Xperia X Performance root 7.1.1 + PS4 remote play/android pay OK+ Safetynet OK +DRM

[sdugoten]

I have done the update to 7.1.1 with Magisk v13beta https://forum.xda-developers.com/apps/magisk/beta-magisk-v13-0-0980cb6-t3618589 . The steps below still more or less works on Android 7.1.1

--------------
After playing with the Xperia XP for 2 days over weekend, I finally managed to root it with PS4 remote play and Safetynet working. (If Safetynet is working, games like Pokemon and app like Android pay should work with rooted phone as well)

Before you do anything, backup the TA partition first. You have to downgrade back to version 6.0.1 to backup the TA partition. Flash your phone back to 6.0.1 first. (If you don't know how to flash a firmware, https://forum.xda-developers.com/xperia-xz/how-to/how-to-flash-firmware-using-flashtool-t3523946)

Download 6.0.1 firmware here. By backing up the TA partition, in case if you want to roll back to stock rom with valid DRM key , you can install the original DRM key back into your phone. You need this if you want your warranty in case you need to fix your phone.

Download and install backupTA_v2
https://forum.xda-developers.com/crossdevice-dev/sony/universal-dirtycow-based-ta-backup-t3514236

Backup TA partition
1) Ensure you have adb access (e.g. drivers installed, install flashtool)

If you encounter issue on installing drivers, follow this to disable driver signature first.
https://www.howtogeek.com/167723/how-to-disable-driver-signature-verification-on-64-bit-windows-8.1-so-that-you-can-install-unsigned-drivers/

2) Run backupTA.sh (linux) or backupTA.cmd (windows) in the root directory.
3) TA will be saved as TA-ModelNumber-Serial-Timestamp.img in
the backupTA.sh directory.
4. Send this image file to your gmail or something so that your email will permanently keep a copy of this backup TA partition image.


DO NOT GO BEYOND THE LINE BELOW IF YOU CAN'T BACKUP YOUR TA PARTITION.

-----------------

Now, you have done all pre-requisite. We can now start the rooting.

1. unlock phone https://developer.sonymobile.com/unlockbootloader/unlock-yourboot-loader/

Get into fastboot mode first by holding down volume up button and plug in USB cable to computer, click BLU

You should type in unlock code which you got it from the above Sony link.

2. flash/upgrade to stock firmware 7.0 if phone is not having stock rom, check all erase on flash. Flash it so that it will have both stock firmware and stock boot image. (don't restart phone after flash).
3. flash the TWRP. fastboot flash recovery f:\path_to_downlaod\TWRP-3.0.2-4-dora.img (Download TWRP here)

Also download XP_AndroPlusKernel_v22.zip . Get the newest version for both app if available.

4. go into twrp install UPDATE-SuperSU-v2.79-20161211114519.zip, reboot (Download https://download.chainfire.eu/696/supersu/ or see attachment)
5. start the phone the first time and get into phone, should find out the phone still not rooted. Check Setting > Display , the Bravia engine should have no effect on your display.
7. go into twrp install Magisk-v12.0.zip, reboot (download https://forum.xda-developers.com/apps/magisk/official-magisk-v7-universal-systemless-t3473445 or see attachment)
8. start magisk, it will open google play to update magisk. reboot
9. go into twrp , install phh’s SuperUser superuser-r310-beta.zip, reboot (download https://superuser.phh.me/ or see attachment)
10. go into phone, open google play, search and install phh’s SuperUser app
11. run SuperUser app, upper right choose setting, choose Superuser access and then choose Apps and ADB
12. run magisk, 2nd checkbox should be check by now. Should show Properly rooted)
13. run magisk, 1st checkbox click and install Magisk v12 , reboot
14. run magisk, upper left menu click, then choose Downloads,install Sony Framework v1, reboot
15. On reboot, the phone should hang during boot up, on boot loop, hold the volume up button , plug the usb cable to computer, until you see the blue light turn on on the top of the phone, and screen stays black
16. flash the XP_AndroPlusKernel_v22.zip boot image. fastboot.exe flash boot f:\path_to_downlaod\boot.img
17. go back into phone once again, run magisk, choose menu upper left, choose modules, find the file Magisk_RemotePlayEnabler_v1.zip, press and hold on that file to select, and install, reboot (download https://forum.xda-developers.com/apps/magisk/module-ps-remote-play-enabler-t3575876 or see attachment)
18. Enable Magisk Hide in Setting of Magisk...can put the remote play in Magisk hide if remote play doesn't work.
18. go back to phone again, run magisk, all 3 checkbox should be all checked and OK. PS4 remote play should work fine as well with root running on phone.

In case if you need to roll back to stock rom with original TA partition, here is the instruction.

1. Backup all the data as your device will reset and formatted after this process.
2. Rename your backed up TA partition and rename it TAbackup.img
3. Boot into TWRP.
4. Plug your device in your pc via USB and check the connection by the command adb devices in command prompt in your fastboot directory.
5. Now run the command adb push TAbackup.img /data/local/tmp/TAbackup.img
6. Then run adb shell dd if=/data/local/tmp/TAbackup.img of=/dev/block/bootdevice/by-name/TA
7. Now flash Stock ROM via FlashTool and your device will have original DRM and stock ROM and Ta partition.

 

[chris_j26]

great work! followed your instructions, worked almost perfectly for me (but I am using marshmallow and didn't need to do the remote play or anything but I'm rooted for now)

for those that might do what I did, if you do appear to be unrooted after flashing the kernel, you'll need to flash MagiskSU back again.

Also you'll need to flash a compatible kernel version for your build.

I wasn't able to get remote play working and didn't need it but I guess if I'd like to use Android pay I'll spend more time figuring that one out. But for most I think this guide is a dummy's guide ( I did it ) and it covers everything clearly

 

[alarsama]

Thank you for the guide, sdugoten! I followed your process to a t and indeed, it helped me achieve the intended result. I appreciate the time you spent writing up this guide.

However, I did have to find a lot of extra information by searching XDA to achieve each step. For example, I found that after step 2 (flashing the new firmware), all that really needs to be done is to flash both the AndroPlus Kernel (by downloading the flashable zip, unzipping it, and flashing the boot.img via "fastboot flash boot boot.img) and TWRP via fastboot. I found that by NOT doing this, my phone would not boot (due to the stock ROM not accepting a custom recovery w/o a custom kernel). From there, reboot into recovery to flash Magisk v12, reboot the device, go through first-time setup, update Magisk Manager, and enable Magisk Hide. At this point, all three checkmarks in Magisk Manager should show up as green, indicating a successful install. This eliminates flashing both SU beta zips. Installing the Sony Framework and RemotePlayEnabler should be OK in the same step as well. I hope this helps! If anyone wants me to write out a detailed guide as to how I went about this, just let me know!

 

[sdugoten]

I have done similar steps and able to get XP Performance running on Android v7.1.1 with Magisk v13 beta and Safetynet working

 

[Ryhorse]

@sdugoten Your DRM fix isn't complete. It's missing the Device Key (DK). Here are instructions how to make one. Important: Once you have created your DK.ftf, you need to use Flashtool 0.9.22.3. Other Flashtool versions don't install it.

 

[25agosto]

Hi, i'm trying to do this tutorial... Everytime i flash something, a write a "diary" of what i'm doing, just in case of problems. and this is that case.....

i have unlocked bootloader, and done root many months ago, never backup TA partition, so i know what it mean, and so, i've skip step 1 and start from 2.

installed flashtool 0.9.23.1
installed adb and fastboot drivers
enabled in developer debug usb and unknow sources and when connected phone to pc, allowed debug to pc, and allowed supersu to adb.
start flashtool
volume up and plug cable, blu led appear, flashtool says me to install driver from driver folder, installed only fastboot and flashtool drivers (i disabled verify of firma driver)
flashtool says device connected in fastboot. i think is not right, then unplug, volume down and plug, flashtool ays device connected in flash mode
click on flash, selected flashmode, selected right folder of .tft, and selected all the checkboes in wipe tab, and then click in flash.
02/009/2017 22:09:11 - INFO - Device connected in flash mode
02/009/2017 22:09:28 - INFO - Selected Bundle for Sony Xperia X Performance(F8131). FW release : 41.2.A.2.199_R2D. Customization : Switzerland Generic_1302-9924
02/009/2017 22:09:28 - INFO - Preparing files for flashing
02/009/2017 22:09:54 - INFO - Please connect your device into flashmode.
02/009/2017 22:09:54 - INFO - Opening device for R/W
02/009/2017 22:09:54 - INFO - Reading device information
02/009/2017 22:09:54 - INFO - Phone ready for flashmode operations.
02/009/2017 22:09:54 - INFO - Opening TA partition 2
02/009/2017 22:09:54 - INFO - Current device : F8131 - CB512AJSMZ - 1302-9940_R3C - 1300-5321_39.2.A.0.417 - GENERIC_39.2.A.0.417
02/009/2017 22:09:54 - INFO - Closing TA partition
02/009/2017 22:09:54 - INFO - Start Flashing
02/009/2017 22:09:54 - INFO - No loader in the bundle. Searching for one
02/009/2017 22:09:55 - INFO - No matching loader found
02/009/2017 22:09:55 - WARN - No loader found or set manually. Skipping loader
02/009/2017 22:09:55 - INFO - Loader : S1_Root_de8d - Version : 1299-4832_S1_Boot_MSM8996_LA2.0_N_110 / Boot version : 1299-4832_S1_Boot_MSM8996_LA2.0_N_110 / Bootloader status : ROOTED
02/009/2017 22:09:55 - INFO - Max packet size set to 4M
02/009/2017 22:09:55 - INFO - USB buffer size set to 512K
02/009/2017 22:09:58 - INFO - Parsing boot delivery
02/009/2017 22:09:58 - INFO - No flash script found.
02/009/2017 22:09:58 - INFO - Flash script is mandatory. Closing session
02/009/2017 22:09:58 - INFO - Ending flash session
02/009/2017 22:09:58 - INFO - Flashing finished.
02/009/2017 22:09:58 - INFO - Please unplug and start your phone
02/009/2017 22:09:58 - INFO - For flashtool, Unknown Sources and Debugging must be checked in phone settings
02/009/2017 22:09:58 - INFO - Device connected in flash mode.

Tried this 3 times and still not working, So, i've downloaded the stock firmware directly from flashtool, took me 14mins, then retry to flash... i can't flash because the file downloaded is not a tft, and flashtool has extract it in a lot of files..... how can i flash stock rom?!?! i'm wrong?

 

[Ryhorse]

installed flashtool 0.9.23.1

As I posted one post above you, you need to use Flashtool version 0.9.22.3. Other versions such as 0.9.23.1 won't work.

 

[polykoma]

Hi

8. start magisk, it will open google play to update magisk. reboot

Doesnt work. Google play says App Not Found. Cant update then.

How to proceed ?!
I downloaded the newest magisk manager apk and installed it manually.
Also i try to use magisk v13.3 but Im stuck again here

12. run magisk, 2nd checkbox should be check by now. Should show Properly rooted) -> doesnt show root / how should it be shown? safety net test passed?
13. run magisk, 1st checkbox click and install Magisk v12 , reboot -> wants to install v13.3 when i click checkbock
14. run magisk, upper left menu click, then choose Downloads,install Sony Framework v1, reboot -> framework install keeps crashing magisk manager app. sometimes immediately / sometimes flashes and says magisk not installed + crash

--------------------

Update
I deinstalled SU and magisk app and run magiskuninstaller.

started to do every step again. this time i stay on v12.0 and when install SU app and give permission ADB/APP Magisk Manager first time crashes.
Then i run magisk manager, grant SU rights. Nothing is rooted. Screen looks totally different then your picture....
When i try to install magisk v13.3 via manager following error occurs: boot image patched by other programms / please restore stock boot image

framework install keeps crashing magisk manager app. probably cuz of missing root

now i when i try to run magsikuninstaller.zip via twrp it drops me
!Boot image patched with other programms
cannot uninstall with this uninstaller
----------------------
SEE LATEST POST for updates!
----------------------
please help!

Thank so much !

 

[polykoma]

I have done similar steps and able to get XP Performance running on Android v7.1.1 with Magisk v13 beta and Safetynet working

see next post

 

[polykoma]

i just found out why all this is happening
i was on newest FW which was wrong

i followed every step an took correct firmware for v22 kernel

magisk manager is no longer on google

then you go install newest version viia APK download but after 5.0 its not more compatible with v12.
so i installed old version of magisk manager 4.3.3 manually

then i get the root thing done BUT NOW im stuck on step 13. cuz when you click install. it wants to download v13.3. and you cant force to install from sd card.
v13.3 wont work with 4.3.3 manager

-------------
update

you can probably mark this thread as outdated cuz the instructions leading nowhere.
i flashed 7.0 clean install. did twrp. did the su flash from step 4
then on step 7 ( i saw you forgot step 6, lol)
i want to install v13.3 instead of v12
to proceed with latest magisk manager.

but its unable to repack boot.img on flashing Error1
also happens with v13.2 and v13.1

so only v12 is working correctly on flashing in twrp - (even I thought the newer v13.3 should be downwards compatible?).
but then you get stuck as described in my very first post with missing manager in play store
how to fix it see following update post
----
update
so when doing the flash from v13.3 with the newest manager installed BEFORE (right after v12 twrp flash step)
THEN it succeed. MEANS
install v12 via twrp. install latest manager. install v13.3 via TWRP (now works)
then i flash the superuser. download phh app via playstore. grant SU access. reboot. like in OP described.

now i got both first field green. so ready to install framework
BUT when installing it. magisk manager (latest version) crashes and installing fails......
it says _> magisk not activated in flashing process
also no success with the zip in twrp

tried to proceed with kernel fastboot flash after this framework v1 fail.
but NOW it says magisk is not installed
then i twrp flashed v13.3 again. reboot. okay both checkboxes green again!
then you need to flash remoteplayenabler v1 via twrp.
then you have all 3 things green.

SUCCESS. :fingers-crossed::victory:

---------------------
UPDATE:

After all 3 field green i needed to install the latest Superuser form chainfire v82 R3.

Now Magisk wants me to install 13.3 again when i start the device. Also the Safety Check both fails and is red.
Installation fails via APP and TWRP! How can i try to fix it?

Do I need to start from Step 4 again?

How to keep everything Up 2 Date : Like FirmWare and SuperUser?

Thanks for your help!

 

[Wesley_NL]

guys i need help i tried twice and keep ending up with ERROR - Processing of system.sin finished with errors.
yes develop and usb debug is on, what am i doing wrong i want to dowgrade from 7.1.1 to 6.0.1 and root after backed up that key

 

[Wesley_NL]

guys i need help i tried twice and keep ending up with ERROR - Processing of system.sin finished with errors.
yes develop and usb debug is on, what am i doing wrong i want to dowgrade from 7.1.1 to 6.0.1 and root after backed up that key