[PROJECT]Bootloader Unlock

Search This thread
By:
Advanced…
R

Ravikirancg

Senior Member
May 3, 2012
784
1,115
Bangalore
OnePlus 2
Xiaomi Mi 11i
  • Like
Reactions: atrix2man
jimbridgman

jimbridgman

Senior Member
Dec 21, 2007
2,345
3,069
Dallas, TX
shubham412302 said:
But the method can be same

Sent from my ME865 using xda premium
Click to expand...
Click to collapse

No it will not, the architecture and instruction set are totally different. We need to find a way to do it that applies to the A2 or the razr, or possibly even the bionic. Any other phone processes will NOT work for this phone, so don't even think about it.... Trust me I have tried so many different ideas to crack this thing it is not even funny including things that should not have even been attempted on this phone, just to see... I will say that I sacrificed 9 phones for the community, trying to unlock the bootloader. I thank AT&T for accepting the return of each "broken" phone that just died while charging last night... LOL.
 
  • Like
Reactions: darth_nihar, MGinshe, Uzayr and 16 others
htchd2fix

htchd2fix

Senior Member
Aug 25, 2011
268
34
.............. I thank AT&T for accepting the return of each "broken" phone that just died while charging last night... LOL. ......
:):):):laugh:

hey Jim how about atrix hd metod???

thanx
 
snowplow

snowplow

Senior Member
Jul 4, 2010
101
23
htchd2fix said:
.............. I thank AT&T for accepting the return of each "broken" phone that just died while charging last night... LOL. ......
:):):):laugh:

hey Jim how about atrix hd metod???

thanx
Click to expand...
Click to collapse

Although that was directed at Jim, I don't think he'll mind me answering: it is the same problem as above - the Atrix HD uses a completely different chipset than the Atrix 2. The exploit which was used to unlock the AHD bootloader takes advantage of some security holes which are specific to the qualcomm chipset and their secure kernel implementation... read about it in depth here: http://blog.azimuthsecurity.com/2013/04/unlocking-motorola-bootloader.html
 
CM-PRo

CM-PRo

Senior Member
Feb 21, 2011
498
343
Mumbai
demencia89 said:
Do you guys think we might get an answer from motorola now that Google runs it? Should we spam google and motorola for an unlocked BL?
Click to expand...
Click to collapse

Let's not get ahead of ourselves. We've just got the kexec working for all which is great for the Atrix 2 community. Google owning Motorola doesn't make much of a difference, especially on a phone that has been discontinued like ours and i don't think they'd give a **** if we spammed them for an unlocked BL.

Cheers,
z
 
Semseddin

Semseddin

Senior Member
Feb 16, 2010
1,959
582
Istanbul
motomodtr.forumcommunity.net
Nexus 6
Verizon Motorola Droid Turbo
jimbridgman said:
Nope sorry..... the fastboot oem unlock command is not even runnable on our phone, we tried that long ago.... just run fastboot oem unlock and see what it says.

The key is either a 512 bit or 1024 bit RSA key cypher, and unless you know someone at motorola that will hand it over to you, you will have to get a supercomputer to run for some 5K hours to crack that signature, and even then we still may not be able to flash the modified bootloader with the proper key/cypher, because it is the efuses that tell the bootloader if we have an HS or an NS device (you have to have the phone show as an NS device before the NS "non-secure" bootloader will even flash), even from CWM with no signature or cypher. We tried that already.

The only way(s) is to bribe a moto employee, or flip the efuses to show the device as an NS device, if might happen as I mentioned a million times now with a root kit and booting from the sdcard with mbmloader on the sdcard.... google all that...

Again, we/I have tried just about every way there is to get this unlocked, yes we even did the petition a very long time ago, look here:
http://xdaforums.com/showthread.php?t=1472137&highlight=petition

This was posted well over a year ago, and a ton of people signed it, and look at what that got us.... that stupid unlock website from motorola, and the a2 is not even included.

I would say as old as this phone is, that it is not getting unlocked, especially since I am only in here part time, and can not try anymore bootloader unlock tricks since my a2 was sold. I can borrow it from the person who bought it, but I can not risk bricking it since it has no warranty anymore, and he uses it for a makeshift desktop with the GB ubuntu webtop and the HD dock that I sold him.
Click to expand...
Click to collapse

Hello Jim,

I think i've found some RSA key files signed by motorola posted here. Please take a look.

http://xdaforums.com/showthread.php?t=2399597
Post#35
 
  • Like
Reactions: amynjimmy and Zoide_
jimbridgman

jimbridgman

Senior Member
Dec 21, 2007
2,345
3,069
Dallas, TX
Semseddin said:
Hello Jim,

I think i've found some RSA key files signed by motorola posted here. Please take a look.

http://xdaforums.com/showthread.php?t=2399597
Post#35
Click to expand...
Click to collapse

Hey, I took a look at those signatures and tried to see what was up with them. It looks like those are the kernel signatures that the bootloader uses to check the kernel for the razr to boot that kernel. This would be a perfect thing to let has code know about, so he can use these with kexec, if he hasn't already got them.

Sadly I can't see these doing much good with the bootloader unlock, as this key does not match the signatures contained in the HS or NS bootloader.

Nice find though.
 
  • Like
Reactions: 1BadWolf, amynjimmy, Ayush Jain and 3 others
I

iamezio

Senior Member
Jan 7, 2011
301
43
That doesn't change a thing about our POS phone , they won't do anything to open the bootloader on a 2 year old phone , especially after they said a few times they won't unlock the bootloader on the RAZR and A2 .

I like My n7 so much , nexus gives you so much freedom , and unlocking the bootloader comes to one fastboot command ..
 
You must log in or register to reply here.

Similar threads

L
[ROM] Rdavisct's Supercharged Atrix Under New Ownership! See bottom of op!
Replies
958
Views
259K
rdavisct
rdavisct
alteredlikeness
[ROM][4.4.4][Unofficial] CyanogenMod CM-11.0
Replies
1K
Views
220K
X
XploitMachine
alteredlikeness
[ROM][4.4.4] ParanoidAndroid
Replies
1K
Views
246K
N
ninguemrj
alteredlikeness
[ROM][4.4.4][AOSP][Unofficial] SlimKat
Replies
1K
Views
197K
A
adnanschat
deveshmanish
  • Poll
[ROM][4.3][OFFICIAL & NIGHTLIES]MoKee OpenSource Project
Replies
708
Views
90K
Ryuinferno
Ryuinferno

Top Liked Posts

24 Hours All time
  • There are no posts matching your filters.
  • 23
    J
    Jimmy273
    I AM NOT RESPONSIBLE FOR ANY HARM DONE TO YOUR DEVICE THROUGH METHODS MENTIONED BELOW. THESE METHODS WILL DOWNLOAD UPDATES THAT WILL WANT TO INSTALL. DO NOT INSTALL THEM THEY MAY BRICK YOUR DEVICE. STICK TO THE INSTRUCTIONS BELOW AND YOU SHOULD BE FINE.


    Also note it may be weeks, perhaps months before Atrix 2 updates begin rolling in. It's a very new device!

    Now, the fastest way we are going to get this Bootloader unlocked is with a little ol' fashioned teamwork. These methods have worked for other devices but require some participation and patience.
    Previous devices having used the method:
    Bionic
    ATRIX 4G

    Here are the methods we will be using:
    1.Motorola, ATT SBF files for Motorola Atrix 2
    2.Project Cheesecake - finding update versions on Motorola servers

    1. SBF files
    If you or someone you know is able to provide SBF Files intended for the Atrix 2, you can post them here or email them to me at yankeesbro@gmail.com if anonymity is an issue.

    2. The tried and tested Project Cheesecake!

    Automatic Method:
    What you will need

    1.an ADB setup.
    2.Obviously, Root.
    3.ClockworkMod Recovery set up on the phone.
    4.You should have an FXZ Ready in case you mess up.
    5.Root Explorer from market


    Now an app does it all for you. Imagine that.


    1. Okay, so, download THIS APP RIGHT HERE.

    2. Install the app on your phone.

    3. Open the app. Click the first button.

    4. Reboot.

    5. Open app, click second button. Select a server. QA And Staging servers seem most common for updates, but we need to check them all. The default is in Production -> master-blur.whatever.com if you need to get back to it.

    6. now click third button in app to check for update. click setup (the moto account thing is bs). Now if it gives you a wifi error, that means the server is down that you chose. If the server is up it will check for an update.

    7. If that didn't work, select a new server with button 2, and then check again with button 3.

    8. Any comments in this post about the ghettoness of my app will result in replies including but not limited to A) Slander, B) flaming, and C) death. Try to keep the thread pretty on topic to cheesecake method and other info. I know my app can be refined, jcase has been giving me some tips on streamlining my programming and su permission reduction, but it does good stuff, don't worry. It even remounts system as RO when it uses it.

    9. godspeed, guys.


    What do I do if my phone finds an update?


    if you are uncomfortable dealing with it for sake of bricks / other bad stuff, let someone else know or post it in the thread. It will be attended to properly.
    DO NOT INSTALL IT. IF YOU FEEL COMFORTABLE YOU CAN DOWNLOAD IT
    Depending on what the update contains, it could brick your device. Get in touch with a developer ASAP if you don't know what to do. Post in this thread which server you found it on. load up adb. The file you found should exist somewhere in /cache. pull it to your computer. Then delete it. Be warned that the update after downloaded tries to install every 2 minutes and while typing a text i accidentally clicked install once. I almost messed myself up.

    log onto chat.andirc.net and go to #bionic. You might find me in there.
    Log onto irc.freenode.net and join #droidbionic and #bionic-dev. The bionic-dev channel is ONLY for dev-related talk. If you just want to kick it, converse in #droidbionic.
    Someone experienced here can help you, and let you know what you've found.


    If you liked my work here, click the thanks button at the bottom of this post! Thank you all for reading.
    Click to expand...
    Click to collapse
    Link to original topic:http://xdaforums.com/showthread.php?t=1281675

    Manual Method:
    Instructions:
    List of servers:
    Code: 
    master-lab.blurdev.com
master-demo.blurdev.com
master-dev.blurdev.com
master-qa1.blurdev.com
master-qa2.blurdev.com
master-qa3.blurdev.com
master-qa4.blurdev.com
master-staging1.blurdev.com
master-sdc1.svcmot.com
master-blur.svcmot.com
master-homer.blurdev.com
master-bart.blurdev.com
master-lisa.blurdev.com
master-maggie.blurdev.com
master-marge.blurdev.com
master-bqa1.blurdev.com
master-bqa2.blurdev.com
testcloud01-sdc1.blurdev.com

    1.Root the device
    2.Navigate to /system/etc/motorola/com.motorola.blur.service.blur/ in a root file explorer [ie. Root Explorer]
    3.Edit data_wifi_only_settings.mkitso. Replace "data_wifi_only_feat_avail=1" with "data_wifi_only_feat_avail=0"
    4.Edit defaults.xml. Replace the entire file contents with:
    Code: 
    <map><string name='blur.service.ws.useApnProxy'>0</string><string name='blur.service.ws.masterCloud'>master-lab.blurdev.com</string></map>
    5.to /system/etc/motorola/com.motorola.blur.setup in a root file explorer and Edit defaults.xml. Replace the entire file contents with(you settings may already look like this, if so ignore it):
    Code: 
    <?xml version='1.0' encoding='UTF-8'?>
    <map>
    <boolean name='AllowActiveSync' value='true'/>
    <boolean name='ShowSkipSetupMenu' value='true'/>
    <boolean name='ShowConnectionChooser' value='true'/>
    <boolean name='ShowDataSaverInSetup' value='true'/>
    <boolean name='WifiPreference' value='true'/>
    <boolean name='loc_consent_unchecked' value='false'/>
    <boolean name='CloudPreference' value='true'/></map>
    6.Wipe data and cache
    7.Navigate to Settings > About Phone > System Updates
    8.If it says "Update Available," let the update download. Do not install the update, because it could potentially brick your device.
    9.Pull the update.zip file from /cache [Root Explorer or ADB] and upload/post the file for developer interest
    10.Continue to test the next server. Navigate to /system/etc/motorola/com.motorola.blur.service.blur
    11.Mount the folder as read/write
    12.Edit defaults.xml. Remove "master-lab.blurdev.com" and put in the URL for the next server.
    13.Repeat the steps from "Wipe data and cache" every time.
    Click to expand...
    Click to collapse
    Credits: They all deserve thanks so if you see them around the forum, or wish to go to their original topics click that button!
    - eval- for his initial discovery on the Atrix 4G
    - Navalynt for scanning servers
    - SamCripp, the2dcour - working on "Project Cheesecake" and "Pudding" unlock projects
    -kennethpenn for the instructions as well as setup.
    -Phydo for automatic method and app!
    View
    19
    jimbridgman
    jimbridgman
    shubham412302 said:
    But the method can be same

    Sent from my ME865 using xda premium
    Click to expand...
    Click to collapse

    No it will not, the architecture and instruction set are totally different. We need to find a way to do it that applies to the A2 or the razr, or possibly even the bionic. Any other phone processes will NOT work for this phone, so don't even think about it.... Trust me I have tried so many different ideas to crack this thing it is not even funny including things that should not have even been attempted on this phone, just to see... I will say that I sacrificed 9 phones for the community, trying to unlock the bootloader. I thank AT&T for accepting the return of each "broken" phone that just died while charging last night... LOL.
    View
    17
    jimbridgman
    jimbridgman
    birdisthewordfella said:
    Ok... Wow. I just read the two responds. First off, my bad, I guess I misunderstood your original post. Novel nonsense? You might want to take a longer break. You seem angry, i'm not sure how my post meant as optimistic angered you so much.

    Yes, I know how much coding is involved. Time effort and such. But you know screw this cause i'm developing my own stuff. I thought maybe some one would have some help cause I can't seem to get GPS to work. And some other stuff too. But okay fella. I think i'm just going to chop this current one up and stick with stock. The atrix 2 kinda sucks. Got as a replacement when I lost my first one, atrix 1... This one doesn't do the cool stuff the other one, the atrix 1, did.

    you obviously can't push this thing like is needed and your anger makes me want to stay as far away from anything you might drivel out. I bid you a good day.

    Sent from my MB865 using XDA
    Click to expand...
    Click to collapse


    No anger here. Not sure how you got any emotion from written words on a page, but there was no anger in my post. Frustration maybe, from those not understanding what an undertaking it is to compile code with limited released source for the phone that Motorola has released, with out the correct modules for the MB edition of this phone, which means whole new sections of code that have to be written, from scratch.

    Your original post though made a ton of assumptions, that "someone" would make a kernel. If you wanted to help or get help with GPS issues with building a kernel all you had to do was ask, you could PM me, or post a question in the general section, and one of us would help.

    Your posts here seem quite defensive and angry, and I am not sure why, I never attacked you, yet you attacked me, and all the other devs in here. For what, since you are not happy with what we have provided to you for free, in our own spare time.

    I have worked for companies such as Sun Microsystems, and been in the UNIX field for 20+ years. I have been not only compiling but, also coding linux kernels since the 0.86 days of linux, and redhat did not even exist yet at that time, I have worked side by side with Linus on several projects. I now own my own consulting firm, and guess what AT&T happens to be a huge client of mine... so I don't really want to play this childish my skills are bigger than yours, crap.

    If you have not noticed we are a pretty tight knit group in here, and we stick up for each other.

    Go have fun with your HTC!
    View
    10
    jimbridgman
    jimbridgman
    snowplow said:
    You Sir, are amazing. Thanks for all your incredible efforts!

    Out of curiosity, what would we be able to do with a temp-unlocked boot loader?
    Click to expand...
    Click to collapse

    not much. It is very similar to what kexec does, and allows a new kernel to be loaded on a single boot, but you do not load the moto kernel and then unload it to load the new one, you just load the new kernel only. Doing this does not stick on every boot though, and you have to make a special file to allow it and then you need 2nd init to pull this off, so it is not for for normal everyday users just yet. Once I have it all laid out, and get it so that we can flash the NS bootloader to the device, I will make a write up and instructions, but that is all a big if right now, since the rootkit that will allow the NS bootloader to flash has been difficult to get everything working correctly, and I need more time to play with it.
    View
    8
    jimbridgman
    jimbridgman
    CM-PRo said:
    Hey,

    I thought there was an ns bootloader on one of the ICS leaks. What was that about? Wasn't that an unlocked bootloader?
    And what about the bounty thing? Aren't we going to call upon an expert for unlocking it (wasn't that the reason why that thread was made)?

    Really looking forward to an unlocked bootloader because I had 2 phones which had there bootloaders unlocked after I bought them (Arc S and X10 Mini) and the difference it made was unexplicably awesome.

    Hope we get an unlocked bootloader some time in the near future and hope you do it jim since you're one of the better developers here.

    Cheers,
    z
    Click to expand...
    Click to collapse

    Hey, thanks! I appreciate the support.

    Yeah we have tried to get the NS BL to stick on the device but have so far not had much luck. I am working on something that we will try with booting off of the sdcard with a root kit, to fake the device to think it is an NS device then flash that BL to the device, and then change it in our system using the same root kit. That will be a little while out though, since I have to create the root kit from scratch.

    As far as the bounty, we have not any takers yet and none of the guys I have asked to try it have wanted to even attempt it. And I can't name the person we spoke with on IRC for a reason... but, he said that he was able to use jtag and put whatever he wanted on certain paritions on another locked phone, and that is how they unlocked that one. So we are still trying, but we just keep hitting brick walls everywhere we turn.
    View

New posts