FORUMS

[BOOT] 11 Jan r2 6.2.1 - Insecure Boot Image for Kindle Fire

5,279 posts
Thanks Meter: 7,359
 
By paulobrien, Senior Member on 14th December 2011, 11:26 AM
Post Reply Email Thread
The first thing I generally do when I start hacking around on a device is create an insecure boot image.

The reason for this is that an insecure boot image gives you a degree of 'recoverability' at the very earliest stage of the device boot process - even if you totally screw up /system, you have a change of getting in via ADB and making things better. With this in mind (and since I haven't seen one about yet?), i've created an insecure boot image for the Kindle Fire. This is the stock 6.2.1 ROM boot image with ro.secure set to 0 and busybox installed as /system/bin/sh. This is important as it means you can still 'adb shell' even with a totally unmountable system partition.

INSTALL AT YOUR OWN RISK! THIS IS ONLY TESTED ON MY 6.2.1 BUILD KINDLE FIRE, I TAKE NO RESPONSIBLITY IF YOUR DEVICE BREAKS ETC. ETC.!

To install, do the following (ADB access is required):
  • Download the zergRush binary (huge props to the Revolutionary.io team for this exploit) - DOWNLOAD - MD5: aed52dbab0e924f3e7fbef8d314da771
  • Download the insecure boot image - DOWNLOAD - MD5: 717279b84953e41856b18975a0eb2f48
  • Check the MD5 hashes of the downloaded files
  • adb push zergRush to /data/local and make executable ('adb push zergRush /data/local/ && adb shell chmod 4755 /data/local/zergRush')
  • adb push the insecure boot image ('adb push r1.6.2.1.kindlefire.boot.insecure.img /data/local/')
  • Gain temproot ('adb shell /data/local/zergRush')
  • Flash the boot image ('adb shell dd if=/data/local/r1.6.2.1.kindlefire.boot.insecure.img of=/dev/block/platform/mmci-omap-hs.1/by-name/boot')
  • Reboot the device ('adb reboot')
And that's it, you're done, you should now have root ADB access!

P
The Following 8 Users Say Thank You to paulobrien For This Useful Post: [ View ] Gift paulobrien Ad-Free
14th December 2011, 12:03 PM |#2  
SikYou's Avatar
Senior Member
Thanks Meter: 78
 
Donate to Me
More
Nice to know that you have a kindle Paul, thanks for the boot!

Sent from my Kindle Fire using Tapatalk
14th December 2011, 12:18 PM |#3  
Senior Member
Thanks Meter: 38
 
More
is the rom rooted?
14th December 2011, 12:35 PM |#4  
SikYou's Avatar
Senior Member
Thanks Meter: 78
 
Donate to Me
More
Quote:
Originally Posted by ygvuhb

is the rom rooted?

This is NOT a ROM! Please read it carefully so that you know what it is

Sent from my Kindle Fire using Tapatalk
14th December 2011, 12:47 PM |#5  
Senior Member
Thanks Meter: 38
 
More
Quote:
Originally Posted by SikYou

This is NOT a ROM! Please read it carefully so that you know what it is

Sent from my Kindle Fire using Tapatalk

thanks

day one for safe to flash rom?

easy recovery when error on flashing?
14th December 2011, 02:36 PM |#6  
SikYou's Avatar
Senior Member
Thanks Meter: 78
 
Donate to Me
More
Filesonic SUCKS! Won't let me download the boot because it thinks I am still downloading something else, which I am clearly not. Maybe I'll try this when someone uploads to a legit host.

***I added some mirror links to Pauls thread over @ Modaco

---------- Post added at 09:36 AM ---------- Previous post was at 08:47 AM ----------

Well, so far I am stuck in a bootloop. I'll let you guys know what happens
14th December 2011, 03:25 PM |#7  
paulobrien's Avatar
OP Senior Member
Flag Norwich
Thanks Meter: 7,359
 
More
A bootloop? Flashed over stock? That makes no sense at all.

P

Sent from my Galaxy Nexus using Tapatalk
14th December 2011, 03:38 PM |#8  
SikYou's Avatar
Senior Member
Thanks Meter: 78
 
Donate to Me
More
Quote:
Originally Posted by paulobrien

A bootloop? Flashed over stock? That makes no sense at all.

P

Sent from my Galaxy Nexus using Tapatalk

Yep! I am a very experienced modder and I definitely followed the instructions to the T. I am not only looping but I have no access to shell so I am now in the process of trying to make a factory cable so that I can fastboot and recover from this. Not sure what went wrong
14th December 2011, 03:43 PM |#9  
Arkaknio's Avatar
Senior Member
Flag Seville
Thanks Meter: 43
 
More
Paul with a Kindle Fire are great news!!

Keep the good work!!
14th December 2011, 04:02 PM |#10  
paulobrien's Avatar
OP Senior Member
Flag Norwich
Thanks Meter: 7,359
 
More
Quote:
Originally Posted by SikYou

Yep! I am a very experienced modder and I definitely followed the instructions to the T. I am not only looping but I have no access to shell so I am now in the process of trying to make a factory cable so that I can fastboot and recover from this. Not sure what went wrong

Did you check the MD5s etc? I flashed it to my own Fire before uploading of course.

P

Sent from my Galaxy Nexus using Tapatalk
14th December 2011, 04:10 PM |#11  
SikYou's Avatar
Senior Member
Thanks Meter: 78
 
Donate to Me
More
Well I f'd up the factory cable build (I have very poor soldering skills) so I will wait for some parts to come in the mail and see if I can make it work. I wish teamblackhat still had these cables in stock

---------- Post added at 11:10 AM ---------- Previous post was at 11:03 AM ----------

Quote:
Originally Posted by paulobrien

Did you check the MD5s etc? I flashed it to my own Fire before uploading of course.

P

Sent from my Galaxy Nexus using Tapatalk

md5's checked and matched
Post Reply Subscribe to Thread

Guest Quick Reply (no urls or BBcode)
Message:
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes