tag:blogger.com,1999:blog-8201318254944513910.post8208749452713905690..comments2024-02-14T09:15:01.200-08:00Comments on Blogging the Monkey: Fire in the (root) hole!Robhttp://www.blogger.com/profile/00061851853178706566noreply@blogger.comBlogger16125tag:blogger.com,1999:blog-8201318254944513910.post-46927640586911826752014-12-06T13:54:51.204-08:002014-12-06T13:54:51.204-08:00This one will be required to boot linux but firstl...This one will be required to boot linux but firstly builtin loader should ... <a href="http://iclarksmensboots.blogspot.com" rel="nofollow">iclarksmensboots.blogspot.com</a><br />Oswaldhttps://www.blogger.com/profile/10216452567625613161noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-47135819840598614362014-10-26T14:43:02.492-07:002014-10-26T14:43:02.492-07:00Hi Rob!
Seems to be a great thing you found out. ...Hi Rob!<br /><br />Seems to be a great thing you found out. Since towelroot isn't working anymore on newer versions of FireTV could you please help us to find out if we could gain root access with your method again?<br /><br />http://forum.xda-developers.com/showthread.php?t=2918058<br /><br />Thank you!g4rb4g3https://www.blogger.com/profile/02374329910125991035noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-89102695121903494242014-07-17T07:44:13.473-07:002014-07-17T07:44:13.473-07:00thanks for your reply, I tired defining NEW_ION, s...thanks for your reply, I tired defining NEW_ION, same results, I think I will probably need to go another route, kernel source was not released for my phone (ZTE Concord 2) so I am not sure what which header files they used, I think they are from CAF LNX.LA.3.2-05730-8x10.0 but I can not be too sure. The cpu is MSM8210. It has Adreno 302, the kernel config does have CONFIG_KGSL_PER_PROCESS_PAGE_TABLE=y http://pastebin.com/j2Vcug3H<br /><br />I already have this phone rooted, someone was able to root it for me, but it was a secret method. So I was looking for a public way to root this phone that others can use. I created a CWM recovery that works on this phone. The way I would need to do this, would be to get temp root, flash the cwm recovery, then from recovery install an zip that roots the phone. The reason being s that the phone has /system write protection when you are booted in Android, but not when your booted from the recovery partition ( some code in the boot loader does this)<br /><br />Any way thanks you for your reply. Anonymoushttps://www.blogger.com/profile/11762529489657603808noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-50071521725333610782014-07-17T05:04:20.074-07:002014-07-17T05:04:20.074-07:00I've seen at least two different ION kernel AB...I've seen at least two different ION kernel ABI's (there is some #ifdef NEW_ION stuff in the code). Possibly there are other variants. Try defining NEW_ION, and if that doesn't work, have a closer look at the differences between my ion.h and msm_ion.h and the versions of those files in the kernel tree for your device.<br />Robhttps://www.blogger.com/profile/00061851853178706566noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-89258208754405932892014-07-16T05:01:10.692-07:002014-07-16T05:01:10.692-07:00well was able to get it compile, now I am getting ...well was able to get it compile, now I am getting this error when I run it on the phone<br /><br />main:353: ERROR: ion_alloc(ion_fd, BUF_SZ, &hdlAnonymoushttps://www.blogger.com/profile/11762529489657603808noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-23500218793296013422014-07-15T18:22:24.140-07:002014-07-15T18:22:24.140-07:00hi Rob
towelroot does not work on my phone, and I...hi Rob<br /><br />towelroot does not work on my phone, and I wanted to see if I was able to come up with a method to root my phone, using your files on github, but I can not even seem to compile your files, I get a lot of complaints about missing header files and such.<br /><br />I was wondering if you could give some advice on how I could go about doings this, I would be extremely grateful.<br /><br />Thanks in advanceAnonymoushttps://www.blogger.com/profile/11762529489657603808noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-79082463657766213922014-06-25T09:03:23.247-07:002014-06-25T09:03:23.247-07:00a false hope.. It was in amazon's opensrc code...a false hope.. It was in amazon's opensrc code drop, but does not appear to be used anywhere for firetv. If you look at the generated makefiles they included in the amazon src drop, it was built for x86 (32b, iirc, but don't quote me on that).. possibly at one point amazon had parallel x86 and arm based designs?Robhttps://www.blogger.com/profile/00061851853178706566noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-77085366179178170012014-06-25T09:02:09.929-07:002014-06-25T09:02:09.929-07:00yup, exactlyyup, exactlyRobhttps://www.blogger.com/profile/00061851853178706566noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-1040346103069092572014-06-24T20:46:09.702-07:002014-06-24T20:46:09.702-07:00Ah, I suppose that this was about a use of the iom...Ah, I suppose that this was about a use of the iommu should've been a hint that this was about dma. Well thanks for the explanation!<br />Are you saying they use this, a bit, like a MMU to provide virtual addresses?liamhttps://www.blogger.com/profile/14414946099433267898noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-76252358884262260992014-06-24T20:31:24.296-07:002014-06-24T20:31:24.296-07:00Can you please tell what is https://github.com/rob...Can you please tell what is https://github.com/robclark/firetv-grub repo? I'm not sure about android booting routine. This one will be required to boot linux but firstly builtin loader should invoke this?Anonymoushttps://www.blogger.com/profile/13466427781820219935noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-20897394718977514722014-06-24T15:16:26.434-07:002014-06-24T15:16:26.434-07:00It is to make context switches cheaper.. but it i...It is to make context switches cheaper.. but it is not saving/restoring GPU state registers or anything like that. Basically it just takes CPU interrupt latency out of the picture. Only about IOMMU context, and not GL state.<br /><br />It does simplify the driver a bit, otherwise the driver would have to keep track of work that userspace has queued, but hasn't yet been added to ringbuffer because it would require a context switch.Robhttps://www.blogger.com/profile/00061851853178706566noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-16323124961555871732014-06-24T13:41:32.077-07:002014-06-24T13:41:32.077-07:00So, are the per context pagetables a bit of a hack...So, are the per context pagetables a bit of a hack to make process switching a bit cheaper? That is, to provide a mechanism that reduces the cost of changing contexts without some of the register/state flushing that normally occurs?liamhttps://www.blogger.com/profile/14414946099433267898noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-79739516096620665982014-06-24T12:24:09.108-07:002014-06-24T12:24:09.108-07:00possibly https://www.codeaurora.org/projects/secur...possibly https://www.codeaurora.org/projects/security-advisories/incomplete-signature-parsing-during-boot-image-authentication-leads ? I'm not 100% sure that is the current bootloader vulnerability but I think it is something like that.<br /><br />At any rate, the guy who found/reported the current bootloader issue was planning to release something once amazon pushes out an update.<br />Robhttps://www.blogger.com/profile/00061851853178706566noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-32526396898474945362014-06-24T08:48:51.085-07:002014-06-24T08:48:51.085-07:00Thank's a lot, Rob :)
It's now time to fig...Thank's a lot, Rob :)<br />It's now time to figure out how to use it to unlock AFTV bootloader... Can you please give some hints? :)Anonymoushttps://www.blogger.com/profile/13466427781820219935noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-48679818129969851752014-06-24T06:59:43.916-07:002014-06-24T06:59:43.916-07:00Right.. I am pretty sure that kgsl is not the wors...Right.. I am pretty sure that kgsl is not the worst android vendor driver.. and that is (or at least should be) a terrifying thought!<br />Robhttps://www.blogger.com/profile/00061851853178706566noreply@blogger.comtag:blogger.com,1999:blog-8201318254944513910.post-53490182352331739552014-06-24T05:50:14.285-07:002014-06-24T05:50:14.285-07:00It's by no means the worst bug shipped by a bi...It's by no means the worst bug shipped by a big Android vendor - Samsung's /dev/exynos-mem hole described at http://forum.xda-developers.com/showthread.php?p=35469999 is arguably worse, as it enables anyone to write to any area of physical memory, by design.<br /><br />At least Qualcomm tried to think about security, even if they made a mistake.Simon Farnsworthhttps://www.blogger.com/profile/15190608047563530091noreply@blogger.com