Fedora on Fire TV

[iRet]

Is anyone tried to do this https://github.com/freedreno/freedreno/wiki/FireTV
It looks like it's possible and done by Rob Clark even in start of May. But lack of root prevent us to use it widely.
Booting process a little bit unclear for me.
Also check this out

 

[iRet]

I've just asked Rob about locked bootloader on G+, his response was:

To run custom kernel (ie. to get drm/msm driver) you would need an unlocked bootloader. Root the device, and then as root 'pm disable com.amazon.dcp' to block further updates (to avoid existing bootloader being updated). Hopefully the relevant people will be able to release more info about bootloader exploits soon.. having root is the first part of being able to do something useful w/ bootloader.

 

[iRet]

Hey, guys!
Rob posted some details about vulnerability allowing to unlock bootloader in his blog http://bloggingthemonkey.blogspot.ru/2014/06/fire-in-root-hole.html?showComment=1403624931085#c3252639689847494536

Also check the demo using this hole and providing ability to write to physical memory https://github.com/robclark/kilroy

Just need to figure out how to use it, is anyone have an ideas o hints?

 

[nhumber]

Hey, guys!
Rob posted some details about vulnerability allowing to unlock bootloader in his blog http://bloggingthemonkey.blogspot.ru/2014/06/fire-in-root-hole.html?showComment=1403624931085#c3252639689847494536

Also check the demo using this hole and providing ability to write to physical memory https://github.com/robclark/kilroy

Just need to figure out how to use it, is anyone have an ideas o hints?

anyone know what this stuff does?

https://github.com/robclark/firetv-grub

unfortunately it seems like there aren't a whole lot of users here with the knowledge to put this information to good use, while i understand what is happening i couldnt begin to make use of any of that information Rob posted. maybe we could we start a bounty on unlocking the bootloader? or should we all just wait it out for jcase and rclark? once the exploits are patched and a update is released im pretty sure your going to see the bootloader unlock made public. Great job in advance to jcase and robclark!

 

[iRet]

anyone know what this stuff does?

https://github.com/robclark/firetv-grub

unfortunately it seems like there aren't a whole lot of users here with the knowledge to put this information to good use, while i understand what is happening i couldnt begin to make use of any of that information Rob posted. maybe we could we start a bounty on unlocking the bootloader? or should we all just wait it out for jcase and rclark? once the exploits are patched and a update is released im pretty sure your going to see the bootloader unlock made public. Great job in advance to jcase and robclark!

GRUB is a most popular and widely used linux bootloader for PCs
This repo looks like a fork tuned to use in fire tv, I think this one will be used to boot linux on AFTV.

Talking with Rob, he expected, exploit will be issues as soon as amazon will release update.

 

[nhumber]

GRUB is a most popular and widely used linux bootloader for PCs
This repo looks like a fork tuned to use in fire tv, I think this one will be used to boot linux on AFTV.

Talking with Rob, he expected, exploit will be issues as soon as amazon will release update.

any new updates on this recently? maybe Robs installation could be easier now that we have the custom recovery option available? pretty interested in getting this running if i can use it for a dedicated xbmc box with proper 24hz support. maybe we could start a bounty for someone who can make an installation that works with cwm if theres interest.

 

[iRet]

any new updates on this recently? maybe Robs installation could be easier now that we have the custom recovery option available? pretty interested in getting this running if i can use it for a dedicated xbmc box with proper 24hz support. maybe we could start a bounty for someone who can make an installation that works with cwm if theres interest.

Still no news, you could try to ask Rob directly on G+. Not sure if it could be possible through cwm. As for bounty I will pay my $5.
The one thing confusing me, how Rob achieved result in video. Probably there is a way, but some guy still want to make money on it. Another option is a hardware modification.
Yep with linux this box will be very interesting, with Fire OS it's a very specific devise, far from perfect.

 

[nhumber]

Still no news, you could try to ask Rob directly on G+. Not sure if it could be possible through cwm. As for bounty I will pay my $5.
The one thing confusing me, how Rob achieved result in video. Probably there is a way, but some guy still want to make money on it. Another option is a hardware modification.
Yep with linux this box will be very interesting, with Fire OS it's a very specific devise, far from perfect.

i did ask him on G+, he said he could upload a pre built boot.img and pointed me to the kernel branch hes using on his firetv, https://github.com/freedreno/kernel-msm/commits/firetv-drm , rbox said its possible if we can get the kernel on there via his recovery.. its all just out of my league. Rob documents how he did it minus the bootloader and root on this page https://github.com/freedreno/freedreno/wiki/FireTV , the instuctions are there so is it possible to flash the kernel with cwm ? and then is it possible to do everything he does with partitioning and file moving via recovery? or if someone gets it on there via his directions is it possible to just make a backup or flashable zip of the whole system? that people can just restore? I'll donate 5$ myself, so that puts the bounty at 10$ i guess.

 

[rbox]

i did ask him on G+, he said he could upload a pre built boot.img and pointed me to the kernel branch hes using on his firetv, https://github.com/freedreno/kernel-msm/commits/firetv-drm , rbox said its possible if we can get the kernel on there via his recovery.. its all just out of my league. Rob documents how he did it minus the bootloader and root on this page https://github.com/freedreno/freedreno/wiki/FireTV , the instuctions are there so is it possible to flash the kernel with cwm ? and then is it possible to do everything he does with partitioning and file moving via recovery? or if someone gets it on there via his directions is it possible to just make a backup or flashable zip of the whole system? that people can just restore? I'll donate 5$ myself, so that puts the bounty at 10$ i guess.

If he can provide a kernel and the missing link of what to do once you have the kernel and an empty root fs... is it doing an install or is it copying a premade rootfs, then I could probably make some kind of flashable package. I won't have time until next week though.

 

[freezer2k]

If he can provide a kernel and the missing link of what to do once you have the kernel and an empty root fs... is it doing an install or is it copying a premade rootfs, then I could probably make some kind of flashable package. I won't have time until next week though.

wow guys,

this sounds and looks amazing. This should also enable to run something like OpenELEC natively. Would prefer this much more than having to run Android with all the refresh rate issues.

My box is still in preorder, Amazon says it will ship in about 6weeks. Think this could be an amazing toy


https://github.com/freedreno/kernel-msm/commits/firetv-drm
From some of the commits here, it looks like the Linux kernel does actually support the GPU more or less? Anyone knows if this means 2D/3D or what exactly?

 

[rbox]

My box is still in preorder, Amazon says it will ship in about 6weeks. Think this could be an amazing toy

If by preorder you mean Germany/UK... it's going to come with 51.1.3.0 which isn't currently rootable.

 

[freezer2k]

If by preorder you mean Germany/UK... it's going to come with 51.1.3.0 which isn't currently rootable.

Yes Germany,
Pretty sure it will either be possible due to another exploit by then or worst case with a little bit of soldering The eMMC thing looks promising.

 

[rbox]

Yes Germany,
Pretty sure it will either be possible due to another exploit by then or worst case with a little bit of soldering The eMMC thing looks promising.

I wouldn't put too much faith in a new exploit coming out by then, but I guess wishful thinking... The eMMC "hack" is the best route, but I don't think anyone has actually figured it out yet.

 

[nhumber]

Just to update this for those who care, We've got a pre compiled kernel now (located here) and i was informed using the prebuilt fedora f21 images (located here) should include everything needed for graphics drivers to work out of the box with the ftv. Rbox said he would try and throw something together when he gets some time which is great but i figured i'd still throw it out there for anyone else who was curious. I was told a good approach would be to flash the kernel and have the fedora file system on an external USB leaving the amazon file system alone, maybe one day it will be possible to kinda select between two kernels and be able to boot either fedora from external usb or the stock amazon OS from the onboard storage. Bounty is still at 10$

 

[freezer2k]

Just to update this for those who care, We've got a pre compiled kernel now (located here) and i was informed using the prebuilt fedora f21 images (located here) should include everything needed for graphics drivers to work out of the box with the ftv. Rbox said he would try and throw something together when he gets some time which is great but i figured i'd still throw it out there for anyone else who was curious. I was told a good approach would be to flash the kernel and have the fedora file system on an external USB leaving the amazon file system alone, maybe one day it will be possible to kinda select between two kernels and be able to boot either fedora from external usb or the stock amazon OS from the onboard storage. Bounty is still at 10$

This sounds great,

would love to try it Biggest issue remaining would probably be rooting the devices that are shipped out now...

 

[freezer2k]

Just saw this:

http://bloggingthemonkey.blogspot.de/2014/06/fire-in-root-hole.html

Looks like there is a CVE that allows to root the FireTV, which is different from Towelroot?


Anyone knows if this has been fixed by Amazon?


Here is some proof of concept code:
https://github.com/robclark/kilroy

 

[iRet]

Just to update this for those who care, We've got a pre compiled kernel now (located here) and i was informed using the prebuilt fedora f21 images (located here) should include everything needed for graphics drivers to work out of the box with the ftv. Rbox said he would try and throw something together when he gets some time which is great but i figured i'd still throw it out there for anyone else who was curious. I was told a good approach would be to flash the kernel and have the fedora file system on an external USB leaving the amazon file system alone, maybe one day it will be possible to kinda select between two kernels and be able to boot either fedora from external usb or the stock amazon OS from the onboard storage. Bounty is still at 10$

Thanks for links, I'm going to try. One thing confusing me, Rob mentioned we have to use diag partition for kernel and rename it to boot because boot is not big enough. Will play around this weekends.

 

[Y314K]

Just saw this:

http://bloggingthemonkey.blogspot.de/2014/06/fire-in-root-hole.html

Looks like there is a CVE that allows to root the FireTV, which is different from Towelroot?


Anyone knows if this has been fixed by Amazon?


Here is some proof of concept code:
https://github.com/robclark/kilroy

Thanks for links, I'm going to try. One thing confusing me, Rob mentioned we have to use diag partition for kernel and rename it to boot because boot is not big enough. Will play around this weekends.

Yes, UK/GER/UnRooted-US FTV's, there is a Santa Claus"

 

[rbox]

Thanks for links, I'm going to try. One thing confusing me, Rob mentioned we have to use diag partition for kernel and rename it to boot because boot is not big enough. Will play around this weekends.

I gave some tips in the cwm thread on how to avoid bricking. I don't even know of how you'll boot in to recovery from a running linux in the first place. Unless you know how to write the bootloader message.

Yes, UK/GER/UnRooted-US FTV's, there is a Santa Claus"

Except that post is extremely old.

 

[iRet]

I gave some tips in the cwm thread on how to avoid bricking. I don't even know of how you'll boot in to recovery from a running linux in the first place. Unless you know how to write the bootloader message.

Can we patch this boot image outside your cwn to try it with fastboot boot?