Patching iOS kernel on jailbroken device (arm64).

Questions and Answers about all things *OS (macOS, iOS, tvOS, watchOS)

Re: Patching iOS kernel on jailbroken device (arm64).

Postby jara » Sat Feb 20, 2016 7:53 am

I 've attached code I use.
I've modified saelo kpatch.

Also in archive there are two panics from calls to kdump(not modified) and one panic from kpatch (modified by me).
Attachments
ios-kern-utils_clean.tar.gz
(218.97 KiB) Downloaded 85 times
jara
 
Posts: 10
Joined: Wed Feb 25, 2015 9:59 am

Re: Patching iOS kernel on jailbroken device (arm64).

Postby jara » Mon Feb 22, 2016 11:16 am

I performed analysis (not very deep due lack of knowledge) of my panics:
Kdump panics are stable at one place in _memmove.
Panics of my code are in _ovbcopy, which just rearrange arguments for _memmove, so crash again in _memmove, but the place of panic is different.

If somebody have any idea how to move further, I would highly appreciate it.

By the way, could I recover from panic not only point of crash but kernel callstack?
jara
 
Posts: 10
Joined: Wed Feb 25, 2015 9:59 am

Re: Patching iOS kernel on jailbroken device (arm64).

Postby jara » Wed Mar 02, 2016 12:59 pm

Problem is solved, permissions on kernel pages, are not permissions on kext pages.
jara
 
Posts: 10
Joined: Wed Feb 25, 2015 9:59 am

Previous

Return to Questions and Answers

Who is online

Users browsing this forum: No registered users and 1 guest