2017-06-03 20:19:01 +08:00
|
|
|
#!/system/bin/sh
|
|
|
|
##########################################################################################
|
|
|
|
#
|
|
|
|
# Magisk Boot Image Patcher
|
|
|
|
# by topjohnwu
|
2017-07-25 02:02:19 +08:00
|
|
|
#
|
2017-07-10 00:17:34 +08:00
|
|
|
# This script should be placed in a directory with the following files:
|
2017-07-25 02:02:19 +08:00
|
|
|
#
|
2017-06-03 20:19:01 +08:00
|
|
|
# File name type Description
|
2017-07-25 02:02:19 +08:00
|
|
|
#
|
2017-06-03 20:19:01 +08:00
|
|
|
# boot_patch.sh script A script to patch boot. Expect path to boot image as parameter.
|
|
|
|
# (this file) The script will use binaries and files in its same directory
|
|
|
|
# to complete the patching process
|
|
|
|
# magisk binary The main binary for all Magisk operations.
|
|
|
|
# It is also used to patch the sepolicy in the ramdisk.
|
|
|
|
# magiskboot binary A tool to unpack boot image, decompress ramdisk, extract ramdisk
|
2017-07-10 00:17:34 +08:00
|
|
|
# , and patch the ramdisk for Magisk support
|
2017-06-03 20:19:01 +08:00
|
|
|
# init.magisk.rc script A new line will be added to init.rc to import this script.
|
|
|
|
# All magisk entrypoints are defined here
|
2017-07-10 00:17:34 +08:00
|
|
|
# chromeos folder This folder should store all the utilities and keys to sign
|
|
|
|
# (optional) a chromeos device, used in the tablet Pixel C
|
2017-07-25 02:02:19 +08:00
|
|
|
#
|
2017-06-03 20:19:01 +08:00
|
|
|
# If the script is not running as root, then the input boot image should be a stock image
|
|
|
|
# or have a backup included in ramdisk internally, since we cannot access the stock boot
|
|
|
|
# image placed under /data we've created when previously installing
|
|
|
|
#
|
|
|
|
##########################################################################################
|
2017-06-24 23:38:20 +09:00
|
|
|
##########################################################################################
|
|
|
|
# Functions
|
|
|
|
##########################################################################################
|
2017-06-03 20:19:01 +08:00
|
|
|
|
|
|
|
# Call ui_print_wrap if exists, or else simply use echo
|
|
|
|
# Useful when wrapped in flashable zip
|
|
|
|
ui_print_wrap() {
|
|
|
|
type ui_print >/dev/null 2>&1 && ui_print "$1" || echo "$1"
|
|
|
|
}
|
|
|
|
|
2017-06-16 04:08:34 +08:00
|
|
|
# Call abort if exists, or else show error message and exit
|
|
|
|
# Essential when wrapped in flashable zip
|
|
|
|
abort_wrap() {
|
|
|
|
type abort >/dev/null 2>&1
|
|
|
|
if [ $? -ne 0 ]; then
|
|
|
|
ui_print_wrap "$1"
|
|
|
|
exit 1
|
|
|
|
else
|
|
|
|
abort "$1"
|
|
|
|
fi
|
|
|
|
}
|
|
|
|
|
2017-06-24 23:38:20 +09:00
|
|
|
# Pure bash dirname implementation
|
|
|
|
dirname_wrap() {
|
|
|
|
if echo $1 | grep "/" >/dev/null 2>&1; then
|
|
|
|
RES=${1%/*}
|
|
|
|
[ -z $RES ] && echo "/" || echo $RES
|
|
|
|
else
|
|
|
|
echo "."
|
|
|
|
fi
|
|
|
|
}
|
|
|
|
|
|
|
|
# Pure bash basename implementation
|
|
|
|
basename_wrap() {
|
|
|
|
echo ${1##*/}
|
|
|
|
}
|
|
|
|
|
2017-06-03 20:19:01 +08:00
|
|
|
grep_prop() {
|
|
|
|
REGEX="s/^$1=//p"
|
|
|
|
shift
|
|
|
|
FILES=$@
|
|
|
|
if [ -z "$FILES" ]; then
|
|
|
|
FILES='/system/build.prop'
|
|
|
|
fi
|
|
|
|
cat $FILES 2>/dev/null | sed -n "$REGEX" | head -n 1
|
|
|
|
}
|
|
|
|
|
|
|
|
# --cpio-add <incpio> <mode> <entry> <infile>
|
|
|
|
cpio_add() {
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cpio-add ramdisk.cpio $1 $2 $3
|
2017-06-03 20:19:01 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
# --cpio-extract <incpio> <entry> <outfile>
|
|
|
|
cpio_extract() {
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cpio-extract ramdisk.cpio $1 $2
|
2017-06-03 20:19:01 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
# --cpio-mkdir <incpio> <mode> <entry>
|
|
|
|
cpio_mkdir() {
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cpio-mkdir ramdisk.cpio $1 $2
|
2017-06-03 20:19:01 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
##########################################################################################
|
2017-06-24 23:38:20 +09:00
|
|
|
# Initialization
|
2017-06-03 20:19:01 +08:00
|
|
|
##########################################################################################
|
|
|
|
|
2017-06-24 23:38:20 +09:00
|
|
|
CWD=`pwd`
|
|
|
|
cd "`dirname_wrap $1`"
|
|
|
|
BOOTIMAGE="`pwd`/`basename_wrap $1`"
|
|
|
|
cd "$CWD"
|
|
|
|
|
|
|
|
if [ -z "$BOOTIMAGE" ]; then
|
|
|
|
ui_print_wrap "This script requires a boot image as a parameter"
|
|
|
|
exit 1
|
|
|
|
fi
|
|
|
|
|
|
|
|
# Presets
|
|
|
|
[ -z $KEEPVERITY ] && KEEPVERITY=false
|
|
|
|
[ -z $KEEPFORCEENCRYPT ] && KEEPFORCEENCRYPT=false
|
|
|
|
|
|
|
|
# Detect whether running as root
|
2017-07-25 03:10:01 +08:00
|
|
|
id | grep "uid=0" >/dev/null 2>&1 && ROOT=true || ROOT=false
|
2017-06-24 23:38:20 +09:00
|
|
|
|
2017-06-03 20:19:01 +08:00
|
|
|
# Switch to the location of the script file
|
2017-06-24 23:38:20 +09:00
|
|
|
[ -z $SOURCEDMODE ] && cd "`dirname_wrap "${BASH_SOURCE:-$0}"`"
|
2017-06-03 20:19:01 +08:00
|
|
|
chmod +x ./*
|
|
|
|
|
2017-06-24 23:38:20 +09:00
|
|
|
##########################################################################################
|
|
|
|
# Unpack
|
|
|
|
##########################################################################################
|
|
|
|
|
2017-06-03 20:19:01 +08:00
|
|
|
ui_print_wrap "- Unpacking boot image"
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --unpack "$BOOTIMAGE"
|
2017-06-03 20:19:01 +08:00
|
|
|
|
2017-07-13 02:14:10 +08:00
|
|
|
CHROMEOS=false
|
2017-06-03 20:19:01 +08:00
|
|
|
case $? in
|
|
|
|
1 )
|
2017-06-16 04:08:34 +08:00
|
|
|
abort_wrap "! Unable to unpack boot image"
|
2017-06-03 20:19:01 +08:00
|
|
|
;;
|
|
|
|
2 )
|
2017-07-13 02:14:10 +08:00
|
|
|
CHROMEOS=true
|
|
|
|
;;
|
|
|
|
3 )
|
2017-06-03 20:19:01 +08:00
|
|
|
ui_print_wrap "! Sony ELF32 format detected"
|
2017-06-16 04:08:34 +08:00
|
|
|
abort_wrap "! Please use BootBridge from @AdrianDC to flash Magisk"
|
2017-06-03 20:19:01 +08:00
|
|
|
;;
|
2017-07-13 02:14:10 +08:00
|
|
|
4 )
|
2017-06-03 20:19:01 +08:00
|
|
|
ui_print_wrap "! Sony ELF64 format detected"
|
2017-06-16 04:08:34 +08:00
|
|
|
abort_wrap "! Stock kernel cannot be patched, please use a custom kernel"
|
2017-06-03 20:19:01 +08:00
|
|
|
esac
|
|
|
|
|
|
|
|
##########################################################################################
|
|
|
|
# Ramdisk restores
|
|
|
|
##########################################################################################
|
|
|
|
|
|
|
|
# Test patch status and do restore, after this section, ramdisk.cpio.orig is guaranteed to exist
|
|
|
|
ui_print_wrap "- Checking ramdisk status"
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cpio-test ramdisk.cpio
|
2017-06-03 20:19:01 +08:00
|
|
|
case $? in
|
|
|
|
0 ) # Stock boot
|
|
|
|
ui_print_wrap "- Stock boot image detected!"
|
|
|
|
ui_print_wrap "- Backing up stock boot image"
|
2017-07-25 02:02:19 +08:00
|
|
|
SHA1=`./magiskboot --sha1 "$BOOTIMAGE" 2>/dev/null`
|
2017-06-03 20:19:01 +08:00
|
|
|
STOCKDUMP=stock_boot_${SHA1}.img
|
2017-06-11 01:40:08 +08:00
|
|
|
dd if="$BOOTIMAGE" of=$STOCKDUMP
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --compress $STOCKDUMP
|
2017-06-03 20:19:01 +08:00
|
|
|
cp -af ramdisk.cpio ramdisk.cpio.orig
|
|
|
|
;;
|
|
|
|
1 ) # Magisk patched
|
|
|
|
ui_print_wrap "- Magisk patched image detected!"
|
|
|
|
# Find SHA1 of stock boot image
|
2017-07-25 03:10:01 +08:00
|
|
|
[ -z $SHA1 ] && SHA1=`./magiskboot --cpio-stocksha1 ramdisk.cpio`
|
2017-06-03 20:19:01 +08:00
|
|
|
OK=false
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cpio-restore ramdisk.cpio
|
2017-06-03 20:19:01 +08:00
|
|
|
if [ $? -eq 0 ]; then
|
|
|
|
ui_print_wrap "- Ramdisk restored from internal backup"
|
|
|
|
OK=true
|
|
|
|
else
|
|
|
|
# Restore failed
|
|
|
|
ui_print_wrap "! Cannot restore from internal backup"
|
|
|
|
# If we are root and SHA1 known, we try to find the stock backup
|
|
|
|
if $ROOT && [ ! -z $SHA1 ]; then
|
|
|
|
STOCKDUMP=/data/stock_boot_${SHA1}.img
|
|
|
|
if [ -f ${STOCKDUMP}.gz ]; then
|
|
|
|
ui_print_wrap "- Stock boot image backup found"
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --decompress ${STOCKDUMP}.gz stock_boot.img
|
|
|
|
./magiskboot --unpack stock_boot.img
|
2017-06-03 20:19:01 +08:00
|
|
|
rm -f stock_boot.img
|
|
|
|
OK=true
|
|
|
|
fi
|
|
|
|
fi
|
|
|
|
fi
|
|
|
|
if ! $OK; then
|
|
|
|
ui_print_wrap "! Ramdisk restoration incomplete"
|
|
|
|
ui_print_wrap "! Will still try to continue installation"
|
|
|
|
fi
|
|
|
|
cp -af ramdisk.cpio ramdisk.cpio.orig
|
|
|
|
;;
|
|
|
|
2 ) # Other patched
|
2017-06-04 00:03:36 +08:00
|
|
|
ui_print_wrap "! Boot image patched by other programs!"
|
2017-06-16 04:08:34 +08:00
|
|
|
abort_wrap "! Please restore stock boot image"
|
2017-06-03 20:19:01 +08:00
|
|
|
;;
|
|
|
|
esac
|
|
|
|
|
|
|
|
##########################################################################################
|
|
|
|
# Ramdisk patches
|
|
|
|
##########################################################################################
|
|
|
|
|
|
|
|
ui_print_wrap "- Patching ramdisk"
|
|
|
|
|
|
|
|
# Add magisk entrypoint
|
2017-07-02 21:36:09 +08:00
|
|
|
./magiskboot --cpio-patch ramdisk.cpio $KEEPVERITY $KEEPFORCEENCRYPT
|
2017-06-03 20:19:01 +08:00
|
|
|
|
|
|
|
# sepolicy patches
|
|
|
|
cpio_extract sepolicy sepolicy
|
2017-06-16 04:08:34 +08:00
|
|
|
./magisk magiskpolicy --load sepolicy --save sepolicy --minimal
|
2017-06-03 20:19:01 +08:00
|
|
|
cpio_add 644 sepolicy sepolicy
|
|
|
|
rm -f sepolicy
|
|
|
|
|
|
|
|
# Add new items
|
|
|
|
if [ ! -z $SHA1 ]; then
|
|
|
|
cp init.magisk.rc init.magisk.rc.bak
|
|
|
|
echo "# STOCKSHA1=$SHA1" >> init.magisk.rc
|
|
|
|
fi
|
|
|
|
cpio_add 750 init.magisk.rc init.magisk.rc
|
2017-06-13 00:46:20 +08:00
|
|
|
mv init.magisk.rc.bak init.magisk.rc 2>/dev/null
|
2017-06-03 20:19:01 +08:00
|
|
|
cpio_add 755 sbin/magisk magisk
|
|
|
|
|
|
|
|
# Create ramdisk backups
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cpio-backup ramdisk.cpio ramdisk.cpio.orig
|
2017-06-03 20:19:01 +08:00
|
|
|
|
|
|
|
rm -f ramdisk.cpio.orig
|
|
|
|
|
|
|
|
##########################################################################################
|
|
|
|
# Repack and flash
|
|
|
|
##########################################################################################
|
|
|
|
|
|
|
|
# Hexpatches
|
|
|
|
|
|
|
|
# Remove Samsung RKP in stock kernel
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --hexpatch kernel \
|
2017-06-03 20:19:01 +08:00
|
|
|
49010054011440B93FA00F71E9000054010840B93FA00F7189000054001840B91FA00F7188010054 \
|
|
|
|
A1020054011440B93FA00F7140020054010840B93FA00F71E0010054001840B91FA00F7181010054
|
|
|
|
|
|
|
|
ui_print_wrap "- Repacking boot image"
|
2017-07-02 21:36:09 +08:00
|
|
|
./magiskboot --repack "$BOOTIMAGE" || abort_wrap "! Unable to repack boot image!"
|
2017-06-03 20:19:01 +08:00
|
|
|
|
2017-07-10 00:17:34 +08:00
|
|
|
# Sign chromeos boot
|
2017-07-13 02:14:10 +08:00
|
|
|
if $CHROMEOS; then
|
2017-07-10 00:17:34 +08:00
|
|
|
echo > empty
|
|
|
|
|
|
|
|
./chromeos/futility vbutil_kernel --pack new-boot.img.signed \
|
|
|
|
--keyblock ./chromeos/kernel.keyblock --signprivate ./chromeos/kernel_data_key.vbprivk \
|
|
|
|
--version 1 --vmlinuz new-boot.img --config empty --arch arm --bootloader empty --flags 0x1
|
|
|
|
|
|
|
|
rm -f empty new-boot.img
|
|
|
|
mv new-boot.img.signed new-boot.img
|
|
|
|
fi
|
|
|
|
|
2017-06-16 04:08:34 +08:00
|
|
|
./magiskboot --cleanup
|