Hello all. I downgraded to MM and backed up drm key before unlocking bootloader. I restore DK.ftf with flashtool 0.9.22.3 successfully.. Can i restore drm key in nougat after unlocking bootloader ??
Flashing DK.ftf restores the DRM key into secondary location, so kernels that support this method of DRM-workaround can access and use it.
Restoring the whole dirtycow generated TA image will re-lock your bootloader.
Now that you know the above then; yes you can.
But if you flashed dk.ftf once it will stay resistant between updates with flashtool, there should be no need to flash it again.
Related
:silly: (I had a TA backup of 5.0.2 stock rom before proceeding, and supersu 2.49 beta.zip).
followed steps like:
1. I updated My Z3 to 5.1.1
2. then unlocked my bootloader
3. flashed cm12.1 boot.img
4. booted into cwm recovery using cm12.1 boot.img
5. flashed supersu 2.49 beta.zip
6. reflashed the 5.1.1 kernel back using stock 5.1.1 ftf and flashtool ( only kernel dont reflash system!!!!!!!!! )
7. successfully booted into rooted stock rom.
FROM HERE BOOTLOADER LOCK WITH TA PARTITION BEGINS
8. run backup TA and restore previous TA Backup of 5.0.2 and reboot the phone( usb debugging must be enabled).
9. Now the phone is a locked bootloader with TA installed of 5.0.2 (partially compatible kernel but locked bootloader with TA and DRM keys)
10. reflash the 5.1.1 kernel back using stock 5.1.1 ftf and flashtool. ( only kernel dont reflash system!!!!!!!!! )
11. yipee.. you got a rooted 5.1.1 stock rom with locked bootloader.
You then can install XZ Dual recovery and can reflash supersu beta 2.49.zip if you face problem in mounting system R/w.
Finally Done. :laugh::laugh:
If you didnt had TA backup and are on locked bootloader then you can revert back to 5.0.2 , root it using kingroot, backup TA and then follow steps from post.
https://drive.google.com/file/d/0B58yPhN4YGyiZkw4U09LaXducDg/view download stock ftf
http://forum.xda-developers.com/apps/supersu/2014-09-02-supersu-v2-05-t2868133 supersu 2.49 beta
https://github.com/DevShaft/Backup-TA/releases backup TA
https://drive.google.com/file/d/0B3-13Z8Bw0WeczM1Y0Fpcm5XaHM/view?usp=sharing cm12.1 boot.img
please could you tell in detail
TechnoFreak750 said:
:silly: (I had a TA backup of 5.0.2 stock rom before proceeding, and supersu 2.49 beta.zip).
followed steps like:
1. I updated My Z3 to 5.1.1
2. then unlocked my bootloader
3. flashed cm12.1 boot.img
4. booted into cwm recovery using cm12.1 boot.img
5. flashed supersu 2.49 beta.zip
6. reflashed the 5.1.1 kernel back using stock 5.1.1 ftf and flashtool ( only kernel dont reflash system!!!!!!!!! )
7. successfully booted into rooted stock rom.
FROM HERE BOOTLOADER LOCK WITH TA PARTITION BEGINS
8. run backup TA and restore previous TA Backup of 5.0.2 and reboot the phone( usb debugging must be enabled).
9. Now the phone is a locked bootloader with TA installed of 5.0.2 (partially compatible kernel but locked bootloader with TA and DRM keys)
10. reflash the 5.1.1 kernel back using stock 5.1.1 ftf and flashtool. ( only kernel dont reflash system!!!!!!!!! )
11. yipee.. you got a rooted 5.1.1 stock rom with locked bootloader.
You then can install XZ Dual recovery and can reflash supersu beta 2.49.zip if you face problem in mounting system R/w.
Finally Done. :laugh::laugh:
If you didnt had TA backup and are on locked bootloader then you can revert back to 5.0.2 , root it using kingroot, backup TA and then follow steps from post.
Click to expand...
Click to collapse
TechnoFreak750 said:
https://drive.google.com/file/d/0B58yPhN4YGyiZkw4U09LaXducDg/view download stock ftf
http://forum.xda-developers.com/apps/supersu/2014-09-02-supersu-v2-05-t2868133 supersu 2.49 beta
https://github.com/DevShaft/Backup-TA/releases backup TA
https://drive.google.com/file/d/0B3-13Z8Bw0WeczM1Y0Fpcm5XaHM/view?usp=sharing cm12.1 boot.img
Click to expand...
Click to collapse
hello friend
can you tell me more detail how you have root your z3 caause i am a new user and i dont really get how you do nummer 3 flash cm12.1 boot img and how to boot to CWM. My phone is unlockbootloader
thank you very much
mangyi said:
hello friend
can you tell me more detail how you have root your z3 caause i am a new user and i dont really get how you do nummer 3 flash cm12.1 boot img and how to boot to CWM. My phone is unlockbootloader
thank you very much
Click to expand...
Click to collapse
Brother it is critical method for advanced users. you should wait till exploits arrives for the device. or else you can go for pre rooted firmwares.
I installed twrp and SU. Really the only reason I did it is because I use titanium backup to back up and restore apps and such. Otherwise I really don't need root.
I have two questions.
First Question: Can I re-lock the boot loader if I have TWRP and SuperSU installed? If not how can I use Android pay? Is there a work around? It's not allowing me to because it can't verify
Second Question: The OTA 6.0.1 won't stick. I'm pretty sure I've done one other over the air update (at least I thought I did, I may be remembering incorrectly) and it worked just fine. But for some reason 6.0.1 isn't taking. Any ideas?
If you don't need root what you can do is download the 6.0.1 imag direclty from google, put it in your adb/fastboo folder and use the flash-all command and it will erase root, twrp and it will be like you just got it from the factory. The only thing that would be still there is the unlocked bootloader. Once you've performed the flash-all command, you can simple lock the bootloader again. That's if you want to get rid of Root and Twrp.. If not, you can try a Rom like Chroma that has android pay working on it.. Here's the instructions. Hope this helps: http://forum.xda-developers.com/showpost.php?p=64269166&postcount=2338
Edit: Make sure you follow the systemless root instructions from that link to get android pay to work...
So I cannot lock the boot loader if I have root and twrp installed?
I really don't want to use a Rom. I'm happy with stock, just want to be able to use titanium backup.
And are ota updates not working if you have twrp installed?
OTA updates won't flash properly if you have TWRP installed, though I heard there is a way to extract the components of the update you want to apply so you can preserve root and custom recoveries while still updating. Sorry I don't know where the instructions are though.
No you can't lock the bootloader with TWRP installed, it can result in a brick.
I would not lock the bootloader unless you are 100% stock. You open yourself up to unrecoverable bricks. As for the update if you download the image from google you can just flash the individual partitions in fastboot. This way you can preserve your data. Heisenburg has a great guide here: http://forum.xda-developers.com/nexus-6p/general/guides-how-to-guides-beginners-t3206928 You will loose root but getting it back just involves reflashing the SuperSU-v2.62-3-20151211162651.zip from this thread http://forum.xda-developers.com/apps/supersu/wip-android-6-0-marshmellow-t3219344/post64161125#post64161125
I know iovyroot for the Z5C allowed this backup but with the recent COW (Copy on Write CVE-2016-5195) vulnerability has anyone been able to develop a way to backup/restore TA partition?
Question: Has anyone developed a tool to backup and restore TA partition for the X Compact yet?
Answer: Yes, by rayman. This method requires firmware 34.1.A.1.198.
http://forum.xda-developers.com/crossdevice-dev/sony/universal-dirtycow-based-ta-backup-t3514236
*Edit: Figured I would update this post since a TA backup was found.
If I understand correctly the only way to backup TA on the z5 is to downgrade to lollipop first. As the XC shipped with 6.0 and there is no way to downgrade and get full root access without unlocking the bootloader, without full root no way to access the TA partition. I don't believe any sony device shipped with marshmallow can be rooted without destroying the TA partition at this time.
The dirty cow exploit is basically a proof of concept at this point, you can get a root shell but thats about it. Hopefully someone will soon find a way to use it to get full root access.
Yes people were capable of backing up TA because of a root exploit on the Z5C lollipop rom. I'm not entirely convinced we need full root with permissive sepolicy.
Could any dev's tell me if a recompile of the toolkit binary with root user hardcoded (setresuid, setresgid) could allow the use of the dd command for TA backup or would there still be SELinux issues with the recompiled toolkit binary?
Hello
I tried to find the answer, but I wanted to be 100% sure.
My phone is on April 8.0 and my bootloader is already unlocked.
I wanted to know, if I update via OTA directly to July (1152mb), will it erase user data ? And/or relock bootloader ?
Thanks in advance !
Nope, just unroot and disable tweaks before the ota. After that you can just reinstall magisk via fastboot.
Not if you follow the magisk guide to OTA and reroot.
https://github.com/topjohnwu/Magisk/blob/master/docs/tips.md#ota-installation-tips
https://forum.xda-developers.com/mi-a1/how-to/root-mi-a1-oreo-8-0-disabling-ota-magisk-t3728654
Note the warning about not modifying the system partition, even remounting it as rw.
I've been out of the game for a while, so I need a reminder. I'm still on (full) stock Nougat; say I unlock my bootloader, and backup everything through TWRP. If I flash Oreo (without touching the b.l., like this) and then restore the backup, I should still be able to apply the OTA to Oreo, right?
Also, once I apply the OTA, will my backup still work? Meaning, does Nougat work on Oreo's bootloader?
Thanks.