Quote:
Originally Posted by telefonaimobilus Not BB6 but simple Nokia 7100
Best Regards, |
Adding 7100 is possible By Cyclone Programmer
Main thing as they said Read follow WELL
Code:
Thing with 7100, and other new ASICs is more complex.
Unlocking is no problem at all, as making partials is not problem too - we done it, actually problem is the new ROM installed in this phone.
Older rom has backdoor, so it was possible to write proxy, and during integrity check, it was possible to forward to rom not-patched values, so in result phone integrity check was passed and signal was on.
In newer asics, phone before integrity check reads ROM version. If ROM is below v6, it's doing standard ROM call for integrity check which can be tricked 100%, otherwise (asic 3168) integrity check is done from beginning to end in ROM, so can't pass any tricked data to it. We tried to emulate this ROM call so it would act as a old version, but looks like they removed from it old call. Similiar story with "new security" DCT4plus which we released tonight. In newer versions Nokia added support for newer ASICs, so after some modifications with rom and sw was possible to unlock it, but if any of such phone will be avaiable with new ASIC, then surely after unlock it will have no signal.
So unlock is not so easy for now, but theres 3 options:
Either ROM will be readed - so the way of calculationg additional flash security checksum can be reversed, or emu prrocess itself
Some other unlock way will be found (maybe psw calc, till algo is same as in bb5)
Maybe we missed something during reverse