I have an S8, currently running U2BQK5, rooted via SamFAIL. Knox is not tripped (0x0).
I would like to be able to use Knox Containers (or even license the phone with my own ELM and KLM keys). I have seen evidence of someone achieving this on an S7, here: https://www.reddit.com/r/GalaxyS7/comments/5rtcv1/all_knox_apps_working_on_rooted_phone_with/
I have some ideas, but I am unsure if they will trip knox:
* modify stock U2BQK5 system.img to contain su binary, but remove nothing else (leave knox) and flash it
* use flashfire to flash a stock U2BQK5, and allow it to everroot (does this modfiy system.img or boot.img? I need to keep boot.img stock or else knox flag will trip, AFAIK)
* use Xposed to hook Knox root detection and make it think I am not rooted (example: http://repo.xposed.info/module/akhil.knoxrootbypass)
Any thoughts or general guidance would be greatly appreciated.
Bump.
Related
Hello,
I'm using a SGS4 rooted since more than one year and a half (odin, flash a small root bin file if I remember well, flash counter set to 1, no custom recovery and no nandroid backup)
Since I want to implement NFC card emulation now avaliable in android 4.4 in one of my apps, I'd like to update.
I've seen few threads on the subject, and most of them date from a long time (am I late ? ). I'd like to know how I could update normally my actual rom (provided by Orange, precisely I9505XXUAME2), or move to another slightly modified rom like the base rom provided by samsung without all these apps that you can only remove with root.
I don't want to have any data issue I've read about, I don't want to lose my actual apps and their data. (Nandroid backup then restoring apps and their data through nandroid manager?)
Also, if possible i'd like to update without losing my start screen, my parameters, etc... (in the worst case I'd re-set them manually). And finally of course I want to have it rooted at the end of the process.
In fact I want it to be just like if I had done an OTA update, then rooted it.
Also, How to update without setting the Knox counter to 1 ? (My flash counter is set to 1, should I use Triangle Away?)
Is there any simpler way than flashing the new firmware and then importing everything from my old data to the new and reinstalling the changes I made to the system (like avast & such) ?
Also, maybe there exists newest versions of the firmware, but without the new bootloader that has the knox counter ?
Thanks in advance!
tboss1995 said:
Thanks in advance!
Click to expand...
Click to collapse
1. You can't receive OTA updates if you have rooted your device. You have to flash the firmwares via ODIN.
2. You don't need wipe nothing if you flash new stock firmware. Instructions: Flash new firmware (if you don't have wifi flash it one time more), root it again then and you're done. Your data don't have to be affected (maybe you only have to reinstall some app if the data/cache was moved to the SDCARD).
3. Flashing one new stock firmware don't modify KNOX. You actived KNOX rooting your device or flashing one custom recovery. Knox: 0x1 can't be reset. Triangle away only reset the flash counter.
Thanks for your fast answer !
So, flashing a firmware doesn't impact the data.
Updating via Kies sets the Knox counter. Updating via odin doesn't ? Don't I have to do any sort of un-root before updating ?
Is there anything specific I should know about root ? Because I don't want to flash a firmware that I won't be able to root without setting the knox counter.
Also I think that since we can't revert the bootloader update, maybe i'd better not update that bootloader so that I can update future versions and root them without setting knox counter, by installing a knox-free rom even before a knox-free root is released...
Where can I find these roms?
tboss1995 said:
Thanks for your fast answer !
So, flashing a firmware doesn't impact the data.
Updating via Kies sets the Knox counter. Updating via odin doesn't ? Don't I have to do any sort of un-root before updating ?
Is there anything specific I should know about root ? Because I don't want to flash a firmware that I won't be able to root without setting the knox counter.
Also I think that since we can't revert the bootloader update, maybe i'd better not update that bootloader so that I can update future versions and root them without setting knox counter, by installing a knox-free rom even before a knox-free root is released...
Where can I find these roms?
Click to expand...
Click to collapse
1. Updating via ODIN or Kies don't set the KNOX counter. Downgrading YES.
2. Root dissapear if you flash new update via ODIN.
3. You can flash latest firmware and root them without KNOX. Take a look for the method: HERE.
Thanks for the answer again!
Howerver I still have 3 questions because I like to understand what I'm doing :
1. I understand the two terms ROM (OS of the phone) and bootloader (after a certain update, it adds the knox counter, and you can't downgrade it, and it also prevents towelroot from working). What is the called "kernel" ?
2. Up to exactly what version of the bootloader/rom does towelroot work ?
3. What is the difference between "knox-free" and "knox counter 0"? At the end of the method, will I have the new bootloader with a knox counter set to 0, or the old bootloader ?
tboss1995 said:
Thanks for the answer again!
Howerver I still have 3 questions because I like to understand what I'm doing :
1. I understand the two terms ROM (OS of the phone) and bootloader (after a certain update, it adds the knox counter, and you can't downgrade it, and it also prevents towelroot from working). What is the called "kernel" ?
2. Up to exactly what version of the bootloader/rom does towelroot work ?
3. What is the difference between "knox-free" and "knox counter 0"? At the end of the method, will I have the new bootloader with a knox counter set to 0, or the old bootloader ?
Click to expand...
Click to collapse
1. Take a look: HERE.
2. Nobody know it.
3. - KNOX free: This therm is used for the custom ROMS normally. This mean that flashing this ROM dont touch the KNOX counter.
- KNOX counter: You still having your device in warranty if you have KNOX:0x0. You void your warranty if you have KNOX:0x1 in DOWNLOAD MODE.
So it means I'll still have the new bootloader ?
For those who may come to read this article and don't want to watch a video, I've found an article explaining what kernels are. http://m.androidcentral.com/android-z-what-kernel
Deleted
user2k10 said:
Hello, I have a Samsung Galaxy S4 GT-I9505 KOT49H I9505XXUGNK4 running Android 4.4.2
Currently Knox status is 0x0
I have read many threads here on XDA but have not found the answer I'm looking for.
Is it possible to install a custom recovery such as PhilZ recovery and keep Knox at 0x0?
I have read that using chainfires auto-root package will trip knox, so is the only way to root is using TowelRoot?
Is TowelRoot still valid for this version of the firmware KOT49H I9505XXUGNK4?
If TowelRoot works on this firmware, is it correct that I should then remove all knox apps and then install SuperSu from the playstore?
Thanks!
Click to expand...
Click to collapse
1. No. Custom Recovery will void automatically your warranty: KNOX 0x1.
2. Towelroot don't works with all firmwares. But you can try this other method for root your device without void your warranty: HERE..
3. No. I think only till GNF1.
4. You can remove the bloatware and KNOX app being rooted: HERE. Your device don't gonna be rooted only downloading SuperSU of the playstore. Follow the step 2.
Deleted
user2k10 said:
So if any custom recovery will automatically void my warranty (trip knox) how do I do a full backup (nandroid backup) that I can restore later?
I know I could install the online nandroid backup app but I if my phone boot loops, I would not be able to install it.
What do other people do, is everybody not concerned about the knox flag?
Click to expand...
Click to collapse
1. One way to backup your things without trip knox is:
- Copy all your internal data on your pc (photos, music, videos, important data). Make this one time for month. You can copy every folder for be sure to your pc too ( I do this).
- Make a backup of your EFS/IMEI (very important) keeping it on your pc or External SDCard: HERE. EFS/IMEI is the identification code of your device. You can lose it sometimes only flashing via ODIN a NEW UPDATE.
2. KNOX isn't important in some countries coz maybe you get your device to one service center and they fix your phone anyway. Depend where you live: you will be out of warranty or no, simply. The people that want "play" (apply mods, flash custom roms, custom recoveries) with their devices don't care about KNOX anymore.
user2k10 said:
So if any custom recovery will automatically void my warranty (trip knox) how do I do a full backup (nandroid backup) that I can restore later?
I know I could install the online nandroid backup app but I if my phone boot loops, I would not be able to install it.
What do other people do, is everybody not concerned about the knox flag?
Click to expand...
Click to collapse
I tripped knox 3 months after I bought my device brand new. And many other people have done so.
Somebody said that if you live in the EU and trip knox, this will not void any of your consumer rights.
He also said that: Samsung stated that if you live in the Netherlands, tripping knox will never void your warranty.
how to root G900F 6.0.1 without tripping KNOX & flash counter + receiving OTA update?
Is it even possible, please?
marrrek said:
Is it even possible, please?
Click to expand...
Click to collapse
No because to gain access as root on 5.1+ firmware you must patch the sepolicy in the ramdisk of the boot.img that's one of the purpose of the system-less root...AFAIK if you modify boot.img the TIMA Measurement will fail because it detect the mismatch of the signature = knox tripped (0x1).
Edit: TIMA= TrustZone-based Integrity Measurement Architecture, you can find more info here https://www.samsungknox.com/en/products/knox-workspace/technical
Hi to everyone, I have a galaxy A5(2016) A510F and I want to root it but this will trip knox so I want to ask if we root a stock rom and flash it via odin does this detect root and trip knox ? (we will modify the system.img that we find in.tar file)
It probably won't trigger KNOX, but root access would be unstable, at best. Try using KingRoot instead - if it works on your device, it will root it and keep the KNOX counter the same, and if it doesn't, it'll just tell you that it can't root your phone.
I don't want try it because my phone it's new so can someone try it and post the result ? Maybe someone that have already trigger knox, this don't want to be a problem for him/her
EDIT: I think Kingroot don't work http://forum.xda-developers.com/sam...ment/galaxy-a5-2016-success-kingroot-t3400564
Up
I tried king root, but after reebooting my phone was unrooted. I suggest you to flash cf autoroot because, yes, it trips knox counter, but If u soft-brick your device in any way, you can always solve it using odin and flashing stock firmware/PIT...
They are two different things, maybe you are confused because it doesn't mean that if you flash cf autoroot and soft-brick your devices you can unbrick it just flashing stock rom, yes this is true but you can unbrick you phone in anytime without having cf autoroot!
I didn't mean that, i know odin doesn't request root permission, I said that if he flashes cf autoroot and he soft-bricks his device ( I know it's almost impossible ) he will resolve the problem by flashing stock formware (or a custom ROM after wiped cache, dalvik, data and system)
Unfortunately not possible to pre-root a stock Samsung 5.1.1 or 6.0 rom and preserve knox. It will boot loop your device. Selinux will block root and prevent the device from booting unless the boot.img is patched to remove the selinux root restriction.
However patching the boot.img trips knox, catch 22 situation.
Keep hoping for kingroot or Kingoroot if you want to preserve the knox counter.
Thanks for the reply
Can anyone try this http://www.samsungsfour.com/tutorials/how-to-root-all-samsung-galaxy-smartphones-without-pc.html ? I don't want to trip my knox!
If it works it wont trip knox as it doesn't touch the binaries.
Unfortunatelly, I can't try because i've already tripped the knox
Just as title says, I have difficulty finding the KNOX container / partition.
I've installed a Custom ROM and I wonder if there were any leftovers from KNOX.
EDIT: Found it
/data/.container_1
/storage/container/.sdcontainer_1
/data/system/edk_p_container_1 (EDK Payload)
That Knox container is just an app on TouchWiz ROMs. Custom ROMs don't have Knox apps.
The actual Knox (the heart so to speak) and its functionality are within the bootloader of the device and cannot be removed, unless you somehow manage to downgrade to a pre-Knox bootloader, but that is more trouble than it's worth.