[Q] Anybody work on Root?

MrPACS

Member
Jul 8, 2014
26
1
0
Any idea if there is a working root for .251 please?



I just installed the new SONY ROM hoping there are stagefright patches included.

As usual no changelog.

Before you ask: it is Android 5.02

I booted it: works, my apps and data preserved - fine if you are only interested in a newer ROM version.

Then I tried to root it again:
I flashed my "insecure" 28.0.A.8.24 boot image. That does not stay up more than a minute when USB is connected.
Enough to run my SuperSU_installer.sh (see in this thread).
Root and things work but the USB issue...

So after rooting I decided to flash the 28.0.A.8.251 boot.img back to have a coherent ROM -> bootloop :(

I guess RIC is kicking in again ...

I will wait until SONY post the sources for the newer kernel, disable RIC and try again.

Another approach might be fiddling the ramdisk but this did not go well in the past because of RIC.
 

DHGE

Senior Member
Jun 20, 2015
600
281
93
coastal paradise
28.0.A.8.251 on karin_windy finally rooted and a ROM-Wonder

After my futile attempt documented in this thread in post #58 I got inspired by @dl12345 and his remarks in #48.

He also has great success with his phone (ivy device). Head over to http://forum.xda-developers.com/xperia-z4/development .

The culprit I think I found was my attempt to disable SELinux via configuration options. Each time I tried CONFIG_SECURITY_SELINUX=n I had a bootloop in the end.
The sources for previous versions of the kernel were not that sensitive. Also it seems to be easier on the Z4 phone.

So again a two phase approach like outlined in #7. I used the patches for the SELinux sources there.

I updated my 28.0.A.8.27/31 via Flashtool -> working 28.0.A.8.251 without root.
Wipe user_data was not necessary.

The steps for rooting 8.251:
  • Get the SONY source straight
    /kernel/include/linux/maxim_sti.h:
    in line 353 following wakeup_gesture_support put stylus_support

    Code:
    	u32       wakeup_gesture_support;
    	u32       stylus_support;
  • change the kitakami_defconfig

    Here I copied mostly dl12345 modifications.

    Switch off DM_VERITY!
    Interesting are the changes for SELinux. This enables a switch at runtime. I like that!
    Disable SONY's CONFIG_CORESIGHT it only slows the device. I geuess they forgot it when developing this version.
    Nuke the RIC!
    dl12345's choice of TCP_CONG is left there. I did not notice any change and I did not measure.

  • build a working_ramdisk with the attached init-files

  • compile a new kernel

  • build a working_boot.img and test it via fastboot boot boot.img

  • build a insecure_ramdisk with the attached insecure_init.rc

  • build a insecure_boot.img (kernel with the patched SELinux files from post #7) and flash it to the device

  • adb shell and then
    roothsh
    mount -o remount,rw /system
    /SuperSU_files/install_SuperSU.sh


  • flash your working_boot.img to the device

Further refinements can include a switch for SELinux on/off and inclusion of busybox.

Maybe @AndroPlus provides new binaries. But please have SELinux working as outlined in my steps.

The 8.251 system partition has new stagefright libraries whout the vulnerabilities!

===================================

Here is the ROM-wonder:
http://www.android-hilfe.de/thema/s...-sgp712-771-customized-de-28-0-a-8-251.719468

@Aaskereija
These are ROMs (according to OP: "originale .ftf von Sony") for karin-devices that are described pre-rooted and work with locked bootloader.

This should be an achievement where even the most seasoned (e.g. @[NUT] ) xda-developers threw in the towel.
http://forum.xda-developers.com/showpost.php?p=62704082&postcount=78

Please share your experience with these ROMs.

EDIT:
Please read the next two posts before cluttering this thread further.
This is no wonder - just the ordinary SONY FTFs!
 

Attachments

Last edited:
  • Like
Reactions: tiki20

daniels7

Senior Member
Jul 12, 2011
128
124
0
Berlin
I checked out the ftf by Aaskereija you mentioned and installed it and it seems to be just the normal german ftf.
No Root or DualRecovery at all

Edit: He just had a copy/paste error in the title, so there's no root ftf, sadly :(
 
Last edited:
  • Like
Reactions: DHGE

Aaskereija

Senior Member
Jun 22, 2013
484
119
73
Sorry guys,

theres no wonder on this rom, it's just simply a normal firmware of sony downloaded via xperifirm.
I just made a copy of another thread and used it for this thread, so i simply forgot to change the titel, didn't want to fool anybody.
 
  • Like
Reactions: DHGE

DHGE

Senior Member
Jun 20, 2015
600
281
93
coastal paradise
boot images 28.0.A.8.251

@baddison

Maybe it helps you:

I made the boot images available (those that are described here in this thread's post #64):

for karin_windy SGP712 (xperia Tablet Z4 Wifi)
boot_insecure_251.img
https://www.androidfilehost.com/?fid=24052804347828619

boot_SELinux_251.img
https://www.androidfilehost.com/?fid=24052804347828620

For those who do not bother to read this thread a short version:

- switch off MyXperia
If not you will brick your Tablet.

- unlock your bootloader

- proceed like in post #64 (test with fastboot boot before flashing anything)

- bump my thanks-meter ;)
 
Last edited:

Vitaly_T

New member
Oct 30, 2015
1
2
0
I encountered similar issues:
  • Try booting the device with disconnected USB cable - yes it does make a difference
  • The /cache partition must be formatted (be careful with fastboot -w)
  • The latest Sony's AOSP partially works for me: the device comes up, however, sensors, bluetooth, and camera do not work. Looks like there is a I2C issue that may be causing all these issues.
  • I tried Sony's AOSP on Karin (SGP771) and Karin Windy (SGP712). The Karin tablet takes extra 90 seconds to boot. Karin Windy boots right away.
  • Only Sony's pre-built kernels for for me; Sony's build instructions for compiling kernels do not work.
  • There are at least three kernel repos that can be used for building kernels. All repos have different Karin device trees. In addition, the stock device tree does not match any device trees in available repos.
It's a big mess...
 
  • Like
Reactions: HotBlack77 and DHGE

farfetch

Senior Member
Oct 1, 2008
460
18
0
29
Monza
Sorry guys! I hope to not be OT.
After I unlocked BL (OFC I didn't know that thing) I activated my Xperia, then my fastboot command weren't allowed and my Xperia main screen was kinda corrupted (only white, blank, window). I Wipe through companion app, but my fastboot commands still are "not allowed".
My Xperia results disabled, but into Device Administrators it turns on everytime I reboot. I tried to disable MyXperia.apk through Debloater app (ADB): I have no more my Xperia stuff into security settings and neither into device administrator windows, but I still have same problem with fastboot.

Thank you for the attention ^^

P.S.: I also tried flashing in fastmode with Sony FlashTool, but had no success, maybe my error.
 
Last edited:

ibis69

Senior Member
Mar 1, 2010
145
94
0
LYON
Hey friends, I was wondering if we could try to use this exploit which is a kernel exploit and works on 64bit devices. The only problem is that the kernel should have been compiled before may 15 so probably we have to roll back to an old firmware. This is the link: http://forum.xda-developers.com/galaxy-s6/general/root-pingpongroot-s6-root-tool-t3103016
Maybe we'll get an easy root.
Hi, the exploit has been ported to some Xperia phone (http://forum.xda-developers.com/crossdevice-dev/sony/root-how-to-root-5-0-lollipop-t3212108) but Z4 first firmware was already patch ....
 
Our Apps
Get our official app!
The best way to access XDA on your phone
Nav Gestures
Add swipe gestures to any Android
One Handed Mode
Eases uses one hand with your phone