I believe this might be possible. If someone is willing to give this a try, a developer for example? Try to extract your own bootloader from you phone, re-pack it for CWM as a flashable file and upload. I don't know anything when it comes to the proceedure of how this is done, but fishing about this forum area "http://forum.xda-developers.com/forumdisplay.php?f=855" might lead to a few clues. However this is a different device from a different manufacturer, they have managed to extract the BL. Not sure how. But it proves it must be possible, no? Im desperate for a bootloader unlock. Can't believe my operator is not allowing this.
Won't work. Just won't. Adding to the list.
K900 said:
Won't work. Just won't. Adding to the list.
Click to expand...
Click to collapse
Okay, no worries. What about this, wouldn't it work if we managed to load a custom kernel AFTER the original kernel is already loaded? A bit like 2nd-init in CWM? Just suggesting as many things as I can so you can either shoot them down in flames and add them to the list, or if something pops up that we COULD possibly try, you can help forward it for development. If it fails it fails...
Booting the custom kernel still requires an unlocked bootloader right? Then you are going to have to boot an enirely new android system on top of your basic one to boot custom kernels.
Correct me if i'm wrong
Sent with my Sony Xperia S using a little bit of KA magic.
JoelChrist_ said:
Booting the custom kernel still requires an unlocked bootloader right? Then you are going to have to boot an enirely new android system on top of your basic one to boot custom kernels.
Correct me if i'm wrong
Sent with my Sony Xperia S using a little bit of KA magic.
Click to expand...
Click to collapse
Well the thought behind my suggestion is that since the kernel is loaded officially, it means the key is already bypassed due to the official kernel going through which then means if we can load a new kernel as the Rom loads or just before it loads yet still after the original kernel has loaded then the key must still be bypassed and this new custom kernel can be loaded? People should keep giving suggestions!
Sent from my LT26i using xda premium
It might just work, but you would need 2 boot partitions right?
We could make a script that boots the second kernel before the first kernel boots the system.
Sent with my Sony Xperia S using a little bit of KA magic.
It's hardly possible to boot the kernel as late as the earliest possible injection (install-recovery) on locked BL.
No way to make a delay on that time given?
keewanchoapsss said:
No way to make a delay on that time given?
Click to expand...
Click to collapse
We can delay it, but to be able to hot boot a kernel, we need to push it back (so we can jump in earlier) not forward.
K900 said:
We can delay it, but to be able to hot boot a kernel, we need to push it back (so we can jump in earlier) not forward.
Click to expand...
Click to collapse
You can do it on post boot iirc, just overwrite /system/bin/chargemon with a custom script, mv chargemon to charger, and at the end of the script run charger.
only problem with this is you need a way of hijacking in the kernel (I have no idea how to do this).
KeiranFTW said:
You can do it on post boot iirc, just overwrite /system/bin/chargemon with a custom script, mv chargemon to charger, and at the end of the script run charger.
only problem with this is you need a way of hijacking in the kernel (I have no idea how to do this).
Click to expand...
Click to collapse
Yeah, the exact problem is we need to hot swap the kernel. It's possible (by using something similar to Uptrack, i.e. dynamically replacing code in memory), but needs to happen early enough so that nothings breaks if it goes wrong.
Can't we just do something similar to dualboot, but with the option to choose between boot system and boot the second kernel?
Sent with my Sony Xperia S using a little bit of KA magic.
JoelChrist_ said:
Can't we just do something similar to dualboot, but with the option to choose between boot system and boot the second kernel?
Sent with my Sony Xperia S using a little bit of KA magic.
Click to expand...
Click to collapse
Dualboot needs to be handled by the bootloader or the kernel itself, but we can't modify either on locked bootloader.
Dualboot different kernel it's only possible if there's a custom bootloader ( with a 2nd boot partition for the 2nd kernel , and possibility to switch kernel before booting it [ like dualboot BL of iconia a500/501 ]
Dualboot different roms it's possible by having 2 roms that uses the same kernel , so you can switch rom after kernel boot ( like siyahkernel )
For extract bootloader I think it should be possible by reverse engineering fastboot executible ( if it can put .ta key to unlock bootloader , I think fastboot can also read bootloader partition [ it's quite impossible it can write but it can't read ]) and add the command to read and save bootloader
EDIT : for extract bootloader try to extract it from loader.sin ( 7-zip give me that file is broken , but I think it has strange compression method or some protection to avoid extraction)
EDIT2 : algorithm for compress/decompress loader into loader.sin its LZMA but for some reason 7-zip cannot decompress it
If we'll found a good lzma sompressor/decompressor it will be easier to extract , edit , and repack bootloader for flash by loader.sin with flashtool
EDIT3 (too edit in this post ) : Founded romanger tool that can convert sin to img , but problem remain , tomorrow I will try to use new version of flashtool ( 0.9) to extract loader .sin.... in changelog it's wrote that thay added loder.sin extract from sony fileset ..... maybe it will work
Forzaferrarileo said:
Dualboot different kernel it's only possible if there's a custom bootloader ( with a 2nd boot partition for the 2nd kernel , and possibility to switch kernel before booting it [ like dualboot BL of iconia a500/501 ]
Dualboot different roms it's possible by having 2 roms that uses the same kernel , so you can switch rom after kernel boot ( like siyahkernel )
For extract bootloader I think it should be possible by reverse engineering fastboot executible ( if it can put .ta key to unlock bootloader , I think fastboot can also read bootloader partition [ it's quite impossible it can write but it can't read ]) and add the command to read and save bootloader
EDIT : for extract bootloader try to extract it from loader.sin ( 7-zip give me that file is broken , but I think it has strange compression method or some protection to avoid extraction)
EDIT2 : algorithm for compress/decompress loader into loader.sin its LZMA but for some reason 7-zip cannot decompress it
If we'll found a good lzma sompressor/decompressor it will be easier to extract , edit , and repack bootloader for flash by loader.sin with flashtool
EDIT3 (too edit in this post ) : Founded romanger tool that can convert sin to img , but problem remain , tomorrow I will try to use new version of flashtool ( 0.9) to extract loader .sin.... in changelog it's wrote that thay added loder.sin extract from sony fileset ..... maybe it will work
Click to expand...
Click to collapse
You are massively wrong here.
1) hotbooting a kernel is indeed possible, I can give you related links later, but for now just Google KSplice Uptrack.
2) Fastboot has nothing to do with Sony's cryptography, it is a Google tool that is open source as a part of AOSP. If you are talking about flashtool, it is also open source, so there is absolutely no magic involved on the PC. Flashtool reads and writes the loader as raw data, not trying to decipher it. If you still want to mess with loader.sin, it's unlikely to be LZMA compressed because that means an even lower level of software is required to decompress it. A 'good LZMA decompressor' you're looking for is unsurprisingly called lzma, is open source and should come preinstalled in most Linux distributions.
3) To flash anything, even the bootloader, with flashtool or any other method, you'll need to sign it with Sony's key or find a way to bypass the validation in Sony's stock bootloader. This also means that even if you manage to modify the bootloader code, you will not be able to flash it on locked devices unless one of the above happens.
But where in the loader file, or any stock file can we find the validation of sony?
Sent with my Sony Xperia S using a little bit of KA magic.
JoelChrist_ said:
But where in the loader file, or any stock file can we find the validation of sony?
Sent with my Sony Xperia S using a little bit of KA magic.
Click to expand...
Click to collapse
In the file header. The problem is it's an asymmetric signature. So 1) you need different keys to sign and to verify signatures and 2) the signature itself depends on the file's content, so when the file is changed, it'll no longer be valid.
Are bootloader files also verified by Sony?
I don't think so, because the bootloader is the first software to start so it cant be checked by some other software right?
If all this is correct, cant we pull the bootloader file in some way, and replace it with an unlocked or unlockable version?
Correct me if I'm wrong
Sent with my Sony Xperia S using a little bit of KA magic.
JoelChrist_ said:
Are bootloader files also verified by Sony?
I don't think so, because the bootloader is the first software to start so it cant be checked by some other software right?
If all this is correct, cant we pull the bootloader file in some way, and replace it with an unlocked or unlockable version?
Correct me if I'm wrong
Sent with my Sony Xperia S using a little bit of KA magic.
Click to expand...
Click to collapse
The new bootloader is verified by the old bootloader.
K900 said:
The new bootloader is verified by the old bootloader.
Click to expand...
Click to collapse
In that case, if we remove the bootloader, and flash the other one, there is no bootloader to verify it right?
Sent with my Sony Xperia S using a little bit of KA magic.
Related
Hi Before I only uploaded the system.img partition but ive done some basic converting of the rest, the FTF came as 3 files I only ever did one, due to easter and time constraints never got round to the rest so here it is:
It's my hope that with this we can finally start to build a custom Kernel to allow overclocking and other bits.
Have fun:
(link uploading now) http://www.multiupload.com/HLTFSS270P
This maybe what's needed to fix the HK one's this may need flashing (note this is just the .SIN package at the moment no other works been done ive had no chance yet)
custom kernel? does this enable overclocking?
Nhialor said:
custom kernel? does this enable overclocking?
Click to expand...
Click to collapse
not yet no, I need to speak to Bin4ry and find out how to rebuild the packages there is a special way of doing it for SE apparently I just haven't had the time to speak to him.
The above is pure stock.
but we now have a full dump available
Great! Thanks Waz! Hope a full ftf file can be built soon so i can revive my play....
is there a way for me to compile this together with the 3 files you posted last time to make a full ftf file using flashtools? or its not that simple? really wanna revive my play......
teckhwee said:
is there a way for me to compile this together with the 3 files you posted last time to make a full ftf file using flashtools? or its not that simple? really wanna revive my play......
Click to expand...
Click to collapse
I really don't know at this stage as I don't know the process to convert it back.
I can make a system.img using a kitchen but cant seem to complete the package with kernel etc.
you could always try flashing the kernel again it's worth a shot?
see here:
http://forum.xda-developers.com/showpost.php?p=13311015&postcount=11
waz000000 said:
see here:
http://forum.xda-developers.com/showpost.php?p=13311015&postcount=11
Click to expand...
Click to collapse
when you extracted the files, this is what you get, see below.. I think you just rename File_2778811.tar to loader.sin because you can't actually extract that file. Are you unsuccessful in renameing and trying to load that way?
adsp_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
amss_fs_zeus_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
amss_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
apps_log_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
cache_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION-WITH-SPARE.sin
FILE_277848811.tar (loader.sin)
fota0_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
fota1_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
kernel_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION.sin
simlock.ta
system_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION-WITH-SPARE.sin
userdata_S1-SW-LIVE-883F-PID1-0001-S1-PARTITION-WITH-SPARE.sin
I know the loader is going to be around 100kb as the arc one is about that. im going to try and take the one out of the firmware Bin4ry used, im just not 100% convinced this is the correct loader.
Right ive recreated it, and now im flashing it with wipe data to check, if it all goes wrong it's back to the phone shop "oi mister phone dealer me phones gone funny"
Right flashed, was on "Sony Ericsson" for while a while now we are on the splash screen....Waiting....waiting...
and BOOM!!!! flashed and data wiped! boom yeah!
uploading now!
Wow Waz, that sounds like a big sacrifice you made! Lucky it turned out good. You're really risking it man. I aplaud your effort!
Lets hope it works for us play bricks................
waz000000 said:
I know the loader is going to be around 100kb as the arc one is about that. im going to try and take the one out of the firmware Bin4ry used, im just not 100% convinced this is the correct loader.
Click to expand...
Click to collapse
FTR. I did some testing and md5 checking together with DooMLoRD, the loader.sin for Arc and Play are identical. 100%. However, boot.img differs.
Sent from my Nexus S using XDA Premium App
CLOSED
it works on sk17a?? sorry for the noob question but, i need to know
bbooff said:
I didn't have to do much.
Just minor modifications on my existing kernel for 4.0.2A.0.42
Works exactly as in 4.0.2A.0.42
INSTRUCTIONS:
Run cmd in the folder that contains fastboot.exe.Unzip boot.zip in the same folder.Connect your sk17i in fastboot mode(shutdown your device,hold volume up and connect your device to your pc via usb (blue led lights up)).
Type:fastboot flash boot boot.img
ENJOY!
Click to expand...
Click to collapse
bbooff do you mind to share how to modify stock kernel?
i want to make make some modification on xperia active stock kernel.
thank you.
my firmware is 4.0.2.A.0.58 flashed from SE PC Companion, rooted by darklords method, unlocked bootloader from SE dev site with SE key. When flashing the boot.img from fastboot can access clockworkmod recovery but home hardware key and msc mtp modes failed.
SOLVED! Post 5 solution.
Do the following mughalgxt:
Flash your device again using SEUS.If SEUS tells you that your software is the latest, choose REPAIR.Then, flash the custom kernel, without rooting first.If the problem persists,let me know...
puppet13th, take a look at this:
http://android-dls.com/wiki/index.php?title=HOWTO:_Unpack,_Edit,_and_Re-Pack_Boot_Images
Woa thnx for that link
bbooff said:
puppet13th, take a look at this:
http://android-dls.com/wiki/index.php?title=HOWTO:_Unpack,_Edit,_and_Re-Pack_Boot_Images
Click to expand...
Click to collapse
thank you,i will check it out.
Tried this myself for my Active. Thing is, even though i follow the instructions listed in the site OP gave and this site also:
http://forum.androidspin.com/showthread.php/3973-ADVANCED-How-To-Mod-BOOT-amp-RECOVERY but all i end up with is a softbrick. When I initially try and flash the boot.img on the device i get this error:
"writing 'boot'... FAILED (remote: Wrong range:0x10008000-0x10360b0b. Ok:0x00200000 - 0x03dfff)"
Click to expand...
Click to collapse
Tried adding base 0x00200000 to the cmdline part but no cigar. Also how do you extract the boot.img from your device since its not listed in the mtd's?
flashed it, got OKAY at the end and superuser was installed.
i can't however get into CVM. it's volume down key after Sony Erricssson letters appears right?
i did however have it rooted already with zergrush method, but i dont think that cant interfere with getting into recovery.
i had no issues getting into recovery when i had CM installed.
sulkie,
you need to to press and release the power on/off key just once, as soon as the (white) sony ericsson logo turns brighter.
dumraden said:
Tried this myself for my Active. Thing is, even though i follow the instructions listed in the site OP gave and this site also:
http://forum.androidspin.com/showthread.php/3973-ADVANCED-How-To-Mod-BOOT-amp-RECOVERY but all i end up with is a softbrick. When I initially try and flash the boot.img on the device i get this error:
Tried adding base 0x00200000 to the cmdline part but no cigar. Also how do you extract the boot.img from your device since its not listed in the mtd's?
Click to expand...
Click to collapse
same here.i use flashtool to decrypt firmware files downloaded by SEUS.then i got kernel.sin then i use sin2img from Xperia ROM manager to convert kernel.sin to kernel.img. the converted file can't be splited using split_bootimg.pl. it's says wrong android magic or someting like that.
if you want to test the kernel just use these command :
Code:
fastboot boot kernel.img
Bboff,sorry for asking this,if i flash ur kernel and then relock my BL ,can i receive updata OTA without bricking my phone?
bbooff,
does this kernel support voice call recording?
rm001 said:
bbooff,
does this kernel support voice call recording?
Click to expand...
Click to collapse
This kernel supports whatever the stock kernel supports.
Black_jackss said:
Bboff,sorry for asking this,if i flash ur kernel and then relock my BL ,can i receive updata OTA without bricking my phone?
Click to expand...
Click to collapse
Some mentioned having problems with update OTA, so i do not recommend it.You can receive updates via SEUS without any problems if you relock your bootloader.This is guaranteed
bbooff,
Is it possible to add the support for voice call recording to your kernel (and/or to your HYBROMs)? Or it`s too difficult? Just in case, if it can help you: it is added in KRsH Kernel v2.0 (MiniPro)
rm001 said:
bbooff,
Is it possible to add the support for voice call recording to your kernel (and/or to your HYBROMs)? Or it`s too difficult? Just in case, if it can help you: it is added in KRsH Kernel v2.0 (MiniPro)
Click to expand...
Click to collapse
Check this app from the market:RECORD MY CALL
Tested with HYBROM v3 on my custom kernel about a minute ago.
Records any call and works fine.
(so, both kernel and rom obviously support call recording)
bbooff said:
Check this app from the market:RECORD MY CALL
Tested with HYBROM v3 on my custom kernel about a minute ago.
Records any call and works fine.
(so, both kernel and rom obviously support call recording)
Click to expand...
Click to collapse
There are a lot of apps for call recording, but they record the sound from microphone, not from the line, so if you are on the street it becomes useless. The official ROM 100% doesn`t support line recordins, I checked. For example, if you set the option "use root/use kernel recording" instead of "use microphone", they produce an empty records.
Nevertheless I`ll try this app also, thank you very very much.
rm001 said:
There are a lot of apps for call recording, but they record the sound from microphone, not from the line, so if you are on the street it becomes useless. The official ROM 100% doesn`t support line recordins, I checked. For example, if you set the option "use root/use kernel recording" instead of "use microphone", they produce an empty records.
Nevertheless I`ll try this app also, thank you very very much.
Click to expand...
Click to collapse
Sorry..
I didn't quite understand what you meant before.It is clear now.
I will see what i can do...(But not in the near future...)
hello guys ..
first off, i have researched enough on these forums and found that there are many different ways to root the phone. each procedure is different and there are like 20 different images available.
and i'm a total idiot when it comes to dealing with the procedures mentioned here in the forums. i can't make any difference between .img, .sin and .ftf files. to me those are just extensions. what they do and which file to use, i have no sense with all that.
i have already unlocked the bootloader on my xperia s that had gingerbread 2.3
i have been suggested to upgrade first and then root the phone. for that i will have to re-lock the bootloader and there's a lengthy topic on that. plus, the warnings that scare me to death. it is specifically mentioned that i may end up bricking my phone if i re-locked the bootloader. the procedure for relocking involves downloading several files and doing lotsa stuff.
can't i at this point simply install a pre-rooted ics image and get up and running with a rooted ics xperia s?
which ics system image is best to load? should i download the one available on google docs? please for god sake, give me a step-by-step tutorial without using the jargons. dont worry about the beers, i'll definitely buy you a couple of beers whoever helped me out.
on a side note if u wish to call me names or tell me go change my diapers or something else, i'll do that later on. but please help me first lol. i'm a stupido playing with stuff i shouldn't be playing. but i want to learn and root my phone. my bf challenged me if i dare root the phone without bricking it .. so yea, lets see if i can handle this stuff. i really want to ...
***i'm really sorry for posting questions in the general forum. could a mod please move this thread to the q&a forum. appreciate ur help***
could anyone help me please? i'm waiting since the above post. been hours and i'm still stuck here with a phone that keeps restarting. my only options are the fastboot and flashtool. can someone give a link to the rooted xperia s ics image please? and also list the procedure for flashing the image on my phone in this situation? a million thanks to anyone who can help me ..
with unlocked bootloader, just flash any ICS firmware and the flash a custom kernel like SXS or SSpeed, those kernels autoroot your phone
hi yakandu,
you are a very experienced person on these forums. please help me with step-by-step tut. please include links to which ics firmware i should download and use. consider me a total idiot and please guide me. i have spent more than 48 hours and the phone is still off. god knows how many imp calls i have missed. i just wish that the phone is up and running with a rooted ics firmware. please help me sir.
should i download this firmware? http://xdafileserver.nl/index.php?d...STOM+ROMS/KA+Xperia+SSpeed/Android+4.0+(ICS)/
is that KA09_Xperia_SSpeed.zip a firmware or something else?
if yes, should i download that file and also the kernel associated with it?
please guide me.
At the very least, you should know how to read a forum, right?
There's a thread for you, called "[Xperia S][INFO][REF] All that u need to know before u begin". Have you read that? No? Why not?
It's here:
http://forum.xda-developers.com/showthread.php?t=1526866
Next, I would suggest you flash the ICS from here:
http://forum.xda-developers.com/showthread.php?t=1599303
(hint, instructions are IN THE THREAD, read them instead of being asked to be spoonfed)
Then, flash this:
http://forum.xda-developers.com/showthread.php?t=1729280
How to flash? READ THE THREAD.
Download one of the ICS firmwares here: (any may do)
http://forum.xda-developers.com/showthread.php?t=1599303
Then proceed to STEP 3 here:
http://forum.xda-developers.com/showthread.php?t=1725078
EDIT: To have your phone rooted, install 1 of the 3 kernels availabe for SXS; Advanced Stock kernel, KA SSpeed kernel, or XSX kernel. They are all pre-rooted.
XSX kernel: http://forum.xda-developers.com/showthread.php?t=1768465
Advanced Stock kernel: http://forum.xda-developers.com/showthread.php?t=1729280
KA SSpeed kernel: http://forum.xda-developers.com/showthread.php?t=1761778
Rashkae said:
At the very least, you should know how to read a forum, right?
There's a thread for you, called "[Xperia S][INFO][REF] All that u need to know before u begin". Have you read that? No? Why not?
(hint, instructions are IN THE THREAD, read them instead of being asked to be spoonfed).
Click to expand...
Click to collapse
ever got into a book store? searching for a book on a particular topic but then u find 20 such books that relate to the topic? which one would u choose to go with? perhaps you should start reading all those 20 books and decide which one is the best for u. you could do that if you had loads of time to spend but if u had less time and your knowledge on that topic is zero. what are u going to do? you are going to ask someone who is knowledgeable.
its not about spoon feeding. its all about newbs like me who don't know nothing about this mobile world but still wish to learn. there is so much information on these forums that newbs can easily get confused. there are tens of different articles that provide loads of information but what can i do if there are like 10 different ways to root a phone. there are like 50 different roms, images, ftf, sin files and kernels and what not. i've read so much on these forums but all i see heavy techie words and jargons that are simply out of my understanding.
cant blame anyone for my little knowledge but just sayin that its pretty easy to get confused and do something that a newbie should not do. nevertheless, i'm sorry if i acted lower than your standards .. remember . i talked about the diapers .. guess i shud go get a new one cuz i've pissed myself enough in these last two days .. :angel:
ronin1728 said:
Download one of the ICS firmwares here: (any may do)
http://forum.xda-developers.com/showthread.php?t=1599303
Then proceed to STEP 3 here:
http://forum.xda-developers.com/showthread.php?t=1725078
EDIT: To have your phone rooted, install 1 of the 3 kernels availabe for SXS; Advanced Stock kernel, KA SSpeed kernel, or XSX kernel. They are all pre-rooted.
XSX kernel: http://forum.xda-developers.com/showthread.php?t=1768465
Advanced Stock kernel: http://forum.xda-developers.com/showthread.php?t=1729280
KA SSpeed kernel: http://forum.xda-developers.com/showthread.php?t=1761778
Follow the instruction on how to flash custom kernel here (scroll down until you find it):
http://forum.xda-developers.com/showthread.php?t=1761778
Click to expand...
Click to collapse
ronin, thank you a BIG time. this is exactly what i wanted. i could read the threads for newbs and also checked various different roms (images) and kernels but i wasn't sure of which one to use and which one is pre-rooted. you've given me direct links to the roms i should be using. thank you so much.
i have flashed the second one (the ics one) using the flashtool: http://forum.xda-developers.com/showthread.php?t=1599303
my phone is booting normal :victory:
I have downloaded the KA SSpeed kernel v2 and about to flash that on the phone. I have gone through this thread: http://forum.xda-developers.com/showthread.php?t=1761778
Code:
== Installation instructions ==
Important! Only for unlocked bootloader
1) Flash the kernel:
- Open up fastboot and type: fastboot flash boot kernel.elf
2) Enjoy it!!
I am not responsible for damage to your device, use at own risk!
open up fastboot.
does that mean shut down the phone, press and hold the volume up button and then plug the usb cable to computer. the blue light lit up and then i can run that fastbot command?
where do i keep the kernel files? should i put them in the fastboot folder?
and i dont see any kernel.elf file in the sspeed kernel folder. there are 3 folders: customize, meta-inf and system folders. no other files in the ka09_xperia_sspeed folder.
i'm pretty confused .. please help.
edit: should i use the flashtool to flash kernel?
i mean, i can fastboot the phone (blue light lit)
then i can run the flashtool (64 bits) and then flash icon .. fastboot mode .. and then click on "select kernel to flash"
is this what i should be doing?
Use this kernel http://forum.xda-developers.com/showthread.php?t=1729280
Download ics11 for fastboot.
Put the file in fastboot folder.
Open adb and type (fastboot flash boot ics11.elf) and enter then while the phone is off press vol up and connect the usb.
Edit: I don't know if you can use flashtools with fastboot mode to achieve the same thing cause I never use it for fastboot mode.
Sent from my LT26i using Tapatalk 2
open up fastboot.
does that mean shut down the phone, press and hold the volume up button and then plug the usb cable to computer. the blue light lit up and then i can run that fastbot command?
where do i keep the kernel files? should i put them in the fastboot folder?
and i dont see any kernel.elf file in the sspeed kernel folder. there are 3 folders: customize, meta-inf and system folders. no other files in the ka09_xperia_sspeed folder.
i'm pretty confused .. please help.
edit: should i use the flashtool to flash kernel?
i mean, i can fastboot the phone (blue light lit)
then i can run the flashtool (64 bits) and then flash icon .. fastboot mode .. and then click on "select kernel to flash"
is this what i should be doing?
Click to expand...
Click to collapse
I'm so sorry for the confusion. I posted the wrong link for the instructions for flashing custom kernels. Here's the correct one:
http://forum.xda-developers.com/showthread.php?p=23181182#post23181182
There's a section there on flashing custom kernel, just scroll down. Just download fastboot drivers and fastboot binaries if you haven't yet. And instead of the "Xperia_SSpeed_kernel_v2.zip" download the "kernelv2.elf".
gm007 said:
Use this kernel http://forum.xda-developers.com/showthread.php?t=1729280
Download ics11 for fastboot.
Put the file in fastboot folder.
Open adb and type (fastboot flash boot ics11.elf) and enter then while the phone is off press vol up and connect the usb.
Edit: I don't know if you can use flashtools with fastboot mode to achieve the same thing cause I never use it for fastboot mode.
Sent from my LT26i using Tapatalk 2
Click to expand...
Click to collapse
ok i flashed the ics11.elf file and it took just a minute or two. thank you for precise instructions! appreciate your help a lot.
is there a way to check if the phone is rooted? does it say anywhere in the options of the phone is rooted?
thanks for the help!
ronin1728 said:
I'm so sorry for the confusion. I posted the wrong link for the instructions for flashing custom kernels. Here's the correct one:
http://forum.xda-developers.com/showthread.php?p=23181182#post23181182
There's a section there on flashing custom kernel, just scroll down. Just download fastboot drivers and fastboot binaries if you haven't yet. And instead of the "Xperia_SSpeed_kernel_v2.zip" download the "kernelv2.elf".
Click to expand...
Click to collapse
hi ronin, no problems .. i've already installed the ics11.elf kernel. is there any difference between the two? is ics11.elf better or kernelv2.elf is better? are both pre-rooted or will I have to root the phone after installing either? i read on that page ics11.elf is autoroot. i guess it means the phone will be rooted automatically after installing ics11.elf, please correct me if i'm wrong ..
Install any app that need root access like adfree...
You should see a superuser app in the drawer.
Sent from my LT26i using Tapatalk 2
zorathomas said:
hi ronin, no problems .. i've already installed the ics11.elf kernel. is there any difference between the two? is ics11.elf better or kernelv2.elf is better? are both pre-rooted or will I have to root the phone after installing either? i read on that page ics11.elf is autoroot. i guess it means the phone will be rooted automatically after installing ics11.elf, please correct me if i'm wrong ..
Click to expand...
Click to collapse
Yes ics11 kernel is autorooted,this kernel is same as stock kernel no overclocking so I prefer it most.
Sent from my LT26i using Tapatalk 2
gm007 said:
Yes ics11 kernel is autorooted,this kernel is same as stock kernel no overclocking so I prefer it most.
Sent from my LT26i using Tapatalk 2
Click to expand...
Click to collapse
excellent! i dont like to overclock either. the phone already so fast, no need of making it more faster. thanks for all the help guys, appreciate your help a lot. i have a rooted ics phone with a good kernel and all that i needed.u guys rock!
As a new member I cant yet post in the dev section but a few of you may recognize me from phandroid. Im curious is there a reason we cant use fastboot to flash an unlocked U image to unlock the phone? Im sure it signed but there is no reason to touch it, just pull and flash to an unlocked phone.... Also could anybody do me a favor and upload an unlocked u image so I could compare it to my locked image.
omgbossis21 said:
As a new member I cant yet post in the dev section but a few of you may recognize me from phandroid. Im curious is there a reason we cant use fastboot to flash an unlocked U image to unlock the phone? Im sure it signed but there is no reason to touch it, just pull and flash to an unlocked phone.... Also could anybody do me a favor and upload an unlocked u image so I could compare it to my locked image.
Click to expand...
Click to collapse
it doesn't work that way, there is an efuse on the cpu which the uboots( same for unlocked or locked phones) interprets
You use theThanks for the quick response. I am not familiar with the omap! As I am the LG msm8960 but their are similarities. The fuse must be blown to unlock the bootloader? On the 8960 the fuse is blown which presents a locked bootloader, we have tried to blow it with an higher value but it didn'twork. This phone also uses the LG wallpaper file which when activating its framework can alter (on 8960) the qfuse values.
omgbossis21 said:
You use theThanks for the quick response. I am not familiar with the omap! As I am the LG msm8960 but their are similarities. The fuse must be blown to unlock the bootloader? On the 8960 the fuse is blown which presents a locked bootloader, we have tried to blow it with an higher value but it didn'twork. This phone also uses the LG wallpaper file which when activating its framework can alter (on 8960) the qfuse values.
Click to expand...
Click to collapse
I'm not sure if dealing with efuse directly is way to go, there are plenty of devices that use omap4430 with huge developers base and mostly what they do is 2nd init or a custom uboot.
I'm unsure as to why flashing a unlocked u partition to a locked phone doesn't work. On the optimus (3d I believe? ) the LG sign tools were leaked and a custom up boot was signed and flashed to unlock. The ma8960 simply requires a unlocked abooot to be flashed. Not asking to be spoonfed perhaps it would require the u,x and maybe boot. Image. I will download the source and have a look for a qfuse generic configuration file.
Sent from my LG-P769 using xda app-developers app
omgbossis21 said:
I'm unsure as to why flashing a unlocked u partition to a locked phone doesn't work. On the optimus (3d I believe? ) the LG sign tools were leaked and a custom up boot was signed and flashed to unlock. The ma8960 simply requires a unlocked abooot to be flashed. Not asking to be spoonfed perhaps it would require the u,x and maybe boot. Image. I will download the source and have a look for a qfuse generic configuration file.
Sent from my LG-P769 using xda app-developers app
Click to expand...
Click to collapse
http://forum.xda-developers.com/showpost.php?p=21280773&postcount=32
i'm sure these can be ported and it's possible that p76X uboot is signed with same keys as 3d.p940 but that is way beyond my knowledge
uboot https://github.com/wkpark/u-boot-omap4-optimus
xloader https://github.com/wkpark/x-loader-cosmo
the LG sign tools (who knows if keys are right) https://github.com/milaq/android_device_lge_p940/tree/cm-10.1/releasetools/ifttool
Thanks, I appreciate your time and in turn saving me some time. Looking at the unlock procedure it seems at one point data connection is a must which suggest each phone uses a generated unlock token. Following that post also suggest (as I suspected) the secure boot fuse is blown implementing a locked bl. I will do some furthur research. LG tends to have bootloaders signed by different people per device. I will look into to the wallpaper framework and the efuse values as well as looking at the LG sign tools. Thanks again.
Sent from my LG-P769 using xda app-developers app
btw current method to unlock the bootloader isn't really that difficult
Lelus said:
btw current method to unlock the bootloader isn't really that difficult
Click to expand...
Click to collapse
I'm sure its not , just a pita with the inverted screen. I'm just curious is all =-) Perhaps we can use the wallpaper framework and test a lg signed image created with the tools. Any idea on the efuse values, we could compare locked with unlocked on the W.F. These are our options :
C:\adb>adb shell
[email protected]:/ # wallpaper -framework
wallpaper -framework
------------------------------------------------------------------
Welcome Security Framework!!
01. Error Dispaly Test
02. Application Certificate Test
03. Crypto Library Test
04. TrustZone QFPROM Test
05. TrustZone SFS Test
06. TrustZone H/W Crypto Engine Test
exit -To exit this test application
------------------------------------------------------------------
omgbossis21 said:
I'm sure its not , just a pita with the inverted screen. I'm just curious is all =-) Perhaps we can use the wallpaper framework and test a lg signed image created with the tools. Any idea on the efuse values, we could compare locked with unlocked on the W.F. These are our options :
C:\adb>adb shell
[email protected]:/ # wallpaper -framework
wallpaper -framework
------------------------------------------------------------------
Welcome Security Framework!!
01. Error Dispaly Test
02. Application Certificate Test
03. Crypto Library Test
04. TrustZone QFPROM Test
05. TrustZone SFS Test
06. TrustZone H/W Crypto Engine Test
exit -To exit this test application
------------------------------------------------------------------
Click to expand...
Click to collapse
Actually 769 can be unlocked without even touching the screen so it's not a problem, you don't have to deal with inverted screen at all.
Why would you want to use something made for msm8960 on totally different cpu like omap4430 ?
That's from our wallpaper file from our sbin. It is also the file that throws security error when removing specific apks from stock system (probably videos. Apk and about 4 or 5 others). Best to remove it from the stock startup script labeled something like xxearlyboot (after unlocking of course). I plan on unlocking my bootloader but like I said I'm just very curious about whatever device is placed in my hands
Sent from my LG-P769 using xda app-developers app
omgbossis21 said:
That's from our wallpaper file from our sbin. It is also the file that throws security error when removing specific apks from stock system (probably videos. Apk and about 4 or 5 others). Best to remove it from the stock startup script labeled something like xxearlyboot (after unlocking of course). I plan on unlocking my bootloader but like I said I'm just very curious about whatever device is placed in my hands
Sent from my LG-P769 using xda app-developers app
Click to expand...
Click to collapse
Sorry, partially my bad, anyways from what I can see it's just leftover code for qualcomm cpu.
Hello guys !! I ve several problems with unlocking procedure of my p760 bootloader , i try to unlock it with v20b and more but the phone reboost normally...I need help plese !! Is thare any way to unlock bootloader with another procedure like a system dump ??? Thanks
omgbossis21 said:
That's from our wallpaper file from our sbin. It is also the file that throws security error when removing specific apks from stock system (probably videos. Apk and about 4 or 5 others). Best to remove it from the stock startup script labeled something like xxearlyboot (after unlocking of course). I plan on unlocking my bootloader but like I said I'm just very curious about whatever device is placed in my hands
Sent from my LG-P769 using xda app-developers app
Click to expand...
Click to collapse
I believe the person I was giving these files were trying to give them to you
FILES BOOT & ETC.zip (28.1 MB)
https://mega.co.nz/#!Y4cjUYCL!FJ-0ckX-pg6YC3SdlG7sbijWR7Qr7yVukugImbGVKoE
Sorry I currently don't have to kdz for t-mobile p769 v20d but if you have the kdz. you can extract the img with this guide.
http://forum.xda-developers.com/showthread.php?t=2315727
Thanks. I've been pulling my partitions and browsing as well. My Ubuntu build is currently fresh from last time it crashed though I do wanna start a rom. Maybe I will get in the mood to setup the environment again. Haven't unlocked my bootloader yet just using the 2nd int to backup and run a few things like acid soundmod. I found the sound to be really lacking on this phone.
Sent from my LG-P769 using xda app-developers app
If i try to flash u.img located in https://mega.co.nz/#!Y4cjUYCL!FJ-0ck...yVukugImbGVKoE with omap4boot mode , I should have a unlocked bootloader ??? I try with other files but with no reasons. Thanks
Haven't tried but seems it doesn't work that way. My thinking was that the unlocked partition would unlock the phone or simply allow the unlock command but it is not confirmed what so ever.
Sent from my LG-P769 using xda app-developers app
Why do you think it does not work ? what prevents the replacement of the bootloader ?
Well I tried a unlockable u.img but the unlock command did not work. Wallpaper. Bin is applicable on our phone and is used for secure boot and called by the lge. Int. Earlyboot. RC file. After alot of hours I got the LG sign tools to sign files. Since my Ubuntu build had gone haywire I tested with cygwin using modified mkbootimg and unpackbootimg files modified for cygwin and modded the LG script to suit them but some of the LG signature files were binary and cygwin could not run them. I then proceeded to fix my Ubuntu build which took awhile. Then I remembered I installed Ubuntu 64 bit and had to install 32bit libraries lol. Is our recovery image signed? I signed a cwm touch recovery for our phone, pushed it to mine and used adb reboot recovery in which I got an android with a triangle in it. If it is signed I would have got a secure error..... I just unpacked my boot. Image made a few small changes (like removing wallpaper from starting up) and repacked it. Tomorrow I will sign it and see if it boots. O yea, can anybody link me a unlockable x block please
Sent from my LG-P769 using xda app-developers app
Sorry I didn't send it to you, I'll upload in a bit. I know it is unlocked, I never flash a new x-loader.
Sent from my LGMS769 using xda app-developers app
Hello,
Today I updated my phone using http://forum.xda-developers.com/showthread.php?t=1678690 and FlashTool.
Now I want to root it.
Most tutorials tell me to get CWM first and then install SuperSU (Or whatever I want) while others tell me to use a pre-flashed filesystem.
Since I prefer to not to do the latter, and the first is impossible without already having root, I saw there was a way to boot a kernel which includes CWM. (Or at least I think it does, since I haven't tried it yet)
However, I can't download it due to 4shared and I prefer things the hard way.
Anyway, can anyone give me general instructions to how to make my own kernel?
I'm asking for something like: Exrtact a kernel using X, place CWM files in Y, etc... (Maybe I have to compile something?)
Or maybe you know some wiki/forum page which can explain this to me.
Thanks in advance.
BTW, I'm on linux.
Sooo... I found the answer on my own
Looks like CWM recovery is already compiled in the CyanogenMod default kernels for the neoV.
Just use those, or compile it by yourself using the guide on their site.
load the kernel by booting into fastboot and using "fastboot boot boot.img" on a computer.
You have to press volumeup repeatedly while booting the kernel to enter CWM.
You will need an unlocked bootloader for that...
Sent from my Xperia Neo V using xda app-developers app
Attitude.SSJ said:
You will need an unlocked bootloader for that...
Click to expand...
Click to collapse
Sorry, forgot to mention
best is to use x-parts if you are on locked bootloader.. or else every custom kernel comes with a recovery along for our device..
Regards,
vishal_android freak