New theory - I'm willing to bet that the phone takes the unlock token, combined with the time listed on the bootloader since most websites do this when you login, then SHA-1 the sum and that has to match what is in the phone to unlock. That might be what line 3 is, but not sure.
For all those that posted your unlock information, post the date and time listed on your bootloader as well.
edit: tried an example that was in the video for a moto x, didn't work. Perhaps the only way to get it is to see if one could rewrite a bootloader to access the various hashes stored in the privileged locations once it is unlocked.
That is my 2 cents for today.