[WIP] On-device patcher with Magisk module

Almost there but just need to fix this error:

```
WARN: Cannot find asm.parser for arm.pseudo
INFO: Fallback to null
```

Author: devnoname120

.gitignore

@@ -1,3 +1,5 @@
+root-module/btl2capfix.zip
+
 .vscode
 testing.py
 .DS_Store

build-magisk-module.sh

@@ -0,0 +1,5 @@
+#!/bin/sh
+
+set -eux
+
+(cd root-module && rm -f btl2capfix.zip && zip -r btl2capfix.zip . -x \*.DS_Store \*__MACOSX \*DEBIAN -x btl2capfix.zip)

root-module/customize.sh

@@ -1,9 +1,7 @@
 #!/system/bin/sh
 
-API_URL="https://aln.kavishdevar.me/api"
 TEMP_DIR="$TMPDIR/aln_patch"
 UNZIP_DIR="/data/local/tmp/aln_unzip"
-PATCHED_FILE_NAME=""
 SOURCE_FILE=""
 LIBRARY_NAME=""
 APEX_DIR=false
@@ -26,58 +24,73 @@ if [ "$(uname -m)" = "aarch64" ]; then
 fi
 
 if [ "$IS64BIT" = true ]; then
-    export LD_LIBRARY_PATH="$UNZIP_DIR/libcurl-android/libs/arm64-v8a"
-    export PATH="$UNZIP_DIR/libcurl-android/bin/arm64-v8a:$PATH"
-    export CURL_CMD="$UNZIP_DIR/libcurl-android/bin/arm64-v8a/curl"
-    ln -s "$UNZIP_DIR/libcurl-android/libs/arm64-v8a/libz.so" "$UNZIP_DIR/libcurl-android/libs/arm64-v8a/libz.so.1"
+    export LD_LIBRARY_PATH="$UNZIP_DIR/radare2-android/libs/arm64-v8a"
+    export PATH="$UNZIP_DIR/radare2-android/bin/arm64-v8a:$PATH"
+    export RABIN2="$UNZIP_DIR/radare2-android/bin/arm64-v8a/rabin2"
+    export RADARE2="$UNZIP_DIR/radare2-android/bin/arm64-v8a/radare2"
 else
-    export LD_LIBRARY_PATH="$UNZIP_DIR/libcurl-android/libs/armeabi-v7a"
-    export PATH="$UNZIP_DIR/libcurl-android/bin/armeabi-v7a:$PATH"
-    export CURL_CMD="$UNZIP_DIR/libcurl-android/bin/armeabi-v7a/curl"
-    ln -s "$UNZIP_DIR/libcurl-android/libs/armeabi-v7a/libz.so" "$UNZIP_DIR/libcurl-android/libs/armeabi-v7a/libz.so.1"
+    export LD_LIBRARY_PATH="$UNZIP_DIR/radare2-android/libs/armeabi-v7a"
+    export PATH="$UNZIP_DIR/radare2-android/bin/armeabi-v7a:$PATH"
+    export RABIN2="$UNZIP_DIR/radare2-android/bin/armeabi-v7a/rabin2"
+    export RADARE2="$UNZIP_DIR/radare2-android/bin/armeabi-v7a/radare2"
 fi
 
-set_perm "$CURL_CMD" 0 0 755
+set_perm "$RABIN2" 0 0 755
+set_perm "$RADARE2" 0 0 755
 
-if [ -f "$CURL_CMD" ]; then
-    ui_print "curl binary is ready."
+if [ -f "$RABIN2" ]; then
+    ui_print "rabin2 binary is ready."
 else
-    ui_print "Error: curl binary not found."
-    abort "curl binary not found."
+    ui_print "Error: rabin2 binary not found."
+    abort "rabin2 binary not found."
+fi
+
+if [ -f "$RADARE2" ]; then
+    ui_print "radare2 binary is ready."
+else
+    ui_print "Error: radare2 binary not found."
+    abort "radare2 binary not found."
 fi
 
 if [ -f "/apex/com.android.btservices/lib64/libbluetooth_jni.so" ]; then
     SOURCE_FILE="/apex/com.android.btservices/lib64/libbluetooth_jni.so"
     LIBRARY_NAME="libbluetooth_jni.so"
-    PATCHED_FILE_NAME="libbluetooth_jni_patched.so"
     ui_print "Detected library: libbluetooth_jni.so"
 elif [ -f "/system/lib64/libbluetooth_jni.so" ]; then
     SOURCE_FILE="/system/lib64/libbluetooth_jni.so"
     LIBRARY_NAME="libbluetooth_jni.so"
-    PATCHED_FILE_NAME="libbluetooth_jni_patched.so"
     ui_print "Detected library: libbluetooth_jni.so"
 elif [ -f "/system/lib64/libbluetooth_qti.so" ]; then
     SOURCE_FILE="/system/lib64/libbluetooth_qti.so"
     LIBRARY_NAME="libbluetooth_qti.so"
-    PATCHED_FILE_NAME="libbluetooth_qti_patched.so"
     ui_print "Detected QTI library: libbluetooth_qti.so"
 elif [ -f "/system_ext/lib64/libbluetooth_qti.so" ]; then
     SOURCE_FILE="/system_ext/lib64/libbluetooth_qti.so"
     LIBRARY_NAME="libbluetooth_qti.so"
-    PATCHED_FILE_NAME="libbluetooth_qti_patched.so"
     ui_print "Detected QTI library: libbluetooth_qti.so"
 else
     ui_print "Error: No target library found."
     abort "No target library found."
 fi
 
-ui_print "Uploading $LIBRARY_NAME for patching..."
-PATCHED_FILE_NAME="patched_$LIBRARY_NAME"
+ui_print "Calculating patch addresses for $LIBRARY_NAME..."
+
+exec 2> >(while read -r line; do ui_print "[E] $line"; done)
+
+export l2c_fcr_chk_chan_modes_address="$($RABIN2 -q -E \"$SOURCE_FILE\" | grep l2c_fcr_chk_chan_modes | cut -d ' ' -f1 | tr -d \"\n\")"
+export l2cu_send_peer_info_req_address="$($RABIN2 -q -E \"$SOURCE_FILE\" | grep l2cu_send_peer_info_req | cut -d ' ' -f1 | tr -d \"\n\")"
+
+ui_print "Found l2c_fcr_chk_chan_modes_address=$l2c_fcr_chk_chan_modes_address"
+ui_print "Found l2cu_send_peer_info_req_address=$l2cu_send_peer_info_req_address"
+
+cp "$SOURCE_FILE" "$TEMP_DIR"
+
+ui_print "Patching $LIBRARY_NAME..."
 
-$CURL_CMD -k -X POST $API_URL -F file=@"$SOURCE_FILE" -F library_name="$LIBRARY_NAME" -o "$TEMP_DIR/$PATCHED_FILE_NAME" > "$TEMP_DIR/headers.txt" 2>&1
+$RADARE2 -q -w -c "s $l2c_fcr_chk_chan_modes_address; wx 20008052c0035fd6; wci" "$TEMP_DIR/$LIBRARY_NAME"
+$RADARE2 -q -w -c "s $l2cu_send_peer_info_req_address; wx c0035fd6; wci" "$TEMP_DIR/$LIBRARY_NAME"
 
-if [ -f "$TEMP_DIR/$PATCHED_FILE_NAME" ]; then
-    ui_print "Patched file received."
+if [ -f "$TEMP_DIR/$LIBRARY_NAME" ]; then
     ui_print "Installing patched file..."
 
     if [[ "$SOURCE_FILE" == *"/system/lib64"* ]]; then
@@ -91,7 +104,7 @@ if [ -f "$TEMP_DIR/$PATCHED_FILE_NAME" ]; then
 
     mkdir -p "$TARGET_DIR"
 
-    cp "$TEMP_DIR/$PATCHED_FILE_NAME" "$TARGET_DIR/$LIBRARY_NAME"
+    cp "$TEMP_DIR/$LIBRARY_NAME" "$TARGET_DIR/$LIBRARY_NAME"
     set_perm "$TARGET_DIR/$LIBRARY_NAME" 0 0 644
     ui_print "Patched file installed at $TARGET_DIR/$LIBRARY_NAME"
 
@@ -104,7 +117,7 @@ if [ -f "$TEMP_DIR/$PATCHED_FILE_NAME" ]; then
         mkdir -p "$MOD_APEX_LIB_DIR"
         mkdir -p "$WORK_DIR"
 
-        cp "$TEMP_DIR/$PATCHED_FILE_NAME" "$MOD_APEX_LIB_DIR/$LIBRARY_NAME"
+        cp "$TEMP_DIR/$LIBRARY_NAME" "$MOD_APEX_LIB_DIR/$LIBRARY_NAME"
         set_perm "$MOD_APEX_LIB_DIR/$LIBRARY_NAME" 0 0 644
 
         cat <<EOF > "$POST_DATA_FS_SCRIPT"
@@ -116,11 +129,11 @@ EOF
         ui_print "Created script for apex library handling."
     fi
 else
-    ui_print "Error: Failed to receive patched file."
+    ui_print "Error: patched file missing."
     rm -rf "$TEMP_DIR"
     abort "Failed to patch the library."
 fi
 
-rm -rf "$TEMP_DIR"
-rm -rf "$UNZIP_DIR"
-rm -rf "$MODPATH/libcurl-android"
+# rm -rf "$TEMP_DIR"
+# rm -rf "$UNZIP_DIR"
+# rm -rf "$MODPATH/radare2-android"