Super SU v.2.76 stable

Eine "kleine" Erklärung zu ROOT/aktuellen Lage unter Android L von [size=14]Chainfire[/SIZE]

Zitat

On LPX13D, SELinux, and root

As promised, here are some more details about the current situation.

Why it breaks

Google has really put some effort into better securing Android, and we've seen a lot of SELinux related commits to the AOSP tree over the past months. There is some disconnect between the AOSP tree and actual L preview builds, some things from AOSP are not in the L preview build, and vice versa. Ultimately, it's a pretty good bet these things will mostly align, though.

On most devices and firmwares, SuperSU's daemon is started by the install-recovery.sh service script that runs at system boot time, as user root with the init context. This is what the daemon needs to function.

Recently, they've started requiring all started services to run in their own SELinux context, instead of init. Developers and security guys following AOSP have known this was coming; AOSP builds have been logging complaints about this specific service not having its own context for a while now.

Now this script runs as root, but as the install_recovery context, which breaks SuperSU's operation, as it is a very restrictive context.

In the last AOSP build I have tried (a few weeks old), there were a fair number of other holes that we could use to launch the daemon. At first glance(!), it seems those have all been closed. An impressive feat by the guys working on this, if it proves true.

How to fix it

To fix root, all that really had to be done was ensure the daemon's startup script is run at boot as the root user with the init context.

There are multiple ways to do this, but unfortunately for now it seems that it does require a modified kernel package (changing the ramdisk).

In the modified kernel packages I've posted for the Nexus 5 and Nexus 7, the daemon's startup is fixed by commenting out the line in init.rc that forces theinstall-recovery.sh script to run as the install_recovery context, so now it runs asinit again, and all is well.

Repercussions

As stated above, it seems for now that modifications to the kernel package are required to have root, we cannot attain it with only modifications to the system partition.

Combine that with a locked bootloader (and optionally dm-verity) and a device becomes nigh unrootable - exactly as intended by the security guys.

Exploit-based roots are already harder to do thanks to SELinux, and now because of the kernel requirements for persistent root, these exploits will need to be run at every boot. Exploits that make the system unstable (as many do) are thus out as well.

Of course, this is all dependent on OEMs implementing everything exactly right. If a certain OEM doesn't protect one of their services correctly, then we can leverage that to launch the daemon without kernel modifications. While I'm fairly certain this will be the case for a bunch of devices and firmwares, especially the earlier L firmwares, this is not something you should expect or base decisions on. It is now thus more important than ever to buy unlocked devices if you want root.

It might also mean that every firmware update will require re-rooting, and OTA survival mode will be broken. For many (but far from all) devices we can probably automate patching the kernel package right in the SuperSU installer ZIP. We can try to keep it relatively easy, but updating stock firmwares while maintaining root is probably not going to work as easy and fast as it did until now.

Apps need updates

Unsurprisingly, with a new major Android release, apps will need updates. None more so than apps that go beyond the Android API, as root apps do, but even some non-root apps will be affected by the security changes.

As one example, someone posted in the SuperSU thread of a kernel flashing app that didn't work. From the logcat you could see that it was looking for partitions in /dev/block from its normal non-root user and non-init context. That used to be possible, but now it is restricted: normal apps no longer have read access there.

The solution for that app is actually quite simple: list the /dev/block contents using root instead. But simple solution or not, the app will still need to be updated.

By far most root apps should be updateable for L without too much issue. There are indeed exceptions that will need some special care, but those are rare.

Permissive vs enforcing

The kernel packages I posted for the Nexus 5 and 7 LPX13D firmware keep SELinux mostly set to enforcing. I say mostly, because SuperSU actually switches a small part of the system to permissive, so apps calling su can do most things without much interference. The details on this are lengthy (yes, your apps will be able to modify policies as well if needed, which should be rare), and I will document these for other developers after L retail release, assuming it will all still work at that time.

Alternatively, you can set the whole system to permissive or otherwise disable SELinux. There are other kernel packages released that indeed do this. The advantage here is that it instantly fixes some apps' issues, as the SELinux based restrictions have all gone the way of the dodo. The disadvantage here is that you've just shut down a major part of the security system of the device.

Some would argue that a device with an unlocked bootloader, root, encrypted modem firmwares of which nobody really knows what they're doing, etc, is inherently insecure, and thus disabling SELinux doesn't make much difference.

I personally disagree with this. While I do agree that these things weaken security down from the ideal level, I would still not disable more security features than I absolutely need to. Just because you cannot eliminate all attack vectors, is no reason to just completely give up on defending against them.

It is of course your own choice if you want to run a permissive system or not. I will strive to keep everything working in enforcing mode though, and I hope other root app developers will do the same - as stated earlier in the post, I believe this is still possible.

(everything in this post is subject to change for retail L release, obviously)

Alles anzeigen

https://plus.google.com/11351731947742…sts/VxjfYJnZAXP

Zitat von mikaole

Läuft auf N6 und N5. Nur TB geht nicht. Habe alle backups mit RomToolbox gemacht und wieder hergestellt.

Sorry, aber es ist seit der ersten preview von L bekannt, das man die beta von Titanium nehmen muss...
Google mal nach: beta, Titanium, twitter

Schon längst gemacht, aber danke

Sorry, aber lese eben erst, das dein Beitrag schon paar Tage alt ist...

Kein Problem. Liebe doppelt geholfen, als garnicht:)

Ein interessanter Artikel zum Thema ROOT unter Android L ... Dort wird auch Chainfire´s Erklärung erwähnt.

Android L: Bald so verschlossen wie Apples iOS?

Zitat

[size=24]Android L: Bald so verschlossen wie Apples iOS?[/SIZE]
Ein Device rooten zu können ist nach wie vor eines der Argumente, das man in einer iOS- vs. Android Diskussion häufiger hört. Immerhin ermöglicht der Root-Zugriff das Überwinden der letzten Barrieren des ohnehin recht offenen Android Betriebssystems und die Installation von Custom ROMs, die völlig neue Facetten eines Smartphones, Tablets oder Phablets herauskitzeln können.

Ohne Root gibt es kein umfassendes unabhängiges Backup, kein SuperSU für alle Apps die es benötigen und keine Custom Recovery oder eben ROMs wie Cyanogenmod. Sofern diese nicht schon wie beim Oneplus One an Bord sind und vom Hersteller abgesegnet wurden. Denn Root ist üblicherweise nicht eingebaut, sondern wie in der iOS-Welt das Produkt der Arbeit einiger findiger Entwickler und angewandter Tricks zur Aushebelung von Sicherheitsmaßnahmen. Der Entwickler Chainfire ist eine bekannte Stimme in der Szene und entwickelt unter anderem das SuperSU-Tool zum sicheren Management von Administrationsrechten für Apps unter Android.

Android wird immer sicherer – aber langsam auch verschlossener

Chainfire warnte bereits im Voraus, dass Android 5.0 (“Lollipop”) bestimmte Änderungen hinsichtlich der Device-Sicherheit bringen würde. Das ist für den Alltagsuser schön, wer wünscht sich nicht mehr Sicherheit? Nur schließen die Bemühungen von Google auch einige Tore für die Poweruser, die ihre Geräte gern rooten möchten. In der letzten Developer Preview Build mit dem Identifikator LPX13D steht Google recht kurz vor dem Release und bringt zugleich den “Kuss des Todes” für die Root-Exploits mit. Es geht sogar so weit, dass in bestimmten Situationen ein Gerät nicht mehr zu rooten sein wird.

Die Probleme rühren primär aus dem Umstand, dass ein für Root benötigtes Skript nicht mehr zum Start des Geräts laufen kann, weil die neuen Sicherheitsanforderungen keine init.d-Skripte für Apps und Dienste mehr gestatten. Das führt uns zu einem zirkularen Problem, denn nun muss zuerst ein Custom Kernel geflasht werden, der den Root-Zugriff für den Nutzer ermöglicht. Aber wir brauchen doch Root, um einen Custom Kernel auf das Device schieben zu können? Ähnlich wie bei einem älteren Xperia Smartphone in meiner Schreibtischschublade ist man dann nämlich darauf angewiesen, dass sich der Bootloader “unlocken”, sprich entsperren lassen kann. Wenn das nicht geht, steckt man eventuell wie beim iPhone irgendwann fest. Ohne Auswege, sofern sich kein findiger Hacker einmischt.

Google schiebt den Riegel vor

Bei der Plethora an verschiedenen Android Devices und Herstellern könnten wir bald sogar realistisch betrachtet vor so einer Sackgasse stehen. Denn die mutwillige Anpassung und Bearbeitung von systemkritischen Eigenschaften eines Produkts sehen viele Hersteller gar nicht gerne – das erzeugt unerwünschte Supportanfragen, Probleme und vielleicht sogar schlechte Presse auf Basis von Problemen mit Dritthersteller-Software.

Werden die OEMs die Android-Welt verriegeln? Google scheint ihnen den Schlüssel auf einem Silbertablett überreichen zu wollen. Die Nexus-Reihe von Google hat immerhin einen leicht zu entsperrenden Bootloader, der über eine Custom Recovery an den gewünschten Kernel und damit Root führen wird. Aber wie sieht es beim Rest aus?

Alles anzeigen

Update 2.15

Zitat

You can find the v2.15 BETA release here: Francisco Franco
(flashable ZIP, if you want the APK, it's in there in the <i>common</i> folder)

This beta is focussed only the binary update issues:

- Binary update failing
- Binary update succeeding but asking again
- Binary update never completing
- Endless loading spinner in apps and logs tab (also related to binary update failure, though it doesn't show it)

Please test ASAP and report back if it solved your issue or not. Note that I consider the above issues solved until you report them again! So if you test this version and the issue is still present, say so, and explain again what the problem is, or if the problem remains the same, post a link to your previous report.

v2.16

Zitat

Just posted v2.16 to my server. Get the link from the first post. Exact changelogs are a in the changelogs post.

This update fixes a number of issues with app grants that disappeared on boot. Should be good now, report any issues like these that persist more than three(!) reboots after update.

I've also started on polishing up some of the visuals in material style. Most changes are pretty subtle, small color updates, icon adjustments. It's certainly not done yet, but even when it is, it wont be the major 'material haulover' some other apps are receiving - ain't nobody got time for that, I'm more concerned with SuperSU working correctly. The material 'light with dark actionbar' theme is selected by default now if running on L if you've never changed the theme option under settings. If you have, you'll have to select it manually. This will not be backported to 4.x, so don't nag me about that. With all the compatibility stuff in SuperSU already to keep it somewhat working across so many different Android versions, adding another compatibility library to backport material support is simply not going to happen - too many conflicts, no time (or will) to solve them.

Anyway, be sure to click all the buttons on all your different Android devices and find out where I made it crash due to these theme changes, and report that back to me

changelogs

Zitat

SuperSU v2.16 released

Yesterday I released v2.16 as beta, but today I decided I'm updating it to stable-ish. Everyone can download and flash it from my own server, but for now on Play it's only being rolled out to the people who already received v2.14 in the past week. It is a staged rollout, so not everyone is getting it through Play yet.

Though the v2.14 beta had been tested by quite a few users, rollout did unfortunately hit a few issues for some users. v2.16 fixes a few of those, and so far feedback has been good. If it remains so, I'll update to a full rollout in a few days.

Aside from fixes for those crashes and binary update failures, some edge case app name displays have been fixed (where you'd see process names before, now the correct app name is displayed, possibly with [UID] suffixed), and these apps are no longer automatically scrubbed from the list at boot if re-authentication is enabled.

Additionally I've also started with polishing the app up a bit if the material theme is selected. This is for L only, and will not be backported to 4.x. It's far from finished and I've only tested it on Nexus 7 (not 5), but it's a start. If you're running SuperSU on L and have never manually changed the theme, you'll see this theme by default. If not, select Material: light, dark actionbar in Settings->Theme.

Links
Flashable ZIP: Battery Doctor Beta

Play: https://play.google.com/store/apps/det…ainfire.supersu

XDA: changelogs

Interesting note for devs
One of the more severe issues was caused by a call to su with STDIN, STDOUT and STDERR all closed or 0. This actually causes a SIGSEGV in the runtime before any of my own code runs, but only if the su binary is NDK built, and then only on a handful of firmwares (across OEMs), with both older and newer firmwares for those same devices working fine. I found that both odd and interesting.

Changelogs
- Fix sugote crash (NDK builds only) (cause for endless loading on apps/logs tab)
- Fix binary detection if switched from enforcing to permissive after boot
- Fix supolicy requirement < 19, not used there (yet)
- Fix UID based grants being forgotten on reboot
- Fix display names of some edge cases (excluding in logs), and prevent these from being forgotten on reboot
- Various theme options added
- Added some basic material theming for L (no backport to 4.x), now default
- Automatic restart app if theme changed
- Automatically restart app if language is changed
- Fixed multilanguage support on L

Alles anzeigen

Battery Doctor Beta

Zitat

SuperSU v2.17 BETA and L retail

I'm throwing the 2.17 BETA version out there for you all to enjoy. As usual the flashable ZIP can be pulled from my server, the link is in the box below.

This will probably be the last release before L retail hits, as that is rumored to be available Monday. I am leaving to visit some friends in Germany soon, and I will probably be back late on Monday myself. That could be before or after the L drop, but even I'm back in time I might be too tired to deal with it.

So, let's hope this version of SuperSU works on L retail, but keep in mind that there is a chance that it will not.

Most likely though, even if the trick of removing the seclabel from the install-recovery service in init.rc no longer works, as a last resort the kernel can be switched to permissive mode, until we figure out how to bypass the issue. Your favorite kernel devs know how to do this as well if I'm not here to do it myself.

I don't expect any serious issues, but then again, I know the security guys at Google review SuperSU, so...

XDA
Discussion thread for beta releases: [ROM] [LPX13D] xTraSlim 1.0 , stock odex, optimized Lollipop rom for Nexus 5

Changelogs
- Fix inifinite loop caused by forced language change
- Fix SIGSEGV in daemonsu on sugote close with non-pty STDIN
- Clear app's data directories after full uninstall -[DLMURL]https://code.google.com/p/android-de.../detail?id=531[/DLMURL]
- supolicy now linked dynamically
- setprop supolicy.loaded 1, and execute /system/xbin/supolicy_post.sh after supolicy runs at system boot
- Allow SuperSU GUI to be used without an up-to-date binary
- More L themin

Alles anzeigen

https://plus.google.com/11351731947742…sts/4xXNCQRiNnH

gforgames

Zitat

Root for the Nexus 9

This took a few hours more than I had hoped, because it's both the first firmware on a new Android version as well as 64-bit. While there have been 64-bit builds of the SuperSU binary for a while now, they were untested until now, and unsurprisingly there were a few (minor) issues to fix before it worked properly.

As such, this root includes SuperSU v2.18, which is a special build for the Nexus 9, which you should definitely not try to put on any other device, nor should you put an older version of SuperSU on the Nexus 9.

I have not yet updated the CF-Auto-Root framework to be able to patch the kernels live (needed on 5.0) or support 64-bit, so this is a more manual root than usual.

It pretty much comes down do:
- enable oem unlocking in Android's developer options
- fastboot oem unlock
- fastboot boot inject.img
- fastboot flash boot patched.img

The included README.TXT is a little bit more extensive, but not by much, and if you don't know what the above does then maybe you shouldn't bother (yet).

Please note that many root apps will have issues with both Android 5.0 as well as 64-bit. There may also be more issues with SuperSU on 64-bit that I have not found yet.

The discussion thread on XDA can be found here: full changelog

Guess it's time to fix up CFAR and update the new How-To SU with all the 5.0 specifics. That'll all take some time, though.

Alles anzeigen

https://plus.google.com/11351731947742…sts/fw659MWRewE

https://plus.google.com/11129407383451…sts/Smrw9ppuJKJ

Zitat

v2.22 beta released - kindly test as I want to upgrade this to a stable release available from all the stores over the next few days

16.11.2014 - v2.22 - BETA
- Fixed double refresh icon in logs in Holo theme (one should be delete)
- Add option to stop asking about disabling KNOX
- Updated backuptool script
- Disallow root access via daemonsu
- Updated policy patches
- Added kernel patching support
- API >= 19: run /system/su.d/* after SELinux policy patched
- Hide OTA survival option on L, not currently supported
- Adjust app title based on Pro status
- Fix disconnected daemonsu process gobbling up CPU

#HT
kernel.org

[COLOR=#ff0000][size=18]SuperSU v2.23 BETA - for immediate testing[/SIZE][/COLOR]
https://plus.google.com/11351731947742…sts/jGoDoPPZUdT

I've just added a TWRP flashable ZIP for SuperSU v2.23 to my download server - see the link in the box at the bottom of this post.

I was busy writing the 5.0 additions for How-To SUwhen an idea struck me that could fix a number of SELinux policy issues on Lollipop, of which previous attempts to transparently work around resulted in failed boots.

v2.23 is the implementation of those workarounds. Please extensively test this version ASAP on your Lollipop (and KitKat) Android's.

A number of root apps that previously would not work may now start working - please post in the XDA thread if so.

However, there could also be negative side effects, so if something stops working that did work with v2.22, please post about that as well.

(Note that I am not interested in root apps that did not work and still do not work)

I want to get a new version to the Play store in the next few days, so time is of the essence.

SuperSU BETA XDA thread: XDA

#HT

[size=18]SuperSU v2.24 BETA - moar testing![/SIZE]

Yes, another beta update. The test procedure and question is the same as for v2.23, so please read that post: https://plus.google.com/11351731947742…sts/jGoDoPPZUdT

During testing of v2.23 it became apparent a few calls still didn't work right. Investigating that issue lead me to the conclusion that the calls that were actually fixed in v2.23, would stop working the next (minor) Android update, due to new security commits in AOSP.

v2.24 should circumvent that, as well as fix additional calls (namely: am). In theory app compatibility should be the same or better as v2.23, but please test all your apps again to see if everything still works.

And yes, for those who keep asking, the new docs relating to SuperSU and Lollipop are underway and hopefully will be released in the next day or two.

[DLMURL]http://download.chainfire.eu/626/SuperSU/BETA-SuperSU-v2.24.zip[/DLMURL]

https://plus.google.com/11351731947742…sts/7sti4Z27usv

Kannst ja vielleicht beide in den Titel aufnehmen... STABLE is ja im mom noch die 2.16

edit:
Und vielleicht CF-Auto-Root auch mit aufnehmen weil es ja auch ein allgemeines Tools ist. Für mittlerweile über 50 Geräte! NEU: Alle NEXEN mit Android 5 (Lollipop) dabei!

Cnet

gapps

[size=18][COLOR=#ff0000]-----------
EDIT: DOWNLOAD REMOVED SuperSU BETA 2.24
too many issues, will investigate and re-release
-----------

https://plus.google.com/11351731947742…sts/7sti4Z27usv[/COLOR][/SIZE]

Update Marathon :moustach:

Zitat

v2.25 out now, supposed to fix the same thing v2.24 did. Please test and let me know!

https://plus.google.com/11351731947742…sts/7sti4Z27usv
ungültiger Link

hier sehen, was Google sich gemerkt hat.

hier sehen, was Google sich gemerkt hat.

+

[COLOR=#ff0000]@ChainfireXDA
Good news everyone, starting one of the upcoming SuperSU updates, modified kernels will no longer be needed for root on Android 5.0 ... !
18:09 - 19. Nov. 2014[/COLOR]

https://mobile.twitter.com/ChainfireXDA/s…253476021116928

Der Hund kriegt als hin[emoji106]

[COLOR=#ff0000]SuperSU v2.27 BETA - no more kernel patches?[/COLOR]

This new beta may be doing away with the previously needed kernel patches on Lollipop.

I should warn you however that this method is more invasive, and has a higher chance of bootloops. Probably the highest-bootloop-risk beta in quite a while. Please make sure you have a backup before flashing it. In case of bootloops, reflash the system partition.

If you've previously rooted, keeping the old patched kernel will do no harm, but it will also not properly test this beta. I suggest you flash back your device's stock kernel.

Remember that I rely on all you enthusiasts to test and report back issues. I prefer the reports in the BETA thread on XDA rather than over here, but I will read them here as well. Please include your device, firmware details, stock or patched kernel, and the problem in detail, when you report something.

XDA has some background details in their portal article, for those interested in that sort of thing: Man-In-The-Middle-Angriff

SuperSU BETA thread on XDA: Man-In-The-Middle-Angriff

Again, official docs are coming in the next few days. Let's get this all fixed and tested first, though!

hier sehen, was Google sich gemerkt hat.