I am just getting into custom firmware and rooting phones.
I have a phone that appears to be unrootable for whatever reason due to a locked bootloader. The private key was never released and we only have access to the public key.
In order to flash install the firmware, verity keys have to match and the failure to match them results in a failed install.
Stock or factory editions have the correct public key and boot image, or recovery image, or OS image. Can this checksum based image of verification be copied and replace the signature image of a custom operating system image?
This would hopefully result in being able to trick the device into thinking it is installing factory firmware.
Or can I change the permanent file on the device itself to make the security checks go away? Like when on the internet sometimes it says security certificate untrusted proceed anyway.
Could we make the bootloader have like a one-time exemption click to allow non-verified image files to be uploaded?