Database Info

Any reason not to unlock the bootloader?

Just received my Solar Red U11. Is there any reason not to unlock the bootloader right away?
I'm not planing on rooting it or installing any custom ROMs anytime soon, but I'm also not 100% sure I'm gonna be keeping the phone (few things I need to see if I can get used to).
Should I just unlock it now so I don't have to (potentially) wipe my device at a later date?
Thanks!

techboy10 said:
Just received my Solar Red U11. Is there any reason not to unlock the bootloader right away?
I'm not planing on rooting it or installing any custom ROMs anytime soon, but I'm also not 100% sure I'm gonna be keeping the phone (few things I need to see if I can get used to).
Should I just unlock it now so I don't have to (potentially) wipe my device at a later date?
Thanks!
Click to expand...
Click to collapse
if you decide to unlock at a later date you can back up your stuff to your computer unlock then put it back.all the other stuff is your choice, me, mine is unlocked out of the box.
it only wipes your internal, not the ext_sdcard

At some point, one of the future updates could prevent you from unlocking it. That would eliminate the
ability to modify your phone's software. If you'll never do that, probably doesn't matter if unlockable.
The only downside is the orange reminder splash screen that is displayed on boot-up.

Aldo101t said:
if you decide to unlock at a later date you can back up your stuff to your computer unlock then put it back.all the other stuff is your choice, me, mine is unlocked out of the box.
it only wipes your internal, not the ext_sdcard
Click to expand...
Click to collapse
Aldo, how do you back up data & /or app settings of 3d party apps fm a device w/locked Bootloader & no root?
Also, what & how much boot delay is there if you unlock bootloader - I saw someone post a pic that shows the screen in text mode & a warning abt startup not beginning for 5 seconds.
Also, please clarify, HTC gave warnings about losing the Fingerprint capability if you unlock the bootloader; I just want root,so I can run Titanium B/U & some root-needed apps- put really like the Fingerprint feature- was that an old warning? The posted HTC warning says you can'telock the bootloader- but I just saw someone talk abt re-locking their bootloader bc they want to sell the device as clean.
Any help much appreciated, TIA oldwolf

Boot loader won't effect your fingerprint scanner....never heard of had that.

The warning about losing fingerprint scanner functionality on HTCDev refers to the One Max (2013), and only to that device AFAIK.

Negative effects of unlocked bootloader
Has anybody found HTC U11 losing OEM applications, sound and camera quality or other pre installed applications after unlocking the bootloader? Also please tell me whether the unlocking procedure is same for Android oreo udate.
Thanks.

sudheersharma said:
Has anybody found HTC U11 losing OEM applications, sound and camera quality or other pre installed applications after unlocking the bootloader? Also please tell me whether the unlocking procedure is same for Android oreo udate.
Thanks.
Click to expand...
Click to collapse
Go to developer options ( on setting) and allow unlocked bootloader ,,,ok finish

Unlocking the bootloader has no adverse effects. You can still update ota. If the bootloader is ever unlocked there is no reason to relock it unless you are returning the phone to the store.

[Q] Will installing custom ROM allow keeping L1 Widevine?

First moment I got the phone, I unlocked bootloader and root the phone. I notice that my video looks crappy and I can't pick higher resolution. Does installing custom ROM allow L1 Widevine or is that tied into the bootloader unlock?

Soon as you unlock, you drop to L3. No way around it for now.

Getting Widevine L1 back while bootloader unlocked

There is some sort of weird magic where unlocking the bootloader instantly breaks Widevine but locking it again fixes it.
How does that even work? How is it possible that NOBODY has figured out how to fix Widevine with an unlocked bootloader? You can emulate anything in software, right? Surely the information must be retained on the device somewhere if relocking the bootloader brings it back?
Is there still no solution to this? (please provide a more detailed answer than "it's not possible")

There is no way to hide a unlocked bootloader and because of that, it's not possible to have widevine l1 with an unlocked bootloader.

matze19999 said:
There is no way to hide a unlocked bootloader and because of that, it's not possible to have widevine l1 with an unlocked bootloader.
Click to expand...
Click to collapse
What do you mean there's no way to hide it? I don't think OnePlus uses like hardware secure environment stuff, especially because the 7 Pro doesn't have hardware backed SafetyNet...

@LoganDark Only OnePlus can fix it, at first 8 series didn't had Widevine L1 while having unlocked bootloader, OnePlus patched it in 10.5.11 (8) & 10.5.13 (8Pro) specifically, so ya the answer is Only OnePlus fix/patch it & they should do it for 7 Series as well IMO!

aaryan45 said:
@LoganDark Only OnePlus can fix it, at first 8 series didn't had Widevine L1 while having unlocked bootloader, OnePlus patched it in 10.5.11 (8) & 10.5.13 (8Pro) specifically, so ya the answer is Only OnePlus fix/patch it & they should do it for 7 Series as well IMO!
Click to expand...
Click to collapse
I mean, OnePlus can do it but that doesn't necessarily mean that nobody else can, right? I'm curious to know where these claims came from, that it's completely impossible to fake a locked bootloader...
My best guess is that the unlocked state of the bootloader prevents it from sharing the widevine keys with Android (something like that), but it should be possible to extract those keys if they are stored in such a way that relocking the bootloader restores L1 functionality. That is, of course, only possible if they aren't locked away with TrustZone or similar.
I hope the 7 series continues to receive updates and attention because it's the only good phone on the market right now with no notch or screen cutout. Nothing else compares... But since OnePlus is already starting to leave it out of OxygenOS beta tests, I feel EOL is not too far away. :/
I doubt they will add any new features or fix any functionality like Widevine support... They will just backport code they write for newer devices, until the update window is over.

LoganDark said:
I mean, OnePlus can do it but that doesn't necessarily mean that nobody else can, right? I'm curious to know where these claims came from, that it's completely impossible to fake a locked bootloader...
My best guess is that the unlocked state of the bootloader prevents it from sharing the widevine keys with Android (something like that), but it should be possible to extract those keys if they are stored in such a way that relocking the bootloader restores L1 functionality. That is, of course, only possible if they aren't locked away with TrustZone or similar.
I hope the 7 series continues to receive updates and attention because it's the only good phone on the market right now with no notch or screen cutout. Nothing else compares... But since OnePlus is already starting to leave it out of OxygenOS beta tests, I feel EOL is not too far away. :/
I doubt they will add any new features or fix any functionality like Widevine support... They will just backport code they write for newer devices, until the update window is over.
Click to expand...
Click to collapse
I did some research on widevine L1 on unlocked bootloader and if I'm not wrong,
liboemcrypto.so is the file which needs to be patched!

aaryan45 said:
I did some research on widevine L1 on unlocked bootloader and if I'm not wrong,
liboemcrypto.so is the file which needs to be patched!
Click to expand...
Click to collapse
Yeah, that might be the case, but the hard part is figuring out what patch to apply.

Possible sure, but this isn't really something you can just spoof or emulate through software.
This is very complicated things, both of a software and hardware level. Really the only people who discovers exploits of this are responsible security researchers who disclose this to Qualcomm and Google. Which I don't blame them for, they get a pretty juicy bounty.
I guess you can hope OnePlus messes up like they did for OP8/Pro and accidentally(?) enable L1 for unlocked bootloaders, but I am pretty sure they just implemented TEE differently to actually do that.
If you're curious, here;
https://googleprojectzero.blogspot.com/2017/07/trust-issues-exploiting-trustzone-tees.html?m=1
https://research.checkpoint.com/2019/the-road-to-qualcomm-trustzone-apps-fuzzing/

Lossyx said:
Possible sure, but this isn't really something you can just spoof or emulate through software.
This is very complicated things, both of a software and hardware level. Really the only people who discovers exploits of this are responsible security researchers who disclose this to Qualcomm and Google. Which I don't blame them for, they get a pretty juicy bounty.
I guess you can hope OnePlus messes up like they did for OP8/Pro and accidentally(?) enable L1 for unlocked bootloaders, but I am pretty sure they just implemented TEE differently to actually do that.
If you're curious, here;
https://googleprojectzero.blogspot.com/2017/07/trust-issues-exploiting-trustzone-tees.html?m=1
https://research.checkpoint.com/2019/the-road-to-qualcomm-trustzone-apps-fuzzing/
Click to expand...
Click to collapse
So it is implemented with complicated hardware stuff?

Okay, well, the only way to get L1 back is to lock the bootloader again. I know that now. All L1 stuff is handled in hardware. I'm working on a solution for custom ROMs and rooted OOS though, stay tuned

LoganDark said:
Okay, well, the only way to get L1 back is to lock the bootloader again. I know that now. All L1 stuff is handled in hardware. I'm working on a solution for custom ROMs and rooted OOS though, stay tuned
Click to expand...
Click to collapse
That sounds interesting. Can I help you with that?

sToRm1nG said:
That sounds interesting. Any way I could help you with that?
Click to expand...
Click to collapse
Yes, you can definitely help - the main blocker for me is that this is my daily driver so I haven't done anything in months, but if you're willing to be my "guinea pig" for a while, that would be a huge help.

LoganDark said:
Yes, you can definitely help - the main blocker for me is that this is my daily driver so I haven't done anything in months, but if you're willing to be my "guinea pig" for a while, that would be a huge help.
Click to expand...
Click to collapse
I'll be switching from my OP7Pro to my new OP8Pro shortly. So I'll be able to test what ever you need.
Do you think this research will also be applicable to the OP8Pro?

sToRm1nG said:
I'll be switching from my OP7Pro to my new OP8Pro shortly. So I'll be able to test what ever you need.
Click to expand...
Click to collapse
Niiiice~ Contact me on Discord: LoganDark#4357
sToRm1nG said:
Do you think this research will also be applicable to the OP8Pro?
Click to expand...
Click to collapse
Honestly I'm not sure. I haven't even confirmed if L1 will come back on the OP7Pro. It's just a rumor, after all, and I think OnePlus spent literally all of their benevolence on the 7.
Edit: It looks like OP might have made it so that the OP8 still has L1 even with an unlocked bootloader. Major oof

LoganDark said:
Niiiice~ Contact me on Discord: LoganDark#4357
Honestly I'm not sure. I haven't even confirmed if L1 will come back on the OP7Pro. It's just a rumor, after all, and I think OnePlus spent literally all of their benevolence on the 7.
Edit: It looks like OP might have made it so that the OP8 still has L1 even with an unlocked bootloader. Major oof
Click to expand...
Click to collapse
Yeah there is still a chance to get L1 with an unlocked bootloader on the OP8Pro though I'm not part of the lucky ones.
I'll contact you ASAP.

This is big for me, I was just watching Prime and saw 1080p HD on the overlay.
I checked DRM info to find I am on L1.
I am rooted obviously with an unlocked bootloader.
7T 256gB
OP7T_O2_BETA_3.
Amazing.

Tagtag123 said:
This is big for me, I was just watching Prime and saw 1080p HD on the overlay.
I checked DRM info to find I am on L1.
I am rooted obviously with an unlocked bootloader.
7T 256gB
OP7T_O2_BETA_3.
Amazing.
Click to expand...
Click to collapse
Did you unlock boot loader freshly after you updated to beta 3 or u were unlocked before that?

antonyben006 said:
Did you unlock boot loader freshly after you updated to beta 3 or u were unlocked before that?
Click to expand...
Click to collapse
Was unlocked from day 1 of using the device. Installed OB3 and noticed prime play 1080p. Checked DRM Info to see I have got L1, checked Netflix(it still showed L3, so I cleared cache and then it showed L1).

I've seen people managed to have l1 certification with unlocked bootloader with the oos 11 ob 3 or newer than that even with custom rom. It seemed so simple that I've tried it myself
but then when I was in oos 11 with bootloader unlocked, the widevine was still l3.
I even went as far as installing fresh oos 10 with msm tool, unlock the bootloader and then immediately install twrp, flash oos 11 ob4/stable 11.0.0.0/stable 11.0.0.2 + dfe + magisk, turned on magisk hide but unfortunately it was still in l3, and whenever I locked the bootloader it always successfully went back to l1..
Can someone please tell me the step by step instruction to gain l1 on unlocked bootloader ?
I got the oneplus 7 pro 1910 chinese version 128/6

Griffiths_Anna said:
I've seen people managed to have l1 certification with unlocked bootloader with the oos 11 ob 3 or newer than that even with custom rom. It seemed so simple that I've tried it myself
but then when I was in oos 11 with bootloader unlocked, the widevine was still l3.
I even went as far as installing fresh oos 10 with msm tool, unlock the bootloader and then immediately install twrp, flash oos 11 ob4/stable 11.0.0.0/stable 11.0.0.2 + dfe + magisk, turned on magisk hide but unfortunately it was still in l3, and whenever I locked the bootloader it always successfully went back to l1..
Can someone please tell me the step by step instruction to gain l1 on unlocked bootloader ?
I got the oneplus 7 pro 1910 chinese version 128/6
Click to expand...
Click to collapse
Got L1 on OOS 11 rooted

Question Is it possible to reach widevine 1?

Hello,
I received a P11 Pro 2021 with global rom and open boot loader, I was able to change to CN rom, update and close bootloader but I am not able to reach L1 in widevine.
Now I am in last rom with android 12, with bootloader locked and still widevine L3, is there any method to download or flash again the keys to reach L1?
It is a pity to have this hardware and have to watch streaming platforms in SD.
Is it posible to contact Xiaoxin to receive widevine keys again? some brands like Xiaomi have this option in the system.
Thanks for your support,

Mee too facing same problem. Mine used to have L1 but after an update downgraded to L3

As I can see, nobody has been able to upgrade from L3 to L1. I had hope on last update but with no luck.

Torettini said:
As I can see, nobody has been able to upgrade from L3 to L1. I had hope on last update but with no luck.
Click to expand...
Click to collapse
I read somewhere, that if you relock bootloader with anything else flashed on your device other than original manufacturer FW, you are pretty much risking hard brick ... so consider yourself lucky, that the only consequence of relocking bootloader is degraded Widevine security level...
If you feel that you must have L1 on your device, you can try to flash your device back to original manufacturer FW and then relock your bootloader again, theoretically you should have L1 security level back (I may be wrong, because I have not tested this personally)...

I have tried to lock and unlock in almost every possibility and I have almost bricked several times.
But, isn't suppossed to work out of the box with widevine L1 and stream in HD?

Not sure if you did factory reset after either reflash, but if you didn't, it's worth the try, of course at your own risk ...
And if you didn't already - read this thread, may be an inspiration for something untested on your side...
If you received original tablet (not secondhand, or tampered by the seller), I'm 99% sure that if you flash FW, which put manufacturer on it when it was produced, you will get L1 security level back.
If you have secondhand device or from AliExpress, or from China and seller flashed Google Play Store for you, etc., AFAIK then unless you'll find out what FW exactly was flashed on your tablet in the factory, you may not get L1 back...
But, I'm not expert at all, and I do hope somebody else will provide better solution for you...

Torettini said:
I have tried to lock and unlock in almost every possibility and I have almost bricked several times.
But, isn't suppossed to work out of the box with widevine L1 and stream in HD?
Click to expand...
Click to collapse
If you have root and magisk, you can try to install safetynet pass, shamiko and then try to spoof your device with some module from cyberelon on GitHub. I didn't try it yet on P11 Plus, but I am using instantnoodle module on my M10 FHD Plus and Netflix is running with L1.

Question Re-lock bootloader after root?

Hi folks,
I've managed to stumble my way through using pixel flasher to update my P7Pro to the latest fw with root. Only need root so I can record calls, should I lock the bootloader now I'm done?
Also how do I update in future please without having to wipe, use pixel flasher and patch as I've just done?
I like to think I'm quite tech savvy but the guides for the P7Pro have gone over my head :/

Connorsdad said:
Hi folks,
I've managed to stumble my way through using pixel flasher to update my P7Pro to the latest fw with root. Only need root so I can record calls, should I lock the bootloader now I'm done?
Click to expand...
Click to collapse
Not unless you want to brick your device. You need to be completely stock before relocking your bootloader (unless using avbroot, but you should have a deep understanding about how it works beforehand).
Connorsdad said:
Also how do I update in future please without having to wipe, use pixel flasher and patch as I've just done?
Click to expand...
Click to collapse
Pixel Flasher will work fine for updating.

Lughnasadh said:
Not unless you want to brick your device.
Click to expand...
Click to collapse
Huh, learn something new every day I guess...

Lughnasadh said:
Not unless you want to brick your device. You need to be completely stock before relocking your bootloader (unless using avbroot, but you should have a deep understanding about how it works beforehand).
Pixel Flasher will work fine for updating.
Click to expand...
Click to collapse
Awesome, thanks a lot for your reply, much appreciated.

never ever* lock bootloader on google devices. fastboot only works on unlocked bootloader and there is no alternative to fastboot.
* exception

alecxs said:
never ever lock bootloader on google devices. fastboot only works on unlocked bootloader and there is no alternative to fastboot.
Click to expand...
Click to collapse
And you can't flash a factory image to fix a phone on your own when it's soft bricked. It might have to go to a shop for repairs.

Connorsdad said:
Hi folks,
I've managed to stumble my way through using pixel flasher to update my P7Pro to the latest fw with root. Only need root so I can record calls, should I lock the bootloader now I'm done?
Also how do I update in future please without having to wipe, use pixel flasher and patch as I've just done?
I like to think I'm quite tech savvy but the guides for the P7Pro have gone over my head :/
Click to expand...
Click to collapse
AFAIK, relocking the bootloader requires wiping the device -- much like unlocking does -- and if you're unwilling to set everything (including anything on your /sdcard internal storage, not to mention all apps and their settings & system settings) back up from scratch (as any good complete backups require root access), this might not be what you wish to do.
And, if you had managed to successfully relock the bootloader, you could simply run the in-system update (OTA) that would update without wiping -- or even manually applying OTA from the recovery.
But there are hardly any benefits in re-locking the bootloader (after unlocking it) -- even if one was to a paranoid degree of security; which is the only major reason to (I can point you to the discussions that had taken place on it here, if you wish). If you don't want to run into any issues, you could simply run the stock ROM without root and be hardly impacted by it; with the added benefit of having the option to advanced recovery options and/or rooting options open to you in the future if need be...
alecxs said:
never ever lock bootloader on google devices. fastboot only works on unlocked bootloader and there is no alternative to fastboot.
Click to expand...
Click to collapse
*it just occurs to me you meant to never lock bootloader because it limits options; not the risk of hard-bricking the device -- in which I wrote the following with that assumption. I'll leave the following comment as it is still sound advice, but I apologize in advanced that it doesn't quite relate to what you meant...
I mean, I feel doing Google's official Android Flash Tool is a safe enough method; it wouldn't do well if Google's own tool bricked their devices using their tool...at the very least the tool ensures that the stock factory firmware flashed matches the bootloader version and automates the fastboot commands so when re-locking the bootloader, it has the least potential to brick the device...

Exactly. there is no official flash tool from google, that's why I personally won't recommend to keep bootloader locked. If it's bricked with no working recovery mode, not even repair shop can fix it. all you can do is RMA to google get new device. no edl mode or anything else will help, fastboot is the official flashing method.
If you're referring to the "Android Flash Tool" that's no flash tool at all. I haven't tested it, but to me it looks like a WebUSB browser plugin. Reading the requirements it works with adb commands, usb-debugging and fully booted android is required. Therefore cannot unbrick devices.

Doesn't unlocking the bootloader break saftynet so then you have to root to use gpay?

iRhyiku said:
Doesn't unlocking the bootloader break saftynet so then you have to root to use gpay?
Click to expand...
Click to collapse
I'll just chime in here because I have recently unlocked my bootloader but I haven't been able to root it yet and I haven't had any issues with safety net.

Trippyy Doee said:
I'll just chime in here because I have recently unlocked my bootloader but I haven't been able to root it yet and I haven't had any issues with safety net.
Click to expand...
Click to collapse
Interesting, I thought unlocking would break it. I'll have to unlock then for the extra safty!

iRhyiku said:
Interesting, I thought unlocking would break it. I'll have to unlock then for the extra safty!
Click to expand...
Click to collapse
That's of course another aspect. Good point. If you rely on SafetyNet or it's successor Play integrity, do not unlock bootloader. AFAIR the latter one can't be cheated.

simplepinoi177 said:
But there are hardly any benefits in re-locking the bootloader (after unlocking it)
Click to expand...
Click to collapse
There are some benefits like some banking apps, streaming apps and games beginning to work. So it really depends on what is important for the user. I don't like flashing random mods to make apps work on rooted/ bootloader unlocked devices, primarily banking apps.