GitHub - comex/white: a somewhat saner harness for running code in the iOS kernel

Branches Tags

Name		Name	Last commit message	Last commit date
Latest commit History 103 Commits
.gitignore		.gitignore
.gitmodules		.gitmodules
Makefile		Makefile
README		README
black.c		black.c
black.h		black.h
creep.c		creep.c
creepasm.S		creepasm.S
ent.plist		ent.plist
failsafe.S		failsafe.S
kcode.c		kcode.c
kcode.h		kcode.h
kinc.h		kinc.h
mem.c		mem.c
milk.c		milk.c
protoss.c		protoss.c
protossasm.S		protossasm.S
serialplease.c		serialplease.c
stuff.c		stuff.c
white_loader.c		white_loader.c
xnu-32bit-stuff.diff		xnu-32bit-stuff.diff

Repository files navigation

A somewhat saner harness for running code in the iOS kernel.

However, still a hack.

Note: armv7 only for now.

- Pulling

Remember to 'git submodule update' after 'git pull'.

- Compiling

You need the iOS SDK and a copy of the xnu source (to build mem.c).  You can get the latter from here:

http://opensource.apple.com/tarballs/xnu/xnu-1504.7.4.tar.gz

Apply the patch in xnu-32bit-stuff.diff.  (This is a hack: it patches types.h for i386 because mem.c is pretending to be i386, which makes it correct for arm but incorrect for i386.  So revert it before compiling any i386 kernels afterwards...)

Symlink the extracted directory to xnu, then make.

- Running

for mem (i.e. re-enable kmem on iOS 4.1+):

./loader -l kern mem.dylib
mknod /dev/mem c 3 0
mknod /dev/kmem c 3 1

for kcode:

./loader -l kern kcode.dylib
./stuff

lots of random options, -c doesn't work yet.  The most useful ones are -0 and -1 to dump the page table.