Oneplus 9RT修补刷入后卡一屏无限重启
natsumerinchan opened this issue · 0 comments
natsumerinchan commented
设备: Oneplus 9RT(martini)
系统版本:Matrixx 10.4.2 (Android14)
KernelPatch版本: 0.10.7
内核版本: 5.4.268
修补log:
[+] kernel image_size: 0x02d72a00
[+] kernel uefi header: true
[+] kernel load_offset: 0x00080000
[+] kernel kernel_size: 0x030d0000
[+] kernel page_shift: 12
[+] new kernel image ...
[+] linux_banner 1: Linux version 5.4.268-Dynamite-g6b7cccf440c1 (mrick@serevrhub) (Android (10087095, +pgo, +bolt, +lto, -mlgo, based on r487747c) clang version 17.0.2 (https://android.googlesource.com/toolchain/llvm-project d9f89f4d16663d5012e5c09495f3b30ece3d2362), LLD 17.0.2) #1 SMP PREEMPT Wed Apr 17 16:50:24 UTC 2024
[+] linux_banner offset: 0x2507b52
[+] kernel version major: 5, minor: 4, patch: 255
[+] kallsyms_token_table offset: 0x021aad28
[+] endian: little
[+] kallsyms_token_index offset: 0x021ab060
[+] find arm64 relocation kernel_va: 0xffffffffffffffff
[?] can't find arm64 relocation table
[+] kallsyms_markers range: [0x021aa010, 0x021aad24), count: 0x00000345
[+] approximate kallsyms_offsets range: [0x01c8a2fc, 0x01d5b364) count: 0x0003441a
[+] kallsyms_names offset: 0x01d5b378
[+] kallsyms_num_syms offset: 0x01d5b370, value: 0x00034419
[+] names table linux_banner index: 0x00021172
[+] linux_banner index: 0
[+] kallsyms_offsets offset: 0x01c8a300
[+] layout kimg: 0x0,0x2d72a00, kpimg: 0x2d73000,0x27f80, extra: 0x2d9af80,0x80, end: 0x2d9b000, start: 0x30d0000
[+] kpimg version: a07
[+] kpimg compile time: 12:16:35 May 1 2024
[+] kpimg config: android, release
[+] tcp_init_sock: type: T, offset: 0x01603da0
[+] map_start: 0x1603da0, max_size: 0x800
[+] kallsyms_lookup_name: type: T, offset: 0x003b9670
[+] printk: type: T, offset: 0x0034b740
[+] memblock_reserve: type: T, offset: 0x00513c30
[+] memblock_free: type: T, offset: 0x00513ab0
[+] memblock_mark_nomap: type: T, offset: 0x005140d0
[+] memblock_phys_alloc_try_nid: type: T, offset: 0x02875f8c
[?] no symbol: memblock_virt_alloc_try_nid
[+] memblock_alloc_try_nid: type: T, offset: 0x02876120
[+] panic: type: T, offset: 0x002a4648
[+] rest_init: type: T, offset: 0x018fcb40
[+] kernel_init: type: t, offset: 0x018fcc20
[?] no symbol: report_cfi_failure
[?] no symbol: __cfi_slowpath_diag
[+] __cfi_slowpath: type: T, offset: 0x004767c0
[+] copy_process: type: t, offset: 0x0029f750
[?] no symbol: do_execveat_common
[+] __do_execve_file: type: t, offset: 0x005608f0
[?] no symbol: do_execve_common
[+] do_faccessat: type: T, offset: 0x0054b4b0
[+] __arm64_sys_faccessat: type: T, offset: 0x0054b890
[?] no symbol: __arm64_sys_faccessat2
[?] no symbol: sys_faccessat2
[+] __arm64_sys_newfstatat: type: T, offset: 0x0055c3c0
[+] vfs_statx: type: T, offset: 0x0055c0f0
[?] no symbol: vfs_fstatat
[+] avc_denied: type: t, offset: 0x007b3a80
[+] slow_avc_audit: type: T, offset: 0x007b2710
[+] input_handle_event: type: t, offset: 0x00e239f0
[+] superkey: zzzzzzzzzzzzz
[+] paging_init: type: T, offset: 0x0285b154
[+] patch done: kernel
原boot: boot.zip
修补后的boot: new-boot.zip
其他:
/data/adb/ap/log 和 /sys/fs/pstore下无任何内容
~/Download/apatch $ adb root
restarting adbd as root
~/Downloads/apatch $ adb shell
OP5155L1:/ # zcat /proc/config.gz | grep KALLSYMS
CONFIG_KALLSYMS=y
CONFIG_KALLSYMS_ALL=y
CONFIG_KALLSYMS_BASE_RELATIVE=y
OP5155L1:/ #