[Q] {Q}Root for Android 4.0.4 GSM Razr

[therazrguy]

Is anyone yet able to root his/her Razr running stock ics android 4.0.4 the t-mob leak ics?
Has anyone tried adam outler's root method on it?
Is any exploit working!?
Please help

 

[pedrotorresfilho]

Hi

The only think on me to get this tmobile ics rooted is restoring a previously rooted device.

Mean. Restoring manually a su-backup or a rooted nandroid backup of the system

But, how?

Folks with chinese ics can restore safely the tmobile nandroid bkp, root and build another nandroid bkp with root

I cant do that because I've downgraded to gb from chinese leak, so, you may be able to find someone to do this setup.

Or,

You can try restore my su-backup with terminal, like I've posted in ics thread

This way

./system/su-backup
mount -o remount,rw /dev/block/system /system 
rm /system/bin/su
ln -s /system/su-backup /system/bin/su

And here's my su bkp
http://db.tt/L9TLf2xg

to put the su bkp on system folder use astro file nanager

Good luck

Sent from my XT910 using Tapatalk 2

 

[ali87va]

your su backup is alotta help (one step closer) but theres no way to actually use it since we can't move to the system folder :-/

 

[pedrotorresfilho]

your su backup is alotta help (one step closer) but theres no way to actually use it since we can't move to the system folder :-/

Yes, you can.

just use astro file manager to put it in system folder

To restore su to system/bin you'll need to set permissions with terminal like I pointed

The other way is getting a rooted nandroid bkp from someone in chinese leak that had flashed tmobile nandroid. A lot of work

Good luck

edit
Btw. You'll not restore su with vodoo but in terminal you see?

Sent from my XT910 using Tapatalk 2

 

[ali87va]

You can't do it using Astro or any other file manager because it simply won't let you move system apps around,I can't do it through terminal either because it needs "permissions" which we non-rooted users do not have,as for the nandroid back up,that seems like TOO much work to do for me at least. Thanks again for all your help!

 

[pedrotorresfilho]

You can't do it using Astro or any other file manager because it simply won't let you move system apps around,I can't do it through terminal either because it needs "permissions" which we non-rooted users do not have,as for the nandroid back up,that seems like TOO much work to do for me at least. Thanks again for all your help!

Oh, really?! Man, I aways use my devices root and never paid attention on it. Well, Im trying to help but this seens really hard, sorry for my limitations, wish I could help ever more.

Good luck guys

Sent from my XT910 using Tapatalk 2

 

[whirleyes]

Yes, you can.

just use astro file manager to put it in system folder

To restore su to system/bin you'll need to set permissions with terminal like I pointed

The other way is getting a rooted nandroid bkp from someone in chinese leak that had flashed tmobile nandroid. A lot of work

Good luck

edit
Btw. You'll not restore su with vodoo but in terminal you see?

Sent from my XT910 using Tapatalk 2

This is kind of funny

The fact that you can write things in /system folder is because you mount is as rw. You can mount is as rw because you got root.

su-backup need the suid permission to do the job.. There's no way you can assign it without a root privileges..

it's like "No root no talk".. haha

 

[dtrail1]

Be patient guys... We are working very hard on that...Just tried a lot of things. It is really my luck, that I get help from a few really talentet guys, even one dev from the defy section is helping me a lot, and Spryte also takes his time with me to do this. For today we're out, just spendet about 10 (!) hours today to get this working. Maybe we'll have success tomorrow.....I don't make any promises, but it looks good...

 

[pedrotorresfilho]

This is kind of funny

The fact that you can write things in /system folder is because you mount is as rw. You can mount is as rw because you got root.

su-backup need the suid permission to do the job.. There's no way you can assign it without a root privileges..

it's like "No root no talk".. haha

I think its funny too, indeed. But not to guys stuck in tmobile ics. As I said before, I didn't realized the root requeriment to move a file to system folder or changing permissions. I simple use root all the time and missed a 'shot' while trying to help. lol

Again, this may be funny to me or anybody else not stuck in this system. If you a have, even a stupid sugestion like mine, please do it.

Thanks

Edit: its not possible put su-backup in system folder via an update.zip flash? But to change permission, anyone have a hint?

Sent from my XT910 using Tapatalk 2

 

[whirleyes]

I know you're trying to help, But I feel it's not ok to give confusing advice.

I've spent some time analyzing the 4.0.4 kernel. Here's what I found out.
1.With 4.0.4 onwards, google patch the kernel memory vulnerabilities.
What this means is : Rooting via mempodroid is not possible.

2.Motorola have patching all symlink vulnerabilities that was present in older kernel. They even block shell acess to /data (except for /data/tmp).
What this means is : Rooting via motofail is not posibble.

3.With tmde 4.0.4 leaks, the "Secure Version" of certificate have been upgraded.
What this means is : Downgrading via sbf is not posibble.

Hope this will help somebody figuring out of what is happening now.

---------- Post added at 10:26 AM ---------- Previous post was at 09:59 AM ----------

Here's the details of the "Secure Version" upgrade

From ver 2 to 3

• devtree
• devtree_backup
• boot
• recovery
• cdrom

From ver 3 to 4

• cdt.bin
• system

What is interesting here is:
The "Secure Version" upgrade from 2 to 3 match with XT912 "6.7.1-68_DHD-15_M4-16" ICS leak. The only different is the certificate end bit.

• XT912 ends with "FFFF0200"
• TMDE ends with "FFFF0700"

p/s : I might be wrong on this so please bear with me.

 

[pedrotorresfilho]

p/s : I might be wrong on this so please bear with me.

Hey man, I think you should presente these info @J.Y.Daddy @FrAsErTaG @kholk to join efforts to find out. I saw really many folks stuck on it and this is also new stats on ics development.

Btw, do you own a dev razr? If so, please pm me.

And, sorry for my odd sugestions. Didn't want confuse you know.

Thanks man


Sent from my XT910 using Tapatalk 2

 

[HSD-Pilot]

http://www.xda-developers.com/android/motorola-at-it-again-locks-down-atrix-4g-even-more/

What you think about that? I hope we don't run into that trouble with our RazR...

Gesendet von meinem XT910 mit Tapatalk 2

 

[whirleyes]

Btw, do you own a dev razr? If so, please pm me.

Nope. I wish I had it. But all I got is a phone with a locked bootloader.
That is too easy to be bricked and the worst thing is, it doesn't even got any leaked sbf..

 

[dtrail1]

We got another idea, but maybe this will only work on that phone where it comes from..dump the whole system partition, so you get it including the signature, put the su binaries into it, set permissions and repack it in linux, you should be able to flash it using RSD,

Gesendet von meinem XT910 mit Tapatalk 2

 

[theZest]

We got another idea, but maybe this will only work on that phone where it comes from..dump the whole system partition, so you get it including the signature, put the su binaries into it, set permissions and repack it in linux, you should be able to flash it using RSD,

Gesendet von meinem XT910 mit Tapatalk 2

Sounds promising.

By the way as I understand the similar method is used to root Defy+'s 4.5.1-134_DFP-231 firmware.

 

[FrAsErTaG]

We got another idea, but maybe this will only work on that phone where it comes from..dump the whole system partition, so you get it including the signature, put the su binaries into it, set permissions and repack it in linux, you should be able to flash it using RSD,

Gesendet von meinem XT910 mit Tapatalk 2

Won't you lose the signature when using mkyaffs2?

Sent from my XT910 using XDA

 

[dtrail1]

Won't you lose the signature when using mkyaffs2?

Sent from my XT910 using XDA

No, I guess not. Skeevy420 told me..

Gesendet von meinem XT910 mit Tapatalk 2

 

[dtrail1]

Maybe this works:

http://forum.xda-developers.com/showthread.php?p=66687

Gesendet von meinem XT910 mit Tapatalk 2

 

[lukas77]

Maybe this works:

http://forum.xda-developers.com/showthread.php?p=66687

No thread specified. If you followed a valid link, please notify the administrator

 

[Fekajo]

Hello,
I have i idea, i know if it's works
You need su-backup from rooted razr with rootkeeper
And place this files in sdcard/su-backup/

he must type this command in terminal or Gscript

mount -o bind /mnt/sdcard/su-backup/ /system/su-backup

Use rootkeeper normaly

I know if this command will work without root thank for your feedback