[UNLOCK][ROOT][TWRP][UNBRICK] Fire HD 8 2017 (douglas)

Search This thread
By:
Advanced…
K

k4y0z

Senior Member
Nov 27, 2015
1,468
2,012
Read this whole guide before starting.

This is for the 7th gen Fire HD8 (douglas).

Current version: amonet-douglas-v1.2.zip


NOTE: This process does not require you to open your device, but should something go horribly wrong, be prepared to do so.


NOTE: This process will modify the partition-table (GPT) of your device.


NOTE: Your device will be reset to factory defaults (including internal storage) during this process.


What you need:
  • A Linux installation or live-system
  • A micro-USB cable

Install python3, PySerial, adb, fastboot dos2unix. For Debian/Ubuntu something like this should work:
Code: 
sudo apt update
sudo add-apt-repository universe
sudo apt install python3 python3-serial adb fastboot dos2unix

1. Extract the attached zip-file "amonet-douglas-v1.1.zip" and open a terminal in that directory.


NOTE: If you are already rooted, continue with the next step, otherwise get mtk-su by @diplomatic from here and place (the unpacked binary) into amonet/bin folder


2. Enable ADB in Developer Settings

3. Start the script:
Code: 
sudo ./step-1.sh

Your device will now reboot into recovery and perform a factory reset.

NOTE: If you are on a firmware newer than 5.6.4.0, a downgrade is necessary, this requires bricking the device temporarily. (The screen won't come on at all)
If you chose the brick option, you don't need to run step-2.sh below:


Make sure ModemManager is disabled or uninstalled:
Code: 
sudo systemctl stop ModemManager
sudo systemctl disable ModemManager


WARNING: Do not use bootrom-step-minimal.sh if you bricked using brick(-9820).sh!
You will need to use bootrom-step.sh.

After you have confirmed the bricking by typing "YES", you will need disconnect the device and run
Code: 
sudo ./bootrom-step-minimal.sh
Then plug the device back in.

It will then boot into "hacked fastboot" mode.
Then run
Code: 
sudo ./fastboot-step.sh



NOTE: When you are back at initial setup, you can skip registration by selecting a WiFi-Network, then pressing "Cancel" and then "Not Now"
NOTE: Make sure you re-enable ADB after Factory Reset.


4. Start the script:
Code: 
sudo ./step-2.sh

The exploit will now be flashed and your device will reboot into TWRP.

You can now install Magisk from there.


Going back to stock
Extract the attached zip-file "amonet-douglas-return-to-stock.zip" into the same folder where you extracted "amonet-douglas-v1.0.zip" and open a terminal in that directory.
You can go back to stock without restoring the original partition-table, so you can go back to unlocked without wiping data.
Just use hacked fastboot to
Code: 
sudo fastboot flash recovery bin/recovery.img

If you want to go back completely (including restoring your GPT):
Code: 
sudo ./return-to-stock.sh

Your device should reboot into Amazon Recovery. Use adb sideload to install stock image from there. (Make sure to use FireOS 5.6.4.0 or newer, otherwise you may brick your device)

Important information

In the new partitioning scheme your boot/recovery-images will be in boot_x/recovery_x respectively, while boot/recovery will hold the exploit.
TWRP takes care of remapping these for you, so installing zips/images from TWRP will work as expected.

Don't flash boot/recovery images from FireOS (FlashFire, MagiskManager etc.) (If you do anyway, make sure you flash them to boot_x/recovery_x)

Should you accidentally overwrite the wrong boot, but your TWRP is still working, rebooting into TWRP will fix that automatically.

TWRP will prevent updates from overwriting LK/Preloader/TZ, so generally installing an update should work without issues (only full updates, incremental updates won't work).

For ROM developers there is still an option to overwrite these, which should only be done after thorough testing and if needed (LK should never be updated).

It is still advised to disable OTA.


Very special thanks to @xyz` for making all this possible and putting up with the countless questions I have asked, helping me finish this.
Special thanks also to @diplomatic for his wonderfull mtk-su, allowing you to unlock without opening the device.
Thanks to @t0x1cSH and @breakfastofsecrets for testing.
 

Attachments

  • amonet-douglas-v1.0.zip
    17.2 MB · Views: 1,902
  • amonet-douglas-return-to-stock.zip
    8.7 MB · Views: 3,403
  • amonet-douglas-v1.1.zip
    17.2 MB · Views: 4,055
  • amonet-douglas-gptfix.zip
    2.6 KB · Views: 2,254
  • brick-douglas.zip
    4.2 MB · Views: 10,929
  • amonet-douglas-v1.2.zip
    17.1 MB · Views: 24,976
Last edited:
  • Like
Reactions: wheelbarrel, DutyThree, pvsgh and 56 others
K

k4y0z

Senior Member
Nov 27, 2015
1,468
2,012
Changelog
Version 1.2 (15.10.2019)
  • Increase boot.hdr size to avoid crashes with leftovers of boot.img

Version 1.1 (02.09.2019)
  • Add system_image to TWRP
  • Add serialno to GPT-folder to avoid mixups between 16G and 32G
  • Add scripts to fix GPT
Features.

  • Hacked fastboot mode lets you use all fastboot commands (flash etc).
  • Boots custom/unsigned kernel-images (no patching needed)
  • TWRP protects from downgrading PL/TZ/LK

NOTE: Hacked fastboot can be reached via TWRP.

NOTE: Hacked fastboot doesn't remap partition names, so you can easily go back to stock
 
Last edited:
  • Like
Reactions: DetCochese, 5upon and ggow
T

t0x1cSH

Senior Member
Jul 24, 2018
108
118
if you can't get in the recovery by long pressing the volume buttons and power button simultaneously, during the boot keep both the volume buttons and fastly tap the power button

i had some problems getting by long pressing in the recovery and this worked every time

ty k4y0z
 
Last edited:
  • Like
Reactions: ray2jerry
M

MontysEvilTwin

Senior Member
Nov 4, 2016
258
107
On a rooted device with a locked bootloader, if I back up system and data only with Flashfire, will I be able to restore these partitions with TWRP after unlocking? Presumably I wouldn't restore the boot partition?
 
  • Like
Reactions: Kctucka
R

Rortiz2

Senior Member
Mar 1, 2018
2,601
2,160
Barcelona
Amazon Fire TV
Amazon Fire HD 8 and HD 10
MontysEvilTwin said:
On a rooted device with a locked bootloader, if I back up system and data only with Flashfire, will I be able to restore these partitions with TWRP after unlocking? Presumably I wouldn't restore the boot partition?
Click to expand...
Click to collapse
I think that you can. TWRP supports flashfire backups but as you say don't restore boot.img neither recovery.img.
 
  • Like
Reactions: Kctucka
K

k4y0z

Senior Member
Nov 27, 2015
1,468
2,012
MontysEvilTwin said:
On a rooted device with a locked bootloader, if I back up system and data only with Flashfire, will I be able to restore these partitions with TWRP after unlocking? Presumably I wouldn't restore the boot partition?
Click to expand...
Click to collapse

Rortiz2 said:
I think that you can. TWRP supports flashfire backups but as you say don't restore boot.img neither recovery.img.
Click to expand...
Click to collapse

Haven't tested, but should work fine, also boot.img should give no issues when restoring.
Only userdata is erased during unlocking, so it should be enough to restore userdata.
 
  • Like
Reactions: MontysEvilTwin and Kctucka
M

MontysEvilTwin

Senior Member
Nov 4, 2016
258
107
k4y0z said:
Haven't tested, but should work fine, also boot.img should give no issues when restoring.
Only userdata is erased during unlocking, so it should be enough to restore userdata.
Click to expand...
Click to collapse
Doesn't the unlock procedure include a factory reset which will wipe settings and apps? By 'userdata' do you mean 'data' or data plus internal storage (user files and photos etc.) or just internal storage?
 
K

Kctucka

Senior Member
Mar 24, 2019
192
72
Everything went super smooth. Many thanks for this, and all your unlocks.

Also, I was able to flash my flashfire system and usedata backups in TWRP with no issues.
 
M

MontysEvilTwin

Senior Member
Nov 4, 2016
258
107
Kctucka said:
Everything went super smooth. Many thanks for this, and all your unlocks.

Also, I was able to flash my flashfire system and usedata backups in TWRP with no issues.
Click to expand...
Click to collapse
How do you flash Flashfire backups? I now am unlocked and have TWRP installed, but when I try to restore, TWRP can see the backup folders but does not see any backed-up partitions.

---------- Post added at 10:49 AM ---------- Previous post was at 10:36 AM ----------

OK. I've got it figured out. You have to install the relevant 'twrp.zip' archives from the Flashfire backups.
 
D

deathlessster

Senior Member
Oct 13, 2015
72
5
dear friends
I make backup with twrp ( just system ) and transfer it to other device but when restore system the device stock on amazon i try to flash system by hacked BL flash success but when reboot also stock on amazon logo
 
R

Rortiz2

Senior Member
Mar 1, 2018
2,601
2,160
Barcelona
Amazon Fire TV
Amazon Fire HD 8 and HD 10
deathlessster said:
dear friends
I make backup with twrp ( just system ) and transfer it to other device but when restore system the device stock on amazon i try to flash system by hacked BL flash success but when reboot also stock on amazon logo
Click to expand...
Click to collapse

Maybe you need to do a wipe of userdata and flash the latest boot.img.
 
  • Like
Reactions: deathlessster
D

deathlessster

Senior Member
Oct 13, 2015
72
5
thank you Rortiz2 i will try

---------- Post added at 03:36 PM ---------- Previous post was at 03:30 PM ----------
k4y0z said:
Read this whole guide before starting.

This is for the 7th gen Fire HD8 (douglas).

Current version: amonet-douglas-v1.0.zip


NOTE: This process does not require you to open your device, but should something go horribly wrong, be prepared to do so.


NOTE: This process will modify the partition-table (GPT) of your device.


NOTE: Your device will be reset to factory defaults (including internal storage) during this process.


What you need:
  • A Linux installation or live-system
  • A micro-USB cable

Install python3, PySerial, adb, fastboot dos2unix. For Debian/Ubuntu something like this should work:
Code: 
sudo apt update
sudo add-apt-repository universe
sudo apt install python3 python3-serial adb fastboot dos2unix

1. Extract the attached zip-file "amonet-douglas-v1.0.zip" and open a terminal in that directory.


NOTE: If you are already rooted, continue with the next step, otherwise get mtk-su by @diplomatic from here and place (the unpacked binary) into amonet/bin folder


2. Enable ADB in Developer Settings

3. Start the script:
Code: 
sudo ./step-1.sh

Your device will now reboot into recovery and perform a factory reset.

NOTE: If you are on a firmware newer than 5.6.4.0, a downgrade is necessary, this requires bricking the device temporarily. (The screen won't come on at all)
If you chose the brick option, you don't need to run step-2.sh below:


Make sure ModemManager is disabled or uninstalled:
Code: 
sudo systemctl stop ModemManager
sudo systemctl disable ModemManager

After you have confirmed the bricking by typing "YES", you will need disconnect the device and run
Code: 
sudo ./bootrom-step-minimal.sh
Then plug the device back in.

It will then boot into "hacked fastboot" mode.
Then run
Code: 
sudo ./fastboot-step.sh



NOTE: When you are back at initial setup, you can skip registration by selecting a WiFi-Network, then pressing "Cancel" and then "Not Now"
NOTE: Make sure you re-enable ADB after Factory Reset.


4. Start the script:
Code: 
sudo ./step-2.sh

The exploit will now be flashed and your device will reboot into TWRP.

You can now install Magisk from there.


Going back to stock
Extract the attached zip-file "amonet-douglas-return-to-stock.zip" into the same folder where you extracted "amonet-douglas-v1.0.zip" and open a terminal in that directory.
You can go back to stock without restoring the original partition-table, so you can go back to unlocked without wiping data.
Just use hacked fastboot to
Code: 
fastboot flash recovery bin/recovery.img

If you want to go back completely (including restoring your GPT):
Code: 
sudo ./return-to-stock.sh

Your device should reboot into Amazon Recovery. Use adb sideload to install stock image from there. (Make sure to use FireOS 5.6.4.0 or newer, otherwise you may brick your device)

Important information

In the new partitioning scheme your boot/recovery-images will be in boot_x/recovery_x respectively, while boot/recovery will hold the exploit.
TWRP takes care of remapping these for you, so installing zips/images from TWRP will work as expected.

Don't flash boot/recovery images from FireOS (FlashFire, MagiskManager etc.) (If you do anyway, make sure you flash them to boot_x/recovery_x)

Should you accidentally overwrite the wrong boot, but your TWRP is still working, rebooting into TWRP will fix that automatically.

TWRP will prevent updates from overwriting LK/Preloader/TZ, so generally installing an update should work without issues (only full updates, incremental updates won't work).

For ROM developers there is still an option to overwrite these, which should only be done after thorough testing and if needed (LK should never be updated).

It is still advised to disable OTA.


Very special thanks to @xyz` for making all this possible and putting up with the countless questions I have asked, helping me finish this.
Special thanks also to @diplomatic for his wonderfull mtk-su, allowing you to unlock without opening the device.
Thanks to @t0x1cSH and @breakfastofsecrets for testing.
Click to expand...
Click to collapse

I do this method on windows 10 with linux shell and i get success thank you very much
 
  • Like
Reactions: TraderJack
M

MontysEvilTwin

Senior Member
Nov 4, 2016
258
107
I have unlocked three tablets now. It is very easy, thanks @k4y0z for making it that way. The only problem I had was with my first try on step 1, but that was because my adb and fastboot drivers needed updating.
Is a similar unlock planned for the HD 8, 2016/ 6th gen. Giza?
 
Y

yafi1710

Member
Aug 17, 2019
21
3
[email protected]:/mnt/c/Users/aimya/Downloads/Compressed/amonet-douglas-v1.0_2/amonet$ sudo ./step-1.sh
[sudo] password for aimyafi:
* daemon not running; starting now at tcp:5037
* daemon started successfully

Stuck at there! What's the problem?
 
You must log in or register to reply here.

Similar threads

K
[UNLOCK][ROOT][TWRP][UNBRICK] Fire HD 10 2017 (suez)
Replies
2K
Views
399K
K
Klaus R
X
Fire HD 8 (2018 ONLY) unbrick, downgrade, unlock & root
Replies
1K
Views
346K
B
batcack
K
[UNLOCK][ROOT][TWRP][UNBRICK] Fire HD 8 2018 (karnak) amonet-3
Replies
985
Views
218K
N
nospamboz
R
[ROM][unlocked][douglas] Lineage-12.1 [5 SEP 2020]
Replies
599
Views
134K
koop1955
koop1955
Kaijones23
  • Poll
[ROM][unlocked][karnak] Lineage-14.1 [25 MAR 2020]
Replies
1K
Views
220K
C
chimpsRcool

Top Liked Posts

24 Hours 30 Days All time
  • There are no posts matching your filters.
  • 1
    htc-8925
    htc-8925
    I bought a "for parts only" pair of what I thought were supposed to be two fire 7 5th gen tablets from eBay for $20. To my surprise one of these fire hd8 7th gen showed up. SD card reader burnt, unresponsive, wouldn't charge or show signs of life (heavily water damaged). I just needed to get this all out in public forum I guess, but I've been battling addiction for the last two years, my wife attempted suicide in feb of this year and three of our kids moved out. I lost my job, I'm about to be homeless with my now even further damaged disabled wife- but reading all these threads here on XDA and elsewhere deeply inspired me (the amphetamines helped too) to take this water-damaged piece of poo tablet and make a proper, working, usable tablet that I JUST got working 100% at 0420 on this 12th day of May, 2023. Fully functional, speakers, bluetooth, headphone jack, buttons, screen- everything but the SD slot (I can solder, but this **** is TINY and kinda intimidating, plus where the heck do you but a replacement MOLEX micro-SD card reader for a 2017 Amacrap tablet??)

    If I can take a piece of junk and make it shine, anybody can do this if they READ AS INSTRUCTED and never give up.
    View
  • 59
    K
    k4y0z
    Read this whole guide before starting.

    This is for the 7th gen Fire HD8 (douglas).

    Current version: amonet-douglas-v1.2.zip


    NOTE: This process does not require you to open your device, but should something go horribly wrong, be prepared to do so.


    NOTE: This process will modify the partition-table (GPT) of your device.


    NOTE: Your device will be reset to factory defaults (including internal storage) during this process.


    What you need:
    • A Linux installation or live-system
    • A micro-USB cable

    Install python3, PySerial, adb, fastboot dos2unix. For Debian/Ubuntu something like this should work:
    Code: 
    sudo apt update
sudo add-apt-repository universe
sudo apt install python3 python3-serial adb fastboot dos2unix

    1. Extract the attached zip-file "amonet-douglas-v1.1.zip" and open a terminal in that directory.


    NOTE: If you are already rooted, continue with the next step, otherwise get mtk-su by @diplomatic from here and place (the unpacked binary) into amonet/bin folder


    2. Enable ADB in Developer Settings

    3. Start the script:
    Code: 
    sudo ./step-1.sh

    Your device will now reboot into recovery and perform a factory reset.

    NOTE: If you are on a firmware newer than 5.6.4.0, a downgrade is necessary, this requires bricking the device temporarily. (The screen won't come on at all)
    If you chose the brick option, you don't need to run step-2.sh below:


    Make sure ModemManager is disabled or uninstalled:
    Code: 
    sudo systemctl stop ModemManager
sudo systemctl disable ModemManager


    WARNING: Do not use bootrom-step-minimal.sh if you bricked using brick(-9820).sh!
    You will need to use bootrom-step.sh.

    After you have confirmed the bricking by typing "YES", you will need disconnect the device and run
    Code: 
    sudo ./bootrom-step-minimal.sh
    Then plug the device back in.

    It will then boot into "hacked fastboot" mode.
    Then run
    Code: 
    sudo ./fastboot-step.sh



    NOTE: When you are back at initial setup, you can skip registration by selecting a WiFi-Network, then pressing "Cancel" and then "Not Now"
    NOTE: Make sure you re-enable ADB after Factory Reset.


    4. Start the script:
    Code: 
    sudo ./step-2.sh

    The exploit will now be flashed and your device will reboot into TWRP.

    You can now install Magisk from there.


    Going back to stock
    Extract the attached zip-file "amonet-douglas-return-to-stock.zip" into the same folder where you extracted "amonet-douglas-v1.0.zip" and open a terminal in that directory.
    You can go back to stock without restoring the original partition-table, so you can go back to unlocked without wiping data.
    Just use hacked fastboot to
    Code: 
    sudo fastboot flash recovery bin/recovery.img

    If you want to go back completely (including restoring your GPT):
    Code: 
    sudo ./return-to-stock.sh

    Your device should reboot into Amazon Recovery. Use adb sideload to install stock image from there. (Make sure to use FireOS 5.6.4.0 or newer, otherwise you may brick your device)

    Important information

    In the new partitioning scheme your boot/recovery-images will be in boot_x/recovery_x respectively, while boot/recovery will hold the exploit.
    TWRP takes care of remapping these for you, so installing zips/images from TWRP will work as expected.

    Don't flash boot/recovery images from FireOS (FlashFire, MagiskManager etc.) (If you do anyway, make sure you flash them to boot_x/recovery_x)

    Should you accidentally overwrite the wrong boot, but your TWRP is still working, rebooting into TWRP will fix that automatically.

    TWRP will prevent updates from overwriting LK/Preloader/TZ, so generally installing an update should work without issues (only full updates, incremental updates won't work).

    For ROM developers there is still an option to overwrite these, which should only be done after thorough testing and if needed (LK should never be updated).

    It is still advised to disable OTA.


    Very special thanks to @xyz` for making all this possible and putting up with the countless questions I have asked, helping me finish this.
    Special thanks also to @diplomatic for his wonderfull mtk-su, allowing you to unlock without opening the device.
    Thanks to @t0x1cSH and @breakfastofsecrets for testing.
    View
    18
    D
    deverro
    Yesterday i managed to root updated FireOS and install Lineage 12.1, so, here's my story :D

    Version 5.6.6.0 build 654620620,
    on Linux KDE Neon.

    1. Installed python3, PySerial, adb, fastboot dos2unix as described in this and other posts.
      Code: 
      sudo apt update
sudo add-apt-repository universe
sudo apt install python3 python3-serial adb fastboot dos2unix
    2. Downloaded the following attachments from the first post : amonet-douglas-v1.2.zip and brick-douglas.zip
    3. Extract both files to the same folder
    4. Enable Developer options and enable ADB (inside debugging options) on Amazon tablet
    5. Plug in the tablet (has to be turned on)
    6. Now comes the commands execution part. So, open the terminal in Linux (lines that start with // are comments and should not be run from command line - if you copy paste)

      Code: 
      sudo systemctl stop ModemManager && sudo systemctl disable ModemManager
      Code: 
      adb devices
// there should be an item listed
// to be sure, you can unplug and run it again, if it's empty, 
// ou know tablet can connect, so plug in the tablet back
      Code: 
      adb reboot bootloader
// reboots the tablet and awaits commands
      Code: 
      sudo ./brick.sh
// type YES, hit enter
// it will take a couple of minutes (around 3-5min in my case)
// watch the tablet for success message, it should be displayed there if everything works
// but also, watch your terminal...if it gives you error message similiar to:
// ==> [I][U]failed with error message that it can't write somewhere[/U][/I]
// you have to try with brick-9820 script
      Code: 
      sudo ./brick-9820.sh
// it will take a couple of minutes, similar to above step

      NOTE : after either of the above commands (which one succeeds) POWER OFF THE TABLET and DO NOT try to turn it back on. It should stay powered off!!

      Code: 
      sudo ./bootrom-step.sh
// this will take some time (in my case around 5-10 minutes)
// will give you message similar to "awaiting device connection" and nothing else...
// although nothing seems to happen, just wait a bit and watch the terminal, it will soon start displaying the process
// it should then reboot the tablet, but in my case, that did not happen, so i had to do it manually...
// NOTE that althought tablet seems to be "off", it isn't, so press power btn and hold for 5 sec to turn it off
// after that click and hold volume up button (when in portrait mode it is the right one, the one closest to power btn)
// and immediately after that press and hold the power btn until amazon logo shows itself
// it should then show in bottom left corner HACKED FASTBOOT after a few seconds

      Code: 
      sudo fastboot devices
// there should be a device listed
// if not, you should run (in the extracted directory that you are in):
./bin/fastboot devices
// if sudo fastboot devices does not show your device but ./bin/fastboot works, you have to edit the fastboot-step.sh file and change the fastboot commands to ./bin/fastboot
      Code: 
      sudo ./fastboot-step.sh
// takes a couple of minutes (1-3 min in my case)
// reboots the device

    after that you should be in TWRP :)

    NOTE when in TWRP:

    DO NOT RESTART tablet before the following
    (or amazon fire os will overwrite TWRP and you will be reset to factory default with fireOS, losing everything you've done and starting from scratch...
    when it happened to me, the brick-9820.sh didn't work anymore and had to use brick.sh script)

    -allow modifications
    -format data,system,cache partitions, go to wipe->advanced wipe-> repair/format (something like that), select each of the 3 partitions aformentioned and format to ext4
    -if you've done it correctly, there should not be any red warnings
    -after that go to wipe, select all partitions and wipe them (just to be sure)

    -tablet should be connected and TWRP should be left on

    on PC
    -download Lineage 12.1 ROM from https://forum.xda-developers.com/hd8-hd10/general/discussion-root-progress-fire-hd-8-t3743024
    -download opengapps from https://opengapps.org/
    - put them inside amonet-douglas-v1.2 folder where you've extracted the prior ZIP files (just to be clear, you can put them anywhere, but i like to keep it all inside the working directory)

    -go to terminal
    Code: 
    adb push lineage-12.1-20200614-UNOFFICIAL-douglas.zip /sdcard
adb push open_gapps-arm64-5.1-nano-20200624.zip /sdcard

    now the files are on the tablet
    - in TWRP go to INSTALL, go to /sdcard folder if not in it
    - first install Lineage ROM from zip
    - then install GApps from zip

    hope it works!
    I'm glad i've finally rooted it, thank you all for the great content here! :)
    View
    13
    V
    vendo
    Wire root process

    after updating my tablet to the latest version Fire OS 5.6.4.0 (build 636559820) which does not have SW root I have decided to open up the unit and use hardware method which works on all versions of firmware

    What you will need

    1. wire
    2. plastic tool as in the picture below to open the unit.
    3. linux machine, I used Raspberry Pi 3+ and Raspbian.
    MVIMG_20190920_171046.jpg


    Process:

    1. remove SD card from the fire HD to avoid breaking it during the opening process ( yes it happened to me, luckily just 16GB card )
    2. use plastic tool to detach display from plastic rear chassis. It is very easy and safe process.
    MVIMG_20190920_171059.jpg

    3. Remove 4 screws from the motherboard.
    4. detach digitizer ( yellow ) cable and rear camera using plastic tool.
    MVIMG_20190920_171327.jpg

    5. You can leave display flex cable, battery and speaker ( soldered ) connected.
    6. turn montherboard on the other side so it lays on the battery. There is a small adhesive pad on the left side of PCA, use plastic tool to start lifting the board from that side.

    MVIMG_20190920_171508.jpg

    MVIMG_20190920_171533.jpg


    7. find pad TP28 and prepare you Linux PC now

    8. DOwnload amonet-douglas-v1.1.zip from OP of the thread , extract.
    9. run, it will take a while to update your linux distribution to the latest version.
    Code: 
     sudo apt update
       sudo add-apt-repository universe
       sudo apt install python3 python3-serial adb fastboot dos2unix
    10. Get your self into the Amonet folder ( most licely Downloads/Amonet ) folder where you extracted ZIP from OP.
    11. run
    Code: 
     sudo ./bootrom-step.sh
    12. you should see this msg on the screen
    Code: 
    [2019-02-07 14:35:59.478924] Waiting for bootrom

    13 Now here is the tricky part which will require some practice. You have to short TP28 with grond ( the big pad neer TP28 ) and while doing it connect USB cable to the PC. Here is how I did it.
    IMG_20190920_171622.jpg

    IMG_20190920_171659.jpg

    14. So I was holding the wire in the left hand and used right hand to plug slowly USB cable into the montherboard. ( not easy I know, but you will get there )
    15. If you did it right you will see a message on the screen to Release the short wire and hit ENTER.
    16. wait till the scripts does its think and when you see this you are in fasboot. Look at the scrren, you should see AMAZON logo and small text on the bottom "fastboot xyz etc..." Don1t unplug table, keep going.
    Code: 
    [2019-02-07 12:11:05.621357] Reboot to unlocked fastboot.
    17. run this script
    Code: 
    sudo ./fastboot-step.sh
    18. Your unit should boot into TWRP
    19. Assemble back the unit so digitizer will work.
    20 boot into TWRP and install Lieage, GAPPS and Magisk. Install Lineage ZIP file from here. https://forum.xda-developers.com/hd8-hd10/orig-development/rom-lineage-12-1-t3953677
    View
    7
    D
    dl360
    RagManX said:
    I was definitely on 9920 (exactly:FireOS 5.6.4.0 (636559920)). Was thinking I was stuck without an unlock method. I did the brick.sh script, then (and here's where my "some problems" comes in - my own error) without paying attention ran the wrong script as the next step after intentionally bricking my tablet. I don't know what state my table was in after doing that, but it wasn't booting into FireOS and I didn't have TWRP. So, not knowing what else to do, I tried flashing the latest official FireOS from the site I linked above. When I rebooted after doing that, I had a working FireOS and going into settings showed me on FireOS 5.6.4.0 (636558520).

    At this point, since I was on a TWRP-able OS, I just started over with step-1.sh and step-2.sh and was able to get where I ultimately wanted to be. I'm running SlimLP. Thanks to everyone who has worked through how to make this happen.
    Click to expand...
    Click to collapse

    Thank you sir! I thought 9920 was beyond saving so I did not bother. But after reading your post I decided to give it a try and the process was actually easier than I thought!

    Here's exactly what I did

    1. Code: 
      adb reboot bootloader
      to put into fastboot
    2. Run
      Code: 
      brick-9820.sh
      (yes, 9820. I tried brick.sh and it didn't work). In this step I actually got an error message on my computer, but it's OK as long as the DEVICE itself tells you to power off on the tablet screen. Power off and unplug the cable.
    3. Run
      Code: 
      bootrom-step.sh
      , NOT the minimal one. Plug in the cable again. It'll reboot at the end but your screen would stay blank.
    4. Run
      Code: 
      fastboot-step.sh
      , that's it I'm in TWRP !

    As a side note other than the brick step I actually ran the rest (1, 3 and 4) on a Mac (since I already got adb on it and did not want to setup the whole Android SDK on my Linux box again). The brick step I guess you have to be on Linux since the hacked fastboot only came as ELF in the zip. To run bootrom-step on Mac, simply comment out the modemanager check in main.py.
    View
    7
    O
    opec
    @willgaj did you enter bootloader mode on the Fire ? Powerdown and then Press VolUp + Power, wait until you see "Enter Recovery" , then select "Bootloader".

    Heres how it worked out for me:

    Files I used:

    amonet-douglas-v1.2.zip from first Page of this Thread:
    https://forum.xda-developers.com/attachments/amonet-douglas-v1-2-zip.4845269/
    Unpack the Archive to a separate Folder.

    brick-douglas.zip from first Page of this Thread:
    https://forum.xda-developers.com/attachments/brick-douglas-zip.4825253/
    Unpack the Archive to a separate Folder.


    MTK-su (i used te 64 bit) from here:
    https://forum.xda-developers.com/t/rapid-temporary-root-for-hd-8-hd-10.3904595/
    Unpack and copy to the MTK-su from the 64 Bit folder to the “bin” folders of the previous unpacked folders.


    Unlock steps:

    1. Reboot FireHD8 to Recovery (Power Off device, then hold VolUp + Power)

    2. Select Facotry Reset then Wipe Cache

    3. Reboot to Bootloader

    4. You will see the balck screen with “Fastboot” in the lower corner.

    5. Open Terminal from “brick-douglas” folder an enter “sudo ./brick.sh
    6. Check Display output for the “Disconnect USB and Powerdown” Message and do so when prompted
      (If theres an Error see below Step 12)

    7. Open Terminal from “amonet-douglas-v1.2” foder.

    8. Enter “sudo ./bootrom-step.sh"

    9. Reconnet USB

    10. Wait until the bootrom step is finished

    11. Enter “sudo ./fastboot-step.sh”

    12. You will end up in TWRP

    If theres an error let the FireHD Reboot and do the “Apps and Data Optimization” at the Welcome Install Screen Powerdown the FireHD and enter Bootloader again.
    • Open Terminal from “brick-douglas” folder
    • Enter “sudo ./brick-8920.sh”
    • Check Display output for the “Disconnect usb and powerdown” message and do so when prompted.
    • Enter “sudo ./bootrom-step.sh
    • Reconnet USB
    • Wait until the bootrom step is finished.
    • Enter “sudo ./fastboot-step.sh"
    • You will end up in TWRP


    Lineage OS installation:

    Prepare a Micro SD Card with: Lineage OS (Search the forum for the douglas (FireHD 8 7.Gen) or suez (FireHD 10 7Gen) Version, Gapps (ARM64, 7.1, nano) and Magisk and insert in FireHD.

    In TWRP Format Data and Wipe data, system, cache.

    Install Rom, gapps and magisk

    Reboot to Lineage OS



    Hardware Method:

    If you got stuck somewhere in the middle or the Exploit doesn’t work try the hardware method.

    I somehow bricked my HD10 , I think I disconnected the USB because I was to unpatient.

    For the Hardware method, you need to open the Tablet, use a prytool or a Creditcars / Knife to remove the backcover, just gently pry around the bezel until the screen pops out.

    You need to unscrew the mainboard and gently flip it over , on the HD10 I didn’t had to remove any wire , just be carefull with the speakers and put a piece of cardboard or plastic on the back between the mainboard and battery so it will not shorten or puncture the battery.

    Find the CLK pin (theres several pictures on the forum for your specific device) use a piece of wire or paperclip to shorten from a ground plane or the SD Card slot housing to the clock pin. This works best if you got someone that will help you.

    • Connect USB to the Tablet, but leave it unplugged on the Computer side.
    • Make sure the Tablet is powered down (Press and hold Power button for 30 seconds)
    • Open Terminal from “amonet-douglas-v1.2” foder.
    • Enter “sudo ./bootrom-step.sh”
    • Now shorten CLK to ground and hold it.
    • Ask a kind person to plug in the USB cable on the Computer now.
    • The Terminal will tell you to remove the wire when ready.
    • Press enter and wait for bootrom-step.sh to finish.
    • If an error during bootrom step occurs , just retry
    • After bootrom step is finished, enter “sudo ./fastboot-step.sh”
    • You will end up in TWRP

    PS: I directly installed LOS 14.1 on the HD8 , on the HD10 i i used LOS 12.1 because LOS 14.1 is missing Camera Support on the HD10 in fact loosing the camera shouldnt trouble too much as the picture quality is horrible anyways. As for now I am happy to have a running Android on the tabs and don´t need to worry amazon giving me headaches every few weeks when updating CrapOS and redndering my configuration unuseable , i got 14 HD8/10 deloyed around the house as input devices for Homeautomation (running Habpannel).

    One thing to mention when switching to LOS, is that you can´t use apps that need to be certified anymore, like Netflix, Banking etc.

    Good luck!

    PPS: Thanks a lot to k4y0z and his fellas for the great job!


    opec
    View

New posts