[GUIDE] Here's how to unlock the bootloader of Nokia 5.3.

Search This thread
By:
Advanced…
hikari_calyx

hikari_calyx

Senior Member
Jul 20, 2016
570
803
Wuhan
hikaricalyx.com
Nintendo Switch
Nokia 8.3 5G
Code: 
#/usr/bin/env python3
from hct_principle import permission, content
print('''
Your warranty is void.
I am not responsible for bricked devices, dead SD cards,
thermonuclear war, or you getting fired because the alarm app failed. Please
do some research if you have any concerns about features included in this ROM
before flashing it! YOU are choosing to make these modifications, and if
you point the finger at me for messing up your device, I will laugh at you.
''')

if content.repost('other_content_farm_website_or_tech_forum'):
    if not permission:
        print('Please DM me for permission')
        raise Exception('RepostNotAllowedException')

Recently I got a prototype OS backup from a Nokia 5.3 engineering sample unit that contains ABL image with bootloader unlock capability.
Later I found it can be used on retail unit, but flashing it can be tough depends on Android OS version installed on your phone.

Fr5V3-6aMAEUv1o


Case 1: If you already have Android 11 or 12 installed

I'm sure that's the mostly seen situation for Nokia 5.3 users. Unfortunately to do this, you'll have to open up the phone and have Qualcomm EDL driver installed, or consider to use bkerler's live DVD on your PC (prepare a spare USB drive).

1. Clone and download this repository, or just boot into LiveDVD mentioned in README. Install it according to README.
github.com

GitHub - bkerler/edl: Inofficial Qualcomm Firehose / Sahara / Streaming / Diag Tools :)

Inofficial Qualcomm Firehose / Sahara / Streaming / Diag Tools :) - GitHub - bkerler/edl: Inofficial Qualcomm Firehose / Sahara / Streaming / Diag Tools :)
github.com github.com

Also download prototype ABL and attached firehose programmer from here:
Click here to download Prototype ABL

SHA256 checksum of ABL image: C8021967F91908BBE30C4534AA2174B72FB18A204F73BB96561A3F8A17140F0E

If you see error code 00000101, please use industrial standard web browser like Google Chrome.

2. Power off your phone.

3. Follow this video to disassemble the phone, until 4:40. Make sure you have motherboard exposed and battery DISCONNECTED. Please ask an experienced technician for help if you're not familiar with phone disassembly procedure.

4. (Skip this step if you're using Linux) Change EDL port driver according to README.md of edl toolkit said, and reconnect the phone after driver changed.

5. Execute these commands to backup original ABL and write prototype ABL.
For Windows, you should be able to see Qualcomm EDL Port in Device Manager.
For Linux, you'll have to use lsusb command to check if your phone is listed.
:
Code: 
./edl r abl_a,abl_b abl_a.bin,abl_b.bin --loader=/home/your_user_name/Download/prog_emmc_firehose_Sm6125_ddr.elf
./edl w abl_a /home/your_user_name/Download/CAP-abl.elf --loader=/home/your_user_name/Download/prog_emmc_firehose_Sm6125_ddr.elf
./edl w abl_b /home/your_user_name/Download/CAP-abl.elf --loader=/home/your_user_name/Download/prog_emmc_firehose_Sm6125_ddr.elf
After executed and waiting for connection, attach a side of your USB cable on your phone, then use a tweezer to short the test point indicated below. While shorting test point with tweezers, connect it to PC. You may need to repeat this when you execute next 2 commands.
image.png


6. Disconnect the phone, reattach the battery and reassemble the phone. Your phone should boot right into Fastboot mode.

7. Execute these commands to perform bootloader unlock:
Code: 
fastboot flashing unlock_critical
(confirm unlock on your phone)
fastboot oem unlock-go
(confirm unlock on your phone again)

8. Once bootloader unlock confirmed, execute this command to check if unlock successful:
Code: 
fastboot oem device-info

If both unlock state are indicated as True, you can restore the ABL back to retail (if you don't then phone will not boot to normal OS), wipe userdata and reboot:
Code: 
fastboot flash abl_a abl_a.bin
fastboot flash abl_b abl_b.bin
fastboot -w reboot

9. If your phone had initial release of Android 12 that bricked the phone after factory reset, unbrick the phone by following this procedure.

10. Enjoy your bootloader unlocked Nokia 5.3 and have fun for hacking.

Watch this video in case you still don't understand:

Case 2: If you know someone who can provide remote phone flash service for you

I can help when the phone has Android 10 installed, but it's pretty rare nowadays, at least it's difficult to find outside China mainland.
However in this case you don't need to disassemble the phone, you'll just need to reinstall stock firmware after bootloader unlock.


1. Grant service permission. I know how the service permission granting works under initial release of Android 10, which I can't disclose here (also how I confirmed bootloader unlock method working).
If you know someone who can flash a recent Nokia phone for you, Then it will work under Android 11 or 12. When you request such service, ask him not to reboot your phone after the procedure completes.

2. Execute these commands to perform bootloader unlock:
Code: 
fastboot flash abl CAP-abl.elf
fastboot reboot-bootloader
fastboot flashing unlock_critical
(confirm unlock on your phone)
fastboot oem unlock-go
(confirm unlock on your phone again)

3. Flash stock ABL image and wipe userdata. Stock image from Android 12 release is attached below - extract it before flashing, or it will brick your phone and you'll have to use EDL method to revive it.
It may break OTA functionality, so use with care.
Code: 
fastboot flash abl CAP-340A-abl.elf
fastboot -w reboot
 

Attachments

  • prog_emmc_firehose_Sm6125_ddr.zip
    236.2 KB · Views: 292
  • CAP-340A-abl.zip
    202.2 KB · Views: 233
Last edited:
  • Like
  • Love
  • Wow
Reactions: rexmako, MEYSAMKIA, Zaniel123 and 1 other person
T

thiago92nr

Member
Jun 27, 2017
6
0
I waited a long time, but do not leave this status
 

Attachments

  • Screenshot_2023-03-24_23-59-36.png
    Screenshot_2023-03-24_23-59-36.png
    261.3 KB · Views: 201
N

nojo123

New member
Jul 12, 2014
3
0
Worked perfectly. I was able to unbrick my Nokia 5.3 by flashing the stock rom with Fastboot after unlocking the bootloader.
 
hikari_calyx

hikari_calyx

Senior Member
Jul 20, 2016
570
803
Wuhan
hikaricalyx.com
Nintendo Switch
Nokia 8.3 5G
Regarding to stock firmware installation after bootloader unlock.
I'm sure you can obtain a stock ROM somewhere, for example the one I obtained has filename "HMDSW_TA-1229-340A-0-00WW-B01_user_devicekit.zip". (However it can be used on non TA-1229 models like TA-1234)

www.androidfilehost.com

HMDSW_TA-1229-340A-0-00WW-B01_user_devicekit.zip | by Hikari Calyx for Generic Device/Other

Download GApps, Roms, Kernels, Themes, Firmware, and more. Free file hosting for all Android developers.
www.androidfilehost.com www.androidfilehost.com

DO NOT USE MINIMAL ADB AND FASTBOOT! DELETE IT BEFORE YOU PROCEED!

These are possible locations of Minimal ADB and Fastboot:

Code: 
C:\adb
C:\Program Files (x86)\Minimal ADB and Fastboot
C:\Program Files\Minimal ADB and Fastboot
C:\Windows\system32

Delete these 4 files: adb.exe, AdbWinApi.dll, AdbWinUsbApi.dll, fastboot.exe


Extract the firmware package twice and you'll see a batch file named "sm6125_fastboot_all_images.bat". Right click on it and remove the second line (adb reboot bootloader) - since you're already in fastboot mode.

Then, extract Platform Tools from following websites and place files along with firmware files: https://developer.android.com/studio/releases/platform-tools

Make sure fastboot.exe, AdbWinApi.dll, AdbWinUsbApi.dll are placed altogether with firmware files, then double click "sm6125_fastboot_all_images.bat" to reinstall stock firmware.

As for macOS and Linux, you've probably noticed the existence of Captain_download_mac.sh and Captain_download_ubuntu.sh. Edit them and execute it under terminal.
 
Last edited:
  • Like
Reactions: MEYSAMKIA and Zaniel123
X

xmichaxb7

New member
Feb 10, 2014
3
1
Hello, do you mind to make a video how to do those steps? It's quite confusing especially for the 1st step and the 6th step.
 
  • Like
Reactions: pingusp
X

xmichaxb7

New member
Feb 10, 2014
3
1
hikari_calyx said:
I'll have to wait few days to weeks for another Nokia 5.3 test unit's arrival.
Click to expand...
Click to collapse
Oh, alright. I guess I must wait patiently. My Nokia 5.3 has a problem with the NFC on A12. It just keeps detecting my E-Money card like every 1 second or 0.5 second. So, I hopefully will be able to downgrade to A11 after I unlock the bootloader.
 
pingusp

pingusp

Member
Mar 28, 2023
9
0
hikari_calyx said:
1. In case that happens, check if your laptop only has USB 3.x port. If yes, try to execute the command before connecting the phone to PC.

2. Execute the command under /home/your_user_name instead of /opt/edl to prevent permission issue.
Click to expand...
Click to collapse
I tried this after facing the same issue as @thiago92nr with no success still stuck on mode detected Sahara.
I used the live CD to try unlocking the bootloader and still no luck
 
pingusp

pingusp

Member
Mar 28, 2023
9
0
Hey everyone I'm stuck on this part with no idea on what to do
 

Attachments

  • IMG_20230328_014057.jpg
    IMG_20230328_014057.jpg
    3.9 MB · Views: 65
pingusp

pingusp

Member
Mar 28, 2023
9
0
thiago92nr said:
try this command
edl printgpt --loader=/home/user/Download/prog_emmc_firehose_Sm6125_ddr.elf

Then this one for Abl flash a and b

edl r abl_a abl_a.bin --memory=emmc --loader=/home/user/Download/prog_emmc_firehose_Sm6125_ddr.elf
Click to expand...
Click to collapse
Tried it same message

Apparently it could be due to pkhash does match the device pkhash or hardware doesn't match loader
 

Attachments

  • IMG_20230328_200559.jpg
    IMG_20230328_200559.jpg
    3.2 MB · Views: 53
pingusp

pingusp

Member
Mar 28, 2023
9
0
I think he might use hickari calyx bootloader unlock method or the hmd device toolkit
 
You must log in or register to reply here.

Similar threads

S
[GUIDE] [HOW-TO] Install Adobe Flash Player on Android 4.1 Jelly Bean/ Android 4.4
Replies
1K
Views
3M
S
sink1991
brandall
[TUT] The Ultimate Noob/Beginners Guide to Tasker
Replies
8K
Views
2M
Samnang110
Samnang110
v7
  • Poll
✭[GUIDE][26-07-2016]Extreme Battery Life Thread(Greenify+Amplify+Power Nap)✭
Replies
14K
Views
2M
varunpilankar
varunpilankar
tdunham
[Guides & Links] TOUCHWIZ UNIFIED MODS THREAD
Replies
12K
Views
2M
J
josephpatrick
DroidModder
[GUIDE] How to edit build.prop on any Android device!
Replies
259
Views
783K
Tutruelove
Tutruelove

Top Liked Posts

24 Hours All time
  • There are no posts matching your filters.
  • 3
    hikari_calyx
    hikari_calyx
    Code: 
    #/usr/bin/env python3
from hct_principle import permission, content
print('''
Your warranty is void.
I am not responsible for bricked devices, dead SD cards,
thermonuclear war, or you getting fired because the alarm app failed. Please
do some research if you have any concerns about features included in this ROM
before flashing it! YOU are choosing to make these modifications, and if
you point the finger at me for messing up your device, I will laugh at you.
''')

if content.repost('other_content_farm_website_or_tech_forum'):
    if not permission:
        print('Please DM me for permission')
        raise Exception('RepostNotAllowedException')

    Recently I got a prototype OS backup from a Nokia 5.3 engineering sample unit that contains ABL image with bootloader unlock capability.
    Later I found it can be used on retail unit, but flashing it can be tough depends on Android OS version installed on your phone.

    Fr5V3-6aMAEUv1o


    Case 1: If you already have Android 11 or 12 installed

    I'm sure that's the mostly seen situation for Nokia 5.3 users. Unfortunately to do this, you'll have to open up the phone and have Qualcomm EDL driver installed, or consider to use bkerler's live DVD on your PC (prepare a spare USB drive).

    1. Clone and download this repository, or just boot into LiveDVD mentioned in README. Install it according to README.

    GitHub - bkerler/edl: Inofficial Qualcomm Firehose / Sahara / Streaming / Diag Tools :)

    Inofficial Qualcomm Firehose / Sahara /...
    github.com github.com

    Also download prototype ABL and attached firehose programmer from here:
    Click here to download Prototype ABL

    SHA256 checksum of ABL image: C8021967F91908BBE30C4534AA2174B72FB18A204F73BB96561A3F8A17140F0E

    If you see error code 00000101, please use industrial standard web browser like Google Chrome.

    2. Power off your phone.

    3. Follow this video to disassemble the phone, until 4:40. Make sure you have motherboard exposed and battery DISCONNECTED. Please ask an experienced technician for help if you're not familiar with phone disassembly procedure.

    4. (Skip this step if you're using Linux) Change EDL port driver according to README.md of edl toolkit said, and reconnect the phone after driver changed.

    5. Execute these commands to backup original ABL and write prototype ABL.
    For Windows, you should be able to see Qualcomm EDL Port in Device Manager.
    For Linux, you'll have to use lsusb command to check if your phone is listed.
    :
    Code: 
    ./edl r abl_a,abl_b abl_a.bin,abl_b.bin --loader=/home/your_user_name/Download/prog_emmc_firehose_Sm6125_ddr.elf
./edl w abl_a /home/your_user_name/Download/CAP-abl.elf --loader=/home/your_user_name/Download/prog_emmc_firehose_Sm6125_ddr.elf
./edl w abl_b /home/your_user_name/Download/CAP-abl.elf --loader=/home/your_user_name/Download/prog_emmc_firehose_Sm6125_ddr.elf
    After executed and waiting for connection, attach a side of your USB cable on your phone, then use a tweezer to short the test point indicated below. While shorting test point with tweezers, connect it to PC. You may need to repeat this when you execute next 2 commands.
    image.png


    6. Disconnect the phone, reattach the battery and reassemble the phone. Your phone should boot right into Fastboot mode.

    7. Execute these commands to perform bootloader unlock:
    Code: 
    fastboot flashing unlock_critical
(confirm unlock on your phone)
fastboot oem unlock-go
(confirm unlock on your phone again)

    8. Once bootloader unlock confirmed, execute this command to check if unlock successful:
    Code: 
    fastboot oem device-info

    If both unlock state are indicated as True, you can restore the ABL back to retail (if you don't then phone will not boot to normal OS), wipe userdata and reboot:
    Code: 
    fastboot flash abl_a abl_a.bin
fastboot flash abl_b abl_b.bin
fastboot -w reboot

    9. If your phone had initial release of Android 12 that bricked the phone after factory reset, unbrick the phone by following this procedure.

    10. Enjoy your bootloader unlocked Nokia 5.3 and have fun for hacking.

    Watch this video in case you still don't understand:

    Case 2: If you know someone who can provide remote phone flash service for you

    I can help when the phone has Android 10 installed, but it's pretty rare nowadays, at least it's difficult to find outside China mainland.
    However in this case you don't need to disassemble the phone, you'll just need to reinstall stock firmware after bootloader unlock.


    1. Grant service permission. I know how the service permission granting works under initial release of Android 10, which I can't disclose here (also how I confirmed bootloader unlock method working).
    If you know someone who can flash a recent Nokia phone for you, Then it will work under Android 11 or 12. When you request such service, ask him not to reboot your phone after the procedure completes.

    2. Execute these commands to perform bootloader unlock:
    Code: 
    fastboot flash abl CAP-abl.elf
fastboot reboot-bootloader
fastboot flashing unlock_critical
(confirm unlock on your phone)
fastboot oem unlock-go
(confirm unlock on your phone again)

    3. Flash stock ABL image and wipe userdata. Stock image from Android 12 release is attached below - extract it before flashing, or it will brick your phone and you'll have to use EDL method to revive it.
    It may break OTA functionality, so use with care.
    Code: 
    fastboot flash abl CAP-340A-abl.elf
fastboot -w reboot
    View
    2
    hikari_calyx
    hikari_calyx
    thiago92nr said:
    I waited a long time, but do not leave this status
    Click to expand...
    Click to collapse
    1. In case that happens, check if your laptop only has USB 3.x port. If yes, try to execute the command before connecting the phone to PC.

    2. Execute the command under /home/your_user_name instead of /opt/edl to prevent permission issue.
    View
    2
    hikari_calyx
    hikari_calyx
    Regarding to stock firmware installation after bootloader unlock.
    I'm sure you can obtain a stock ROM somewhere, for example the one I obtained has filename "HMDSW_TA-1229-340A-0-00WW-B01_user_devicekit.zip". (However it can be used on non TA-1229 models like TA-1234)

    HMDSW_TA-1229-340A-0-00WW-B01_user_devicekit.zip | by Hikari Calyx for Generic Device/Other

    Download GApps, Roms, Kernels, Themes...
    www.androidfilehost.com www.androidfilehost.com

    DO NOT USE MINIMAL ADB AND FASTBOOT! DELETE IT BEFORE YOU PROCEED!

    These are possible locations of Minimal ADB and Fastboot:

    Code: 
    C:\adb
C:\Program Files (x86)\Minimal ADB and Fastboot
C:\Program Files\Minimal ADB and Fastboot
C:\Windows\system32

    Delete these 4 files: adb.exe, AdbWinApi.dll, AdbWinUsbApi.dll, fastboot.exe


    Extract the firmware package twice and you'll see a batch file named "sm6125_fastboot_all_images.bat". Right click on it and remove the second line (adb reboot bootloader) - since you're already in fastboot mode.

    Then, extract Platform Tools from following websites and place files along with firmware files: https://developer.android.com/studio/releases/platform-tools

    Make sure fastboot.exe, AdbWinApi.dll, AdbWinUsbApi.dll are placed altogether with firmware files, then double click "sm6125_fastboot_all_images.bat" to reinstall stock firmware.

    As for macOS and Linux, you've probably noticed the existence of Captain_download_mac.sh and Captain_download_ubuntu.sh. Edit them and execute it under terminal.
    View
    2
    hikari_calyx
    hikari_calyx
    xmichaxb7 said:
    Hello, do you mind to make a video how to do those steps? It's quite confusing especially for the 1st step and the 6th step.
    Click to expand...
    Click to collapse

    I'll have to wait few days to weeks for another Nokia 5.3 test unit's arrival.
    View
    1
    X
    xmichaxb7
    Hello, do you mind to make a video how to do those steps? It's quite confusing especially for the 1st step and the 6th step.
    View

New posts