Trouble finding the right Threads - Xperia Z5 Premium Q&A, Help & Troubleshooting

Hello there,
I have no Idea if this is the right place to ask.
I'm not a COMPLETE :angel: noob, i have the Z2 Succesfully Unlocked and Rooted, so i have used Flashtool before (But didn't Knew what DRM Keys were, so they're lost)
Sorry i'm not realy good with finding links n' stuff, aspecially that English isn't my native language i have some difficulty understanding some of the technical terms such as "dirtycow exploit"
I want to Root my Sony Z5P [E6853] [Android 7.1.1.] and i have trouble finding the Right Threads of Needed Software and Tutorials for :
1. How to Downgrade to what ROM via Flashtool so i can root the device to save The DRM Keys (Stock Rom links n'stuff)?
1.2. Heared there is a way to Unlock The Bootloader without losing the DRM Keys ("dirtycow exploit") What ever this is
2. How to Backup DRM Keys?
3. Unlock Bootloader (Done Before with the Z2, but it as been a while )
4. Custom Dual Recovery (TWRP)
6. Custom ROM (LinageOS Prefered) (i know how to flash a ROM, i just need the link for the latest Official or UNOfficial version )
if this is the wrong place for this kind of assingment, just move or delet it

No worries!
Dummbrotaffe said:
Hello there,
I have no Idea if this is the right place to ask.
I'm not a COMPLETE :angel: noob, i have the Z2 Succesfully Unlocked and Rooted, so i have used Flashtool before (But didn't Knew what DRM Keys were, so they're lost)
Sorry i'm not realy good with finding links n' stuff, aspecially that English isn't my native language i have some difficulty understanding some of the technical terms such as "dirtycow exploit"
I want to Root my Sony Z5P [E6853] [Android 7.1.1.] and i have trouble finding the Right Threads of Needed Software and Tutorials for :
1. How to Downgrade to what ROM via Flashtool so i can root the device to save The DRM Keys (Stock Rom links n'stuff)?
1.2. Heared there is a way to Unlock The Bootloader without losing the DRM Keys ("dirtycow exploit") What ever this is
2. How to Backup DRM Keys?
3. Unlock Bootloader (Done Before with the Z2, but it as been a while )
4. Custom Dual Recovery (TWRP)
6. Custom ROM (LinageOS Prefered) (i know how to flash a ROM, i just need the link for the latest Official or UNOfficial version )
if this is the wrong place for this kind of assingment, just move or delet it
Click to expand...
Click to collapse
Hi! See the thread in the General section titled (7.1.1. FTF patched kernel, etc.). Follow those instructions exactly and you will have unlocked bootloader, and be rooted with custom recovery. Our phones no longer have warranty protection, so no worries about modifying now. The new kernel in that thread, along with other new kernels, have DRM Fix integrated in them, so you don't lose your DRM keys with them (or you do lose them, but the kernel tricks your system into thinking the keys are still intact. My phone still shows DRM keys intact though I've unlocked bootloader, rooted and with custom recovery. Everything works as it should. I did backup my DRM keys when I was on android 6.0.1, but you must return to the android version you were on when you backed up your keys if you want to restore the keys. I didn't want to do that, and with newer kernels no problem. If you're already on android 7.1.1., probably don't need to flash the FTF. Start at step #13, get unlock code from Sony Developers, and follow steps. Make sure to first install all necessary drivers on your Windows or Mac version and test before starting down the path. Check that thread out and enjoy your "new" enhanced phone!

Related

[Q] Really dont know how to Root and install CWM on XPERIA Z1 COMPACT!! Help...!!!

Hi everybody... I have purchased Xperia Z1 Compact few day ago and this is my first ever experience with any SONY SMARTPHONE device in this Android era. Before this I had Galaxy SIII and I learnt how to Root, Flash, Custom OS, and Reseting Counter on my own through different sources youtube videos. But regarding my sony xperia z1 compact device, I have been searching for the last 3 consecutive days on how to ROOT and get CWM on my device but all i get in return is total crap. I know about the official Sony Way of Unblocking the bootloader but then again I dont want SONY to know that I tinkered around with their device in the form of Unblocking and/or Rooting. There is 1 website which demonstrate how to UNLOCK BOOTLOADER in 2 different ways. 1- Official. 2-Unofficial. The unofficial way is very easy through FLASHTOOL but my device is running 4.4.2 kitkat and yesterday I upgraded to even more latest 4.4.2 build number 14.3.A.0.757. I think flashtool is not yet compatible with the 4.4.2 line for UNLOCKING THE BOOTLOADER in UNOFFICIAL WAY. When i recieved my device it was running on Android 4.3. So please kindly tell me how I can UNLOCK the BOOTLOADER in unofficial way and also root the device. I dont want any suggestions regarding OFFICIAL WAY UNLOCKING.
Oh yes one more thing. If i want my regional dedicated Android FTF file, from where I can get one. My location is SAUDI ARABIA.
Samsung phones have the best solution for providing regional dedicated OS files through samfirm ware, but about sony I have no clue.
Kindly help..... Thanks to all in advance. Waiting eagerly. I want to restore my apps and data which run on ROOTED device.
Regards.:good:
noob_coder said:
Hi everybody... I have purchased Xperia Z1 Compact few day ago and this is my first ever experience with any SONY SMARTPHONE device in this Android era. Before this I had Galaxy SIII and I learnt how to Root, Flash, Custom OS, and Reseting Counter on my own through different sources youtube videos. But regarding my sony xperia z1 compact device, I have been searching for the last 3 consecutive days on how to ROOT and get CWM on my device but all i get in return is total crap. I know about the official Sony Way of Unblocking the bootloader but then again I dont want SONY to know that I tinkered around with their device in the form of Unblocking and/or Rooting. There is 1 website which demonstrate how to UNLOCK BOOTLOADER in 2 different ways. 1- Official. 2-Unofficial. The unofficial way is very easy through FLASHTOOL but my device is running 4.4.2 kitkat and yesterday I upgraded to even more latest 4.4.2 build number 14.3.A.0.757. I think flashtool is not yet compatible with the 4.4.2 line for UNLOCKING THE BOOTLOADER in UNOFFICIAL WAY. When i recieved my device it was running on Android 4.3. So please kindly tell me how I can UNLOCK the BOOTLOADER in unofficial way and also root the device. I dont want any suggestions regarding OFFICIAL WAY UNLOCKING.
Oh yes one more thing. If i want my regional dedicated Android FTF file, from where I can get one. My location is SAUDI ARABIA.
Samsung phones have the best solution for providing regional dedicated OS files through samfirm ware, but about sony I have no clue.
Kindly help..... Thanks to all in advance. Waiting eagerly. I want to restore my apps and data which run on ROOTED device.
Regards.:good:
Click to expand...
Click to collapse
I was just wondering why you didn't want Sony to know that you unlocked your bootloader? If it's a warranty concern then when you send it back just relock the bootloader. I did that with my XPERIA Z when I needed to get it repaired and there was no problems at all.
You mentioned you want to restore your apps that need to run on rooted devices... You only need to unlock the bootloader IF you want to use a custom kernel. For example if you want to use DoomLords kernel then you need to have your bootloader unlocked or if you want to flash CyanogenMod ROM to your phone you need to unlock your bootloader (because it flashes a custom kernel to your phone as well)
If you ONLY want to use apps that need root then I suggest you follow this guide which has worked for me:
http://forum.xda-developers.com/showthread.php?t=2634196
About region FTF's, the ONLY difference as far as I know are the apps that come bundled with it. I've flashed many FTF's from many countries and the only difference between them is the bundled apps.
theprince1991 said:
I was just wondering why you didn't want Sony to know that you unlocked your bootloader? If it's a warranty concern then when you send it back just relock the bootloader. I did that with my XPERIA Z when I needed to get it repaired and there was no problems at all.
You mentioned you want to restore your apps that need to run on rooted devices... You only need to unlock the bootloader IF you want to use a custom kernel. For example if you want to use DoomLords kernel then you need to have your bootloader unlocked or if you want to flash CyanogenMod ROM to your phone you need to unlock your bootloader (because it flashes a custom kernel to your phone as well)
If you ONLY want to use apps that need root then I suggest you follow this guide which has worked for me:
http://forum.xda-developers.com/showthread.php?t=2634196
About region FTF's, the ONLY difference as far as I know are the apps that come bundled with it. I've flashed many FTF's from many countries and the only difference between them is the bundled apps.
Click to expand...
Click to collapse
Oh really? and how will I relock the bootloader then as I dont know the whole process..... and you mean I just need the ROOT access for my apps and not the UNLOCKING OF THE BOOTLOADER in order for the ROOT ACCESS to work... But many websites and tutorials were saying that you must first have to UNLOCK the BOOTLOADER.... and also how can I be so sure that different region TFT will work on my phone. I once saw RUSSIAN 4.1.2 on GALAXY S3 in my friend's phone and it was working fine except we didn't know RUSSIAN LANGUAGE.
So can you please guide me all the way on ROOTING and then also RELOCKING the BOOTLOADER.
Many thanks.
http://forum.xda-developers.com/showthread.php?t=2631291
Sent from the app on my Z1C...
theprince1991 said:
I was just wondering why you didn't want Sony to know that you unlocked your bootloader? If it's a warranty concern then when you send it back just relock the bootloader. I did that with my XPERIA Z when I needed to get it repaired and there was no problems at all.
You mentioned you want to restore your apps that need to run on rooted devices... You only need to unlock the bootloader IF you want to use a custom kernel. For example if you want to use DoomLords kernel then you need to have your bootloader unlocked or if you want to flash CyanogenMod ROM to your phone you need to unlock your bootloader (because it flashes a custom kernel to your phone as well)
If you ONLY want to use apps that need root then I suggest you follow this guide which has worked for me:
http://forum.xda-developers.com/showthread.php?t=2634196
About region FTF's, the ONLY difference as far as I know are the apps that come bundled with it. I've flashed many FTF's from many countries and the only difference between them is the bundled apps.
Click to expand...
Click to collapse
http:// dl. weeaboo . com/Z1Compact/C690...0Unbranded.ftf
http: / / dl .weeaboo. com/Z1Compact/D550...neric%20UK.ftf
What are these files? Do I have to download all of them? I mean these are 2 different TFT files? What's the scope of having two?
There is no mentioning what should I have to do? What key combination do I have to make and which mode do I have to enter for FLASHING like FASTBOOT mode or FLASHING MODE?
No nothing blatantly explained. Not Noob Friendly. If you can guide me through these mysterious Steps. It'll be helpful...
And also do tell what version will this TFT be? 4.3 or 4.2.2 or what? is it compatible with Xperia Z1 Compact????
noob_coder said:
http:// dl. weeaboo . com/Z1Compact/C690...0Unbranded.ftf
http: / / dl .weeaboo. com/Z1Compact/D550...neric%20UK.ftf
What are these files? Do I have to download all of them? I mean these are 2 different TFT files? What's the scope of having two?
There is no mentioning what should I have to do? What key combination do I have to make and which mode do I have to enter for FLASHING like FASTBOOT mode or FLASHING MODE?
No nothing blatantly explained. Not Noob Friendly. If you can guide me through these mysterious Steps. It'll be helpful...
And also do tell what version will this TFT be? 4.3 or 4.2.2 or what? is it compatible with Xperia Z1 Compact????
Click to expand...
Click to collapse
http://forum.xda-developers.com/showthread.php?t=2642081
noob_coder said:
Oh really? and how will I relock the bootloader then as I dont know the whole process..... and you mean I just need the ROOT access for my apps and not the UNLOCKING OF THE BOOTLOADER in order for the ROOT ACCESS to work... But many websites and tutorials were saying that you must first have to UNLOCK the BOOTLOADER.... and also how can I be so sure that different region TFT will work on my phone. I once saw RUSSIAN 4.1.2 on GALAXY S3 in my friend's phone and it was working fine except we didn't know RUSSIAN LANGUAGE.
So can you please guide me all the way on ROOTING and then also RELOCKING the BOOTLOADER.
Many thanks.
Click to expand...
Click to collapse
Yeah you JUST need root access, there is no need to unlock the bootloader for root access. You definitely do not need to unlock the bootloader. I don't want to unlock the bootloader because on my old XPERIA device when I unlocked the bootloader I lost BRAVIA engine.
Yeah, the default language might be different but when you start your XPERIA for the first time it will ask you what language you want. From this menu you can pick English, Arabic etc...
If you don't want to flash custom ROMs then you don't need to unlock the bootloader. If you just need root access then just follow this article (It'll teach you EVERYTHING you need to know):
http://forum.xda-developers.com/showthread.php?t=2631291
tgill. said:
http://forum.xda-developers.com/showthread.php?t=2642081
Click to expand...
Click to collapse
I was going along the step by step procedure, everything was smooth but when I reached STEP 14 things gone strange. Now the cmd prompt option 3 was taking time and i closed the command prompt. Now i have tried 2 times more the same step but nothing happening except the same blinking cursor without any notification/message. I tried going to FLASHMODE but FLASHTOOL is accepting it as USB DEBUGGING DEVICE (NON FLASHMODE).... What should I do now?
noob_coder said:
I was going along the step by step procedure, everything was smooth but when I reached STEP 14 things gone strange. Now the cmd prompt option 3 was taking time and i closed the command prompt. Now i have tried 2 times more the same step but nothing happening except the same blinking cursor without any notification/message. I tried going to FLASHMODE but FLASHTOOL is accepting it as USB DEBUGGING DEVICE (NON FLASHMODE).... What should I do now?
Click to expand...
Click to collapse
My phone is not going into FLASHMODE now after rooting.
what should be the solution now? As i am waiting to FLASH D5503_GENERIC UK.ftf file now. All i got is BLACK SCREEN everywhere from every combination of keys.....mad:
OK. I figured it out. I have successfully rooted my device. Thanks a lot. BTW can I upgrade my 4.4.2 14.3.A.0.681 build to 4.4.2 14.3.A.0.757 while having the ROOT ACCESS INTACT???
Root Help
What rooting instructions did you follow? I dont see a step 14. Also how do you do Step 7? run on computer? or? im trying to understand this befor i start with it.
zike47222 said:
What rooting instructions did you follow? I dont see a step 14. Also how do you do Step 7? run on computer? or? im trying to understand this befor i start with it.
Click to expand...
Click to collapse
I followed this link. Read carefully and you'll be ok.
http://forum.xda-developers.com/showthread.php?t=2642081

Unlocking Bootloader and root

YES, I have read as much as I can in the forums (all day today, rather nice way to spend a holiday though).
I have a Xperia Z1 Compact D5503 handset (FR SFR version, from eBay). I have recently updated it to Android 5.0.2 via XperiFirm tool. I flashed the Customized_IN version (D5503_Customized IN_1281-0184_14.5.A.0.242_R3D). It WAS NOT rooted and I don't remember if I had unlocked the bootloader.
[I have a laptop running Windows 8.1 x64, with latest versions of XperiFirm, FlashTool x64, Android Studio (with Google USB driver), PC Companion. My laptop detects my phone as MTP (or MSC when I choose so), but in the Device Manager, it never shows as android adb device (always MTP, or USB stick). I tried Update Driver option but to no avail, it says the Google USB driver or the downloaded Z1 Compact driver (from Sony site) is not supported (either by the phone or the PC). But the phone shows debugging connected, even prompts my authorization (first time only). Flashmode and Fastboot modes are detected well enough.]
Now, it says I am not allowed to unlock bootloader (via "*#*#7378423#*#* > Service Info > Configuration" menu). It shows the following:
------------------------------------------------------
Rooting Status:
Bootloader unlock allowed: No
------------------------------------------------------
I am unable to unlock the bootloader (or root, yeah, that's the ultimate goal) via the following methods:
1. Official Sony Method,
2. ZergRush
3. TowelRoot,
4. Easy Root Tool,
5. Newroot (by Doomlord),
6. Flashtool (that BLU option),
7. Fastboot via cmd.exe,
8. Flashing pre rooted zip files (cannot open stock recovery option, does this have any? I used the stock recovery a lot on my old Samsung).
Flashtool, cmd and Newroot showed variants of this same error: "only position independent executables (PIE) are supported."
Sony gave me a code, but that also yielded another variant of the same.
Now, as far as I have understood, what I need is one or more of the following:
1. a pre-rooted ftf file (someone said that is impossible as for Sony's encryption, is that right?)
2. some way to root without unlocking bootloader (Newroot does that, but did not work)
3. some way to override that crazy arrogance of Sony and unlock the bootloader and be my white knight...
Can anyone provide me with a guide or some example? It is not at all fair of Sony to create these non-allowance nonsense.
P.S. Please do not mind my tone, I am usually very docile but a whole day (literally; 6 AM to 6 AM next day!!!) in front of my PC without any result have mutated me a bit.
BTW, I am fairly proficient in following complex instructions only if they are conclusive (I don't want to spend another day figuring out how to follow them)
i cannot contribute in any way, i just wanted to tell you you´re not the only one with the problem. if i find a solution i will get back to you
Flash .108 firmware, root with "rootkitxperia", install dualrecovery, use prf creator to make a flashable rooted zip of lollipop (if that's what you want) and flash in recovery. Job done
I'm actually relieved to see someone else experiencing the exact same problems, I've already spent several days figuring out how to unlock the bootloader and get my phone rooted, but to no avail. However my device does state that the bootloader can be unlocked, but can't be found through cmd prompt when connected in fastboot mode and get's the same error: 'only PIE (position independent executables) are supported when trying to unlock the bootloader with flash tool.
White knights on problem solving horses would be greatly appreciated indeed!
I got a Z1C recently from eBay but have also done this on a Z Ultra and Z2, because of the cross development Sony stuff this is very similar for all of them.
You only need to unlock the boot loader if you want to flash a custom kernel or ROM. You don't need to unlock it to get root access, however to get root access you'll have to flash an old version of Android. You're flashing an old version from before they patched the exploits you want to use to get root.
So the steps are:
1. Get an old version of the official Sony ROM.
2. Flash the old ROM.
3. Exploit it to obtain root access.
4. Install a custom recovery.
5. Make a custom flashable zip of the firmware you want to use with root included.
6. Enter custom recovery and flash the zip you created in step five.
The files I used to do this are:
From XperiFirm I download "1280-5440 Netherlands T-Mobile NL 14.4.A.0.108 / R9C".
Using Flashtool I made an FTF from it and flashed it.
Then I used "EasyRootTool v12.4" to get root access.
I installed "Z1C-lockeddualrecovery2.8.21-RELEASE.installer.zip" from Nut's site.
Then you go back to XperiFirm and grab the version of Android you want to use. I used the 5.0.2 Customised AU one as I'm in Australia, you probably want the Indian one.
Use PRFCreator to make a flashable zip with a custom recovery and SuperSU, for that you need the "Z1C-lockeddualrecovery2.8.21-RELEASE.flashable.zip" not the installer.
There are posts with this info around, it's almost 5am for me so I'm not going to go looking for the links to the posts, you'll have to do that yourself. If you read for the day you've probably found them already.
First of all, I would advise against unlocking your bootloader unless you have a backup of your TA partition. Otherwise you risk losing your DRM keys and might criple your camera. This is irreversible damage without a backup. Second, on the official Sony unlock page it states specifically that not all devices are allowed to unlock the bootloader. If it doesn't, though luck then I guess but I could be wrong.
Now to backup the TA partition you need to be rooted which is not possible up to now with Lollipop unless your bootloader is unlocked. So this is a bit of a problem. Luckily flashtool (make sure to use the older 0.9.18.6 version at the bottom of the download page) allows you to flash a previous version without unlocked bootloader or being rooted. Choose one from the list at the bottom of this link but make sure to use a .108 one from the "KitKat [Old]" section (I chose Generic UK unbranded => link points to UA version, UK FTF here). Then root it through one of your preffered methods, backup TA partition and install a recovery.
Then create your own stock FTF with flashtool. Use this method with PC Companion or just download it through flashtool's built-in Xperifirm with this method.
Then create your own pre-rooted flashable zip with PRFCreator with part 2 from this guide. Continue with part 3 from the same guide (maybe skip the 3 big cups of coffee), exhale and get on with your life.
Maybe check out this one and this one (basically the same process) too.
It's the same procedure as written above but with some links I used to gather the information. I just went through this myself so still had all the tabs open. These were most of the useful ones I believe. It really is a PITA to gather all the bits and pieces from miscellaneous posts scattered all over this forum.
Why flash a 108 kk and then root? Just create lollipop rom with prf creator and flash that.
spudata said:
Why flash a 108 kk and then root? Just create lollipop rom with prf creator and flash that.
Click to expand...
Click to collapse
PRFCreator doesn't make FTF's but flashable zips. From the PRFCreator thread:
To flash a pre-rooted firmware, you need a recovery menu
Click to expand...
Click to collapse
To install a recovery you need to be rooted (at least as far as I know) or have an unlocked bootloader. The point is not to unlock the bootloader at all (like when it is not possible) or maybe only after taking a backup of TA partition if not already done so (which again needs root access).
You're absolutely right, my mistake. Think i had a memory lapse

Root sony z5 premium without loosing drm keys

Hello everyone
Can you guys help me to unlock my bootloader and root my sony z5 premium without loosing my drm keys..
And is it necessary to downgrade?
If its necessary how to downgrade it?
And will downgrading my phone will let me lose my drm keys?
yes a downgrade to 6.0 is necessary bc it is used to insert a dirtycow exploit so u can extract the drm keys and save them so u can unlock the bootloader without loosing them something u can do on 7.X.X bc improved security
LastDarkWarlord said:
yes a downgrade to 6.0 is necessary bc it is used to insert a dirtycow exploit so u can extract the drm keys and save them so u can unlock the bootloader without loosing them something u can do on 7.X.X bc improved security
Click to expand...
Click to collapse
I'm also a sort of noob in a similar situation as OP. I was hoping to clarify the answers so there is no confusion (I've got a stock z5p E6853 running 7.1.1). Correct me if I'm wrong....
1. In order to root a stock z5p running Nougat without loosing the DRM keys --> the phone's firmware has to be downgraded to 6.0.
2. You would perform the downgrade from Nougat to MM using Xperifirm and flashtool.
3. After the downgrade the dirtycow exploit is used to extract the DRM keys.
Does downgrading a stock device from Nougat to MM automatically unlock the bootloader and therefore erasing the DRM keys???? I've read conflicting instructions that saying that in order to downgrade a stock z5p you must unlock the first bootloader which means erasing the DRM keys.
Thank you for being patient with a noob.
hantav said:
I'm also a sort of noob in a similar situation as OP. I was hoping to clarify the answers so there is no confusion (I've got a stock z5p E6853 running 7.1.1). Correct me if I'm wrong....
1. In order to root a stock z5p running Nougat without loosing the DRM keys --> the phone's firmware has to be downgraded to 6.0.
2. You would perform the downgrade from Nougat to MM using Xperifirm and flashtool.
3. After the downgrade the dirtycow exploit is used to extract the DRM keys.
Does downgrading a stock device from Nougat to MM automatically unlock the bootloader and therefore erasing the DRM keys???? I've read conflicting instructions that saying that in order to downgrade a stock z5p you must unlock the first bootloader which means erasing the DRM keys.
Thank you for being patient with a noob.
Click to expand...
Click to collapse
I was able to answer my own question by taking a risk and make the attempt to backup the DRM keys on my stock z5p running 7.1.1. My findings from my noob experience are:
Downgrading to Lollipop on a stock phone doesn't automatically unlock phone's bootloader.
Because the phone is bootloader is still locked after the procedure, the DRM keys were still intact and I was able to do the backup.
The procedure that I followed to downgrade and then do the DRM backup was basically the procedure as described in https://forum.xda-developers.com/z5-premium/development/rooting-xperia-z5-z5p-variants-drm-keys-t3437902 by @YasuHamed. However, I found the instructions still a little to complicated for a noob.
The very detailed set of instructions that I followed can be found here: The actual instructions that I followed were . The page talks about the Xperia X but the procedure is nearly identical to that of the z5p. The different steps that I did were:
Downloading the "Commerial and Journalists" version of Android firmware from Xperifirm for my E6853 z5p, which is Lollipop 5.1.1 the factory OEM operating system.
Once the firmware was downloaded from Xperifirm it needs to be extracted so that flashtool could read it. Xperifirm has the ability to extract automatically after downloading but I ran into errors because the generated file names were TOO long (more then 260 characters). Instead, I used flashtool to decrypt the files. In flashtool, go to "TOOLS" --> "BUNDLES" --> "FILESET DECRYPT".
After the FTF file is created by flashtool, you can start the downgrade procedure by pressing the "lightning bolt" button in flashtool. In my case, the procedure failed multiple times because of a faulty USB cable to connect the phone to the PC. Make sure you don't use a ****ty cheap cable.
After the downgrade, I had Lollipop installed which allowed me to use the ivoryroot exploit https://forum.xda-developers.com/crossdevice-dev/sony/iovyroot-temp-root-tool-t3349597 to the TA-DRM backup. If you chose to use ivoryroot make sure you pay attention to the exact model of phone and the version of android that you have installed. For my E6853, ivoryroot only works on Android v.32.0.A.6.170 & v.32.0.A.6.200.
With the phone connected to the PC, run "tabackup.bat" from the PC.
The expect file should be "TA-ModelNumber-Serial-Time.img" that has a size of 2,097,152 bytes.
Thanks.
hantav said:
I was able to answer my own question by taking a risk and make the attempt to backup the DRM keys on my stock z5p running 7.1.1. My findings from my noob experience are:
Downgrading to Lollipop on a stock phone doesn't automatically unlock phone's bootloader.
Because the phone is bootloader is still locked after the procedure, the DRM keys were still intact and I was able to do the backup.
The procedure that I followed to downgrade and then do the DRM backup was basically the procedure as described in https://forum.xda-developers.com/z5-premium/development/rooting-xperia-z5-z5p-variants-drm-keys-t3437902 by @YasuHamed. However, I found the instructions still a little to complicated for a noob.
The very detailed set of instructions that I followed can be found here: The actual instructions that I followed were . The page talks about the Xperia X but the procedure is nearly identical to that of the z5p. The different steps that I did were:
Downloading the "Commerial and Journalists" version of Android firmware from Xperifirm for my E6853 z5p, which is Lollipop 5.1.1 the factory OEM operating system.
Once the firmware was downloaded from Xperifirm it needs to be extracted so that flashtool could read it. Xperifirm has the ability to extract automatically after downloading but I ran into errors because the generated file names were TOO long (more then 260 characters). Instead, I used flashtool to decrypt the files. In flashtool, go to "TOOLS" --> "BUNDLES" --> "FILESET DECRYPT".
After the FTF file is created by flashtool, you can start the downgrade procedure by pressing the "lightning bolt" button in flashtool. In my case, the procedure failed multiple times because of a faulty USB cable to connect the phone to the PC. Make sure you don't use a ****ty cheap cable.
After the downgrade, I had Lollipop installed which allowed me to use the ivoryroot exploit https://forum.xda-developers.com/crossdevice-dev/sony/iovyroot-temp-root-tool-t3349597 to the TA-DRM backup. If you chose to use ivoryroot make sure you pay attention to the exact model of phone and the version of android that you have installed. For my E6853, ivoryroot only works on Android v.32.0.A.6.170 & v.32.0.A.6.200.
With the phone connected to the PC, run "tabackup.bat" from the PC.
The expect file should be "TA-ModelNumber-Serial-Time.img" that has a size of 2,097,152 bytes.
Thanks.
Click to expand...
Click to collapse
VERY WELL EXPLAINED
the above process dies at xperia XZ, the new generation of complication starts with all 4gb ram devices of SONY (from Xzs) where there is NO way to downgrade to |Android to level of dirtycow script to work!. Nor there is way to have drm fix kernel! (YET)

Root , DRM and version issues

Hello,
im about to root my z5p dual (E6883) , in the first time,
so ive some questions
my version number is 32.4.A.0.160 (7.1.1)
i didnt found a guid for this,
ive fear to update to 32.4.A.1.54 becous i alredy saw that have a lot of people with problems (sony talk) in the last version, and i dont want more problams, i alredy have (battery drine and hot device..)
(1) for make root ive to update my device? what do you suggest to me?
i understand that if i make a root, ill loos my drm keys..
in this guid they said that for backup the drm i need use Backup Ta... for use Backup Ta i need root....
(2) what to do?
i saw here that someone need to downgraded to MM to get DRM keys, (but its an another model..)
in youtube i saw that i can use flashtool to root, acualy very essy
but is saw also a guid with more 40 steps just for make a root
guys im totaly confused
please your help
someone pleas????
help
Andrian102 said:
Hello,
im about to root my z5p dual (E6883) , in the first time,
so ive some questions
my version number is 32.4.A.0.160 (7.1.1)
i didnt found a guid for this,
ive fear to update to 32.4.A.1.54 becous i alredy saw that have a lot of people with problems (sony talk) in the last version, and i dont want more problams, i alredy have (battery drine and hot device..)
(1) for make root ive to update my device? what do you suggest to me?
i understand that if i make a root, ill loos my drm keys..
in this guid they said that for backup the drm i need use Backup Ta... for use Backup Ta i need root....
(2) what to do?
i saw here that someone need to downgraded to MM to get DRM keys, (but its an another model..)
in youtube i saw that i can use flashtool to root, acualy very essy
but is saw also a guid with more 40 steps just for make a root
guys im totaly confused
please your help
Click to expand...
Click to collapse
1. you MUST downgrade to MM or LP in order to EXTRACT TA.img ( DRM KEYS) using UNIVERSAL TA BACKUP TOOL , AKA DIRTYCOW SCRIPT.
2. just download the script from HERE and FOLLOW THE INSTRUCTIONS
3. after that Flash (latest) rom 32.4.A.1.54, Android7.1.1
4. UNLOCK the BOOTLOADER ( there is process) (take backup, everything in the device will be wiped! includeding DRMKEYS)
5. once booted, you must flash
a. modded kernel
b. twrp
c. Magisk (even supersu works but i prefer magisk 16.0.zip) (magisk 16.1 and 16.2 may crash)
read this post
https://forum.xda-developers.com/z5...oted-kernel-e6833-e6853-e6883-32-4-1-t3686024

Imaging and rooting

Hi XDA
I have a son with Asperger syndrome and that give parents sometimes unusual task to solve.
He got a Sony xz2 compact, but he refuses to use a phone until the camera and google services are disabled, do to security lags. He wants to remove the system camera software to make sure no one can exploit the camera.
In other words, he wants to be so anonymous and hacker free as possible - and the camera is a big issue for him.
And yes, I know is possible to disable the camera in Sony configuration (and it's done) but that is not enough.
I hope getting some help to find a solution this two tasks:
1) How to get or make an image of the phone to store/save in my pc so it can be restored if needed.
2) How to root the xz2 compact and uninstall the camera
I will really appreciate some help in this issue.
(sorry my English)
Regards.
1. There is not much you can do, backup related on a Sony phone with locked bootloader. You can use google backup, if you want, but even Sony's solution won't work on a phone with Android Pie, after bootloader is unlocked (it would, if you are on Oreo and you would apply drm-fix after unlocking). Almost all other solutions need root, which you don't have on a locked phone.
2. In this thread you will find a step-by-step guide to install twrp recovery and root (by flashing Magisk) and the download for twrp recovery, made by @MartinX3
I won't link the recovery file itself, because it depends on the way you want to proceed. You can use Sonys stock rom or you can install aosp/omnirom.
In your case i would use aosp or omnirom, because it comes without google crap and it is pure Android. You only need to delete/rename the camera with a root explorer and you are good to go.
But i'm sure, @MartinX3 can tell you more about aosp or omnirom and how to flash it, because i have not used it yet. Anyway, camera is not finished on aosp/omni, so you won't loose very much.
old.splatterhand said:
1. There is not much you can do, backup related on a Sony phone with locked bootloader. You can use google backup, if you want, but even Sony's solution won't work on a phone with Android Pie, after bootloader is unlocked (it would, if you are on Oreo and you would apply drm-fix after unlocking). Almost all other solutions need root, which you don't have on a locked phone.
2. In this thread you will find a step-by-step guide to install twrp recovery and root (by flashing Magisk) and the download for twrp recovery, made by @MartinX3
I won't link the recovery file itself, because it depends on the way you want to proceed. You can use Sonys stock rom or you can install aosp/omnirom.
In your case i would use aosp or omnirom, because it comes without google crap and it is pure Android. You only need to delete/rename the camera with a root explorer and you are good to go.
But i'm sure, @MartinX3 can tell you more about aosp or omnirom and how to flash it, because i have not used it yet. Anyway, camera is not finished on aosp/omni, so you won't loose very much.
Click to expand...
Click to collapse
Thanks for the useful information. I'm not very firm at the Android version (oreo or pie) - but the phone is a Sony Experia xz2 model H8324 and Android ver. 8.0.0 (patch level april 1, 2018). Hope this make sense
This is my first sony, so i'm not the "most helpful hand", i think.
Backup related, if you use sony backup before unlock on oreo, you can flash drmfix after unlock and then you should be able to use sony backup to restore your data.
If this is successful, you are rooted and you should be able to use Titanium Backup.
But as sony newbie i don't know how far sonys backup solution goes.
Anyway, i'll recommend in your case a rom like aosp or omni, because there are no Google things in it.
Why not cover the cameras with stickers if that's the biggest issue? You'll have to root the phone to completely disable all the G Apps, some of the firmware versions allow you to completely disable the G services - if you trust it.
You can use pm uninstall command thru adb shell. This way the app gets removed for the user, and thus seems totally removed. The apk itself do still remain in the system folder, and can be reinstalled if wanted, but can't be launched. This method do not need rooting either.
You can't make and image of the phone, at least not without rooting it first. But that will break some stuff, like camera, and that can NOT be restored in ANY way (drm keys are lost forever). For most (all?) Xperia devices there are images available for flashing with FlashTool/Xperifirm, but note that this will not recover the lost drm keys if you unlocked the bootloader in the first place.

Categories

Resources