Welcome to XDA

Search to go directly to your device's forum

Register an account

Unlock full posting privileges

Ask a question

No registration required
Post Reply

[DEVS ONLY] Crack/bypass/trick Boot.img Signature

OP designgears

20th February 2011, 10:44 AM   |  #1  
designgears's Avatar
OP Recognized Developer
Flag SLC
Thanks Meter: 8,691
 
4,880 posts
Join Date:Joined: Feb 2010
Donate to Me
More
Ok, so lets get cracking on this bootloader.

boot.img and recovery.img certs (thanks to ntwrkwizard):
http://ponack.net/designgears/atrix/...%20extract.zip
http://ponack.net/designgears/atrix/...%20extract.zip

Flaw in the X.509 certs:
http://www.darkreading.com/security/...008/index.html

Boot.img & Recovery.img
http://www.ponack.net/designgears/dump.7z
Last edited by designgears; 21st February 2011 at 01:02 AM.
The Following 9 Users Say Thank You to designgears For This Useful Post: [ View ]
20th February 2011, 06:04 PM   |  #2  
Member
Thanks Meter: 5
 
95 posts
Join Date:Joined: Oct 2009
More
DG, afaik, that exploit deals with the md2 hash algorithm. it is a good possible starting point. has the signing cert been found/recovered/viewed yet?

if moto signed it with an md5 hash cert, then that may not be possible.
20th February 2011, 06:59 PM   |  #3  
Senior Member
Thanks Meter: 17
 
240 posts
Join Date:Joined: Oct 2007
Well if you guys need any processing power to help crack anything let me know. I am willing to donate my system. Current specs:
i7-970 six core 4.8ghz overclocked
4 gtx580 gpus
24gb ddr3 2000
HSDL 240gb ssd

Like I said, if you guys need any processing power let me know.

Sent from my "5 inch Galaxy Tab"
Atrix here on the 22nd
20th February 2011, 07:08 PM   |  #4  
perdurabo2's Avatar
Senior Member
Flag NJ
Thanks Meter: 21
 
137 posts
Join Date:Joined: Jun 2007
More
Quote:
Originally Posted by dtmcnamara

Well if you guys need any processing power to help crack anything let me know. I am willing to donate my system. Current specs:
i7-970 six core 4.8ghz overclocked
4 gtx580 gpus
24gb ddr3 2000
HSDL 240gb ssd

Like I said, if you guys need any processing power let me know.

Sent from my "5 inch Galaxy Tab"
Atrix here on the 22nd

Please don't post here. This is a dev only thread. Post your offer in General.

Thanks!
20th February 2011, 07:17 PM   |  #5  
perdurabo2's Avatar
Senior Member
Flag NJ
Thanks Meter: 21
 
137 posts
Join Date:Joined: Jun 2007
More
These downloads look like just CA certs. Could someone extract the x.509 cert embedded in the beginning of the boot.img and post it to this thread? I'm out and about this weekend and don't have a box with a hex editor handy.
20th February 2011, 07:24 PM   |  #6  
Fixter's Avatar
Senior Member
Flag Durham
Thanks Meter: 91
 
1,404 posts
Join Date:Joined: Jun 2009
Donate to Me
More
Quote:
Originally Posted by perdurabo2

These downloads look like just CA certs. Could someone extract the x.509 cert embedded in the beginning of the boot.img and post it to this thread? I'm out and about this weekend and don't have a box with a hex editor handy.

If you could tell me how to do that I will be more than happy to get those for you. I'm the go to guy, remember?
The Following User Says Thank You to Fixter For This Useful Post: [ View ]
20th February 2011, 07:44 PM   |  #7  
Member
Thanks Meter: 8
 
51 posts
Join Date:Joined: Apr 2006
More
Here is the extracted cert from within mmcblk0p10.img. This hex dump is extracted from 7FF7FC through 7FFDF9.
Also is the extracted cert from within mmcblk0p11.img. This hex dump is extracted from 7FF7FC through 7FFE79.

Not sure the value of an extracted public side of the x.509 is post signature but I'm sure someone will define that.

Good luck..

NW
Last edited by ntwrkwizard; 20th February 2011 at 07:49 PM. Reason: Add additional file.
The Following 2 Users Say Thank You to ntwrkwizard For This Useful Post: [ View ]
20th February 2011, 11:23 PM   |  #8  
Mr. Clown's Avatar
RC-RT Committee / Senior Moderator - Fear the Clown
Flag Lake Ridge, Virginia
Thanks Meter: 2,387
 
5,913 posts
Join Date:Joined: Nov 2008
Donate to Me
More
back on topic please.
The Following 4 Users Say Thank You to Mr. Clown For This Useful Post: [ View ]
21st February 2011, 05:46 AM   |  #9  
perdurabo2's Avatar
Senior Member
Flag NJ
Thanks Meter: 21
 
137 posts
Join Date:Joined: Jun 2007
More
Quote:
Originally Posted by Mr. Clown

back on topic please.

Who are you talking to? The cert conversation is applicable.
Last edited by perdurabo2; 21st February 2011 at 06:02 AM. Reason: I was a bit too harsh.
21st February 2011, 11:33 AM   |  #10  
Senior Member
Thanks Meter: 41
 
922 posts
Join Date:Joined: Jan 2007
Hi friend,

is the bootloader encrypten the same as defy or milestone?
Or a new one?
Maybe we could get all a free bootloader if this would work?
Or other technical?
Thanks

Post Reply Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes