14 replies to this topic

[mattlgroff]

Some of you may not know, but the expert at root exploits Dan Rosenberg (djrbliss) has retired. The Atrix HD comes with a kernel that's patched for (evidently) all of our current ICS root exploits.

OTA Rootkeeper by Voodoo is a great app, but fastbooting will removed the su binary's backup unfortunately. So the ideas are starting to flow.

An idea I have for keeping it in the future is to kind of make your own backup root exploit, in a sense, using your ~/data/local/ folder [Recommend to do this right before you fastboot back, as having this all the time may effect on how your device runs normally].

Studying the Debugfs ICS root exploit by miloj and the batch by pedrotorrestfilho and kholk this is what I can figure from looking at this:

Pushing files...

Please Login or Register to see this Hidden Content

Now, looking inside the input for debugfs (cmds) we can see this:

Please Login or Register to see this Hidden Content

Key code:
"rm" = Delete directory/or file.
"mv" = rename
"cd" = change directory to
"chmod" = changing permissions of a file
"ln" = linking folders
"push" = place file into


Now, we do not want to actually run the root exploit obviously! This will be what I was thinking to do to ensure that we do not..

Please Login or Register to see this Hidden Content

And now for what we want to do for actually launching the root exploit when on the new, non-exploitable system:

Please Login or Register to see this Hidden Content

Now to test if it worked...uid and gid should both be 0.

Please Login or Register to see this Hidden Content

If it worked great the idea works! Time to clean up. If not... the idea was worth a shot!
Clean up:

Please Login or Register to see this Hidden Content

More cleanup:

Please Login or Register to see this Hidden Content

Installing busybox and superuse.apk:

Please Login or Register to see this Hidden Content

Thank you to EternityProject's easyRootICS, if this idea is proven I can turn it into a batch file

EDIT: Here is my batch file for testing. Steps should be obvious, if you are rooted on ICS (on a NON-Safestrap Rom, because Safestrap messes with ADB), you only run 1st_Step-Pushing.bat. USB Debugging must be enabled, drivers installed, plugged into computer, not USB Mass Storage (MTP or Camera).

Please Login or Register to see this Hidden Content

[mattlgroff]

For testing to see if it works this will let us know exactly:
1) Use 1st_Step-Pushing.bat on a non-safestrap rom as the above post explains.
2) Fastboot to stock 211 and do NOT wipe data. (In 1.8 or 1.81 exit instead of wiping data, when it asks after the fastboot).
3) Run the 2nd_Step-Rooting and the 3rd_Step-Testing. If there is no errors..then it worked well. You can then run the 4th and 5th step for cleanup and busybox/Superuser.apk install.

Thanks to anyone who can test this

[HouseMD]

Looking at your commands its a great and simple tool. If I wasn't unrooted and on 211 I'd try it, but since I haven't fully settled in with BW's new M6 build, I would probably be able to test first thing tomorrow on my Maxx. Charging now!

[HouseMD]

Posting another reply to give you updates

1. FB'ing to 211
2. Re-rooting
3. Rooted, Ran option 1 successfully, now FB'ing to 211 again (this time not wiping data since I wasn't on a non-SS ROM)
4. FB'd. Prepping to run steps 2 and 3

Snagged at 2nd step. Rooting bat doesn't work, link failed because file exists. Looking into it.

Unrooted and ran step 1

Step 2 successful. Getting ready to run Step 3.

Step three snag:

Please Login or Register to see this Hidden Content

[wheelintoy]

Steps
1. Did that no problem
2. Did that
3. Told me link failed file exists and rebooted phone
4. 2nd step rooting doesn't seem to work cause 3rd step testing did not work.

[mattlgroff]

Steps
1. Did that no problem
2. Did that
3. Told me link failed file exists and rebooted phone
4. 2nd step rooting doesn't seem to work cause 3rd step testing did not work.

Can someone tell me using a root explorer if the files were still in /data/local/ after running 1 and fastbooting?

[wheelintoy]

Crap I already reset everything maybe house can look

[HouseMD]

Crap I already reset everything maybe house can look

Starting from scratch.

Pushed files, now FB'ing to 211 without wiping data.

In my 12m folder shows the following:

Please Login or Register to see this Hidden Content

[mattlgroff]

Starting from scratch.

Pushed files, now FB'ing to 211 without wiping data.

In my 12m folder shows the following:

Please Login or Register to see this Hidden Content

Well hey that's great the generally idea works then! Having those file's safe in there will be good.

[mattlgroff]

Try:

Please Login or Register to see this Hidden Content

If you get this to work you keeped the permissions
debugfs may work.

[Hero_Indeed]

Okay either Matt or House could you tell us what affects if any Dan's retirement will have on the RAZR community? Does this mean future OS's will have no "Root Crusader" to get us into our handsets? I'm just worried we are left out to dry now if you could clear some of this up that would be great.

Sent from my DROID RAZR using Xparent ICS Blue Tapatalk 2

[mattlgroff]

Okay either Matt or House could you tell us what affects if any Dan's retirement will have on the RAZR community? Does this mean future OS's will have no "Root Crusader" to get us into our handsets? I'm just worried we are left out to dry now if you could clear some of this up that would be great.

Sent from my DROID RAZR using Xparent ICS Blue Tapatalk 2

I would not put it as "left out to dry", but we need to have more involved in the process behind finding and making a root exploit for devices. Dan put enormous work into his exploits and lots of users take it for-granted.

I am working with others to make our own exploit for the Atrix HD..and hopefully this can be re-used on later ICS versions, if we release it in a way in which Motorola cannot see the code we use , like an encrypted executable or something along those lines.

[xlightwaverx]

I'm down with the sickness.

X

Sent from my DROID RAZR using Tapatalk 2

[johnbrain]

I'm down with the sickness.

X

Sent from my DROID RAZR using Tapatalk 2

fwiw. i marketed that album

[HouseMD]

Try:

Please Login or Register to see this Hidden Content

If you get this to work you keeped the permissions debugfs may work.

Please Login or Register to see this Hidden Content

Please Login or Register to see this Hidden Content