Tizen App Store TPK for RD-PQ - Tizen Software Development

Any one tried to install or do have an Tizen Store app for RD-PQ device?

Did you check Z130 Firmware files?
Tizen Store is inside... but not as installable TPK... in my opinion...
It is spread... inside system files... somewhere...
http://forum.xda-developers.com/showpost.php?p=57932768&postcount=155
http://forum.xda-developers.com/showpost.php?p=57960088&postcount=158
And in my opinion also KO is RD-PQ is Tizen 2.2...
Z1 is Tizen 2.3...
So I think Samsung prevent this compatibility...
Btw...
Is someone able to use Samsung Account for India to check:
http://www.tizenstore.com/
Best Regards

My fault...
Here is extracted files... from Z130 Firmware for study...
Maybe somewhere is fallback package like Kona in bada world... not found yet...
Best Regards

adfree said:
Did you check Z130 Firmware files?
Tizen Store is inside... but not as installable TPK... in my opinion...
It is spread... inside system files... somewhere...
http://forum.xda-developers.com/showpost.php?p=57932768&postcount=155
http://forum.xda-developers.com/showpost.php?p=57960088&postcount=158
And in my opinion also KO is RD-PQ is Tizen 2.2...
Z1 is Tizen 2.3...
So I think Samsung prevent this compatibility...
Btw...
Is someone able to use Samsung Account for India to check:
http://www.tizenstore.com/
Best Regards
Click to expand...
Click to collapse
tried to install the Tizen 2.3 firmware on RD-PQ but did not work

Please remember you could kill RD-PQ...
Because sboot aka Bootloader is inside Z130 Firmware...
Remember you can not take RD210 Firmware for RD-PQ...
INCOMPATIBLE...
Best Regards

Updates
Gear Manager has been updated:
http://www.tizenexperts.com/2015/01/gear-manager-updated-to-version-2-2-15011799-problem-need-a-fix/
Also the Samsung Z1 User Manual is available to download:
http://www.tizenexperts.com/2015/01...ne-sm-z130hds-user-manual-available-download/

http://forum.xda-developers.com/showpost.php?p=59882041&postcount=121
TPK from Z1...
Tizen Store 1.2.1 inside...
I have no RD-PQ for test...
But maybe 1 day someone can test and report, if any reaction on Tizen 2.3 RD-PQ is possible...
Best Regards
---------- Post added at 04:27 AM ---------- Previous post was at 04:08 AM ----------
Code:
C:\SDB>sdb install store.tpk
pulled store.tpk 100% 3MB
1 file(s) pulled. 0 file(s) skipped.
store.tpk 5740 KB/s (3485911 bytes in 0.593s)
path is /opt/usr/apps/tmp/store.tpk
__return_cb req_id[1] pkg_type[coretpk] pkgid[org.tizen.tizenstore] key[start] val[install]
__return_cb req_id[1] pkg_type[coretpk] pkgid[org.tizen.tizenstore] key[install_percent] val[30]
__return_cb req_id[1] pkg_type[coretpk] pkgid[org.tizen.tizenstore] key[install_percent] val[60]
__return_cb req_id[1] pkg_type[coretpk] pkgid[org.tizen.tizenstore] key[install_percent] val[100]
__return_cb req_id[1] pkg_type[coretpk] pkgid[org.tizen.tizenstore] key[end] val[ok]
spend time for pkgcmd is [17379]ms
Short tested with Tizen SDK 2.3 Rev1 Emulator...
Seems Certificates are proper installed...
But App not launch...
Maybe later I can see whats wrong or whats missing...
No idea if RD-PQ have similar Certs installed like Z1... or like SDK Emu...
Best Regards

Vidmate tpk z2

Related

[DEV] FBOOT - FOTA bootloader

Hello
I treat this thread as DEVELOPMENT focused, so please keep non-technical questions and all the excitement aside and use it strictly for the technical discussion.
As most of you have been able to witness, FOTA seems the right track for bypassing bada bootloader security.
During the Android porting we have found ourselves in the situation where we developed a fairly simple asm code for the purpose of loading and booting Android.
A successful attempt has some important limitations, though. One major is strict dependency from the bada bootloader level 3 (BL3) that we used to interact with the hardware for us and provide filesystem abstraction. I feel that main reason for that happening was coming directly from what was the biggest advantage in the beginning - simplicity of building crafted FOTA module from asm.
Since the time I've made the discovery of the FOTA vulnerability (as described initially here) and after I provided sample framework for building crafted FOTA file for fasmarm (see here) only b.kubica and Rebellos took over and made it into the FOTA booting Android. That approach required installing specific bootloader version in the phone and used patched I9000 secondary bootloader (SBL), as we needed it to correctly initialize the display for the kernel.
The first attempt to make it more universal was proposed, but it still only introduced additional abstraction layer for BL3 calls and was using the very same assembler framework.
I'd like to change something again and therefore, I've scratched a new framework for building FOTA. This time, it is using a proper gcc toolchain and quickly jumps a level higher in abstraction - into C/C++ code. Linker scripts provide abstraction for building the right FOTA file headers and footers for:
- S8500 running bada 1.x
- S8500 running bada 2.x
- S8530 running bada 1.x
- S8530 running bada 2.x
All four targets are built from same source files with a single 'make'. I tested all that by writing FLOCK (that still is BL3 dependent but written in C).
In my opinion, it should allow us to get into development of the modules handling hardware, filesystem, etc. by ourselves (or simply building that from external source codes handling that) resulting in full independence from version of the bootloader installed.
Now we get to the right question - do you have suggestions as for what opensource bootloader project we should integrate into FOTA? I've done a proof-of-concept integration of u-boot and it compiles flawlessly (of course, getting it to run is whole other story as there's lots of low-level initialization procedures to be rewritten). Please answer with some supporting arguments as it's not voting and would prefer a discussion and picking the right solution.
The second thing - is there anybody with the know-how and interest in this development? I'd like to share the code and support it only in some spare time, so it would be perfect if somebody took it over.
Again, please keep this thread clean - strictly technical discussion here.
Regards,
mijoma
b.kubica has awesome demonstrate with bTerm and unsecdload.fota:
- dump NAND for Backup or study...
- bypass apps_compressed.bin Integrety check.
It would be nice, if this could be combined and/or port for S8530 too.
I wished I could dump with bTerm also in bada 2.0.
I saw only Rebellos did something with bTerm...
Also I miss Upload to...
http://forum.xda-developers.com/showthread.php?t=1176189
Thanx in advance.
Best Regards
One of the logical alternatives for uBoot is Qi from OpenMoko, it is much more simple, but that brings more limitations. And I haven't seen S5PC110 support in there. So some S3C cpu driver would need to be updated.
http://wiki.openmoko.org/wiki/Qi
Also leaked Loke for Spica could be used - it has got also S3C drivers (S5P~~is only abit updated S3C arch) already done for S3C64xx, so the cpu-driver the same as above.
Writing bootloader from scratch is rather pointless and I'd anyway use uBoot for that project - there already exists fully working sources for Odroid, that is Hummingbird based. But not much more we can do than hope some dev suddenly pop out of nowhere and join the project.
OK.
It's been a while and there has not been any activity around.
My time availability is completely not there as well. The least I can do is to upload something I had started months ago and never continued.
Maybe somebody experimenting with FOTA can use it at some point, maybe not.
In the attachment there's a project to be built using gcc toolchain (I used the one from bada SDK). It's rather simple but it already implements some of the lowest level stuff so the entry point is in C already and produces all 4 platforms (S8500 bada 1.x, S8500 bada 2.x, S8530 bada 1.x, S8530 bada 2.x) in one go.
I don't say it's an easy go from now, but you can use it however you wish and I hope it may be of some help at some point.
Best Regards,
mijoma
Please.
Maybe mijoma or Rebellos could answer.
1.
Oleg_K replaced bada boot_loader.mbn in OneNAND...
If correct, how he was able to use other Boot?
I was never able to write Original Boot of my own choice with RIFF (JTAG)...
2.
As test device for Bootloader action I think S8000 Jet is perfect...
- cheap on Ebay...
- "similar" to S8500 but much less secured...
Maybe if Devs have S8000 for training...
Maybe this could little bit increase progress... about Bootloader functions... and or MODEM AMSS...
3.
It seems with CMM Script and JTAG (100% confirmed) it is possible to disable some of Bootloader Security... also few Commands (idea)... maybe...
Code:
UnlockSecBoot
PrtSecBoot
http://forum.xda-developers.com/showpost.php?p=32611984&postcount=59
Maybe with FOTA it is possible to disable complete Boot Security and then remove/replace Boot by something else...
In my case I "need" XXJB6 bada complete... So XXJB6 Boot one day on my S8500 would be nice to see... :angel:
Best Regards
adfree said:
1.
Oleg_K replaced bada boot_loader.mbn in OneNAND...
If correct, how he was able to use other Boot?
I was never able to write Original Boot of my own choice with RIFF (JTAG)...
Click to expand...
Click to collapse
It is possible to replace the whole bootloader chain. Rebellos looked at the options and it comes out that depending on the data in the iRAM each bootloader stage will perform or not a verification of the next bootloader stage.
The bootloader that is used by Unbrickable Mod for our processor (used by Odroid project originally) is braking the chain of trust and this is the possibility to write whatever.
adfree said:
2.
As test device for Bootloader action I think S8000 Jet is perfect...
- cheap on Ebay...
- "similar" to S8500 but much less secured...
Maybe if Devs have S8000 for training...
Maybe this could little bit increase progress... about Bootloader functions... and or MODEM AMSS...
Click to expand...
Click to collapse
You should forget about S8000. It helps us in no way and there's no compatibility between the devices.
adfree said:
3.
It seems with CMM Script and JTAG (100% confirmed) it is possible to disable some of Bootloader Security... also few Commands (idea)... maybe...
Code:
UnlockSecBoot
PrtSecBoot
http://forum.xda-developers.com/showpost.php?p=32611984&postcount=59
Maybe with FOTA it is possible to disable complete Boot Security and then remove/replace Boot by something else...
In my case I "need" XXJB6 bada complete... So XXJB6 Boot one day on my S8500 would be nice to see... :angel:
Click to expand...
Click to collapse
It is possible to disable security with JTAG but work will focus on the development platform that does not require JTAG. It will most probably allow using other bootloaders, but XXJB6 is nothing really special. I would rather like to see something (u-boot based possibly) being able to flash bada and android to OneNAND (not moviNAND as current) and run both without the security
Rebellos checked the partition map and it may be even possible to fit both systems into OneNAND if there wouldn't be FOTA installed.
FOTA may be used at the beginning of the process as there's no better place to start with diagnostics, modifications to memory, flashing of unsecure components and so.
S8600XXKL1_S8600OXCKL3_TPH
S8600JVKK4_S8600XFVKK1_XFV
S8600DXLD1_S8600OLBKK6_XXV
S8600DXLD1_S8600OLBKK6_XME
S8600JVKK4_S8600OJVKK2_XFE
S8600DXKK6_S8600OLBKK6_XSP
S8600DXLD1_S8600OLBKK6_XEV
S8600DXLD1_S8600OLBKK6_XTC
S8600XXKK7_S8600OXEKL1_VHC
S8600XXLD1_S8600OXDLD2_XSK
S8600XXLD1_S8600OXDLD2_XEH
S8600XXLA1_S8600OXDLA1_VDC
S8600BOKK6_S8600TMZKK6_TMZ
S8600JPLB1_S8600OJPLB1_TMC
S8600DXLD1_S8600OLBKK6_THL
S8600XXLD1_S8600OXDLD2_XEZ
S8600JPKL1_S8600OJPKK3_AFG
S8600XXKK7_S8600OXFKL1_SEB
S8600XXLD1_S8600OXELD1_SKZ
S8600XXKK7_S8600OXEKK5_SEK
S8600XXKK7_S8600OXCKK1_PHE
S8600JPLD1_S8600OJPLB1_THR
S8600XXLD1_S8600OXELD1_MTS
S8600AELE1_S8600SFRLE1_SFR
S8600XXKK7_S8600OXFKK7_MTL
S8600JPKL1_S8600OJPKK3_PAK
S8600JPLD1_S8600OJPLB1_MWD
S8600XXLC3_S8600PRTLC4_PRT
S8600XXLA1_S8600OXBLA1_NEE
S8600JPLA1_S8600OJPKK3_MID
S8600JPKL1_S8600OJPKK3_JED
S8600JPKL1_S8600OJPKK3_KSA
S8600FRLE1_S8600LPMLE1_LPM
S8600XXLD1_S8600OXELD1_KCL
S8600XXLD1_S8600ITVLD2_ITV
S8600BVLD2_S8600FTMLD2_FTM
S8600JPKL1_S8600OJPKK3_BTC
S8600JPKL1_S8600OJPKK3_EGY
S8600JVKK4_S8600OJVKK2_AFR
S8600XWLD2_S8600OXGLD1_ATO
S8600JPKL1_S8600OJPKK3_ABS
S8600NAKL1_S8600EPLKL1_EPL
S8600XXLC3_S8600OXFLD1_COA
S8600XWLD2_S8600OXGLD1_BSE
Maybe luck and ELF files in 1 package...
Best Regards
ELF can be only Operator firmwares (If it has).Because mostly it is been on operator firmwares
If I have enough space on HDD,I'll check all
how to flash?
hi, i dont get it how to flash android onto wave 1. And i cant find a download link Can anyone help me? I downloaded Odin but I cant do anything with it. Can anyone write a short tutorial for that? Sorry, i gave up already to find it out myself.
Thanks,
hacker
Wave 525
Can you create fotabootloader for wave 525 ? is it possible?
By_KeReMM said:
Can you create fotabootloader for wave 525 ? is it possible?
Click to expand...
Click to collapse
Most likely no.
Rebellos said:
Most likely no.
Click to expand...
Click to collapse
ok.
wave 575 bada 2.0 port wave 525? most likely yes. because same drivers. my friends wave 723 bada 2 firmware ported wave525 but phone always restart. all low wave phones same boot files. i tested it. is you port bada 2 files for wave 525? i test it.
Sorry ,bad my english
Theory! If we change in 575's bootfiles phone model to 525 then you'll chance
But You'll brick your handset
hero355 said:
Theory! If we change in 575's bootfiles phone model to 525 then you'll chance
But You'll brick your handset
Click to expand...
Click to collapse
No Theory. Real! i tested all boot files for low waves in my phone. Worked! but wave 533 boot files bricked my handset
it is Possible! Coming Soon! Next Summer! i will work this subject.
@ By_KeReMM
Check this out:
http://forum.xda-developers.com/showthread.php?t=1325713
Maybe search Internet for existing ELF files for Broadcom...
BCM21331.elf & CORBY_WEBKIT.elf
Click to expand...
Click to collapse
Maybe this help...
Best Regards
adfree said:
@ By_KeReMM
Check this out:
http://forum.xda-developers.com/showthread.php?t=1325713
Maybe search Internet for existing ELF files for Broadcom...
Maybe this help...
Best Regards
Click to expand...
Click to collapse
i dont understand but i checked this.
is 7230 and 7230E same phones? 2 links not work "No Torrents Found".
if port boot files and apps_c... , i Ported all fw files. i'll test it. all files work! but apps_c... not extract
Sorry , Bad English.
10 years later...
After reading little bit... and after Editing 2 files...
I was able to compile demo sources... :good:
http://forum.xda-developers.com/showpost.php?p=34856402&postcount=4
make.cmd and Makefile
Edited to correct path to my installed bada SDK.
So it is easy...
1 click compiling... after start make.cmd.
Now I play little bit...
Thank you mijoma.
Best Regards
---------- Post added at 02:11 AM ---------- Previous post was at 01:46 AM ----------
Lesson 1.1
Inspired by Tigrouzen nandbootsd.fota ASCII Pic... :good:
Thanx.
Open with Text Editor
FOTA.c
Code:
[B]disp_FOTA_Printf[/B]("| Author: mijoma |");
Now you can try text or ASCII Pics...
Later I will write how many lines max. possible...
Best Regards
---------- Post added at 02:36 AM ---------- Previous post was at 02:11 AM ----------
Code:
#include <string.h>
#include <stdarg.h>
#include "BL3.h"
int main(void)
{
//here we start the real deal :)
int mmuctrl = MemMMUCacheEnable(gMMUL1PageTable, 1);
disp_FOTA_[B]Init[/B]();
disp_FOTA_Printf("*----------------------------*");
disp_FOTA_Printf("| FOTA TESTLOADER |");
disp_FOTA_Printf("*----------------------------*");
disp_FOTA_Printf("| Author: mijoma |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("| |");
disp_FOTA_Printf("*----------------------------*");
disp_FOTA_Printf("");
//.... Your code here...
//loop infinitevely
while(1);
return 0;
}
Here you can see maximal visible lines for output of text...
I can count 24 lines... tested on S8500.
Best Regards
P.S.:
IMPORTANT!!!
Remember if you play with BOOT or FOTA or whatever on your handset...
ALL at YOUR own risk!
Edit 1.
It seems each line can have 30 Characters...
So 30 x 24 = 720
@adfree:
So... does it work? I'm not sure if we ever tested it. ;D
So... does it work? I'm not sure if we ever tested it.
Click to expand...
Click to collapse
Yes, I can see text Output on my S8500 (XXLA1). :good:
Later I will try if S8530 also would work...
No idea... is M210S confirmed meanwhile ? Not sure if S8530 FOTA would work in M210S Firmware...
I could later try with S8500... and M210S Firmware...
Best Regards
adfree said:
Yes, I can see text Output on my S8500 (XXLA1). :good:
Later I will try if S8530 also would work...
No idea... is M210S confirmed meanwhile ? Not sure if S8530 FOTA would work in M210S Firmware...
I could later try with S8500... and M210S Firmware...
Best Regards
Click to expand...
Click to collapse
Truely its mine "ascii" in fota and we made it (With T) in .asm and Fasm compiler but i cant get working this.I tested this no output no boot but it can boot only bada . Mine bootloader is kk5

Work on FOTA starts for AndroBada525......your help required

http://theteamk.x10.mx/index.php?topic=153.0
The Team K Developers have started the work on fota to end the prolonged wait of android on wave 525.developers r requested to please post some codings so that the project can be completed soon.please keep dis thread development focussed and clean.
After a lot of research the forum users have found the brcm2133.elf and wave 525 fota which can be decoded using IDA PRO DISASSEMBLER.
Anyone who can help can come forward and help
Thanks
I HAVE FOUND BCM21331.elf IN SAMSUNG CORBY s3653w FIRMWARE FILE. THERE IS ALSO WEBKIT.elf. DOWNLOAD IT FROM HERE(it is contained in firmware):
Click to expand...
Click to collapse
Please.
Need BCM21331.elf for study...
Where to download?
You can write PM. :angel:
Thanx in advance.
Best Regards
adfree said:
Please.
Need BCM21331.elf for study...
Where to download?
You can write PM. :angel:
Thanx in advance.
Best Regards
Click to expand...
Click to collapse
http://mediafire.com/?uxhiu82ffwcrvue
u can download brcm21331 from the above link.it is present in the SAMSUNG CORBY s3653w FIRMWARE FILE
Thanks
It seems BCM21331.elf of S3653WDXJG2 is apps_compressed.bin... not Bootfiles...
http://forum.xda-developers.com/showthread.php?t=1325713
Code:
ELF_MAP
BCM21331.csi 9 MB
BCM21331.elf 327 MB
BCM21331.map 125 MB
BCM21331.sym 41 KB
WEBKIT.elf 167 MB
Seen from S3850... but no valid Downloadlink...
Best Regards
reply
adfree said:
It seems BCM21331.elf of S3653WDXJG2 is apps_compressed.bin... not Bootfiles...
http://forum.xda-developers.com/showthread.php?t=1325713
Code:
ELF_MAP
BCM21331.csi 9 MB
BCM21331.elf 327 MB
BCM21331.map 125 MB
BCM21331.sym 41 KB
WEBKIT.elf 167 MB
Seen from S3850... but no valid Downloadlink...
Best Regards
Click to expand...
Click to collapse
i didnt understand
did mediafire say that the download link was not valid
anyway i will upload the elf file today( i have downloaded it )
i dont think that the elf file is apps compressed.bin
u can check it out yourself after i upload the file
Thanks
request
i also request the moderators and administrators to make this thread sticky
Thanks
anyway i will upload the elf file today( i have downloaded it )
Click to expand...
Click to collapse
NO. Thank you.
I have this file. :angel:
But this is apps_compressed.bin... NOT Bootloader and it is only 1 file of 3 or 4 files...
Missing, because maybe helpfull...
Code:
BCM21331.csi
BCM21331.map
BCM21331.sym
So it is maybe less helpfull to find correct ""FOTA values"" to make such output + more...
http://forum.xda-developers.com/showthread.php?t=1496729
Best Regards
i am not really well versed with the coding
do u need BCM21331.csi
BCM21331.map
BCM21331.sym files ?
Thanks
anyway here is the brcm21331.elf for all other devs
http://d-h.st/VMs
Thanks
devs please help and contribute to this thread
i am using ida pro to decode the brcm21331.elf but need help on how to use this software
Thanks
Again...
Check this Thread...
http://forum.xda-developers.com/showthread.php?t=1496729
From S8500...
Code:
#include "BL3.h"
unsigned long c_[B]MemMMUCacheEnable[/B][] = { [COLOR="Red"]0xaab9f874,[/COLOR] 0 };
unsigned long c_[B]disp_FOTA_Init[/B][] = { [COLOR="Red"]0xbfab9174[/COLOR], 0 };
unsigned long c_[B]disp_FOTA_Printf[/B][] = { [COLOR="Red"]0xb69c410b[/COLOR], 0 };
unsigned long c_[B]OemSysGetSystemInfo[/B][] = { [COLOR="Red"]0xc3ac31a5[/COLOR], 0 };
unsigned long *fun_crc[i_endMarker] = {c_MemMMUCacheEnable,
c_disp_FOTA_Init,
c_disp_FOTA_Printf,
c_OemSysGetSystemInfo
};
This is what you need to find... MINIMUM.
This what we can find in BL3_univ.elf + BL3_univ.map
These files are from BOOTLOADER...
BCM21331.elf is ELF file of apps_compressed.bin...
You can NOT find this text in BCM21331.elf
Code:
MemMMUCacheEnable
disp_FOTA_Init
disp_FOTA_Printf
OemSysGetSystemInfo
So I am pretty sure... 51 % that BCM21331.elf is WRONG file to find correct values...
Anyway. With study of BCM21331.elf maybe someone can better understand how SHP/MOCHA Security etc. work...
Good luck.
Best Regards
adfree said:
Again...
Check this Thread...
http://forum.xda-developers.com/showthread.php?t=1496729
From S8500...
Code:
#include "BL3.h"
unsigned long c_[B]MemMMUCacheEnable[/B][] = { [COLOR="Red"]0xaab9f874,[/COLOR] 0 };
unsigned long c_[B]disp_FOTA_Init[/B][] = { [COLOR="Red"]0xbfab9174[/COLOR], 0 };
unsigned long c_[B]disp_FOTA_Printf[/B][] = { [COLOR="Red"]0xb69c410b[/COLOR], 0 };
unsigned long c_[B]OemSysGetSystemInfo[/B][] = { [COLOR="Red"]0xc3ac31a5[/COLOR], 0 };
unsigned long *fun_crc[i_endMarker] = {c_MemMMUCacheEnable,
c_disp_FOTA_Init,
c_disp_FOTA_Printf,
c_OemSysGetSystemInfo
};
This is what you need to find... MINIMUM.
This what we can find in BL3_univ.elf + BL3_univ.map
These files are from BOOTLOADER...
BCM21331.elf is ELF file of apps_compressed.bin...
You can NOT find this text in BCM21331.elf
Code:
MemMMUCacheEnable
disp_FOTA_Init
disp_FOTA_Printf
OemSysGetSystemInfo
So I am pretty sure... 51 % that BCM21331.elf is WRONG file to find correct values...
Anyway. With study of BCM21331.elf maybe someone can better understand how SHP/MOCHA Security etc. work...
Good luck.
Best Regards
Click to expand...
Click to collapse
Thanks for the clarification.
In the FOTA editing,are you guys using asm coding language ?
What minimum do i need to find?
Thanks
This whole thread and idea is wrong at this moment. FOTA exploit has been confirmed to work only for bootloaders of S8500 and S8530. There is no clue if there's such security flaw present in 525 - ergo, you should start with looking for security hole, and then writing exploit to utilise it instead of writing exploit without even knowing if there's anything to exploit literally.
FOTA exploit has been confirmed to work only for bootloaders of S8500 and S8530. There is no clue if there's such security flaw present in 525 - ergo, you should start with looking for security hole...
Click to expand...
Click to collapse
We all know it was looooooong way between first text output and later magic things with FOTA for S8500 and S8530... like zImage start for Android and so on...
http://forum.xda-developers.com/showthread.php?t=1020444
Short look into GT-S5250_Training_Manual_SW.ppt
1.
FOTA file used...
Code:
bplib_S5250OpenEuropeSlav.fota
Chance "high" to generate text ouput. :angel:
1.1
Broadcom Mobile Trace Terminal
Click to expand...
Click to collapse
Not found yet... maybe same like WinComm...
2.
Btw...
_uart_bootloader
Code:
boot1a.img
boot1b.img
boot2.img
onenandboot_4k.img
What is this? Found in
Code:
S5250XEJI4.rar
S5250XEJI6.rar
I have NO Broadcom devices for tests... also NOT in future...
Find your own solution, with your own way...
Best Regards
P.S.:
If way found for zImage start... you need your own/new Broadcom team...
Sorry.
Thank you everyone for any input you are giving
Rebellos thank u very much that fact was an eye opner
I will be really grateful to u guys if you can tell me on how u guys came to know the security loophole.Any kind of help is greatly acknowleged.Again I would like to thank adsfree and rebellos for their contributions to this thread and the facts
I've made a 20 minutes exercise - I downloaded bootfiles from S5250 (S5250XXJK2) and disassembled boot2.img using a guess that the bootloader is loaded at 83E00000. Easily found FOTA code similar to S8500. The binary is loaded from flash address 07E00000 to RAM 85200000 and executed there if the BPDZ marker is available (apps and fota file is checked as well), just as in S8500. The difference is switch arm32 and thumb mode.
In the attachment I've provide a sample fota file along with asm sources. That's all I can help. There's so much more things to be handled since this moment, but it's your job if you are to be capable of continuing any porting project. Please be aware that this is a hopeless task and you do it for fun and exploring. A finished port is not likely to be ever achieved unless you have a device with exactly same board (not only microcontroller, but display, radio, camera, wifi, sensors, etc) as another android device.
canu guys tell me how u decoded boot2.img
i mean using which software and how did u get the code
please help
Thanks
Maybe you could try what mijoma attached...
S5250_src.zip
Especially this file:
S5250_fota_base.fota
Feedback help if it work or not...
Best Regards
u did not understand what i said
i asked how u decoded boot2.img and using which software and how did you get the code
u did not understand what i said
Click to expand...
Click to collapse
Few answers are given...
Now mijoma offered FIRST solution for testing...
S5250_fota_base.fota
Now waiting for someones test feedback...
mijoma has NO broadcom device for testing...
Me too...
So you or other S5250 users...
I have also asked in German Thread...
http://www.handy-faq.de/forum/samsu...sion_download_freigegeben-11.html#post2541317
I can also not seen here in your Thread test result...
http://androbada525.hj.cx/index.php/topic,153.15.html
Best Regards

[Q] WiFi issue on Tizen 2.3 on RD-PQ (M0)

I've found my RD-PQ on the shelf and decided to upgrade it to 2.3
That was a pretty easy procedure, although with 2.3 it's totally empty.
The most discouraging thing is that WiFi fails to connect.
There are several mentions of that problem at https://developer.tizen.org/ru/forums/general-support/tizen-2.3-rd-pq-device-available but no solutions or at least clues there.
Are there any options to debug it?
The only thing I could imagine was to connect to device console in sdb and check wpa_supplicant that was working somehow.
With 2.2.1 WiFi works fine.
What else can be done around it?
Ya need driver isntalled I think. Drivers is non free licensed and ya need to ask for it somewhere in dear Samsung company.
Tolko schas uvidel... Napishi na maemo.su, sprosi u Kirilla, k primeru, bolshe tolku budet. Zdes ne populyaren Tizen.
I have my RD-PQ only since 1 month... so I am newbie...
Since yesterday I saw first time 2.3.1 and WiFi complete not work... not able to find any thing... Scan not finish...
Installed files...
Code:
tizen-2.3.1-mobile_20150921.1_mobile_boot.tar.gz
[B]tizen-2.3.1-mobile_20150921.1_mobile_target.tar.gz[/B]
Then I have only flashed filesystem:
Code:
[B]tizen-2.3-mobile_20150812.1_mobile_target.tar.gz[/B]
So I mixed 2.3.1 Kernel with Filesystem from 2.3... and my WiFi now detect devices + I am able to connect to hidden network.
I need something to install to check if connection is not fake... but for now this is more as 2.3.1
I will later compare...
If usr/apps is bigger difference... between 2.3 and 2.3.1...
Later more...
Best Regards
---------- Post added at 05:28 PM ---------- Previous post was at 04:37 PM ----------
Code:
2.3.1 WiFi not work
sh-4.1# cd usr
sh-4.1# ls
apps etc lib local sbin src tmp
bin games libexec opt share ssl ug
sh-4.1# cd apps
sh-4.1# ls
cert-svc-ui org.tizen.poweroff-syspopup
org.tizen.app-selector org.tizen.quickpanel
org.tizen.bluetooth-share-ui org.tizen.setting
org.tizen.bt-syspopup org.tizen.setting-location
org.tizen.calendar-notification org.tizen.system-signal-sender
org.tizen.crash-popup org.tizen.system-syspopup
org.tizen.crash-viewer org.tizen.task-mgr
org.tizen.data-provider-slave org.tizen.usb-syspopup
org.tizen.datausage-syspopup org.tizen.usbotg-syspopup
org.tizen.download-manager org.tizen.volume
org.tizen.gps-syspopup org.tizen.wallpaper-ui-service-lite
org.tizen.host-devices org.tizen.widget_viewer_sdk
org.tizen.indicator org.tizen.wifi-direct-popup
org.tizen.installer setting-myaccount-efl
org.tizen.lockscreen setting-wifidirect-efl
org.tizen.lowbat-syspopup smartcard-service-server
org.tizen.lowmem-syspopup ug-bluetooth-efl
org.tizen.menu-screen ug-isfsetting-efl
org.tizen.mmc-syspopup ug-setting-mobileap-efl
org.tizen.mode-syspopup wifi-efl-ug
org.tizen.policy
----------------
2.3 WiFi work for me
sh-4.1# ls
cert-svc-ui org.tizen.policy
livebox.web-provider org.tizen.poweroff-syspopup
org.tizen.app-selector org.tizen.quickpanel
org.tizen.bluetooth-share-ui org.tizen.setting
org.tizen.bt-syspopup org.tizen.setting-location
org.tizen.calendar-notification org.tizen.system-signal-sender
org.tizen.crash-popup org.tizen.system-syspopup
org.tizen.crash-viewer org.tizen.task-mgr
org.tizen.data-provider-slave org.tizen.usb-syspopup
org.tizen.datausage-syspopup org.tizen.usbotg-syspopup
org.tizen.download-manager org.tizen.volume
org.tizen.gps-syspopup org.tizen.wallpaper-ui-service-lite
org.tizen.host-devices org.tizen.wifi-direct-popup
org.tizen.indicator setting-myaccount-efl
org.tizen.installer setting-wifidirect-efl
org.tizen.lockscreen smartcard-service-server
org.tizen.lowbat-syspopup ug-bluetooth-efl
org.tizen.lowmem-syspopup ug-isfsetting-efl
org.tizen.menu-screen ug-setting-mobileap-efl
org.tizen.mmc-syspopup wifi-efl-ug
org.tizen.mode-syspopup
sh-4.1# launch_app wifi-efl-ug
... successfully launched
sh-4.1# cd wifi-efl-ug
sh-4.1# ls
bin lib res shared
sh-4.1# cd bin
sh-4.1# ls
wifi-efl-UG
Will try to concentrate on wifi-efl-ug...
Will try to dump both folders from 2.3 and 2.3.1 and compare...
Will also better sort, seems more apps installed...
Best Regards
Pulled from working 2.3 filesystem...
Now I have flashed back to 2.3.1...
Need some time to check content... compare and so on...
Added WiFifrom231rdPQ.rar from 2.3.1 filesystem... NOT work for me.
Short compared and I can see major differences...
Code:
rm -r wifi-efl-ug
Delete in shell work... so I will try to replace folder with content of 2.3...
Later more...
Thanx for this info via PM...
But I can't try self as stupid me killed my RD-PQ...
But maybe someone else find this info usefull...
nice user said:
...I know how to fix the wifi connection on Tizen 2.3 and 2.3.1 for a RD-PQ device. The problem is that some links in the os are not properly created.
Basically you need to install the usleep package (https://download.tizen.org/releases...rmv7l/packages/armv7l/usleep-1-5.2.armv7l.rpm), it's for Tizen 2.2.1, but it does work for 2.3 and 2.3.1. After that, create two links that the wlan.sh shell script is expecting, and are not in the proper location.
ln -s /usr/sbin/modprobe /sbin/modprobe
ln -s /usr/sbin/rmmod /sbin/rmmod
Or, alternatively, you can pull the /usr/bin/wlan.sh file via sdb pull, change the /sbin/modprobe and /sbin/rmmod lines to /usr/sbin/modprobe and /usr/sbin/rmmod.
After doing that, from the phone, open Wifi and clicking on the green button will activate the wifi correctly and you will be able to connect to any wifi hotspot.
You can skip using the ui and perform the following commands :
/usr/bin/wlan.sh start
this will activate the wlan0 interface, which you can check by issuing a ifconfig command.
/usr/sbin/wpa_supp.sh start
this will start wpa supplicant.
Check if connmand is running (ps -ax and check the list), if not, you need to do :
systemctl start connman
systemctl enable connman
Click to expand...
Click to collapse
Thank you very much for this hint. :good:
Best Regards

Failed to upload certificate on TV 2.4

I have UE48J6250 TV, latest Tizen Studio. On TV Developer Mode is enabled. Remote Device Manager registered TV and I am connected. On top bar of Studio I can see UJ6200 and IP address of my TV.
In Tizen Studio I've created jQuery Navigation project and haven't modified any code. TV - 2.4.
Now I have successfully created certificates, including distribution one.
If I click on "Installed Web App List", I can see some of the apps installed.
When I click on Permit to Install Applications, I'm always getting Failed to upload certificate error.
Any clue what might be wrong?
Sorry.
I have nearly ZERO experience with TV...
Are you able to work with SDB?
Code:
sdb capability
This Command could show you something like this...
https://forum.xda-developers.com/showpost.php?p=69343637&postcount=51
Code:
secure_protocol:disabled
intershell_support:enabled
filesync_support:pushpull
usbproto_support:disabled
sockproto_support:enabled
rootonoff_support:enabled
zone_support:disabled
multiuser_support:disabled
cpu_arch:x86
profile_name:mobile
vendor_name:Tizen
[B]platform_version:2.4.0[/B]
product_version:unknown
sdbd_version:2.2.31
sdbd_plugin_version:unknown
syncwinsz_support:enabled
This is from Mobile... Platform means Tizen Version...
No idea if your TV supports this output or you are able to connect via:
Code:
sdb shell
And check what is inside folder:
/home/developer
No idea if I will increase my ""skills"" with Tizen Studio 1.1... and install TV profile...
Best Regards
adfree said:
Sorry.
I have nearly ZERO experience with TV...
Are you able to work with SDB?
Code:
sdb capability
This Command could show you something like this...
https://forum.xda-developers.com/showpost.php?p=69343637&postcount=51
Code:
secure_protocol:disabled
intershell_support:enabled
filesync_support:pushpull
usbproto_support:disabled
sockproto_support:enabled
rootonoff_support:enabled
zone_support:disabled
multiuser_support:disabled
cpu_arch:x86
profile_name:mobile
vendor_name:Tizen
[B]platform_version:2.4.0[/B]
product_version:unknown
sdbd_version:2.2.31
sdbd_plugin_version:unknown
syncwinsz_support:enabled
This is from Mobile... Platform means Tizen Version...
No idea if your TV supports this output or you are able to connect via:
Code:
sdb shell
And check what is inside folder:
/home/developer
No idea if I will increase my ""skills"" with Tizen Studio 1.1... and install TV profile...
Best Regards
Click to expand...
Click to collapse
That sheds some light at least... Thanks!
secure_protocol:enabled
rootcmd_support:disabled
zone_support:disabled
multiuser_support:disabled
cpu_arch:armv7
profile_name:tv
vendor_name:Samsung
platform_version:2.3.0
product_version:1.0
sdbd_version:2.2.17
sdb shell just says "closed" and jumping out of sdb.
Now there is no official way to develop on 2.3 TV, as far as I understand. From the other side, dozens of new apps are appearing weekly on my TV app store.
This looks interesting:
https://developer.tizen.org/forums/native-application-development/how-get-duid-samsung-smart-tv
Look at SDB hints... with repeadly...
Now I am trying to install TV extension to Tizen Studio 1.1
Only to play little bit around...
Wearables and TV is not soooo interesting for me... sorry.
So I have no real experience with TV... never seen Firmware nor other Stuff for research...
Best Regards
some progress has been made...
I've also downloaded old IDE, which is called Samsung TV IDE. Then I was trying to fight with certificates again. Since it is obsolete, the links are not working for generating new certificate. Importing also was not working - it was telling wrong password in XML. So what I did is I copied certificates from new Tizen Studio, where I generated certificates to samsung-tv-sdk-data\keystore, including device-profile.xml.
And to my big surprise, I was able to install certificate with old Samsung TV IDE! Then I tried to run app and it works as well!!!
Then I tried one step more - running app from new Tizen Studio, since certificate is already installed and what a magic, it also worked!
Now few questions, before I dive in:
- Tizen Studio is giving me the following error very often:
An internal error occurred during: "Compute launch button tooltip".
org.eclipse.core.internal.resources.File cannot be cast to org.eclipse.core.resources.IProject
Click to expand...
Click to collapse
- The guy from your link also asked the same question: how to install the app on TV, so it can be launched without using PC?
- How the certificates are being installed? Using sdb push? Which command exactly?
- Can I have any debug log output while my app is running? Currently when I am connecting to TV using remote device manager it says "Log is not supported. log is not available".
- I'm trying default AnalogWatch sample, which in index.html has the following: <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0">. However, the app is still running with scrollbars, means it is taking wrong screen size. How can I take the proper screen resolution?
Thanks a lot for your help.
Thanx for feedback about your progress. :good:
Yesterday I have installed Tizen Studio 1.1... TV extension
And first time I have created TV Profile in Emulator...
Also TV Emulator seems make same trouble with SDB...
No SDB as Security is fully enabled...
No Root
No access via SDB
No idea yet...
Later I will add output from SDB capability command
Here I have no idea...
----------------------------------------------------------------------------------------
Tizen Studio / SDK problems...
I have for instance Windows 7... 64 bit PC
Maybe if you share your Computer Config...
Windows Version?
Computer or Notebook?
Then maybe you can find somewhere answer in Internet...
For me it looks like... as Windows 10... and Notebooks have more troubles with Tizen SDK stuff...
Only idea.
Best Regards
---------- Post added 20th January 2017 at 12:22 AM ---------- Previous post was 19th January 2017 at 11:52 PM ----------
Code:
[B]sdb version[/B]
Smart Development Bridge version 2.3.0
[B]sdb capability[/B]
[COLOR="Red"][B]secure_protocol:enabled[/B][/COLOR]
[B][COLOR="Red"]intershell_support:disabled[/COLOR][/B]
filesync_support:push
usbproto_support:disabled
sockproto_support:enabled
syncwinsz_support:enabled
[COLOR="Red"][B]rootonoff_support:disabled[/B][/COLOR]
zone_support:disabled
multiuser_support:enabled
cpu_arch:x86
sdk_toolpath:/home/owner/share/tmp/sdk_tools
profile_name:tv
vendor_name:Samsung
can_launch:tv-samsung
platform_version:3.0
product_version:3.0
sdbd_version:2.2.31
sdbd_plugin_version:3.1.7_EM_REL
sdbd_cap_version:1.0
[B][COLOR="Red"]log_enable:disabled[/COLOR][/B]
log_path:/tmp
[B]sdb root on[/B]
Permission denied
[B]sdb shell[/B]
closed
closed
Oh, I have not seen TV Simulator... but this not work with SDB as it seems...
Result is from Emulator Manager... with latest SDB 2.3.0
I have no idea, how with easy steps enable SDB...
From capability... it looks like sdb push could work... maybe also:
Code:
[B]sdb install[/B]
Will try on Emulator...
But this is risky, if you not know what is inside... and how to remove...
Best Regards
---------- Post added at 12:35 AM ---------- Previous post was at 12:22 AM ----------
Code:
sdb push sdb.exe /home
WARNING: Your data is to be sent over an unencrypted connection and could be read by others.
pushed sdb.exe 100% 3163KB 4974KB/s
error: failed to close '/home/sdb.exe': Permission denied
Code:
sdb push sdb.exe /home/developer
WARNING: Your data is to be sent over an unencrypted connection and could be read by others.
pushed sdb.exe 100% 3163KB 4966KB/s
error: failed to close '/home/developer/sdb.exe': Permission denied
Code:
sdb install Line_101.wgt
WARNING: Your data is to be sent over an unencrypted connection and could be read by others.
pushed Line_101.wgt 100% 1883KB 0KB/s
1 file(s) pushed. 0 file(s) skipped.
Line_101.wgt 3964KB/s (1928439 bytes in 0.475s)
closed
closed
I had no better idea as copy sdb.exe... but failed into both path:
Code:
/home
/home/developer
Also sdb install seems not work... complete... maybe only first part... copy...
Best Regards
hello
did you find a solution to your problem?
i have the same problem
i cannot install with sdb (response : closed)
adfree said:
Thanx for feedback about your progress. :good:
Yesterday I have installed Tizen Studio 1.1... TV extension
And first time I have created TV Profile in Emulator...
Also TV Emulator seems make same trouble with SDB...
No SDB as Security is fully enabled...
No Root
No access via SDB
No idea yet...
Later I will add output from SDB capability command
Here I have no idea...
----------------------------------------------------------------------------------------
Tizen Studio / SDK problems...
I have for instance Windows 7... 64 bit PC
Maybe if you share your Computer Config...
Windows Version?
Computer or Notebook?
Then maybe you can find somewhere answer in Internet...
For me it looks like... as Windows 10... and Notebooks have more troubles with Tizen SDK stuff...
Only idea.
Best Regards
---------- Post added 20th January 2017 at 12:22 AM ---------- Previous post was 19th January 2017 at 11:52 PM ----------
Code:
[B]sdb version[/B]
Smart Development Bridge version 2.3.0
[B]sdb capability[/B]
[COLOR="Red"][B]secure_protocol:enabled[/B][/COLOR]
[B][COLOR="Red"]intershell_support:disabled[/COLOR][/B]
filesync_support:push
usbproto_support:disabled
sockproto_support:enabled
syncwinsz_support:enabled
[COLOR="Red"][B]rootonoff_support:disabled[/B][/COLOR]
zone_support:disabled
multiuser_support:enabled
cpu_arch:x86
sdk_toolpath:/home/owner/share/tmp/sdk_tools
profile_name:tv
vendor_name:Samsung
can_launch:tv-samsung
platform_version:3.0
product_version:3.0
sdbd_version:2.2.31
sdbd_plugin_version:3.1.7_EM_REL
sdbd_cap_version:1.0
[B][COLOR="Red"]log_enable:disabled[/COLOR][/B]
log_path:/tmp
[B]sdb root on[/B]
Permission denied
[B]sdb shell[/B]
closed
closed
Oh, I have not seen TV Simulator... but this not work with SDB as it seems...
Result is from Emulator Manager... with latest SDB 2.3.0
I have no idea, how with easy steps enable SDB...
From capability... it looks like sdb push could work... maybe also:
Code:
[B]sdb install[/B]
Will try on Emulator...
But this is risky, if you not know what is inside... and how to remove...
Best Regards
---------- Post added at 12:35 AM ---------- Previous post was at 12:22 AM ----------
Code:
sdb push sdb.exe /home
WARNING: Your data is to be sent over an unencrypted connection and could be read by others.
pushed sdb.exe 100% 3163KB 4974KB/s
error: failed to close '/home/sdb.exe': Permission denied
Code:
sdb push sdb.exe /home/developer
WARNING: Your data is to be sent over an unencrypted connection and could be read by others.
pushed sdb.exe 100% 3163KB 4966KB/s
error: failed to close '/home/developer/sdb.exe': Permission denied
Code:
sdb install Line_101.wgt
WARNING: Your data is to be sent over an unencrypted connection and could be read by others.
pushed Line_101.wgt 100% 1883KB 0KB/s
1 file(s) pushed. 0 file(s) skipped.
Line_101.wgt 3964KB/s (1928439 bytes in 0.475s)
closed
closed
I had no better idea as copy sdb.exe... but failed into both path:
Code:
/home
/home/developer
Also sdb install seems not work... complete... maybe only first part... copy...
Best Regards
Click to expand...
Click to collapse
Still my old LG TV is alive... So in near future no Samsung TV in my hands...
I have never own experiences with Samsung TV...
But still my "Google knowledge"...
Depend on Model... and on Firmware...
Samsung only increase Security... against all and everywhere...
So without knowing your TV Model... and maybe Firmware Version...
Best Regards
P.S.:
Own experiences with Tizen Mobile and Tizen Wearable...
Tizen su xxxx

Samsung Z2 experiments

I recently acquired a Samsung Z2 and have been working on trying to get it working at its full potential.
I have rooted the latest Indonesian firmware (BQD2) This is because I do not have an Indian Z2 to test with.
Thanks to @adfree for the help!
Here is the link: https://www.androidfilehost.com/?fid=818070582850505393
I am now working on trying to get android apps to show up on the main home screen.
One thing that I noticed is that the apk files in /opt/apps/ACL111OMWW/data/android/data/app are just symlinks to another area. You don't have to worry about replacing that apk "file". You only have to worry about the one it links to.
When you replace the linked apk in /usr/app/ with another android app, it just hangs at step 4. Now I just need to investigate more into the /usr/app/ directory.
Bro Don't Do this Because @adfree Already Have Did it..
Code:
[color=red] SDB
[/color]
But You Can Try. Also I can Help with You.
Clash Of Clans Must Be Important
And Also All Google Facility...
Go Ahead Bro......
forhadaliBan said:
Bro Don't Do this Because @adfree Already Have Did it..
Code:
[color=red] SDB
[/color]
But You Can Try. Also I can Help with You.
Clash Of Clans Must Be Important
And Also All Google Facility...
Go Ahead Bro......
Click to expand...
Click to collapse
SDB is different. That is the interface application that allows your computer to communicate with your tizen phone. Also, you need to have a rooted rootfs installed to get SDB Root enabled
Sent from my Q5 using XDA Free mobile app
iam Already Rooted My Z1...
Updates on my investigation into tpk files:
Thanks to the guy from Samsung for replying to my email in the Tizen mailing list and my question on stackoverflow: https://stackoverflow.com/questions/49637116/sha256-sum-is-not-sha256/49662083#49662083
NOTE: To sign and install tpks, you need a Samsung cert, not just a normal one which can be created once you install the certificate extension sdk. Not the standard cert manager.
Apparently the tizen-manifest file is the main important file. From there you can edit nearly everything important.
The ones you can safely edit are:
package
author
description
appid (which must match exec!)
exec
label
icon
I have not tested the editing of anything else.
ACL doesn't like it when you change things, so to make it scream less, you have to link the apk to the ACL folder.
You need to create a symbolic link to wherever the apk is stored in /opt/usr/apps/ACL111OMWW/data/android/data/app/
Once you do that, ACL will reach step 2 before failing. It will only reach step 2 after a reboot as otherwise it caches the app.
This is an immense step! We just have a little more to go and we can get Android apps running off of the Tizen app screen!
If anyone has any input, feel free to give it!
proof discord installs to the app screen: https://imgur.com/a/kYvD6
proof it reaches step 2: https://imgur.com/a/j4y5J
You Can Try with Both Method.Like Mobile Mini Shell And Tizen Studio For Pc
Plz Share Img In Xda
I have NOT so much time...
22nd March 2016, 02:18 PM
Click to expand...
Click to collapse
https://forum.xda-developers.com/showpost.php?p=65978699&postcount=259
This Modification work since 2 yearS +... for me...
Something similar I made for Wearables too...
To have all 3 Privileges too...
Code:
Public
Partner
Platform
And with HashSigner Script I can simple sign this crap...
Can not find yet better Link... but click somewhere here...
https://forum.xda-developers.com/showpost.php?p=70436534&postcount=384
To find my infos about "hashsigner.sh"...
This PKI sh it still s h it...
Best Regards
Edit 1.
I have no idea why since months for me search not work...
vBulletin Message
An error occurred while performing a Searchlight query:
expected searchd protocol version 1+, found version
If you followed a valid link, please notify the administrator.
Click to expand...
Click to collapse
Edit 2.
Found my post via Google...
https://forum.xda-developers.com/showpost.php?p=72204916&postcount=184
In theory I have more posts where this is posted:
Choose between 3 Commands...
Code:
hash-signer.sh -a -d /opt/usr/media/test
public level
Code:
hash-signer.sh -p partner -a -d /opt/usr/media/test
partner level
Code:
hash-signer.sh -p platform -a -d /opt/usr/media/test
platform level
adfree said:
I have NOT so much time...
https://forum.xda-developers.com/showpost.php?p=65978699&postcount=259
This Modification work since 2 yearS +... for me...
Something similar I made for Wearables too...
To have all 3 Privileges too...
Code:
Public
Partner
Platform
And with HashSigner Script I can simple sign this crap...
Can not find yet better Link... but click somewhere here...
https://forum.xda-developers.com/showpost.php?p=70436534&postcount=384
To find my infos about "hashsigner.sh"...
This PKI sh it still s h it...
Best Regards
Edit 1.
I have no idea why since months for me search not work...
Edit 2.
Found my post via Google...
https://forum.xda-developers.com/showpost.php?p=72204916&postcount=184
In theory I have more posts where this is posted:
Choose between 3 Commands...
Code:
hash-signer.sh -a -d /opt/usr/media/test
public level
Code:
hash-signer.sh -p partner -a -d /opt/usr/media/test
partner level
Code:
hash-signer.sh -p platform -a -d /opt/usr/media/test
platform level
Click to expand...
Click to collapse
Thanks,
But where is the hash-signer.sh file?
Did you unpack and extract all files from rootfs.img?
I am toooooo lazy to check Z2 Firmware... if in latest available or removed by Samsung...
Code:
hash-signer.sh
Best Regards
adfree said:
Did you unpack and extract all files from rootfs.img?
I am toooooo lazy to check Z2 Firmware... if in latest available or removed by Samsung...
Code:
hash-signer.sh
Best Regards
Click to expand...
Click to collapse
It has been removed in the latest firmware
Could be... sometimes they only deactivated...
I was never able to sign with SM-R732 and SM-R760...
In theory few RPM files available...
Will check... need time...
In theory also RPM for Tizen Studio Emulator crap...
Best Regards
About Signing...
I was tooooo lazy to check...
But if this work we could use also other Certs with Password...
https://forum.xda-developers.com/gear-fit/general/howto-sign-sideload-tizen-applications-t3639793
Best Regards
adfree said:
About Signing...
I was tooooo lazy to check...
But if this work we could use also other Certs with Password...
https://forum.xda-developers.com/gear-fit/general/howto-sign-sideload-tizen-applications-t3639793
Best Regards
Click to expand...
Click to collapse
I can sign tpks just fine, the problem is that I cannot get ACL to run my apps that I resign and put on the homescreen
Sent from my Q5 using XDA Free mobile app
I cannot get ACL to run my apps that I resign and put on the homescreen
Click to expand...
Click to collapse
ACL is self checking Cert...
This is the reason why I have signed ACL AND TPK... with same key/cert....
For Original ACL you need Original RSA 2018 Cert...
and this is at the moment impossible...
So I fake signed ACL... to use my fake signed TPKs...
Best Regards
adfree said:
ACL is self checking Cert...
This is the reason why I have signed ACL AND TPK... with same key/cert....
For Original ACL you need Original RSA 2018 Cert...
and this is at the moment impossible...
So I fake signed ACL... to use my fake signed TPKs...
Best Regards
Click to expand...
Click to collapse
So, I have to extract ACL, resign ACL with the new cert and it will install all files with that cert?
Sent from my Q5 using XDA Free mobile app
https://forum.xda-developers.com/showpost.php?p=69049909&postcount=344
And few posts later...
Also fake signed TPKs added...
Best Regards
Anyone been able to install apk in this tpk..... i keep getting acl error

Categories

Resources