Looking to modify the Android kernel slightly to accommodate a proprietary app. The solution will need to be installed under temp root, but work under non-rooted conditions (ie does not require SU).
Does anyone know where to start?
Related
I have been looking at the Barclays apps for a while (on and off). I wanted to get them working on my handset, an Atrix with CM7, and my tablet, a Momo9 clone running CM9. Even hiding root and fully unrooting (by various methods) did not help me.
So I decided to do some proper digging and downloaded dex2jar and jd-gui. After decompiling with these tools, I think I found the root detection routines, and this led me to a simple discovery. Part of the detection routine is to check the Build values (Build.FINGERPRINT and Build.TAGS).
It is my belief, therefore, that they are either checking that the ROM is a known stock firmware, or checking for known rooted ROMs (like CM). This is also suggested by the fact that some people have got it working by hiding root on rooted stock (or stock-based) ROMs.
I am posting this info purely for information to anyone who wants to take this investigation/development further. It is in NRegSplashActivity, which also contains some file existence checks.
I am not bothering to do any more with this. For myself, I feel that if the app is not secure with root (which is the reason I have been told for disallowing root) then it is inherently insecure (as rooting is trivial).
Hi
If this is the wrong place to ask, please do let me know. I have no persmission to post anywhere else on the website - let alone the dev section
I am looking for some information on how HTC implements their NAND-write protection. The reason I ask is because I have an android device which I can temp root using a known exploit. Since the bootloader is locked, changes to the system partition do not persist after reboot. However, with temp root, I can insmod arbitrary kernel modules into the kernel. Assuming a module can fiddle arbitrarily with the kernel code, is therotically possible to bypass the NAND-protection this way? Is the check performed in kernel? if not, how is the protection implemented and where is it enforced? at the flash controller level?
Best
Iv'e searched, and I'm sure this must exist somewhere.
Basically, I need a backport for the kitkat translucent status bar and navbar API, that will work on at least 4.1.
Upgrading to KitKat is not an option for me, as my phone has no ROMs beyond 4.1.
I assume you'd like some data about the software I have on my phone:
It's a basic vanilla 4.1.2 ROM that comes pre-rooted.
I have xposed installed, with several modules. All work perfectly (except for 4.2+ things)
I am willing to flash stuff, modify APKs (decompiling and compiling), install xposed modules, or anything that doesn't go beyond the ROM level (I will not modify the bootloader/recovery in any way, shape, or form. I can not risk a hard brick), basically, I want to know that no matter what I do, I can always reflash my ROM (+factory reset), and everything will be fine again. I don't care about warranty by the way (it's over)
I don't mind slight buggyness, if that's the only way there is to do it... (of course, I prefer none)
Just as a sidenote, if there's also kitkat's/4.2+'s systemUI apk backport for 4.1, which I had trouble finding, I'd be very thankful to have a link to it.
Yes. I know one does not simply install the APKs for system apps from newer versions of android. But backports exist, that patch and implement whatever's needed for it to work on older systems.
I'm trying to make use of my D6603's framebuffer. As I understand it, I should be able (as root) to run "cat /dev/urandom > /dev/graphics/fb0" to pump random binary into the framebuffer, which should result in random pixel color changes occurring on my screen. Doing so appears to work just fine, but I get no output. I am not at all an expert--the best I can assume is that the stock kernel (I'm running rooted stock 23.0.1.A.5.77) somehow fails to provide framebuffer access, and that all attempts are therefore destined to fail. This seems odd though, since if it's using the framebuffer, how could there be no way to input into it given root access?
Question 1: Is this correct, or is there some way to use the framebuffer on the stock ROM?
Question 2: If not, is there a modified stock kernel that will work? As I understand it any modified kernel will prevent my DRM from working, and so maybe there's no point in asking this, and I ought to be asking whether any kernel with any rom will work?
Hi,
I'm fond of my non-root software, just because there is a number of apps that I use on regular basis that do not allow root.
Is it going to be at all possible to build a "custom rom" that will be able to run those applications that typically just FAIL when root is detected, by simply not forcing root on the device?
Look forward to hearing from you.
mikber18 said:
Hi,
I'm fond of my non-root software, just because there is a number of apps that I use on regular basis that do not allow root.
Is it going to be at all possible to build a "custom rom" that will be able to run those applications that typically just FAIL when root is detected, by simply not forcing root on the device?
Look forward to hearing from you.
Click to expand...
Click to collapse
Well, it depends on a couple things:
First, there are different ways that apps can detect root. Some apps simply try to gain access to root. But more advanced apps, a notable one being Android Pay, also check if the firmware running on the device has passed Google's CTS tests, which only original 100% stock firmware can pass.
So is your device 100% stock non-modified, or is it a custom ROM with no root access? This will help determine if the apps you use are of the more simple kind, or of the advanced kind.
At this present moment I'm running the Sony Concept software and realistically I would love to continue to be running the latest OS, but unless something like Sony Concept continue to exist the only way to run 7.0 in the future will be a custom Rom. Almost all custom Roms require Root, is there hope that one gets developed that will run similarly to the Concept Software project, I.e. No need for root or nada and thereby allowing me to use my apps (banking etc) that do a scan against root + custom software