Unlocking bootloader/ rebooting in edl without testpoint Vivo Y31 2021

[xiaoleGun]

it

it's clearly that iqoo bootloaders are different...

you can create 1G file filled with 1 with this

< /dev/zero tr '\000' '\377' | head -c 1G > filledwith1.img

if you're not linux user then you can do it in termux apk ob your phone

I generated an img file in wsl2 and flashed the mobile phone under windows. It also checks for signature errors.

 

[wenti2002]

try usb 2.0 port

Thank you so much.I tried to use usb2.0 port but it didn't work .Also there are more and more vivo or iqoo devices succeeding now,even though they are much older than iqoo neo5.So I suspected that it is because that iqoo neo5 is made by wingtech(an odm company).It may need to reverse the xboot.

 

[Pervokur]

I generated an img file in wsl2 and flashed the mobile phone under windows. It also checks for signature errors.

file isn't uploading....
mb you need header(first 16kb) from any normal ext4 img file
dd if=./authentic.img of=./filledwith1.img bs=1K count=16

 

[xiaoleGun]

file isn't uploading....
mb you need header(first 16kb) from any normal ext4 img file
dd if=./authentic.img of=./filledwith1.img bs=1K count=16

Do you mean I use any normal img to execute commands?

I got a file with a size of 16k.

Then, many devices in China have successfully achieved root through your method, such as iqoo 9pro, iqoo 9, iqoo 8pro, iqoo 8, vivo X60, vivo x60pro and other devices. Thank you for your work. However, there are no successful examples of devices using sm8250.

 

[Paradise.]

文件没有上传......
mb 您需要来自任何普通 ext4 img 文件的标题（前 16kb）
dd if=./authentic.img of=./filledwith1.img bs=1K count=16

can you create and upload this file, i have the same problem, thanks

 

[xiaoleGun]

can you create and upload this file, i have the same problem, thanks

I've tested and verified that it still doesn't work.

 

[Paradise.]

文件没有上传......
mb 您需要来自任何普通 ext4 img 文件的标题（前 16kb）
dd if=./authentic.img of=./filledwith1.img bs=1K count=16

It shows that it has been unlocked, but it is not unlocked after restarting, I am very confused, my model is also vivoiqooneo5

 

[xiaoleGun]

View attachment 5621561

It shows that it has been unlocked, but it is not unlocked after restarting, I am very confused, my model is also vivoiqooneo5

I don't know. I haven't even seen okey

 

[Pervokur]

Do you mean I use any normal img to execute commands?

I got a file with a size of 16k.

Then, many devices in China have successfully achieved root through your method, such as iqoo 9pro, iqoo 9, iqoo 8pro, iqoo 8, vivo X60, vivo x60pro and other devices. Thank you for your work. However, there are no successful examples of devices using sm8250.

you need to copy first 16kb of img file that you have used in the begging to file filled with 1
if - input file, use name of you normal img file
of - outputfile, use name of generated file filled with 1
they should be in the same folder

 

[Pervokur]

View attachment 5621561

It shows that it has been unlocked, but it is not unlocked after restarting, I am very confused, my model is also vivoiqooneo5

did you activate unlocking BL in developers options?
what is result of
fastboot oem device-info

 

[Paradise.]

did you activate unlocking BL in developers options?
what is result of
fastboot oem device-info

It looks like this after running

 

[Pervokur]

I don't know. I haven't even seen okey

well, at least device start uploading img file even with locked BL
When you enter unlock_vivo in 2nd terminal BL thinks, that img file is a signature file. Too big file breaking the logic of signature check.
But it doesn't work for you. Mb img file shoud be filled with special characters, or maybe it will not work at all.

 

[Paradise.]

好吧，至少设备即使在锁定 BL 的情况下也开始上传 img 文件
当您在第二个终端输入 unlock_vivo 时，BL 认为该 img 文件是签名文件。太大的文件破坏了签名检查的逻辑。
但这对你不起作用。Mb img 文件应该填充特殊字符，否则它可能根本不起作用。

So what should I do

 

[xiaoleGun]

well, at least device start uploading img file even with locked BL
When you enter unlock_vivo in 2nd terminal BL thinks, that img file is a signature file. Too big file breaking the logic of signature check.
But it doesn't work for you. Mb img file shoud be filled with special characters, or maybe it will not work at all.

Maybe, at least it doesn't work on devices using sm8250 (at present)

 

[Pervokur]

So what should I do

if I had such phone I would try brute force method
1. generate img file filled with special characters loke \n \r etc
2. send it to BL
fastbooot flash ...
3. try to unlock
fastboot vivo_bsp

see results, mb it will succeed or at least errors would be different

 

[Pervokur]

Maybe, at least it doesn't work on devices using sm8250 (at present)

there are alot smart people in China, someone could find right method...

 

[Paradise.]

如果我有这样的手机，我会尝试蛮力方法
1.生成填充特殊字符的img文件 loke \n \r等
2.发送给BL
快速启动闪...
3.尝试解锁
快速启动vivo_bsp

查看结果，mb它将成功或至少错误会有所不同

Actually I haven't learned linux commands and I don't know how to create this file。。。。

 

[Paradise.]

there are alot smart people in China, someone could find right method...

i think i can give it a try

 

[xiaoleGun]

there are alot smart people in China, someone could find right method...

i used the mp4 file, which is actually composed of strings. i renamed it to system.img sends it to BL and executes fastboot vivo_bsp unlock_vivo, the device will restart immediately, and the error is:

status read failed (Too many links)

is it possible that some protective measure of the device makes it restart, resulting in the computer unable to read the state?

 

[xiaoleGun]

there are alot smart people in China, someone could find right method...

Supplement:
According to the latest news from coolapk, iqoo neo3 (865) can unlock BL under Android 10