TRUE PermaRoot and the ULTIMATE S=Off!!! Check this out even if you're rooted!!!

Search This thread

Mexxicanbeauty

Senior Member
Feb 23, 2010
67
0
Houston
I tried that. After I temproot it and try to permaroot it it doesn't do nothing, I'll click it and nothing happens

Sent from my HTC Glacier using XDA App
 

KenpoAP

Senior Member
Oct 5, 2010
686
45
San Juan
Ok i keep trying this but it foesnt seem to work.
I do everything to a T amd when i go check the HBoot it looks like it works, S-OFF 0.85.2007 CID-11111111. But i power it back on and i go into terminal emulator and i put in su and it says denied?? What am i doing wrong?? I already tried permarooting thru Visionary too
Same here! Keep everything but still simlock!! ??


Sent from my HTC Glacier using XDA App
 

boroarke

Member
Jul 28, 2009
35
0
I'm following these directions and was able to make it through the first set of instructions without any issues. My phone has not been rooted previously and was running 2.2.1. After following the first set of instructions, I was able to get S-Off and my hboot was 0.86.0000. Looks like everything worked as it was supposed to.

I am now on the optional directions to load the 0.85.0000 and I'm running into an issue with Step 6:

6. Now open terminal on your device and type "su" and enter to gain root privileges.

When I type in su and hit enter, I get access denied. Any ideas? Any help is greatly appreciated.

Bryan
 

grankin01

Senior Member
Feb 9, 2008
973
658
Georgetown, KY
KenpoAP, what do you mean stikk simlock? Have you tried an at&t sim card?

Boroake, try running visionary temp root with set system r/w after root again. Then try the permroot option. This just turns s off you need to run visionary again to make root permanent.

My MyGlacier 4G MINE!!!
 

topgun303

Senior Member
Sep 19, 2010
673
266
springfield va
I'm following these directions and was able to make it through the first set of instructions without any issues. My phone has not been rooted previously and was running 2.2.1. After following the first set of instructions, I was able to get S-Off and my hboot was 0.86.0000. Looks like everything worked as it was supposed to.

I am now on the optional directions to load the 0.85.0000 and I'm running into an issue with Step 6:

6. Now open terminal on your device and type "su" and enter to gain root privileges.

When I type in su and hit enter, I get access denied. Any ideas? Any help is greatly appreciated.

Bryan

A lot of people are having issue with su being denied. If you are running visionary r14 on your phone Then this is what i recommend. Uninstall visionary and install visionary r11 and do root again. Hope this works for you.
download link for visionary r11 http://xdaforums.com/showpost.php?p=9278164&postcount=899
 

boroarke

Member
Jul 28, 2009
35
0
A lot of people are having issue with su being denied. If you are running visionary r14 on your phone Then this is what i recommend. Uninstall visionary and install visionary r11 and do root again. Hope this works for you.
download link for visionary r11 http://xdaforums.com/showpost.php?p=9278164&postcount=899

Thanks for the quick responses everyone. I'll give that a try and post back my results. Once I uninstall r14 and install r11, do I need to redo the process again starting for the following point:
6. Run visionary to gain temp root.

7. Open terminal emulator on your device, type "su", and hit enter to gain root privileges.

8. Type "cd /data/local" and hit enter.

9. Now type "chmod 777 gfree" and hit enter to make the program executable.

10. Type "./gfree" and hit enter.

11. Wait for the program to finish and then reboot into HBoot to see if S=Off. Also, check your bootloader version. If it says s=off and has bootloader version 0.86.0000 it worked.​

Also, the link above to r11 has three different versions of Visionary but not sure which one I need, none of them say r11. Any idea? Sorry, I'm trying not to ask too many questions.
 
Last edited:

topgun303

Senior Member
Sep 19, 2010
673
266
springfield va
Thanks for the quick responses everyone. I'll give that a try and post back my results. Once I uninstall r14 and install r11, do I need to redo the process again starting for the following point:
6. Run visionary to gain temp root.

7. Open terminal emulator on your device, type "su", and hit enter to gain root privileges.

8. Type "cd /data/local" and hit enter.

9. Now type "chmod 777 gfree" and hit enter to make the program executable.

10. Type "./gfree" and hit enter.

11. Wait for the program to finish and then reboot into HBoot to see if S=Off. Also, check your bootloader version. If it says s=off and has bootloader version 0.86.0000 it worked.​

Also, the link above to r11 has three different versions of Visionary but not sure which one I need, none of them say r11. Any idea? Sorry, I'm trying not to ask too many questions.

Download the one in the middle and then once installed. Now open visionary and Make sure "set system r/w after root" checked then click on "root". that should do the trick. I would try getting the su first before you go to step 8.
 

boroarke

Member
Jul 28, 2009
35
0
Thanks all for the help, I got it to work. Simply temp rooted again with r14 with set system r/w after root checked. After that, I clicked on permroot or something like that. I was then given su access and was able to finish the rest of the steps without any issues. I now have S-Off and 0.85.2007! Thanks everyone!
 
Last edited:

topgun303

Senior Member
Sep 19, 2010
673
266
springfield va
Thanks all for the help, I got it to work. Simply temp rooted again with r14 with set system r/w after root checked. After that, I clicked on permroot or something like that. I was then given su access and was able to finish the rest of the steps without any issues. I now have S-Off and 0.85.2007! Thanks everyone!

Perfect I am glad it worked for you :)
 

KenpoAP

Senior Member
Oct 5, 2010
686
45
San Juan
KenpoAP, what do you mean stikk simlock? Have you tried an at&t sim card?

Boroake, try running visionary temp root with set system r/w after root again. Then try the permroot option. This just turns s off you need to run visionary again to make root permanent.

My MyGlacier 4G MINE!!!

I am s=off and permrooted! My bootloader still said simlock! Is that an issue! Cid is 11111111 etc!


I use your old method! Flawless!

I'm also in .85 in bootloader!
I follow thr trrminal steps and it says done at the end! Went back to the bootloader and the simlock option is still there! I'm done or dod I do something wrong! Is that option need to be there or it has to be gone!?!

Sent from my HTC Glacier using XDA App
 

grankin01

Senior Member
Feb 9, 2008
973
658
Georgetown, KY
Find a friend with an at&t simcard and see if it works. Mine still says simlock and I checked with a coworkers at&t sim and it worked fine. :)

I don't think it showing up on the hboot screen is a problem.

My MyGlacier 4G MINE!!!
 

KenpoAP

Senior Member
Oct 5, 2010
686
45
San Juan
Find a friend with an at&t simcard and see if it works. Mine still says simlock and I checked with a coworkers at&t sim and it worked fine. :)

I don't think it showing up on the hboot screen is a problem.

My MyGlacier 4G MINE!!!

I'll do that and come back with an answer. Thanks!

Sent from my HTC Glacier using XDA App
 

frostmartinez

Member
May 11, 2010
20
1
Interesting side effects

Encountered some interesting side effects, and mind you, I'm not complaining. Did the gfree process, running hboot .85 from prior permaroot. For all intensive purposes, the phone appears to still be sim locked, where it displays simlock and cid tmob030. The interesting part is that if fastboot is not enabled, the phone will reboot into clockwork, and after having been rebooted out of clockwork, will come up in airplane mode.
 

larryg2k3

Senior Member
Jun 28, 2006
100
8
This worked for me, however it seems now that if I turn my phone off and plug it in, it automatically boots into clockwork recovery. Do you know why?
 

grankin01

Senior Member
Feb 9, 2008
973
658
Georgetown, KY
Encountered some interesting side effects, and mind you, I'm not complaining. Did the gfree process, running hboot .85 from prior permaroot. For all intensive purposes, the phone appears to still be sim locked, where it displays simlock and cid tmob030. The interesting part is that if fastboot is not enabled, the phone will reboot into clockwork, and after having been rebooted out of clockwork, will come up in airplane mode.

This is the first I have heard about this and it is an interesting situation indeed. Have you tried running the gfree program again to see if it will "even everything out"?

This worked for me, however it seems now that if I turn my phone off and plug it in, it automatically boots into clockwork recovery. Do you know why?

This was a known "bug" from the beginning ever since rooting and clockwork for our device came about. Mine does the same thing but it's only when it is plugged in and off. Since I hardly ever shut my phone down I haven't worried about this. :)
 

Top Liked Posts

  • There are no posts matching your filters.
  • 93
    Ok guys, first of all Scotty2 gets all the credit for the program R&D. I used my device as a test bed and have tried a couple different kernels (Gr8Gorilla's O/C Kernel and the stock kernel).

    Now for the boring stuff ...

    This is a very invasive way of rooting your device but the benefit is TRUE S=Off and root privileges throughout the system. As such, you do this at your own risk and if you brick your device neither Scotty2 nor myself are responsible, YOU ARE!!! Do this at your own risk!!!

    This is not for the faint of heart and if you have any reservations about doing things like this do not do it.

    This process will do three things for your device. I will explain them here:

    1. It will set up Super CID on your device allowing you to flash any carriers rom (not just tmobile). Giving you more freedom with your choice of software. The software still needs to be device specific to the glacier for compatability reasons though. Like vodafone glacier roms etc.

    2. It will subsidy unlock your device. In other words, it will SIMUNLOCK your phone allowing you to use an AT&T sim card and so on in your device without needing the unlock code from HTC.

    3. Most important of all it will turn the RADIO S=Off. This is the ultimate S=Off because the radio is what controls the security flag in the first place. Once you turn it off here it is off everywhere and will allow you pure unadulterated access to your device.

    This process will not change your bootloader (unless your on 0.86.0000 and you follow the optional steps).

    Now, you may be asking "Why do this? I already have root from your other guide and it has given me r/w access to system and recovery. I thought this meant we had permanent S=Off." This is only partially true. We have had an engineering bootloader and "Label" s=off not radio s=off. When you turn the security off in radio it is off permanently no matter what hboot you have installed engineering or otherwise. However, it is optional but you can still copy the engineering hboot over and it will allow you to flash whatever you like without (as much) fear of bricking your device.

    This guide assumes you know how to use ADB. If you do not there are guides all over XDA to show you how. There is even a really good one in this forum. Also here is a video on how to setup adb discovered by topgun303: http://www.youtube.com/watch?v=1UF5w1dKe2U

    *NOTE*
    For some reason this process can bork your recovery. If you notice after following the steps below that in order to reboot from recovery you have to uninstall/reinstall the battery and hit the power button, just install/reinstall clockwork recovery through Rom Manager in the android market and it will fix your problem. :)


    CONFIRMED: Guide does work for pre-OTA devices!!! Thanks xanz!

    Here we go:

    If you are already permarooted per the other guide just follow the first 11 steps.

    Make sure you have visionary installed on your device. (If you were already permarooted w/s=off ignore this step.)

    Download this file:
    http://www.mediafire.com/?s7afymwe2wb3x60 New version of gfree with more options! See below.
    md5sum: b73c56ca0e21664c5756d4ad295063c5

    1. Now unzip the file into your SDK tools directory.

    2. Plug your device into your computer.

    3. Now open explorer and hold down shift at same time you right mouse click on your SDK tools directory (platform-tools if you have the R8 version of the SDK). Select open command window here. If you are in linux (ubuntu) right mouse click on your SDK tools folder, choose actions, and choose open command window(or whatever it's called). Otherwise, open a command prompt and cd your way to your SDK tools directory.

    4. Type "adb push gfree /data/local" and hit enter.

    Optionally, you could dl the file to your phone use androzip or something like it to unzip the file and then use root explorer to move the file named gfree to /data/local. Not the gfree.h file. All the other files are source code inlcuded for the gnu license. This would skip the first 4 steps. :)

    5. Now unplug your device from the computer.

    6. Run visionary to gain temp root. (If you were already permarooted w/s=off ignore this step.)

    7. Open terminal emulator on your device, type "su", and hit enter to gain root privileges.

    8. Type "cd /data/local" and hit enter.

    9. Now type "chmod 777 gfree" and hit enter to make the program executable.

    10. Type "./gfree -f" and hit enter.

    New features in gfree.
    gfree usage:
    gfree [-h|-?|--help] [-v|--version] [-s|--secu_flag on|off]
    -h | -? | --help: display this message
    -v | --version: display program version
    -s | --secu_flag on|off: turn secu_flag on or off
    -c | --cid <CID>: set the CID to the 8-char long CID
    -S | --sim_unlock: remove the SIMLOCK

    With the new features you can turn off one thing at a time. You can also turn security back on and set the CID back to stock if you wish. To turn simlock back on you still have to follow the revert procedures on this page as the information that is patched to turn the lock off is encrypted and we can't write back to it other than restoring the entire image.

    So, if you wanted to leave simlock on but turn security off and set super CID the command would be "./gfree --secu_flag off --cid 11111111" + enter. The -f switch after ./gfree that is now in the above step (./gfree -f) just tells gfree to patch everything.

    11. Wait for the program to finish and then reboot into HBoot to see if S=Off. Also, check your bootloader version. If it says s=off and has bootloader version 0.86.0000 it worked.

    If you already had hboot 0.85.2007 you can check it through the hboot menu. It gives you an option for "system info" in the hboot menu. Highlight it and hit power. It should say CID = 11111111 or something like that. If it does your golden. :D
    Congratulations!

    12. If this is the first time you have rooted your device you will need to run visionary again (temproot w/set system r/w after root checked and then attempt permroot) to make root privileges permanent and then reboot again. Now "su" should work properly for you.

    Gfree writes a backup of the file that it patches named Part7backup-numbers.bin on your sdcard. I suggest putting this file in a safe place as it is the only way to revert if you need to.

    [Optional] Steps to flash engineering bootloader.

    1. Restart your phone and plug it back into your computer.

    2. Download this file: http://www.megaupload.com/?d=NN5726Z8
    md5sum: df4fd77f44993eb05a4732210d2eddc6

    3. Copy the file to your SDK tools directory.

    4. Open a command prompt again and cd into your SDK tools directoty (platform-tools if your on the new R8 SDK).

    5. Type "adb push hboot_dhd.nb0 /data/local" and hit enter.

    6. Now open terminal on your device and type "su" and enter to gain root priviliges.

    7. Type "cd /data/local" and enter.

    8. Now type "dd if=hboot_dhd.nb0 of=/dev/block/mmcblk0p18" and hit enter.

    9. You should see something like: 2048 bytes in 2048 bytes out 1048576 bytes copied blah blah blah.

    10. Now restart the device into hboot and check if your bootloader version is 0.85.2007. That is what you want to see.

    Congratulations, you now have a TRUE root and engineering bootloader on your shiny MT4G!!!

    Procedure to revert

    1. Rename the part7backup file that you already have to something just so you know that it is the original backup.

    2. Open up terminal emulator or adb shell and type "su" + enter to get root privileges.

    3. Type "cd /data/local" and hit enter.

    4. Now type "./gfree -f" + enter to run gfree again. It will disable wp on the emmc and remove the brq filter in the kernel. (as well as make another backup, which you can delete if you wish)

    5. Now run the "dd if=/where/your/part7backup-numbers.bin of=/dev/block/mmcblk0p7" and it should show the output:
    xxxx bytes in
    xxxxbytes out
    xxxxxxxxxx copied in blah blah blah

    6. Run "sync" and then reboot. (I didn't do this and it worked fine but it won't hurt either. :))

    If you have the engineering hboot 0.85.2007 installed you will still be showing s=off when you do the above revert steps. Follow these steps to reflash the stock hboot and turn s=on:

    Download this file and unzip it to /sdcard on your device.

    unroot.rar
    http://www.mediafire.com/?12oi5elu7v2y8og
    md5sum: aad4e64126cf8d92d7e8b5abb48fdadd

    Terminal Emulator Method
    1. Open up terminal editor on your device.(I prefer this method b/c you can see the output.)

    a. Type "su" + enter to gain root privileges.

    b. Type "cd /sdcard/unroot" + enter.

    c. Type "sh unroot.sh" + enter.

    d. Follow the onscreen prompts.

    File Explorer Method

    2. Open root explorer, sufbs, or some other file browser with root access.

    a. Navigate to /sdcard/unroot.

    b. Click on unroot.sh and allow it to run. Some file browsers ask permission before they execute scripts.

    c. Wait 18 to 20 seconds and reboot your phone into the bootloader to check if S=on.

    You now have S=ON again.


    Here is a pic of the stock HBoot 0.86.0000 with S=Off to prove it. :D
    2
    The latest MIUI build... do I have to be on froyo?

    Yes, download a rooted stock froyo ROM, then try it

    If I helped, give thanks, if you please.
    ........Death before dishonor........
    2
    Sorry for the bump, but can I get some feedback on this? I'm still not certain if it's "Better" to go with the engineering bootloader or the stock.

    Go with engineering boot instead, you can fully modify your phone, with custom splash screens. An having the engineering boot, there less likely of a change of you flashing something that requires eng an possibly messing up the phone.

    From my fist to your face, enjoy.
    2
    Needing a mirror to the engineering bootloader...since megaupload is down forever...

    Here's the engineering HBoot for ya.

    http://wiki.cyanogenmod.com/wiki/HTC_Glacier:_Support_Downloads
    2
    Hey Grankin, thanks again for all your hard work and quick replies...I have to unroot and send my phone back, but I'm unsure what to type in this area, please help...thanks
    Now run the "dd if=/where/your/part7backup-numbers.bin of=/dev/block/mmcblk0p7" and it should show the output:
    xxxx bytes in
    xxxxbytes out
    xxxxxxxxxx copied in blah blah blah
    my part7backup is on my sd card named Originalpartbackup7, so would I type
    "dd if=/sdcard/Originalpart7backup-numbers.bin of=/dev/block/mmcblk0p7 ?
    Thanks again

    Yes, that is correct.

    Hallo please advice
    I am going to purchase a locked t-mobile 4G
    Can I have it unlocked with that method? (and rooted and s-off)?
    what can I do and watch?

    Yes you can root this way and I'm not sure if there is a video on it. :confused: