This repository has been archived by the owner on May 10, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 8
/
Copy pathTESTING
73 lines (55 loc) · 2.11 KB
/
TESTING
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
== Testing ==
The following are different things that need testing:
- bvx2, encrypted
- lzss, encrypted
- bvz2, unencrypted
- lzss, unencrypted
- uncompressed, unencrypted
- uncompressed
- Complete .img4
- im4p, im4m, im4r
- extracting (with the above combinations)
- decrypting (with the above combinations)
- decrypting / splitting SEPOS
TODO:
- Cannot use '-a' and '-e' at the same time, but can when using '-k'
List of firmwares, and which components have passed testing:
NOTES ABOUT IBOOT/IBEC/IBSS/LLB:
They aren't Mach-O's, they're plain data. To find Load Address disassemble
from 0x0 and take the first 'LDR' instruction, e.g.:
ROM:000 loc_0
ROM:000
ROM:000 ADRP X0, #loc_0@PAGE
ROM:004 ADD X0, X0, #loc_0@PAGEOFF <=== X0 has the current page address
ROM:008 LDR X1, =0x83D37B000 <=== this is the loading address
Useful image for when i do disassembly https://i.stack.imgur.com/0cPOx.png
== iOS 9
- Kernelcache: PASSED
- iBoot: PASSED
- iBEC: PASSED
- iBSS: PASSED
- LLB: PASSED
== iOS 10
- Kernelcache: PASSED
- iBoot: PASSED
- iBEC: PASSED
- iBSS: PASSED
- LLB: PASSED
== iOS 11
- Kernelcache: PASSED
- iBoot: PASSED
- iBEC: PASSED
- iBSS: PASSED
- LLB: PASSED
== iOS 12
- Kernelcache: PASSED
- iBoot: FAILED
- iBEC: FAILED
- iBSS: FAILED
- LLB: FAILED
== iOS 13
- Kernelcache: PASSED
- iBoot: FAILED
- iBEC: FAILED
- iBSS: FAILED
- LLB: FAILED