Post Reply

DEV ONLY - NAND access + Full Unlock for Lumia 710 & 800

OP biktor_gj

20th April 2012, 07:40 PM   |  #631  
biktor_gj's Avatar
OP Senior Member
Thanks Meter: 235
 
665 posts
Join Date:Joined: Jan 2008
Quote:
Originally Posted by mariosraptor

i can not seem to flash to stock anymore using NCS after installing the Russian firmware and downgrading bootloader. any help? thanks.

That question belongs to the Q&A thread. Please leave this thread for development only.

Link to Q&A: http://forum.xda-developers.com/show....php?t=1599401

I will answer to your question though:
* UNLOCKED BOOTLOADER = NO NCS = YES CUSTOM ROM
* LOCKED BOOTLOADER = YES NCS = NO CUSTOM ROM

It's a personal choice
Any mod can cleanup this thread a bit please?

Now back to the topic:
Nokia OSBL: Unless someone can find a flaw in the RSA verification algorithm, there's no reason to keep trying to patch it, since you cannot upload it anyway.
I wouldn't even attempt to write lumia 710's bootloader to the 800. They share cpu, and probably half of the memory regions, but if there's a single GPIO/mem address, i2c call, mddi call or whatever the thing uses to access the nand chip different on the 710 it may very well leave the phone as a brick. The fact that they share the chipset doesn't mean they use the same pins for the same things. If it were for any other thing I would understand, if you want to try it from an unlocked bootloader by overwriting EMMCBOOT.MBN, or if you want to chainload it from LK loader fine, but please be careful if you're going to try to overwrite it directly on the flash since it's too easy to break it down and end up seeing yourself going to ebay to get a JTAG adapter and tapping the test points on the mainboard to attempt to recover it.

I wish I knew enough assembler (or any at all) to understand the loader and be able to guess if there's something wrong, but the truth is I don't. I can see the functions, I can find the verification functions, but don't have a clue on how to even know if there's a problem somewhere.

I would start looking at differences between updates to try to find a hole in the OS. After all, it's Microsoft, it's not like there aren't going to be any bugs on 1412 fixed on newer versions. Since we can downgrade, it could be possible to get interop unlock from there, and THEN, attempt to rewrite the Qualcomm loader back to the flash, from within Windows.

At least that's what I think...

@ultrashot: here you have my config for OSBuilder, you see anything wrong with it?
Attached Files
File Type: txt OSBuilder.txt - [Click for QR Code] (4.4 KB, 46 views)
Last edited by biktor_gj; 20th April 2012 at 07:58 PM.
20th April 2012, 09:12 PM   |  #632  
Junior Member
Thanks Meter: 10
 
29 posts
Join Date:Joined: Mar 2008
Quote:
Originally Posted by ale07

From the file names it seems like a rom to be flashed using the qualcomm method, explained in the leaked slides.

The FFU files should be flasheable using UpdateWP.
I did a quick look on those FFU files, and found that both _fullmodem.ffu and _FlashClean.ffu unfortunately contain Nokia DLOAD OSBL.

Edit: what's weird is that the oem.sku.xml file includes some conditions to package an OEM_7x30_BLDR (Qualcomm's?) if IMGBOOTEMMC is set. Which is set, according to the environment variables listed on the env.txt file.

The question is: are those FFU files built with IMGBOOTEMMC or they deleted the FFU files containing Qualcomm bootloader?
Last edited by rescbr; 20th April 2012 at 09:29 PM.
20th April 2012, 09:19 PM   |  #633  
biktor_gj's Avatar
OP Senior Member
Thanks Meter: 235
 
665 posts
Join Date:Joined: Jan 2008
I got my flaw, WP7 Root tools working fine now on Lumia 800 too!
Uploading files to mediafire, will update main thread when ready

Thank you ultrashot for your infinite patiente.
In the end it was my mess, but it was a stupid mistake. When inserting packages into cif/sof, they got on the upper side of the list, and were being overwritten by the Core package in \SYS...

EDIT:
Nokia Lumia 800 Full unlock:
http://www.mediafire.com/?8zyow23pb1ulc4o
http://www.mediafire.com/?12tvc1bsbzgsal1
http://www.mediafire.com/?n0mgq321wb3wzf1
http://www.mediafire.com/?dnklajs1ned5yy5

Enjoy!
Last edited by biktor_gj; 20th April 2012 at 09:57 PM.
The Following 5 Users Say Thank You to biktor_gj For This Useful Post: [ View ]
20th April 2012, 09:24 PM   |  #634  
Senior Member
Flag Seine Maritime
Thanks Meter: 4
 
275 posts
Join Date:Joined: Mar 2010
More
Quote:
Originally Posted by rescbr

The FFU files should be flasheable using UpdateWP.
I did a quick look on those FFU files, and found that both _fullmodem.ffu and _FlashClean.ffu unfortunately contain Nokia DLOAD OSBL.

+1

Think a full easy package for lock the phone.

for unlocked lumia phone:
Quote:

<?xml version="1.0"?>
<!-- SDPCC_MOD_BEGIN: vwu: Sept-09-2011: REQ 1862406: eMMC partition change from MS -->
<!-- Set WPB to 64MB, MODEM_BKP to readonly, NOKIA_PMM to readonly, combine Modem bits to fat.bin -->
<configuration>
<parser_instructions>
WRITE_PROTECT_BOUNDARY_IN_KB = 65536
GROW_LAST_PARTITION_TO_FILL_DISK= true
ALIGN_ALL_LOGICAL_PARTITIONS_TO_WP_BOUNDARY=false
</parser_instructions>
<physical_partition>
<partition label="DBL" size_in_kb="500" type="4d" bootable="true" readonly="true">
<file name="RM801_12w07_prod_generic_dbl.mbn" offset="0"/>
</partition>
<partition label="OSBL" size_in_kb="1500" type="46" bootable="false" readonly="true">
<file name="RM801_12w07_prod_generic_osbl.mbn" offset="0"/>
</partition>
<partition label="FAT" size_in_kb="150000" type="c" bootable="false" readonly="true">
<file name="RM801_12w07_prod_generic_fat.bin" offset="0"/>
</partition>
<partition label="NOKIA_PMM" size_in_kb="64" type="ef" bootable="false" readonly="true">
</partition>
<partition label="MODEM_BKP" size_in_kb="3072" type="58" bootable="false" readonly="true">
<file name="RM801_12w07_prod_generic_dummy_fs.bin" offset="0" />
</partition>
<partition label="MODEM_ST1" size_in_kb="3072" type="4a" bootable="false" readonly="false">
<file name="RM801_12w07_prod_generic_dummy_fs.bin" offset="0" />
</partition>
<partition label="MODEM_ST2" size_in_kb="3072" type="4b" bootable="false" readonly="false">
<file name="RM801_12w07_prod_generic_dummy_fs.bin" offset="0" />
</partition>
<partition label="APPS" size_in_kb="425000" type="48" bootable="false" readonly="false" align="true">
<file name="RM801_12w07_prod_euro1.img" offset="0" />
</partition>
</physical_partition>
</configuration>
<!-- SDPCC_MOD_END: vwu: Sept-09-2011: REQ 1862406: eMMC partition change from MS -->

Last edited by meLIanTQ; 20th April 2012 at 09:24 PM. Reason: typo
20th April 2012, 09:25 PM   |  #635  
beidl's Avatar
Senior Member
Flag Purbach
Thanks Meter: 160
 
447 posts
Join Date:Joined: Apr 2009
Donate to Me
More
We should applaud and thank biktor, ultrashot, lucifer3006, Heathcliff74 and everybody else involved for making our Lumias more enjoyable.


*clapclap*
The Following User Says Thank You to beidl For This Useful Post: [ View ]
20th April 2012, 10:21 PM   |  #636  
ombadboy's Avatar
Senior Member
London
Thanks Meter: 12
 
132 posts
Join Date:Joined: Oct 2008
Donate to Me
More
Quote:
Originally Posted by biktor_gj

I got my flaw, WP7 Root tools working fine now on Lumia 800 too!
Uploading files to mediafire, will update main thread when ready

Thank you ultrashot for your infinite patiente.
In the end it was my mess, but it was a stupid mistake. When inserting packages into cif/sof, they got on the upper side of the list, and were being overwritten by the Core package in \SYS...

EDIT:
Nokia Lumia 800 Full unlock:
http://www.mediafire.com/?8zyow23pb1ulc4o
http://www.mediafire.com/?12tvc1bsbzgsal1
http://www.mediafire.com/?n0mgq321wb3wzf1
http://www.mediafire.com/?dnklajs1ned5yy5

Enjoy!

Great job man! Was waiting for the full unlock.. Now gotta wait till I grow the balls to flash it on my unlocked Lumia 800.. Usually don't mind but I love my Lumia wudnt wanna brick it! Now onto unlocking the bootloaders!!

Had a look at the firmware released today on Navifirm, didnt find anything on a first glance that could help us
Last edited by ombadboy; 20th April 2012 at 10:26 PM.
21st April 2012, 12:35 AM   |  #637  
Senior Member
Thanks Meter: 25
 
152 posts
Join Date:Joined: Dec 2011
Quote:
Originally Posted by cdbase

does anyone have australian 12070 for rm-819 seems like nokia pulled it away and cannot be downloaded anymore (try it yourself 059n6q8 for product code )
nokia had a good reason to do that maybe there is a way to ...

That does not have the unlocked bootloader.
21st April 2012, 06:42 AM   |  #639  
Member
Thanks Meter: 11
 
74 posts
Join Date:Joined: Aug 2009
More
Quote:
Originally Posted by tjramage

That does not have the unlocked bootloader.

yes i know but is the only firmware with .mbn file
21st April 2012, 08:53 AM   |  #640  
lilstevie's Avatar
Senior Recognized Developer
Thanks Meter: 1,032
 
1,332 posts
Join Date:Joined: Apr 2009
Donate to Me
More
Quote:
Originally Posted by cdbase

yes i know but is the only firmware with .mbn file

if anything this firmware is actually a little more secure as there is just a digital signature without the full cert giving possible ****ups in the verification code

Post Reply Subscribe to Thread

Tags
android, bootloader, full unlock, interopunlock, nand
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes