Skip to content

Commit

Permalink
these are not slid
Browse files Browse the repository at this point in the history
  • Loading branch information
@jakeajames
jakeajames authored Mar 10, 2019
1 parent 6c8aed9 commit 09a1c2f
Showing 1 changed file with 12 additions and 12 deletions.
24 changes: 12 additions & 12 deletions patchfinder64.m
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1405,7 +1405,7 @@ addr_t Find_l2tp_domain_module_start() {
// not sure if this is constant among all devices if (val == 0x8010000001821088) return string + KernDumpBase - 0x20;
// return 0;

return string + KernDumpBase - 0x20;
return string + KernDumpBase - 0x20 + KASLR_Slide;
}

addr_t Find_l2tp_domain_module_stop() {
Expand All @@ -1418,7 +1418,7 @@ addr_t Find_l2tp_domain_module_stop() {
// not sure if this is constant among all devices if (val == 0x8178000001821180) return string + KernDumpBase - 0x18;
// return 0;

return string + KernDumpBase - 0x18;
return string + KernDumpBase - 0x18 + KASLR_Slide;
}

addr_t Find_l2tp_domain_inited() {
Expand All @@ -1433,7 +1433,7 @@ addr_t Find_l2tp_domain_inited() {
return 0;
}

return addr + KernDumpBase;
return addr + KernDumpBase + KASLR_Slide;
}

addr_t Find_sysctl_net_ppp_l2tp() {
Expand All @@ -1449,7 +1449,7 @@ addr_t Find_sysctl_net_ppp_l2tp() {
return 0;
}

return addr + KernDumpBase;
return addr + KernDumpBase + KASLR_Slide;
}

addr_t Find_sysctl_unregister_oid() {
Expand All @@ -1474,7 +1474,7 @@ addr_t Find_sysctl_unregister_oid() {
if (!call) {
return 0;
}
return call + KernDumpBase;
return call + KernDumpBase + KASLR_Slide;
}

addr_t Find_mov_x0_x4__br_x5() {
Expand All @@ -1487,7 +1487,7 @@ addr_t Find_mov_x0_x4__br_x5() {
return 0;
}

return addr - (uint64_t)Kernel + KernDumpBase;
return addr - (uint64_t)Kernel + KernDumpBase + KASLR_Slide;
}

addr_t Find_mov_x9_x0__br_x1() {
Expand All @@ -1500,7 +1500,7 @@ addr_t Find_mov_x9_x0__br_x1() {
return 0;
}

return addr - (uint64_t)Kernel + KernDumpBase;
return addr - (uint64_t)Kernel + KernDumpBase + KASLR_Slide;
}

addr_t Find_mov_x10_x3__br_x6() {
Expand All @@ -1513,7 +1513,7 @@ addr_t Find_mov_x10_x3__br_x6() {
return 0;
}

return addr - (uint64_t)Kernel + KernDumpBase;
return addr - (uint64_t)Kernel + KernDumpBase + KASLR_Slide;
}

addr_t Find_kernel_forge_pacia_gadget() {
Expand All @@ -1527,7 +1527,7 @@ addr_t Find_kernel_forge_pacia_gadget() {
return 0;
}

return addr - (uint64_t)Kernel + KernDumpBase;
return addr - (uint64_t)Kernel + KernDumpBase + KASLR_Slide;
}

addr_t Find_kernel_forge_pacda_gadget() {
Expand All @@ -1541,7 +1541,7 @@ addr_t Find_kernel_forge_pacda_gadget() {
return 0;
}

return addr - (uint64_t)Kernel + KernDumpBase;
return addr - (uint64_t)Kernel + KernDumpBase + KASLR_Slide;
}

addr_t Find_IOUserClient_vtable() {
Expand Down Expand Up @@ -1569,7 +1569,7 @@ addr_t Find_IOUserClient_vtable() {

//vtable -= 0x10;

return vtable + KernDumpBase;
return vtable + KernDumpBase + KASLR_Slide;
}

addr_t Find_IORegistryEntry__getRegistryEntryID() {
Expand All @@ -1594,5 +1594,5 @@ addr_t Find_IORegistryEntry__getRegistryEntryID() {
addr = (uint64_t)Boyermoore_horspool_memmem((unsigned char *)(addr + 4), XNUCore_Size, (const unsigned char *)bytes, sizeof(bytes));
}

return addr + KernDumpBase - (uint64_t)Kernel;;
return addr + KernDumpBase - (uint64_t)Kernel + KASLR_Slide;
}

0 comments on commit 09a1c2f

Please sign in to comment.