Database Users

[Q] How To Install tun.ko module 3.6.36.3 Samsung Galaxy Tab 10.1

Hai All,
I am new one here and really need your advice .. I have Galaxy Tab 10.1 M16 3G/Wifi version but I have trouble tu install / set ipsec vpn cisco.
I have used vpnc widget but but get error when running test :
Error: root access missing!
Error: no access to TUN device
my device has already have a rooted (Super User access)
Please Help... thankyou

Sorry all I mean tun.ko 2.3.36.3

Hi. Does anybody have a tun.ko file for the Galaxy GT-7100?
I have tried a few versions but can not get any of them to load.
# insmod /system/lib/modules/tun.ko
insmod: init_module '/system/lib/modules/tun.ko' failed (Exec format error)
Dmesg :tun: version magic '2.6.32.9 mod_unload ARMv7 ' should be '2.6.36.3-00558-g7c1c334 SMP preempt mod_unload ARMv7 '
My ultimate idea is to get openvpn going. Everything else seems to be OK with now just tun.no outstanding.
Any help will be great.
Vissie

Questions or Problems Should Not Be Posted in the Development Forum
Please Post in the Correct Forums and Read THIS
Moving to General

[Q] recovery mode not dosnt existe

i have galxy s5 copu phone with this specific
Hardware : MT6589
Model : GT-I9600
Build number : ALPS.JB3.MP.V1.2
Build date UTC : 20140521-103653
Android v : 4.2.2
Baseband v: MOLY.WR8.W1315.MD.WG.MP.V2, 2013/07/02 17:21
Kernel v : 3.4.5 ([email protected]) (gcc version 4.6.x-google 20120106 (prerelease) (GCC) ) #1 SMP Wed May 21 18:34:51 CST 2014
whene i try to recovery mode the screens how erro n command to run click next to update ur system
and download mode dont existe any help my friends

ramailo said:
i have galxy s5 copu phone with this specific
Hardware : MT6589
Model : GT-I9600
Build number : ALPS.JB3.MP.V1.2
Build date UTC : 20140521-103653
Android v : 4.2.2
Baseband v: MOLY.WR8.W1315.MD.WG.MP.V2, 2013/07/02 17:21
Kernel v : 3.4.5 ([email protected]) (gcc version 4.6.x-google 20120106 (prerelease) (GCC) ) #1 SMP Wed May 21 18:34:51 CST 2014
whene i try to recovery mode the screens how erro n command to run click next to update ur system
and download mode dont existe any help my friends
Click to expand...
Click to collapse
Sorry but if half of that information is correct, you have a clone i.e. a fake S5. Clones typically lack download mode, have pre 4.4.2 OS and MT class processors.
.

fffft said:
Sorry but if half of that information is correct, you have a clone i.e. a fake S5. Clones typically lack download mode, have pre 4.4.2 OS and MT class processors.
.
Click to expand...
Click to collapse
it mean there is no solution for it ? or any other image i can install it or so

ramailo said:
it mean there is no solution for it ? or any other image i can install it or so
Click to expand...
Click to collapse
That would be entirely dependent upon the design of the clone. You'd need to identify, who made it and find their web /support site to delineate your options.
Failing that, do a Google search to see if anyone else online has puzzled out the viable options for your clone. You might be able to update the firmware to a generic Kitkat. You probably won't be able to get OTA updates, use Odin or do a lot of other things that you can with a S5.
.

fffft said:
That would be entirely dependent upon the design of the clone. You'd need to identify, who made it and find their web /support site to delineate your options.
Failing that, do a Google search to see if anyone else online has puzzled out the viable options for your clone. You might be able to update the firmware to a generic Kitkat. You probably won't be able to get OTA updates, use Odin or do a lot of other things that you can with a S5.
.
Click to expand...
Click to collapse
i try to find the designer but no chance thats why im seeking help

ramailo said:
i have galxy s5 copu phone with this specific
Hardware : MT6589
Model : GT-I9600
Build number : ALPS.JB3.MP.V1.2
Build date UTC : 20140521-103653
Android v : 4.2.2
Baseband v: MOLY.WR8.W1315.MD.WG.MP.V2, 2013/07/02 17:21
Kernel v : 3.4.5 ([email protected]) (gcc version 4.6.x-google 20120106 (prerelease) (GCC) ) #1 SMP Wed May 21 18:34:51 CST 2014
whene i try to recovery mode the screens how erro n command to run click next to update ur system
and download mode dont existe any help my friends
Click to expand...
Click to collapse
Look here for instance http://www.china-devices.com/Thread-mt6572-ALPS-JB3-MP-V1 , it seems to be a Chinese HDC device, they produce cloned S4/S5 devices. Don`t flash anything from here mate or you could brick your device.
---------- Post added at 11:03 PM ---------- Previous post was at 10:57 PM ----------
ramailo said:
i have galxy s5 copu phone with this specific
Hardware : MT6589
Model : GT-I9600
Build number : ALPS.JB3.MP.V1.2
Build date UTC : 20140521-103653
Android v : 4.2.2
Baseband v: MOLY.WR8.W1315.MD.WG.MP.V2, 2013/07/02 17:21
Kernel v : 3.4.5 ([email protected]) (gcc version 4.6.x-google 20120106 (prerelease) (GCC) ) #1 SMP Wed May 21 18:34:51 CST 2014
whene i try to recovery mode the screens how erro n command to run click next to update ur system
and download mode dont existe any help my friends
Click to expand...
Click to collapse
Look here for instance http://www.china-devices.com/Thread-mt6572-ALPS-JB3-MP-V1 https://www.google.com/search?q=MOL...07/02+17:21&ie=utf-8&oe=utf-8&aq=t&gws_rd=ssl or here , it seems to be a Chinese HDC device, they produce cloned S4/S5 devices. Don`t flash anything from here mate or you could brick your device.

lohano word
i looked on china forum always there is somthing worng if i find room for mtk6589 the model i finde is not same as my model you think it well be finde to update room butwith same harware but not same model ??
it seems to be a Chinese HDC device, they produce cloned S4/S5 devices. Don`t flash anything from here mate or you could brick your device.
---------- Post added at 11:03 PM ---------- Previous post was at 10:57 PM ----------
Look here for instance or here , it seems to be a Chinese HDC device, they produce cloned S4/S5 devices. Don`t flash anything from here mate or you could brick your device.[/QUOTE]

[CLOSED]Deleted

Deleted

@rocker00
Hey, I'm glad that I could help you out with the rooting process!
It feels really good when you actually see your work being used to help others out and with credits added too !
If you need more scripts just PM me, I would love to get involved with your projects !

Does this require a locked or unlocked bootloader and can this be ported to the Sony Xperia Z2 tablet

XenTeckz said:
Does this require a locked or unlocked bootloader and can this be ported to the Sony Xperia Z2 tablet
Click to expand...
Click to collapse
You don't need a unlocked bootloader, but I could help you with the Z2 tablet port!

moman2000 said:
@rocker00
Hey, I'm glad that I could help you out with the rooting process!
It feels really good when you actually see your work being used to help others out and with credits added too !
If you need more scripts just PM me, I would love to get involved with your projects !
Click to expand...
Click to collapse
XenTeckz said:
Does this require a locked or unlocked bootloader and can this be ported to the Sony Xperia Z2 tablet
Click to expand...
Click to collapse
@moman2000 thank you my friend for these nice words sure we are here to help each others but actually this is not my project at all
@XenTeckz it's for both locked and unlocked and for z2 tablet support you can ask shoey63 about that.

@rocker00
Thanks for making this thread:good:
I don't own a Z2, but I have added both D5803 and D5802 to to iovyroot binary.
Code:
//Z2 23.5.A.0.575
{ "D6502", "Linux version 3.4.0-perf-g43ea728 ([email protected]) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri Apr 22 17:27:56 2016",
{ (void*)FSYNC_OFFSET(0xc1233a70) },
(void*)0xc122848c, (void*)0xc12284b4, (void*)0xc102f200, (void*)0xc1226a30 },
//Z2 23.5.A.0.575
{ "D6503", "Linux version 3.4.0-perf-g43ea728 ([email protected]) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri Apr 22 17:27:56 2016",
{ (void*)FSYNC_OFFSET(0xc1233a70) },
(void*)0xc122848c, (void*)0xc12284b4, (void*)0xc102f200, (void*)0xc1226a30 },
It seems to be the same kernel anyway
Regarding Z2 TAB support:
@danalec might be able to help.
Have a look here http://forum.xda-developers.com/xperia-z2-tablet/general/sgp551-xperia-z2-tablet-official-t2871485/post68136137#post68136137

shoey63 said:
@rocker00
Thanks for making this thread:good:
I don't own a Z2, but I have added both D5803 and D5802 to to iovyroot binary.
Code:
//Z2 23.5.A.0.575
{ "D6502", "Linux version 3.4.0-perf-g43ea728 ([email protected]) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri Apr 22 17:27:56 2016",
{ (void*)FSYNC_OFFSET(0xc1233a70) },
(void*)0xc122848c, (void*)0xc12284b4, (void*)0xc102f200, (void*)0xc1226a30 },
//Z2 23.5.A.0.575
{ "D6503", "Linux version 3.4.0-perf-g43ea728 ([email protected]) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri Apr 22 17:27:56 2016",
{ (void*)FSYNC_OFFSET(0xc1233a70) },
(void*)0xc122848c, (void*)0xc12284b4, (void*)0xc102f200, (void*)0xc1226a30 },
It seems to be the same kernel anyway
Regarding Z2 TAB support:
@danalec might be able to help.
Have a look here http://forum.xda-developers.com/show...7&postcount=30
Click to expand...
Click to collapse
i added the link to your thread so everybody can knows the supported devices and keep in touch with your thread.

thanks this works

Install.bat?
Hi, the "recovery" zip seems to be empty when downloaded. There is no install.bat file inside that I can see.
Thanks

patchyfog said:
Hi, the "recovery" zip seems to be empty when downloaded. There is no install.bat file inside that I can see.
Thanks
Click to expand...
Click to collapse
download again everything is included in the zip.

rocker00 said:
download again everything is included in the zip.
Click to expand...
Click to collapse
Hi, just downloaded again, still empty

patchyfog said:
Hi, just downloaded again, still empty
Click to expand...
Click to collapse
try to extract with 7zip or winzip because no any issue with the zip i downloaded 2 times to make sure its ok !

Hello everyone, tnak you for this solution, but I can't continue until the step *-power the device off and flash .575 kernel with flashtool ( attached ).NOTE: rename the file from .zip to .ftf ( VERY IMPORTANT ) because Flashtool can't see the ftf files :/

BroenGuiraldson said:
Hello everyone, tnak you for this solution, but I can't continue until the step *-power the device off and flash .575 kernel with flashtool ( attached ).NOTE: rename the file from .zip to .ftf ( VERY IMPORTANT ) because Flashtool can't see the ftf files :/
Click to expand...
Click to collapse
To flash a file with flashtool it must be ftf. So just rename .zip to .ftf
Sent from my D6503 using XDA-Developers mobile app

I renamed it already in *.ftf, I tried to eventually drag it but it doen't work, the function isn't supported by Flashtool.
I tried to move the ftf file to an other folder but can't be seen by Flashtool.
I'll try later that day at home because I tried at office, but there is maybe some security locked function on my computer like antivirus (I doubt of that, I desactivate it for the *.bat file for example) or anything else.
Keep in touch.
Edit: Alright, the issue is solved, I tried from my own computer, it's working fine, I can see ftf files.
By the way, important information /!\ : You must launch the tool *.bat with administrator rights on Windows 10. Without this, there is some errors like "adb server version (32) doesn't match this client (36)" and the phone don't reboot into recovery mode when it's finish.
*-flash supersu then flash .291 kernel with wiping Cache & Dalvik... ==> OK done.
*-start the device ==> OK done.
Edit 2: At second reboot can't access to recovery, the phone bootloop :/

Hi, the phone don't go into recovery automatically.
Edit: I got it. Have to create PATH system variable

rocker00 said:
try to extract with 7zip or winzip because no any issue with the zip i downloaded 2 times to make sure its ok !
Click to expand...
Click to collapse
Hey, yeah 7Zip worked, thanks.

I have Z2 D6502 Can it Work ?

phone turn on
the root procedure is successful. I have a little problem: when I put in charging the phone turned off, turns on and refill on.
Tips? I state that I have locked bootloader.

karantamboli said:
I have Z2 D6502 Can it Work ?
Click to expand...
Click to collapse
SuperMattew84 said:
the root procedure is successful. I have a little problem: when I put in charging the phone turned off, turns on and refill on.
Tips? I state that I have locked bootloader.
Click to expand...
Click to collapse
@karantamboli it should work because it's the same kernel so you may give a try
@SuperMattew84 did you flash .291 kernel again after you have done with root ?

Is it possible to root the ZTE Blade V7 Lite?

Hi,
I would love to get mu device (ZTE Blade V7 Lite) rooted but I can't get it to work myself.
I tried KingRoot and KingoRoot (pc and apk). Are there any other possibilities to root this device?
Thanks in advance!

i think I may have found a way to install recovery twrp and flash root but haven't had the nerve to try it because have no stock firmware in case anything goes wrong

here is for the supersu to flash by twrp http://www.mediafire.com/file/55d2pf92w4nwag1/UPDATE-SuperSU-v2.76-20160630161323(2).zip
here is the twrp to flash by sp flashtool http://www.mediafire.com/file/lr3ls9xonfc9trf/zte_v7_lite_twrp.rar
again I found these looking online and don't take credit for other peoples work
I haven't used sp flashtool before so hopefully you might find someone whos used it

Sparko612 said:
here is for the supersu to flash by twrp http://www.mediafire.com/file/55d2pf92w4nwag1/UPDATE-SuperSU-v2.76-20160630161323(2).zip
here is the twrp to flash by sp flashtool http://www.mediafire.com/file/lr3ls9xonfc9trf/zte_v7_lite_twrp.rar
again I found these looking online and don't take credit for other peoples work
I haven't used sp flashtool before so hopefully you might find someone whos used it
Click to expand...
Click to collapse
cant flash the image, ive started building a database for our tool
so far i have
-drivers
-stock firmware(extracted myself)
-scatter file
-semi working recovery
im in the processing of gaining root and fixing recovery, very early stages tho

could you put a link for your stock firmware and scatter file as I have bricked my phone and cant seem to find anywhere a stock firmware and scatter file at all for this device please

Hi guyz @Sparko612 and @Ricky Divjakovski
Have you found a solution for root and unbrick?

Until I can find stock firmware and scatter file then currently not sorry mate

MrOops said:
Hi guyz @Sparko612 and @Ricky Divjakovski
Have you found a solution for root and unbrick?
Click to expand...
Click to collapse
closest i got was dumping the firmware via dirtycow, since then i have discontinued development as i dont have the device anymore..

Sparko612 said:
could you put a link for your stock firmware and scatter file as I have bricked my phone and cant seem to find anywhere a stock firmware and scatter file at all for this device please
Click to expand...
Click to collapse
Hello,
Take the rom from this link. https://drive.google.com/uc?id=0B8NdSu-RzkHNZkZMWmxrOWtWeGs&export=download
It's named: MT6735__ZTE__ZTE_BLADE_V7_LITE__ZTE_BLADE_V0720__6.0__ZTE_BLADE_V7_LITE_B13.zip.
In Smart Phone Flash Tool take the scatterfile from this rom!
IMPORTANT: If you got an error while flashing you have to flash every position at it's own. One after one, Step by step!!
Don't flash the userdata!!
After that i was able to start the phone. Before that, my phone wasn't able to boot, or anything else. No LED, no charging.
Hope it works also for you. Sorry for my english... :good::laugh:

Thankyou followed the guide and phone working again thankyou so much. Only have nv warning err = 0x10 when WiFi is turned on comes up as another WiFi access point

Sparko612 said:
Thankyou followed the guide and phone working again thankyou so much. Only have nv warning err = 0x10 when WiFi is turned on comes up as another WiFi access point
Click to expand...
Click to collapse
Me too, and unknown IMEI also, but here's the solution.
How to Restore NVRAM.bin Using SP Flash Tool & Permanent Fix Invalid IMEI Error.
https://afterroot.wordpress.com/2015/07/22/mtk-restore-nvram-bin/
Here is the NVRAM.bin File. I have uploaded it on google drive!
https://drive.google.com/file/d/0B8NdSu-RzkHNd0NvUGt0N0VKbDQ/view
Greetings.

i want to root my zte blade v7 too but cant make it work please help
---------- Post added at 06:17 AM ---------- Previous post was at 06:13 AM ----------
sepp12 said:
Me too, and unknown IMEI also, but it's not so a big problem for me.
This is because the MAC address begins with an 0.
This can't be fixed permanent without ROOT !!
We have to wait for any rooting solution.
My phone works with this 2 errors anyway.
Greetings.
Click to expand...
Click to collapse
i just cant get it to work and now im getting very impatient

5th july 2017.. anyone know how to root zte blade v7 lite? pls?

Hope dies last.

??
hmmm no root solution yet?

No.

I think, I may have found a solution.
www .zunite. org /2016/12/zte-blade-v7-lite-twrp-root .html (sorry for those spaces/I'm not allowed to post urls)
On that website (which is not English unfortunately) there is a guide on how to install TWRP and then SuperSu on the v7 Lite. There are also images of the phone in the twrp menu, so I think it's not a fake. I won't test it, until I have a new phone because I don't want to brick my main device.

Philipp0002 said:
I think, I may have found a solution.
www .zunite. org /2016/12/zte-blade-v7-lite-twrp-root .html (sorry for those spaces/I'm not allowed to post urls)
On that website (which is not English unfortunately) there is a guide on how to install TWRP and then SuperSu on the v7 Lite. There are also images of the phone in the twrp menu, so I think it's not a fake. I won't test it, until I have a new phone because I don't want to brick my main device.
Click to expand...
Click to collapse
Doesn't work. I have tried it a few times. No way to get into TWRP!

How can one use dirtycow to dump ZTE Blade V7 Lite recovery firmware?
Ricky Divjakovski said:
closest i got was dumping the firmware via dirtycow, since then i have discontinued development as i dont have the device anymore..
Click to expand...
Click to collapse
I just got one of these handsets and I've been struggling to look for a way to root it and think it may be possible by following some of the instructions at:
http://4pda.ru/forum/index.php?showtopic=742105&st=100
Unfortunately before I do that I need a copy of my firmware. It seems you managed to get dirtycow to get you into an elevated shell where you could run dd to image your recovery and boot.
How did you do this (in as much detail as you have time to spare).
So far I've read about the various dirtycow exploit packages but from what I understand none will get you to a fully rooted state with 32 bit android 6.
The last supported version is 32 bit android 5.
https://forum.xda-developers.com/android/software-hacking/root-tool-dirtycow-apk-adb-t3525120
Unfortunately the ADB version didn't work.
Code:
[email protected]_BLADE_V0720:/data/local/tmp $ ./exploit.sh
./exploit.sh

 ( )
 ~(^^^^)~
 ) @@ \~_ |\
 / | \ \~ / CVE-2016-5195
 ( 0 0 ) \ | | Lollipop (32bits)
 ---___/~ \ | | SeLinux bye
 /'__/ | ~-_____/ |
o _ ~----~ ___---~
 O // | |
 ((~\ _| -|
 o O //-_ \/ | ~ |
 ^ \_ / ~ |
 | ~ |
 | / ~ |
 | ( |
 \ \ /\
 / -_____-\ \ ~~-*
 | / \ \
 / / / /
 /~ | /~ |
 ~~~~ ~~~~

# Device:P635A32_JP_DWB

-Getting uid 0->Ok.
-Checking permissive run-as.->No
-Dump policy->Ok
(Android M policy compatibility mode)
(Android M policy compatibility mode)
(Android M policy compatibility mode)
(Android M policy compatibility mode)
(Android M policy compatibility mode)
-Dump initreadelf: Error: /data/local/tmp/init.dump: Failed to read file's magic number
printf: 0x: invalid number

Error searching shellcode addr, already patched?
[email protected]_BLADE_V0720:/data/local/tmp $ su
[CODE]
There is also some android 6 64 bit variant.
[url]https://github.com/hyln9/VIKIROOT[/url]
Given my ZTE Blade V7 Lite has a android 6 the first version doesn't sound like it will work.
As for teh second version it seems the ZTE Blade V7 Lite is on a 32 bit kernal so it won't run.
[CODE]
[email protected]_BLADE_V0720:/data/local/tmp $ ./exploit
./exploit
/system/bin/sh: ./exploit: not executable: 64-bit ELF file
[CODE]
[CODE]
Processor : ARMv7 Processor rev 4 (v7l)
processor : 0
model name : ARMv7 Processor rev 4 (v7l)
BogoMIPS : 32.39
Features : half thumb fastmult vfp edsp neon vfpv3 tls vfpv4 idiva idivt vfpd32 lpae evtstrm sha2
CPU implementer : 0x41
CPU architecture: 7
CPU variant : 0x0
CPU part : 0xd03
CPU revision : 4
Hardware : MT6735P
Revision : 0000
Serial : 0000000000000000
There is also some information at
https://github.com/matteoserva/dirtycow-arm32
But I'm not familiar enough to understand how it relates to the ZTE Blade V7 Lite and if it will be possible.
Any tips you can provide would be much appreciated.

Can I assume this discussion applies to the Blade Max Z as well? It has Android 7.1. There is nothing around about rooting it.

Bootloader unlock, need dev's and testers

Hi, I have been attempting to unlock the QUALCOMM US Boot-loaders, and have been able to find flags In the ODIN boot-loader files.
EDIT: got some "keys"
ANY DEVS PARTCIPATING, Sign your packages with one of these
-ffffffffffffffffffffffffffff16a2e0b8f03e13dd29455c5c2a3d
-5ac635d8aa3a93e7b3ebbd55769886bc651d06b0cc53b0f63bce3c3e27d2604b
-6b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c296
-4fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5
-ffffffff00000000ffffffffffffffffbce6faada7179e84f3b9cac2fc632551
-b3312fa7e23ee7e4988e056be3f82d19181d9c6efe8141120314088f5013875ac656398d8a2ed19d2a85c8edd3ec2aef
-3617DE4A96262C6F5D9E98BF9292DC29F8F41DBD289A147CE9DA3113B5F0B8C00A60
---------------------------------
Also, another interesting part in keymaster.mbn was
KEYMASTER_SECURE_WRITE_PROTECT
0123456789ABCDEFkeymaster
da9008f709
-------------------
all flags from devcfg.mbn are
keystore_retain_wrong_passwd_attempt
OEM_counter_enable_rpmb
OEM_allow_rpmb_key_provision
OEM_disable_rpmb_autoprovisioning
OEM_sec_wdog_bark_time
OEM_sec_wdog_bite_time
OEM_reset_reason_list
OEM_l2_wa_enable
OEM_rot_enable_transfer_APPS
OEM_rot_enable_transfer_MODEM
OEM_rot_pk_hash1_fuse_values
OEM_pil_secure_app_load_region_size
OEM_pil_subsys_load_region_start
OEM_pil_subsys_load_region_size
OEM_disable_secure_app_pimem
client_00
client_01
client_02
client_03
client_04
client_05
client_06
client_07
cmnlib_gppo_rpmb_enablement
cmnlib_gppo_root_path license_data_store_path
proprietary_play_enabler_video_protect
proprietary_play_enabler_default_behaviour
IV_constraint robustness_version
proprietary_play_enabler_profile
proprietary_opl_profile_0
disable_security_stream_check provision_constraint_flag
use_legacy_hdmi_hdcp_check
get_IV_constraint
maximum_hdcp_2x_capability
enable_kcb_logging_flag
hdcp1_storage_type
chamomile_ips
hdcp2p2_storage_type
chamomile_ips_hdcp2p2
kernel_version
kernel_version_str_length
challenges
challenges_array_length fpta_name
gk_timeout_config
QFPROM_rail_id
QFPROM_rail_type
pam_qfprom_rail
ddr_rail_reg
arb_priority_cfg
number_priorities
number_pvc_port
pvc_port_cfg spmi_channel_cfg
spmi_channel_cfg_size
tz_mpu_rg_cfg
rg_cfg_size
pmic_arb_hal_id_xpu
spmi_rg_config
blsp_spi_mosi[6]
blsp_spi_miso[6]
blsp_spi_cs_n[6]
blsp_spi_clk[6]
blsp_spi_mosi[5]
blsp_spi_miso[5]
blsp_spi_cs_n[5]
blsp_spi_clk[5]
blsp_spi_mosi[1]
blsp_spi_miso[1]
blsp_spi_cs_n[1]
blsp_spi_clk[1]
blsp_spi_mosi[7]
blsp_spi_miso[7]
blsp_spi_cs_n[7]
blsp_spi_clk[7]
blsp_spi_mosi[11]
blsp_spi_miso[11]
blsp_spi_cs_n[11]
blsp_spi_clk[11]
blsp_i2c_sda[1]
blsp_i2c_scl[1]
blsp_i2c_sda[2]
blsp_i2c_scl[2]
blsp_i2c_sda[3]
blsp_i2c_scl[3]
blsp_i2c_sda[4]
blsp_i2c_scl[4]
blsp_i2c_sda[5]
blsp_i2c_scl[5]
blsp_i2c_sda[6]
blsp_i2c_scl[6]
blsp_i2c_sda[7]
blsp_i2c_scl[7]
blsp_i2c_sda[8]
blsp_i2c_scl[8]
blsp_i2c_sda[9]
blsp_i2c_scl[9]
blsp_i2c_sda[10]
blsp_i2c_scl[10]
blsp_i2c_sda[11]
blsp_i2c_scl[11]
blsp_i2c_sda[12]
blsp_i2c_scl[12]
blsp1_spi_cs1_n
tlmm_gpio_test_pin
tlmm_base tlmm_offset
tlmm_total_gpio
mst_pd
mst_md
gcc_blsp1_ahb_clk gcc_blsp1_qup5_spi_apps_clk
"fidocrypto" "" "/efs/" "/data/misc/qsee/" "/data/misc/qsee/" "Linux version 3.14.26-g43b1178-00038-g96ef344 ([email protected]) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri Jun 5 15:15:57 PDT 2015" authhat
-----------
the most interesting was
-OEM_rot_pk_hash1_fuse_values
as in the efuse value?
I would really love for some people to give some support
I will give these files as-is or I can give as raw text.
Edit: these flags are based off of QA6
Edit2: I wonder if we could find a dev with the Qualcomm version of the s7 (china), grab the Odin files, (AP,BL,CP) (flash your own csc carrier) and use CROM SERVICE

Devman-0903 said:
Hi, I have been attempting to unlock the QUALCOMM US Boot-loaders, and have been able to find flags In the ODIN boot-loader files.
all flags from devcfg.mbn are
keystore_retain_wrong_passwd_attempt
OEM_counter_enable_rpmb
OEM_allow_rpmb_key_provision
OEM_disable_rpmb_autoprovisioning
OEM_sec_wdog_bark_time
OEM_sec_wdog_bite_time
OEM_reset_reason_list
OEM_l2_wa_enable
OEM_rot_enable_transfer_APPS
OEM_rot_enable_transfer_MODEM
OEM_rot_pk_hash1_fuse_values
OEM_pil_secure_app_load_region_size
OEM_pil_subsys_load_region_start
OEM_pil_subsys_load_region_size
OEM_disable_secure_app_pimem
client_00
client_01
client_02
client_03
client_04
client_05
client_06
client_07
cmnlib_gppo_rpmb_enablement
cmnlib_gppo_root_path license_data_store_path
proprietary_play_enabler_video_protect
proprietary_play_enabler_default_behaviour
IV_constraint robustness_version
proprietary_play_enabler_profile
proprietary_opl_profile_0
disable_security_stream_check provision_constraint_flag
use_legacy_hdmi_hdcp_check
get_IV_constraint
maximum_hdcp_2x_capability
enable_kcb_logging_flag
hdcp1_storage_type
chamomile_ips
hdcp2p2_storage_type
chamomile_ips_hdcp2p2
kernel_version
kernel_version_str_length
challenges
challenges_array_length fpta_name
gk_timeout_config
QFPROM_rail_id
QFPROM_rail_type
pam_qfprom_rail
ddr_rail_reg
arb_priority_cfg
number_priorities
number_pvc_port
pvc_port_cfg spmi_channel_cfg
spmi_channel_cfg_size
tz_mpu_rg_cfg
rg_cfg_size
pmic_arb_hal_id_xpu
spmi_rg_config
blsp_spi_mosi[6]
blsp_spi_miso[6]
blsp_spi_cs_n[6]
blsp_spi_clk[6]
blsp_spi_mosi[5]
blsp_spi_miso[5]
blsp_spi_cs_n[5]
blsp_spi_clk[5]
blsp_spi_mosi[1]
blsp_spi_miso[1]
blsp_spi_cs_n[1]
blsp_spi_clk[1]
blsp_spi_mosi[7]
blsp_spi_miso[7]
blsp_spi_cs_n[7]
blsp_spi_clk[7]
blsp_spi_mosi[11]
blsp_spi_miso[11]
blsp_spi_cs_n[11]
blsp_spi_clk[11]
blsp_i2c_sda[1]
blsp_i2c_scl[1]
blsp_i2c_sda[2]
blsp_i2c_scl[2]
blsp_i2c_sda[3]
blsp_i2c_scl[3]
blsp_i2c_sda[4]
blsp_i2c_scl[4]
blsp_i2c_sda[5]
blsp_i2c_scl[5]
blsp_i2c_sda[6]
blsp_i2c_scl[6]
blsp_i2c_sda[7]
blsp_i2c_scl[7]
blsp_i2c_sda[8]
blsp_i2c_scl[8]
blsp_i2c_sda[9]
blsp_i2c_scl[9]
blsp_i2c_sda[10]
blsp_i2c_scl[10]
blsp_i2c_sda[11]
blsp_i2c_scl[11]
blsp_i2c_sda[12]
blsp_i2c_scl[12]
blsp1_spi_cs1_n
tlmm_gpio_test_pin
tlmm_base tlmm_offset
tlmm_total_gpio
mst_pd
mst_md
gcc_blsp1_ahb_clk gcc_blsp1_qup5_spi_apps_clk
"fidocrypto" "" "/efs/" "/data/misc/qsee/" "/data/misc/qsee/" "Linux version 3.14.26-g43b1178-00038-g96ef344 ([email protected]) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri Jun 5 15:15:57 PDT 2015" authhat
-----------
the most interesting was
-OEM_rot_pk_hash1_fuse_values
as in the efuse value?
I would really love for some people to give some support
I will give these files as-is or I can give as raw text.
Edit: these flags are based off of QA6
Edit2: I wonder if we could find a dev with the Qualcomm version of the s7 (china), grab the Odin files, (AP,BL,CP) (flash your own csc carrier) and use CROM SERVICE
Click to expand...
Click to collapse
Look guys, I know things look bad for the QUALCOMM variants, but with a good team of devs, we can do this! I'm tired of this crap that our OEM'S give us.

Stuff is too advanced for me but seems like some good ideas. I agree, we can do it if we work as a team.

I'm not a developer but, let me know how I can help. Can do basic odin flashes and such.

I wouldove to help in anyway I have been wanting this phones bootloader unlocked for a while now. I have the Sprint variant SM-G935P. please contact me.

There isn't a lot of info here, but this might be a lead.
http://google.com/newsstand/s/CBIwvuP0_Tk

Now we are getting somewhere, Let's attempt use bootstomp on 6.0.1 odin files all the way up to the latest 7.0

I would be glad to help and do some research, i dont know too much lingo but I can figure it out

@Devman-0903 , we can't use China's firmware, different partition sizes :/