I'm bored so I figured I would ask:



"Is anyone working on rooting the droid 2?"

Rootzwiki tweeted earlier that Birdman will check it out next if they can get enough donations to buy him a D2.  Already sent my $20 to Alldroid

seriously...i mean im very happy that I got my X rooted and Birdman & Koush-Cyanogen got a recovery working on the X but dizamn...does anyone know that the Droid 2 is out? Feels like the Droid 2 doesn't even exist. Well hopefully someone can root the Droid 2 and thank you again to all the dev's out there working on all these sweet android devices!

Nice to see some new faces willing to work on this.  I'm very new to Linux, so I probably won't be of much help in finding exploits but I'm comfortable with ADB and would be willing to help test any hacks.  Hopefully we get an sbf leak eventually too.

I found the source for the exploit (should have realized it was included with the droid x exploit just a few forums over [http://alldroid.org/default.aspx?g=posts&t=493].

Anyway after looking through there and comparing what I saw on the droid 2 it looked very similar. The same file system (ext3), and mount points (/dev/block/mmcblk1p21 and /etc/firmware) are all there. The only thing missing is the /sqlite_stmt_journals dir. However it seems that this isn't strictly required, so I just followed the steps for the droid x root (in the post I linked to above), except I changed the directory to /tmp for the exploid location.

It ran and output successfully, but I got nothing. I tried both the wifi and bluetooth in varying configurations and also trying the exploid file in /data/local/tmp, but although it looks like it should work nothing happens. At least it isn't breaking or crashing my phone :)


In the meantime I was working on recompiling and I think I have that finally working. I was able to insert a few print statements into the code and it otherwise appears to work as the original (and still doesn't work). I'm going to be adding a lot more debug statements so I can try to make sense of the exploid because it's all still black magic to me.

From what I understand it uses something about hotplugging (which is triggered with wifi and or bluetooth activation) to get the init proces (which is running as root) to copy it's self to the system/bin directory as rootshell and run from there. It sounds like it should work, and from what I can tell not too much in this area has changed for froyo, but I'm still not sure what I'm looking for. If anyone has suggestions for what to look for in the code and or add to it I can readily change it now.

..and I would assume you already looked at this but in case you didn't: http://c-skills.blogspot...07/android-trickery.html



There's seems to be quite a bit of info in the readme's.

Well it looks like we at least have proof it can be done:

"never say i never did anything for you guys, 2.2 leak from @p3droid is rooted by yours truely ;)"

https://twitter.com/_mrbirdman_/status/21649457649



Anyone ballsy enough to give this a try?

http://www.droid-life.co...using-universal-androot/



I would, but I'm terrified to risk it without a backup method.  

The latest droid x instructions seems to imply you have to start from 2.1 and go from there.  Bad news for us if that is the case, but I may be missing something.



I'm not sure about the universal android exploit.  I'm looking through the code now.  It cleans up after itself better and uses some tricks to figure out the mount point for various phones, but it doesn't look like it's doing anything significantly different from the previous exploid.  I'll see if I can pull out some of the changes and try them directly, I'm not quite willing to just run an app and hope it works

From what ive read sqlite is just a logging software but it is odd its not its in every other phone

The man who found the original exploid vulnerability is taking a look at the Droid 2:

http://c-skills.blogspot.com/2010/08/droid2.html



I donated to alldroid hoping for some D2 love, but maybe we'll have to look elsewhere.

Yeah this is great news.  I'd like to test, but not quite sure of the process.  It seems that we would follow the Droid X instructions with a few modifications, but I'll let someone more experienced take a look first. 

Right, I've been looking at it and it seems straightforward.  I just wouldn't know what to do if I mess something up.  Eh, maybe I'll just give it a shot and hope for the best.

I'll take a look when I get home, if I can. I am new to this stuff as well.