I have Samsung Galaxy s4
Model is i9500
But when I go to download mode, I see modem number to sch-i545, which is from Verizon. I want to root my phone and also want to download stock rom or flash custom rom but I don't know which rom to download because I'm confused of which model is correct. My phone has 4G LTE and CDMA. I know i9500 does not support 4G LTE but the model number is i9500 and baseband I9500UBUHOE1. Hope someone cam help me out. Thank you
The correct model # can be found in download mode; therefore, your phone is a Verizon phone with a locked bootloader.
audit13 said:
The correct model # can be found in download mode; therefore, your phone is a Verizon phone with a locked bootloader.
Click to expand...
Click to collapse
How can I unlock?
Can't be unlocked as far as I know.
Here's a thread about unlocking: http://forum.xda-developers.com/showthread.php?t=2500826
I want to root and install custom rom, you have thread for that?
You may be able to root but no custom Roms based on cm or aosp.
More information about your device is at http://forum.xda-developers.com/galaxy-s4-verizon . In short, unless your device has an early bootloader that would allow modification, there is no way to unlock the bootloader, no way to install a custom ROM, and no way to even root the device.
Return this device and get something else.
could this phone have a locked bootloader AND still have other firmware trying to disguise it at the same time ?
No. It's likely his bootloader is unlocked, but he needs to head to the Verizon S4 forums to be sure. But when it comes to frankenphones, my instant response is to return the phone if possible. Frankenphones are a PITA to deal with.
Strephon Alkhalikoi said:
No. It's likely his bootloader is unlocked, but he needs to head to the Verizon S4 forums to be sure. But when it comes to frankenphones, my instant response is to return the phone if possible. Frankenphones are a PITA to deal with.
Click to expand...
Click to collapse
agreed on that, if nothing else it's deception by the vendor/seller
Hi, and thanks for reading. i would like to know if theres a way of rooting the celphone Samsung Galaxy J3 SM-J320VPP. ive see Threads on sucefully rooting others models but not this one
I agree any dev out there want to let me know what you might possibly need in order to begin to exploit the boot loader. I know that the Samsung n4 fix is for a different chipset but there has to be a way to bypass Verizon's DMV so I can dump the boot loader and system and upload it for the community. I really really like this phone for its price point and I don't feel like that it should be let to the side because it's not a flagship. I'm not a dev but I'm also not new to the capabilities of this community. Any Assistance would be great
My issue is somewhat different, I have a banking app that reports my J3 as rooted (no other apps do) and I need a way to reverse or work around this flaw. The banking app does state for Galaxy S5 model that Android 6 Marshmallow is needed and I know I'm only on 5.1.1, but I'm not sure if the kernel and baseband used are the same.
Any help or advice appreciated. Or if I can root, update to 6 and then unroot to resolve this.
Any news? Just bought this phone on Verizon
No rooting so far. Kingo- and Kingroot APKs and PC versions fail to root, no custom recovery to flash SuperSU, and no vulnerabilities to exploit. I've had this phone for about 5 months now, and nothing sticks. But that's the way it goes with Verizon- branded devices - because the boot loader is locked there isn't much that can be done. The most I've been able to do is "convert" it to a SM-J320V by flashing that firmware via Odin. Still can't use non-Verizon SIMs though.
209pcs said:
No rooting so far. Kingo- and Kingroot APKs and PC versions fail to root, no custom recovery to flash SuperSU, and no vulnerabilities to exploit. I've had this phone for about 5 months now, and nothing sticks. But that's the way it goes with Verizon- branded devices - because the boot loader is locked there isn't much that can be done. The most I've been able to do is "convert" it to a SM-J320V by flashing that firmware via Odin. Still can't use non-Verizon SIMs though.
Click to expand...
Click to collapse
Does converting it allow you to use Verizon MVNO Sims without paying the ransom for a month of verizon prepaid service first to activate the phone ? I know you said no non Verizon sims but nkt sure if you meant MVNO too
Hi, in an attempt to unlock Wifi Tethering capability on my phone, I installed [G900F]CyanogenMod 14.0-20161020-UNOFFICIAL-klte, and now I'm unable to make phone calls or use SMS/MMS.
Is there anything I can try to get service back?
I've tried installing a new modem with no success, using Odin, FlashFire, Terminal Server. I'm not confident I was doing it correctly though, or even if I was using the correct modem files.
I was able to root the phone with Stock firmware, but Mobile Hotspot/Wifi Tether wasn't built-in, and I had no success with any of the apps... FoxFi, Wifi Tether Router, Barnacle Wifi.
Some more information on the phone:
It's the StraightTalk variant made for TotalWireless MVNO. The phone's Stock firmware said it was the S902L Samsung S5 variant, but under the battery FCC ID of the device is actually just a G900V. I took it to the Verizon MVNO PagePlus and they were able to activate the phone, and everything was working perfect, until installing CM14.0.
A roadblock I found out, that might be the root of some of the problems, is the phone may not have the ability to unlock the bootloader, possibly limiting some modding methods. When looking at /sys/block/mmcblk0/device/cid, it starts with 11, designating a Toshiba eMMC chip.
I'll take any suggestions, or alternatives... I don't mind using the stock firmware or any other Roms. The main feature I'd like to have is the ability to use Wifi Tether and the basics, make calls, send sms.
Thank you.
I know this is off topic, but how in the world did you get CM14 running on G900V-CID11?
leotakacs said:
I know this is off topic, but how in the world did you get CM14 running on G900V-CID11?
Click to expand...
Click to collapse
I'm not entirely sure, but someone had an idea they mentioned to me, that it might've been possible to get CM installed from a very outdated Android version, from before CID 11 was locked. The previous stock Android version the phone came installed with was 4.4.2. It was the StraightTalk variant made for TotalWireless MVNO. The phone's Stock firmware said it was the S902L Samsung S5 variant, but under the battery FCC ID of the device is actually just a G900V.
You will not be able to run any version of Cyanogen on your Toshiba S5 properly. Your best course would be to install FlashFire from the play store and use it to install a TouchWiz ROM such as Moar (5.0) or Phoenix (6.0).
TechFellow1 said:
I'm not entirely sure, but someone had an idea they mentioned to me, that it might've been possible to get CM installed from a very outdated Android version, from before CID 11 was locked. The previous stock Android version the phone came installed with was 4.4.2. It was the StraightTalk variant made for TotalWireless MVNO. The phone's Stock firmware said it was the S902L Samsung S5 variant, but under the battery FCC ID of the device is actually just a G900V.
Click to expand...
Click to collapse
no, no, no. don't listen to any of these other people. if your phone boots CM14 then your bootloader is unlocked. this has nothing to do with bootloaders. you installed the wrong ROM for your phone. CM14-kltevzw is the correct variant for your phone, not CM14-klte.
see here:
https://archive.org/download/cmarchive_nighlies/cm-14.1-20161225-NIGHTLY-kltevzw.zip
Hariiiii said:
no, no, no. don't listen to any of these other people. if your phone boots CM14 then your bootloader is unlocked. this has nothing to do with bootloaders. you installed the wrong ROM for your phone. CM14-kltevzw is the correct variant for your phone, not CM14-klte.
see here:
https://archive.org/download/cmarchive_nighlies/cm-14.1-20161225-NIGHTLY-kltevzw.zip
Click to expand...
Click to collapse
He said his phone has a CID11 Toshiba chip. @OP, are you positive you have a Toshiba chip (11)?
leotakacs said:
He said his phone has a CID11 Toshiba chip. @OP, are you positive you have a Toshiba chip (11)?
Click to expand...
Click to collapse
It doesn't matter. He is on a straight talk phone. The bootloader is unlocked by default. The firmware is different.
Hariiiii said:
It doesn't matter. He is on a straight talk phone. The bootloader is unlocked by default. The firmware is different.
Click to expand...
Click to collapse
generally correct. best way to know would be to take a cid 11 based device, and flash twrp same way you would cid 15.
as far as i know though, most straight talk phones i see at work that i've repaired software wise have had unlocked bootloaders... which makes recovering/backing up files a breeze lol
KaptinBoxxi said:
generally correct. best way to know would be to take a cid 11 based device, and flash twrp same way you would cid 15.
as far as i know though, most straight talk phones i see at work that i've repaired software wise have had unlocked bootloaders... which makes recovering/backing up files a breeze lol
Click to expand...
Click to collapse
I think that is correct. Here's the final solution I came up with and everything's working perfectly now.
I flashed the kltevzw 14 version with TWRP and had no luck getting service, then I tried flashing the kitkat factory ROM with ODIN to see if that would fix it, but ODIN failed after many attempts. Finally I flashed with the lower but stable release kltevzw CM13, instead of the nightly, and everything worked again. I'm thinking I must be extremely lucky to have gotten a Straight Talk S5 variant with an unlocked bootloader, but it's interesting that even though my CID definitely starts with 11, the bootloader is unlocked. Not all hope is lost on CID 11 S5's.
TechFellow1 said:
I think that is correct. Here's the final solution I came up with and everything's working perfectly now.
I flashed the kltevzw 14 version with TWRP and had no luck getting service, then I tried flashing the kitkat factory ROM with ODIN to see if that would fix it, but ODIN failed after many attempts. Finally I flashed with the lower but stable release kltevzw CM13, instead of the nightly, and everything worked again. I'm thinking I must be extremely lucky to have gotten a Straight Talk S5 variant with an unlocked bootloader, but it's interesting that even though my CID definitely starts with 11, the bootloader is unlocked. Not all hope is lost on CID 11 S5's.
Click to expand...
Click to collapse
Are you able to dump your boot and bootloader partitions somehow? The "dd" command from adb shell somehow?
Couldnt we just use a diff program to compare yours with one of the Locked 11's?
TechFellow1 said:
I think that is correct. Here's the final solution I came up with and everything's working perfectly now.
I flashed the kltevzw 14 version with TWRP and had no luck getting service, then I tried flashing the kitkat factory ROM with ODIN to see if that would fix it, but ODIN failed after many attempts. Finally I flashed with the lower but stable release kltevzw CM13, instead of the nightly, and everything worked again. I'm thinking I must be extremely lucky to have gotten a Straight Talk S5 variant with an unlocked bootloader, but it's interesting that even though my CID definitely starts with 11, the bootloader is unlocked. Not all hope is lost on CID 11 S5's.
Click to expand...
Click to collapse
Delgoth said:
Are you able to dump your boot and bootloader partitions somehow? The "dd" command from adb shell somehow?
Couldnt we just use a diff program to compare yours with one of the Locked 11's?
Click to expand...
Click to collapse
No, all hope IS lost on CID 11's. You have a different phone provided by a different company. It is loaded with a different software and hardware configuration. There is no bootloader signature verification. Yes, the configuration is very similar to that of a G900V, but the bootloader comes unlocked. This is phone specific. This has no value for an actual G900V.
Hariiiii said:
No, all hope IS lost on CID 11's. You have a different phone provided by a different company. It is loaded with a different software and hardware configuration. There is no bootloader signature verification. Yes, the configuration is very similar to that of a G900V, but the bootloader comes unlocked. This is phone specific. This has no value for an actual G900V.
Click to expand...
Click to collapse
well if that's correct, then why does the dev edition bootloader work on the non-dev edition? Sure, its still a g900v, but never hurts to find a way and try
a little optimism can go a long way in life. don't think so negatively
KaptinBoxxi said:
well if that's correct, then why does the dev edition bootloader work on the non-dev edition? Sure, its still a g900v, but never hurts to find a way and try
a little optimism can go a long way in life. don't think so negatively
Click to expand...
Click to collapse
I say this because I have tried it and I know how it works. A bootloader needs to have the right signature that is recognized by the hardware. The reason the dev edition bootloader works on non dev edition is because they are the same phone, but with different bootloaders installed. The signature of the straight talk bootloader will not be recognized by the G900V hardware. Again, I have confirmed this personally. The straight talk is almost the same hardware as the verizon G900V, but it does not have bootloader signature verification enabled (and the bootloader that comes installed is unsecured).
Hariiiii said:
I say this because I have tried it and I know how it works. A bootloader needs to have the right signature that is recognized by the hardware. The reason the dev edition bootloader works on non dev edition is because they are the same phone, but with different bootloaders installed. The signature of the straight talk bootloader will not be recognized by the G900V hardware. Again, I have confirmed this personally. The straight talk is almost the same hardware as the verizon G900V, but it does not have bootloader signature verification enabled (and the bootloader that comes installed is unsecured).
Click to expand...
Click to collapse
alright, that makes sense. Thanks for explaining. Always interested in these things since i don't QUITE understand exploits at that level. I do mainly apk modifications and software dev
KaptinBoxxi said:
well if that's correct, then why does the dev edition bootloader work on the non-dev edition? Sure, its still a g900v, but never hurts to find a way and try
a little optimism can go a long way in life. don't think so negatively
Click to expand...
Click to collapse
because you don't have a clue about how the CID exploit works
the reason you can flash the dev aboot on a CID15 is because you can change the CID to match that of a dev edtion aboot checks the CID to see if a device as a dev edtion or not
the CID is a sort of serial number for the flash-chip and normally its write once and then read only value ,but because samsung was sloppy we can use some custom Samsung NAND vendor commands to change it so secure-boot thinks you have a dev editon and permits the flashing of a unsigned image
this is flat not possible on CID11 devices(toshiba NAND) there is no hope for cid11 devices with this method the commands needed simply do not exist PERIOD
Legitsu said:
because you don't have a clue about how the CID exploit works
the reason you can flash the dev aboot on a CID15 is because you can change the CID to match that of a dev edtion aboot checks the CID to see if a device as a dev edtion or not
the CID is a sort of serial number for the flash-chip and normally its write once and then read only value ,but because samsung was sloppy we can use some custom Samsung NAND vendor commands to change it so secure-boot thinks you have a dev editon and permits the flashing of a unsigned image
this is flat not possible on CID11 devices(toshiba NAND) there is no hope for cid11 devices with this method the commands needed simply do not exist PERIOD
Click to expand...
Click to collapse
I understand plenty enough to know the difference in the flash chips cid's with such like that... The fact of the matter i was trying to get at is that most Straight Talk phones are unlocked entirely without a care in the world, regardless of their CID/branding. Without the proper commands and 3rd party support, I get that there won't be a way. That's why I check my CID's first before buying S5's or Note 4's
Is there any progress in finding the solution to open the bootloader for these units?
Or is this just a lost cause and the bootloader for these units will always be locked.
No TWRP or ROMS to load to get rid of TW. Sad.
re: rooting and rom'ing
cyaclone said:
Is there any progress in finding the solution to open the bootloader for these units?
Or is this just a lost cause and the bootloader for these units will always be locked.
No TWRP or ROMS to load to get rid of TW. Sad.
Click to expand...
Click to collapse
It's a lost cause, the bootloaders for snapdragon will remain locked forever.
It's not like most other bootloaders which are all rootable with proper software.
The snapdragon bootloaders are infused in the phone's hardware.
Next time when you purchase a Samsung phone be sure it has the Xynos cpu
chip and rooting will be a breeze. (took me a full minute to root)
All Samsung Galaxy phones which have the Xynos chip are not
only easily rootable but they all come factory sim unlocked.
Good luck, have a great day!
Thanks for the response. Very Sorry, like most of us, that this is a done deal!
hi so i have a few things id like to talk about. i was wondering why it is not possible to port aosp roms to s8 snapdragon? givin its the same android version. also when i was messing around when rooting my s8 i saw that the software i had installed in the steps i went into settings and saw that i could enable oem unlock it worked and whenever i go back to that software its still enabled however i could not use any fastboot commands still. also i flashed twrp (not safe strap already have that) and now my base recovery does not show up....
kadenball said:
hi so i have a few things id like to talk about. i was wondering why it is not possible to port aosp roms to s8 snapdragon? givin its the same android version. also when i was messing around when rooting my s8 i saw that the software i had installed in the steps i went into settings and saw that i could enable oem unlock it worked and whenever i go back to that software its still enabled however i could not use any fastboot commands still. also i flashed twrp (not safe strap already have that) and now my base recovery does not show up....
Click to expand...
Click to collapse
Aosp roms requires a custom kernel to work, this requires:
1, unlocked bootloader(not possible on the snapdragon variant)
2, a custom recovery (not possible due to locked bootloader)
Just using the oem unlock option does not unlock the bootloader, more steps are required for most phones in order to unlock the bootloader, if it was that easy it would have been exploited by now, most of the guides on the snapdragon version mention that the bootloader is not unlockable.
You more than likely will need to restore the recovery through odin or something,
sofir786 said:
Aosp roms requires a custom kernel to work, this requires:
1, unlocked bootloader(not possible on the snapdragon variant)
2, a custom recovery (not possible due to locked bootloader)
Just using the oem unlock option does not unlock the bootloader, more steps are required for most phones in order to unlock the bootloader, if it was that easy it would have been exploited by now, most of the guides on the snapdragon version mention that the bootloader is not unlockable.
You more than likely will need to restore the recovery through odin or something,
Click to expand...
Click to collapse
Thanks ya I fixed it! And ya I understand there are additional steps to doing this that's why I mentioned fastboot. If you could guide me in a direction to potentially learn more about the kernals and how they work or what I would need to be good at to exploit download mode or knox whatever is required to potentially exploit the bootloader I would not give up on it im fine with wasting my time. I had recently talked to Sam help chat and they told me someone could unlock the bootloader for me (a phone company near me) I talked to a guy over the phone that said it could be possible bc they have the Samsung tools to do so but he told me to call the next day because the other tech knew more then him, so I called the next day and he said they could do it but they would get in trouble for doing so. My plan is to go in when the guy that doesn't know much is working ? and get him to unlock it. Hopefully then I could upload the software here and free the snapdragon slaves!!! If your interested in the conversations I had with Samsung and this other company I could upload the screen shots thank you for your reply!
kadenball said:
Thanks ya I fixed it! And ya I understand there are additional steps to doing this that's why I mentioned fastboot. If you could guide me in a direction to potentially learn more about the kernals and how they work or what I would need to be good at to exploit download mode or knox whatever is required to potentially exploit the bootloader I would not give up on it im fine with wasting my time. I had recently talked to Sam help chat and they told me someone could unlock the bootloader for me (a phone company near me) I talked to a guy over the phone that said it could be possible bc they have the Samsung tools to do so but he told me to call the next day because the other tech knew more then him, so I called the next day and he said they could do it but they would get in trouble for doing so. My plan is to go in when the guy that doesn't know much is working ? and get him to unlock it. Hopefully then I could upload the software here and free the snapdragon slaves!!! If your interested in the conversations I had with Samsung and this other company I could upload the screen shots thank you for your reply!
Click to expand...
Click to collapse
I've never dabbled in making kernels or anything so I'm pretty useless with that. The phone has been out for over 3 years now and as of yet there is no software method to unlock the bootloader, android devs would have figured that one out by now if it was possible, if it is possible then maybe there some extra hardware thats required to unlock the bootloader, I honestly don't know enough, I'm experienced enough to know to do certain things but I don't know the ins and out of how bootloader are coded, how the instructions are carried out. But it would defo be interesting to see if they do this for you.
sofir786 said:
I've never dabbled in making kernels or anything so I'm pretty useless with that. The phone has been out for over 3 years now and as of yet there is no software method to unlock the bootloader, android devs would have figured that one out by now if it was possible, if it is possible then maybe there some extra hardware thats required to unlock the bootloader, I honestly don't know enough, I'm experienced enough to know to do certain things but I don't know the ins and out of how bootloader are coded, how the instructions are carried out. But it would defo be interesting to see if they do this for you.
Click to expand...
Click to collapse
Ya thanks man when I talked to the inexperienced tech guy he said I could come in and we could try but I didn't want to drive there and waste my time ? but the experienced dude said I could probably find another repair place that would do it (figured it's another one of their shops he was hinting at as there are a few around me) so I will attempt to do this and hopefully some how it works and I can upload the software here not sure if flashing it would unlock anyone elses bootloaders as I expect it to be some sort of key like the HTC phones used to require and is unique to each device. When I got that oem to appear I was trying anything and everything in adb and fastboot as I suspected if we could glitch the phone in fastboot mode we could unlock it lol at least that's what I hoped for, tried upload mode kernal panic the 3 different download modes and tried to replace the Samsung download mode driver and flash the fastboot Android driver on top of it but my lack of knowledge on these things hindered me from making any progress but I believe there's a exploit in this root software that was copyed from the s9 and simply devs don't want to waste there time because they believe it is impossible. I've seen much hard thing accomplished in this dev sight hopefully the right person can figure it out and Is motivated by this post or point me in the right direction ? thanks if you read all this if I get it unlocked you will def see another post lengthy post ?