proxyclient: only write rvbar if needed

yuyuyureka · yuyuyureka · commit ee14769c3c70 · 2026-01-21T21:51:43.000+01:00
Signed-off-by: Yureka &lt;yuka@yuka.dev&gt;
diff --git a/proxyclient/m1n1/hv/__init__.py b/proxyclient/m1n1/hv/__init__.py
@@ -1786,6 +1786,15 @@ def remove_oslog(node):
                 continue
             addr, size = cpu.cpu_impl_reg
             print(f"  {cpu.name}: [0x{addr:x}] = 0x{rvbar:x}")
+            # On some platforms (M4) iBoot already sets this
+            # to the m1n1 entrypoint and locks the register.
+            # Skip the write if the value is already correct.
+            val = self.p.read64(addr)
+            if val & 0xfffffffff000 == rvbar:
+                continue
+            if val & 1:
+                print(f"{hex(val & 0xfffffffff000)} != {hex(rvbar)}")
+                print("The cpu_impl_reg is already locked, this might fail...")
             self.p.write64(addr, rvbar)
 
     def _load_macho_symbols(self):
diff --git a/proxyclient/tools/chainload.py b/proxyclient/tools/chainload.py
@@ -100,6 +100,15 @@ def remove_oslog(node):
         continue
     addr, size = cpu.cpu_impl_reg
     print(f"  {cpu.name}: [0x{addr:x}] = 0x{rvbar:x}")
+    # On some platforms (M4) iBoot already sets this
+    # to the m1n1 entrypoint and locks the register.
+    # Skip the write if the value is already correct.
+    val = p.read64(addr)
+    if val & 0xfffffffff000 == rvbar:
+        continue
+    if val & 1:
+        print(f"{hex(val & 0xfffffffff000)} != {hex(rvbar)}")
+        print("The cpu_impl_reg is already locked, this might fail...")
     p.write64(addr, rvbar)
 
 u.push_adt()
