SamyGO

Posted: **Mon Sep 23, 2013 6:45 am**

weird can be we need to disasm gap8akuc aswell. Prairie, have you stopped ida yesterday?

Posted: **Mon Sep 23, 2013 11:39 am**

well it stopped by itself (IDLE showing for AU) and that is what I uploaded but won't load for you. What I've been doing is loading the binary and just letting it auto-analyze, this takes about 4 hours. I can reopen the generated .idb in the absence of of the binary but you can't for some reason.Here is the binary.

Posted: **Mon Sep 23, 2013 11:44 am**

bugficks wrote:syms are same.. did you forget "-r" when trying sleeptimer?

You have to load this lib with a "-r" key at the end.

Code: Select all

cd /mtd_down/so
./samyGOso -p $(pidof exeAPP || pidof exeDSP) -l /mtd_down/so/libSleepTimer.so -r

Posted: **Mon Sep 23, 2013 12:08 pm**

juuso wrote:
bugficks wrote:syms are same.. did you forget "-r" when trying sleeptimer?
You have to load this lib with a "-r" key at the end.
Code: Select all
cd /mtd_down/so
./samyGOso -p $(pidof exeAPP || pidof exeDSP) -l /mtd_down/so/libSleepTimer.so -r

Think I tried both but can't remember. Just loading the .so crashed exeDSP. bugficks checked syms for DEUC, maybe AKUC is different? I can test again but not until next week when back from trip.

Posted: **Mon Sep 23, 2013 12:22 pm**

there is no "just" loading:) i inject code into exeDSP that loads the .so.
when used hooking (which sleeptimer does) -r is required or else hooks point to nirvana which sure make exeDSP crash
also "cat /mtd_rwarea/Sleeptimer.log" and maybe "dmesg" if it crashes.

Posted: **Mon Sep 23, 2013 12:59 pm**

a nirvana pointer, nice.

ok, sounds like user error, will test it this weekend

SamyGO

Toolchain guidance needed

Re: Toolchain guidance needed

Re: Toolchain guidance needed

Re: Toolchain guidance needed

Re: Toolchain guidance needed

Re: Toolchain guidance needed

Re: Toolchain guidance needed