Root ZTE Zmax Pro Official Root Discussion

[Exodecim_]

Have the Blade Z Max, could I still get an invite to the discord? Thanks.

 

[trav0825]

Hello everyone! SapphireEx will announce something big later, something that we've been waiting for almost 2 years now.
If you're part of the Discord server you already know what it is.
See y'all later

I heard about the progress u guys are making over on xda...got my fingers crossed!! thanks for sticking with this phone for so long, most people would have given up by now!!!

 

[SapphireEx]

I'm not publically announcing anything until the script is ready for end users. Right now you will bootloop, but at least dm-verity has been disabled, and patched recovery has been flashed. I'll upload the script once it is ready. As it stands right now, everyone that runs it can have a full brick if not done perfectly.

*Discord link set to expire in one day. If it's expired, you got to it too late. https://discord.gg/4KFQna

 

[loonycgb2]

I'm not publically announcing anything until the script is ready for end users. Right now you will bootloop, but at least dm-verity has been disabled, and patched recovery has been flashed. I'll upload the script once it is ready. As it stands right now, everyone that runs it can have a full brick if not done perfectly.

*Discord link set to expire in one day. If it's expired, you got to it too late. https://discord.gg/4KFQna

Bluetooth hack didnt work as planned huh..

Good yall finally got it working tho.

 

[ohnoiforgotmypas]

does the current method work on all versions? i have T-mobile B08.
which versions has it been tested on?
thank you guys for never giving up.
i gave up a year ago.
been lurking this thread since it was only 2 pages long.

 

[loonycgb2]

Blueborne is working PERFECTLY FINE. It's still in the initial development stage. Dm-verity has been disabled and a modified recovery has been flashed. All that's left to do is a slight modification of the blueborne script. It's a mixture of the LG-DC that Sapphire patched and blueborne that's going to get us in the phone.

Sigh.....

So to answer your question, yes WE WERE RIGHT ABOUT BLUEBORNE VULNERABILITY. So far Sapphire has already dumped that RAM cache using it, we just need to bf some addresses to get further.

Lmao sapphire was right, you are just in there chatting up not coding.

Also i never said it didnt work, just said didnt work as planned.

Blueborne is currently being patched so its best to try to hurry before other phones get patched as saphire could help many other phones.

 

[ohnoiforgotmypas]

i know.
just wanted to know which versions it worked on.

 

[ohnoiforgotmypas]

Currently only tested on B08 I believe but I could be wrong.

thanks.
like i said, i've been lurking this thread since the beginning (the original thread. the one that has been locked. lol). feels like this thread has been dead for a few weeks now since you guys went to discord. just wanted an update.
i can't contribute anything towards root so i never bothered asking for a discord invite.

 

[Deleted User]

Please folks, don't attack each other and make assumptions. It seems that people have put in some hard work, and you're so close to a solution now. Would be a shame to fall out over silly things.

 

[messi2050]

Please folks, don't attack each other and make assumptions. It seems that people have put in some hard work, and you're so close to a solution now. Would be a shame to fall out over silly things.

They are not unfortunately, just thinking that as they are able to push the v20 recowvery they have made a progress is wrong as they are not able to have permissive selinux after reboot due to the locked bootloader is restoring stock (unmodified) boot.img on reboot so it's useless..

 

[loonycgb2]

They are not unfortunately, just thinking that as they are able to push the v20 recowvery they have made a progress is wrong as they are not able to have permissive selinux after reboot due to the locked bootloader is restoring stock (unmodified) boot.img on reboot so it's useless..

The kernel on reboot is causing the restore.

A complete system format with a simple rom based off stock kernel fixes the issue.

The recovery you made gave me partition read errors tho, not sure if my copy was bad

 

[messi2050]

The kernel on reboot is causing the restore.

A complete system format with a simple rom based off stock kernel fixes the issue.

The recovery you made gave me partition read errors tho, not sure if my copy was bad

so my recovery ever boot ?

 

[loonycgb2]

so my recovery ever boot ?

Yeah it boots but has read and write issues.

Had to resort to old 2.8 version using android kitchen to make things work..

Dont have a build pc right now

 

[messi2050]

Yeah it boots but has read and write issues.

Had to resort to old 2.8 version using android kitchen to make things work..

Dont have a build pc right now

for the data partition that's normal coz of encryption but you should be able to flash dm verity disabler and super su zip from sd card, if you have boot.img i can recheck if the partitions mount points are correct or not and rebuild a new recovery.

 

[loonycgb2]

for the data partition that's normal coz of encryption but you should be able to flash dm verity disabler and super su zip from sd card, if you have boot.img i can recheck if the partitions mount points are correct or not and rebuild a new recovery.

Didnt have to go that far since with new rom with su included and stock kernel caused a dm verity error but still boots.

I didnt think about the zip from jcaddo tho

 

[loonycgb2]

for the data partition that's normal coz of encryption but you should be able to flash dm verity disabler and super su zip from sd card, if you have boot.img i can recheck if the partitions mount points are correct or not and rebuild a new recovery.

Didnt have to go that far since with new rom with su included and stock kernel caused a dm verity error but still boots.

I didnt think about the zip from jcaddo tho

 

[messi2050]

Didnt have to go that far since with new rom with su included and stock kernel caused a dm verity error but still boots.

I didnt think about the zip from jcaddo tho

and how was you able to flash a new rom

 

[loonycgb2]

and how was you able to flash a new rom

Twrp 2.8 port

 

[loonycgb2]

and how was you able to flash a new rom

Also read n write are not blocked by dm verity.. Recovery partition has read and write permissions undr boot

 

[messi2050]

Literally Sapphire is almost done with the exploit.... There you go assuming again.

I can't understand what people can't grasp about dm-verity being disabled.

i was just offering help at discord

 

[loonycgb2]

i was just offering help at discord

So was i in the beginning lmao..

Cant even give opinions or thoughts these days without being attacked lol

 

[messi2050]

So was i in the beginning lmao..

Cant even give opinions or thoughts these days without being attacked lol

same here xD

 

[messi2050]

As soon as we have the 2 files we need the root exploit should be finished.

If you want to help, help. However bitching about how people aren't coding 24/7 or downplaying exploits that are known to work on every Bluetooth device as a waste of time is not helping. No one is getting paid to root this phone. Therefore there is no reason to spend every waking second coding.

Anyway hit me up if you needed help with twrp or kernel stuff

 

[pregantstarchmasks]

That's great progress guyz and galz, amazing work...
I can only imagine the hours you people put into this...
Hope this leads to what we've been waiting for and even if it doesn't kudos to you guyz...
Thank you everyone and happy Halloween...

 

[iancc86]

Can anyone invite me to the discord?