-
Notifications
You must be signed in to change notification settings - Fork 222
Kernel Patch Protection (KPP)
kpwn edited this page Feb 11, 2016
·
5 revisions
As of iOS9, all arm64 devices have kernel patch protection implemented wherein something likely other than the kernel checks every so often for kernel integrity, otherwise panics.
Checked ranges are __TEXT and __DATA.__const. It is speculated that checks are enforced by either the SEP or the Secure Monitor.
Current attempts to bypass KPP actually avoid it entirely and were demonstrated in Pangu9.
XNU Kernel Exploitation Topics