FORUMS

Analysis & Opinion

Top Forum Discussions

[PRERLS-REF] Root, BL, Kernel, Recovery

9,735 posts
Thanks Meter: 61,768
 
By Chainfire, Senior Moderator / Senior Recognized Developer - Where is my shirt? on 18th May 2012, 07:00 PM
Post Reply Subscribe to Thread Email Thread
This thread is left here only for historical purposes ! Now that the device has been released, easier and better methods have been developed to gain root, like CF-Root.

.
.
.
.
.

Check your device model ! Settings -> About device -> Model number. This stuff is made for the GT-I9300, if your model number has a suffix, it may not work, or if it is a totally different model, it will not work (may even brick) !

Ladies and gentlemen, we have root on the SGS3 (!)

This will all be common knowledge in the near future, but here's some info I though various devs, chefs, and users will be dying to know!

Unfortunately, I am not able to share the "insecure" kernel with you at the moment, because of fears it is traceable to the leaker (this is said to be the last traceable firmware revision).

Update: The kernel is linked at the bottom of the post.

Update: The easiest way for rooting is now CF-Root

This root is, as expected, trivial. It was a simple matter of repacking the stock kernel, with a modified adbd binary that thinks ro.secure=0 (even if ro.secure=1). This gives access to all adb root commands (see screenshots). Then SuperSU was installed manually.

Kernel

The modification was trivial, because this time around, Samsung is using the standard boot.img format, instead of the zImage format used for SGS1, SGS2, SGNote, etc, that is much harder to repackage.

This is also why I don't feel particularly bad about not giving you the insecure kernel - any serious dev on this board can do the same thing in 10 minutes.

Recovery

The recovery partition is also being used this time around. And thus we can flash recoveries separately from the kernel.

Bootloaders

There was no warning triangle at boot-up after flashing the modified kernel, but download mode did show a custom kernel flash counter which increased. Whether or not flashing a custom recovery also triggers this counter is as of yet unknown. Both flashing kernel and/or flashing recovery will trigger the flash counter!

Final note

This was all tested on a current (release candidate) SGS3 firmware. There may be a newer firmware on true retail/production devices. Though some things may change, it is unlikely to change much. Let's hope nothing

Also, Triangle Away did not work. They have hidden the boot partitions again as on the latest SGNote firmwares.

(No, I don't have an SGS3 yet, everything was done remotely)

Now, everybody say thanks to Samsung! I don't always agree with them, but so far they have been the first and IMHO still are the only high-end Android OEM who aren't complete douchebags in the unlock department!

Download

The instructions below assume some basic knowledge about Samsung devices. This is not a noob-proof guide.

Here's the "insecure" kernel, based on XX NEE ALE8 firmware:

CF-Insecure-SGS3_XX_NEE_ALE8-v1.2.zip

- Extract the linked file (you will get a .tar file)
- Use the ODIN version attached below to that .tar file to your SGS3 as "PDA"

Going from insecure to full root

After having flashed the insecure kernel, boot your phone, and make sure USB debugging is enabled.

Your device is now insecure, so you can use the adb root commands. This does not allow your on-device apps to get superuser access, though. For that, you need to install SuperSU:

Download and extract the sgs3-root-install.zip file, containing SuperSU v0.89. Make sure adb is running correctly, then just double click install.bat (this will reboot your phone).
Attached Thumbnails
Click image for larger version

Name:	root.png
Views:	23862
Size:	28.0 KB
ID:	1069141   Click image for larger version

Name:	remount.png
Views:	23324
Size:	23.0 KB
ID:	1069142  
Attached Files
File Type: zip Odin3-v1.85.zip - [Click for QR Code] (198.4 KB, 48674 views)
Last edited by Chainfire; 6th June 2012 at 08:57 PM.
The Following 325 Users Say Thank You to Chainfire For This Useful Post: [ View ]
 
 
18th May 2012, 07:03 PM |#2  
orb3000's Avatar
XDA Portal Team / Retired Senior Moderator
Flag T r a v e l i n g Likes: HTC & XDA Dislikes: apples...
Thanks Meter: 3,058
 
Donate to Me
More
Wow, that was fast!
samit.mahap
18th May 2012, 07:05 PM |#3  
Guest
Thanks Meter: 0
 
More
Quote:
Originally Posted by Chainfire

Ladies and gentlemen, we have root on the SGS3 (!)


(No, I don't have an SGS3 yet, everything was done remotely)

bravo my friend i hope the candle wasnt the inspiration or errr turpitude dayyyyymn.....nough said....thanks for leading the way
Last edited by samit.mahap; 18th May 2012 at 07:25 PM.
The Following User Says Thank You to For This Useful Post: [ View ]
18th May 2012, 07:10 PM |#4  
Member
Thanks Meter: 3
 
More
Appreciate
The Following User Says Thank You to mdfine For This Useful Post: [ View ]
18th May 2012, 07:13 PM |#5  
Member
Flag Connecticut
Thanks Meter: 22
 
More
Finally boot.img/recovery.img about time samsung(on their flasg ship that is)
18th May 2012, 07:13 PM |#6  
wanam's Avatar
Recognized Contributor / Developer
Flag Temara
Thanks Meter: 24,556
 
Donate to Me
More
Remotely! Good work, i can't wait to get the device .

Sent from my GT-I9100 using Tapatalk 2
The Following 2 Users Say Thank You to wanam For This Useful Post: [ View ]
18th May 2012, 07:17 PM |#7  
ogdobber's Avatar
Recognized Developer
Thanks Meter: 1,832
 
Donate to Me
More
thats great. i hope they don't 180 on the boot.img format.
18th May 2012, 07:18 PM |#8  
Phistachio's Avatar
Recognised Contributor
Flag Belgium, BE
Thanks Meter: 1,012
 
More
So is the GSIII bootloader unlocked from factory or did it require a bootloader unlock?
18th May 2012, 07:18 PM |#9  
Chainfire's Avatar
OP Senior Moderator / Senior Recognized Developer - Where is my shirt?
Thanks Meter: 61,768
 
Donate to Me
More
Quote:
Originally Posted by Phistachio

So is the GSIII bootloader unlocked from factory or did it require a bootloader unlock?

As with the SGS1, SGS2, and SGNote, it was never locked to begin with.
The Following 5 Users Say Thank You to Chainfire For This Useful Post: [ View ]
18th May 2012, 07:20 PM |#10  
Mbb15's Avatar
Member
Flag 010
Thanks Meter: 4
 
More
Awesome!
18th May 2012, 07:20 PM |#11  
borce_razor's Avatar
Senior Member
Flag dev>null
Thanks Meter: 25
 
More
Awesome work man. Maybe triangle issue can be solved with usb jig

Read More
Post Reply Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes