[Bounty] cracked bootloader - dollar amount conditional (see thread)

Search This thread

murso74

Senior Member
Oct 30, 2010
1,881
356
:: edit 2 :: well it looks like the bootloader has been cracked. i'll update this at home with a link to the thead and whatever info there is.

:: edit :: i've stopped updating this because there are too many conditional donations that i can't keep track of ( i.e only the 8.9 inch if its before the 3rd child is born and if its on a tuesday) if anyone wants to try again be my guest


I didn't see a thread for this... so if this is the first I'll kick it off with 20 bucks....

i know we have safestrap, but looking for a true cracked bootloader

Sent from my XT1058 using Tapatalk

murso74 - $20
fishhelmet - $20
S_transform - $30
JordanRulz - $10
CZ Eddie - $10
conan1600 - $5
strikerdj2011 - $10
EniGmA1987 - $40
tootone - $20
erronr - $20
ratbert90 - $50
Dotachin - $20
clarke33 - $25
nullstring2 - $25
wiseguyy - $20
mech_supernova - $20
joeish83 - $20
Kenmoini. - $100 (LTE)
scorvio - $10
LeBoff - $25
Three of Swords - $10 (7") $25 (8.9")
 
Last edited:

S_transform

Senior Member
Oct 12, 2012
106
31
Hashcode said he's sure the bootloader is patched up well. Perhaps in a year or two? Hopefully sooner if ever.

Well the thing is, its patched up well from Loki, that doesn't mean it has absolutely no way of being unlocked. While I don't think adding a bounty is going to suddenly get the bootloader unlocked, it can't hurt to add an incentive to draw low-level coders to develop for the HDX.

Edit: This is at least my take on it, from what information I've gathered.
 
Last edited:
  • Like
Reactions: qingtest

conan1600

Senior Member
Jan 9, 2011
610
209
I don't own the 7 inch but I'll go 5 and maybe it could lead to something on the 8.9
 

Dotachin

Member
Aug 2, 2012
14
0
Why is this thread not fixed under the forum rules? Plenty of people may have missed it since December, I think it's in our best interest to keep it in page 1.
Also I don’t know if gbrewha's extra device is still available but if it is he might want to offer it here.
http://xdaforums.com/showthread.php?t=2574302

Let´s get some low level firmware devs, I'm in for $20 :cowboy:
 

S_transform

Senior Member
Oct 12, 2012
106
31
Why is this thread not fixed under the forum rules? Plenty of people may have missed it since December, I think it's in our best interest to keep it in page 1.
Also I don’t know if gbrewha's extra device is still available but if it is he might want to offer it here.
http://xdaforums.com/showthread.php?t=2574302

Let´s get some low level firmware devs, I'm in for $20 :cowboy:

While I am all for unlocking the bootloader, and I believe that this might be good to keep on the front page to combine all 3? I think of these threads into a single unified bounty page, the idea of a bounty for the bootloader has been discussed multiple time. My guess is Hashcode or Gsleon or Cpasjuste may comment on this again, but while a bounty is a good idea, we mostly need to find a dev who is willing and has the time to work on this and get them a device. We can have a bounty all we want, but this device isn't currently attracting a ton of developers to it. We have a couple very good ones, but no low-level Qualcomm specialists. I personally think a better idea would be a thread that is designed to get an hdx or two into the hands of a couple good specialists, not necessarily with a monetary prize if they actually unlock it (although that isn't a bad idea). I don't really know anyone who specializes in bootloaders or things of that nature, but I think if you really want the bootloader unlocked attracting their attention is in order before we start throwing money at a role we can't fill.
 

Dotachin

Member
Aug 2, 2012
14
0
While I am all for unlocking the bootloader, and I believe that this might be good to keep on the front page to combine all 3? I think of these threads into a single unified bounty page, the idea of a bounty for the bootloader has been discussed multiple time. My guess is Hashcode or Gsleon or Cpasjuste may comment on this again, but while a bounty is a good idea, we mostly need to find a dev who is willing and has the time to work on this and get them a device. We can have a bounty all we want, but this device isn't currently attracting a ton of developers to it. We have a couple very good ones, but no low-level Qualcomm specialists. I personally think a better idea would be a thread that is designed to get an hdx or two into the hands of a couple good specialists, not necessarily with a monetary prize if they actually unlock it (although that isn't a bad idea). I don't really know anyone who specializes in bootloaders or things of that nature, but I think if you really want the bootloader unlocked attracting their attention is in order before we start throwing money at a role we can't fill.

Sure, we could use the bounty to buy one kindle HDX per $200 gathered and send them to interested known devs. You can definitely count my $20 for that.
I think what we really need is someone to unite/moderate all these far too scattered good initiatives into one good always on top thread, hunt some devs, and overall show the community this is actually getting somewhere and that it is worth investing.
 

murso74

Senior Member
Oct 30, 2010
1,881
356
updated the OP ... up to a whopping 255 bucks. i figured the 16 gig people would have been up for this since safestrap severely cuts down on our storage. i bought this for the amazon video downloads for trips. anyway i'd be ok with using the money for an HDX to a reputable dev. I know bootloaders these days are a long shot.

unfortunatly, the only device i have that i can flash roms on right now is my Touchpad, as my Moto X and HDX are locked down hard
 
Last edited:

Top Liked Posts

  • There are no posts matching your filters.
  • 18
    Why there is no fix (yet) (and how you can look for one)...

    I dont get why devs aren't on this tablet. With such great specs and potential for cm and a hefty cash incentive it boggles my mind. Near every chincy android phone gets cracked and Im sitting here dumbfounded as to why someone wont take the leap.

    Hashcode said he's sure the bootloader is patched up well. Perhaps in a year or two? Hopefully sooner if ever.

    FYI: Hashcode, verygreen,and I went through the bootloader source like maybe 5 months ago when it first dropped, and it appeared to be locked up pretty tight. We revisited it a few weeks ago just kind of cursorily and nothing new popped out. This is the third generation of Kindles, and Amazon has learned a lot from two previous releases-- version one didn't lock the bootloader at all, then the HDs did, but I happened to notice some unverified header input (below), and indeed it was born out by Hashcode & verygreen who could actually try it. The HDXs are the third round of kindles, and they did a MUCH more diabolical job restricting your freedom to use your own hardware w/all kinds of "improvements" (or as I see them, new flaws)... That's not to say there isn't something to be found, but it's not as obvious as it was for other locked devices I've in some way been involved with (cited here for historical reference):

    • The Nook Tablet - (Bawks' discovery) about an unchecked memory address. He posted some working code, which I enhanced a bit w/ a menu'd fork of uboot, Cyanoboot.
    • The Nook HD/HD+ (I noticed this whoopsie that was confirmed/exploited by verygreen-- though he later found a second, better solution, really a variation of bawks' discovery)
    • Kindle 2 + 7"/8.9" HDs (unverified input found by me, implementation by Hashcode w/help from Verygreen).
    Funny thing is, I've never actually bought or even used any of those devices.

    I can't imagine any bounty will make any difference as that's not really why people look for these "holes" -- though I consider them more "bug fixes" than "exploits" as any locked bootloader should be seen as bug-ridden and flawed. We've had a lot of discussions about how much effort to put into locked bootloaders. People shouldn't buy devices with them just expecting them to be magically unlocked. I'd rather discourage people from buying them in the first place (I never have), so speaking for myself it isn't worth spending time on a one-sided arms race. I sure as hell am not buying any Kindle anything so long as it's shıtty like that. Even worse, Intel is getting into this .?. Makes me wanna puke.

    In the meantime, Hashcode has his safestrap stuff as a workaround. I assume it's still working.

    Anyone who feels adventurous: the bootloader source code for the Kindle HDX is as mentioned here. It's been five months since I really looked at this, but if I remember right, the general process of booting from emmc, that is, the steps it takes when it starts, is around here. The boot image verification stuff is here. Crypto/verification-related headers like image_verify.h are here. If I remember right, the master boot record itself is signed, as I think is partition schemes, etc... And Hashcode had mentioned a few other issues that also make this hard to keep any discovery, if made, relevant for any period of time.

    Some other quick things off the top of my head-- the shared/common kernel implements device tree so DEVICE_TREE will be set. You can look at the Nook HD, Kindle HD, and Nook Tabletposts by Bawks discussion linked above for some ideas of the sorts of things that might constitute a way around the chained boot... there's some explanation and info there for anyone interested.

    All that said, good night, and good luck.
    4
    I'm hesitant to add the 8.9 to the bounty, or to add a time frame. I think you guys may be better off starting a new thread for that. We don't know if what works for one size will work for the other

    Sent from my XT1058 using Tapatalk

    From my research, I can tell you that if it works for the HDX7, it will work for the HDX8,9, albeit with some minor alterations to address space, etc.

    I think I have found a way to retain the signature while modifying the update bin. I plan on testing it this weekend & if things go well, then I'll push it out to a small group for more testing. Even though I use a HDX8.9, the initial file will be for the HDX7, since the 7" model is the only one in the house that both runs the newer firmware & is not rooted. I have to wait because it is not mine & I won't have access to it till this weekend. I am running 14.3.2.1 rooted on my 8.9 & unable to test the method on it since I use it daily & require certain root & system level modifications for work. Once I know it works on the 7", then I will update it for the 8.9 & test it personally. I just can't justify the loss of root on the 8,.9 atm, particularly with the ig... well never mind that.


    At any rate, this still will not be an unlocked bootloader & is likely only be a temporary work-around until the next update, unless you modify the build.prop & never update again.
    4
    I guess this tab is dead, that sucks the perfect size and this is where it lies. Sad :(

    The tab is far from dead, it's alive and kicking with HDX Nexus ROM.

    This thread is dead and should be closed...
    3
    :: edit 2 :: well it looks like the bootloader has been cracked. i'll update this at home with a link to the thead and whatever info there is.

    :: edit :: i've stopped updating this because there are too many conditional donations that i can't keep track of ( i.e only the 8.9 inch if its before the 3rd child is born and if its on a tuesday) if anyone wants to try again be my guest


    I didn't see a thread for this... so if this is the first I'll kick it off with 20 bucks....

    i know we have safestrap, but looking for a true cracked bootloader

    Sent from my XT1058 using Tapatalk

    murso74 - $20
    fishhelmet - $20
    S_transform - $30
    JordanRulz - $10
    CZ Eddie - $10
    conan1600 - $5
    strikerdj2011 - $10
    EniGmA1987 - $40
    tootone - $20
    erronr - $20
    ratbert90 - $50
    Dotachin - $20
    clarke33 - $25
    nullstring2 - $25
    wiseguyy - $20
    mech_supernova - $20
    joeish83 - $20
    Kenmoini. - $100 (LTE)
    scorvio - $10
    LeBoff - $25
    Three of Swords - $10 (7") $25 (8.9")
    3
    I'm in with $15 for HDX 7". I'm hating Amazon launcher and services, I just wanted a cheap and powerful tablet to watch movies and YouTube videos. If someone finds another root I won't care about losing access to Amazon things xD