With the new 4.3 binary I cannot enter su (Supervisory state)

506 views
Skip to first unread message

Sandor Lengyel

unread,
Jul 27, 2013, 11:03:42 AM7/27/13
to andro...@googlegroups.com
I use it on Acer Apire One.
The SU mode on the ICS binary worked

Sandor Lengyel

unread,
Jul 28, 2013, 2:08:24 PM7/28/13
to andro...@googlegroups.com
I found the problem. Have to install SuperSu. Then su work, but supersu still does not work.

Tony Tame

unread,
Jul 28, 2013, 4:41:30 PM7/28/13
to andro...@googlegroups.com
How did you install supersu? My doesn't install it (failed).

Greg McGee

unread,
Jul 28, 2013, 5:33:51 PM7/28/13
to andro...@googlegroups.com
I couldn't get supersu to install: 
superuser installs but does nothing.

OTOH alt+F1 gives me a root shell, I suspect something simply needs tweaked in /etc/permissions/ to allow the user to use su 

Haven't had time to poke that tiger yet.

Greg McGee

unread,
Jul 28, 2013, 8:58:25 PM7/28/13
to andro...@googlegroups.com
no shell access set in /etc/permissions/platform.xml

I'm going to copy over the version from 4.2 and see if that does the trick...

Greg McGee

unread,
Jul 28, 2013, 9:17:59 PM7/28/13
to andro...@googlegroups.com
..or course nothing is ever simple.

dscm

unread,
Jul 28, 2013, 11:48:12 PM7/28/13
to andro...@googlegroups.com
using ADB shell and su worked fine for me........android-x86 4.3 

........???????????

BitBooster

unread,
Jul 29, 2013, 3:10:18 AM7/29/13
to andro...@googlegroups.com
@dscm su works! Only apk cannot elevate using su command...
...............????

BitBooster

unread,
Jul 29, 2013, 5:01:10 AM7/29/13
to andro...@googlegroups.com
Adding only just shell permission in /system/etc/permissions/platform.xml
didn't work it for me....

Chih-Wei Huang

unread,
Jul 29, 2013, 5:04:32 AM7/29/13
to Android-x86
Indeed 'su' doesn't work is a known issue in this release.
(will add it to the release note)
It is probably due to the new security policies
introduced in android 4.3. (file_contexts?)
Unfortunately I don't have enough time or
knowledge to find a good solution yet.

Patches are welcome.


2013/7/29 BitBooster <postvo...@yahoo.com>:
> @dscm su works! Only apk cannot elevate using su command...
> ...............????

--
Chih-Wei
Android-x86 project
http://www.android-x86.org

fuzzy7k

unread,
Jul 29, 2013, 9:33:39 AM7/29/13
to andro...@googlegroups.com
yeah, file_contexts are SELinux attributes. I've not dealt with it in android yet, but there are a few different modes that you can try. In strict mode, nothing will work unless it has been granted explicit permission. Targeted mode only does this in a targeted way. i.e. you want to limit what a boot service is allowed to do, you write a policy that grants it permission to do those things. If it tries to do anything else, it will fail. However, everything that has not been targeted runs unrestricted, like it used to. That would be the first thing to try. Even more effective is lowering the state that selinux is running, permissive or disabled. Permissive checks the rules, but does not enforce them.

Normally you can set all of this in /etc/selinux/config:
SELINUX=disabled|permissive|enforcing
SELINUXTYPE=targeted|strict

for a quick fix you can normally run setenforce 0 to put it permissive mode.

file_contexts are a part of the policy scheme. All files must have a label, or multiple label's, so that that the policy can know, for instance, if a particular service is allowed to read from it. A whole other level of file permission.

I read on the cyanogenmod rss feed that they are working on policies, so this might be something we can borrow from them, at least for superuser.

dscm

unread,
Jul 29, 2013, 10:50:09 AM7/29/13
to andro...@googlegroups.com, postvo...@yahoo.com
well that's a totally different issue than "I cannot enter su" which is what I addressed....

sol64

unread,
Jul 29, 2013, 12:12:22 PM7/29/13
to andro...@googlegroups.com
try this permission manager....

http://pocketnow.com/2013/07/26/android-permission-controls

Ralf ranfyy

unread,
Jul 30, 2013, 1:56:04 AM7/30/13
to andro...@googlegroups.com

On Monday, July 29, 2013 6:12:22 PM UTC+2, sol64 wrote:
try this permission manager....

http://pocketnow.com/2013/07/26/android-permission-controls

Sandor Lengyel

unread,
Jul 30, 2013, 5:20:54 PM7/30/13
to andro...@googlegroups.com
Installed install supersu to 4.01 and than copy the related binary to 4.3 (/system/xbin/su)


On Saturday, July 27, 2013 8:03:42 AM UTC-7, Sandor Lengyel wrote:

Greg McGee

unread,
Aug 2, 2013, 3:22:50 AM8/2/13
to andro...@googlegroups.com
Tried that to no effect.

Thought:
This build seems to work quite well save for the permissions issues.

Has anyone:
1) Built and replaced JUST the kernel WITHOUT SELinux support?
simply turning it off in the init or via the shell living on VT1 doesn't seem sufficient.
(note to self any boot parameters)

2)Built the supporting SEAdmin app (for android-x86) to actually manage things?

Greg McGee

unread,
Aug 2, 2013, 3:32:02 AM8/2/13
to andro...@googlegroups.com
I don't suffer from being an optimist.
A masochistic streak helps.

(turning selinux off via a selinux=0 argument in grub had no apparent effect)

fuzzy7k

unread,
Aug 2, 2013, 12:57:19 PM8/2/13
to andro...@googlegroups.com

Has anyone:
1) Built and replaced JUST the kernel WITHOUT SELinux support?
simply turning it off in the init or via the shell living on VT1 doesn't seem sufficient.
(note to self any boot parameters)
 
If you look at the kernel config, it's already not built.
Message has been deleted

fgdn17

unread,
Aug 12, 2013, 6:24:56 PM8/12/13
to andro...@googlegroups.com
Reply all
Reply to author
Forward
Message has been deleted
Message has been deleted
0 new messages