Hi guys. Not new to rooting but new to my AT&T S4. I rooted it tonight with Motochopper and installed CWM recovery. Downloaded and tried to flash a ROM, and it simply didn't work. Then I tried Beanstalk 4.2.2, and it downloads, but then when I rebooted it, it gave me the yellow triangle unauthorized software message. So I pulled the battery and finally got it to boot into recovery, then installed the back up I had from the stock OS. My question is two fold-what's causing this and if I download a ROM with the Loki patch, will that bypass the error message I'm getting. I searched the forums but am not understanding what was written. I'm pretty confused, any help would be greatly appreciated.
chokem said:
Hi guys. Not new to rooting but new to my AT&T S4. I rooted it tonight with Motochopper and installed CWM recovery. Downloaded and tried to flash a ROM, and it simply didn't work. Then I tried Beanstalk 4.2.2, and it downloads, but then when I rebooted it, it gave me the yellow triangle unauthorized software message. So I pulled the battery and finally got it to boot into recovery, then installed the back up I had from the stock OS. My question is two fold-what's causing this and if I download a ROM with the Loki patch, will that bypass the error message I'm getting. I searched the forums but am not understanding what was written. I'm pretty confused, any help would be greatly appreciated.
Click to expand...
Click to collapse
So, to sum up development in this forum for the last 3 months: The ATT version of the S4 has a locked bootloader, which is a fancy way of saying ATT and Samsung don't want custom software on their phone partitions. To keep people from installing custom ROMs, their bootloader requires a verified signature present in the ROM to actually allow the device to boot.
An individual found a way to trick this verification process, and created a patch for it called LOKI.
When a ROM is "Loki'd" it contains this workaround for the verification process in the bootloader, allowing custom software to be installed.
To answer your question, when you root your phone and install the recovery (TWRP or OUDHS): a ROM must be lokied to work. OUDHS recovery has a feature which automatically installs the workaround in every ROM you flash using the utility. I recommend this version of Clockwork Recovery.
The link is here:
http://forum.xda-developers.com/showthread.php?t=2291956
I personally use the nightly CyanogenMod 10.1 builds for the ATT S4 (called jlteatt). They're quick and stable except for a few quirks with the camera, call-audio via headsets, and bluetooth audio.
The link to download is here:
http://get.cm/?device=jflteatt
*This version of CM 10.1 is already Loki'd
Have fun flashing, and if all else fails and you accidentally run into a scenario where you can't boot your phone, use this utility to restore the factory OS that comes with the phone.
http://forum.xda-developers.com/showthread.php?t=2261573
Furies said:
So, to some up development in this forum for the last 3 months: The ATT version of the S4 has a locked bootloader, which is a fancy way of saying ATT and Samsung don't want custom software on their phone partitions. To keep people from installing custom ROMs, their bootloader requires a verified signature present in the ROM to actually allow the device to boot.
An individual found a way to trick this verification process, and created a patch for it called LOKI.
When a ROM is "Loki'd" it contains this workaround for the verification process in the bootloader, allowing custom software to be installed.
To answer your question, when you root your phone and install the recovery (TWRP or OUDHS): a ROM must be lokied to work. OUDHS recovery has a feature which automatically installs the workaround in every ROM you flash using the utility. I recommend this version of Clockwork Recovery.
The link is here:
http://forum.xda-developers.com/showthread.php?t=2291956
I personally use the nightly CyanogenMod 10.1 builds for the ATT S4 (called jlteatt). They're quick and stable except for a few quirks with the camera, call-audio via headsets, and bluetooth audio.
The link to download is here:
http://get.cm/?device=jflteatt
*This version of CM 10.1 is already Loki'd
Have fun flashing, and if all else fails and you accidentally run into a scenario where you can't boot your phone, use this utility to restore the factory OS that comes with the phone.
http://forum.xda-developers.com/showthread.php?t=2261573
Click to expand...
Click to collapse
OK, thanks very much. So I was indeed on the right track. I'll try your ROM recommendation as well as the modified CWM recovery.
Related
Hi,
Long story short. I had TWRP 2.5.0.2 with my SGH-I377 (Galaxy S4 AT&T). I used it to flash this GE ROM by Maddog (http://forum.xda-developers.com/showthread.php?t=2340783)
After flashing, the ROM works just fine without issue. The Model Number in the about phone section however showed to be GT-I9505G, but I didn't mind too much since it works flawlessly in everyway. When I tried to update TWRP to 2.6.3.0, GooManager downloaded the wrong img due to this (it was my fault for not looking at the version before clicking yes). But now after reboot, i can't get into TWRP recovery anymore, it keeps saying "System software not authorized by ATT has been found on your phone". I was able to bypass by going to download mode and cancel to boot back into my old GE ROM. But now I can't seem to find away to get the correct TWRP version back on the phone.
I can download the correct img from this site, put it on my internal/ext SD, but I can't find a way to install it from within GooManager or from a File Manager.
http://techerrata.com/browse/twrp2/jflteatt
I need some assistance with instructions on how to install TWRP manually from an img file. Or from a tar file using ODIN if anyone has the link to necessary files and instructions on how to do it. At this point, it doesn't even have to be 2.6.3.0, I'll be just happy to get 2.5.2.0 back.
thinking21 said:
Hi,
Long story short. I had TWRP 2.5.0.2 with my SGH-I377 (Galaxy S4 AT&T). I used it to flash this GE ROM by Maddog (http://forum.xda-developers.com/showthread.php?t=2340783)
After flashing, the ROM works just fine without issue. The Model Number in the about phone section however showed to be GT-I9505G, but I didn't mind too much since it works flawlessly in everyway. When I tried to update TWRP to 2.6.3.0, GooManager downloaded the wrong img due to this (it was my fault for not looking at the version before clicking yes). But now after reboot, i can't get into TWRP recovery anymore, it keeps saying "System software not authorized by ATT has been found on your phone". I was able to bypass by going to download mode and cancel to boot back into my old GE ROM. But now I can't seem to find away to get the correct TWRP version back on the phone.
I can download the correct img from this site, put it on my internal/ext SD, but I can't find a way to install it from within GooManager or from a File Manager.
http://techerrata.com/browse/twrp2/jflteatt
I need some assistance with instructions on how to install TWRP manually from an img file. Or from a tar file using ODIN if anyone has the link to necessary files and instructions on how to do it. At this point, it doesn't even have to be 2.6.3.0, I'll be just happy to get 2.5.2.0 back.
Click to expand...
Click to collapse
You won't be able to install it with Goo Manager. Head over the the TWRP website and find your phone that way, and grab the flashing zip file and just flash it in recovery. I had the same issue a few weeks ago.
After some more digging, I was able to find a solution.
For anyone who runs into this problem...I was able to use Quick Flasher from this thread http://forum.xda-developers.com/showthread.php?t=1694617 , then choose the flash a new recovery using the correct TWRP img
Everything is good now, I am able to get into TWRP recovery 2.6.3.0
thinking21 said:
Hi,
Long story short. I had TWRP 2.5.0.2 with my SGH-I377 (Galaxy S4 AT&T). I used it to flash this GE ROM by Maddog (http://forum.xda-developers.com/showthread.php?t=2340783)
After flashing, the ROM works just fine without issue. The Model Number in the about phone section however showed to be GT-I9505G, but I didn't mind too much since it works flawlessly in everyway. When I tried to update TWRP to 2.6.3.0, GooManager downloaded the wrong img due to this (it was my fault for not looking at the version before clicking yes). But now after reboot, i can't get into TWRP recovery anymore, it keeps saying "System software not authorized by ATT has been found on your phone". I was able to bypass by going to download mode and cancel to boot back into my old GE ROM. But now I can't seem to find away to get the correct TWRP version back on the phone.
I can download the correct img from this site, put it on my internal/ext SD, but I can't find a way to install it from within GooManager or from a File Manager.
http://techerrata.com/browse/twrp2/jflteatt
I need some assistance with instructions on how to install TWRP manually from an img file. Or from a tar file using ODIN if anyone has the link to necessary files and instructions on how to do it. At this point, it doesn't even have to be 2.6.3.0, I'll be just happy to get 2.5.2.0 back.
Click to expand...
Click to collapse
You can get it right here
http://www.teamw.in/project/twrp2/182
That's straight from the horses mouth there. I didn't read much into it, but it looks like they have a odin flashable version. Also make sure that the newest version of TWRP doesn't conflict with the ROM your using. I have read quite a few where the latest version causes issues.
I've come most recently from a Galaxy S4 with a locked bootloader using safestrap, and before that from an S3 with an unlocked bootloader.
On the S3, with it's unlocked bootloader I flashed roms without really worrying that much about kernals or rom "bases"
When I used safestrap I understood it was really important that the rom I was flashing was based on the "base" I was locked into by virtue of the particular OTA I was on.
Now that I have my verizon G2 i've rooted the 12b ota with ioroot and i'm about to install a recovery using freegee, but before I go forward I'd like to understand a little bit more how careful do I have to be to find out what "base" the rom i'm about to flash was built on/for? can install a rom or restore a backup that is based on a different verizon ota then my own? I understand tha Loki is a "bypass" and not a bootloader unlock, but I'm not really sure what that means.
Please enlighten me.
Unlike an actual bootloader unlock, Loki is dependent upon the kernel.
When you boot the phone, the bootloader loads the kernel into the memory and then verifies it. In that order. If the signature verification is successful, the bootloader proceeds with the boot process. If it does not, the boot process is aborted and a security error is displayed.
The key to the Loki exploit is actually at the step where the kernel is loaded into the memory. The flaw in the bootloader is that it relies upon the boot image header to determine the location at which to load the kernel and the ramdisk in the memory. The signature verification occurs after this. The exploit works by using an address in the boot image header that actually overwrites the part of the bootloader in the memory that does the signature verification. Shellcode added by the user is loaded to where the ramdisk is expected to reside and patches up boot image header and loads the kernel and ramdisk into the memory at the correct location, and then returns a value that would indicate that signature verification was successful, and thus the bootloader proceeds with the boot process with the custom kernel.
All in all it's pretty simple, and quite brilliant.
If you are installing a custom ROM or kernel, all of boot images have this exploit written into them, otherwise they will not boot. As an end user, all you need to really worry about is things like checking integrity, as if you flash a damaged image it will not run the exploit as it is supposed to and fail to boot, you'll get a security error, and basically have no option other than to flash completely back to stock (or if you end up in fastboot, flash a good boot image and recovery that properly exploit the bootloader and can boot the ROM you have installed or recovery). It's not much different from an actual bootloader unlock to the user, as if you get a bad download and flash it you're going to have problems no matter what. Check your md5s always!
Perhaps worth noting is that this exploit has been patched in the official kit-kat releases. I do not know too much about the new bootloader, but I am told that it includes steps that verify it's own integrity so it will not boot if it is overwritten. Since the old bootloader won't boot official 4.4.2, there is currently no way to get both official 4.4.2 and a custom recovery.
Sent from my Nexus 7 using Tapatalk
Thanks
Thanks, but I'm still confused about the practical ramifications.
When I choose a rom to install does it need to specifically be built on the 12b ota? when I'm on a particular ota can I restore a backup that was had a different base? both of those things were things I couldn't do with safestrap, but I could on my bootloader-unlocked phones
Edited my first post with a little more info. Loki had to be updated for 12B. Most ROMs and kernels have been updated but some won't work. I would read the ROMs thread to make sure. I am on 12B currently and I have not run into any problems with it yet, but it never hurts to read the thread for the things you are flashing and seeing if others are having a problem. This is not like safestrap where you are limited to the stock kernel (or one specific kernel if you have kexec). Any kernel that is properly Loki'd will be bootable as long as you don't do something like try to boot an AOSP ROM on a stock kernel. There are a few incompatibilities between ROMs and kernels that arise from various ROMs moving away from AOSP but this has nothing to do with this specific exploit and would happen regardless of bootloader unlocking/hacking methods
Sent from my Nexus 7 using Tapatalk
Hello everyone,
I am posting today to bring up the subject of the SM-G360P variant of the Samsung Galaxy Core Prime.
I am having issues with getting TWRP custom recovery to work properly on my device. I am able to flash twrp-3.0.2-0-coreprimelte.img onto my device and it works except for 2 things that i have noticed that makes me very upset and i cant figure out what to do. When i enter recovery mode the back light does not function so i have to use a bright flashlight to see any of the options and the second problem is the GUI is upside down but the button mapping is in the proper place so i have to guess on where to tap on my screen. This makes it very frustrating to use especially when i want to wipe dalvik cache and the regular cache. I accidentally factory reset my device once by tapping the wrong spot. If anyone would be willing to help me out with my problem i am willing to be a guinea pig with anything you can try for the custom recovery to make the GUI reflect the proper button mapping and the back light to work. I can re-flash my device as many times as necessary to get a working custom recovery. I have included the recovery.fstab and the stock recovery along with the version of TWRP custom recovery i have been utilizing to an extent.
I am using the BST Australian variant of SM-G360P which can be rooted with Kingo Root and KingRoot. I used Kingo Root so i could use the SuperUser app rather than just using KingRoot. I have used CROM Service to unlock my bootloader. I have also tried to use CWM custom recovery on my device but it does not register the CWM custom recovery that is available for my device it just goes to a "fake" Odin mode screen. I would really love to get TWRP custom recovery working properly. I have tried to port both TWRP and CWM custom recoveries by using Android Image Kitchen but have not had any success at creating a recovery that works without the same issues i have with TWRP custom recovery. I am running 4.4.4 KitKat OS which is the latest update for SM-G360P and have full root permissions. If you need any other dump files or any other information i will gladly give it to you. I may need directions on how to do some things though.
I will be greatly appreciative if someone would have a look at what the problem may be with TWRP custom recovery and my Variant of SM-G360P. Please help. Thank you for your time and contribution.
Hello @sosthenisRR. I just got this device, the Boost Prevail LTE American version. I was wondering if you've made any headway finding a TWRP for it. I will be trying some things myself... Gotta have TWRP... And I wanted to let you know that if you root with kingroot, super-sume (free version) works to get you supersu.
Odin TWRP 2.8.7.0 for the SM-S820L...it works, i tried V3 as well with no favorable results.
https://forum.xda-developers.com/galaxy-core-prime/development/twrp-2-8-7-0-sm-g360p-t3462592
eeriikk said:
Odin TWRP 2.8.7.0 for the SM-S820L...it works, i tried V3 as well with no favorable results.
https://forum.xda-developers.com/galaxy-core-prime/development/twrp-2-8-7-0-sm-g360p-t3462592
Click to expand...
Click to collapse
If that doesn't work, install and run this apk, this is what finally allowed me to Odin TWRP to my G360P without errors. Now if only we could get a custom ROM for this variant...
Hi it is the first time I am flashing Android ROM. I have done some reading already. Before I start, I still have a few questions and also want to make sure I am doing it right.
I own the Galaxy S4 Verizon I545. It is running Samsung ROM Android 4.4.2, Baseband I545VRUFNC5. My goal is to flash a new ROM with recent Android versions, hopefully 7.1.1 (but I would settle with Marshmallow if that is more stable), it can be close to AOSP, I don't need ROMs with extra features.
In my understanding, the bootloader is locked, it will only load signed kernels and recovery. And then the kernel would load the system. In order to flash the system, it is best to flash the recovery first with TWRP. TWRP is modded with loki hack so it would load with the locked bootloader.
So here are my questions:
1. Does it matter which firmware/baseband I am currently on? For some phones (LG G2) I heard newer firmware fixed the loki hack. Should I update to the latest Samsung rom or leave it at NC5?
2. I don't see many ROM posted for the i545, which one is the most recent and reasonable stable? The Cyanogen website is down, should I try LineageOS?
3. I see different instructions for flashing TWRP. Can I flash it with just Odin? Some instruction mentioned rooting the phone first with KingRoot or other root, and then use dd. Does the phone have to be rooted? (I prefer not to if it is not necessary)
4. If after I flashed recovery, it fails to boot into TWRP, what can I do to restore everything to default?
5. The kernel will be untouched in the process right? I am only flashing recovery and system ROM, and the kernel will work fine with the new system ROM?
Here are the step and software I plan to use:
0. reset the phone to factory
1. use Odin to flash TWRP 2.8.7
2. download a ROM compatible with I545 and place it on the phone
3. flash the system using TWRP
Any feedback would be appreciated.
PS: Also I have a LG G2 D801. I would flash that phone instead if it is easier. I just want to get started and learn some things along the way.
https://forum.xda-developers.com/galaxy-s4-verizon
Oh Sorry. Didn't notice there is another forum. Should I repost there?
Yes.
1. Yes, it does matter. As you said, newer firmwares have fixed the exploits which make the phone harder to hack.
2. Any ROM should support your phone. They are generally unified.
3. In the name of anything holy, do not root with KingRoot. If you want to root, then the only way to go is CF-Auto-Root.
Rooting is sometimes necessary because recovery won't always install with Odin.
4. Flash stock ROM.
5. Kernels are specific to ROMs. So no, the kernel won't be untouched.
Hey guys, first of all sorry about my english, im french.
So my problem is: I tried rooting my Axon 7 A2017U many times, with different guides. I always end up with a softbricked phone, having to restore to stock using MiFlash.
My bootloader is unlocked, i have stock recovery and stock rom for now.
Whenever i flash TWRP, either the signed one (from @tenfar) or unsigned (and up to date) ones, i can't go past the menu saying something like "your phone cant be checked for corruption, please lock your phone [...]" it just freeze. i did read somewhere that i should flash chainfire's root or a special .zip that, i guess, disabled some check that could prevent booting a phone with unsigned stuff/edited system (after flashing TWRP, so it could boot) that didn't work out. i think i found that information in some LineageOS thread here on XDA.
My ultimate goal would be to get a rooted stock nougat 7.1.1, up to date TWRP recovery and to be able to switch to LineageOS to try it out soon.
For what it is worth, i rooted many phones over the years, so while i'm no expert, i should be able to follow most of the steps you give me.
Thanks alot!
What version of TWRP did you flash first?
I have the same root problem i can not install in twrp install in twrp ok but su application displays no root cause i have latest twrp
KwesiJnr said:
What version of TWRP did you flash first?
Click to expand...
Click to collapse
this
https://forum.xda-developers.com/axon-7/development/recovery-official-twrp-zte-axon-7-t3515715
And @tenfar's signed one
KwesiJnr said:
What version of TWRP did you flash first?
Click to expand...
Click to collapse
this
https://forum.xda-developers.com/axon-7/development/recovery-official-twrp-zte-axon-7-t3515715
And @tenfar's signed one
Okay. Download and flash this one alone via fastboot and see what happens. This is one the I personally use. It is required for any of the newer versions to work properly.
twrp-3.0.2-2-a2017u.img
You can choose to rename it to just recovery.img, then:
1. fastboot flash recovery recovery.img
or
2.
if you choose to work with the same filename:
fastboot flash recovery twrp-3.0.2-2-a2017u.img
Select reboot to recovery from the bootloader menu now and try again.
Either way, should work fine. I know you mentioned you knew the basics, but just want to be sure.
Also forgot to mention. If TWRP works but you still can't get your phone to boot, you need to follow this guide here
You can start from the part that says:
-----------------------------------------------------
UPDATING FROM B20_Boot / B20 / B27 / B29 / B15(N)
-----------------------------------------------------
Again, that's the ROM I personally use if I want to go back to stock, not the one from the ZTE site.
Gonna try it and give feedback. thanks for taking time to help!
edit: im downloading the rom from the link you shared.
like you said, i can get TWRP to boot but not the phone.
So if i use full stock from ZTE, it can't boot with modified recovery?
edit 2: i don't know what worked, i think it might be the bootstack. or the rom by DrakenFX. now i can boot to the rom with a TWRP recovery installed. It worked, but i soft bricked again trying to flash SuperSU. So now i'm retrying with an updated TWRP.
I haven't tried that yet, but I really suspect that's the reason you're having problems. I rarely use pure stock ROMs. Like you, I'm not an expert in Android Development so I can't tell you why. Just been a flashaholic for years so made a few observations.
Which supersu are you installing? If you're swiping to the right in twrp, you need to install the dm-verity zip or supersu 2.79. There's some issues with newer builds.
Everything is working like a charm! Now im going to finally give lineageOS a try
I used Chainfire's SuperSU 2.79 stable.
Edit : Everything is working flawlessly! I'm running the lastest LineageOS nightly with root (Chainfire's 2.79). Followed their instruction and installation was smooth as butter. I should also point out i flashed the lastest official TWRP which seems more stable than the one @KwesiJnr suggested. The one he suggested was giving me some "can't read X partition" in red text everywhere in the log section, which the official one doesn't do. It was doing his job properly anyway though.
I can't thank @KwesiJnr enough, it helped me find the single mistake i was making.
lololo2 said:
Everything is working like a charm! Now im going to finally give lineageOS a try
I used Chainfire's SuperSU 2.79 stable
Click to expand...
Click to collapse
Glad you're up and running root. :good:
lololo2 said:
Everything is working like a charm! Now im going to finally give lineageOS a try
I used Chainfire's SuperSU 2.79 stable.
Edit : Everything is working flawlessly! I'm running the lastest LineageOS nightly with root (Chainfire's 2.79). Followed their instruction and installation was smooth as butter. I should also point out i flashed the lastest official TWRP which seems more stable than the one @KwesiJnr suggested. The one he suggested was giving me some "can't read X partition" in red text everywhere in the log section, which the official one doesn't do. It was doing his job properly anyway though.
I can't thank @KwesiJnr enough, it helped me find the single mistake i was making.
Click to expand...
Click to collapse
Yeah, like I mentioned before that was the base TWRP you needed to flash first, before any of the newer ones. You weren't intended to use it indefinitely.
There's a lot of Dev love for our device now and support is growing ... exciting new ROMs cropping up. Don't hesitate to try them out.