#include <sys/types.h>
struct Baton {
- void (*_pthread_start)(pthread_t, mach_port_t, void *(*)(void *), void *, size_t, unsigned int);
+ void (*__pthread_set_self)(pthread_t);
+ int (*pthread_create)(pthread_t *, const pthread_attr_t *, void *(*)(void *), void *);
+ int (*pthread_join)(pthread_t, void **);
+
+ void *(*dlopen)(const char *, int);
char *(*dlerror)();
void *(*dlsym)(void *, const char *);
+ mach_port_t (*mach_thread_self)();
+ kern_return_t (*thread_terminate)(thread_act_t);
+
pid_t pid;
char library[];
};
library += -framework WebCore
# XXX: all Darwin, maybe all device, should have this
library += -lsubstrate
-console += -lsubstrate
ldid := ldid -S
entitle := ldid -Scycript.xml
#include "Pooling.hpp"
#include "Trampoline.t.hpp"
-#include <substrate.h>
-
-extern "C" void _pthread_start(pthread_t, mach_port_t, void *(*)(void *), void *, size_t, unsigned int);
+extern "C" void __pthread_set_self(pthread_t);
void InjectLibrary(pid_t pid) {
const char *library(CY_LIBRARY);
uint8_t *local(reinterpret_cast<uint8_t *>(apr_palloc(pool, depth)));
Baton *baton(reinterpret_cast<Baton *>(local));
- baton->_pthread_start = reinterpret_cast<void (*)(pthread_t, mach_port_t, void *(*)(void *), void *, size_t, unsigned int)>(MSFindSymbol(NULL, "__pthread_start"));
+ baton->__pthread_set_self = &__pthread_set_self;
+
+ baton->pthread_create = &pthread_create;
+ baton->pthread_join = &pthread_join;
+
+ baton->dlopen = &dlopen;
baton->dlerror = &dlerror;
baton->dlsym = &dlsym;
+ baton->mach_thread_self = &mach_thread_self;
+ baton->thread_terminate = &thread_terminate;
+
baton->pid = getpid();
memcpy(baton->library, library, length);
_krncall(vm_protect(task, code, trampoline->size_, false, VM_PROT_READ | VM_PROT_EXECUTE));
/*
- printf("_pts:%p\n", baton->_pthread_start);
- printf("dlerror:%p\n", baton->dlerror);
+ printf("_ptss:%p\n", baton->__pthread_set_self);
printf("dlsym:%p\n", baton->dlsym);
printf("code:%zx\n", (size_t) code);
*/
#define Framework(framework) \
"/System/Library/Frameworks/" #framework ".framework/" #framework
-static void *Routine(void *arg) {
+void *Routine(void *arg) {
Baton *baton(reinterpret_cast<Baton *>(arg));
void *(*dlopen)(const char *, int);
return NULL;
}
-static void *Thread(void *arg) {
- Baton *baton(reinterpret_cast<Baton *>(arg));
+static void $bzero(void *data, size_t size) {
+ char *bytes(reinterpret_cast<char *>(data));
+ for (size_t i(0); i != size; ++i)
+ bytes[i] = 0;
+}
+
+extern "C" void Start(Baton *baton) {
+ struct _pthread self;
+ $bzero(&self, sizeof(self));
+
+ // this code comes from _pthread_set_self
+ self.tsd[0] = &self;
+ baton->__pthread_set_self(&self);
int (*pthread_create)(pthread_t *, const pthread_attr_t *, void *(*)(void *), void *);
dlset(baton, pthread_create, "pthread_create");
pthread_t thread;
- pthread_create(&thread, NULL, &Routine, baton);
+ baton->pthread_create(&thread, NULL, &Routine, baton);
int (*pthread_join)(pthread_t, void **);
dlset(baton, pthread_join, "pthread_join");
void *result;
- pthread_join(thread, &result);
+ baton->pthread_join(thread, &result);
- return NULL;
-}
+ mach_port_t (*mach_thread_self)();
+ dlset(baton, mach_thread_self, "mach_thread_self");
-extern "C" void Start(Baton *baton) {
- struct _pthread self;
- baton->_pthread_start(&self, NULL, &Thread, baton, 8 * 1024, 0);
+ kern_return_t (*thread_terminate)(thread_act_t);
+ dlset(baton, thread_terminate, "thread_terminate");
+
+ baton->thread_terminate(baton->mach_thread_self());
}
projects / cycript.git / commitdiff
