[UNLOCK][ROOT][TWRP][UNBRICK] Fire TV Stick 3 and Fire TV Stick Lite (sheldon/p)

[fabiohss]

Hello guys.

Does anyone have any Netflix version working on this ROM version?

Thank you!

 

[R1N4x]

So there is no way to "free" a current FireTV Stick Lite?
Not even a hardware way?

 

[Rortiz2]

So there is no way to "free" a current FireTV Stick Lite?
Not even a hardware way?

No.

 

[lionleggend]

no because AM

So there is no way to "free" a current FireTV Stick Lite?
Not even a hardware way?

has blocked all the various accesses that the system could offer to flash a new rom over time. These changes are:
- Full patch of the exploit kamakiri used;
- Preventing intervention on system packages via shell,
- launcher lock

 

[Sumitsingh247]

Hi guys i have amazon fire stick 3rd generation from tata binge. When ever i try to run any app that stuck on the recharge.
” Error May have occurred because your tatasky account is inactive or activate Tata sky Binge subscription to continue”
I cant even watch youtube please help me with any custom OS or any way to get rid off the tata binge.

 

[Germanandroidplayer]

Is this solution (e-MMC Hardware Root) possible for the firetv stick lite
(sheldon/p)?

(provided you know the connections for the memory)

 

[Germanandroidplayer]

Here is the Datasheet from the eMMC:

KLM8G1GETF-B041, KLM8G1GETF-B041 Datasheet, KLM8G1GETF-B041 PDF - Samsung

KLM8G1GETF-B041, KLM8G1GETF-B041 Datasheet, KLM8G1GETF-B041 PDF, embedded MMC

www.datasheet-pdf.com

 

[R1N4x]

I've read something about blown eFuses wich prevent older software to boot. So a simple eMMC reflash wouldn't work if I'm correct?

 

[Germanandroidplayer]

see one Page 12 from the Datasheet the part 5.5 for Secure Write Protection.

But somehow it has to work, otherwise Amz wouldn't be able to update the operating system.

 

[R1N4x]

They are, but only with newer software.
And newer software has the exploits patched that the devs here use to gain root and flash "unsigned" (by amazon) software.

If I understand correctly there is no such thing as a write protection. More like the older software looks for the eFuses and expects them to be in a certain state, if that's not the case it will refuse to boot. Thats why you can't go back to the old firmware after updating to the latest even with a custom recovery.

In order to get things working for us you need to find an exploitable thing in the current firmware that would give us root and/or the way to flash a different recovery.

That's what I understood from all the stuff posted here and on other sites.
I just remain waiting for one of the devs here to have enough free time to spend on these things

 

[Sus_i]

I've read something about blown eFuses wich prevent older software to boot. So a simple eMMC reflash wouldn't work if I'm correct?

Kamakiri from OP may work even on a patched stick if you are able to downgrade the preloader at boot0 partition to a vulnerable version...
RPMB will ofc prevent booting, but the kamakiri handshake comes most likely infront the replay check, so kamakiri can access and downgrade the RPMB, do the unlock and install twrp.
This is untested, because there are still vulnerable sticks out there, still easy to find.

 

[NeelFromYT]

I am on software version 7.6.2.4. Is there any way to install TWRP on this?

 

[babiich]

how can help me to unlock black shark 5 pro

 

[NeelFromYT]

Go to the thread for your device

 

[babiich]

Go to the thread for your device

can you help me to unlock black sh1rk 5 pro

 

[NeelFromYT]

can you help me to unlock black sh1rk 5 pro

No I can't. Go to thread for your own device. You're in the developer thread for the fire tv stick

 

[babiich]

No I can't. Go to thread for your own device. You're in the developer thread for the fire tv stick

ah thnks im sorry

 

[matteo555]

for those who encountering this error :

RuntimeError: ERROR: Serial protocol mismatch, expected 0000 got 2001

is there a possibility to recover the stick by flashing a stock_rom and let the device working again ?
thanks

 

[Dismal.]

Not even close to similar? lol

Take a look at your picture and compare it with the mantis one from here (see the small 'picture in picture' on the right side of the pic, i.e. the part with the MTK ARM chip):

Solution Hardware Unblock Fire TV Stick 4K (mantis)

Sorry my english bad . Caution it is hardware solution . Need change emmc . I share isp pinout Fire TV Stick 4K (mantis) . Ver new amazon disable Brom mode for cpu . Only mtk preload port. Then testpoint pc no view port . Only solution is...

forum.xda-developers.com

It's the same layout.

You would need to compare the left part of the mantis pic too, i.e. the part with the desoldered eMMC, can't see that part on your picture.

Could I just short the same pins shown in mantis like you would to unlock a kanak fire tablet?

 

[ChriMo]

4th Unlock DSN REPORT UPDATE

unlocking OK successful FireOS < 7.2.7.3
sheldon mid Sept. 2022 UE Central Europe, DSN G071CQ13206..... China, unlocking OK successful
sheldon End. Oct. 2022 MW Central Europe, DSN G071CQ13207..... China, unlocking OK successful
sheldonp mid. Nov. 2022 MW Central Europe, DSN G071EL13141..... China, unlocking OK successful
sheldonp Dec. 2022 @is0xxx Amazon G071EL0214260M6T & G071EL0214260M64
sheldon Feb. 2023 Austria MM @manu_jedi G071EL11132....

Unknown / shelf DSN
sheldonp mid. Oct. 2022 MW Central Europe, DSN G071EL1520...... China, not on sale / not buyed
sheldonp mid. Oct. 2022 MW Central Europe, DSN G4N1EL0614...... Vietnam/China, not on sale / not buyed

not working / unlocking UNSUCCESSFULL / Serial protocol 2001 / FireOS > 7.2.7.3
sheldon begin Oct. 2022 UE Central Europe, DSN G071CQ15228..... China, unlocking UNSUCCESSFULL
sheldon/p Nov. 2022 @dp-FH, G071EL0323520... and G4N1EL0323520...
sheldon Nov. 2022 @usstreet G071EL0323220...
sheldon Dec. 2022 @Dismal. GO71EL16233601KJ
sheldonp Dec. 2022 @disco_y2k G4N1CQ07234313BN UPC 840080593296