Database Info

[Q] Could we use the PRFCreator to root the Z3 without an unlocked bootloader?

I was browsing XDA and saw a tool called PRFCreator - as far as I know, it allows a user to create a pre rooted firmware. An unlocked bootloader isn't required.
Could we, therefore, use this to root the Z3 and then get those DRM keys?

You won't be able to flash a customized stock firmware without an unlocked bootloader as far as I know, so there's no way to achieve root without UB yet.
Sent from my D6603 using XDA Premium 4 mobile app

epic118 said:
I was browsing XDA and saw a tool called PRFCreator - as far as I know, it allows a user to create a pre rooted firmware. An unlocked bootloader isn't required.
Could we, therefore, use this to root the Z3 and then get those DRM keys?
Click to expand...
Click to collapse
No, you cant use it, there is still no exploit made for Z3, you can try, best case scenario nothing will happen, worst case scenario, you will need to full reflash with stock firmware.
Omario-242 said:
You won't be able to flash a customized stock firmware without an unlocked bootloader as far as I know, so there's no way to achieve root without UB yet.
Sent from my D6603 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
For this kind of customizes rom you dont need unlocked BL. Unlocked BL is required for "custom kernel" which then boots "custom" unsigned (non stock) rom.

epic118 said:
I was browsing XDA and saw a tool called PRFCreator - as far as I know, it allows a user to create a pre rooted firmware. An unlocked bootloader isn't required.
Could we, therefore, use this to root the Z3 and then get those DRM keys?
Click to expand...
Click to collapse
1) The output from the PRFCreator is in .zip format, so you need a custom recovery, hence you need root first. Its a chicken and egg situation. It is impossible to flash a modified FTF because only Sony have the signatures needed. If you modify a FTF in any way and try and flash it, it will give you an error
electrash said:
No, you cant use it, there is still no exploit made for Z3, you can try, best case scenario nothing will happen, worst case scenario, you will need to full reflash with stock firmware.
Click to expand...
Click to collapse
2) He wont be able to try it as he cannot flash it as he does not have a recovery to flash it with
electrash said:
For this kind of customizes rom you dont need unlocked BL. Unlocked BL is required for "custom kernel" which then boots "custom" unsigned (non stock) rom.
Click to expand...
Click to collapse
You can use a custom kernel on a completely stock ROM as well, it depends on which custom kernel you are using and what it is for.

gregbradley said:
2) He wont be able to try it as he cannot flash it as he does not have a recovery to flash it with
You can use a custom kernel on a completely stock ROM as well, it depends on which custom kernel you are using and what it is for.
Click to expand...
Click to collapse
Thank you for correcting me, i didnt know that this tool makes .zip files.

How to root Z3 Dual ?

Hi
I have a Sony Xperia Z3 Dual (D6633)
Android Lollipop 5.0.2 Build 23.1.1.E.0.1 ( Original-Stock firmware )
Locked bootloader
I want to root it without flashing any new firmware, and without unlocking the bootloader
Just Rooting
Thanks

cmureza said:
Hi
I have a Sony Xperia Z3 Dual (D6633)
Android Lollipop 5.0.2 Build 23.1.1.E.0.1 ( Original-Stock firmware )
Locked bootloader
I want to root it without flashing any new firmware, and without unlocking the bootloader
Just Rooting
Thanks
Click to expand...
Click to collapse
You cannot
Either downgrade to a firmware that is rootable via giefroot or unlock the bootloader and root. Please be advised that rooting via unlocking the bootloader first loses you the DRM keys.
The 'best' way to root is via downgrading. If you then plan to unlock the boot you can backup the TA partition to save your DRM keys.

gregbradley said:
You cannot
Either downgrade to a firmware that is rootable via giefroot or unlock the bootloader and root. Please be advised that rooting via unlocking the bootloader first loses you the DRM keys.
The 'best' way to root is via downgrading. If you then plan to unlock the boot you can backup the TA partition to save your DRM keys.
Click to expand...
Click to collapse
Downgrad ?
Could you please explain it to me clearly step by step ?
And
Is there any other program that just easy as click one key ?
Thanks

cmureza said:
Downgrad ?
Could you please explain it to me clearly step by step ?
And
Is there any other program that just easy as click one key ?
Thanks
Click to expand...
Click to collapse
http://forum.xda-developers.com/z3/general/guide-rootrecovery-how-to-root-install-t3017056

Is there any easier way and less risky ?
Just install a app and get rooted by one click?
When do you think we could see such a app???

cmureza said:
Is there any easier way and less risky ?
Just install a app and get rooted by one click?
When do you think we could see such a app???
Click to expand...
Click to collapse
No way to do it other than this.
It is not hard.

[Ask] Z5 Dual E6683 32.0.A.5.19 DRM

Hi guys, so i just bought a Z5 Dual E6683 online yesterday and it turns out to be a Commercial/review model with 32.0.A.5.19 firmware installed, and I'm planning to root it to restore my Titanium Backup.
There're 3 things that I want to ask,
1. Is it possible to root it and upgrade to MM but with DRM still intact?
2. If so then do I need to flash another ftf 1st or change kernel or anything?
3. If I flash another Lollipop ftf, does it erase my current DRM or no?

Nah you have to unlock BL to get Z5 rooted. You can try the DRM backup tools though.
Patched kernel is enough just for root
If you flash official FTF you won't lose DRM(you only lose it by unlocking BL), however, I don't think it is possible to flash back to LP

CyNoob said:
Nah you have to unlock BL to get Z5 rooted. You can try the DRM backup tools though.
Patched kernel is enough just for root
If you flash official FTF you won't lose DRM(you only lose it by unlocking BL), however, I don't think it is possible to flash back to LP
Click to expand...
Click to collapse
You mean there's no going back to Lollipop once you patch the kernel and upgrade to MM?
But to patch the kernel I need to unlock BL right?
So, in conclusion I need to flash official LL ftf 1st (any build (?)), then backup DRM and unlock the BL, patch the kernel, and finally upgrade to MM?
And do I need to backup my current firmware (32.0.A.5.19) ?

arceusxcv said:
You mean there's no going back to Lollipop once you patch the kernel and upgrade to MM?
But to patch the kernel I need to unlock BL right?
So, in conclusion I need to flash official LL ftf 1st (any build (?)), then backup DRM and unlock the BL, patch the kernel, and finally upgrade to MM?
And do I need to backup my current firmware (32.0.A.5.19) ?
Click to expand...
Click to collapse
You have to flash a Lollipop firm, then use this http://forum.xda-developers.com/crossdevice-dev/sony/iovyroot-temp-root-tool-t3349597 . Backup your DRM and then you are ready to open the bootloader, and flash a rom or root or do what you want.

You are on right firmware to root and proceed.
1. Is it possible to root it and upgrade to MM but with DRM still intact?
Ans. Yes, use this tool to back drm first from http://forum.xda-developers.com/crossdevice-dev/sony/iovyroot-temp-root-tool-t3349597 and then unlock bootloader and then download any MM firmware and flash. Then you need patched kernel to root your device from here http://forum.xda-developers.com/xpe...ot-automatic-repack-stock-kernel-dm-t3301605.
or I have already made for E6683 for the latest MM firmware here http://forum.xda-developers.com/xperia-z5/development/root-automatic-repack-stock-kernel-dm-t3301605
you can use as you wish.
2. If so then do I need to flash another ftf 1st or change kernel or anything?
Ans. as i said above.
3. If I flash another Lollipop ftf, does it erase my current DRM or no?
Ans. flashing doesn't erase anything but bootloader unlocking does. So answer is NO.

Root?

Why it's almost impossible for us to have the root with the locked bootloader.? Since the day the mobile went out till now it wasn't possible ?, so is there a chance?

Zewarxx said:
Why it's almost impossible for us to have the root with the locked bootloader.? Since the day the mobile went out till now it wasn't possible ?, so is there a chance?
Click to expand...
Click to collapse
Nope highly unlikely, since dm-verity security was introduced on the z3+ all xperia devices after this require a unlocked bootloader for root. A modified system just won't boot up.
Sent from my Xperia XA using XDA Labs

aidy.lucas said:
Nope highly unlikely, since dm-verity security was introduced on the z3+ all xperia devices after this require a unlocked bootloader for root. A modified system just won't boot up.
Sent from my Xperia XA using XDA Labs
Click to expand...
Click to collapse
Hollywood!! So I shall wait no more? And unlock the bootloader? Because root with locked bootloader is just a myth now?

Zewarxx said:
Hollywood!! So I shall wait no more? And unlock the bootloader? Because root with locked bootloader is just a myth now?
Click to expand...
Click to collapse
Go ahead, don't forget to backup your TA partition / DRM keys before...
https://forum.xda-developers.com/crossdevice-dev/sony/universal-dirtycow-based-ta-backup-t3514236

sxtester said:
Go ahead, don't forget to backup your TA partition / DRM keys before...
https://forum.xda-developers.com/crossdevice-dev/sony/universal-dirtycow-based-ta-backup-t3514236
Click to expand...
Click to collapse
aidy.lucas said:
Nope highly unlikely, since dm-verity security was introduced on the z3+ all xperia devices after this require a unlocked bootloader for root. A modified system just won't boot up.
Sent from my Xperia XA using XDA Labs
Click to expand...
Click to collapse
so after the searches, I did I found out the following:
1- first, since I'm on android 7.0 I need to downgrade to 6.0 in order to backup my TA ! wich I can do via Flashtool
2- I do the backup
3- I root the phone and restore the backup I did
4- I upgrade to android 7 and then I'm good to go!
my questions:
1-what will I lose after unlocking the bootloader? and if I restored the TA backup will that count as if i didn't unlock the bootloader?
2- how I will root the phone? with a custom kernel or is there any other way? and if with a kernel any advice?
3-shall I do the root before upgrading to android 7? or before? and will I be able to still get updates after the root? or i will have to do it through Flashing Ftf of the new updates?
4-anyone is running Xposed framework?
thanks so much in advance ))

im not sure what we lose after bootloader unlock.. From what i read on the androplus kernel thread, if you use androplus there is some amount of drm functionality restored. there is no clear consensus from what i have read, and being a ex-Z3 user im still paranoid about this as in Z3 without the DRM camera is basically ****.
no xposed for nougat yet - so that's out of question.

Zewarxx said:
so after the searches, I did I found out the following:
1- first, since I'm on android 7.0 I need to downgrade to 6.0 in order to backup my TA ! wich I can do via Flashtool
2- I do the backup
3- I root the phone and restore the backup I did
Click to expand...
Click to collapse
then you are locked again ... Don't do that!
4- I upgrade to android 7 and then I'm good to go!
Click to expand...
Click to collapse
For every upgrade (via SONY's FTFs):
1. Flash FTF via Flashtool
2. flash suitable recovery and AndroPlus kernel (look in this forum and follow the instructions on AndroPlus' website)
3. boot into recovery, flash SuperSU and whatever you need
There should be a possibility to flash the devicekey (not the whole TA-partition!) to another partition to get the whole DRM-enchillada back. That does not work for me since it is not included in the FSC as of today.
my questions:
1-what will I lose after unlocking the bootloader? and if I restored the TA backup will that count as if i didn't unlock the bootloader?
Click to expand...
Click to collapse
What you will loose when unlocking BL:
https://forum.xda-developers.com/z3-compact/general/loss-drm-keys-t2890936
At least the first two AFAIK are taken care of the DRM-Patch in AndroPlus's kernel.
2- how I will root the phone? with a custom kernel or is there any other way? and if with a kernel any advice?
3-shall I do the root before upgrading to android 7? or before? and will I be able to still get updates after the root? or i will have to do it through Flashing Ftf of the new updates?
4-anyone is running Xposed framework?
Click to expand...
Click to collapse
2 see above, rinse and repeat for every new SONY Rom
3 same answer, since the modifications are overflashed by installing/flashing another ROM
4 I used to run XPrivacy, but ATM the granularity of options in MM and Nougat is enough for me -
there is no Xposed for Nougat ATM

DHGE said:
then you are locked again ... Don't do that!
For every upgrade (via SONY's FTFs):
1. Flash FTF via Flashtool
2. flash suitable recovery and AndroPlus kernel (look in this forum and follow the instructions on AndroPlus' website)
3. boot into recovery, flash SuperSU and whatever you need
There should be a possibility to flash the devicekey (not the whole TA-partition!) to another partition to get the whole DRM-enchillada back. That does not work for me since it is not included in the FSC as of today.
What you will loose when unlocking BL:
https://forum.xda-developers.com/z3-compact/general/loss-drm-keys-t2890936
At least the first two AFAIK are taken care of the DRM-Patch in AndroPlus's kernel.
2 see above, rinse and repeat for every new SONY Rom
3 same answer, since the modifications are overflashed by installing/flashing another ROM
4 I used to run XPrivacy, but ATM the granularity of options in MM and Nougat is enough for me -
there is no Xposed for Nougat ATM
Click to expand...
Click to collapse
Thanks for your time and effort, well the reason I wanted the root is for the xposed and for the adblock only and since there's no xposed support yet I think it's not necessary to lose what I may lose just for the adblock ? thanks again

Can I root xz without unlocking bootloader

Hi All.
I have an xz on oreo. My bootloader isnt unlockable so im wondering if theres a way to root the phone without having to flash twrp etc.
I see that oneclickroot say its unlockable but want 29$ which I think is a scam.
Any suggestions would be appreciated.
Cheers

No. It's literally impossible.
Any app saying otherwise is pure scam.

josephnero said:
No. It's literally impossible.
Any app saying otherwise is pure scam.
Click to expand...
Click to collapse
I thought as much.
Is there any way to unlock bootloader on device that doesnt allow it?

cowen1000 said:
I thought as much.
Is there any way to unlock bootloader on device that doesnt allow it?
Click to expand...
Click to collapse
Sadly noway I know of. Again unfortunately After android lollipop and adding of dm variety check and ric protection there is noway to root without unlocked bootloader.

cowen1000 said:
Hi All.
I see that oneclickroot say its unlockable but want 29$ which I think is a scam.
Any suggestions would be appreciated.
Cheers
Click to expand...
Click to collapse
Yes it is.
cowen1000 said:
I thought as much.
Is there any way to unlock bootloader on device that doesnt allow it?
Click to expand...
Click to collapse
No.
If you can download a MM firmware and flash that using flashtool you can root without unlocking the bootloader.

gregbradley said:
Yes it is.
No.
If you can download a MM firmware and flash that using flashtool you can root without unlocking the bootloader.
Click to expand...
Click to collapse
Hey, if I use firmware mm can I root without ubl? Because xz I say ubl no.

Lancelot6 said:
Hey, if I use firmware mm can I root without ubl? Because xz I say ubl no.
Click to expand...
Click to collapse
Yes, that is what I said. There was still a vulnaribility in the MM firmware (Dirtycow) so if you can find a FTF for MM, then you can flash that with flashtool and use the dirty cow exploit (Thread in general section) to root.

gregbradley said:
Yes, that is what I said. There was still a vulnaribility in the MM firmware (Dirtycow) so if you can find a FTF for MM, then you can flash that with flashtool and use the dirty cow exploit (Thread in general section) to root.
Click to expand...
Click to collapse
can you give a link for the method? pls

Hmm,,
Looking back I can only see threads about temporary root. I was positive you could root on marshmellow….maybe some more gooloing required

I have searched for it on Google and the results are only for those who have ubl yes, but is there really a way in this forum?

Lancelot6 said:
I have searched for it on Google and the results are only for those who have ubl yes, but is there really a way in this forum?
Click to expand...
Click to collapse
Yes, you can achieve temp root on marshmellow, that is how the TA backup tool work. I was pretty sure from there you could install arecoevry and flash a stock based rooted rom with a stock kernel. So its a system root not a kernel root, but this is going back a couple of years as since nougat this exploit was patched and only unlocked bootloader root was available.
But there the XZ can be downgraded to MM so its possible.

Oh, I've found it, maybe later I'll try it ... Thank you for the help bro ...

since xz came out on Android 6.01
so downgrade to ADROID 6.0
extract DRMKEYS ( TA.IMG)
UPGRADE TO ANDROID OREO
UNLOCK THE BOOTLOADER
ROOT IT
AND RELOCK THE BOOTLOADER AGAIN WITH TA.IMG
just give me the android version you wana stay and i will send u modded kernel, the one given in the post has universal drm fix! and if you relock your bootloader it will go in to bootloops!

YasuHamed said:
since xz came out on Android 6.01
so downgrade to ADROID 6.0
extract DRMKEYS ( TA.IMG)
UPGRADE TO ANDROID OREO
UNLOCK THE BOOTLOADER
ROOT IT
AND RELOCK THE BOOTLOADER AGAIN WITH TA.IMG
just give me the android version you wana stay and i will send u modded kernel, the one given in the post has universal drm fix! and if you relock your bootloader it will go in to bootloops!
Click to expand...
Click to collapse
If you relock the bootloader you cannot use a modded kernel. You have to keep the bootloader unlocked.

YasuHamed said:
since xz came out on Android 6.01
so downgrade to ADROID 6.0
extract DRMKEYS ( TA.IMG)
UPGRADE TO ANDROID OREO
UNLOCK THE BOOTLOADER
ROOT IT
AND RELOCK THE BOOTLOADER AGAIN WITH TA.IMG
just give me the android version you wana stay and i will send u modded kernel, the one given in the post has universal drm fix! and if you relock your bootloader it will go in to bootloops!
Click to expand...
Click to collapse
What about Android 7.0 bro? Is it safe to extract the drmkey? And Is this method safe for XZ docomo?

Lancelot6 said:
What about Android 7.0 bro? Is it safe to extract the drmkey? And Is this method safe for XZ docomo?
Click to expand...
Click to collapse
No, can only be done on 6

But I searched Google for backup TA but the conditions must be rooted, whereas I want to backup TA for root

Lancelot6 said:
But I searched Google for backup TA but the conditions must be rooted, whereas I want to backup TA for root
Click to expand...
Click to collapse
Yes, on android 6 you can temporarily root to backup the TA, then you can revert back to any version of android and unlock the bootloader to flash a custom rooted kernel to gain root.
However, if you restore your TA it relocks the bootloader, meaning only a stock unrooted kernel will work.
So, use flashtool to flash a MM FTF and use the TA backup tool to backup your TA. Then just unlock your bootloader and use a custom rom.

Ohh now I understand, thank you for your explanation bro and I hope I managed to try it

Does it work with Sony Xperia X Performance
---------- Post added at 02:07 AM ---------- Previous post was at 01:43 AM ----------
I have sov33 Sony Xperia X performance... So what i should do is :
1.Downgrade to MM
2.Get temporary root
3.Install twrp app and install twrp
4.Flash rooted stock rom
5.Done