rootvnode_offset about yalu102 HOT 46 CLOSED

iPhone 6s // iOS 10.2 // N71mAP

allproc_offset = 0x5a8438;
procoff = 0x360;
rootvnode_offset = 0x5b20b8;

from yalu102.

yep! that looks successful! if you put a valid rootvnode it's going to remount / as readwrite.

from yalu102.

rootvnode is very easy to find: just run the 'nm' command on a decompressed kernel, one of the symbols is rootvnode. and here is fine.

from yalu102.

@EGYbkgo9449 Oops, thanks!

from yalu102.

@ca13ra1 I got the same

from yalu102.

5s n51 rootvnode fffffff0075b60b8 S _rootvnode & 5s allproc_offset = 0x5ac418

from yalu102.

Unrelated questions will be removed. Stop it.

from yalu102.

@kpwn I just kept the rootvnode offset the same, didn't change rootvnode just allproc_offset . Would that be an issue? Also didn't seem to do anything for my device after it rebooted.

from yalu102.

Yes, you need rootvnode. No extraction of bootstrap is being done at the moment, however.

from yalu102.

@kpwn Ok, thank you!

from yalu102.

@kpwn sorry for commenting a lot but I've got the rootvnode offset, it said on Xcode already jailbroken but no Cydia, so have you implemented the Cydia yet or no ???

from yalu102.

I meant where is rootvnode offset located so i can put in the correct one @kpwn

from yalu102.

@CrypticGit clone the latest commit

from yalu102.

@williamfs i did its giving me apple mach o linker errors

from yalu102.

@kpwn Would you like us to send you our offsets after we find them?

from yalu102.

Yes, it's part of the reason why this is opensource.

from yalu102.

Where should we send them?

from yalu102.

@kpwn I already found it, tell me where should I submit my offsets :)

from yalu102.

@kpwn Im confused my device says one kernel but the ipsw says another

from yalu102.

Wait is kpwn Luca or? I'm confused

from yalu102.

@kpwn is it interesting to know them for tvOS ?
If so, I can find them, but I won't be able to confirm they work unless I'm able to build the app

from yalu102.

@williamfs delete the 7 from the rootvnode_offset

from yalu102.

The correct rootvnode_offset is rootvnode_offset = 0x5ae0b8;

from yalu102.

@kpwn reporting back. Got it working on 6s 10.2 N71mAP. Cydia is on the device now! :D

from yalu102.

I also have it 💃

from yalu102.

Yep, working here too

from yalu102.

Welcome to the club 😎

from yalu102.

@williamfs What offsets did you use? I found

from yalu102.

I used the last commited version with new offsets

from yalu102.

Guys remember to NOT install the Substrate Fix and run the command to fix facetime and those things.

from yalu102.

@BryanSuero No.

from yalu102.

@kpwn do i edit the offsets above the if statements or leave them?

from yalu102.

@kpwn What would happens if you run the commands to fix them? Because I already did it and it didn't fix it

from yalu102.

Moreover, remember it's not aimed to be used on any "everyday" iPhone

from yalu102.

I do found fffffff0075c20b8 rootvnode for iPhone 6, in case anyone if need

from yalu102.

Worked here too (6S+) :P

from yalu102.

@williamfs didn't update to the latest commit lol :) Working now fine

from yalu102.

BTW, how can I convert rootvnode?

from yalu102.

You have to subtract the kernel base to get the offset

from yalu102.

@BryanSuero thank you!

from yalu102.

@berkeelevent check Ian Beer's Google Code

from yalu102.

Iphone 6s samsung 10.1.1 offsets:
allproc_offset = 0x5a8148;
procoff = 0x360;
rootvnode_offset = 0x5ae0b8;

@kpwn

from yalu102.

does anybody have iphone 6? I did found all offsets but still cant make it work

allproc_offset = 0x5b8468;
procoff = 0x360;
rootvnode_offset = 0x5be0b8;

I got;

then it just reboots

from yalu102.

@berkeelevent Someone asked me to find 6+ offsets i dont know if they are the same.

from yalu102.

@CrypticGit I can try

from yalu102.

@berkeelevent I think the code itself doesn't support the iPhone 6/+ yet. I could be wrong however but i added the offsets myself for 6+ and i get a kernel panic still on "got a cpacr", just wait for Q to update this repo!

from yalu102.