-
-
Save yarshure/70c45d3b187df1b991c3af228646b10e to your computer and use it in GitHub Desktop.
| iPhone:~ root# nvram bootdelay=10 | |
| iPhone:~ root# nvram -p | |
| auto-boot true | |
| bootdelay 10 | |
| backlight-level 1507 | |
| restore-step-monitor {0x11010207:"wifexited"} | |
| restore-step-warnings {0x11060100:{0:"NVRAM access is not currently available"}} | |
| debug-uarts 3 | |
| boot-args serial=3 | |
| boot-command fsboot | |
| com.apple.System.tz0-size 0xC00000 | |
| iPhone:~ root# reboot | |
| Kext loading now disabled. | |
| Kext unloading now disabled. | |
| Kext autounloading now disabled. | |
| Process launchd.developm [1] disabling system-wide I/O Throttling | |
| Process launchd.developm [1] disabling system-wide CPU Throttling | |
| Thu Jan 8 20:13:00 1970 iPhone com.apple.xpc.launchd[1] (com.apple.xpc.launchd.domain.system) <Notice>: System shutdown initiated by: reboot.139<-sh.132<-login.51<-launchd.develop.1 | |
| AppleH6CamInUserClient::clientDied | |
| AppleH6CamInUserClient::free - Freeing UserClient for process: mediaserverd (pid 32) | |
| prevent idle sleep list: AppleBasebandPCIQMAP- (1) | |
| AppleHDQGasGauge::gaugeInterrupts:1209 cannot disable GG interrupt (e00002d6) | |
| Thu Jan 8 20:13:03 1970 iPhone com.apple.xpc.launchd[1] (com.apple.xpc.launchd.domain.system) <Notice>: Userspace teardown took: 3028 ms | |
| syncing disks... Killing all processes | |
| continuing | |
| hfs: unmount initiated on Logs on device disk0s1s4 | |
| hfs: unmount initiated on Baseband Data on device disk0s1s3 | |
| hfs: unmount initiated on Data on device disk0s1s2 | |
| hfs: unmount initiated on WhitetailSajo14A83432m.H8iPhoneFactoryOS on device b(1, 2) | |
| done | |
| MACH Reboot | |
| virtual IOReturn AppleUSBDeviceMux::message(UInt32, IOService *, void *) - kMessageInterfaceWasDeActivated | |
| AppleUSBDeviceMux::reportStats: USB mux statistics: | |
| USB mux: 369 reads / 0 errors, 458 writes / 0 errors | |
| USB mux: 0 short packets, 0 dups, 0 missing, 0 resent | |
| AppleARMPMUCharger: usb stack power 0mA | |
| 000599.537520 wlan0.A[29] handleAudioNotification@149:get Message 0xe3ff8103 | |
| AppleARMPMUCharger: usb stack power 0mA | |
| AirPort: Disabled AppleBCMWLANCore (link 0, sys 1, user 1) | |
| prevent idle sleep list: AppleEmbeddedNVMeController- (1) | |
| AppleMultitouchN1SPI: powering off | |
| wdog restart | |
| i2c0 fai?resetIdResponse | |
| Lo5 PWR | |
| ID Resp: 75 20 0E 00 00 00 00 | |
| @74 00000000 | |
| pmu: setup reg=7000 val=1d write failed | |
| gg charger: 0x68=0x8 0x74=0xa2 0x75=0x0 0x76=0x84 0x77=0x0 | |
| power supply type usb host | |
| DCS Init Lib Built for: iBoot SOC | |
| DCS Init [iBoot Build] for ChipID==0x8003 chipRev A1 (#DCS==4, #Rank==1) [SoC] using Coldboot | |
| Memory_size: 2147483648 bytes | |
| rAMCC_DRAMACCCTRL: 0x0000000f | |
| nvme: initializing controller 0 | |
| BOOT nvme: max_transfer_blocks 256 | |
| BOOT nvme: num_namespaces 6 | |
| nvme: nsid=7 not present | |
| image 0x800044340: bdev 0x800038e80 type illb offset 0x0 len 0x39960 | |
| image 0x8000443c0: bdev 0x800038e80 type ibot offset 0x39960 len 0x59960 | |
| image 0x800044440: bdev 0x800038e80 type bat1 offset 0x932c0 len 0x1faa | |
| image 0x8000444c0: bdev 0x800038e80 type dtre offset 0x9526a len 0x20594 | |
| image 0x800044540: bdev 0x800038e80 type glyP offset 0xb57fe len 0x2bcf | |
| image 0x8000445c0: bdev 0x800038e80 type chg0 offset 0xb83cd len 0x3da9 | |
| image 0x800044640: bdev 0x800038e80 type bat0 offset 0xbc176 len 0xc210 | |
| image 0x8000446c0: bdev 0x800038e80 type batF offset 0xc8386 len 0x16012 | |
| image 0x800044740: bdev 0x800038e80 type chg1 offset 0xde398 len 0xa06b | |
| image 0x8000447c0: bdev 0x800038e80 type logo offset 0xe8403 len 0x2e5c | |
| image 0x800044840: bdev 0x800038e80 type recm offset 0xeb25f len 0x40791 | |
| jumping into image at 0x87ec00000 | |
| battery voltage 4290 mV | |
| power supply type batt | |
| nvme: initializing controller 0 | |
| nvme: S3E B0 Sandisk 1z TLC 1D 2 plane 128GB NAND | |
| nvme: Model Number: APPLE SSD AP0128K | |
| nvme: Serial Number: 00451C6DF5C301FE0 | |
| nvme: Firmware Rev: 36.66.01 | |
| nvme: chip hw/rev: 0x00/0x10 | |
| nvme: nand device: 5113 | |
| nvme: FTL ver: 23.1 | |
| nvme: MSP/DM vers: 1/101 | |
| nvme: ASP_BUILD_TRAIN: 7.0.86~1 | |
| nvme: MSP_BUILD_TRAIN: 45.8.86~1 | |
| nvme: SQES 102 CQES 68 | |
| nvme: max_transfer_blocks 256 | |
| syscfg: version 0x00020002 with 52 entries using 1064 of 131072 bytes | |
| image 0x8701c8640: bdev 0x8701d40c0 type illb offset 0x0 len 0x39960 | |
| image 0x8701c86c0: bdev 0x8701d40c0 type ibot offset 0x39960 len 0x59960 | |
| image 0x8701c8740: bdev 0x8701d40c0 type bat1 offset 0x932c0 len 0x1faa | |
| image 0x8701c87c0: bdev 0x8701d40c0 type dtre offset 0x9526a len 0x20594 | |
| image 0x8701c8840: bdev 0x8701d40c0 type glyP offset 0xb57fe len 0x2bcf | |
| image 0x8701c88c0: bdev 0x8701d40c0 type chg0 offset 0xb83cd len 0x3da9 | |
| image 0x8701c8940: bdev 0x8701d40c0 type bat0 offset 0xbc176 len 0xc210 | |
| image 0x8701c89c0: bdev 0x8701d40c0 type batF offset 0xc8386 len 0x16012 | |
| image 0x8701c8a40: bdev 0x8701d40c0 type chg1 offset 0xde398 len 0xa06b | |
| image 0x8701c8ac0: bdev 0x8701d40c0 type logo offset 0xe8403 len 0x2e5c | |
| image 0x8701c8b40: bdev 0x8701d40c0 type recm offset 0xeb25f len 0x40791 | |
| Display PMU found, 0x0000f375, TI-a0 | |
| pinot_init() | |
| mipi_dsim_init() | |
| pll_config 0x300 | |
| pinot_init(): pinot_panel_id: 0xa1d11bd1 | |
| pinot_init(): pinot_default_color: 0x00000000 | |
| pinot_init(): pinot_backlight_cal: 0x00000041 | |
| int_install_gamma_table: Found syscfg gamma table with version 1.0 | |
| ======================================= | |
| :: | |
| :: iBootStage2 for n71m, Copyright 2007-2016, Apple Inc. | |
| :: | |
| :: Local boot, Board 0x4 (n71map)/Rev 0x6 | |
| :: | |
| :: BUILD_TAG: iBoot-3406.1.77 | |
| :: | |
| :: BUILD_STYLE: DEVELOPMENT | |
| :: | |
| :: USB_SERIAL_NUMBER: CPID:8003 CPRV:01 CPFM:03 SCEP:01 BDID:04 ECID:000E7056282B60A6 IBFL:1D SRNM:[FFMW341JGRYG] | |
| :: | |
| ======================================= | |
| Boot Failure Count: 0 Panic Fail Count: 0 | |
| Delaying boot for 10 seconds. Hit enter to break into the command prompt... | |
| aborting autoboot due to user intervention. | |
| Entering recovery mode, starting command prompt | |
| ] | |
| ] | |
| ] | |
| ] | |
| ] help | |
| command list: | |
| bootx boot a kernel cache at specified address | |
| memboot boot a combo devicetree/ramdisk/kernelcache at specified address | |
| fsboot boot kernelcache from filesystem | |
| go jump directly to address | |
| golocal jump directly to address | |
| diags boot into diagnostics (if present) | |
| alamo boot into alamo diags | |
| dump_console dump console history | |
| reboot reboot the device | |
| poweroff power off the device | |
| bgcolor set the display background color | |
| setpicture set the image on the display | |
| crc POSIX 1003.2 checksum of specified memory address range. | |
| devicetree create a device tree from the specified address | |
| fs file system commands | |
| clearenv clear all environment variables | |
| printenv print one or all environment variables | |
| getenv get environment variable over usb | |
| saveenv save current environment to flash | |
| setenv set an environment variable | |
| ramdisk create a ramdisk from the specified address | |
| sha1 SHA-1 hash of specified memory address range. | |
| syscfg flash SysCfg inspection | |
| usb run a USB command | |
| ] |
] diags
Unable to load image type 64696167 from flashcheck_superblock:43: not APFS: 0x00000000
jumping into image at 0x810000000
pinot_quiesce()
mipi_dsim_quiesce()
Console router buffer allocated @ 0x87D2D0018, size = 262144 bytes
time-train: 12885 uS
Link 0 speed negotiate to 2
Link 0 width negotiate to 2
APCIE power on completed
Device 00:00:0 config space@0x610000000
Vendor:106B Device:1003 Revision:01 ClassCode:060400 Type:01
PriBus:00 SecBus:01 SubBus:01
Capability 0x01 Offset:0x40 Address:0x610000040
Capability 0x05 Offset:0x50 Address:0x610000050
Capability 0x10 Offset:0x70 Address:0x610000070
Extended Capability 0x0001 Ver:0x02 Offset:0x0100 Address:0x610000100
Extended Capability 0x001E Ver:0x01 Offset:0x0150 Address:0x610000150
Found device id 0x2002
Device 01:00:0 config space@0x610100000
Vendor:106B Device:2002 Revision:11 ClassCode:018002 Type:00
BAR0 MEM C0000000/00004000
BAR1 IO 00000000/00000004
Capability 0x01 Offset:0x40 Address:0x610100040
Capability 0x05 Offset:0x50 Address:0x610100050
Capability 0x10 Offset:0x70 Address:0x610100070
Extended Capability 0x0001 Ver:0x02 Offset:0x0100 Address:0x610100100
Extended Capability 0x0002 Ver:0x01 Offset:0x0148 Address:0x610100148
Extended Capability 0x0019 Ver:0x01 Offset:0x0168 Address:0x610100168
Extended Capability 0x0018 Ver:0x01 Offset:0x0178 Address:0x610100178
Extended Capability 0x001E Ver:0x01 Offset:0x0180 Address:0x610100180
APCIE Enumerate on completed
WARNING: HFS+: B-tree header map record offset should be 248 but is 0; using 248 instead
ERROR: [ABSM] Checksum corrupt. Found 0x13, expected 0x5B
0000000: 13 0D 45 02 88 A4 04 00 0B A6 2A E6 40 59 8C 29 ..E.......*.@y.)
0000010: 25 1C 64 B8 61 42 C4 18 B0 18 1A 19 08 0C 51 00 %.d.aB........Q.
[ABSM] Clearing corrupted shutdown scratch space
APS225 not found. Expected 0xB1, found 0x90
WHO_AM_I doesn't match AP6DS2AA's Chip ID: Expected 0x61 got 0x0
Datas: 4
Datas: 4
Datas: 5
N71m Diag (factory_n71_pvt)
BuildEng build N71mCasaval21C315af (21C315af). Revision 067b43a.
Built at 2017/10/16 19:21:49
script: device -k ThermalSensor -e sochot 0 on 120
script: device -k ThermalSensor -e sochot 1 on 125
script: cbcolor
Setting Screen Color based on iPX Control Bits:
script: alias vbat=pmuadc --read vbat --sel tigris
script --cont startup.txt
script: alias bbon="meta 'baseband --on --load_firmware; baseband --wait_for_ready --ping'"
script: alias bbonbypass="meta 'baseband --on --load_firmware; baseband --wait_for_ready --ping --bypass en'"
script: alias bboff=baseband --off
script: alias getcd=bblib -e BB_GetCD()
script: alias erase_rfcal=smokey Tools/RFCalErase --run
script: alias erase_efs=smokey Tools/EFSErase --run
script: alias erase_pac=smokey Tools/RFPacErase --run
script: alias hdq_en=i2c --devwrite 1 0x75 0x1D 1
script: alias hdq_dis=i2c --devwrite 1 0x75 0x1D 0
script: alias bblib="smokeyshell -p -e 'if BBLib_cfg then print [[no init]] else require [[BBLib.13A]];BB_Init() end'"
script: alias wcs=smokey --run WCS --clean LogBehavior=ConsoleOnly
script: alias bblibcfg=bblib -e printLibCfg()
script: alias bbdebug="meta 'base --debug on;ramlog --on 10;consolerouter --add -s *.{warn,error,print},system.debug.debug -d ramlog --quiet;consoleformat --en --sink serial -o ts'"
script: alias updateroot="meta 'usbfs --mount;cp -r usbfs:\AppleInternal nandfs:;usbfs --unmount;smokeyshell -r'"
[000E7056:282B60A6] :-)
] printenv
boot-partition = "0"
boot-path = "/System/Library/Caches/com.apple.kernelcaches/kernelcache"
dt-path = "/usr/standalone/firmware/devicetree.img4"
build-style = "DEVELOPMENT"
build-version = "iBoot-3406.1.77"
config_board = "n71m"
board-rev = "0x6"
loadaddr = "0x800000000"
ramdisk-size = "0x10000000"
idle-off = "true"
diags-path = "/AppleInternal/Diags/bin/diag.img4"
alamo-path = "/usr/standalone/firmware/FUD/Alamo.img4"
boot-device = "nvme_nand0"
display-color-space = "RGB888"
display-timing = "D520"
adbe-tunables = "D520"
adfe-tunables = "D520"
P bootdelay = "10"
P debug-uarts = "3"
P backlight-level = "1507"
S restore-step-monitor = "{0x11010207:"wifexited"}"
S restore-step-warnings = "{0x11060100:{0:"NVRAM access is not currently available"}}"
P boot-command = "fsboot"
P boot-args = "serial=3"
P auto-boot = "true"
image-version = "0x4"
framebuffer = "0x87e200000"
secure-boot = "0x1"
? = "0x0"