I have a US996 that is rooted. I had to disable encryption as part of the rooting process. Is there anyway to reenable it? I have been reading up on this, and I see that Android 7 uses file based encryption. Is there anyway to activate this, after having formatted the data partition during the root process? I am okay with not being able to use TWRP to do backups, as I use titanium. I would just really like to know that my data is encrypted.
It has been asked many times. It's either or. You chose root.
Related
Hi
I recently got a Nexus 4 after always having had iPhone, so I am quite new to this. =)
Is it possible to root a Nexus 4 without losing the data folder? Either by simply never deleting it or is there any way to get a backup of everything in the data folder(including hidden files and everything in /data/app, etc.) to my computer(windows or mac), when it isin't rooted?
All the rooting guides I have looked at until now says that they will wipe the phone, but I also read a discussion that said it were possible to gain complete access to the data folder by either manually rooting the phone or by not unlocking the bootloader? I posted somewhere else and someone there said that what I want is SU in the OS, but I am not sure about that, since I haven't heard more.
Thank you =)
You can root without wiping data. The trick is to not boot into Android after unlocking bootloader. You do things like this:
1. Setup your pc ( drivers, fastboot )
2. Unlock your bootloader
From now on, you must not boot normally, or else your phone will be wiped.
3. Flash a custom recovery.
4. Enter recovery
5. Wipe cache
6. Flash the SuperSu zip to root.
7. Reboot.
Now you should be rooted, and your data should not be wiped. But I'd make a backup is I were you.
Being a new user, try reading this:
http://forum.xda-developers.com/showthread.php?t=2367406
Many corporate IT security policies including mine at work are requiring that all devices used for work, i.e. BYOD, must be encrypted. I prefer my device to be rooted…and control my device to my liking. There’s a problem though… it’s not easy encrypting with root present. I set out on a mission to get it working.
There is very little information about encrypting Galaxy S6 devices (or any Galaxy for that matter) with root. I've tried numerous methods around the web and here on XDA but none worked with any of the current ROMs. I spent several days researching, investigating, and testing various methods before finding a solution that works.
Although not required, I started a fresh start—flashed the official Marshmallow stock ROM for my device (SM-G920i) and in the process wipe my device completely, including formatting the data partition and wiping the internal SD.
I previously had Lollipop installed with custom ROM. A nandroid was performed, ran TiBu then copied all the contents of the internal memory on my laptop prior to going to official stock. Can never be too careful.
The steps outlined below was tested on both ALEXIS ROM 5.0 and XtreStoLite 3.3.1 ROMs using the G920i unlocked variant. It may work on other international variants.
Flash stock Marshmallow ROM through Odin in ‘AP’ with AutoReboot and NAND Erase checked (from Odin v3.11.1 options)
Flash CF-AutoRoot via ODIN [let it auto-reboot when complete]
Flash TWRP 3.0.2-1 via ODIN [disable auto-reboot in ODIN options]
Reboot into TWRP recovery
Perform factory reset then format Data partition
Reboot TWRP recovery so that the Data partition is refreshed
Copy custom ROM and other flash files you’ll be using to /sdcard/ using ADB Push command. For example o adb push Rom.zip /sdcard/tools.
Flash custom ROM then reboot
Be patient—reboot will take about 5 minutes
Power off then boot into TWRP again to perform a factory reset and wipe Delvic cache
Reboot - wait patiently as boot will take several minutes
When the system finally boots up go through the first start wizard then go into setting to set up pin and fingerprints you wish to use
Encrypt phone -- this will take a while before it's complete. Be patient; the device will reboot several times, ask for password at boot-up then boot into the finally into the system.
The phone is now encrypted. Because we performed a factory reset, root and TWRP recovery were removed. We now have to flash CF-autoroot and TWRP recovery via Odin. Again, patience is required--it'll take about 5-10 minutes for the boot to complete.
Note that TWRP does not know how to decrypt Samsung encryption and therefore it can't read the /data/ partition. That partition will either have to be formatted before flashing a new ROM or removing encryption. Now I did not test removing the encryption, but I’d suggest that you have current backups of your device prior to performing that task.
I hope this helps anyone experiencing this issue.
Seems to me, that if they want the device encrypted, they would also prohibit root, it is a security risk.
So is there any chance to update an encrypted Rom via TWRP?
Good walkthrough.
I did also some research and i found on some other forums the opinion, that a full-disk-encryption on a rooted phone make not much sense,
where you can replace/install the custom recovery and decrpt the data with some adb commands? Is that true?
Confusing.
tefole said:
Good walkthrough.
I did also some research and i found on some other forums the opinion, that a full-disk-encryption on a rooted phone make not much sense,
where you can replace/install the custom recovery and decrpt the data with some adb commands? Is that true?
Confusing.
Click to expand...
Click to collapse
twrp do don't support samsung decryption, so encrypted data can be only deleted. but, if you enable reactivation lock, then, you can't flash in recovery, so stolen phone is like brick
BUT with custom rom (TyrannusRom and note 7 port) encrypted phone do not boot (boot loop), so there I finished my work with encryption
paulyz said:
twrp do don't support samsung decryption, so encrypted data can be only deleted. but, if you enable reactivation lock, then, you can't flash in recovery, so stolen phone is like brick
Click to expand...
Click to collapse
I see.
I believe, that i can live without the ability that TWRP doenst decrypt the /data and the /sdcard partition,
if I can run with a CFW, and if the phone is rooted and encrypted.
After i put the CFW on the phone, even I need TWRP anymore. Usually i try to dont change the CFW so frequently.
With reactivation look you mention the "OEM unlock" in the Android\developer settings I guess?
Is the flashing really locked, like brick, really? If you can't flash in recovery, but how to restore a stock firmware with odin? Isnt it the same?
I didnt get that
tefole said:
I see.
I believe, that i can live without the ability that TWRP doenst decrypt the /data and the /sdcard partition,
if I can run with a CFW, and if the phone is rooted and encrypted.
After i put the CFW on the phone, even I need TWRP anymore. Usually i try to dont change the CFW so frequently.
With reactivation look you mention the "OEM unlock" in the Android\developer settings I guess?
Is the flashing really locked, like brick, really? If you can't flash in recovery, but how to restore a stock firmware with odin? Isnt it the same?
I didnt get that
Click to expand...
Click to collapse
"Reactivation lock lets you use your Samsung account to prevent others from activating your device if it's ever lost or stolen. With Reactivation lock turned on, you will be required to enter your Samsung account credentials prior to performing a factory reset on the device. Your Samsung account login should be something you can easily remember."
when RL activated, you can't flash, you always get error.
One big problem, what after encryption you can't update ROM, change or update kernel and etc.
I see., thx for the infos.
I did some research as well. With activated RL you can go only in download mode and install stock with Odin.
But the phone is going to ask you for your samsung account credentials - anyway.
tefole said:
I see., thx for the infos.
I did some research as well. With activated RL you can go only in download mode and install stock with Odin.
But the phone is going to ask you for your samsung account credentials - anyway.
Click to expand...
Click to collapse
if you will find useful information, post, because, I very interested too, just do not have a lot time to play with this.
Hi
I am unable to understand the concept of Decryption. I have been rooting my phone since the time of Samsung S3. I currently own a 64gb Nexus 6p with build number N4F26T. I use the sticky guide given here to root my phone and install custom recovery.
Now I want to apply pixel mods, but they demand verity check disabled. When I go in the security of my phone, it says Phone Encrypted in Encryption. I have checked all of the threads and forums regarding this but there is no clear guideline.
Do I have to decrypt my data? If yes, how will I be going on with this process? I see the format user data command but I am on Nougat 7.1.1 so I think this is not applicable to me. But no where has it been mentioned that I have to decrypt any other way.
Any help would be appreciated as I have always received from this community. How will I go on about the decryption? Please help soon as I currently have no data in it so its easier to format it.
You do not have to decrypt your data to use those MOD's. To disable variety check all you need to do is install a custom kernel or rom that does this by default. You will not lose any data by doing this. If you wanted to decrypt your data then you would have to format the data partition on your phone. This would obviously wipe your data so you would need to make a backup first on your PC. Some people think that decrypting your data will give you a slight speed bump but I've tried both ways and haven't noticed any real difference. So far I haven't run into any reason that the data partition would need to be decrypted to install anything.
This is a Question, so you are supposed to post in the Q/A section, not General.
First, you can't just decrypt the existing data on the phone, you'll have to wipe the device first and then NOT allow the encryption to happen on your fresh install. Make sure you already have USB debugging enabled. You need to perform a factory reset to wipe the phone. Then transfer from your PC either SuperSU (zipfile) or a no force-encrypt custom kernel such as EX Kernel or Franco (zipfile) to the root of the phone (or both). You can do this with TWRP's file manager. Before booting for the first time use TWRP's "Install" to flash either SU or your kernel. Now you can boot to system and your device will not be encrypted by default. Going forward with any updates that include flashing a new boot.img you need to reflash SU or the kernel (before booting) to avoid encryption.
First of all apologies about posting in the wrong section. Secondly, I have already rooted with Supersu. So now all I need to do is format the user data and I will have decrypted data right? It won't again get encrypted, right?
Secondly, thanks alot for such prompt responses. I am unable to find the thanks button that used to be there.
I'm trying to use the TWRP backup on one device - restore on the other to transfer my rig over. Only, I've read that TWRP trigger's dm-verity. I have tried it once, but I couldn't select the system or data partitions and it still triggered dm-verity. Luckily I got out of it, because the system overwrote TWRP, but yeah.
My question is, did I just miss a step, or will I not be able to use this method to transfer my rig over? Also, if it isn't possible, is there a method I can use?
I'm sorry if this is posted again but I can't find anything about my problem.
My Mi A1 in unrooted.
I had installed gcam without rooting it to continue receiving OTA, after the latest update I wanted to disable gcam. During the process the application unlocked the bootloader but didnt lock it again.
When I disabled it after the reboot my phone did a factory reset and enrypted itself. I want to decrypt my phone so I used some ways I found on the internet like:
Simple factory reset.
Locked bootloader.
Factory reset again, even though after the lock it did it itself.
Flashed fastboot stock rom.
Flashed twrp read only, wiped system and flashed fastoboot stock rom again!
Still the phone forced encrypt itself after every way I tried:
For gcam I used this way: https://forum.xda-developers.com/mi-a1/how-to/tool-google-camera-root-magisk-enable-t3747585
I didn't check the thread because I already had the app to do the installation.
For fastboot installation I used this: https://forum.xda-developers.com/mi-a1/how-to/ota-official-fastboot-image-n2g47h-7-12-t3728929
EDIT: What if I unlock the bootloader with MiUnlock and relock it via fastboot?
Phone is encrypted by default. Why would you want to have it decrypted? But if you insist.. you have to install magisk, disable forced encryption and reformat data partition in TWRP.
Locking or unlocking the bootloader after May update wipes your data, this is normal for Android and now our phones.
Encryption is default, it would have been encrypted before the wipe as it is now after the wipe, why do you want it unencrypted?
kudos1uk said:
Locking or unlocking the bootloader after May update wipes your data, this is normal for Android and now our phones.
Encryption is default, it would have been encrypted before the wipe as it is now after the wipe, why do you want it unencrypted?
Click to expand...
Click to collapse
Thank you very much, I never experienced this again after unlocking so I thought it was because of the encrypt, I hadn't checked if it was encrypted before the wipe and I assumed it wasn't.
_mysiak_ said:
Phone is encrypted by default. Why would you want to have it decrypted? But if you insist.. you have to install magisk, disable forced encryption and reformat data partition in TWRP.
Click to expand...
Click to collapse
I didn't know the phone was encrypted by default.
Thank you for the possible way though.
Yeah, it is encrypted by default and hw encryption is used. So don't think that it can affect your performance in any way.
_mysiak_ said:
Phone is encrypted by default. Why would you want to have it decrypted? But if you insist.. you have to install magisk, disable forced encryption and reformat data partition in TWRP.
Click to expand...
Click to collapse
After reformatting data partition, do I need to do anything else?
ubmit said:
After reformatting data partition, do I need to do anything else?
Click to expand...
Click to collapse
Keep Magisk installed, otherwise it will probably get encrypted again by stock boot image. Not sure, I didn't try it.. I want my data secure.