[UNLOCK][ROOT][TWRP][UNBRICK] Fire TV Stick 3 and Fire TV Stick Lite (sheldon/p)

[Dismal.]

If it comes directly from Amazon there is a chance the newer firmware is already installed on the device and you will not be able to take advantage of the exploit.

Is it likely? If so is there a way to downgrade

 

[bluedisc]

I flashed an old firmware, and I cannot drop files on to the firestick or use developer mode. The interface is not displaying the settings correctly.

I am trying to find a way to drop the new firmware files on to the firestick, which I can't do right now.

Does anyone know where I can find a three way microusb splitter? I need to use it for USB drive (get rom files on to firestick with trwp), keyboard (use twrp), and power.

 

[Dismal.]

To avoid any possibility of it updating I want to avoid turning the device on before it is exploited. Does the script that is run check the OS version of since it is a new device I won't need to worry about compatibility

 

[Sus_i]

Assuming it isn't already a new firmware...

You can still get vulnerable devices, even from amaz., if you have some luck

I flashed an old firmware, and I cannot drop files on to the firestick or use developer mode. The interface is not displaying the settings correctly.

Maybe use the boot-recovery script from kamakiri folder and use adb to push files via usb cable.

Does the script that is run check the OS version of since it is a new device I won't need to worry about compatibility

You don't need to check/boot the OS, since the bootrom script will show a special error message if the stick is patched...

 

[ozfunghi]

You can still get vulnerable devices, even from amaz., if you have some luck

Which is why you shouldn't assume.

Is it likely? If so is there a way to downgrade

Likely, not certain. No way to downgrade so far afaik.

 

[Sus_i]

Which is why you shouldn't assume.

Thats BS.
I was answering to the following question, and I said yes, try it first...

Since he gets the new device anyways, why he shouldn't try the unlock first?
It doesn't hurt at all and after that we don't have to assume something, since he will see if it's patched or not...

they will give me another one, can I root it without even attach for the first time on tv? So I can avoid update?

 

[Dismal.]

You can still get vulnerable devices, even from amaz., if you have some luck

Maybe use the boot-recovery script from kamakiri folder and use adb to push files via usb cable.

You don't need to check/boot the OS, since the bootrom script will show a special error message if the stick is patched...

I ordered it from Amazon will it more likely than not be vulnerable

 

[Sus_i]

I ordered it from Amazon will it more likely than not be vulnerable

Since you ordered it already, check it out. You will see it within seconds. Nobody knows if your stick is old or new warehouse stock. Depends from which box or pallet the warehouseman grabs your stick.

If you want to be sure, walk into shops and compare serial numbers, try to find old stock.

 

[Dismal.]

Since you ordered it already, check it out. You will see it within seconds. Nobody knows if your stick is old or new warehouse stock. Depends from which box or pallet the warehouseman grabs your stick.

If you want to be sure, walk into shops and compare serial numbers, try to find old stock.

If I don't get one how do I know if it's old by serial number. What will a older serial look like

 

[Sus_i]

If I don't get one how do I know if it's old by serial number. What will a older serial look like

You can ask some users here or in a new thread for the serial from vulnerable sticks, then compare it with the one you get from amazon. Take a look in this thread for serials, can't recall but I guess I saw some serials somewhere.

 

[ozfunghi]

Thats BS.
I was answering to the following question, and I said yes, try it first...

Since he gets the new device anyways, why he shouldn't try the unlock first?
It doesn't hurt at all and after that we don't have to assume something, since he will see if it's patched or not...

It's not BS, it's a fact.

You answered a question about rooting. You answered yes with a thumbs up and to try to unlock first. This gives the impression that it would all work out. It might very well not. Hence my response, assuming it doesn't have the new firmware. That's all i said. You then acknowledged that it is still possible to get the old version "with some luck".

In conclusion, i was simply trying to be clear that there is a condition to be met and to temper the expectations of it working since it all depends on the version he gets. No reason to be offended.

 

[Sus_i]

It's not BS, it's a fact.

You answered a question about rooting. You answered yes with a thumbs up and to try to unlock first. This gives the impression that it would all work out.

"try the unlock first" isn't the same as "the unlock will work fine"
even with a thumbs-up infront of it.
The term "try" says it all, in my opinion.

In conclusion, i was simply trying to be clear that there is a condition to be met and to temper the expectations of it working since it all depends on the version he gets. No reason to be offended.

Liked your posting yesterday, for pointing this out...

Which is why you shouldn't assume.

but forgot to like this one, really helpful and very nice. Thank you very much.

 

[ChriMo]

... successfully rooted/flashed it (DSN number G071CQ132062xxxx).

DSN G071CQ152287xxxx RuntimeError: ERROR: Serial protocol mismatch, expected 0000 got 2001

Like others said, buying new tv sticks unpatched is becoming impossible. I bought two new ones and I get the serial protocol mismatch error, expected 0000 got 2001. We will need to find a new way to unlock the bootloader.

@Miguel_hrvs : can you still check the DSN number? Would be interesting since I still found G071CQ132062xxxx sheldon in a store and wonder if my assumption those might still be unlockable is correct?

 

[Dismal.]

I have 2 questions:
1. When I have used TWRP it says swipe to confirm flash how do you swipe on a remote or is it different.
2. After it is unlocked is fire os still accessable to download the zip to be able to flash it. Or must it be transferred another way?

 

[Sus_i]

1. When I have used TWRP it says swipe to confirm flash how do you swipe on a remote or is it different.

You would need an otg adapter and an usb mouse or even better a keyboard with touchpad, if you like to use the TWRP GUI.
Another option is to use TWRP commandline via ADB shell over an usb connection to your PC. In this case there is no need for any swipes...

2. After it is unlocked is fire os still accessable to download the zip to be able to flash it. Or must it be transferred another way?

If you don't disable OTA updates, the fireOS will download and install full updates via TWRP.
You will see some errors too, since the fireOS downloads partial diff updates first, which won't install via TWRP.

 

[Dismal.]

You would need an otg adapter and an usb mouse or even better a keyboard with touchpad, if you like to use the TWRP GUI.
Another option is to use TWRP commandline via ADB shell over an usb connection to your PC. In this case there is no need for any swipes...

If you don't disable OTA updates, the fireOS will download and install full updates via TWRP.
You will see some errors too, since the fireOS downloads partial diff updates first, which won't install via TWRP.

If it updates or doesn't matter since it already unlocked correct

 

[bluedisc]

nvm I got the rom on the stick

 

[Dismal.]

Is this how I should do it?
View attachment 5733965

if not, what are the steps?

This is for Sheldon not mantis

 

[ChriMo]

All who have bought in the last months please report:
1) model (sheldon/p)
2) DSN number first 4-6 numbers after G071CQ (label at the bottom of the package, maybe different for sheldonp)
3) unlocking successful or unsuccessful

So maybe we can use this number to avoid opening the package when unlocking is unlikely, so to easier exchange for an older version.

 

[Sus_i]

All who have bought in the last months please report:
1) model (sheldon/p)
2) DSN number first 4-6 numbers after G071CQ (label at the bottom of the package, maybe different for sheldonp)
3) unlocking successful or unsuccessful

So maybe we can use this number to avoid opening the package when unlocking is unlikely, so to easier exchange for an older version.

About #2, You're right, sheldonp is different, my lite stick got G071CQ while the sheldonp got G071EL.
Maybe it's best to know the first string too, could be that there are more variations... idk.