Defeating KASLR Bus error, on rooted android tv 11

[alfky12]

My ps4 always successful using all other PPPwn/PPPwn_cpp tools. (I mention this so that you don't think that my PS4 is one of those that can't be PPPwned.)

But yours, always end up defeating KASLR Bus error and ps4 got KP and force shutdown. Maybe because android tv have integrated LAN? And yours looking for LAN adapter for android phone?

I dont have rooted android phone to test it.

[deviato]

That's exactly the same problem I had trying to compile via the cross-compiler provided in the original sources. I suggest you try this way which solved my problem https://github.com/deviato/DroidPPPwn/issues/4#issuecomment-2132334776

Il lun 27 mag 2024, 00:33 alfky12 @.***> ha scritto:

My ps4 always successful using all other PPPwn/PPPwn_cpp tools. (I mention this so that you don't think that my PS4 is one of those that can't be PPPwned.)

But yours, always end up defeating KASLR Bus error and ps4 got KP and force shutdown. Maybe because android tv have integrated LAN? And yours looking for LAN adapter for android phone?

I dont have rooted android phone to test it.

IMG_8204.jpeg (view on web) https://github.com/deviato/DroidPPPwn/assets/100685677/df89b0c5-d4bb-4107-9ca6-f630c9d1ae8a

— Reply to this email directly, view it on GitHub https://github.com/deviato/DroidPPPwn/issues/6, or unsubscribe https://github.com/notifications/unsubscribe-auth/AACQFQRQ5T2Y4KZRNKCL4P3ZEJPK3AVCNFSM6AAAAABIKE24S6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGMYTOOJWGIZTSNA . You are receiving this because you are subscribed to this thread.Message ID: @.***>

[alfky12]

That's exactly the same problem I had trying to compile via the cross-compiler provided in the original sources. I suggest you try this way which solved my problem #4 (comment)>

already did that, but still Defeating KASLR Bus error. I think to stop trying here, afraid to brick my PS4. I'll keep monitoring until it work on android tv. Thank you.

[alfky12]

Finally it worked. I used a "donor" pppwn file from another project, and it worked. It turns out that the bus error indicates the use of a pppwn file that does not comply with the architecture. Making it on your own device also doesn't help.

[kevsestre]

Hi @alfky12 , I'm facing this the same. Could you share your pppwn file here? I'm also doing this on a tv with armv7 arch, but the one from pppwn.jar leads to bus error on mine. I'm having trouble doing the termux procedure due to limited storage on the device.

[Andryshik345]

It turns out that the bus error indicates the use of a pppwn file that does not comply with the architecture. Making it on your own device also doesn't help.

@alfky12 Ugh, but if you dont cross-compile, then it always should compile it for your exact architecture, that didn't work for you?

[alfky12]

@alfky12 Ugh, but if you dont cross-compile, then it always should compile it for your exact architecture, that didn't work for you?

Yes, it didn't work. The size of the PPPwn file created on my Android TV box is around 1.3MB, while the "donor" PPPwn file which works well is only around 600 KB. Maybe the PPPwn file created is "all in one", and DroidPPPwn chooses automatically based on the application and device architecture. Meanwhile, the donor PPPwn is only for one architecture so DroidPPPwn is "forced" to use it, and instead it works well. This is just my guess.