15/10/19 22:03:28.09 DUEyFZULe
ちょっと状況を整理します。
まずgitより以下の最新版をビルド
・android_get_essential_address
・backdoor_mmap_tools
SH-01FDQへ以下のモジュールを転送
・get_essential_address
・install_backdoor
・unlock_lsm_miyabi
・unlock_mmc_protect
次にget_essential_addressを実行
shell@android:/data/local/tmp $ ./get_essential_address
Device detected: SH-01FDQ (01.02.01)
Try without fb_mem_exploit fist...
Essential address are:
prepare_kernel_cred = 0xc01a4978
commit_creds = 0xc01a44a4
remap_pfn_range = 0xc021d2a0
vmalloc_exec = 0xc0229af4
ptmx_fops = 0xc11be708
shell@android:/data/local/tmp $
続いてinstall_backdoorを実行
(fi01さんよりアドバイスを頂き&をつけて実行
shell@android:/data/local/tmp $ ./install_backdoor &
[1] 6209
shell@android:/data/local/tmp $ Attempt acdb exploit...
SH-01FDQ (01.02.01) is not supported.
Attempt put_user exploit...
ioctl: Bad address
Attempt futex exploit...
futex_exploit: Server started
install_mmap: success
[1] + Done ./install_backdoor
shell@android:/data/local/tmp $
ここでusbケーブルを抜くと...
しばらくしてハードリセットがかかりrooted状態を維持できず...