Thread Closed

[S-OFF] Got Root!

OP xHausx

22nd June 2011, 07:56 AM   |  #1  
xHausx's Avatar
OP Forum Moderator / Recognized Developer
Flag Central Florida
Thanks Meter: 4,528
 
6,777 posts
Join Date:Joined: Jul 2010
Donate to Me
More
DO NOT POST IN THIS THREAD UNTIL YOU READ THIS
Congrats and mad props to Agrabren and Team WIN for punching a hole through HTCs software and getting root! Agraben now has a thread for it so make sure you thank them for all of their hard work: [GUIDE] Fre3vo / Fre3dom Official Thread

The thread got way off track for awhile there but maybe now we can keep it close to being on topic. As long as it is somewhat related to the topic you won't hear me complain, however, this is Not the place to ask about Netflix, why your Battery doesn't last all week or how you can get out of paying a dollar a day for wireless tethering. For those of you just getting your phones, if you find that your bootloader is unlocked (read: S-OFF) please send me a PM. Also, if you're still unsure about the differences between S-OFF, and Root, and what it all means; you can check out the Android Dictionary or feel free to ask in the Q&A section. I know the dictionary there is somewhat lacking but it's still pretty good.


Now that root has been obtained we are able to focus on getting S-OFF and opening these things up for ROMs. HTC is using a new security scheme with these that hasn't made it easy so far, but as is with anything new it's going to have holes that are just waiting to be found. Using Flash_image to flash directly looks to be a dead end but there are still many different angles that are being worked on at the moment. Please jump in anytime if you have an idea that you think may help.

I have attached a few things to this bottom of this post and dragonfyre13's thread has a lot of good info that is being deposited there: Root: shaking something loose [WIP]. Odds are very good our current method of getting root won't last long so it never hurts to start looking for something new early.


If you find the file SMART_IO.CRD on your sd card please do not delete or format anything on it and let us know.

The read and writesecureflag commands show the following when you try to use them:
Code:
fastboot oem readsecureflag
... INFOsecure_flag: 3
OKAY

fastboot oem writesecureflag ?
... INFO shooter_init_sd, SD card already power on
INFOsdcc_init_memory_device done
INFO[FAT_ERROR] fat_open_file: can not find SMART_IO.CRD
INFO[JAVACARD_ERR] SMART_IO.CRD cann't find
INFOwritesecureflag: Permission denied, value 1
OKAY

Update 6/28: Many are wondering if the Incredible 2 being unlocked would help us and Shinzul posted a good explanation of how it relates to where we are:
Quote:
Originally Posted by Shinzul

Quote:
Originally Posted by m03sizlak

Alpha Rev X has released a beta version of their Incredible2 S-OFF utility:

http://alpharev.nl/x/beta/

I can only imagine that the method used could quite possibly be adapted to the 3D. Someone needs to open these tools up in IDA and start reverse-engineering.

The incredible 2 shipped with Froyo on it, which means that there are plenty of available exploits that can be used to gain a root shell. As far as I understand, the inc2 guys didn't have a leaked eng bootloader, so once they had temp root, they had no way to unlock the bootloader without essentially hex editing the existing one and then coming up with a process to overwrite the existing one.

We have an eng bootloader for the 3VO, so all we really need to do is gain a root shell and then write the boot and recovery images and reboot - poof, s-off.

Props to the AlphaRev team for the inc2 work, but unfortunately, it doesn't help one bit for us.



Disclaimer: You and you alone are responsible for anything you do to your phone. Do not attempt anything that is in this thread, or on this site for that matter, if you do not want to risk damaging your phone.


DL link for gingerbreak is here.
Last edited by xHausx; 6th July 2011 at 04:57 PM.
The Following 43 Users Say Thank You to xHausx For This Useful Post: [ View ]
22nd June 2011, 11:16 AM   |  #2  
RVDigital's Avatar
Senior Member
Thanks Meter: 267
 
460 posts
Join Date:Joined: Feb 2010
More
Do you need "SMART_IO.CRD" for a further test?

I had read that the file was being found on the SD card included with the device. if possible, maybe someone with the Phone can up this file for further testing...
22nd June 2011, 11:23 AM   |  #3  
xHausx's Avatar
OP Forum Moderator / Recognized Developer
Flag Central Florida
Thanks Meter: 4,528
 
6,777 posts
Join Date:Joined: Jul 2010
Donate to Me
More
Quote:
Originally Posted by RVDigital

Do you need "SMART_IO.CRD" for a further test?

I had read that the file was being found on the SD card included with the device. if possible, maybe someone with the Phone can up this file for further testing...

It may help, especially if you can find one from a device with the eng firmware on it
The Following User Says Thank You to xHausx For This Useful Post: [ View ]
22nd June 2011, 01:05 PM   |  #4  
RVDigital's Avatar
Senior Member
Thanks Meter: 267
 
460 posts
Join Date:Joined: Feb 2010
More
Quote:
Originally Posted by xHausx

It may help, especially if you can find one from a device with the eng firmware on it

Have you asked our leaker friend if he still has the device?
22nd June 2011, 02:05 PM   |  #5  
il Duce's Avatar
Recognized Developer / Contributor / Themer / Retired Moderator
Flag Twin Cities, MN
Thanks Meter: 16,445
 
16,696 posts
Join Date:Joined: Feb 2009
Donate to Me
More
I get mine today "before 3pm CST" according to UPS/Sprint... I work at 2, so if I get it before work, and the SD has this file, I will post it before I even boot the device lol.
22nd June 2011, 02:13 PM   |  #6  
TMartin's Avatar
Recognized Developer
Flag Westerville, Ohio
Thanks Meter: 1,579
 
2,118 posts
Join Date:Joined: Jun 2008
Donate to Me
More
If we don't get an unlocked bootloader, then this is where we might have to turn to an XTC clip (aka like a goldcard method). I'll reach out to the XTC dev. I know he just started a thread over in the Sensation section.
Last edited by TMartin; 23rd June 2011 at 11:48 PM.
The Following User Says Thank You to TMartin For This Useful Post: [ View ]
22nd June 2011, 03:24 PM   |  #7  
Senior Member
Thanks Meter: 48
 
841 posts
Join Date:Joined: Jul 2007
il have mine in about a hour or so. i will be able to test whatev
22nd June 2011, 03:38 PM   |  #8  
NxtGenCowboy's Avatar
Senior Member
Flag Chicago,IL
Thanks Meter: 181
 
434 posts
Join Date:Joined: Dec 2007
More
Got mine if anyone wants to take a peak

http://i.imgur.com/fWLrR.jpg

I am in #HTC-Evo-3D
22nd June 2011, 03:49 PM   |  #9  
Recognized Developer
Thanks Meter: 4,056
 
4,442 posts
Join Date:Joined: Jun 2010
Donate to Me
More
Can anyone post the OTA dump as reported by http://www.androidcentral.com/sprint...x-calendar-bug ?
22nd June 2011, 04:09 PM   |  #10  
alchemist316's Avatar
Senior Member
Flag greenwich ct
Thanks Meter: 125
 
990 posts
Join Date:Joined: Jan 2011
More
Quote:
Originally Posted by bigbiff

Can anyone post the OTA dump as reported by http://www.androidcentral.com/sprint...x-calendar-bug ?

http://www.mediafire.com/?rl58ielm4zs0o09

Thread Closed Subscribe to Thread

Tags
evo 3d got rooted, rock off with your s-off, teamf'nwin for the win!!, teamwin-1 htc-0, winnnning, woooot!
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes


Top Threads in EVO 3D CDMA Android Development by ThreadRank