[Q] Bootloader with password - Project Ara General

Even if you have any anti theft installed in your android phone and lose your phone , the stealer can easily wipe off everything by accessing bootloader with volume keys. By this way you cannot track your phone.:crying:
Bootloader is written specific to the hardware by manufacturers but there are number of open source bootloaders like u boot. Now my question is how to put password for bootloader?, What programming language is used in bootloaders.?Where can I find source code?

Hi
agnelvishal said:
Even if you have any anti theft installed in your android phone and lose your phone , the stealer can easily wipe off everything by accessing bootloader with volume keys. By this way you cannot track your phone.:crying:
Bootloader is written specific to the hardware by manufacturers but there are number of open source bootloaders like u boot. Now my question is how to put password for bootloader?, What programming language is used in bootloaders.?Where can I find source code?
Click to expand...
Click to collapse
Try searching from /system. theres used two languages in bootloader, java and java C.

agnelvishal said:
Even if you have any anti theft installed in your android phone and lose your phone , the stealer can easily wipe off everything by accessing bootloader with volume keys. By this way you cannot track your phone.:crying:
Bootloader is written specific to the hardware by manufacturers but there are number of open source bootloaders like u boot. Now my question is how to put password for bootloader?, What programming language is used in bootloaders.?Where can I find source code?
Click to expand...
Click to collapse
But not everyone can do this, But it's helpful.

Can you still access the bootloader if device encryption is switched on? Don't you need to enter the password?

thelous said:
Try searching from /system. theres used two languages in bootloader, java and java C.
Click to expand...
Click to collapse
I have not checked but I think boot loader is written in assembly language as it deals with hardware. If anyone has a rooted device, you can check and reply here.

Related

How to unlock the honor 5X bootloader

I just confirmed this is working with a retail unit of honor 5X - US model (KIW-L24)
Visit the EMUI global site - http://emui.huawei.com/en/plugin.php?id=hwdownload&mod=list
Click Unlock Bootloader
Sign in to Huawei ID
Accept the unlocking agreement
Enter device information and click Submit
Get code and enjoy
If you experience any error, please use the contact us link on the page.
Please read the full Unlocking Agreement:
"Thank you for supporting Huawei Device products. Huawei Device has granted bootloader unlocking permission for its latest mobile phones, tablets and official firmware. Unlocking the bootloader enables you to flash third-party firmware to your device.
However, unlocking the bootloader carries the following risks:
1.Huawei ensures that product hardware and software are optimized for your device, but after you unlock the bootloader, Huawei cannot guarantee optimum performance or that all functions will operate normally.
2.Most third-party firmware has not been adequately tested and has poor compatibility with Huawei devices, which will affect your device’s stability or even cause damage to your device’s hardware. For example, some firmware may result in excessive power consumption that reduces your device’s standby time and battery lifespan, or the RF performance of your device may be impaired, which may lead to network search failure or poor call quality. Some firmware may even prevent your device from starting and you will not be able to restore the system, meaning that your device will be rendered unusable.
3.Third-party firmware may be vulnerable to malicious software attacks. For this reason, data security cannot be guaranteed. For example, your personal data such as contacts, messages, and location data may be disclosed. Malicious software may also send SMS messages to subscribe to paid services or make calls in the background, incurring inadvertent charges. Malicious software may even be used by others to monitor your device.
4.Some functions will no longer work after you unlock the bootloader. For example, you will no longer be able to use Digital Rights Management (DRM) keys and digital content that you have purchased. Upgrading software using Firmware Over-The-Air (FOTA) or a microSD card may fail or your device may not function properly after upgrading.
Unlocking the bootloader may result in unpredictable consequences for your device, including but not limited to those listed above. The user shall be held responsible in the event that the device malfunctions and cannot be recovered. Huawei will record your unlock request information; for software and hardware failures arising as a result of unlocking the bootloader, Huawei repair centers can provide repair services charged at the standard rate for repair work outside the scope of the warranty."
What do we do with the Unlock code? Is there a computer program needed to unlock? I have code but am not sure what to do with it now.
cyrusalmighty said:
What do we do with the Unlock code? Is there a computer program needed to unlock? I have code but am not sure what to do with it now.
Click to expand...
Click to collapse
Boot into the bootloader then type this command "fastboot oem unlock code"
Put your code where it says code
deadman96385 said:
Boot into the bootloader then type this command "fastboot oem unlock code"
Put your code where it says code
Click to expand...
Click to collapse
Thanks but How do you boot into the boot loader? Is it done on the phone or on computer?
Edit-I don't have computer available now.
cyrusalmighty said:
Thanks but How do you boot into the boot loader? Is it done on the phone or on computer?
Edit-I don't have computer available now.
Click to expand...
Click to collapse
You need a computer to unlock it through adb and fastboot
deadman96385 said:
You need a computer to unlock it through adb and fastboot
Click to expand...
Click to collapse
OK. I figured that much. So I got started on a laptop but I got errors. I already "Enabled OEM Unlock" after I got an error (Necessary to Unlock FRP).
Then I got another error that doesnt show much. It says FAILED (remote: Invalid Key, unlock fail) finished 18 sec.
Any ideas what Im doing wrong??
Edit- Nevermind I unlocked it fine. Bootloader is unlocked now.
I cant adb into the phone. It gives me these errors:
adb reboot bootloader
adb server is out of date. killing...
* daemon started successfully *
error: device not found
Erick-kewone said:
I cant adb into the phone. It gives me these errors:
adb reboot bootloader
adb server is out of date. killing...
* daemon started successfully *
error: device not found
Click to expand...
Click to collapse
YouTube my friend how to install adb.
I installed on Windows 10 64 bits and working.
Sent from Honor 5X using Tapatalk
wimbet said:
I just confirmed this is working with a retail unit of honor 5X - US model (KIW-L24)
Visit the EMUI global site - http://emui.huawei.com/en/plugin.php?id=hwdownload&mod=list
Click Unlock Bootloader
Sign in to Huawei ID
Accept the unlocking agreement
Enter device information and click Submit
Get code and enjoy
If you experience any error, please use the contact us link on the page.
Click to expand...
Click to collapse
Every time I have logged into the Huawei site, things look slightly different. I assume they are updating things. However, I cannot get to the unlock agreement. I visit the link to the EMUI global site, I click unlock the bootloader, then it no longer asks for my ID. Instead it comes up with a "Create Nickname" page. No matter what I enter, it says "HWLOGIN_NICKERROR". Hopefully someone else has run into this and can redirect me to the right location.
Thanks in advance!
*delete*
the site is all in a foreign language. I don't know how you guys are reading this
outlaw815 said:
the site is all in a foreign language. I don't know how you guys are reading this
Click to expand...
Click to collapse
Everything was in English for me. Maybe use Google translate?
I just click the link in OP and I go straight to page in English. Click unlock bootloader.
Then Log in next screen (or register with email if you haven't already). Do the unlock bootloader agreement.
Then complete form where you put S/N IMEI and more. Good luck
I keep getting this error screen after logging in once I press the unlock boot loader link. I have tried on multiple devices, browsers all the same thing. I made sure to select English as language as well.
Any ideas?
l0ud_sil3nc3 said:
I keep getting this error screen after logging in once I press the unlock boot loader link. I have tried on multiple devices, browsers all the same thing. I made sure to select English as language as well.
Any ideas?
Click to expand...
Click to collapse
I get the same thing. Ran Chrome Google Translate on it, but it's just a server message about being busy.
@wimbet can you provide any info on this or maybe give us a rough ETA of when the server will be available so we can unlock our devices? Thanks.
Click on Unlock Bootloader and takes me to login page. Username and password don't work. Try to retrieve password and get " No security email address, phone number, or question has been set." I can login into the honor 5x club site just fine. Try to re-register and it says my email address is already in use, but I can't get access. Very odd.
Still having the same issue here.
Seems like their website may have been down for 2+ days now. That really makes me want to unlock the bootloader and get the hell out of their software ecosystem that much quicker.
twavisdegwet said:
Still having the same issue here.
Seems like their website may have been down for 2+ days now. That really makes me want to unlock the bootloader and get the hell out of their software ecosystem that much quicker.
Click to expand...
Click to collapse
I had the same problem. Website would switch back to Chinese, and when I tried to go back to English I got the home screen or server busy (in Chinese). I finally just let it stay in Chinese and matched the fields with the English screen shot in the TWRP thread and I got through it and got the code. Have another problem with my phone's boot loader but that's for another thread.
outlaw815 said:
the site is all in a foreign language. I don't know how you guys are reading this
Click to expand...
Click to collapse
What country are you located in? The site should automatically serve the correct language for your region.
honordevice said:
What country are you located in? The site should automatically serve the correct language for your region.
Click to expand...
Click to collapse
I'm in California (USA) - I used Chrome on a Linux Mint system. Some of the site was in English and some was in Chinese.
Q: where to find "Product Serial number" ?

Lockscreen bypass

I need to recover data from a samsung galaxy s7 edge, but I don't know the code for unlocking the screen. There's a way to bypass this?
1. How could You forget a 4 digit pin code? Seriously.
2. Is it rooted? Any custom rom on it? Encryption?
ProtoDeVNan0 said:
1. How could You forget a 4 digit pin code? Seriously.
2. Is it rooted? Any custom rom on it? Encryption?
Click to expand...
Click to collapse
It isn't mine, it was of a dead person and the family asks me to recover data but they don't know the pin.
It's fully original.
Then I'm not sure if it's possible.
If it didn't have encryption enabled (it's enabled by default by samsung) then You could flash TWRP and then flash a zip file which removes certain files in Data partition and well, unlocks the device (I've done it before when I broke my lock screen buttons). But with Encryption being enabled TWRP won't be able to read Data partition and yeah. I'm not sure if You can even access internal storage through TWRP.
Maybe try all possible combinations? Or the most popular ones.
Try this:
Flash TWRP(a detailed instruction is on XDA)
Tap on advanced and then file manager.
You should be able to see internal storage if it's not encrypted, and then just copy all files that You want to sd card or just mount usb storage.
But if the encryption covers Data and internal storage then I don't think You can do anything.
Like I said, in the worst case try using most popular code combinations and maybe one will work. But try that before flashing TWRP, cause TWRP might soft brick the device.
No. Who knows what you're really after? I'm totally against questions like these and would urge people not to answer. If it's really your own device, you have to deal with the consequences of forgetting a 4 digit number.
Not possible with encryption, only way is brute forcing it and it might auto wipe after 15 attempts
Really??? Xda is the first place someone with this situation would ask for help? First post? I'm calling BS.
If - hah - you are legit, the "dead" person's phone is still under warranty, therefore the "family" can take the phone to the dealer/network provider and get help there.
sounds very suspicious

Is there a way to root the phone without decrypting it?

I'm currently unrooted on locked bootloader, and I'd like to keep my phone encrypted.
I read that newer versions of TWRP work with an encrypted device, but can I unlock the bootloader while keeping the phone encryted?
The process of unlocking your bootloader will wipe it, not rooting it or loading twrp. Your phone will still be encrypted when your done unlocking the bootloader. I imagine it's a safety feature if someone steals your phone that it wipes it if they try breaking in by unlocking the phone.
JeffBea said:
The process of unlocking your bootloader will wipe it, not rooting it or loading twrp. Your phone will still be encrypted when your done unlocking the bootloader. I imagine it's a safety feature if someone steals your phone that it wipes it if they try breaking in by unlocking the phone.
Click to expand...
Click to collapse
Thank you! So I can unlock the bootloader and then flash TWRP while keeping the encryption?
Yes
So change the pin code used for accessing the encryption key (which can be different than the short screen unlock one)
Otherwise encryption is useless (default password is... "default_password")
rchtk said:
So change the pin code used for accessing the encryption key (which can be different than the short screen unlock one)
Otherwise encryption is useless (default password is... "default_password")
Click to expand...
Click to collapse
Yea you're right but if attempting to break into a phone through twrp with " default_password" as pass code won't work. It won't recognize that value
rchtk said:
So change the pin code used for accessing the encryption key (which can be different than the short screen unlock one)
Otherwise encryption is useless (default password is... "default_password")
Click to expand...
Click to collapse
dontbeweakvato said:
Yea you're right but if attempting to break into a phone through twrp with " default_password" as pass code won't work. It won't recognize that value
Click to expand...
Click to collapse
I'm pretty sure both are the same no matter what you do. The code you'll have to enter on TWRP will get set once first boot is done and pattern or pin or passcode is selected during setup. That's the key that'll let twrp decrypt the partitions. If you ever flag a new ROM and change the method, it'll also change for TWRP as well.
Jammol said:
I'm pretty sure both are the same no matter what you do. The code you'll have to enter on TWRP will get set once first boot is done and pattern or pin or passcode is selected during setup. That's the key that'll let twrp decrypt the partitions. If you ever flag a new ROM and change the method, it'll also change for TWRP as well.
Click to expand...
Click to collapse
Not sure if I understand correctly what you mean but decryption key can be different from unlock pin. There's an API to change the decryption key so there are apps to make a super long decryption key while still having a small unlock pin code CM even integrated this distinction in their settings menu.
People have asked this feature to google for ages (as well as reboot after x wrong pin code) but they are still waiting..
rchtk said:
Not sure if I understand correctly what you mean but decryption key can be different from unlock pin. There's an API to change the decryption key so there are apps to make a super long decryption key while still having a small unlock pin code CM even integrated this distinction in their settings menu.
People have asked this feature to google for ages (as well as reboot after x wrong pin code) but they are still waiting..
Click to expand...
Click to collapse
Now I see what you're talking about. The original postings looked like you guys were talking about them being different on stock.

How protect phone data when bootloader unlocked?

Hello,
I doesn't know if this is a real problem in newer Android versions.
I apologize if this problem is already solved; i'm out of Android development since a while...
From me the problem is to protect MY data if I loss the phone...
If my phone is password protected (and bootloader locked), a person that found the device can't use it directly.
It can unlock the bootloader (more or less easily) but the phone data is removed by the unlock process.
My data is sure!
But if the bootloader is unlocked the person that has found my phone can acess to the custom recovery (or load a custom recovery if I'm on stock recovery) then force a wipe of the device.
Due to that, all my security (fingerprint and lock code) was erased and the user can access to my phone and also to all the data stored in /sdcard.
My data isn't sure!
It exists any mode to use a custom ROM but maintaining my data sure?
(I'm not confidence with the Google remote device access)
Thanks in advance!
I think you'll be fine, as the data on your internal memory should be encypted, which is enabled by default!
I'll be honest and I mean no offense but your data is worthless. If someone steals your device the first things done are Sim removed and devices reset or powered off. Data thieves don't get the data from stolen devices. They get it from the places we give it freely. Like shopping stores and on line accounts.
Nobody can access your phone data the way you describe unless you also run your phone decrypted --which is not the default for Android or even for custom ROMs for that matter. When you boot into recovery on a phone that is encrypted TWRP asks for your pin number and without it your data is not accessible. But that doesn't mean a thief couldn't still wipe and use your phone. You need to report it stolen so the IMEI number is blacklisted.
jhs39 said:
Nobody can access your phone data the way you describe unless you also run your phone decrypted --which is not the default for Android or even for custom ROMs for that matter. When you boot into recovery on a phone that is encrypted TWRP asks for your pin number and without it your data is not accessible. But that doesn't mean a thief couldn't still wipe and use your phone. You need to report it stolen so the IMEI number is blacklisted.
Click to expand...
Click to collapse
The /sdcard in phones that doesn't have external sdcard, like O+5, are also protected by the encriptation?
Thanks
bartito said:
The /sdcard in phones that doesn't have external sdcard, like O+5, are also protected by the encriptation?
Thanks
Click to expand...
Click to collapse
Yep, like any other android, the oneplus 5 has full disk encryption enabled by default:
http://www.androidpolice.com/2015/1...ll-disk-encryption-by-default-on-new-devices/
bartito said:
Hello,
I doesn't know if this is a real problem in newer Android versions.
I apologize if this problem is already solved; i'm out of Android development since a while...
...........................................
Click to expand...
Click to collapse
Well, IMO your concern is right to some extent.
With an unlocked bootloader, if there is some version of TWRP (or any other customer recovery for that matter) that can decrypt your data partition automatically or if you have ever formatted your /data partition from TWRP , or even an insecure kernel (most insecure kernels allow USB debugging without asking for authorization keys), all the thief needs is 2 adb commands and your screen lock will be turned off and all your stuff will be exposed 'as is'.
For educational purposes, the commands are:
Code:
adb shell rm /data/system/*.key
adb reboot
Now, for that matter, having a locked bootloader either doesn't ensure that your data is safe. For example, for HTC phones, you don't even need to unlock the bootloader for flashing a custom recovery or kernel. You can turn the phone to S-Off state using some proprietary tools (without losing data) and then flash custom images over a locked bootloader.
In case of Samsung, only FRP lock prevents you from flashing custom images (that too on newer phones) but in that case also, you can turn FRP off using some paid services and then flash any custom images and run the above mentioned commands.
In case of LG, it is even easier. Professional tools exist for communication over download mode protocol and turning off the screen lock doesn't even require a custom image in LG's case. However, most newer models are not supported by those tools yet.
In case of Apple, professional tools existed that used to read screen lock over a time span of 1-4 hours in an older version of iOS. I've heard that a tool is being made available for the current versions also in the coming weeks.
So, if you are conscious about your data, it is safe as far as the you have the phone in your possession. Once you lose it, you can't be sure about what is happening with it.
But then, as said in above posts, why would the thief want to crack open the data of a common man. If you are not a common man, you should worry. Otherwise I personally really don't care.
Hello,
Absolutelly appreciate your anwer.
I'm a common man, but I'm a bit worried due to 2 points:
1) I'm using LastPass and I doesn't would to my passwords to fall into someone's hands if I loss the device,
2) I'm using the app from my bank to pay using NFC and I doesn't would that anyone can use it
EDIT: 3) Of course, I'm using my Google account to store my contacts data. It would be a mess if someone erase my contacts
Thanks!
sikander3786 said:
Well, IMO your concern is right to some extent.
With an unlocked bootloader, if there is some version of TWRP (or any other customer recovery for that matter) that can decrypt your data partition automatically or if you have ever formatted your /data partition from TWRP , or even an insecure kernel (most insecure kernels allow USB debugging without asking for authorization keys), all the thief needs is 2 adb commands and your screen lock will be turned off and all your stuff will be exposed 'as is'.
For educational purposes, the commands are:
Code:
adb shell rm /data/system/*.key
adb reboot
Now, for that matter, having a locked bootloader either doesn't ensure that your data is safe. For example, for HTC phones, you don't even need to unlock the bootloader for flashing a custom recovery or kernel. You can turn the phone to S-Off state using some proprietary tools (without losing data) and then flash custom images over a locked bootloader.
In case of Samsung, only FRP lock prevents you from flashing custom images (that too on newer phones) but in that case also, you can turn FRP off using some paid services and then flash any custom images and run the above mentioned commands.
In case of LG, it is even easier. Professional tools exist for communication over download mode protocol and turning off the screen lock doesn't even require a custom image in LG's case. However, most newer models are not supported by those tools yet.
In case of Apple, professional tools existed that used to read screen lock over a time span of 1-4 hours in an older version of iOS. I've heard that a tool is being made available for the current versions also in the coming weeks.
So, if you are conscious about your data, it is safe as far as the you have the phone in your possession. Once you lose it, you can't be sure about what is happening with it.
But then, as said in above posts, why would the thief want to crack open the data of a common man. If you are not a common man, you should worry. Otherwise I personally really don't care.
Click to expand...
Click to collapse
jhs39 said:
Nobody can access your phone data the way you describe unless you also run your phone decrypted --which is not the default for Android or even for custom ROMs for that matter. When you boot into recovery on a phone that is encrypted TWRP asks for your pin number and without it your data is not accessible. But that doesn't mean a thief couldn't still wipe and use your phone. You need to report it stolen so the IMEI number is blacklisted.
Click to expand...
Click to collapse
Black listing the imei doesn't work everywhere. Plus while banned on xda so I can't say how. But the imei is not that hard to change.
bartito said:
Hello,
Absolutelly appreciate your anwer.
I'm a common man, but I'm a bit worried due to 2 points:
1) I'm using LastPass and I doesn't would to my passwords to fall into someone's hands if I loss the device,
2) I'm using the app from my bank to pay using NFC and I doesn't would that anyone can use it
EDIT: 3) Of course, I'm using my Google account to store my contacts data. It would be a mess if someone erase my contacts
Thanks!
Click to expand...
Click to collapse
Maybe some experts can give their opinion on how to protect your data using some third party apps or by using some other options that I am not aware of. But in my opinion, a phone with an unlocked bootloader is always more vulnerable than a phone with locked bootloader.
Of course, I agree with your affirmation at 100%
The question is: I can improve security if I keep TWRP as a recovery instead of return to the stock recovery and I lock the bootloader?
Thanks
sikander3786 said:
Maybe some experts can give their opinion on how to protect your data using some third party apps or by using some other options that I am not aware of. But in my opinion, a phone with an unlocked bootloader is always more vulnerable than a phone with locked bootloader.
Click to expand...
Click to collapse
bartito said:
Of course, I agree with your affirmation at 100%
The question is: I can improve security if I keep TWRP as a recovery instead of return to the stock recovery and I lock the bootloader?
Thanks
Click to expand...
Click to collapse
I don't think you will be able to boot TWRP after relocking the bootloader. You need to test it yourself. Chances are very few because locked bootloaders prevent from booting un-signed images.
If you do manage to boot TWRP after relocking, make sure your data is encrypted. If it is not, then it doesn't matter if the bootloader is locked or not.
Also, you will need to turn off "oem unlock" option from developer options.
sikander3786 said:
I don't think you will be able to boot TWRP after relocking the bootloader. You need to test it yourself. Chances are very few because locked bootloaders prevent from booting un-signed images.
If you do manage to boot TWRP after relocking, make sure your data is encrypted. If it is not, then it doesn't matter if the bootloader is locked or not.
Also, you will need to turn off "oem unlock" option from developer options.
Click to expand...
Click to collapse
I think in the end I will stay as I am: bootloader unlocked and TWRP instead of the original recovery.
After all... I've never lost a phone...
bartito said:
The /sdcard in phones that doesn't have external sdcard, like O+5, are also protected by the encriptation?
Thanks
Click to expand...
Click to collapse
I haven't checked, but I believe it should.
nxss4 said:
Yep, like any other android, the oneplus 5 has full disk encryption enabled by default:
http://www.androidpolice.com/2015/1...ll-disk-encryption-by-default-on-new-devices/
Click to expand...
Click to collapse
Uh no, OP5 with OOS 4.5.x Nougat uses File-Based Encryption (FBE), not FDE.
I know because I wrote the utility to get back to FDE, which works if you change the/fstab* file:
https://forum.xda-developers.com/showthread.php?t=3672477
sikander3786 said:
Well, IMO your concern is right to some extent.
With an unlocked bootloader, if there is some version of TWRP (or any other customer recovery for that matter) that can decrypt your data partition automatically or if you have ever formatted your /data partition from TWRP , or even an insecure kernel (most insecure kernels allow USB debugging without asking for authorization keys), all the thief needs is 2 adb commands and your screen lock will be turned off and all your stuff will be exposed 'as is'.
Click to expand...
Click to collapse
Do you have a source for the first part of that information? The part where if userdata is formatted with TWRP, it is vulnerable?
I don't see how that can happen unless you run decrypted. TWRP is never involved in the encryption process. When you format userdata, it just runs mkfs. Android upon booting sees the forceencrypt flag in the fstab and then promptly encrypt the device with a default passphrase. When you later set up security, the passphrase is changed to whatever you input.
How can TWRP decrypt the files at this point without your passphrase?
Note that if you are running FBE, and run adb shell on a device that's booted into TWRP while waiting for the password, you will be able to see the file structure under /data, but most of its contents will be garbage (=encrypted).
If you're running FDE, and run adb shell on a device that's booted into TWRP, /data will be completely inaccessible.
sikander3786 said:
For educational purposes, the commands are:
Code:
adb shell rm /data/system/*.key
adb reboot
Click to expand...
Click to collapse
This will remove the PIN/password phrase to get into Android, but won't give access to any encrypted files.
That may mess your phone royally as well.
Hello,
Thanks for your anwer. I appreciate the time that have you spend on my question
I need to go to the FDE thread to learn a bit more about the process and results.
Now, I have 2 more questions...
1) If the phone is encrypted with FBE a user can remove user passwords using "adb shell rm /data/system/*.key
&& adb reboot" commands, like @sikander3786 has explained but, due to the device is encripted, it can't access to my data
and the device will require for the decrypt password when booting in normal mode or recovery. I'm correct?
2) If the device is encrypted with FBE a user can access to /sdcard even without the decrypt password in recovery (TWRP) mode but not if encrypted with FDE?
Thanks again!
Fif_ said:
I haven't checked, but I believe it should.
Uh no, OP5 with OOS 4.5.x Nougat uses File-Based Encryption (FBE), not FDE.
I know because I wrote the utility to get back to FDE, which works if you change the/fstab* file:
https://forum.xda-developers.com/showthread.php?t=3672477
Do you have a source for the first part of that information? The part where if userdata is formatted with TWRP, it is vulnerable?
I don't see how that can happen unless you run decrypted. TWRP is never involved in the encryption process. When you format userdata, it just runs mkfs. Android upon booting sees the forceencrypt flag in the fstab and then promptly encrypt the device with a default passphrase. When you later set up security, the passphrase is changed to whatever you input.
How can TWRP decrypt the files at this point without your passphrase?
Note that if you are running FBE, and run adb shell on a device that's booted into TWRP while waiting for the password, you will be able to see the file structure under /data, but most of its contents will be garbage (=encrypted).
If you're running FDE, and run adb shell on a device that's booted into TWRP, /data will be completely inaccessible.
This will remove the PIN/password phrase to get into Android, but won't give access to any encrypted files.
That may mess your phone royally as well.
Click to expand...
Click to collapse
nxss4 said:
I think you'll be fine, as the data on your internal memory should be encypted, which is enabled by default!
Click to expand...
Click to collapse
Suppose i encrypt my device, i.e., it asks for password everytime before booting...
Q1. Will booting into fastboot or recovery require the password?
Q2. If no, how can i prevent access to fastboot and recovery on an unlocked bootloader?
anuragm13 said:
Suppose i encrypt my device, i.e., it asks for password everytime before booting...
Q1. Will booting into fastboot or recovery require the password?
Q2. If no, how can i prevent access to fastboot and recovery on an unlocked bootloader?
Click to expand...
Click to collapse
You can't, but your data isn't accessible without the password
bartito said:
You can't, but your data isn't accessible without the password
Click to expand...
Click to collapse
But one can flash custom recovery from fastboot and subsequently use it to flash custom roms.
Am i right?
anuragm13 said:
But one can flash custom recovery from fastboot and subsequently use it to flash custom roms.
Am i right?
Click to expand...
Click to collapse
Yes, you can flash any recovery and any rom, but phone data can't be accessible if you don't have the password.
To use the device you need to know the password or do a data format
Isn't your phone technically always safe as long as you keep it encrypt it?
Only thing a thief could do would be a reset in both cases, isn't it?

Bootloader unlock without unlock code from Huawei

Is it possible to unlock the bootloader without the unlock code coming from Huawei itself?
I want to unlock the bootloader. Many pages on the web (and on this forum as well) say I need to get the unlock code from huawei, but... it seems that huawei is not collaborative any more: Honor/Huawei’s bootloader unlock page disappears with no explanation
Can I work it out without the code?
Actually, what I really want to do is...
Actually, what I really want to do is...: install a different firmware.
I'm a real noob in the world of modding & custom rom.
As far as I understand, unlocking bootloader is required in order to install a different ROM: is it right? or can I install it somehow even with bootloader locked? Also, can I root the P8 without unlocking the bootloader?
My P8 is on the latest firmware I recently received OTR from Huawei: GRA-L09C02B405. The phone is starting to have some problems: hight battery drenage, UI freezing and rebooting from time to time.
I'd like to install a previous version of Huawei official firmware, or different a custom ROM (I read about some of them in this forum: any suggestion?). But as far a I understand, unlocking bootloader is required, and it seems that without the code from Huawei I'm blocked
Ik zit met de zelfde vraag, ook mijn P8 kan ik niet unlocken website van Huawei met deze optie is verdwenen.
I have the same question, also my P8 I can't unlock Huawei's website with this option is gone.
You now have to contact Huawei and request it, providing IMEI, SN, Product Code, Model, and reason why you wish to unlock it.
Here is a link to contact the UK (most people say this is more successful than others) :- https://consumer.huawei.com/uk/contact-us/
Thanks @Sparkrite, I will try that way.
Can you help me also with my second post in this thread? I mean, do I have to unlock the bootloader in order to flash a custom rom and / or to root the phone?
ModNoob33 said:
Thanks @Sparkrite, I will try that way.
Can you help me also with my second post in this thread? I mean, do I have to unlock the bootloader in order to flash a custom rom and / or to root the phone?
Click to expand...
Click to collapse
For both, yes, you need to unlock your phone. For rooting, you have to flash a new boot.img, and for a custom ROM you have to flash the system.img too.
Without the unlocked bootloader you are unable to flash the images /partitions
ModNoob33 said:
Thanks @Sparkrite, I will try that way.
Can you help me also with my second post in this thread? I mean, do I have to unlock the bootloader in order to flash a custom rom and / or to root the phone?
Click to expand...
Click to collapse
For both NO, however it tends to be a bit easier if the bootloader is unlocked. Some third party rooting apps may or may not work, depending on what version OS you have installed, without changing the recovery partition.
However it is usually easier to root by flashing with TWRP etc. which necessitates an unlocked bootloader to allow you to flash the said recovery.img and then flashing SU.zip for example.
The same goes for flashing a system.img ( does not need an unlocked bootloader ) eg. use fastboot mode and an ADB shell or even DLOAD if it has the correct signatures. The caveat is that most if not all custom ROMs use a proprietary boot.img so an unlocked BL will be required in this case.
Hope that clears it up for you.
Sparkrite said:
For both NO, however it tends to be a bit easier if the bootloader is unlocked. Some third party rooting apps may or may not work, depending on what version OS you have installed, without changing the recovery partition.
However it is usually easier to root by flashing with TWRP etc. which necessitates an unlocked bootloader to allow you to flash the said recovery.img and then flashing SU.zip for example.
The same goes for flashing a system.img ( does not need an unlocked bootloader ) eg. use fastboot mode and an ADB shell or even DLOAD if it has the correct signatures. The caveat is that most if not all custom ROMs use a proprietary boot.img so an unlocked BL will be required in this case.
Hope that clears it up for you.
Click to expand...
Click to collapse
Isn't it? Oh, damn, all time I thought it necessary to do this. Sorry
Sparkrite said:
For both NO, however it tends to be a bit easier if the bootloader is unlocked. Some third party rooting apps may or may not work, depending on what version OS you have installed, without changing the recovery partition.
However it is usually easier to root by flashing with TWRP etc. which necessitates an unlocked bootloader to allow you to flash the said recovery.img and then flashing SU.zip for example.
The same goes for flashing a system.img ( does not need an unlocked bootloader ) eg. use fastboot mode and an ADB shell or even DLOAD if it has the correct signatures. The caveat is that most if not all custom ROMs use a proprietary boot.img so an unlocked BL will be required in this case.
Hope that clears it up for you.
Click to expand...
Click to collapse
I asked Huawei for the code, now I'm waiting for reply.
So, if I understand correctly, even without unlocking bootloader I should be able to flash a previous version of an official firmware, ain't it? I can consider that option if I don't get the code from Huawei
Thanks a lot, you are being really helpful
Bootloader unlocking is not needed for upgrading official firmware, unfortunately, normally it is a completely different matter when trying to downgrade .
Sparkrite said:
Bootloader unlocking is not needed for upgrading official firmware, unfortunately, normally it is a completely different matter when trying to downgrade .
Click to expand...
Click to collapse
So, it seems that I really need Huawei help to do something more or less useful for me. They made something such a "unhackable" phone which can be hacked only with their support. And more or less every other vendor I assume.
Quite weird I think.
AFAIK Huawei are/were the only vendors that made it so easy to unlock the BL, esp. when their code generator was online.
Have you heard back from them yet, some people report getting the code within 12 hours ?
Sparkrite said:
AFAIK Huawei are/were the only vendors that made it so easy to unlock the BL, esp. when their code generator was online.
Have you heard back from them yet, some people report getting the code within 12 hours ?
Click to expand...
Click to collapse
I got a first mail the day after I wrote, with them asking to add the reason for the code request.
This morning I answered them them that I wanted to play with root rights & custom rom, and that I was aware of the risks implied.
now (6 hours later) they sent me the code.
Quite a good support I'd say
ModNoob33 said:
I got a first mail the day after I wrote, with them asking to add the reason for the code request.
Click to expand...
Click to collapse
Yes indeed, the reason why, as I said in my first post, wonder why they're interested ?
Sparkrite said:
You now have to contact Huawei and request it, providing IMEI, SN, Product Code, Model, and reason why you wish to unlock it.
Click to expand...
Click to collapse
Any way you have it now, I assume it worked OK.
The product id in a custom firmware is the same as de original firmware?
i use this method to see product id *#*#1357946#*#* but in a custom firmware,because i lost the code but only want to save it,try the unlock page but i dont get code only errors.
Cientista2018 said:
The product id in a custom firmware is the same as de original firmware?
i use this method to see product id *#*#1357946#*#* but in a custom firmware,because i lost the code but only want to save it,try the unlock page but i dont get code only errors.
Click to expand...
Click to collapse
Try here for your product code :- www.imei24.com
well they dont give anymore codes for bootloader... my huawei p8 lite RIP
djokagg said:
well they dont give anymore codes for bootloader... my huawei p8 lite RIP
Click to expand...
Click to collapse
u sure there's absolutely no way?
AcidCat said:
u sure there's absolutely no way?
Click to expand...
Click to collapse
i'm struggling with the same issue. UK support doesn't want to give me the unlock code even if my P8Max is blocked on all google related stuff. I can't even get Google services
after the last OTA update ( DAV-703LC233B226 ) installed anymore. But still they persist that I should send back the unit ...
You can unlock your bootloaders by using DC Unlocker.

Categories

Resources