about 7 USD, not too hard and you receive it instantly.

[Suggestion] to XDA - Locked devices blacklist

This is very critical to users all of us in XDA to have full devices blacklist and whitelist with locked/unlocked bootloaders and where users can rate how good(simple) is unlocking process. Please XDA managers make this happen because currently there is no such list(my knowing) where i can fast check if it is locked and then i can purchase open tablet or phone. Currently searching trough forums lot of times information is quite hard to find that bootloader is 100% open.
From my point of view devices that has locked bootloader has no future when company support stops and users cannot modify phones or tablets to full potential if needed.
I myself do not understand programming so i cannot understand why WHY bootloader cannot be just force wiped from device and flash new clean version in device...sometimes i just think in burst of ANGER that heck i just use neodinium magnet to wipe bootloader from chip...
Bumping that everyone sees this, if anyone knows such site please post here if exists.

Bootloader unlocking discussion thread

I made this thread to try and get the get the flame burning again on this topic. It seems since we've achieved safestrap people don't seem too interested in pursuing an unlocked bootloader. I understand that if i want AOSP i should try trading my phone for one with an unlocked bootloader (knowing that somebody is going to comment saying that). But what does that do for the community? Nothing productive. Speaking theoretically here, how is a bootloader unlock achieved with the bootloader lock key? Is there some way of inputting it to unlock the bootloader? What happens if you have the wrong key? Is there a way to create script a keygen that goes through every possibility of however many digit of a code the bootloader lock key is? Or can it only be done via exploit?
Thank you very much for taking the time to read this. Let the discussion begin.
Travisholt92 said:
I made this thread to try and get the get the flame burning again on this topic. It seems since we've achieved safestrap people don't seem too interested in pursuing an unlocked bootloader. I understand that if i want AOSP i should try trading my phone for one with an unlocked bootloader (knowing that somebody is going to comment saying that). But what does that do for the community? Nothing productive. Speaking theoretically here, how is a bootloader unlock achieved with the bootloader lock key? Is there some way of inputting it to unlock the bootloader? What happens if you have the wrong key? Is there a way to create script a keygen that goes through every possibility of however many digit of a code the bootloader lock key is? Or can it only be done via exploit?
Thank you very much for taking the time to read this. Let the discussion begin.
Click to expand...
Click to collapse
If you took the time to read the numerous discussions on this you'd know the answers. People are dropping the unlocked bootloader since even the S4's hasn't been unlocked (since MDK baseband). Regarding the five key questions, it would take a super computer thousands of years to try every possibility. Wrong one would equal bricked phone. Exploit would be only way, and now that Geohot works for Google, he's out of the picture and I'm sure the other Devs aren't going to bother. SS is fine for now, you can always switch carriers if you care that much.
So the community on this device will never progress. Awesome.
Travisholt92 said:
So the community on this device will never progress. Awesome.
Click to expand...
Click to collapse
That is a real possibility. Now with this lesson learned, look for a carrier or device next time that does not lock the bootloader. HTC locks their bootloader but is good enough to provide us users with a way to unlock it. As mentioned, bootloaders are WAY different than obtaining root and there is a very real chance of killing the device in the trial and error process.
I feel where you are coming from i felt the same way. Switched for an HTC One m8 and besides the fact that the bootloader can be unlocked, it's just a much better phone. Should give it a shot! A GS5 is an equal trade for an m8 on craigslist so it shouldn't be too hard. It does seem the general consensus is that the dev's have given up on even trying to unlock it so i would just accept it and move on unfortunately.

Skyuniverse Devices Rooting Assistance Requested

I have a Skyuniverse Elite A5 that i want to root. I've reached out to manufacturer several times with no luck on instructions to unlock boot-loader. its running android 9 (go edition) currently. Id like to root with magisk so i would need the stock boot.img however there is very, very minimal information on this device. where to begin on a device that has this many speed bumps? i need instructions on how to unlock my boot loader, clone my stock firmware to acquire necessary files, and rooting a ARM Cortex-A53 device with build ID: Elite_A5_1700_V1.0_202000618 Kernel Version 4.4.147 (24414) kernel architecture armv71. Thanks in advance
nonamemaddox5446 said:
I have a Skyuniverse Elite A5 that i want to root. I've reached out to manufacturer several times with no luck on instructions to unlock boot-loader. its running android 9 (go edition) currently. Id like to root with magisk so i would need the stock boot.img however there is very, very minimal information on this device. where to begin on a device that has this many speed bumps? i need instructions on how to unlock my boot loader, clone my stock firmware to acquire necessary files, and rooting a ARM Cortex-A53 device with build ID: Elite_A5_1700_V1.0_202000618 Kernel Version 4.4.147 (24414) kernel architecture armv71. Thanks in advance
Click to expand...
Click to collapse
You have to get the bootloader unlocked first, there is nothing you can do until that happens. There is no "other way".
Sent from my SM-S767VL using Tapatalk
Droidriven said:
You have to get the bootloader unlocked first, there is nothing you can do until that happens. There is no "other way".
Sent from my SM-S767VL using Tapatalk
Click to expand...
Click to collapse
What would you recomend I try if manufacturer, carrier, and OS proprietary owner's all are not willing to provide any assistance? I've tried every fastboot command I could find, not even a specific code is given like some devices and even if I did acquire some special code there is no avenue to request unlocking from anyone. I'm finding it hard to believe that they are legally allowed to control how i use my device that i paid for. I can't stand not being in control of my phone. i feel like im being left in the dark about all the processes that are running because i literally am. i cant even view logs of anything. just what is running; not what exactly they are doing. this isnt right
nonamemaddox5446 said:
What would you recomend I try if manufacturer, carrier, and OS proprietary owner's all are not willing to provide any assistance? I've tried every fastboot command I could find, not even a specific code is given like some devices and even if I did acquire some special code there is no avenue to request unlocking from anyone. I'm finding it hard to believe that they are legally allowed to control how i use my device that i paid for. I can't stand not being in control of my phone. i feel like im being left in the dark about all the processes that are running because i literally am. i cant even view logs of anything. just what is running; not what exactly they are doing. this isnt right
Click to expand...
Click to collapse
You have no choice but to do what we all do here when we have a device that has no valid bootloader unlock method, that is to just accept the fact that you are not going to unlock the bootloader without an unlock code from the manufacturer/carrier or paying for a bootloader unlock service from a shop/website that is not guaranteed to successfully unlock the bootloader.
The manufacturer and the carrier don't "have" to provide us with bootloader unlock information if they don't want to.
As a matter of fact, not giving us the bootloader unlock information actually protects their interests as far as network security and their warranty on the device is concerned.
Manufacturers lose a lot of money repairing/replacing devices that have been hardbricked due to user error/ignorance during the user's attempt to unlock and modify the device. When I device has been hardbricked, the manufacturer has no way to know that the device has been modified and that the warranty is now no longer valid due to the device being modified. Therefore, they end up paying to repair/replace devices that have technically had their warranty voided by the users modifications.
Sent from my SM-S767VL using Tapatalk
Well I completely understand where you're coming from and also understand that that is the normal methods that most users must abide by however I will do everything in my power to ensure that I can do what I want with my device. Of course manufacturers and cell phone carriers do not want users to unlock the bootloader and acquire root privileges. They hide behind the facade that they are limiting a devices use to prevent improper user operations in which could malfunction the device. That's the official statement, however if one were to acquire root privileges one would be able to view and stop all the data acquisition processes that are running in the background and everyone's device currently without their knowledge or permission. Every single application has a main objective and a more important secondary function, "capture any information that they can sell". I'm beginning the process of litigation in this matter. Manufacturer's, cell phone carrier's, and all of Google's various Android Operations cannot provide any legal documentation regarding terms and conditions and policies on rooting or installing custom operating systems. Now is the time to force them to update their policies while they do not have any currently implemented. They are no rules written about this matter they are just going with the flow essentially, mostly because nobody is aware of this. It's time you and everyone else take ownership of their devices and prevent others from profiting without your knowledge, permission, and stipulations if you choose to share your information. It's important to remember that it is okay to share information as long as you are compensated for it and are aware of its intentions. Imagine buying a pair of shoes and when you begin lacing them how you wish you are somehow unable to do so. The holes are there, the strings are in your hands, but the manufacturer doesn't want you to lace them up how you wish because if you did they wouldn't be able to make any more money off of the shoes. They have already sold the shoes, they are not in possession of them anymore; you are, however they are still trying to tell you what to do with your shoes. If you can't graspe the audacity of all this I suggest you begin researching. I used you as a framing device to convey my message so if you are offended by any of my statements please know that I was also referring to the general public as well as you. Nothing I said was intended to hurt or bother you.

Can someone explain why unlocking hardlocked bootloader is such a hard task?

People are hacking things left and right to effortlessly gain root or remove pattern locks on their Androids and thanks to devs of this wonderful resource they're not spending a dime in the process, but for some reason unlocking a hardlocked bootloader, an age-old problem, has no other method but the one costing $30. I'd love if someone could explain to me what makes it such a conundrum to figure out and why aren't more people trying to come up with a free solution for everyone.
Hi @4qx.
For devices that have OEM Unlocking grayed out (so you can't unlock the bootloader), there can never be a single solution that would work for every device. Different device manufacturers have their own ideas about security and contain proprietory code specific to that manufacturer, and it's further refined as new models from the same manufacturer come out.
Sometimes a device-specific vulnerability is found and can be taken advantage of to gain root. Sometimes the manufacturer makes a very specific but easy-to-find mistake on one particular version of Android on a single device that lets users officially unlock their bootloader, but that mistake is corrected with the next update for the device.
Even though you might not hear of someone working to root particular devices, it doesn't mean that no one is trying. It's common and expected that attempts that involve vulnerabilities would be kept as secret as possible so that a manufacturer can't patch them before developers can take advantage of what they found.
So the combination of different manufacturers, different models, different variations of models, different Android versions, and different manufacturer or device-specific security makes it near impossible to find a way to root all devices without exception.
Lastly, the easiest and universal method to start the path to being rooted is to have a device that lets you unlock the bootloader officially - preferably with no penalties like some manufacturers do. Anyone who buys devices that you can unlock the bootloader officially probably has no interest in finding a way to root other ways since it's so easy to do with an unlocked bootloader.
Edit: Also, regarding "free for everyone", it takes developers time to achieve what they do, so finding a way to root a device usually isn't a way to make money to live, so they do what they can when they can.
give it a try
https://github.com/bkerler/edl#for-generic-unlocking
If you're citizien of EU and bought an Android device in the territory of EU you never will have troubles with unlocking a phone's bootloader and rooting phone's Android.
Huawei will stop providing bootloader unlocking for all new devices
Earlier this month, we wrote about Huawei and Honor users not being unable to access the page for generating bootloader unlock codes. Now, they will stop providing unlock codes completely.
www.xda-developers.com
You shouldn't post here if you've NO knowledge about current legal situation in EU.
I am from germany too and can tell you Vodafone still sells Huawei devices. There are other brands with non-unlockable bootloader (Google, Samsung, Vivo, Oppo). OEMs tend to lock down their devices entirely for reason
aIecxs said:
give it a try
https://github.com/bkerler/edl#for-generic-unlocking
Click to expand...
Click to collapse
Unless I misinterpret what it says, it seems to be for enabling OEM unlocking. I was referring to unlocking a hardlocked bootloader.
Sorry maybe I didn't get you right. kindly share definition / example or at least descripe what you mean with "hardlocked bootloader"?
roirraW edor ehT said:
For devices that have OEM Unlocking grayed out
Click to expand...
Click to collapse
Was talking about something different, though I appreciate the info.
@aIecxs check this out. Some Xperia models, mostly Japanese ones, have unlockable OEM but are not allowed to have their bootloader unlocked.
Fairly enough there exist quit few devices where manufacturer provides official unlock code, but carrier locked down bootloader by ignoring, disabling or hiding OEM unlock toggle or other device specific methods. I feel "hardlocked bootloader" is a good way to differ from "non-unlockable bootloader" where bootloader is locked from manufacturer entirely (like Huawei)
If you can have it unlocked for £23 obviously XZ1C is unlockable, so if you can find sony leaked prog_ufs_firehose_8998_ddr.elf I would give it a try at least. Björn Kerler is a leading reverse engineer in scene and did good job to oppo rooting.
(you can check /dev/block/bootdevice/by-name/* if devinfo or config exist and decide if it's worth a try)

Categories

Resources