Hi Everyone,
First of all, I’m not a mobile developer, I’m a web developer. So don’t ask complex things.
I’m successful root latest nougat firmware on F3116 with DRM working and want share my work!
Before you start please read this post http://forum.xda-developers.com/crossdevice-dev/sony/universal-dirtycow-based-ta-backup-t3514236 to backup DRM keys (TA backup).
Requirements
You have to unlock bootloader. Search on forum to know how to do it.
Guides/Instructions
Download files and place in ADB, Fastboot folder.
Recovery file: https://mega.nz/#!0DxmGbqK!PQfxR0XsRIeUiHjx9VtUFB1C8aMS84gMWN956SMeAmU
Boot file:
For peoples have TA backup file
https://mega.nz/#!wC5AVBrb!X8kxgMc90b8dEXNdx6Yp1UAeHram7ZRZlf4avA6Ggdg
For peoples don’t have TA backup file:
https://mega.nz/#!xWQRWKaZ!j7Bo7epqZRLN-QXchZv9KtJ6YAcSJEmW2m3HEtaP7DA
1. Power off the phone and enter the phone in Fastboot mode ( hold Vol+ and plug the phone to computer)
2. Rename downloaded files to recovery.img and boot.img and run commands:
"fastboot flash boot boot.img" and "fastboot flash recovery recovery.img" to flash boot and recovery.
3. Unplug the phone and reboot to recovery by hold "Vol-" and "Power" buttons
4. on password prompt press "Cancel" and Format "userdata" partition to remove internal encryption
5. download supersu flashable package at http://www.supersu.com/download then copy to sdcard and flash file in TWRP.
6. Rename TA Backup file to TA.img and copy to /data/local/tmp/
7. Reboot system and enjoy fantastic result.
When I tried some weeks ago it ended with a bootloop on Sony logo. I probably missed something Anyway thank you for your guide.
rrvuhpg said:
When I tried some weeks ago it ended with a bootloop on Sony logo. I probably missed something Anyway thank you for your guide.
Click to expand...
Click to collapse
i have tried so many times used rootkernel, "Ta Poc" tools, even tried edited ram disk by manually, but never make it work until i use kernel extracted from kernel.elf (stock firmware) . I don't know why, but at least root and real DRM worked.
How drm will work. i didnt take ta backup???
divakarhero said:
How drm will work. i didnt take ta backup???
Click to expand...
Click to collapse
You can't make real drm work without TA backup. Try flash boot file without TA back up then flash drm fix at https://forum.xda-developers.com/crossdevice-dev/sony/xperia-z1-z2-z3-series-devices-drm-t2930672 use Z3+ package and post your result. DRM fix worked on MM. But I didn't test on N
Thank you .
hello!! i tried in marshmallow and it works, the DRM keys are back :good:
but no on nougat... how it works on nougat???
thank you..
jimxperia9 said:
hello!! i tried in marshmallow and it works, the DRM keys are back :good:
but no on nougat... how it works on nougat???
thank you..
Click to expand...
Click to collapse
You can't get Drm work if don't have a TA backup in this time.
Hi...good to see your post
Can you make a video for rooting XA F3116? Because earlier i tried to downgrade firmware from nougat to Marshmallow which was bricked my phone :crying:. Sony service center replaced motherboard now it’s alive. But i want to root my phone without failure that’s the reason asking video tutorial. Thanks
backupTA file I have archive on the computer from previous (TA_F3116_RQ3001G335_08012017-1111.img)
I am sure perform exactly 100%.
And when I finished I lost signal.
When I skip the adb push D: \TA.img /data/local/tmp will no such fault anymore
phamdacchinh said:
backupTA file I have archive on the computer from previous (TA_F3116_RQ3001G335_08012017-1111.img)
I am sure perform exactly 100%.
And when I finished I lost signal.
When I skip the adb push D: \TA.img /data/local/tmp will no such fault anymore
Click to expand...
Click to collapse
Use root explorer to check and sure that TA.img file exist in /data/local/tmp/. If TA.img doesn't exist then phone lost signal. Try flash boot.img without ta backup file if you can't make phone work with boot.img and TA fix.
Thank you for this guide I upgraded my F3113 from MM to N and with this guide i managed to have Magisk Root & passing SafetyNet´s Basic integrity & CTS. It seems using the TA backup in this method tricks the system into thinking it has the bootloader locked when it has not as i have TWRP custom recovery.
I will post the steps i used.
1. Updated my SingleSim F3113 MM rooted phone with flashtool to N (33.3.A.1.97)
2. Followed this guide by downloading the files that require a previously made TA backup.
3. On the step 6 i was confused on how i will move the TA backup so i flashed magisk in TWRP and booted to system.
4. Installed ES file explorer and concede root access so i placed the TA backup in /data/local/tmp/
5. Rebooted & checked SafetyNet with the included check in Magisk.
6. Check was successful. I now have root & SafetyNet passing.
DRM Functional
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
SafetyNet check with Magisk
Bootloader seems locked?
In Nougat, I cannot backup TA partition, it fixed dirtycow.
wow... Thank . It's has worked on Sony XA dua F3116 ver 33.3.A.1.97
I have to fin that all week (
(Sorry, my english is not good)
(facebook.com/nhjm.sniper)
It's Working! but has issues
Hi everyone,
I followed the instructions on Xperia XA DUAL (F3112) and now I have rooted with TA active
But I have 2 question!
1. I can't reset my phone from setting, is because of the boot or sth else? How to fix this?
2. Every time that I reset my phone, I must copy TA.img to data/local/tmp ??
Thanks
sid.1375 said:
Hi everyone,
I followed the instructions on Xperia XA DUAL (F3112) and now I have rooted with TA active
But I have 2 question!
1. I can't reset my phone from setting, is because of the boot or sth else? How to fix this?
2. Every time that I reset my phone, I must copy TA.img to data/local/tmp ??
Thanks
Click to expand...
Click to collapse
Hi,
1. I can't confirm why there is a problem because I reset my phone from TWRP.
2. Pretty sure that you have to copy TA.img again because Data partition is wiped.
F3112, unlocked boot loader
Is it possible to use the same files for f3112 xa dual 33.3.A.1.97 rooting ? No TA backup.
tplsolution said:
Use root explorer to check and sure that TA.img file exist in /data/local/tmp/. If TA.img doesn't exist then phone lost signal. Try flash boot.img without ta backup file if you can't make phone work with boot.img and TA fix.[ł/QUOTE]
Click to expand...
Click to collapse
Related
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
I MEAN NO HARM AND DON'T WANT TO FLOOD THE FORUMS BY CREATING ANOTHER THREAD. I COULDN'T FIND A CLEAR TUTORIAL FOR REVERTING BACK TO ANOTHER ROM FROM H2O 2.5.1. SO I MADE THIS.
MY ORIGINAL POST OnePlus Forums
Just wanted to let know that I managed to revert back to CM 14.1 Official & OOS 3.1.0 without problems!
First make sure you have a terminal made EFS backup & TWRP made /persist backup!
Make sure you have made those before you flashed H2O 2.5.1.
If you don't have a valid backup, I really don't recommend following my steps in any way!
WARNING DO NOT FOLLOW MY STEPS IF YOU DON'T KNOW WHAT YOU ARE DOING!
IF YOU IGNORE THIS AND DON'T HAVE BACKUPS, YOUR PHONE WILL BE NOTHING MORE THAN BRICK!
WHAT I DID
- Make sure you have a custom recovery. I'm using HybridRecovery_v3.4.imghttp://forum.xda-developers.com/one...0-2-hybrid-supports-oos-t3362904/post66466393
- Make sure that OEM unlock is enabled under developer settings in your phone.
- Make sure that ADB debugging is enabled under developer settings in your phone.
- Connect phone to PC and grant permission to communicate with your phone.
- Grab your modemst1.bin & modemst2.bin files and put them in the same directory where ADB is installed/unpacked.
- Boot phone in bootloader/fastboot
- Start a new ADB session
- fastboot devices
- Check if any device is recognized
- This is the moment where you still can return to H2O.
Side note: H2O 2.5.1. is a fine OS and worked great for me. Maybe I'll return to it some day, but for now I'll be using CM 14.1
LET'S BEGIN
- Fastboot erase modemst1
- Fastboot erase modemst2
- Fastboot flash -S 512M modemst1 modemst1.bin
- Fastboot flash -S 512M modemst2 modemst2.bin
- Unplug your phone and then turn it off you by holding the power button
- Boot your phone into recovery
- Restore the /persist partition with TWRP/HybridRecovery
- Flash a ROM
One thing to mention is that when I restored a backup of CM 14.1 my data connection seemed forever lost.
I managed to fix that by deleting my network settings in the "Settings" app of Android. I also rebooted in recovery and deleted Dalvik/Art cache & cache.
Reboot your phone to system.
Voila, your phone is reverted and both of the IMEI's are still intact!
Any questions? I'll try to answer them as quickly as possible!
Restore the /persist partition with TWRP [NEW STEP]
how???
aliasgertaj said:
Restore the /persist partition with TWRP [NEW STEP]
how???
Click to expand...
Click to collapse
install Hybrid TWRP and then you will see the option. Search the forum for it. You'll find it
aliasgertaj said:
Restore the /persist partition with TWRP [NEW STEP]
how???
Click to expand...
Click to collapse
-Do you have a backup from your whole system made in TWRP?
-Do you have the modem files backed up via terminal?
If both are yes, you can follow my steps.
If not, stop.
aliasgertaj said:
Restore the /persist partition with TWRP [NEW STEP]
how???
Click to expand...
Click to collapse
Thread HybridRecovery (Use the 3.4 Version)
http://forum.xda-developers.com/one...0-2-hybrid-supports-oos-t3362904/post66466393
ok thnx dude
Stupid question whats the command to backup the modem
MRDICKHEAD said:
Stupid question whats the command to backup the modem
Click to expand...
Click to collapse
Not my video, but here you go!
Just FYI, I flashed back to OxyGenOS 3.1.0 and it works perfectly fine!
The last numbers proof it.
I've cut away the other part of my screenshot due to privacy.
Tunatje said:
Not my video, but here you go!
Click to expand...
Click to collapse
Thanks
Hi,
Thank you for your thread.
I am assuming this tutorial won't apply if I already erased my modemst without taking a backup? Because if I were to backup anything now it would just be an empty file?
rajatdixit said:
Hi,
Thank you for your thread.
I am assuming this tutorial won't apply if I already erased my modemst without taking a backup? Because if I were to backup anything now it would just be an empty file?
Click to expand...
Click to collapse
So sorry to hear that. Indeed, you will have a empty file.. You never made a Nandroid backup? If not, this is a hard lesson you have learned to read always the threads about flashing stuff for the first time. It's always mentioned that you have to make sure you have a full Nandroid backup.
Tunatje said:
So sorry to hear that. Indeed, you will have a empty file.. You never made a Nandroid backup? If not, this is a hard lesson you have learned to read always the threads about flashing stuff for the first time. It's always mentioned that you have to make sure you have a full Nandroid backup.
Click to expand...
Click to collapse
No, unfortunately I didn't. Yes its a hard lesson. I only have 1 IMEI working now.
Thank you for your input
I tried this one and it actually worked
http://forum.xda-developers.com/oneplus-2/general/howto-revert-firmware-hydrogenos-2-5-to-t3512065
please help...
i flashed into h2os for volte in mu oneplus two and then i flashed cm official 14.1 but then my phone started frequenlt rebooting . i though that might be a rom bug so i flashed rescuration remix rom but then too my phone is frequently rebooting . please help me tired of this. give me step by step solution for this. thank you.
.bin file Copy Paste ???
I dont know this is a proper Question (If not I m Sorry)
My other OPT have RR rom (before H2OS 2.5) is there any way that can enable me to copy .bin file from the other OPT & get both sim working.
Please Help
TIA
Sunil Jagtap said:
I dont know this is a proper Question (If not I m Sorry)
My other OPT have RR rom (before H2OS 2.5) is there any way that can enable me to copy .bin file from the other OPT & get both sim working.
Please Help
TIA
Click to expand...
Click to collapse
You mean, duplicate the IMEI?
Tunatje said:
You mean, duplicate the IMEI?
Click to expand...
Click to collapse
No, I mean can, I edit it with what no. my OPT has before.
Or
how can, I revert back to H2OS 2.5 with both sim working, tried every thing but after boot only SIM 1 is working
Thanks in Advance
Sunil Jagtap said:
No, I mean can, I edit it with what no. my OPT has before.
Or
how can, I revert back to H2OS 2.5 with both sim working, tried every thing but after boot only SIM 1 is working
Thanks in Advance
Click to expand...
Click to collapse
Hi,
You can't edit a IMEI. At least, not that I'm aware of. I've read that people used a HEX editor but not sure how that works or how much time that costs.
My thread is only for people with a modemst1.bin/modemst2.bin backup made through terminal..
However, there is a new guide for people without a backup, but think it's applicable if you haven't used the "erase" command.
https://forums.oneplus.net/threads/...r-flashing-hydrogen-os-video-included.477463/
rrbjerry said:
i flashed into h2os for volte in mu oneplus two and then i flashed cm official 14.1 but then my phone started frequenlt rebooting . i though that might be a rom bug so i flashed rescuration remix rom but then too my phone is frequently rebooting . please help me tired of this. give me step by step solution for this. thank you.
Click to expand...
Click to collapse
I've send you a PM.
Do not work with Nougat 7.1.1 / 32.4.A.0.160 (Bootloop)
New TWRP (You dont need otg and mouse anymore!):
https://www.androidfilehost.com/?fid=745425885120733410 (thanks to andralex8!)
GUIDE UPDATED, TESTED AND SIMPLIFIED 15.2.2017 (thanks to munjeni)
Tested with Saudi Arabia, Germany and Nordic (.378) firmwares
I managed to get my Xperia Z4 Tablet (SGP771) LTE model to have root, TWRP-recovery*, munjenis DRM fix and Adaway working with Nougat firmware (Saudi Arabia). I will share steps that I have done with my own tablet. If this guide brick your device or something goes wrong, I am not responsible for loss of your device. Use this guide only with your own RISK!
This tutorial is not for beginners. You need to have working adb installed yout pc, unlocked tablet, sonys special driver for fastboot. and TA backup (example TA-21062016.img). Use only this tutorial with Sony USB-cable.
*To get TWRP working, you need: OTG-cable and a mouse with wire or wireless mouse with a dongle.
0. Download Nougat 32.3.A.0.376 (Saudi Arabia) firmware with Xperiafirm 32.3.A.0376. to your PC
1. Flash Nougat 32.3.A.0.376 (Saudi Arabia) with Flashtool 0.9.23.2.
2. Boot your device and enable Developer settings from setting
3. Enable USB debugging setting from Developer settings
4. Download Supersu and Magisk to your device:
https://s3-us-west-2.amazonaws.com/supersu/download/zip/SuperSU-v2.79-201612051815.zip
http://tiny.cc/latestmagisk
5. Shutdown your device
6. Download munjenis DRM fix and serajr script package v2 to your pc:
http://munjeni.myiphost.com/ta_poc.rar
https://forum.xda-developers.com/showpost.php?p=70959962&postcount=65
7. Decompress files from munjeni and serajir to same folder.
8. Extract kernel.sin from your nougat firmware ftf (You can use 7zip to do this). Copy it to same folder with DRM fix. Rename kernel.sin to kernelX.sin
9. Copy your TA backup to same folder with DRM fix and rename it TA.img
10. Open Cmd with admistrator persimmions and use DOUBLECLICKME_NOUGAT.bat (search cmd rght mouseclick use admistrator).
11. Follow munjenis tool tutorial: You can choose if you want Sony Ric off. I left it on but turned dm verity off.
12. Download TWRP: https://drive.google.com/drive/folders/0B0j3VJ1Xp5N8cnhQamtxRWVtRmc
13. Press vol up and connect your device to pc to use fastboot. Use command: fastboot flash boot new_boot.img
14. After that use command: fastboot flash recovery TWRP-3.0.2-0-20160604.img
15. Disconnect your device and put otg-cable to tablets usb and connect mouse to otg-cable.
16. Press vol down + power to boot to TWRP. Touchscreen is not workin but you can use your mouse to navigate in TWRP!
17. Allow TWRP to make changes to your device and flash Supersu 2.79 and Magisk 11.1.
18 Boot your device and install magisk manager from the play store.
19. Enable from magisk manager settings: busybox, magisk hide and systemless hosts and Install Adaway (Will not work without Magisk, strange).
I have not managed to get my CTS profile approved but that is not major issue if not playing with Pokemon go (You can use magisk to detect this).
Note1 : Change LTE to 1 priority from mobile setting. Default for SA firmware is GSM
Note2: If you have already tried rootkernel to get drm working; do a full wipe and reflash firmware with flashtool. Rootkernel messes something. Tablet do not boot if you have used rootkernel and after that try to use munjenis DRM fix.
Note3: Magisk 11.1 wont work with Xperia Z4 Tablet without Supersu. So flash Supersu first and Magisk 11.1 after that
Note4: You cannot boot to TWRP by using root and reboot to recovery apps. You need to boot to the recovery with keycommand voldown+power
I hope this guide helps some fellow flashers
Special thanks for
munjeni
serajr
Chainfire
Androplus
topjohnwu
Teamwin
Androxyde
mrRobinson
If I forgot someone I am truly sorry!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Just tried unable to boot to recovery
sahilg009 said:
Just tried unable to boot to recovery
Click to expand...
Click to collapse
Did you do a full wipe? Try to fastboot flash boot new_boot.img after flashing recovery!
Tried wiping now flashing kernel gives me a no sim card error
sahilg009 said:
Tried wiping now flashing kernel gives me a no sim card error
Click to expand...
Click to collapse
Check this out:
https://forum.xda-developers.com/showpost.php?p=70972513&postcount=115
halfvast said:
Check this out:
https://forum.xda-developers.com/showpost.php?p=70972513&postcount=115
Click to expand...
Click to collapse
Even tried that still giving me signal problem
sahilg009 said:
Even tried that still giving me signal problem
Click to expand...
Click to collapse
Strange, I Did not encourter this problem because I could boot to TWRP and do adb trick there. Do you use orginal Sony usb to flash in fastboot? I had once a problem with Samsung Phone (S7) to flash recovery because the usb was not the one that came with my Phone.
Yeah
Try redownload TWRP image and flash it. If not working do a clean flash and try again or wait for Androplus kernel
Tried it all nothing worked still no sim error
sahilg009 said:
Tried it all nothing worked still no sim error
Click to expand...
Click to collapse
I found out munjeni is fixing his tool:
https://forum.xda-developers.com/showpost.php?p=70993277&postcount=173
I used previous version, which is not availble right now.
He says further in his thread he is going to release tomorrow a new version.
I used this version:
http://www.filedropper.com/tapoc
halfvast said:
I found out munjeni is fixing his tool:
https://forum.xda-developers.com/showpost.php?p=70993277&postcount=173
I used previous version, which is not availble right now.
He says further in his thread he is going to release tomorrow a new version.
I used this version:
http://www.filedropper.com/tapoc
Click to expand...
Click to collapse
Couldnt I just do the root and recovery method you have given on the wifi version as im not too bothered about drm fix for now as it looks abit complicated at the moment for me. It would be much more simple for me to flash recovery then super su. I just wanna know if this is possible?
Thanks
I am not sure. You need atleast a correct TWRP. You can try if You dare with your own RISK
But I doubt that it wont work..
halfvast said:
I am not sure. You need atleast a correct TWRP. You can try if You dare with your own RISK
But I doubt that it wont work..
Click to expand...
Click to collapse
Ok then dont think id like to try incase it doesnt boot so I think I might just wait for andro to do his stuff.
I have updated the guide and tested it today (13.2.2017) and it is working again
Guide updated and simplificed 15.2.2017. Thanks to munjeni!
halfvast said:
Guide updated and simplificed 15.2.2017. Thanks to munjeni!
Click to expand...
Click to collapse
Step 8 says Extract kernel.sin from your nougat firmware copy it to same folder with DRM fix. Rename kernel.sin to kernelX.sin. Do I have to extract that from the ftf or my Nougat firmware im currently using? Also does the ftf have to be that region?
RJASSI21 said:
Step 8 says Extract kernel.sin from your nougat firmware copy it to same folder with DRM fix. Rename kernel.sin to kernelX.sin. Do I have to extract that from the ftf or my Nougat firmware im currently using? Also does the ftf have to be that region?
Click to expand...
Click to collapse
You need to extract it from ftf-image. I used 7zip. My device was Nee with stock. I used DE with Marshmallow and I am currently using Saudi Arabia. So I dont think it will matter, which kernel you use with your device. But I would use same kernel version with rom. So If you are using Saudi Arabia rom use Saudi Arabia kernel. For Russia rom use Russia kernel, and so on
I will add tft-image extract to tutorial!
DRM fix doesn't work. XReality (among other things I assume) are ever disabled.
On Marshmallow DRM fix was working fine (was using XReality engine despite the unlocked bootloader)
For me it is working!
Firstly, I do not take any responsability in case anything happens to your device or your files. You decided to follow this guide at your own risk.
THIS WORKED FOR ME FOR MAGISK v14.3
ALSO WORKS ON MAGISK v14.5
I highly not recommend to use this guide for a different device other than the Xperia Z2 D6503.
All that aside, I managed to install magisk on my Stock Xperia Z2 and still keep ctsProfile and basicIntegrity: true.
HIGHLY RECOMMEND TO BACK EVERYTHING UP BEFORE PROCEEDING
You will need:
(OPTIONAL)Marshmallow FTF Firmware Here
(OPTIONAL)Flashtool Here
Magisk Manager Here
Rootkernel_v4.31_Windows_Linux.zip Here
ADB and Fastboot Here
Advanced Stock Kernel Here
TWRP Sirius Here
(OPTIONAL BUT HIGHLY RECOMMENDED) Use flashtool to flash the modified version of the stock ROM from above. It worked on this version but I can't really guarantee it will work on others. Can't really guarantee it will work on this either.(after you select the file there are 2 versions. pick the modified one).
1) Extract the Rootkernel_v4.31_Windows_Linux.zip and extract from the advanced stock kernel the boot.img (Rename it from boot.img to Old_boot.img)
2) Open cmd and use cd to reach the folder in which you extracted rootkernel.
Use the command "rootkernel Old_boot.img New_boot.img"
Say Yes to everything except installing TWRP.
3) Install Magisk Manager on your phone and copy "New_boot.img" to the phone.
4) Go to Magisk Manager settings , scroll to Update Channel and select Beta
5) Select install Magisk and select modify boot image. Select "New_boot.img" from the folder you copied it to
6) Extract adb to a folder
7) After patching the boot image at step 6, copy "patched_boot.img" from internal storage/MagiskManager to the folder in which you extracted adb
8) Copy TWRP to the adb folder and rename it to TWRP.img
9) Open cmd and use cd to navigate to the folder in which you copied adb. Type in the console "fastboot flash boot New_boot.img". Turn off your phone and then hold Volume Up whil plugging it into your pc(booting it into fastboot).
10) While still in fastboot, type "fastboot flash recovery TWRP.img"
11) Disconnect your phone from the pc. Wait a few seconds and then boot into TWRP (hold power button and Volume Down). A notification will pop up and select to "Keep System Readonly" (I think something like that). Reboot into system.
If everything worked as intended, a safetynet check will reveal everything in green, allowing you to both have root access and also run apps like Netflix and Android Pay
NOTE: Magisk Modules should be flashed via TWRP. For some reason, Magisk Manager is unable to install them.
EDIT: I tried to install xposed systemlessly but Safetynet was triggered. Don't think I can figure this out.
DahakePL tried with elite kernel and it didn't work. Writing this just in case anyone tries.
This worked for me but I can't guarantee it will work for you. (Photos at the end)
Did this guide help you? If you need any help, I will do my best to answer your questions.
I am not a developer and I do not really understand why or how everything works. I came across this method that worked for me and I thought I'd share it since I couldn't find a guide for my xperia phone when I needed it.
IN CASE SAFETY NET IS TRIGGERED, the only way to restore to everything in green is to reflash the stock rom (you don't have to format everything).
Did it work out for you? Just leave a reply saying that so I can figure out if everything works.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
.
Thank you man
Great job
Hi there and great job. Many thanks for this.
I've a question, "(OPTIONAL BUT HIGHLY RECOMMENDED) Use flashtool to flash the modified version of the stock ROM from above (after you select the file there are 2 versions. pick the modified one)." - what if another .291 stock firmware is used (eg downloaded from Xperifirm)?
fribriz said:
Hi there and great job. Many thanks for this.
I've a question, "(OPTIONAL BUT HIGHLY RECOMMENDED) Use flashtool to flash the modified version of the stock ROM from above (after you select the file there are 2 versions. pick the modified one)." - what if another .291 stock firmware is used (eg downloaded from Xperifirm)?
Click to expand...
Click to collapse
Well, this worked on this exact version. If you don't use it, i can't guarantee it will work.
Well, can't either way
But it worked on that one. I believe you don't have to reinstall your stuff if you already have the stock rom. You can just flash it over without deleting anything
Works fine thank you
Adriano-A3 said:
Thank you man
Great job
Click to expand...
Click to collapse
Awesome
I'm actually surprised.
Doesn't work on elite kernel, just tested, no root and no safetynet
DahakePL said:
Doesn't work on elite kernel, just tested, no root and no safetynet
Click to expand...
Click to collapse
Have you tried with the advanced kernel I linked?
Also, you have to be running stock
Xperia z2
IceGordol said:
Have you tried with the advanced kernel I linked?
Also, you have to be running stock
Xperia z2
Click to expand...
Click to collapse
I'm using the advanced stock kernel method and it works 100%
But I tried elite kernel and it doesn't work at all, just in case someone else wanted to know or something :highfive:
DahakePL said:
I'm using the advanced stock kernel method and it works 100%
But I tried elite kernel and it doesn't work at all, just in case someone else wanted to know or something :highfive:
Click to expand...
Click to collapse
Modified the post in order to specify this. Also credited you. Thanks for this addition.
Where is modified FTF?
Sent from my D6503 using Tapatalk
Why do I need to flash TWRP? It is already included into advanced stock kernel.
After flash magisk, can't mount otg drive in twrp
Sent from my D6503 using Tapatalk
I am running a phone with KK 4.4.4 rooted and xposed installed. What should I do first to use it?
If I want to keep few apks data?
May I install Cyberian Camera MOd after it?
Thanks you! Working finally!
609125 said:
Thanks you! Working finally!
Click to expand...
Click to collapse
How u make it working? I got no clue about step 2... rootkernel old_boot.img new_boot.img? I really have no idea about the instructions...
---------- Post added at 04:10 PM ---------- Previous post was at 04:03 PM ----------
DahakePL said:
I'm using the advanced stock kernel method and it works 100%
But I tried elite kernel and it doesn't work at all, just in case someone else wanted to know or something :highfive:
Click to expand...
Click to collapse
Guys, I once rooted my Z2 with SuperSU in locked bootloader condition (already unroot it). Im interested with magisk and want to try it. Is it possible for me even my device is bootloader locked? Thank you
IceGordol said:
9) Open cmd and use cd to navigate to the folder in which you copied adb. Type in the console "fastboot flash boot New_boot.img". Turn off your phone and then hold Volume Up whil plugging it into your pc(booting it into fastboot).
Click to expand...
Click to collapse
Perfect for me. Thank you very much!
But your step 9 is wrong. should be "fastboot flash boot patched_boot.img"
My ROM is Marshmallow_Stock_575_ROM_Ultraslim
must remove SuperSU (root) before installing, use UPDATE-unSU-signed.zip
Can't get this to work at all. I'm on Customised UK stock ROM.
No matter what I do, I get bootloops once Magisk is installed. If I use the Magisk Uninstaller from TWRP the phone works fine again.
EDIT: I should have said, I've tried with Magisk 16.0 and 16.7 Beta. No luck with either. I've also tried patching the advanced stock kernel boot.img and I've tried installing via TWRP with Bootloader-SonyELF. No luck again, just the same bootloop!
UPDATE: I managed to fix this by using the latest version of the RootKernel patching tool (v5.23) instead of v4.31 and following the rest of the instructions using the boot.img from advanced stock kernel with Magisk 16.7 installed successfully.
Work fine with Magisk 18
okay after two soft brick, red blinking light and the device wont turn on, i finally succeed installing this. the first issue i'm getting is adb command not found when running the "fastboot flash boot patched_boot.img", so i tried to use TWRP to install the img, which refuse saying it need bootbridge, so i install through the recommend option in magisk manager (installing directly) which cause the first brick
the first brick is restored by using flash tool
the second brick can't be restored by flash tool due to the usb debugging is off causing flash tool to said "device connected but using old drivers", luckily xperia companion software (now called emma) restored it succesfully
and i finally figured what causing the soft brick, since emma said the bootloader is locked and magisk can't be used with locked bootloader and that bricked the device.
anyway finally unlocked the bootloader since emma needed it to unbrick the device. and after unlocking the bootloader and follow again the procedure here i finally succeed installing magisk on my z2
TLDR: YOU NEED UNLOCKED BOOTLOADER TO FOLLOW THIS PROCEDURE. to check easily if your bootloader is locked or not is just by running Emma (xperia updater replacement) or use "fastboot oem device-info".
finally can try magisk, since many apps detect supersu now and refuse to work with it. i didn't unlocked the bootloader the first time since supersu can work with locked bootloader >_>
Stock Kernel + ROOT + TWRP + DRM Fix
Code:
** Your warranty is now void.
**
** I am not responsible for bricked devices, dead SD cards,
** thermonuclear war, or you getting fired because the alarm app failed. Please
** do some research if you have any concerns about features included in this MOD
** before flashing it! You are choosing to make these modifications, and if
** you point the finger at me for messing up your device, I will laugh at you.
**
Requirements
If you haven't unlocked bootloader yet check this guide
Good News ! For advanced users If you have TA.img backup of your device I highly suggest using this tool to patch stock kernel using your own TA image to have drm working with latest Magisk 16.3. Follow TA_POC METHOD instructions below .
- Kernel (boot.img) + Magisk + DRM fix patch : Here
- Latest TWRP from here[/B]
And obviously :
- ADB and FASTBOOT : https://forum.xda-developers.com/showthread.php?t=2317790
- Xperia X PERFORMANCE drivers : https://developer.sonymobile.com/downloads/drivers/xperia-x-performance-driver/
- FlashTool : http://www.flashtool.net/downloads.php
What are DRM Keys ?
If you unlocked the bootloader on a Sony Xperia device, you probably know that the potential loss of warranty is not the only disadvantage you have to accept. Another fairly hidden issue is related to various proprietary features such as the X-Reality color mangement, BIONZ image processor and the active noise cancelling techniques. Once you decide to unlock your bootloader, the process also removes a piece of data referred to as the DRM keys. These are tied to various services (such as streaming video and the like) offered by Sony but are also required for the features mentioned above to work properly. Put simply, once the keys are gone, you’ll face issues such as decreased low light camera image quality and the lack of the X-Reality mode.
Click to expand...
Click to collapse
Kernel features
this is pure stock kernel of the mentioned above firmware with
- RIC disabled
- added DRM patch support
Instructions
Before proceed backup all you important data like pictures, files to another device.. !
Make sure you follow all steps carefully with caution .. !
01- Flash Oreo FTF via Flashtool (Full wipe is recommened exclude nothing except TA files if there's any)
02- When done flashing unplug device ..
03- Enter fastboot mode and flash TWRP (hold vol up + plug usb)
Code:
fastboot flash recovery twrp-3.2.1-0-dora.img
then flash kernel
Code:
fastboot flash boot boot.img
04- Unplug and enter TWRP (Hold vol down + power button)
05- In TWRP Flash drmfix.zip + SafetyNet Cleaning Tools.zip then Magisk v16.3.zip
06- OPTIONAL Flash ROM Ptach to clean system and remove all bloat apps
07- Reboot and enjoy
Click to expand...
Click to collapse
TWRP asking for decryption code / Internal Storage showing 32GB only for DUAL Model
Turn off the phone (from TWRP if you can or hold vol up and power button till the phone vibrates 3 times)
Enter Fastboot and format user data partitions using this code
Code:
fastboot format userdata
If you are getting error try from TWRP recovery > WIPE > Swipe to format data
Now start your phone and set it up the issue should be resolved.
If still storage is not showing do clean installation in Flashtool wiping everything and exclude nothing then follow then instructions above .. I also noticed that flashing the correct XZ DUAL boot.img the first time before first boot fix this
To check drm keys type *#*#7378423#*#* on your phone and go to Service Test > Security
If you have all [Key OK] they are OK! like the pictures I attached below
Extras (Recommended)
- LXT (Battery Life | Speed Tweaks)
- [MOD][THERMAL FIX] FSC™ 4.0 Improve performance & Eliminate heat
- [XZ/XZs/XP]V1 Dontbelive XPERIA XZ1 StereoMOD
- [Magisk][Module] SELinux Manager by Jman420 (Set to permissive)
- [Magisk][Module] Unified Hosts Adblocker
- [Magisk][Module] Youtube Vanced [Official]
Must have apps
- Gboard - the Google Keyboard
- Brevent
- Kiwi Browser - Fast & Quiet
Credits @serjar for unofficial rootkernel update
Old DRM restore by @tobias.waldvogel
Magisk by @topjohnwu
SafetyNet Cleaner by @sceryavuz
TWRP by TeamWin
Doesn't work. When I did all, phone get infinite bootloading. And why TWRP shows F8131? My phone is F8132
---------- Post added at 08:23 AM ---------- Previous post was at 07:39 AM ----------
OP, before publishing, check it! Tried 2 method, still stuck on boot.
Finally, got it!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
ramirrat said:
Finally, got it!
Click to expand...
Click to collapse
Great!! Did you do anything other than the OP instructions?
Hi,
I also managed to apply the procedure.
Links in requirement are not pointing to newsest TWRP and Magisk. They are pointign to TWRP 3.0.0 and Magisk 14.3. Now available are TWRP 3.1.1 and Magisk 14.5.
Generallt method one worked with full total wipe while flashing Oreo with flashtool.
serajr said:
Great!! Did you do anything other than the OP instructions?
Click to expand...
Click to collapse
Used method 2, but flashed this TWRP
YES ... the Problem was TWRP and MAGIKS. Thank You. I used Method 1 - ok
but "SHAME ON SONY" - still no RAW Format for Camera with Oreo. I will go back to Oreo AOSP - so i can use Google Camera with RAW.
thnx
gordon
Is it possible to root with SuperSU instead of Magisk? I had a lot of camera problems when I used Magisk. It's up to 2.82 now, I think that' a general Oreo compatible thing.
ok i got it all to work,
steps i performed, on my laptop windows 7 ult x64
downloaded and installed the following
ADB and FASTBOOT extracted it on my c:/adb
Xperia X Performance drivers extracted it on c:/
FlashTool installed it and it's drivers located in the install folder of flashboot
downloaded the folowing files
Oreo Kernel Image copy to c:/adb
https://mega.nz/#!OA5BBJDY!lQ9Xojv5DN45QPbUQt-iQGhI409B7l7WoWvo0GTqYlY]DRM fix patch copy to to phone memory
TWRP 3.1.1.0 have not tried latest yet but 3.1.1.0 works fine, copy to c:/adb
Magisks 14.5 Beta copy to phone memory
folowed the guide methode 1 with slightly changes
01- Flash Oreo FTF via Flashtool ([color=redFull wipe in TWRP since i don't quite know how to use flashtool[/color], exclude FOTAKERNEL !! )
02- When done flashing unplug device .. (Do not boot yet !!)
03- Enter fastboot mode and flash the given kernel image (hold vol up + plug usb)
Code: fastboot flash boot boot_oreo.img
04- Flash TWRP 3.1.1.0 have not tried latest yet but 3.1.1.0 works fine
Code: fastboot flash recovery twrp.img
05- Unplug and enter TWRP (Hold vol down + power button) and did full wipe except system and micro sd
06- Flash drmfix.zip
07- Flash Magisks 14.5 Beta
08- Reboot and enjoy
everything works fine
ramirrat said:
Used method 2, but flashed this TWRP
Click to expand...
Click to collapse
Got it working now, thanks!
Used Method 1 with given twrp.
@korom42 great job mate! :good:
HI, i'm just doing this guide. i've download the firmware from xperifirm, and i got 3 files withount extension. I've googled and i read a guide to converto these 3 files into a ftf via flashtool. At certain point, i have to select all files except all the .ta files, and create the zip. I'm right?
The files are:
auto-boot.ta
cust-reset-ta
fota-reset.ta
master-reset.ta
osv-restriction.ta
reset-kernel-cmd-debug.ta
reset-non-secure-adb.ta
reset-wipe-reason.ta
simlock.ta
thanks... method 1 [email protected] AndroPlus TWRP 3.1.1.0 used.
Up and running with method 1. Unfortunately I had to use Magisk, but so far it seems to behave. SuperSu does NOT work. It will install, but the device does not show root.
Installed and running with method 1 but got a lot of issue using Windows 10. So i do all the work on a Windows 7 laptop without any problem.
Just 1 thing not working: magisk.
I followed the guide step by step with success, but magisk says me to update, and when i hit yes, nothing happen.
See attachment.
And another thing. I've wiped all except fotakernel, so why when I've boot up the Phone, i find all my apps, my settings and wallpaper Like how i leave them?
Sorry for my English.....
Edit: can't use netflix anymore
Edit2: magisk problem solved. I've download The apk from The site, then installed and when i hit yes to install magisk, it download a flashable via twrp zip, flashed it and magisk work, but now I've Lost safetynet for no reason.....
But i can use netflix now.
Safetynet is a important thing?
I forgot to say that I used Windows 10, as always. Regular command prompt (writing cmd in the start menu will give that, nothing else). But problems with that is usually because of wrong drivers for the phone, nothing else.
After 2 days of usage, i noticed a lot of lag, so i've done a factory reset from the android menu, not twrp, and is all working fine withount any kind of lag (except at powe off, the circle stop running, then after 20 seconds, power off, but it's not important, maybe a sony bug).
Now can i reflash from twrp in order drmfix.zip, SafetyNet Cleaning Tools.zip then Magisk v14.5.zip, or i will do any mistake?
I've noticed sone remote play, netflix, sony news and sony lounge are not working, i think cause DRM
Hello korom42
Are you creating a kernel & root for a new release of sony? There are new updates & I'm eager for this new thing
Flashed 41.3.A.2.24 with wipes
Flashed oreo.img
Flashed twrp.img
Get bootloop
Time to update kernel
there is some problem with that kernel, my phone will reboot unexpectly.I'm sure i flash it the right way
---------- Post added at 12:17 PM ---------- Previous post was at 12:11 PM ----------
ramirrat said:
Flashed 41.3.A.2.24 with wipes
Flashed oreo.img
Flashed twrp.img
Get bootloop
Time to update kernel
Click to expand...
Click to collapse
try twrp 3.2 or 3.0
completed the steps, if i wanted to go back to 7 where do i find those files?
First off, a HUGE thank you to @autoprime (for paving the way) and @waylo (for his assistance on getting this going after I found the KDZ)
I am currently storing these in my google drive account, so please be gentle till I have a better host location:
Below are the downloads for the LG-H83020N firmware
Folder with all the LG830 firmware I have so far:
LG830 (G5)
LG-H83020N-Flashable.COMPLETE-ARB01.zip
As always, COMPLETE is 100% stock
Flash COMPLETE zip -> wipe cache partition -> flash Magisk ZIP (or SuperSU if you insist) to root and keep TWRP
OPTIONAL: After flashing, remount /system RW -> delete recovery-from-boot.p to guarantee TWRP sticks
LG-H83020N-Flashable.Bootloader-ARB01
LG-H83020N-Flashable.Modem-ARB01.zip
LG-H83020N-Flashable.Boot.zip
H830N_00_1017.kdz (HUGE Thank you to @Azul Baseem for the upload)
For instructions, follow the same instructions as you would in any other KDZ/ZIP thread. For Example
Feel free to hit thanks.
Also feel free to hit up autoprime's All in One thread HERE
Thank you very much bedwa!
Kdz link updated!
Thank you @bedwa as always.
I fear my only true contribution here is MD5 confirmation of the files:
LG-H83020N-Flashable.COMPLETE-ARB01.zip 8a49733028bef23d775bf542eb62b726
LG-H83020N-Flashable.Boot.zip ddea9d814f66266de34a154f0c7f6b41
H830N_00_1017.kdz 732b717af8d77501342be445002c4fae
Edit: Also, since someone will definitely miss it in the title, this is confirmed to still be on Anti-Rollback 1. You're free to flash back and forth between 20A if you need to Dirtycow your phone again.
Keeping me honest, I swear I'll remember them next time.
Thanks for the upload. I was able to update just fine thanks to this.
BTW... It still has H83020m mentioned in the body of the OP instead of H83020n.
shinji257 said:
Thanks for the upload. I was able to update just fine thanks to this.
BTW... It still has H83020m mentioned in the body of the OP instead of H83020n.
Click to expand...
Click to collapse
Fixed. That's what I get for using the copypasta method. Missed the one. :silly:
help me
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
i had this issues when i try to flash it i already use uppercut
solved
running 20N , so far so good, just notice a small problem with GPS , it is a bit spotty today. @bedwa : Can you make a slim down version ? like removing LG/TMO/Google stuffs ? and reduce /system partition size ?
abced123 said:
running 20N , so far so good, just notice a small problem with GPS , it is a bit spotty today. @bedwa : Can you make a slim down version ? like removing LG/TMO/Google stuffs ? and reduce /system partition size ?
Click to expand...
Click to collapse
That would be trickier. All of these are the partition images. To make a slim zip like that I'll have to either unpack and build or unpack and attempt to repack. I might, but not likely at this time.
Thank you so much for making this. So happy to be rooted and on the latest build thanks to your hard work. =)
fc3211 said:
Thank you so much for making this. So happy to be rooted and on the latest build thanks to your hard work. =)
Click to expand...
Click to collapse
Quite welcome... It's more time consuming than hard work, but the appreciation and thanks is greatly appreciated as well.
@bedwa
I am running on rooted H83020a with TWRP and SuperSU installed. In order to upgrade to 20N by keeping all my current settings and data along with root and TWRP, what are the steps should I follow?
1. Take a complete backup using LG Backup
2. Boot into TWRP
3. Flash Complete Zip (H83020N) from TWRP
4. Flash SuperSU Zip
5. Reboot System
6. Restore the complete backup from LG Backup
Does this work okay? Or, do I need to do anything else, like Wipe Data/Partition etc.? Sorry for the noob question.
Hello,
If I flash boot and bootloader, will it lock my bootloader and brick the phone if I am on LineageOS?
nizarp said:
@bedwa
I am running on rooted H83020a with TWRP and SuperSU installed. In order to upgrade to 20N by keeping all my current settings and data along with root and TWRP, what are the steps should I follow?
1. Take a complete backup using LG Backup
2. Boot into TWRP
3. Flash Complete Zip (H83020N) from TWRP
4. Flash SuperSU Zip
5. Reboot System
6. Restore the complete backup from LG Backup
Does this work okay? Or, do I need to do anything else, like Wipe Data/Partition etc.? Sorry for the noob question.
Click to expand...
Click to collapse
Backup is always good, shouldn't have to restore it as it's updating from a previous version and doesn't wipe data when upgrading. But that's the correct process with or without #6.
azizo07 said:
Hello,
If I flash boot and bootloader, will it lock my bootloader and brick the phone if I am on LineageOS?
Click to expand...
Click to collapse
Shouldn't, but it would always be a good idea to backup beforehand. I would however only flash the bootloader, as the boot is the kernel and will be different than what LineageOS uses though.
I just boot into TWRP and flashed the complete zip and then flashed the latest SuperSU Zip. I pressed Reboot System after that, but, I am now stuck in a boot loop. Phone shows LG logo and reboots again and again.
I tried the Power button + Vol Down method, but, it doesn't work too. It gets to Factory reset screen, and after Yes and Yes, it goes to back to boot loop again. I am able to get into Download Mode and Fastboot Mode. Can I do something from here?
Can someone help please? Anyway to get into TWRP or recovery?
Sounds like you will need to LGUP or Uppercut your phone back to stock 20A. Then dirtycow back TWRP. Then try flashing the new ZIP again. Skip Supersu this time and try Magisk instead.
Thanks. I flashed back to 20A using LGUP and KDZ file. Need to dirtycow back TWRP now. I'm still wondering what went wrong in my process.
1. Take a complete backup using LG Backup
2. Boot into TWRP
3. Flash Complete Zip (H83020N) from TWRP
4. Flash SuperSU Zip
5. Reboot System
Click to expand...
Click to collapse
Do I need to reboot to TWRP once after flashing instead of Reboot System directly after flash? Any idea?
No, rebooting into TWRP wouldn't do anything. There's a script you might need to get into and delete prior to rebooting. But that only ensures that TWRP stays.
"After flashing, remount /system RW -> delete recovery-from-boot.p to guarantee TWRP sticks"
That having been said, I've done this before and STILL not had TWRP stay. Some recommend wiping /cache as well.
OR, again, use Magisk instead and don't use SuperSU.
Even if TWRP didn't stick, you should have been booting into system fine. You wouldn't be rooted, TWRP would be gone, but system shouldn't have been messed up. So something got borked, I'd have to guess, because of SuperSU.
New security patch update alert