• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Root [WIP][DEV] Custom Recovery/Bootloader unlocking Work In Progress Thread

I read the entire article. I'm no Dev, but what I gathered is that if we might have luck if someone can follow Dan's instructions. I emailed Dan , asking for his help with unlocking LG msm8960 in general. Let's see what happens. PS let's not bug Dan, I emailed , let's give him a few days before anyone else attempts contact. Thanks
 
OptimusSlime said:
I read the entire article. I'm no Dev, but what I gathered is that if we might have luck if someone can follow Dan's instructions. I emailed Dan , asking for his help with unlocking LG msm8960 in general. Let's see what happens. PS let's not bug Dan, I emailed , let's give him a few days before anyone else attempts contact. Thanks
Click to expand...

Yea, please don't bug him. :) one email will do just fine.
 
he is well aware of yalls plight, he is a friend to the OUDHS and a really cool guy. last time i talked to him (this morning) he said he was going to be taking some time. he may or may not email you back if he does he will prolly let you know he is unable to assist you.
 
Well thanks for the update Shabby. You might ask him if Morningcall is the same as Trust zone. Since Qualcomm made the chips they may have used a very similar locking method, renamed for different carriers. I hope he gets some spare time, I have a feeling from reading his work that this project wouldn't be all that difficult especially as familiar as he seems to be with the chipset vulnerabilities.
 
I unpacked it awhile back but it was on my linux build. Ill see if it still boot tomorow and unpack it again. It was in my dropbox bc i hosted it for others but dont know where that went lol
 
Nope must of wiped my problematic build before i moved. Anybody can take this script ;
http://db.tt/uQxSts5a
And extract the boot.img on their linux And post it? Here is boot.img ;
http://db.tt/kpdg52HU
 
I read some specs on the Msm8960 and it seems the Trust zone is used in all the chips. I am guessing that Morning call is just a renamed Trust zone. I have a feeling that someone savvy could follow Dan's instructions and achieve similar results for LG phones.

Edit: The good news is that this vulnerability is not something LG can remove because we can always flash A) - F) and then utilize it.
 
Anybody with a test phone wanna delete the recovery pARtition (and use adb reboot recovery) to enter fastboot mode and try fastboot oem unlock,fastboot oem get_unlock_data and fastboot getvar all then post results? I have everything on my phone and cannot factory reset as this will reset the phone! If my girl gets a new phone i will have a test phone lol
 
I have a Motion with a cracked screen, perfect for this. I can check when I get home tonight if no one else has.

I bet we have this wide open within a week or two following Dan's work, or a few hours if he takes pity on us and helps ;-)

I will need basic info on deleting the Recovery Partition as well as any other tips you may have. BTW... will my phone be bricked after this? Like... does deleting the Recovery make the phone un-unbrickable?
 
OptimusSlime said:
I have a Motion with a cracked screen, perfect for this. I can check when I get home tonight if no one else has.

I bet we have this wide open within a week or two following Dan's work, or a few hours if he takes pity on us and helps ;-)
Click to expand...

The sooner you get the motion's bootloader unlocked the sooner we get the spirit 4g unlocked. :D
 
My guess is that the procedure is identical...

I really wish my Motion and Spirit used the same battery... would be nice to have a spare ;-)
 
It will not be bricked though it will be factory reset meaning you will lose your data on sdcard (not the external).also looking for someone to split that boot.img. i will reinstall linux tommorow with the version 10 that worked well for me before.
 
Cool. I have no issues donating my Motion to the cause, just didn't want to kill it in vain :-) Please PM me with instructions and I will check it out tonight.
 
Didn't Sammyz delete the recovery partition on his phone already? I remember someone testing the "fastest oem unlock". Whoever it was should know how to do it as well as restoring it afterwards.
 
Zeest did it and got fastboot. Make a copy of the file as well. You will most likely simply use the unbrick method to recover or adb push that file back in.
 
You must log in or register to reply here.
Back
Top Bottom