How to Root the Sony Tablet S

Search This thread

djrbliss

Inactive Recognized Developer
Aug 24, 2011
136
2,642
As promised, I've published my root exploit. It's possible that this exploit will wipe your /data partition. This did not happen on the two devices that have been successfully rooted, but I don't want any nasty surprises. Please back up your applications and data if you're worried about this. There is no risk of permanent damage to the device, but by running this exploit, you assume all responsibilty.

You can root your device with the following steps:

1. Ensure your device is in USB debugging mode, is connected to your PC, and that ADB works. Instructions on this are available in this thread:
http://forum.xda-developers.com/showthread.php?t=1327139

2. Download the exploit here:
http://vulnfactory.org/public/Sony_Tablet_S_Root_Windows.zip

3. Unzip the full contents of the zip.

4. Run "run.bat"

---

Full details on how the exploit works are posted here:
http://vulnfactory.org/blog/2012/02/08/rooting-the-sony-tablet-s/

I can't guarantee that this exploit will work after receiving an OTA update, including ICS. As always, when rooted, be cautious of accepting OTA updates unless you have received confirmation that the root exploit has not been patched.

If you pledged towards the bounty, details on how to donate are at the bottom of the above blog post.

Enjoy,
Dan Rosenberg (@djrbliss)

P.S. For those interested in reposting this, I have no affiliation with any forum (including XDA).
 
Last edited:

obicom

Senior Member
Nov 9, 2010
283
81
Cologne
@ejchis: Superuser.apk should be installed on your device and apps that needs root rights should work now (Titanium backup, AdwareBlock ect)
 

ejchis

Senior Member
Jun 29, 2010
613
92
@ejchis: Superuser.apk should be installed on your device and apps that needs root rights should work now (Titanium backup, AdwareBlock ect)

Thanks. I'm not getting to that point for some reason. I think my adb is not functioning properly. I need to play with this some more. I've always been a terminal emulator guy, so I'm not particularly confident with my adb skills.
 

grcd

Senior Member
Dec 29, 2009
133
45
I can confirm that this works perfectly. Let's hope this is but the first step in making this an awesome device. Many thanks!!!
 

Pinesal

Senior Member
Jan 28, 2009
515
19
use the command "adb devices" you should see what looks like a serial number show up. If nothing shows up then you have a problem with your ADB drivers. You may just need to restart the computer.
 

ejchis

Senior Member
Jun 29, 2010
613
92
My adb was being funky. I found a post somewhere else through Google where someone had to rename their adb.exe file to adb.exe.exe, reboot their computer, and rename the file back to adb.exe. I did this as a stab in the dark, and my command prompt suddenly began working for me. Tablet is currently rebooting for a third time. I'm keeping my fingers crossed.

EDIT: SUCCESS! Thank you, djrbliss.
 
Last edited:

rjsmith2007

Senior Member
Dec 27, 2010
90
13
I tried to use the exploit after a factory reset, and I can't get it to work.

Code:
F:\Desktop\Sony_Tablet_S_Root_Windows>run.bat
[*]
[*] Sony Tablet S root script (Windows version)
[*] by Dan Rosenberg (@djrbliss)
[*]
[*] Before continuing, ensure USB debugging is enabled, that ADB
[*] is working properly, and that your tablet is connected via USB.
[*]
[*] WARNING: This exploit may result in wiping your /data partition,
[*] causing you to lose any applications and data on your tablet.
[*] There should be no risk of permanent damage to your device, but
[*] by running this script you accept all responsibility.
[*]
[*] Press enter to root your tablet...
Press any key to continue . . .
[*]
[*] Waiting for device...
* daemon not running. starting it now *
* daemon started successfully *
[*] Device found.
[*] Pushing log flooder to device...
583 KB/s (5382 bytes in 0.009s)
[*] Preparing to append to packages.list...
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attempting to move system package library directory...
[+] System package com.google.android.location has uid 10029
[+] Flooding log...
[*] If you received any errors in the previous step, abort the exploit
[*] and try again.  Otherwise, press any key to continue.
Press any key to continue . . .
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attempting to insert fake local.prop entry...
[+] Flooding log...
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attemping persistence...
remount failed: Operation not permitted
failed to copy 'su' to '/system/bin/su': Read-only file system
Unable to chmod /system/bin/su: No such file or directory
failed to copy 'busybox' to '/system/xbin/busybox': Read-only file system
Unable to chmod /system/xbin/busybox: No such file or directory
/system/xbin/busybox: not found
failed to copy 'Superuser.apk' to '/system/app/Superuser.apk': Read-only file sy
stem
[*] Cleaning up...
failed on '/data/data/com.google.android.location/lib.bak' - Permission denied
[*] Rebooting...
[*] Exploit complete!
[*] Press any key to exit.
Press any key to continue . . .

ADB works and debugging is enabled.
 
  • Like
Reactions: Matclinton

HKboy92

Senior Member
Feb 18, 2011
79
10
Den Helder
Got it working. Next step is CWM and then a nice fresh cup of awesomeness. Thanks Dan. Expect a donation your way.

Is anyone able to make a YouTube video for people like me who can’t seem to figure it out? That would be totally appreciated not only by me but I’m sure the rest of our tablet S community. Thanks for root!

OKay
 
  • Like
Reactions: Silver-Eye

05081983

Senior Member
Jun 2, 2008
87
9
Northridge
I tried to use the exploit after a factory reset, and I can't get it to work.

Code:
F:\Desktop\Sony_Tablet_S_Root_Windows>run.bat
[*]
[*] Sony Tablet S root script (Windows version)
[*] by Dan Rosenberg (@djrbliss)
[*]
[*] Before continuing, ensure USB debugging is enabled, that ADB
[*] is working properly, and that your tablet is connected via USB.
[*]
[*] WARNING: This exploit may result in wiping your /data partition,
[*] causing you to lose any applications and data on your tablet.
[*] There should be no risk of permanent damage to your device, but
[*] by running this script you accept all responsibility.
[*]
[*] Press enter to root your tablet...
Press any key to continue . . .
[*]
[*] Waiting for device...
* daemon not running. starting it now *
* daemon started successfully *
[*] Device found.
[*] Pushing log flooder to device...
583 KB/s (5382 bytes in 0.009s)
[*] Preparing to append to packages.list...
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attempting to move system package library directory...
[+] System package com.google.android.location has uid 10029
[+] Flooding log...
[*] If you received any errors in the previous step, abort the exploit
[*] and try again.  Otherwise, press any key to continue.
Press any key to continue . . .
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attempting to insert fake local.prop entry...
[+] Flooding log...
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attemping persistence...
remount failed: Operation not permitted
failed to copy 'su' to '/system/bin/su': Read-only file system
Unable to chmod /system/bin/su: No such file or directory
failed to copy 'busybox' to '/system/xbin/busybox': Read-only file system
Unable to chmod /system/xbin/busybox: No such file or directory
/system/xbin/busybox: not found
failed to copy 'Superuser.apk' to '/system/app/Superuser.apk': Read-only file sy
stem
[*] Cleaning up...
failed on '/data/data/com.google.android.location/lib.bak' - Permission denied
[*] Rebooting...
[*] Exploit complete!
[*] Press any key to exit.
Press any key to continue . . .

ADB works and debugging is enabled.

Try running the .bat file again, it happened to me first time, but when I tried it second time it worked.
 

rjsmith2007

Senior Member
Dec 27, 2010
90
13
Try running the .bat file again, it happened to me first time, but when I tried it second time it worked.

When I run the bat file the second time, I get an error related to the files that the exploit handles:

Code:
[+] System package com.google.android.location has uid 10029
[+] Flooding log...
failed on '/data/data/com.google.android.location/lib' - Permission denied
link failed File exists[*]

Code:
F:\Desktop\Sony_Tablet_S_Root_Windows>run.bat
[*]
[*] Sony Tablet S root script (Windows version)
[*] by Dan Rosenberg (@djrbliss)
[*]
[*] Before continuing, ensure USB debugging is enabled, that ADB
[*] is working properly, and that your tablet is connected via USB.
[*]
[*] WARNING: This exploit may result in wiping your /data partition,
[*] causing you to lose any applications and data on your tablet.
[*] There should be no risk of permanent damage to your device, but
[*] by running this script you accept all responsibility.
[*]
[*] Press enter to root your tablet...
Press any key to continue . . .
[*]
[*] Waiting for device...
* daemon not running. starting it now *
* daemon started successfully *
[*] Device found.
[*] Pushing log flooder to device...
656 KB/s (5382 bytes in 0.008s)
[*] Preparing to append to packages.list...
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attempting to move system package library directory...
[+] System package com.google.android.location has uid 10029
[+] Flooding log...
failed on '/data/data/com.google.android.location/lib' - Permission denied
link failed File exists
[*] If you received any errors in the previous step, abort the exploit
[*] and try again.  Otherwise, press any key to continue.
Press any key to continue . . .
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attempting to insert fake local.prop entry...
[+] Flooding log...
[*] Rebooting device...
[*] Waiting for tablet to reboot.
[*] Attemping persistence...
remount failed: Operation not permitted
failed to copy 'su' to '/system/bin/su': Read-only file system
Unable to chmod /system/bin/su: No such file or directory
failed to copy 'busybox' to '/system/xbin/busybox': Read-only file system
Unable to chmod /system/xbin/busybox: No such file or directory
/system/xbin/busybox: not found
failed to copy 'Superuser.apk' to '/system/app/Superuser.apk': Read-only file sy
stem
[*] Cleaning up...
failed on '/data/data/com.google.android.location/lib.bak' - Permission denied
[*] Rebooting...
[*] Exploit complete!
[*] Press any key to exit.
Press any key to continue . . .

F:\Desktop\Sony_Tablet_S_Root_Windows>
 

obicom

Senior Member
Nov 9, 2010
283
81
Cologne
I guess it is not so "easy" to get CWM on the tablet. As I know, CWM is part of kernel and this is signed on the Sony Tablet S ....

@Dan:
Is it right and do you see a opportunity to get CWM on Tablet S?
 

djrbliss

Inactive Recognized Developer
Aug 24, 2011
136
2,642
When I run the bat file the second time, I get an error related to the files that the exploit handles:

Code:
[+] System package com.google.android.location has uid 10029
[+] Flooding log...
failed on '/data/data/com.google.android.location/lib' - Permission denied
link failed File exists[*]

I just uploaded a new version of the exploit that should fix this problem. Just unzip it, execute "run.bat", and let me know how it goes.

If anyone has been having any problems with the exploit, please try the new version here:
http://vulnfactory.org/public/Sony_Tablet_S_Root_Windows.zip
 

rjsmith2007

Senior Member
Dec 27, 2010
90
13
I just uploaded a new version of the exploit that should fix this problem. Just unzip it, execute "run.bat", and let me know how it goes.

If anyone has been having any problems with the exploit, please try the new version here:
http://vulnfactory.org/public/Sony_Tablet_S_Root_Windows.zip

Thanks. I'll try it out now! :)

Edit: I'm still getting the same end result. Should I wait for the device to boot fully to the launcher, when it asks me to press a button before it continues?
 
Last edited:

Top Liked Posts

  • There are no posts matching your filters.
  • 59
    As promised, I've published my root exploit. It's possible that this exploit will wipe your /data partition. This did not happen on the two devices that have been successfully rooted, but I don't want any nasty surprises. Please back up your applications and data if you're worried about this. There is no risk of permanent damage to the device, but by running this exploit, you assume all responsibilty.

    You can root your device with the following steps:

    1. Ensure your device is in USB debugging mode, is connected to your PC, and that ADB works. Instructions on this are available in this thread:
    http://forum.xda-developers.com/showthread.php?t=1327139

    2. Download the exploit here:
    http://vulnfactory.org/public/Sony_Tablet_S_Root_Windows.zip

    3. Unzip the full contents of the zip.

    4. Run "run.bat"

    ---

    Full details on how the exploit works are posted here:
    http://vulnfactory.org/blog/2012/02/08/rooting-the-sony-tablet-s/

    I can't guarantee that this exploit will work after receiving an OTA update, including ICS. As always, when rooted, be cautious of accepting OTA updates unless you have received confirmation that the root exploit has not been patched.

    If you pledged towards the bounty, details on how to donate are at the bottom of the above blog post.

    Enjoy,
    Dan Rosenberg (@djrbliss)

    P.S. For those interested in reposting this, I have no affiliation with any forum (including XDA).
    5
    Thanks, this helped with the com.pwn.me issue, but now I'm getting the same error message as you.

    Code:
    [*] Attemping persistence...
    remount failed: Operation not permitted

    Edit:
    SOLVED IT!
    disabled Tablet S in the device manager, ran the exploit, and enabled the Tablet S again in the device manager after the first reboot. Then the remount succeeded and everything went fine. Tablet rooted.
    4
    For all those having issues with the ADB drivers, I've created a fully automated driver installer.

    No more need for the complicated and time-consuming Android SDK.

    http://forum.xda-developers.com/showthread.php?t=1488822
    3
    Weird that it just succeeded in 1 try for me, it might have to do with different firmware versions. Mine runs on the model SGPT111NL/S.
    Can you guys tell me what model number it displays beneath the SONY logo on the back? That might give a small indication, or not. Who knows.

    ANYWAY.
    I promised to make a vid, here it is:
    Note: Quality sucks (not screen quality, but quality quality. It does display the process)
    2
    When I run the bat file the second time, I get an error related to the files that the exploit handles:

    Code:
    [+] System package com.google.android.location has uid 10029
    [+] Flooding log...
    failed on '/data/data/com.google.android.location/lib' - Permission denied
    link failed File exists[*]

    I just uploaded a new version of the exploit that should fix this problem. Just unzip it, execute "run.bat", and let me know how it goes.

    If anyone has been having any problems with the exploit, please try the new version here:
    http://vulnfactory.org/public/Sony_Tablet_S_Root_Windows.zip
Our Apps
Get our official app!
The best way to access XDA on your phone
Nav Gestures
Add swipe gestures to any Android
One Handed Mode
Eases uses one hand with your phone