jeudi 3 décembre 2015

Root/ROM/recovery R&D

Well another fun filled day. I built cm11 for my sph-l710 from source. It flashed and everything is good. This just means my Android Development Setup is in good shape. I learned some new signing tricks during the build so that worked out good.

I have tested all possible combinations of resigning the ota update after modification without success.
Like my pk8 + ota x509 and my pk8 + my x509.

My signature routine is corrected. I did not re-sign apk but i resigned the whole ota.sip

Just to point it out I could not get the -w flag to work with signapk.jar alone. And it wasnt a bouncy castle issue either.
But throughout my day i did manage to properly sign an ota.zip with the -w flag. Close to the same result with the exception that if you dont use the -w flag you get e:failed incorrect footer error in recovery.

Only error i get now is whole file signature failed.

This is because i cannot replace the keys file in the /res folder of the ramdisk because i have no way to flash my recovery since my phone is bootlooped and i cannot ADB.

Only other thing that i note is the other individual who was successful at this had replaced the /res/keys but still got errors trying to flash the OTA.zip.
When he flashed a full rom he built and signed it passed the recovery.

So now im off to recompile my backup. Probably try some kitchens just for the heck of it to see what they do.
But my final compilation will be my backup with all the work completed manually.

So you ask why do this? What is the advantage of flashing a modified backup "Factory Rom' ?
Besides deodexing the apks i know modifications can be done to allow ADB Insecure and open up some other functionality that can help lead to unlocking this phone.

Im going to buy a new fierce 2 for testing as soon as i can. If i had known what i know now i woulda fixed my recovery /res/keys after i rooted before i killed my phone.

Problem is i have no job and i spend 12 hrs a day learning and playing with android builds. So i dont want to get a job then i dont have as much time to test, But i guess its inevitable i have to get a job.

o-well maybe after this project.

In the meantime if you guys really want to make progress on this badboy. Someone is gonna have to be brave enough to test things out.

Currently im good to go to provide the custom Private Key and Keys file. Also i will build the recovery with the /res/keys replaced to work with the Private key.

You will have to use the dd command in ADB to replace the recovery on your phone with the recovery i can provide.
Then you could flash any rom backup from the fierce 2 ONLY has to be factory rom. Else because of bootloader might have an issue.

Guess ill work this project through and build the rom you can flash.
Like i said i believe i can open up some more holes for us to get in a bit deeper.

If someone wants to give this a go just say so.

Ive been contemplating writing a tutorial on creating your own private releasekeys and generating the /res/keys file and how to unpack the recovery.img and replace the /res/keys to match the private releasekeys and then repack the recovery img and then use adb push to pus the recovery and dd to flash it in.

I wont make tutorial on building the rom from the backup, theres alot out there and if you do it wrong your done.

But all of the previous including also how to sign your rom with the releaskeys Id be willing to share that.

My fear is that the true Developers "which i am not yet" may not want just anyone to know how to do this.
There arent in existance any tutorials that go thru this whole process and there could be a reason for that.

I have spent many many hours to put all theese pcs together and learned a boatload doing so maybe its the best process to go through.

At any rate i just want to see this phone get beat and id be happy to share my completed files for you to test.

This entry passed through the Full-Text RSS service - if this is your content and you're reading it on someone else's site, please read the FAQ at http://ift.tt/jcXqJW.



Root/ROM/recovery R&D

Aucun commentaire:

Enregistrer un commentaire