Custom Bootloader

warning

Make sure you have the bootloader unlocked or you will get soft brick!

info

Thanks to Roger Ortiz for developing the payload for our bootloader!

The custom bootloader protects the device from Hard Brick by preventing critical operations such as flashing the preloader and locking the bootloader without restoring the original firmware.

In addition, it extends the functionality by adding new options for customizing and managing the system.

Features

• Blocks fastboot flash preloader
• Removes orange state
• Spoofes verified state to green
• Block fastboot flashing lock
• Adds fastboot oem help
• Adds fastboot oem hexdump

Install

Prebuild images

ChouChou v0.2

• UHA34.29-10
• UHAS34.29-10
• UHAS34.29-9

ChouChou v0.1

• UHA34.29-10
• UHAS34.29-10
• UHAS34.29-9

$ fastboot flash lk chouchou-UHA34.29-10.img

Manually build

1. Download your current firmware archive from lolinet
2. Clone repository chouchou
3. Transfer the lk.img file from the firmware archive to the directory chouchou
4. Install dependencies

   $ sudo pacman -S arm-none-eabi-newlib arm-none-eabi-gcc
5. Build payload

   $ cd payload; make; cd ..
6. Patch stock lk

   $ python3 patch_lk.py lk.img payload/build/payload.bin
   
   base: 0x4c400000, size: 1072864, name: lk
   payload injection point at 0x4c4f6400
   0x4c427638 (pivot) bl 0x4c4f6400 (payload)
   Writing 2238304 bytes to lk.img-patched...
7. Flash custom lk

   $ fastboot flash lk lk.img-patched