It looks like Tctien342 was able to figure out how to inject files into Marshmallow based system.img from TOT File in the SPrint LG G4 forum:
http://forum.xda-developers.com/sprint-g4/general/how-to-mod-img-android-m-zv9-t3337874
He then figured how to modify init.qcom.post_boot.sh file to set permissions on the injected files. The root does not work for some reason yet. does anyone know what exactly needs to be done to root Marshmallow based ROM if you have write access to system partition?
I hope something comes out of this.
Unfortunately it's not enough. MM / 6.0 requires a modified kernel which involves modifying the boot image. The locked bootloader will detect this change and will not allow the device to boot.
We can inject root files into the system image, but without the kernel changes, it won't work and you risk bricking the phone.
Maybe it's possible that some developer make custom recovery which can bypass stock kernel and allow custom kernel to boot.
I had 3.5 years (still do) Motorola Razr XT 910,it has a locked bootloader (impossible to unlock) but developers made Safestrap (modified Twrp) for it...
Sent from my LG G4
welder73 said:
Maybe it's possible that some developer make custom recovery which can bypass stock kernel and allow custom kernel to boot.
I had 3.5 years (still do) Motorola Razr XT 910,it has a locked bootloader (impossible to unlock) but developers made Safestrap (modified Twrp) for it...
Sent from my LG G4
Click to expand...
Click to collapse
That would be cool. With this method you could load any custom Rom?
Sent from my LG G4
milan187 said:
That would be cool. With this method you could load any custom Rom?
Sent from my LG G4
Click to expand...
Click to collapse
Nope, he was mistaken. Safestrap isn't a custom recovery. It used a ramdisk hijack method to be able to run modified stock roms, but nothing more. No custom kernels or anything.
r3pwn said:
Nope, he was mistaken. Safestrap isn't a custom recovery. It used a ramdisk hijack method to be able to run modified stock roms, but nothing more. No custom kernels or anything.
Click to expand...
Click to collapse
You are wrong...my last phone before was a Droid 4 (another omap4 phone manteined by stargo) and its possible to run custom kernels due that their safestrap version have kexec incorporated...you cant modify any partition but you can run custom kernels...
I dont know if its possible to port it to LG G4 with newest SELINUX versions than omap4 phones...
rblanca said:
You are wrong...my last phone before was a Droid 4 (another omap4 phone manteined by stargo) and its possible to run custom kernels due that their safestrap version have kexec incorporated...you cant modify any partition but you can run custom kernels...
I dont know if its possible to port it to LG G4 with newest SELINUX versions than omap4 phones...
Click to expand...
Click to collapse
I've never liked the concept of kexec, and to me, kexec'ing to a custom kernel isn't quite the same thing as "having" a custom kernel, while I can see where people would disagree. However, not all versions of Safestrap loaded a kexec module into the kernel to allow that to be possible. Is it possible to kexec to a custom kernel using a modified version of Safestrap? Yes. Does stock Safestrap have this functionality? No, and it's very difficult to implement.
According to this page a Qualcomm vulnerability allows all q800 series chipsets to be rooted.
http://thehackernews.com/2016/03/android-root-hack.html
Maybe method this can be used?
Related
My Z1 compact is running and i am trying to unlock the bootloader. I have entered *#*#7378423#*# which says i cant unlock the bootloader.
Is there any other method to unlock the bootloader?
Anyone know if its possible?
The reason I want to do this is to install custom Roms.
Instead of unlocking, I believe its possible to root using root and then install dual recovery.
Is this possible and will it let me install custom Roms?
Your device seems to be branded by your carrier and there is no workaround.
Sent from my D5503 using xda premium
325i. said:
The reason I want to do this is to install custom Roms.
Instead of unlocking, I believe its possible to root using root and then install dual recovery.
Is this possible and will it let me install custom Roms?
Click to expand...
Click to collapse
Yes, but only stock based. CM based roms require a different kernel which can only be flashed with an unlocked bootloader. So your choices are quite limited. The good news: Sonys roms are pretty good. The only question is how long their support will last in the future.
Sorry mate, but with a Bootloader unlocked allowed status set to :NO you cannot install any custom ROMs. You may however still root the phone if getting rid of bloatware or installing apps that require root is what you are after
Klucznik1 said:
Sorry mate, but with a Bootloader unlocked allowed status set to :NO you cannot install any custom ROMs. You may however still root the phone if getting rid of bloatware or installing apps that require root is what you are after
Click to expand...
Click to collapse
Not completely accurate, he can still install cooked roms based on stock, as long as they do not modify boot partition as he can only run stock kernels.
I am currently rooting my LG G3 using PurpleDrake and am currently at a point where I have the following options
1) Install TWRP and a modded boot (disable LG security)
2) Install TWRP only
3) Quit PurpleDrake
What is TWRP and what is it used for.
What extra functionality comes with adding a modded boot and disabling LG security?
Saamic said:
I am currently rooting my LG G3 using PurpleDrake and am currently at a point where I have the following options
1) Install TWRP and a modded boot (disable LG security)
2) Install TWRP only
3) Quit PurpleDrake
What is TWRP and what is it used for.
What extra functionality comes with adding a modded boot and disabling LG security?
Click to expand...
Click to collapse
TWRP allows you to for example:-
Create Nandroid backups (think of these as a complete image of your phone including apps, settings etc)
Flash custom roms in zip format
Flash new bootloaders, modems without flashing an entire new firmware image
If you have D851 then you can flash TWRP but any other variant is a no go as they have a locked bootloader.
daleski75 said:
TWRP allows you to for example create Nandroid backups (think of these as a complete image of your phone including apps, settings etc) it also allows you to flash custom roms in zip format as well as repair permissions etc.
If you have D851 then you can flash TWRP but any other variant is a no go as they have a locked bootloader.
Click to expand...
Click to collapse
Got it, thank you
Do you also know what the difference between options 1 and 2 are?
Saamic said:
Got it, thank you
Do you also know what the difference between options 1 and 2 are?
Click to expand...
Click to collapse
The differences would be if you flash TWRP and disable LG security then you can basically flash anything and everything without the extra security checks/safety of not being able to flash certain parts of the phone.
daleski75 said:
The differences would be if you flash TWRP and disable LG security then you can basically flash anything and everything without the extra security checks/safety of not being able to flash certain parts of the phone.
Click to expand...
Click to collapse
Got it, so is it necessary for just flashing ROMs like CM mod, or does disabling the security checks just make it easier?
Hello,
I always had a HTC, so I'm kind of a new with rooting and unlocking an LG.
I have a LG D855 international and I have been reading a lot in this forum and I think that I've figured it out. But I just wont to be sure.
So if I'm right than I can root my phone by running purpledrake. When I've done that I have to install SU.
But if I understand it correcly the only way to get twrp is with" Bump'ed TWRP" so it's only possible to have TWRP if I use a custom rom?
So it's not possible to have orig Rom an TWRP? Right?
But If I just root my phone with purpledrake, so without installing TWRP and without custom Rom, I would still be able to use EXPOSED? RIght?
bamps said:
Hello,
I always had a HTC, so I'm kind of a new with rooting and unlocking an LG.
I have a LG D855 international and I have been reading a lot in this forum and I think that I've figured it out. But I just wont to be sure.
So if I'm right than I can root my phone by running purpledrake. When I've done that I have to install SU.
But if I understand it correcly the only way to get twrp is with" Bump'ed TWRP" so it's only possible to have TWRP if I use a custom rom?
So it's not possible to have orig Rom an TWRP? Right?
But If I just root my phone with purpledrake, so without installing TWRP and without custom Rom, I would still be able to use EXPOSED? RIght?
Click to expand...
Click to collapse
Yes Purple Drake is currently the most reliable root method, once you have root you need to install the SuperSU app of your choice.
Don't confuse yourself with Bump! Just accept that this is the only recovery that works with the G3 and install it then use it like normal. You will only be able to flash custom kernels (and roms with custom kernels) after they have been bumped, this is something the developer will do for you not anything for you to be concerned with, and fairly soon (when this method is released) all custom roms and kernels you find on xda will be pre-bumped - so basically you can treat the recovery like you always have done.
Xposed is nothing to do with recovery and everything to do with having root access.
Does this recovery back up my stock rom safely? I'm hesitant to use it because I've never heard of bump.
davidstjohn1 said:
Does this recovery back up my stock rom safely? I'm hesitant to use it because I've never heard of bump.
Click to expand...
Click to collapse
Nope, afaik, once on bumped twrp, u can't restore stock recovery. For that you will again have to flash the stock KDZ.
OK so it's only for bumped roms. Thank you
davidstjohn1 said:
OK so it's only for bumped roms. Thank you
Click to expand...
Click to collapse
The user above you is wrong and didnt read your question properly.
You CAN back up your stock ROM, just install bump, head to recovery and do a backup - you will never get stock recovery back though, unless you flash a KDZ with Flashtool.
But yes you can use TWRP to back up your currenty stock ROM.
Okay I get it the only way to restore the rom that I backed up is to add bump to it! ok I got it but in order to get back my stock phone I'm going to have to use the LG flash tool right
Lennyuk said:
Yes Purple Drake is currently the most reliable root method, once you have root you need to install the SuperSU app of your choice.
Don't confuse yourself with Bump! Just accept that this is the only recovery that works with the G3 and install it then use it like normal. You will only be able to flash custom kernels (and roms with custom kernels) after they have been bumped, this is something the developer will do for you not anything for you to be concerned with, and fairly soon (when this method is released) all custom roms and kernels you find on xda will be pre-bumped - so basically you can treat the recovery like you always have done.
Xposed is nothing to do with recovery and everything to do with having root access.
Click to expand...
Click to collapse
Thanx a lot.
I just wanted to make sure that I have everything right.
Thanks again
Hello everybody,
Recently I bought a new smartphone - LG G3 (D855) 32GB with Lollipop 5.0.
Until now I've always had Apple devices and I was very deep into jailbreaking and stuff like this.
So now I want to understand a little bit more about how this kind of things are done in android. I've already read a lot (tons of stuff in different websites and forums) but unfortunately I wasn't capable of finding the information I need.
I've already rooted my phone but now I want to overclock it because I feel it a bit laggy from time to time and that really annoys me. The thing is that in order to overclock the phone I need a custom kernel (as far as I know). And here comes the problem - to flash a custom kernel I also need a custom recovery (correct me if I'm wrong) and from the things I have read untill now I could not find a reasonable and simple enough solution of doing so.
So the question is as follows: Can I put a custom recovery on my LG G3 running Lollipop in order to flash a custom kernel and how, or if not is there a way of flashing a kernel without recovery or even overclocking without custom kernel at all on Android 5.0 ?
Here are some specifications of the phone if there is a need:
Android version: 5.0
Baseband version: MPSS.DI.2.0.1.c1.13-00048-M8974AAAAANPZM-1
Kernel version: 3.4.0
Build number: LRX21R.A1421650137
Software version: V20h-EUR-XX
And yes I know that I can do it by downgrading to KitKat but I don't want to. So I am asking all this things especially for Lollipop.
Sorry if there was already a post like this but as I told you I've read really thousands of stuff already and couldn't find working solution, so I decided to ask since this could be helpful for others as well.
Thanks for all your help and answers in advance.
Best regards and I hope we will solve the problem
First you'll need to root your phone. The easiest method of doing so is w/ avicohh's one-click script...
[Guide] Root LG firmwares (KitKat / Lollipop) - One click script
http://forum.xda-developers.com/lg-g3/general/guide-root-lg-firmwares-kitkat-lollipop-t3056951
Next is to install a custom recovery, the easiest method of which is via TWRP Manager...
https://play.google.com/store/apps/details?id=com.jmz.soft.twrpmanager
And custom kernels are flashed via recovery. Just point TWRP to the download directory on you internal or external SD that contains the file to flash.
Deleted... double post.
redduc900 said:
First you'll need to root your phone. The easiest method of doing so is w/ avicohh's one-click script...
[Guide] Root LG firmwares (KitKat / Lollipop) - One click script
http://forum.xda-developers.com/lg-g3/general/guide-root-lg-firmwares-kitkat-lollipop-t3056951
Next is to install a custom recovery, the easiest method of which is via TWRP Manager...
https://play.google.com/store/apps/details?id=com.jmz.soft.twrpmanager
And custom kernels are flashed via recovery. Just point TWRP to the download directory on you internal or external SD that contains the file to flash.
Click to expand...
Click to collapse
I have already rooted my phone, so we can skip this step.
The problem is that I can't install a custom recovery. I actually even tried your method with the TWRP Manager but nothing happened (the app actually installs the recovery but when I reboot into recovery, there is nothing happening, just a black screen), so I had to reinstall my stock recovery again.
Is there some other method to install a custom recovery or am I doing something wrong?
Today I tried to do some more research in order to find something but there is nothing on the Internet.
Please help
So finally I found a way to install a custom recovery. Now when I already have it I have flashed a custom kernel (rin kernel) on my Lg G3 running Lollipop 5.0 in order to overclock.
The problem is that when I try to overclock the phone with some CPU app like "setCpu" it actually shows me that I can set the max value to 2,7 but when I click it nothing happens. The device still sits on the default 2,5.
Please help.
Iam requesting for developers can someone please keep provide on root for lgh815 for locked boot loader on 6.0 instead digging for unofficial boot loader unlock,that will be thankful.
i dream ,i hope so much too...
i have already asked what happen if we flash a zip MM rooted firmware (or imperium) with Chainfire's flashfire ....when we have a rooted Lollipop firmware and an eventual factory-reset with physical buttons...
but never have had answers ...
Loulou-13 said:
i dream ,i hope so much too...
i have already asked what happen if we flash a zip MM rooted firmware (or imperium) with Chainfire's flashfire ....when we have a rooted Lollipop firmware and an eventual factory-reset with physical buttons...
but never have had answers ...
Click to expand...
Click to collapse
Its not possible because on the rooted rom, the kernel its modified and when a locked bootloader phone tries to load it on boot...it will fail...
But i believe , in time, someone are going to find a hack/exploit to achieve root on locked phones
I already tried that it leads to bootloop...
i knew about this kernel problem....
but the main question is : why flashfire seem incapable to flash a "full" firmware (kernel included) like lgup/bridge/ota.... ?
And Chainfire have anounced that his flashfire is "the future" for to flash roms and firmwares ...
@xoxey it's nice to have tried
there are options that you have missed ? eventualy...
Root on 6.0 without unlocking bootloader is literally impossible because in Marshmallow Google changed their policy and now to root it you have to have modified boot.img flashed onto your device, original boot image will not allow you to have a root access or use custom recovery. It would be easy to just grab a boot.img of random kernel like SimpleGX or Imperium and flash it via fastboot, but there is a problem - bootloader basically loads your boot and if it locked it will load it only if the boot is signed, unmodified, although it leads to a bootloop. Only way to do this is to unlock it officially, and then, if you don't want to downgrade to 5.1, grab a boot.img of a kernel, flash it via fastboot (because stock boot will not allow you to flash recovery due to causes I have mentioned above), flash the recovery via fastboot, then to void bugs flash the full kernel (any of them, can be different than the one you used before, it just has to be full package) and then simply flash SuperSU v2.67. There is no different possible way to root it on 6.0.
Have you guys tried this guy's method to get temp root using kingroot? http://forum.xda-developers.com/showthread.php?t=3314927
fates13 said:
Have you guys tried this guy's method to get temp root using kingroot? http://forum.xda-developers.com/showthread.php?t=3314927
Click to expand...
Click to collapse
Guys u can try it,i will bet it doesn't work too&waste of time.
Loulou-13 said:
i knew about this kernel problem....
but the main question is : why flashfire seem incapable to flash a "full" firmware (kernel included) like lgup/bridge/ota.... ?
And Chainfire have anounced that his flashfire is "the future" for to flash roms and firmwares ...
@xoxey it's nice to have tried
there are options that you have missed ? eventualy...
Click to expand...
Click to collapse
Yh i tierd all possible ways to root my lg g4 on 6.0..i dont care of bootloops becoz i know how to fix them??