Skip to content

Commit

Permalink
iPhone14,5 iOS16.6b1
Browse files Browse the repository at this point in the history
  • Loading branch information
@Lrdsnow
Lrdsnow committed Jul 25, 2023
1 parent 1271660 commit c7778ae
Show file tree
Hide file tree
Showing 6 changed files with 70 additions and 70 deletions.
Binary file added .DS_Store
View file
Binary file not shown.
8 changes: 4 additions & 4 deletions kfd.xcodeproj/project.pbxproj
View file
Original file line number Diff line number Diff line change
Expand Up @@ -345,7 +345,7 @@
CODE_SIGN_STYLE = Automatic;
CURRENT_PROJECT_VERSION = 1;
DEVELOPMENT_ASSET_PATHS = "\"kfd/Preview Content\"";
DEVELOPMENT_TEAM = 4YW3B9LRX5;
DEVELOPMENT_TEAM = 8PHCD4D6H9;
ENABLE_HARDENED_RUNTIME = YES;
ENABLE_PREVIEWS = YES;
GENERATE_INFOPLIST_FILE = YES;
Expand All @@ -364,7 +364,7 @@
"LD_RUNPATH_SEARCH_PATHS[sdk=macosx*]" = "@executable_path/../Frameworks";
MACOSX_DEPLOYMENT_TARGET = 13.3;
MARKETING_VERSION = 1.0;
PRODUCT_BUNDLE_IDENTIFIER = com.p0up0u.kfd;
PRODUCT_BUNDLE_IDENTIFIER = com.lrdsnow.test;
PRODUCT_NAME = "$(TARGET_NAME)";
SDKROOT = auto;
SUPPORTED_PLATFORMS = "iphoneos iphonesimulator macosx";
Expand All @@ -386,7 +386,7 @@
CODE_SIGN_STYLE = Automatic;
CURRENT_PROJECT_VERSION = 1;
DEVELOPMENT_ASSET_PATHS = "\"kfd/Preview Content\"";
DEVELOPMENT_TEAM = 4YW3B9LRX5;
DEVELOPMENT_TEAM = 8PHCD4D6H9;
ENABLE_HARDENED_RUNTIME = YES;
ENABLE_PREVIEWS = YES;
GENERATE_INFOPLIST_FILE = YES;
Expand All @@ -405,7 +405,7 @@
"LD_RUNPATH_SEARCH_PATHS[sdk=macosx*]" = "@executable_path/../Frameworks";
MACOSX_DEPLOYMENT_TARGET = 13.3;
MARKETING_VERSION = 1.0;
PRODUCT_BUNDLE_IDENTIFIER = com.p0up0u.kfd;
PRODUCT_BUNDLE_IDENTIFIER = com.lrdsnow.test;
PRODUCT_NAME = "$(TARGET_NAME)";
SDKROOT = auto;
SUPPORTED_PLATFORMS = "iphoneos iphonesimulator macosx";
Expand Down
Binary file added kfd/.DS_Store
View file
Binary file not shown.
Binary file added kfd/libkfd/.DS_Store
View file
Binary file not shown.
Binary file added kfd/libkfd/info/.DS_Store
View file
Binary file not shown.
132 changes: 66 additions & 66 deletions kfd/libkfd/info/dynamic_info.h
View file
Original file line number Diff line number Diff line change
Expand Up @@ -105,83 +105,83 @@ struct dynamic_info {

const struct dynamic_info kern_versions[] = {
{
.kern_version = "Darwin Kernel Version 22.5.0: Mon Apr 24 21:09:28 PDT 2023; root:xnu-8796.122.4~1/RELEASE_ARM64_T8120",
.fileglob__fg_ops = 0x0028,
.fileglob__fg_data = 0x0038,
.fileops__fo_kqfilter = 0x0030,
.kern_version = "Darwin Kernel Version 22.6.0: Tue May 9 06:16:18 PDT 2023; root:xnu-8796.140.12.502.1~12/RELEASE_ARM64_T8110",
.fileglob__fg_ops = 0x28,
.fileglob__fg_data = 0x40 - 8,
.fileops__fo_kqfilter = 0x30,
// .fileproc__fp_iocount = 0x0000,
// .fileproc__fp_vflags = 0x0004,
// .fileproc__fp_flags = 0x0008,
// .fileproc__fp_guard_attrs = 0x000a,
// .fileproc__fp_glob = 0x0010,
// .fileproc__fp_guard = 0x0018,
// .fileproc__object_size = 0x0020,
.fileproc_guard__fpg_guard = 0x0008,
.kqworkloop__kqwl_state = 0x0010,
.kqworkloop__kqwl_p = 0x0018,
.kqworkloop__kqwl_owner = 0x00d0,
.kqworkloop__kqwl_dynamicid = 0x00e8,
.kqworkloop__object_size = 0x0108,
.pmap__tte = 0x0000,
.pmap__ttep = 0x0008,
.proc__p_list__le_next = 0x0000,
.proc__p_list__le_prev = 0x0008,
.proc__p_pid = 0x0060,
.proc__p_fd__fd_ofiles = 0x00f8,
.proc__object_size = 0x0730,
.pseminfo__psem_usecount = 0x0004,
.pseminfo__psem_uid = 0x000c,
.pseminfo__psem_gid = 0x0010,
.pseminfo__psem_name = 0x0014,
.pseminfo__psem_semobject = 0x0038,
.fileproc_guard__fpg_guard = 0x8,
.kqworkloop__kqwl_state = 0x10,
.kqworkloop__kqwl_p = 0x18,
.kqworkloop__kqwl_owner = 0xd0,
.kqworkloop__kqwl_dynamicid = 0xd0 + 0x18,
.kqworkloop__object_size = 0x108,
.pmap__tte = 0x0,
.pmap__ttep = 0x8,
.proc__p_list__le_next = 0x0,
.proc__p_list__le_prev = 0x8,
.proc__p_pid = 0x60,
.proc__p_fd__fd_ofiles = 0xf8,
.proc__object_size = 0x730,
.pseminfo__psem_usecount = 0x04,
.pseminfo__psem_uid = 0x0c,
.pseminfo__psem_gid = 0x10,
.pseminfo__psem_name = 0x14,
.pseminfo__psem_semobject = 0x38,
// .psemnode__pinfo = 0x0000,
// .psemnode__padding = 0x0008,
// .psemnode__object_size = 0x0010,
.semaphore__owner = 0x0028,
.specinfo__si_rdev = 0x0018,
.task__map = 0x0028,
.task__threads__next = 0x0058,
.task__threads__prev = 0x0060,
.task__itk_space = 0x0300,
.task__object_size = 0x0640,
.thread__task_threads__next = 0x0368,
.thread__task_threads__prev = 0x0370,
.thread__map = 0x0380,
.thread__thread_id = 0x0418,
.thread__object_size = 0x04c0,
.uthread__object_size = 0x0200,
.vm_map_entry__links__prev = 0x0000,
.vm_map_entry__links__next = 0x0008,
.vm_map_entry__links__start = 0x0010,
.vm_map_entry__links__end = 0x0018,
.vm_map_entry__store__entry__rbe_left = 0x0020,
.vm_map_entry__store__entry__rbe_right = 0x0028,
.vm_map_entry__store__entry__rbe_parent = 0x0030,
.vnode__v_un__vu_specinfo = 0x0078,
._vm_map__hdr__links__prev = 0x0010,
._vm_map__hdr__links__next = 0x0018,
._vm_map__hdr__links__start = 0x0020,
._vm_map__hdr__links__end = 0x0028,
._vm_map__hdr__nentries = 0x0030,
._vm_map__hdr__rb_head_store__rbh_root = 0x0038,
._vm_map__pmap = 0x0040,
._vm_map__hint = 0x0098,
._vm_map__hole_hint = 0x00a0,
._vm_map__holes_list = 0x00a8,
._vm_map__object_size = 0x00c0,
.semaphore__owner = 0x28,
.specinfo__si_rdev = 0x18,
.task__map = 0x28,
.task__threads__next = 0x80 - 0x28,
.task__threads__prev = 0x80 - 0x28 + 8,
.task__itk_space = 0x300,
.task__object_size = 0x640,
.thread__task_threads__next = 0x380 - 0x18,
.thread__task_threads__prev = 0x380 - 0x18 + 8,
.thread__map = 0x380,
.thread__thread_id = 0x418,
.thread__object_size = 0x4c0,
.uthread__object_size = 0x200,
.vm_map_entry__links__prev = 0x00,
.vm_map_entry__links__next = 0x08,
.vm_map_entry__links__start = 0x10,
.vm_map_entry__links__end = 0x18,
.vm_map_entry__store__entry__rbe_left = 0x20,
.vm_map_entry__store__entry__rbe_right = 0x28,
.vm_map_entry__store__entry__rbe_parent = 0x30,
.vnode__v_un__vu_specinfo = 0x78,
._vm_map__hdr__links__prev = 0x00 + 0x8,
._vm_map__hdr__links__next = 0x08 + 0x8,
._vm_map__hdr__links__start = 0x10 + 0x8,
._vm_map__hdr__links__end = 0x18 + 0x8,
._vm_map__hdr__nentries = 0x30,
._vm_map__hdr__rb_head_store__rbh_root = 0x38,
._vm_map__pmap = 0x40,
._vm_map__hint = 0x90 + 0x08,
._vm_map__hole_hint = 0x90 + 0x10,
._vm_map__holes_list = 0x90 + 0x18,
._vm_map__object_size = 0xc0,
.kernelcache__kernel_base = 0xfffffff007004000,
.kernelcache__cdevsw = 0xfffffff00a419208,
.kernelcache__gPhysBase = 0xfffffff007934010,
.kernelcache__gPhysSize = 0xfffffff007934018,
.kernelcache__gVirtBase = 0xfffffff0079321e8,
.kernelcache__perfmon_devices = 0xfffffff00a457500,
.kernelcache__perfmon_dev_open = 0xfffffff007eecfc0,
.kernelcache__ptov_table = 0xfffffff0078e7178,
.kernelcache__vm_first_phys_ppnum = 0xfffffff00a456990,
.kernelcache__vm_pages = 0xfffffff0078e3eb8,
.kernelcache__vm_page_array_beginning_addr = 0xfffffff0078e6128,
.kernelcache__vm_page_array_ending_addr = 0xfffffff00a456988,
.kernelcache__vn_kqfilter = 0xfffffff007f39b28,
.kernelcache__cdevsw = 0xfffffff00a519a30,
.kernelcache__gPhysBase = 0xfffffff0079502a8,
.kernelcache__gPhysSize = 0xfffffff0079502a8 + 8,
.kernelcache__gVirtBase = 0xfffffff00794e460,
.kernelcache__perfmon_devices = 0xfffffff00a559550,
.kernelcache__perfmon_dev_open = 0xfffffff007f1db9c,
.kernelcache__ptov_table = 0xfffffff0079039c0,
.kernelcache__vm_first_phys_ppnum = 0xfffffff00a558910,
.kernelcache__vm_pages = 0xfffffff007900110,
.kernelcache__vm_page_array_beginning_addr = 0xfffffff007902970,
.kernelcache__vm_page_array_ending_addr = 0xfffffff00a558908,
.kernelcache__vn_kqfilter = 0xfffffff007f6a0b8,
},
};

Expand Down

64 comments on commit c7778ae

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I recommend using ./autogen.sh —with-offsetexporter —without-img3tool —without-img4tool

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do I need anything else to build?

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As long as you have libgeneral you should be good

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How do I get it?

@AppInstalleriOSGH
Copy link

@AppInstalleriOSGH AppInstalleriOSGH commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I tried brew install libgeneral

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Build it from this repo: https://github.com/tihmstar/libgeneral

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could I get a set of commands to build and install please. I’m used to being able to just run “make”

@Lrdsnow
Copy link
Owner Author

@Lrdsnow Lrdsnow commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

./autogen.sh then make and finally sudo make install

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That’s it? If I have errors I’ll tell you here.

@Lrdsnow
Copy link
Owner Author

@Lrdsnow Lrdsnow commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You also need libinsn for libpatchfinder, its built the same way as libgeneral

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How do I get that??

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

https://github.com/tihmstar/libinsn and building it the same way as libgeneral

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok, I’ll try.

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

./autogen.sh: aclocal: command not found

@Lrdsnow
Copy link
Owner Author

@Lrdsnow Lrdsnow commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

brew install automake autoconf pkgconfig

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok

@AppInstalleriOSGH
Copy link

@AppInstalleriOSGH AppInstalleriOSGH commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Error: Invalid configuration —with-offsetexporter': machine —with-unknown' not recognized
configure: error: /bin/sh ./config.sub —with-offsetexporter failed

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I ran ./autogen.sh —with-offsetexporter —without-img3tool —without-img4tool like you said and I got that error

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Strange

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Got any ideas?

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You ran that for libpatchfinder right?

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe I should just install img4tool, would I go about that the same way with libgeneral?

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So libgeneral and libinsn built fine?

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As far as I know yeah

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here’s the exact commands I used to build the patch finder.

git clone https://github.com/tihmstar/libpatchfinder
cd libpatchfinder
./autogen.sh —with-offsetexporter —without-img3tool —without-img4tool
make
sudo make install

@Lrdsnow
Copy link
Owner Author

@Lrdsnow Lrdsnow commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

./autogen.sh --with-offsetexporter --without-img4tool --without-img3tool try this

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I’ll try

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

libpatchfinder/ibootpatchfinder/Makefile.am
(probably a GNU make extension)
configure: error: invalid package name: `offsetexporter,'

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That one doesn't even make sense to me

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any ideas?

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

try again without the accidental comma i added i just noticed

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should I just try getting img4tool?

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

img4tool would not change the result, the errors your getting are completely unrelated

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh

@GenericCoding
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Lrdsnow I got it working! However, I think I need to dump the kernel.dec using jtool2 right?

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

img4tool would not change the result, the errors your getting are completely unrelated

Have any other ideas? Could you just send me a compiled binary.

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Lrdsnow I got it working! However, I think I need to dump the kernel.dec using jtool2 right?

You can use img4tool to get kernel.dec

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

img4tool would not change the result, the errors your getting are completely unrelated

Have any other ideas? Could you just send me a compiled binary.

I use a hackintosh (x86_64) so i can't make a compiled binary for an arm mac very easily

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I could probably get the offsets you need for you though

@GenericCoding
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Lrdsnow i'm on 16.4.1 iPhone 13, but -- I think i am close to building it. I was having trouble building img4tool on arm but managed to build the offset finer.

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Lrdsnow i'm on 16.4.1 iPhone 13, but -- I think i am close to building it. I was having trouble building img4tool on arm but managed to build the offset finer.

Im unsure how to fix img4tool on arm but i can quickly get the offsets for you too if you'd like

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I could probably get the offsets you need for you though

Your talking to me?!

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

“./autogen.sh --without-img4tool --without-img3tool” This didn’t give me an error

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I could probably get the offsets you need for you though

Your talking to me?!

Yeah just name the device and version and i'll get you the offsets

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

“./autogen.sh --without-img4tool --without-img3tool” This didn’t give me an error

Yeah because it doesnt have the offset tools

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

iPhone XR iOS 16.3

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

THANK YOU!

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Aight ill make another branch on this repo with your offsets

@GenericCoding
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Lrdsnow yay thank you!

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Aight ill make another branch on this repo with your offsets

Thank you.

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@GenericCoding Heres your offsets from libpatchfinder: https://github.com/Lrdsnow/kfd/tree/kern-version-iPhone14%2C5_16.4.1

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@benjaminhornbeck6 And here are yours https://github.com/Lrdsnow/kfd/tree/kern-version-iPhone11%2C8_16.3

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My iPhone kernel panicked.

@AppInstalleriOSGH
Copy link

@AppInstalleriOSGH AppInstalleriOSGH commented on c7778ae Jul 25, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Panicked due to PPL, that sucks.

@Lrdsnow
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I just put the results from libpatchfinder, I’ll help any way I can I just am unsure how to fix the panic

@AppInstalleriOSGH
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

At least I have the correct offsets, thanks.

Please sign in to comment.