Related
I was able to root my MT4G with ease using VisionARY r14. My friend purchased a MT4G shortly after and I was trying to root it for him, I used several methods and no luck on any of them.
I've tried using:
1. Visionary temp root>attempt perm root
2. Visionary temp root>terminal (sh root.sh)
3. Visionary temp root>terminal (/data/local/wpx.ko)
From what I understand #2 & #3 basically are the same. So going back to the problem, on MY phone (I don't recall if I used #1 or #2), I rooted with no issues. On his phone, the root is not sticking, every time I go into the bootloader on his S=on still. Nothing stands out or is out of the ordinary, and I would think it would have rooted just fine, the scripts ran via terminal emu and looked okay and all.
Something else I've noticed is when I install CWM Recovery via ROM Manager, after temp root from Visionary the install of CWM Recovery itself was fine, though after going into bootloader and trying to access recovery or booting into recovery from ROM Manager, it doesn't go into recovery, I get the cell with red triangle and "!" on it. I'm assuming that this is a result of it being unrooted still? Anyone else run into a stubborn MT4G like this? I've attached 2 pictures for visual aid of the phone's bootloader screen and about screen below.
Any suggestions or help is greatly appreciated, I've been trying to root it for over a week now and no luck.
I can't see the pics you posted, but I had this issue myself, for me the answer was to find a stock recovery pre ota update and force it, then I ran visionary and terminal with sh root.sh or whatever... Hope this helps... Just try to find an image of pre ota stock rom and go from there... There is a good forum here with a walkthrough to do this... Post results please, would like to know if this was your issue...
Sent from my HTC Glacier using XDA App
Hey I ran into the same problem, with that 86.0000 boatloader u must use the gfree chmod777 process its because its after the ota update
Sent from my HTC Glacier using XDA Premium App
grankin01 said:
Ok guys, first of all Scotty2 gets all the credit for the program R&D. I used my device as a test bed and have tried a couple different kernels (Gr8Gorilla's O/C Kernel and the stock kernel).
Now for the boring stuff ...
This is a very invasive way of rooting your device but the benefit is TRUE S=Off and root privileges throughout the system. As such, you do this at your own risk and if you brick your device neither Scotty2 nor myself are responsible, YOU ARE!!! Do this at your own risk!!!
This is not for the faint of heart and if you have any reservations about doing things like this do not do it.
This process will do three things for your device. I will explain them here:
1. It will set up Super CID on your device allowing you to flash any carriers rom (not just tmobile). Giving you more freedom with your choice of software. The software still needs to be device specific to the glacier for compatability reasons though. Like vodafone glacier roms etc.
2. It will subsidy unlock your device. In other words, it will SIMUNLOCK your phone allowing you to use an AT&T sim card and so on in your device without needing the unlock code from HTC.
3. Most important of all it will turn the RADIO S=Off. This is the ultimate S=Off because the radio is what controls the security flag in the first place. Once you turn it off here it is off everywhere and will allow you pure unadulterated access to your device.
This process will not change your bootloader (unless your on 0.86.0000 and you follow the optional steps).
Now, you may be asking "Why do this? I already have root from your other guide and it has given me r/w access to system and recovery. I thought this meant we had permanent S=Off." This is only partially true. We have had an engineering bootloader and "Label" s=off not radio s=off. When you turn the security off in radio it is off permanently no matter what hboot you have installed engineering or otherwise. However, it is optional but you can still copy the engineering hboot over and it will allow you to flash whatever you like without (as much) fear of bricking your device.
This guide assumes you know how to use ADB. If you do not there are guides all over XDA to show you how. There is even a really good one in this forum. Also here is a video on how to setup adb discovered by topgun303: http://www.youtube.com/watch?v=1UF5w1dKe2U
*NOTE*
For some reason this process can bork your recovery. If you notice after following the steps below that in order to reboot from recovery you have to uninstall/reinstall the battery and hit the power button, just install/reinstall clockwork recovery through Rom Manager in the android market and it will fix your problem.
CONFIRMED: Guide does work for pre-OTA devices!!! Thanks xanz!
Here we go:
If you are already permarooted per the other guide just follow the first 11 steps.
Make sure you have visionary installed on your device. (If you were already permarooted w/s=off ignore this step.)
Download this file:
http://www.mediafire.com/?s7afymwe2wb3x60 New version of gfree with more options! See below.
md5sum: b73c56ca0e21664c5756d4ad295063c5
1. Now unzip the file into your SDK tools directory.
2. Plug your device into your computer.
3. Now open explorer and hold down shift at same time you right mouse click on your SDK tools directory (platform-tools if you have the R8 version of the SDK). Select open command window here. If you are in linux (ubuntu) right mouse click on your SDK tools folder, choose actions, and choose open command window(or whatever it's called). Otherwise, open a command prompt and cd your way to your SDK tools directory.
4. Type "adb push gfree /data/local" and hit enter.
Optionally, you could dl the file to your phone use androzip or something like it to unzip the file and then use root explorer to move the file named gfree to /data/local. Not the gfree.h file. All the other files are source code inlcuded for the gnu license. This would skip the first 4 steps.
5. Now unplug your device from the computer.
6. Run visionary to gain temp root. (If you were already permarooted w/s=off ignore this step.)
7. Open terminal emulator on your device, type "su", and hit enter to gain root privileges.
8. Type "cd /data/local" and hit enter.
9. Now type "chmod 777 gfree" and hit enter to make the program executable.
10. Type "./gfree -f" and hit enter.
New features in gfree.
gfree usage:
gfree [-h|-?|--help] [-v|--version] [-s|--secu_flag on|off]
-h | -? | --help: display this message
-v | --version: display program version
-s | --secu_flag on|off: turn secu_flag on or off
-c | --cid <CID>: set the CID to the 8-char long CID
-S | --sim_unlock: remove the SIMLOCK
With the new features you can turn off one thing at a time. You can also turn security back on and set the CID back to stock if you wish. To turn simlock back on you still have to follow the revert procedures on this page as the information that is patched to turn the lock off is encrypted and we can't write back to it other than restoring the entire image.
So, if you wanted to leave simlock on but turn security off and set super CID the command would be "./gfree --secu_flag off --cid 11111111" + enter. The -f switch after ./gfree that is now in the above step (./gfree -f) just tells gfree to patch everything.
11. Wait for the program to finish and then reboot into HBoot to see if S=Off. Also, check your bootloader version. If it says s=off and has bootloader version 0.86.0000 it worked.
If you already had hboot 0.85.2007 you can check it through the hboot menu. It gives you an option for "system info" in the hboot menu. Highlight it and hit power. It should say CID = 11111111 or something like that. If it does your golden.
Congratulations!
12. If this is the first time you have rooted your device you will need to run visionary again (temproot w/set system r/w after root checked and then attempt permroot) to make root privileges permanent and then reboot again. Now "su" should work properly for you.
Gfree writes a backup of the file that it patches named Part7backup-numbers.bin on your sdcard. I suggest putting this file in a safe place as it is the only way to revert if you need to.
[Optional] Steps to flash engineering bootloader.
1. Restart your phone and plug it back into your computer.
2. Download this file: http://www.megaupload.com/?d=NN5726Z8
md5sum: df4fd77f44993eb05a4732210d2eddc6
3. Copy the file to your SDK tools directory.
4. Open a command prompt again and cd into your SDK tools directoty (platform-tools if your on the new R8 SDK).
5. Type "adb push hboot_dhd.nb0 /data/local" and hit enter.
6. Now open terminal on your device and type "su" and enter to gain root priviliges.
7. Type "cd /data/local" and enter.
8. Now type "dd if=hboot_dhd.nb0 of=/dev/block/mmcblk0p18" and hit enter.
9. You should see something like: 2048 bytes in 2048 bytes out 1048576 bytes copied blah blah blah.
10. Now restart the device into hboot and check if your bootloader version is 0.85.2007. That is what you want to see.
Congratulations, you now have a TRUE root and engineering bootloader on your shiny MT4G!!!
Click to expand...
Click to collapse
Sent from my HTC Glacier using XDA Premium App
ZuluNexus said:
Hey I ran into the same problem, with that 86.0000 boatloader u must use the gfree chmod777 process its because its after the ota update
Sent from my HTC Glacier using XDA Premium App
Click to expand...
Click to collapse
I second this, gfree works great
ZuluNexus said:
Hey I ran into the same problem, with that 86.0000 boatloader u must use the gfree chmod777 process its because its after the ota update
Sent from my HTC Glacier using XDA Premium App
Click to expand...
Click to collapse
This would explain why I had to flash the pre ota stock image before I could root using the sh root.sh.... I am sure the chmod777 would have worked also...
Sent from rooted Royal Glacier using XDA app
powduh09 said:
I can't see the pics you posted, but I had this issue myself, for me the answer was to find a stock recovery pre ota update and force it, then I ran visionary and terminal with sh root.sh or whatever... Hope this helps... Just try to find an image of pre ota stock rom and go from there... There is a good forum here with a walkthrough to do this... Post results please, would like to know if this was your issue...
Sent from my HTC Glacier using XDA App
Click to expand...
Click to collapse
I see. So just get a pre ota stock rom and Visionary would be the simplest way then? But would the pre ota stock ROM also include the < 86.0000 botloader?
ZuluNexus said:
Hey I ran into the same problem, with that 86.0000 boatloader u must use the gfree chmod777 process its because its after the ota update
Sent from my HTC Glacier using XDA Premium App
Click to expand...
Click to collapse
ZuluNexus said:
Sent from my HTC Glacier using XDA Premium App
Click to expand...
Click to collapse
ziggy34 said:
I second this, gfree works great
Click to expand...
Click to collapse
Thumbs up
powduh09 said:
This would explain why I had to flash the pre ota stock image before I could root using the sh root.sh.... I am sure the chmod777 would have worked also...
Sent from rooted Royal Glacier using XDA app
Click to expand...
Click to collapse
Which method did you use to flash the pre ota image?
And thanks everyone for the quick replies!
When I flahed pre ota I found the forum on here for it. Just placed the file on my sd card and named it PD15IMG and booted phone to hboot, it found update and went from there
Sent from rooted Royal Glacier using XDA app
powduh09 said:
When I flahed pre ota I found the forum on here for it. Just placed the file on my sd card and named it PD15IMG and booted phone to hboot, it found update and went from there
Sent from rooted Royal Glacier using XDA app
Click to expand...
Click to collapse
Awesome, what is hoped for! Thanks!
Sent from my HTC Glacier using XDA App
EDIT!!
RESOLVED!
Unfortunately the method of just using the PD15IMG did not work because the bootloader recognized it as an older image and wouldn't update it. I came across this thread and successfully rooted!! =]
http://forum.xda-developers.com/showthread.php?t=995549
I improvised a bit and did not use "Androzip" I had "Adao File Manager" already installed on my friends phone. Basically.
Credit goes to the OP of the posts!! But here's the link to the gfree the OP is referring to. http://forum.xda-developers.com/showthread.php?t=858996
I am having a problem getting the gfree files to move where they need to be and sry guys, unsure of ow to use sdk, im need the dummy dummy guide anyone? Ive been researching for days lol
Rainbowbright081 said:
I am having a problem getting the gfree files to move where they need to be and sry guys, unsure of ow to use sdk, im need the dummy dummy guide anyone? Ive been researching for days lol
Click to expand...
Click to collapse
You need a root explorer.
*Root can be accomplished without SDK.
Sent from my Glacier running CM7 RC2 via XDA app.
YOu can try using mt4groot.zip google it
I managed to get it done right with adb, s=off perm, running cm7 with honeycomb. Quite awesome!
Sent from my HTC Glacier using XDA Premium App
lilazngoku8 said:
YOu can try using mt4groot.zip google it
Click to expand...
Click to collapse
It's in the second link I posted. Safer than Googling.
Rainbowbright081 said:
I managed to get it done right with adb, s=off perm, running cm7 with honeycomb. Quite awesome!
Sent from my HTC Glacier using XDA Premium App
Click to expand...
Click to collapse
Running CM7 with Honeycomb? I am mistaken? You mean the honeycomb theme?
Sent from my Glacier running CM7 RC2 via XDA app.
Sry yes running the honeycomb theme
Sent from my HTC Glacier using XDA Premium App
Rainbowbright081 said:
Sry yes running the honeycomb theme
Sent from my HTC Glacier using XDA Premium App
Click to expand...
Click to collapse
Lol cool, I was going to say, 3.0??!! ; )
gordonzhao said:
Awesome, what is hoped for! Thanks!
Sent from my HTC Glacier using XDA App
EDIT!!
RESOLVED!
Unfortunately the method of just using the PD15IMG did not work because the bootloader recognized it as an older image and wouldn't update it. I came across this thread and successfully rooted!! =]
http://forum.xda-developers.com/showthread.php?t=995549
I improvised a bit and did not use "Androzip" I had "Adao File Manager" already installed on my friends phone. Basically.
Credit goes to the OP of the posts!! But here's the link to the gfree the OP is referring to. http://forum.xda-developers.com/showthread.php?t=858996
Click to expand...
Click to collapse
This is just a laid out variant of the ./gfree method. It'll work but it's been around since the dawn of the Glacier. It's nothing special .
Hello everybody,
I'm trying to get AdFree to work without success...
Basically when AdFree is connecting to the server to download the /etc/hosts file the phone reboots. After the reboot I can still see all the ads.
Any help to make it work please?
AdFree needs S-OFF.
nhnt11 said:
AdFree needs S-OFF.
Click to expand...
Click to collapse
I am rooted and on CyanogenMod 7 RC4 so I guess I'm S-OFF as well. Right?
rent0n said:
I am rooted and on CyanogenMod 7 RC4 so I guess I'm S-OFF as well. Right?
Click to expand...
Click to collapse
No. It's a totally different concept. S-OFF can be achieved using an XTC Clip only as of now.
S-OFF = NAND Unlock != Rooting
3xeno said:
No. It's a totally different concept. S-OFF can be achieved using an XTC Clip only as of now.
S-OFF = NAND Unlock != Rooting
Click to expand...
Click to collapse
Yeah, right. I just checked and am S-ON indeed, thanks.
It wasn't clear that the app needed S-OFF though.
All right, would any of these alternative methods work?
Block ads on your Android phone
[HOW TO] Remove ads using adfree android
Thanks!
Also I've found somewhere that enabling the symlink option should work on S-ON devices...
hi if ur tryin to remove the add on apps then try this
this is a file that get put into ur system/etc which replaces the host file.
ive not created this host files list some one else
http://forum.xda-developers.com/showthread.php?t=958645
did but it blocks a fear few adds on apps hope this helps
rent0n said:
Also I've found somewhere that enabling the symlink option should work on S-ON devices...
Click to expand...
Click to collapse
Yes, AdFree seems to work with the symlink option on my S-ON phone (at least for now).
Some ads in some apps are not blocked (those in Ninja Kaka for example), but that probably depends on the hosts file installed.
great topic, it is really annoying to see all of those ads...
You don't *need* S-OFF, you just need S-OFF for a writable online /system partition.
All AdBlock does is download a hosts file and try to copy it to that partition. I reboots because of nand lock (S-ON). Just take the hosts file and install it with adb while in recovery (/system is writable in recovery).
my phone is s-off what i need to able use adfree?
NickHu said:
You don't *need* S-OFF, you just need S-OFF for a writable online /system partition.
All AdBlock does is download a hosts file and try to copy it to that partition. I reboots because of nand lock (S-ON). Just take the hosts file and install it with adb while in recovery (/system is writable in recovery).
Click to expand...
Click to collapse
I think the symlink option does something similar, bypassing the limitation of the write-protected partition by creating a symbloic link.
Why is this so confusing? Is it possible to root this phone yet or not? Some are saying it is, some are saying it isn't. What steps do I use to root one?
shinkukage09 said:
Why is this so confusing? Is it possible to root this phone yet or not? Some are saying it is, some are saying it isn't. What steps do I use to root one?
Click to expand...
Click to collapse
This is the mytouch4g. Not sure if anybody here would know how to root the Panache. Sorry. Wrong section for this question. I would guess since the Panache and the MT4G are almost the exact same phone they would root the same also.
Kinda meant to put it in Q&A...hit the wrong forum, I guess. My bad.
But that doesn't answer my question. What steps do I use to properly root this thing?
dragonstalker said:
This is the mytouch4g. Not sure if anybody here would know how to root the Panache. Sorry. Wrong section for this question. I would guess since the Panache and the MT4G are almost the exact same phone they would root the same also.
Click to expand...
Click to collapse
the panache=mytouch 4g in canada
TO ROOT: follow this guide BUT whenever they mention visionary, use gingerbreak from the second link
root guide:
http://forum.xda-developers.com/showthread.php?t=858996
gingerbreak
http://forum.xda-developers.com/showthread.php?t=1044765
I AM NOT RESPONSIBLE FOR ANYTHING YOU DO TO YOUR PHONE (OR YOUR PHONE DOES TO YOU FOR FOLLOWING MY INSTRUCTIONS)
shinkukage09 said:
Kinda meant to put it in Q&A...hit the wrong forum, I guess. My bad.
But that doesn't answer my question. What steps do I use to properly root this thing?
Click to expand...
Click to collapse
Use one root. Look under this forum for Visionaryplus.. Check this forum for it.
dragonstalker said:
Use one root. Look under this forum for Visionaryplus.. Check this forum for it.
Click to expand...
Click to collapse
i am 99% sure he cant use visionary as the panache comes with gingerbread..correct me if i am wrong
VibrantOwnr said:
i am 99% sure he cant use visionary as the panache comes with gingerbread..correct me if i am wrong
Click to expand...
Click to collapse
You are prob 99% right my friend.
VibrantOwnr said:
i am 99% sure he cant use visionary as the panache comes with gingerbread..correct me if i am wrong
Click to expand...
Click to collapse
And you are right. Stay away from visionary.
VibrantOwnr said:
the panache=mytouch 4g in canada
TO ROOT: follow this guide BUT whenever they mention visionary, use gingerbreak from the second link
root guide:
http://forum.xda-developers.com/showthread.php?t=858996
gingerbreak
http://forum.xda-developers.com/showthread.php?t=1044765
I AM NOT RESPONSIBLE FOR ANYTHING YOU DO TO YOUR PHONE (OR YOUR PHONE DOES TO YOU FOR FOLLOWING MY INSTRUCTIONS)
Click to expand...
Click to collapse
Follow this root. He is correct.
Hi, I have the HTC Panache from Videotron
HTC Panache info
GLACIER PVT SHIP S-ON
HBOOT-0.89.0005
MICROP-0429
RADIO-26.09.04.26_M
eMMC-boot
Apr 14 2011,13:18:22
I followed the instructions... I downloaded gfree using the link in the above post extracted it to the same folder as adb in the android sdk folder, then I ran adb push gfree /data/local. I ran Gingerbreak click on root then my phone rebooted, I saw the SuperUser app but I open Terminal Emulator, type su and I didnt have any errors, then I type cd /data/local and chmod 777 gfree and ./gfree -f after that I got that:
--secu_flag off set
--cid set. CID will be changed to: 11111111
--sim_unlock. SIMLOCK will be removed
Section header entry size: 40
Number of section headers: 44
Total section header table size: 1760
Section header file offset: 0x000138b4 (80052)
Section index for section name string table: 41
String table offset: 0x000136fb (79611)
Searching for .modinfo section...
- Section[16]: .modinfo
-- offset: 0x00000a14 (2580)
-- size: 0x000000cc (204)
Kernel release: 2.6.35.10-g6c50606
New. modinfo section size: 204
Attempting to power cycle eMMC... Failed.
Module failed to load: Operation not permitted
Then it close leaving me in the shell. I tried to reboot my phone and nothing have changed... Do you know why it was unable to go trough all the steps? I want to root to get ride of Stk.apk because the notification (Sim card with a gear) showing Zone is getting really anoying (Videotron use a sim application to let you know if you are in a zone..) I dont need it since I do not have any zones in my plans I also try doing rm /system/app/Stk.apk using Terminal Emulator but again I got permission denied...
Please help me
wiki.cyanogenmod.com/wiki/TMobile_myTouch_4G:_Full_Update_Guide
Use that sometimes gfree.7 doesn't work and that has a link for gfree. 5 which will just use that guide step by step and it will work
Sent from a guy living in a van down by the river
I have the mytouch4g but it was a test phone loaded with the panache software.... I tried the root guides and they all failed. In the end it was very simple... download USB drivers then run the newer version of superoneclick and run it using "gingerbreak". I now have the ability to change everything.
Sent from my demonSPEED! Glacier using XDA Premium App
Hi, thanks for your reply, I forgot to say that I have gingerbread 2.3.3 on it so psneuter will not work. but can I simply use gfree 5 using the command ./gfree -f like the guide in this thread to have s-off and after load gingerbreak again to gain root?
Just use that wiki and follow gfree. 5 it should work
Sent from a guy living in a van down by the river
Man, I'm so glad I have a MT4G, I've gone through some of the other device forums and seen some of the nightmares that a lot of the users are going through just to get their phones rooted and glad I spent the time to read up on what I should buy before I actually went out and spent it.
I don't wanna flash the recovery, the only thing I want is to remove Stk.apk from my phone. I don't mind if its not rooted afterward.
Mastaiso said:
Hi, thanks for your reply, I forgot to say that I have gingerbread 2.3.3 on it so psneuter will not work. but can I simply use gfree 5 using the command ./gfree -f like the guide in this thread to have s-off and after load gingerbreak again to gain root?
Click to expand...
Click to collapse
Right.... change the toggle to gingerbreak....
Sent from my demonSPEED! Glacier using XDA Premium App
*delete post please*
There is no root available for the panache at this time.
Sent from my Green Sludge using XDA Premium App
Darn...still no way to root this phone...? =( I'd really love to be able to install some Sense 3.0 goodness onto it...such a waste...=(
A while back I read someone used the RUU from the HTC Panache on their MyTouch4G (cuz lets be honest true HTC Sense kicks T-Mobiles MySense's ass) & it worked...
What if you try the Stock image for the MyTouch4G: PD15IMG.zip via boot loader & (providing it works) then use the MyTouch4G method of rooting afterwards. This is just an idea, but if it worked one way, it may work both ways
Hello!
How can one root official 2.3.5 rom without connecting to usb and adb?
The goal is to install custom ICS on U8800 that has no usb port - completely broken and even not charging phone. No warranty and repair cost is close to actual phone cost. So repairing is not an option.
Wireless adb app requires root first - so it is not an option for me also.
Any help is appreciated - I need ISC because I need ipsec vpn which is npt available in gingerbread.
I am ready to test any operation you suggest - I don't fear to brick the phone, need no backups.
It's impossible. I have one USB broken u8800 and that's why I use cm7 (.32) on it.
Sent from my U8800 using Tapatalk 2
Qqqxxxzzz said:
It's impossible. I have one USB broken u8800 and that's why I use cm7 (.32) on it.
Sent from my U8800 using Tapatalk 2
Click to expand...
Click to collapse
There is nothing impossible I believe
Maybe we could find the trick - gingerbreak works on some roms - another fine exploit maybe.
I don't know - worth a try I think.
tranced1 I might have 1 possible solution for you. I've rooted my 2.3.5 some time ago and I've done a backup of boot.img.
I remember with froyo we could root it with boot.img "rooted". I bet this won't work on 2.3.5, but who knows right?
If you want to give it a try, I upload that boot.img for you.
EDIT: darn! Totally forgot you can't access bootloader directory without root & damaged usb port
Can't remember another way out... sorry
tranced1 said:
There is nothing impossible I believe
Maybe we could find the trick - gingerbreak works on some roms - another fine exploit maybe.
I don't know - worth a try I think.
Click to expand...
Click to collapse
Gingerbreak and z4root doesn't work. Only solution is build your own exploit.
Sent from my U8800 using Tapatalk 2
Is there any way to flash zip from stock recovery? I saw this root method for some samsung phones.
Does anybody know how to compile such .zip file?
tranced1 said:
Is there any way to flash zip from stock recovery? I saw this root method for some samsung phones.
Does anybody know how to compile such .zip file?
Click to expand...
Click to collapse
compiling zip is easy. Your problem is that we don't know how to sign it correctly.
Sent from my GT-P1000 using Tapatalk 2
I believe that you can use terminal emulator and zergrush exploit to root the phone.
The automatic root methods basicaly push the needed files on /data/local change permissions etc... All can be done with linux commands which are available from a terminal emulator. So I don't think that you need the usb cable to root the device. You can try investigate the runme.bat file from doomlord's root method and give the commands manually after you have put the files from files directory on sdcard.
dancer_69 said:
I believe that you can use terminal emulator and zergrush exploit to root the phone.
The automatic root methods basicaly push the needed files on /data/local change permissions etc... All can be done with linux commands which are available from a terminal emulator. So I don't think that you need the usb cable to root the device. You can try investigate the runme.bat file from doomlord's root method and give the commands manually after you have put the files from files directory on sdcard.
Click to expand...
Click to collapse
adb can access the phone as root user - from terminal file system is read-only, so even first step permission denied
Yes, you have right about that.
But, check this thread:
http://forum.xda-developers.com/showthread.php?t=1716068
the last post.
EDIT:
After reading the discription on first post of gingerbreak, I had another Idea.
Seems that gingerbreak uses sd card to temporary store the necessary for root files. So, maybe you can replace these files(and especially the exploit) whith those of doomlord's root app, before you press the root button, so to use the working zergrush exploit.
This is the B528 root bat script:
http://pastebin.ca/raw/2163499
@adb wait-for-device
@echo --- DEVICE FOUND
@echo --- reboot to bootloader
@adb reboot-bootloader
@echo --- flash the rooted bootimage
@fastboot boot boot.img
@echo --- reboot to nomal mode
@fastboot reboot
@echo --- wait for adb connect
@adb wait-for-device
@echo --- DEVICE FOUND
@adb remount -t yaffs2 /dev/block/mtdblock3 /system
Click to expand...
Click to collapse
You're problem is in red... you have to flash the exploited boot image. The rest is just installing busybox, su and SuperUser.apk.
You have the stock recovery which allows you to flash .zip files, but they have to be signed correctly and I don't think that's possible.
VuDuCuRSe said:
This is the B528 root bat script:
http://pastebin.ca/raw/2163499
You're problem is in red... you have to flash the exploited boot image. The rest is just installing busybox, su and SuperUser.apk.
You have the stock recovery which allows you to flash .zip files, but they have to be signed correctly and I don't think that's possible.
Click to expand...
Click to collapse
To boot a different boot image, you have to use USB, atleast on fastboot.
dancer_69 said:
Yes, you have right about that.
But, check this thread:
http://forum.xda-developers.com/showthread.php?t=1716068
the last post.
EDIT:
After reading the discription on first post of gingerbreak, I had another Idea.
Seems that gingerbreak uses sd card to temporary store the necessary for root files. So, maybe you can replace these files(and especially the exploit) whith those of doomlord's root app, before you press the root button, so to use the working zergrush exploit.
Click to expand...
Click to collapse
Thanks for clues but seems there is no way - I cant execute exploit via ssh - permission denied I cant even chmod it.
Gingerbreak completely not working - no files created on sdcard.
Ι didn't find any other way on net. There are several discussions for this problem but not a solution. I think that the only way is to do it for an app. You can contact with the creator of gingerbreak or z4root to ask for it. Also I'll try to make an app myself, but my android developing knowledge is very basic, so don't count too much on this. If I have some kind of success I'll contact you via PM.
EDIT:
Try this mod, and if you are lucky...
dancer_69 said:
Ι didn't find any other way on net. There are several discussions for this problem but not a solution. I think that the only way is to do it for an app. You can contact with the creator of gingerbreak or z4root to ask for it. Also I'll try to make an app myself, but my android developing knowledge is very basic, so don't count too much on this. If I have some kind of success I'll contact you via PM.
EDIT:
Try this mod, and if you are lucky...
Click to expand...
Click to collapse
No I am obviously not the lucky one
My android development knowledge is zero, so if you can run zergRush from executable area it will be a very good start.
And I want to thank everybody for your support.
So, it doesn't work?
I just updated the file, so give it another try.
Also, check if you have logcat and usb debuging enabled(is needed for other methods, so maybe needed here too)
dancer_69 said:
So, it doesn't work?
I just updated the file, so give it another try.
Also, check if you have logcat and usb debuging enabled(is needed for other methods, so maybe needed here too)
Click to expand...
Click to collapse
Logcat: Cannot copy boomsh. : Permission Denied
I will revert to first beta now - and will test if it will work
I suppose this logat message is for z4root fail. Unfortunately I don't know what boomsh is. I just decompiled the apk and replaced the exploit, busybox, superuser, and su files with these from doomlord's root files directory.
So, easy solution didn't work. If I have something else I'll let you know.
EDIT:
I get some info about "cannot copy boomsh"
The exploit creates this file when run. This message appears when this file already exists and needed to be deleted from /data/local/tmp.
I checked z4root-mod on my device(which is already rooted and with ICS custom rom), and I get this message too.
The problem is that this file doesn't exist on my device, so I cannot delete it.
---------- Post added at 04:16 PM ---------- Previous post was at 03:17 PM ----------
I read on a forum that these apps(as z4root) run better after a fresh boot. So, install the latest apk(has newer files), reboot the device and run z4root again.
z4root is a froyo root exploit (I think) and seems "dead" for a long time.
Check Chainfire's Gingerbreak: http://forum.xda-developers.com/showthread.php?t=1044765
Hi,
rooting my LG H440n Spirit 4G phone (Lolipop 5.0.1) has failed at the moment when "Firmware Update" notification showed up on the mobile phone screen (after rooting had started and rebooted once). It says on the phone screen that I should not unplug USB connection to my phone. But since rooting failed what should I do now?
Closing down command line with LG Root Script running did not stop Firmware Update and it is still displayed on my phone.
Is it safe to disconnect usb right now from my phone and try rooting my phone again?
Thank you very much for any advise and support.
cbx44 said:
Hi,
rooting my LG H440n Spirit 4G phone (Lolipop 5.0.1) has failed at the moment when "Firmware Update" notification showed up on the mobile phone screen (after rooting had started and rebooted once). It says on the phone screen that I should not unplug USB connection to my phone. But since rooting failed what should I do now?
Closing down command line with LG Root Script running did not stop Firmware Update and it is still displayed on my phone.
Is it safe to disconnect usb right now from my phone and try rooting my phone again?
Thank you very much for any advise and support.
Click to expand...
Click to collapse
I have the same problem I tried one click root 1.3 and the old script 1.2 android 5.0.1 v10f-EUR-XX. HELP US!
Updated to V10j-214-03 and cannot root
Hello.
Last Friday 23/10/2015 I updated my phone to V10j-214-03 and cannot root it again.
Anyone has updated and rooted this version?
Thank you very much!
Hello. I tried to see if we could use the Low Effort Root on our device. I made some progress, but I am unable to finish what I started because I am stuck[ somewhere.
What I did:
1. Extract the v10h kdz.
2. Get the v10h system.img and the file "PrimaryGPT_0.bin" from the extracted files.
3. Inject root into the v10h system.img: http://forum.xda-developers.com/g4/general/lg-g4-100-root-success-directives-root-t3180586
3. Rename the "PrimaryGPT_0.bin" into "gpt.img". Then go to ubuntu, open a terminal and run: "# sudo gdisk /path/of/gpt.img"
This gives us the partition info for our device: http://pastebin.com/u9maAAdm
This will help us determine the bs, seek and count when we will use the "Send_Command.exe" to push the v10h system to our device.
4. Based on @autoprime 's help, we have to do some calculations. http://pastebin.com/brcXBpja
[I think that he made a mistake though (missed to multiply by 512 on count). This seems more correct to me: http://pastebin.com/tHUbicR8 )
5. After calculating bs, seek and count, we are supposed to run the Low Effort Root procedure for our device.
But, after running the dd command, a "#" comes immediately, which means that something is going wrong. The "#" should take some time to appear, meaning that the copy is in progress. I couldn't identify what I am doing wrong, so I publish my effort, because maybe someone has more knowledge and may be able to make it work! @midzan21 maybe?
Autoprime, thanks for your help and guidance through irc.
Original Low Effort Root thread: http://forum.xda-developers.com/g4/orig-development/root-tmo-vzw-intl-variants-soon-root-lg-t3164765
polfrank said:
Hello. I tried to see if we could use the Low Effort Root on our device. I made some progress, but I am unable to finish what I started because I am stuck[ somewhere.
What I did:
1. Extract the v10h kdz.
2. Get the v10h system.img and the file "PrimaryGPT_0.bin" from the extracted files.
3. Inject root into the v10h system.img: http://forum.xda-developers.com/g4/general/lg-g4-100-root-success-directives-root-t3180586
3. Rename the "PrimaryGPT_0.bin" into "gpt.img". Then go to ubuntu, open a terminal and run: "# sudo gdisk /path/of/gpt.img"
This gives us the partition info for our device: http://pastebin.com/u9maAAdm
This will help us determine the bs, seek and count when we will use the "Send_Command.exe" to push the v10h system to our device.
4. Based on @autoprime 's help, we have to do some calculations. http://pastebin.com/brcXBpja
[I think that he made a mistake though (missed to multiply by 512 on count). This seems more correct to me: http://pastebin.com/tHUbicR8 )
5. After calculating bs, seek and count, we are supposed to run the Low Effort Root procedure for our device.
But, after running the dd command, a "#" comes immediately, which means that something is going wrong. The "#" should take some time to appear, meaning that the copy is in progress. I couldn't identify what I am doing wrong, so I publish my effort, because maybe someone has more knowledge and may be able to make it work! @midzan21 maybe?
Autoprime, thanks for your help and guidance through irc.
Click to expand...
Click to collapse
Well that what you try to did we got for v10a ROM via Universal LG Root for Lollipop. There is something that you can look about commands. Unfortienatly I can't try anything for now, because I need fully working phone and fully working Arch Linux VM for some networking testings.
midzan21 said:
Well that what you try to did we got for v10a ROM via Universal LG Root for Lollipop. There is something that you can look about commands. Unfortienatly I can't try anything for now, because I need fully working phone and fully working Arch Linux VM for some networking testings.
Click to expand...
Click to collapse
I think it's not the same. With Universal tool we ran a script that was stored on internal SD and this script pushed SuperSU.apk su.bin etc to the system. Now, we replace the whole System.img with a rooted one, and I think this is the point of Low Effort Root.
polfrank said:
I think it's not the same. With Universal tool we ran a script that was stored on internal SD and this script pushed SuperSU.apk su.bin etc to the system. Now, we replace the whole System.img with a rooted one, and I think this is the point of Low Effort Root.
Click to expand...
Click to collapse
so here are some of calculations which I did on my Windows ... I think that somewhere calculation for count is weird because it get into floating data point (decimal numbers)
skip/seek = 51008
count = 314530.125
bs = 8192 (used that as default)
edit: calculated using this calculations for count
[(end sector - start sector +1)*Logical sector size] / bs
Logical sector size iz 512 b
midzan21 said:
so here are some of calculations which I did on my Windows ... I think that somewhere calculation for count is weird because it get into floating data point (decimal numbers)
skip/seek = 51008
count = 314530.125
bs = 8192 (used that as default)
Click to expand...
Click to collapse
Aha, I noticed this and I set the bs to 1024. Then, I made the calculations and they seemed normal. But I 'm not sure if changing the bs would mess up things. The thing is that, whatever I used as numbers, the command wouldn't run.
I mean like how will ur calculations help us to root our phones? Is there a way to root my LG spirit?
JJolii said:
I mean like how will ur calculations help us to root our phones? Is there a way to root my LG spirit?
Click to expand...
Click to collapse
They can help us write a dd command correctly, so that we can send a rooted system.img in the correct partition of our device. So basically, if it worked, we would have had root on v10h now. But as I said, I am missing something.
polfrank said:
They can help us write a dd command correctly, so that we can send a rooted system.img in the correct partition of our device. So basically, if it worked, we would have had root on v10h now. But as I said, I am missing something.
Click to expand...
Click to collapse
Ive got v10f-eur-xx
I've tried SRSroot v5.1.
20:02:34 [+] Testing exploit: root8 (please wait..)
20:02:35 [+] Remounting /system Filesystem as R/W..
20:02:35 [+] Installing SU Binary...
20:02:35 [+] Installing SuperUser APK...
20:02:35 [+] Remounting /system Filesystem as R/O..
20:02:42 [+] Rooting Complete !
After restart theres not SU apk and I checked if my phone is rooted by Root checker basic and it says its not rooted. Im so frustrated in rooting my phone.. Im out of solutions how to root that piece of ****.
JJolii said:
Ive got v10f-eur-xx
I've tried SRSroot v5.1.
20:02:34 [+] Testing exploit: root8 (please wait..)
20:02:35 [+] Remounting /system Filesystem as R/W..
20:02:35 [+] Installing SU Binary...
20:02:35 [+] Installing SuperUser APK...
20:02:35 [+] Remounting /system Filesystem as R/O..
20:02:42 [+] Rooting Complete !
After restart theres not SU apk and I checked if my phone is rooted by Root checker basic and it says its not rooted. Im so frustrated in rooting my phone.. Im out of solutions how to root that piece of ****.
Click to expand...
Click to collapse
Have you tried kingroot?
polfrank said:
Have you tried kingroot?
Click to expand...
Click to collapse
Yes I did, Pc version and android app version, none of them worked.
Well, just go back to v10e-EUR-xx with the LG Flash Tool and root it with Kingroot. Worked for me.
Not mentioning the amount of hair I pulled out trying to root v10f...
Tomo123 said:
Well, just go back to v10e-EUR-xx with the LG Flash Tool and root it with Kingroot. Worked for me.
Not mentioning the amount of hair I pulled out trying to root v10f...
Click to expand...
Click to collapse
Just CSE flashed v10c and rooted with kingroot
Tomo123 said:
Well, just go back to v10e-EUR-xx with the LG Flash Tool and root it with Kingroot. Worked for me.
Not mentioning the amount of hair I pulled out trying to root v10f...
Click to expand...
Click to collapse
can u help me/guide me through Skype or Teamviewer? Please.
k got v10e-eur-xx rom and tried to root with kingoroot and oneclickroot 1.3 still doesn't root. What could be the problem?
JJolii said:
k got v10e-eur-xx rom and tried to root with kingoroot and oneclickroot 1.3 still doesn't root. What could be the problem?
Click to expand...
Click to collapse
Which version of kingroot are you using?
polfrank said:
Which version of kingroot are you using?
Click to expand...
Click to collapse
BETA : 2.5 android app
JJolii said:
BETA : 2.5 android app
Click to expand...
Click to collapse
Try this one: http://forum.xda-developers.com/devdb/project/dl/?id=14576
Click Direct Download.