Welcome to XDA

Search to go directly to your device's forum

Register an account

Unlock full posting privileges

Ask a question

No registration required
Post Reply

[PRERLS-REF] Root, BL, Kernel, Recovery

OP Chainfire

18th May 2012, 08:00 PM   |  #1  
Chainfire's Avatar
OP Senior Moderator / Senior Recognized Developer - Where is my shirt?
Thanks Meter: 55,693
 
9,483 posts
Join Date:Joined: Oct 2007
Donate to Me
More
This thread is left here only for historical purposes ! Now that the device has been released, easier and better methods have been developed to gain root, like CF-Root.

.
.
.
.
.

Check your device model ! Settings -> About device -> Model number. This stuff is made for the GT-I9300, if your model number has a suffix, it may not work, or if it is a totally different model, it will not work (may even brick) !

Ladies and gentlemen, we have root on the SGS3 (!)

This will all be common knowledge in the near future, but here's some info I though various devs, chefs, and users will be dying to know!

Unfortunately, I am not able to share the "insecure" kernel with you at the moment, because of fears it is traceable to the leaker (this is said to be the last traceable firmware revision).

Update: The kernel is linked at the bottom of the post.

Update: The easiest way for rooting is now CF-Root

This root is, as expected, trivial. It was a simple matter of repacking the stock kernel, with a modified adbd binary that thinks ro.secure=0 (even if ro.secure=1). This gives access to all adb root commands (see screenshots). Then SuperSU was installed manually.

Kernel

The modification was trivial, because this time around, Samsung is using the standard boot.img format, instead of the zImage format used for SGS1, SGS2, SGNote, etc, that is much harder to repackage.

This is also why I don't feel particularly bad about not giving you the insecure kernel - any serious dev on this board can do the same thing in 10 minutes.

Recovery

The recovery partition is also being used this time around. And thus we can flash recoveries separately from the kernel.

Bootloaders

There was no warning triangle at boot-up after flashing the modified kernel, but download mode did show a custom kernel flash counter which increased. Whether or not flashing a custom recovery also triggers this counter is as of yet unknown. Both flashing kernel and/or flashing recovery will trigger the flash counter!

Final note

This was all tested on a current (release candidate) SGS3 firmware. There may be a newer firmware on true retail/production devices. Though some things may change, it is unlikely to change much. Let's hope nothing

Also, Triangle Away did not work. They have hidden the boot partitions again as on the latest SGNote firmwares.

(No, I don't have an SGS3 yet, everything was done remotely)

Now, everybody say thanks to Samsung! I don't always agree with them, but so far they have been the first and IMHO still are the only high-end Android OEM who aren't complete douchebags in the unlock department!

Download

The instructions below assume some basic knowledge about Samsung devices. This is not a noob-proof guide.

Here's the "insecure" kernel, based on XX NEE ALE8 firmware:

CF-Insecure-SGS3_XX_NEE_ALE8-v1.2.zip

- Extract the linked file (you will get a .tar file)
- Use the ODIN version attached below to that .tar file to your SGS3 as "PDA"

Going from insecure to full root

After having flashed the insecure kernel, boot your phone, and make sure USB debugging is enabled.

Your device is now insecure, so you can use the adb root commands. This does not allow your on-device apps to get superuser access, though. For that, you need to install SuperSU:

Download and extract the sgs3-root-install.zip file, containing SuperSU v0.89. Make sure adb is running correctly, then just double click install.bat (this will reboot your phone).
Attached Thumbnails
Click image for larger version

Name:	root.png
Views:	23400
Size:	28.0 KB
ID:	1069141   Click image for larger version

Name:	remount.png
Views:	22856
Size:	23.0 KB
ID:	1069142  
Attached Files
File Type: zip Odin3-v1.85.zip - [Click for QR Code] (198.4 KB, 47050 views)
Last edited by Chainfire; 6th June 2012 at 09:57 PM.
The Following 325 Users Say Thank You to Chainfire For This Useful Post: [ View ]
18th May 2012, 08:03 PM   |  #2  
orb3000's Avatar
XDA Portal Team / Senior Moderator
Flag T r a v e l i n g Likes: HTC & XDA Dislikes: apples...
Thanks Meter: 3,045
 
22,289 posts
Join Date:Joined: Feb 2007
Donate to Me
Wow, that was fast!
samit.mahap
18th May 2012, 08:05 PM   |  #3  
Guest
Thanks Meter: 0
 
n/a posts
Quote:
Originally Posted by Chainfire

Ladies and gentlemen, we have root on the SGS3 (!)


(No, I don't have an SGS3 yet, everything was done remotely)

bravo my friend i hope the candle wasnt the inspiration or errr turpitude dayyyyymn.....nough said....thanks for leading the way
Last edited by samit.mahap; 18th May 2012 at 08:25 PM.
The Following User Says Thank You to For This Useful Post: [ View ]
18th May 2012, 08:10 PM   |  #4  
Member
Thanks Meter: 3
 
54 posts
Join Date:Joined: Jun 2009
More
Appreciate
The Following User Says Thank You to mdfine For This Useful Post: [ View ]
18th May 2012, 08:13 PM   |  #5  
Member
Flag Connecticut
Thanks Meter: 22
 
94 posts
Join Date:Joined: Jan 2012
More
Finally boot.img/recovery.img about time samsung(on their flasg ship that is)
18th May 2012, 08:13 PM   |  #6  
wanam's Avatar
Recognized Contributor / Developer
Flag Temara
Thanks Meter: 22,348
 
4,915 posts
Join Date:Joined: Jan 2011
Donate to Me
More
Remotely! Good work, i can't wait to get the device .

Sent from my GT-I9100 using Tapatalk 2
The Following 2 Users Say Thank You to wanam For This Useful Post: [ View ]
18th May 2012, 08:17 PM   |  #7  
ogdobber's Avatar
Recognized Developer
Thanks Meter: 1,813
 
3,256 posts
Join Date:Joined: Nov 2008
Donate to Me
More
thats great. i hope they don't 180 on the boot.img format.
18th May 2012, 08:18 PM   |  #8  
Phistachio's Avatar
Recognised Contributor
Flag Madeira, PT
Thanks Meter: 996
 
1,446 posts
Join Date:Joined: Oct 2011
More
So is the GSIII bootloader unlocked from factory or did it require a bootloader unlock?
18th May 2012, 08:18 PM   |  #9  
Chainfire's Avatar
OP Senior Moderator / Senior Recognized Developer - Where is my shirt?
Thanks Meter: 55,693
 
9,483 posts
Join Date:Joined: Oct 2007
Donate to Me
More
Quote:
Originally Posted by Phistachio

So is the GSIII bootloader unlocked from factory or did it require a bootloader unlock?

As with the SGS1, SGS2, and SGNote, it was never locked to begin with.
The Following 5 Users Say Thank You to Chainfire For This Useful Post: [ View ]
18th May 2012, 08:20 PM   |  #10  
Mbb15's Avatar
Member
Flag Hoek van Holland
Thanks Meter: 4
 
38 posts
Join Date:Joined: May 2011
More
Awesome!

Post Reply Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes