#include <sys/types.h>
struct Baton {
- void (*__pthread_set_self)(pthread_t);
+ void (*_pthread_start)(pthread_t, mach_port_t, void *(*)(void *), void *, size_t, unsigned int);
- int (*pthread_create)(pthread_t *, const pthread_attr_t *, void *(*)(void *), void *);
- int (*pthread_join)(pthread_t, void **);
-
- void *(*dlopen)(const char *, int);
char *(*dlerror)();
void *(*dlsym)(void *, const char *);
- mach_port_t (*mach_thread_self)();
- kern_return_t (*thread_terminate)(thread_act_t);
-
pid_t pid;
char library[];
};
library += -framework WebCore
# XXX: all Darwin, maybe all device, should have this
library += -lsubstrate
+console += -lsubstrate
ldid := ldid -S
entitle := ldid -Scycript.xml
#include "Pooling.hpp"
#include "Trampoline.t.hpp"
-extern "C" void __pthread_set_self(pthread_t);
+#include <substrate.h>
+
+extern "C" void _pthread_start(pthread_t, mach_port_t, void *(*)(void *), void *, size_t, unsigned int);
void InjectLibrary(pid_t pid) {
const char *library(CY_LIBRARY);
uint8_t *local(reinterpret_cast<uint8_t *>(apr_palloc(pool, depth)));
Baton *baton(reinterpret_cast<Baton *>(local));
- baton->__pthread_set_self = &__pthread_set_self;
-
- baton->pthread_create = &pthread_create;
- baton->pthread_join = &pthread_join;
-
- baton->dlopen = &dlopen;
+ baton->_pthread_start = reinterpret_cast<void (*)(pthread_t, mach_port_t, void *(*)(void *), void *, size_t, unsigned int)>(MSFindSymbol(NULL, "__pthread_start"));
baton->dlerror = &dlerror;
baton->dlsym = &dlsym;
- baton->mach_thread_self = &mach_thread_self;
- baton->thread_terminate = &thread_terminate;
-
baton->pid = getpid();
memcpy(baton->library, library, length);
_krncall(vm_protect(task, code, trampoline->size_, false, VM_PROT_READ | VM_PROT_EXECUTE));
/*
- printf("_ptss:%p\n", baton->__pthread_set_self);
+ printf("_pts:%p\n", baton->_pthread_start);
+ printf("dlerror:%p\n", baton->dlerror);
printf("dlsym:%p\n", baton->dlsym);
printf("code:%zx\n", (size_t) code);
*/
#define Framework(framework) \
"/System/Library/Frameworks/" #framework ".framework/" #framework
-void *Routine(void *arg) {
+static void *Routine(void *arg) {
Baton *baton(reinterpret_cast<Baton *>(arg));
void *(*dlopen)(const char *, int);
return NULL;
}
-static void $bzero(void *data, size_t size) {
- char *bytes(reinterpret_cast<char *>(data));
- for (size_t i(0); i != size; ++i)
- bytes[i] = 0;
-}
-
-extern "C" void Start(Baton *baton) {
- struct _pthread self;
- $bzero(&self, sizeof(self));
-
- // this code comes from _pthread_set_self
- self.tsd[0] = &self;
- baton->__pthread_set_self(&self);
+static void *Thread(void *arg) {
+ Baton *baton(reinterpret_cast<Baton *>(arg));
int (*pthread_create)(pthread_t *, const pthread_attr_t *, void *(*)(void *), void *);
dlset(baton, pthread_create, "pthread_create");
pthread_t thread;
- baton->pthread_create(&thread, NULL, &Routine, baton);
+ pthread_create(&thread, NULL, &Routine, baton);
int (*pthread_join)(pthread_t, void **);
dlset(baton, pthread_join, "pthread_join");
void *result;
- baton->pthread_join(thread, &result);
+ pthread_join(thread, &result);
- mach_port_t (*mach_thread_self)();
- dlset(baton, mach_thread_self, "mach_thread_self");
-
- kern_return_t (*thread_terminate)(thread_act_t);
- dlset(baton, thread_terminate, "thread_terminate");
+ return NULL;
+}
- baton->thread_terminate(baton->mach_thread_self());
+extern "C" void Start(Baton *baton) {
+ struct _pthread self;
+ baton->_pthread_start(&self, NULL, &Thread, baton, 8 * 1024, 0);
}
projects / cycript.git / commitdiff
