./split_bootimg.pl boot.img

Page size: 2048 (0x00000800)

Kernel size: 7062084 (0x006bc244)

Ramdisk size: 1825217 (0x001bd9c1)

Second size: 0 (0x00000000)

Board name:

Command line:

Writing boot.img-kernel ... complete.

Writing boot.img-ramdisk.gz ... complete.


gzip -d boot.img-ramdisk.gz


cpio -i -F boot.img-ramdisk


#!/usr/bin/perl

######################################################################

#

#   File          : split_bootimg.pl

#   Author(s)     : William Enck <enck@cse.psu.edu>

#   Description   : Split appart an Android boot image created

#                   with mkbootimg. The format can be found in

#                   android-src/system/core/mkbootimg/bootimg.h

#

#                   Thanks to alansj on xda-developers.com for

#                   identifying the format in bootimg.h and

#                   describing initial instructions for splitting

#                   the boot.img file.

#

#   Last Modified : Tue Dec  2 23:36:25 EST 2008

#   By            : William Enck <enck@cse.psu.edu>

#

#   Copyright (c) 2008 William Enck

#

######################################################################

use strict;

use warnings;

# Turn on print flushing

$|++;

######################################################################

## Global Variables and Constants

my $SCRIPT = __FILE__;

my $IMAGE_FN = undef;

# Constants (from bootimg.h)

use constant BOOT_MAGIC => 'ANDROID!';

use constant BOOT_MAGIC_SIZE => 8;

use constant BOOT_NAME_SIZE => 16;

use constant BOOT_ARGS_SIZE => 512;

# Unsigned integers are 4 bytes

use constant UNSIGNED_SIZE => 4;

# Parsed Values

my $PAGE_SIZE = undef;

my $KERNEL_SIZE = undef;

my $RAMDISK_SIZE = undef;

my $SECOND_SIZE = undef;

######################################################################

## Main Code

&parse_cmdline();

&parse_header($IMAGE_FN);

=format (from bootimg.h)

** +-----------------+

** | boot header     | 1 page

** +-----------------+

** | kernel          | n pages

** +-----------------+

** | ramdisk         | m pages

** +-----------------+

** | second stage    | o pages

** +-----------------+

**

** n = (kernel_size + page_size - 1) / page_size

** m = (ramdisk_size + page_size - 1) / page_size

** o = (second_size + page_size - 1) / page_size

=cut

my $n = int(($KERNEL_SIZE + $PAGE_SIZE - 1) / $PAGE_SIZE);

my $m = int(($RAMDISK_SIZE + $PAGE_SIZE - 1) / $PAGE_SIZE);

my $o = int(($SECOND_SIZE + $PAGE_SIZE - 1) / $PAGE_SIZE);

my $k_offset = $PAGE_SIZE;

my $r_offset = $k_offset + ($n * $PAGE_SIZE);

my $s_offset = $r_offset + ($m * $PAGE_SIZE);

(my $base = $IMAGE_FN) =~ s/.*\/(.*)$/$1/;

my $k_file = $base . "-kernel";

my $r_file = $base . "-ramdisk.gz";

my $s_file = $base . "-second.gz";

# The kernel is always there

print "Writing $k_file ...";

&dump_file($IMAGE_FN, $k_file, $k_offset, $KERNEL_SIZE);

print " complete.\n";

# The ramdisk is always there

print "Writing $r_file ...";

&dump_file($IMAGE_FN, $r_file, $r_offset, $RAMDISK_SIZE);

print " complete.\n";

# The Second stage bootloader is optional

unless ($SECOND_SIZE == 0) {

    print "Writing $s_file ...";

    &dump_file($IMAGE_FN, $s_file, $s_offset, $SECOND_SIZE);

    print " complete.\n";

}

######################################################################

## Supporting Subroutines

=header_format (from bootimg.h)

struct boot_img_hdr

{

    unsigned char magic[BOOT_MAGIC_SIZE];

    unsigned kernel_size;  /* size in bytes */

    unsigned kernel_addr;  /* physical load addr */

    unsigned ramdisk_size; /* size in bytes */

    unsigned ramdisk_addr; /* physical load addr */

    unsigned second_size;  /* size in bytes */

    unsigned second_addr;  /* physical load addr */

    unsigned tags_addr;    /* physical addr for kernel tags */

    unsigned page_size;    /* flash page size we assume */

    unsigned unused[2];    /* future expansion: should be 0 */

    unsigned char name[BOOT_NAME_SIZE]; /* asciiz product name */

    unsigned char cmdline[BOOT_ARGS_SIZE];

    unsigned id[8]; /* timestamp / checksum / sha1 / etc */

};

=cut

sub parse_header {

    my ($fn) = @_;

    my $buf = undef;

    open INF, $fn or die "Could not open $fn: $!\n";

    binmode INF;

    # Read the Magic

    read(INF, $buf, BOOT_MAGIC_SIZE);

    unless ($buf eq BOOT_MAGIC) {

	die "Android Magic not found in $fn. Giving up.\n";

    }

    # Read kernel size and address (assume little-endian)

    read(INF, $buf, UNSIGNED_SIZE * 2);

    my ($k_size, $k_addr) = unpack("VV", $buf);

    # Read ramdisk size and address (assume little-endian)

    read(INF, $buf, UNSIGNED_SIZE * 2);

    my ($r_size, $r_addr) = unpack("VV", $buf);

    # Read second size and address (assume little-endian)

    read(INF, $buf, UNSIGNED_SIZE * 2);

    my ($s_size, $s_addr) = unpack("VV", $buf);

    # Ignore tags_addr

    read(INF, $buf, UNSIGNED_SIZE);

    # get the page size (assume little-endian)

    read(INF, $buf, UNSIGNED_SIZE);

    my ($p_size) = unpack("V", $buf);

    # Ignore unused

    read(INF, $buf, UNSIGNED_SIZE * 2);

    # Read the name (board name)

    read(INF, $buf, BOOT_NAME_SIZE);

    my $name = $buf;

    # Read the command line

    read(INF, $buf, BOOT_ARGS_SIZE);

    my $cmdline = $buf;

    # Ignore the id

    read(INF, $buf, UNSIGNED_SIZE * 8);

    # Close the file

    close INF;

    # Print important values

    printf "Page size: %d (0x%08x)\n", $p_size, $p_size;

    printf "Kernel size: %d (0x%08x)\n", $k_size, $k_size;

    printf "Ramdisk size: %d (0x%08x)\n", $r_size, $r_size;

    printf "Second size: %d (0x%08x)\n", $s_size, $s_size;

    printf "Board name: $name\n";

    printf "Command line: $cmdline\n";

    # Save the values

    $PAGE_SIZE = $p_size;

    $KERNEL_SIZE = $k_size;

    $RAMDISK_SIZE = $r_size;

    $SECOND_SIZE = $s_size;

}

sub dump_file {

    my ($infn, $outfn, $offset, $size) = @_;

    my $buf = undef;

    open INF, $infn or die "Could not open $infn: $!\n";

    open OUTF, ">$outfn" or die "Could not open $outfn: $!\n";

    binmode INF;

    binmode OUTF;

    seek(INF, $offset, 0) or die "Could not seek in $infn: $!\n";

    read(INF, $buf, $size) or die "Could not read $infn: $!\n";

    print OUTF $buf or die "Could not write $outfn: $!\n";

    close INF;

    close OUTF;

}

######################################################################

## Configuration Subroutines

sub parse_cmdline {

    unless ($#ARGV == 0) {

	die "Usage: $SCRIPT boot.img\n";

    }

    $IMAGE_FN = $ARGV[0];

}

解压 boot.img的更多相关文章

  1. Android 解压boot.img

    其实解压.打包boot.img没什么难度一看就会咯!!   1.先下附件:工具. 点击打开链接 6.0 KB, 下载次数: 60)      解压到bin文件夹里,方便以后使用.   2.解压boot ...

  2. spring boot 过滤器实现接收 压缩数据 并解压

    1.新加类GzipRequestWrapper 继承HttpServletRequestWrapper类 public class GzipRequestWrapper extends HttpSer ...

  3. 解压vmlinuz和解压initrd(initramfs)

    有时就算只得到一个Linux kernel的rpm包或者直接是编译后的vmlinuz和initrd的binary文件,也需要了解其中的一些细节,可能需要去查找这些binary有没有将我想要的patch ...

  4. Linux中MySQL5.5解压版普通用户安装

    #查看本机mysql 安装路径 [hadoop@SY-0134 toolkit]$ rpm -qa|grep -i mysql [hadoop@SY-0134 toolkit]$ whereis my ...

  5. [置顶] linux 解压版安装

    1:下载mysql解压版包去官网下载www.mysq.com 下载.下载linux通用版本就好了 2.基本配置 首先,我们准备好Linux环境,我们使用CentOS 5.8进行试验安装.第一步,我们需 ...

  6. cpio解压initramfs.img

    一.解压initramfs.img # mkdir test # cp /boot/initramfs.img /test # cd test # file initramfs.img initram ...

  7. 解压Ubuntu的initrd.img的方法

    Ubuntu的initrd.img可以在/boot中找到,通常文件名后面还跟有很长的一串版本号. 为了保险起见,不直接操作原文件,而是把它复制到自己的家目(home)录中.如果你是用root帐号登录的 ...

  8. 〖Linux〗联想K860/i Android 4.2及以上的Bootimg解压与打包工具

    因为自己有需要,所以花了一点时间来写了一下. 1. 解压工具 #!/bin/bash - #====================================================== ...

  9. 浅析pc机上如何将vmlinuz-2.6.31-14-generic解压出vmlinux

    浅析pc机上如何将vmlinuz-2.6.31-14-generic解压出vmlinux luther@gliethttp:~$ vim /boot/grub/grub.cfg 可以看到我们进入的系统 ...

随机推荐

  1. Nginx+keepalived构建双主负载均衡代理服务器

    引言 Nginx是一个高性能的代理服务器,单台Nginx容易出现单点故障,使用keepalived可以实现Nginx的故障转移,保证了网站的高可用性 一.使用Nginx+keepalived的两种方案 ...

  2. JavaWeb学习总结(十七)——JSP中的九个内置对象(转)

    一.JSP运行原理 每个JSP 页面在第一次被访问时,WEB容器都会把请求交给JSP引擎(即一个Java程序)去处理.JSP引擎先将JSP翻译成一个_jspServlet(实质上也是一个servlet ...

  3. Windows server 2008 R2 + IIS7.5,ASP网站设置

    Windows server 2008 R2 + IIS7.5,ASP网站设置 1. 让IIS7支持ASP Win2008 IIS7 默认不安装ASP,如果需要ASP 的支持,需要将这个角色服务选上. ...

  4. Enable and Use Remote Commands in Windows PowerShell

    The Windows PowerShell remoting features are supported by the WS-Management protocol and the Windows ...

  5. “百度杯”CTF比赛 十月场_GetFlag(验证码爆破+注入+绝对路径文件下载)

    题目在i春秋ctf大本营 页面给出了验证码经过md5加密后前6位的值,依照之前做题的套路,首先肯定是要爆破出验证码,这里直接给我写的爆破代码 #coding:utf-8 import hashlib ...

  6. postgresql-9.0.18-1-linux.run启动

    下载地址:http://www.enterprisedb.com/products-services-training/pgdownload选择合适版本 基本都是下一步就可以到设置密码时记住密码以后要 ...

  7. 转 Python爬虫入门七之正则表达式

    静觅 » Python爬虫入门七之正则表达式 1.了解正则表达式 正则表达式是对字符串操作的一种逻辑公式,就是用事先定义好的一些特定字符.及这些特定字符的组合,组成一个“规则字符串”,这个“规则字符串 ...

  8. Vbat 1.8V,接充電器,GPIO_CHG_EN pin 竟然是 high!

    Schematic : Precondition : Vbat 1.8V Plugin adapter Preloader doesn't enable GPIO_CHG_EN Origin : 做個 ...

  9. POJ - 2135最小费用流

    题目链接:http://poj.org/problem?id=2135 今天学习最小费用流.模板手敲了一遍. 产生了一个新的问题:对于一条无向边,这样修改了正向边容量后,反向边不用管吗? 后来想了想, ...

  10. Ubuntu 16.04下使用Wine安装文件比对工具Beyond Compare 4

    说明: 1.使用的Wine版本是深度出品(Deepin),已经精简了很多没用的配置,使启动能非常快,占用资源小. 2.关于没有.wine文件夹的解决方法:在命令行上运行winecfg: 下载: (链接 ...