[ldid.git] / ldid.cpp

/* JocStrap - Java/Objective-C Bootstrap
 * Copyright (C) 2007  Jay Freeman (saurik)
*/

/*
 *        Redistribution and use in source and binary
 * forms, with or without modification, are permitted
 * provided that the following conditions are met:
 *
 * 1. Redistributions of source code must retain the
 *    above copyright notice, this list of conditions
 *    and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the
 *    above copyright notice, this list of conditions
 *    and the following disclaimer in the documentation
 *    and/or other materials provided with the
 *    distribution.
 * 3. The name of the author may not be used to endorse
 *    or promote products derived from this software
 *    without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS''
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING,
 * BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE
 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
 * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR
 * TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
 * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/

#include "minimal/stdlib.h"
#include "minimal/mapping.h"

#include "sha1.h"

#include <cstring>
#include <string>
#include <vector>

#include <sys/wait.h>
#include <sys/types.h>
#include <sys/stat.h>

struct fat_header {
    uint32_t magic;
    uint32_t nfat_arch;
};

#define FAT_MAGIC 0xcafebabe
#define FAT_CIGAM 0xbebafeca

struct fat_arch {
    uint32_t cputype;
    uint32_t cpusubtype;
    uint32_t offset;
    uint32_t size;
    uint32_t align;
};

struct mach_header {
    uint32_t magic;
    uint32_t cputype;
    uint32_t cpusubtype;
    uint32_t filetype;
    uint32_t ncmds;
    uint32_t sizeofcmds;
    uint32_t flags;
};

#define MH_MAGIC 0xfeedface
#define MH_CIGAM 0xcefaedfe

#define MH_EXECUTE    0x2
#define MH_DYLIB      0x6
#define MH_BUNDLE     0x8
#define MH_DYLIB_STUB 0x9

struct load_command {
    uint32_t cmd;
    uint32_t cmdsize;
};

#define LC_REQ_DYLD  0x80000000

#define LC_LOAD_DYLIB      0x0c
#define LC_ID_DYLIB        0x0d
#define LC_UUID            0x1b
#define LC_CODE_SIGNATURE  0x1d
#define LC_REEXPORT_DYLIB (0x1f | LC_REQ_DYLD)

struct dylib {
    uint32_t name;
    uint32_t timestamp;
    uint32_t current_version;
    uint32_t compatibility_version;
};

struct dylib_command {
    uint32_t cmd;
    uint32_t cmdsize;
    struct dylib dylib;
};

struct uuid_command {
    uint32_t cmd;
    uint32_t cmdsize;
    uint8_t uuid[16];
};

struct linkedit_data_command {
    uint32_t cmd;
    uint32_t cmdsize;
    uint32_t dataoff;
    uint32_t datasize;
};

uint16_t Swap_(uint16_t value) {
    return
        ((value >>  8) & 0x00ff) |
        ((value <<  8) & 0xff00);
}

uint32_t Swap_(uint32_t value) {
    value = ((value >>  8) & 0x00ff00ff) |
            ((value <<  8) & 0xff00ff00);
    value = ((value >> 16) & 0x0000ffff) |
            ((value << 16) & 0xffff0000);
    return value;
}

int16_t Swap_(int16_t value) {
    return Swap_(static_cast<uint16_t>(value));
}

int32_t Swap_(int32_t value) {
    return Swap_(static_cast<uint32_t>(value));
}

uint16_t Swap(uint16_t value) {
    return true ? Swap_(value) : value;
}

uint32_t Swap(uint32_t value) {
    return true ? Swap_(value) : value;
}

int16_t Swap(int16_t value) {
    return Swap(static_cast<uint16_t>(value));
}

int32_t Swap(int32_t value) {
    return Swap(static_cast<uint32_t>(value));
}

class Framework {
  private:
    void *base_;
    size_t size_;
    mach_header *mach_header_;
    bool swapped_;

  public:
    uint16_t Swap(uint16_t value) const {
        return swapped_ ? Swap_(value) : value;
    }

    uint32_t Swap(uint32_t value) const {
        return swapped_ ? Swap_(value) : value;
    }

    int16_t Swap(int16_t value) const {
        return Swap(static_cast<uint16_t>(value));
    }

    int32_t Swap(int32_t value) const {
        return Swap(static_cast<uint32_t>(value));
    }

    Framework(const char *framework_path) :
        swapped_(false)
    {
        base_ = map(framework_path, 0, _not(size_t), &size_, false);
        fat_header *fat_header = reinterpret_cast<struct fat_header *>(base_);

        if (Swap(fat_header->magic) == FAT_CIGAM) {
            swapped_ = !swapped_;
            goto fat;
        } else if (Swap(fat_header->magic) != FAT_MAGIC)
            mach_header_ = (mach_header *) base_;
        else fat: {
            size_t fat_narch = Swap(fat_header->nfat_arch);
            fat_arch *fat_arch = reinterpret_cast<struct fat_arch *>(fat_header + 1);
            size_t arch;
            for (arch = 0; arch != fat_narch; ++arch) {
                uint32_t arch_offset = Swap(fat_arch->offset);
                mach_header_ = (mach_header *) ((uint8_t *) base_ + arch_offset);
                goto found;
                ++fat_arch;
            }

            _assert(false);
        }

      found:
        if (Swap(mach_header_->magic) == MH_CIGAM)
            swapped_ = !swapped_;
        else _assert(Swap(mach_header_->magic) == MH_MAGIC);

        _assert(
            Swap(mach_header_->filetype) == MH_EXECUTE ||
            Swap(mach_header_->filetype) == MH_DYLIB ||
            Swap(mach_header_->filetype) == MH_BUNDLE
        );
    }

    struct mach_header *operator ->() const {
        return mach_header_;
    }

    void *GetBase() {
        return base_;
    }

    size_t GetSize() {
        return size_;
    }

    std::vector<struct load_command *> GetLoadCommands() {
        std::vector<struct load_command *> load_commands;

        struct load_command *load_command = reinterpret_cast<struct load_command *>(mach_header_ + 1);
        for (uint32_t cmd = 0; cmd != Swap(mach_header_->ncmds); ++cmd) {
            load_commands.push_back(load_command);
            load_command = (struct load_command *) ((uint8_t *) load_command + Swap(load_command->cmdsize));
        }

        return load_commands;
    }
};

#define CSMAGIC_CODEDIRECTORY 0xfade0c02
#define CSMAGIC_EMBEDDED_SIGNATURE 0xfade0cc0
#define CSSLOT_CODEDIRECTORY 0
#define CSSLOT_REQUIREMENTS 2

struct BlobIndex {
    uint32_t type;
    uint32_t offset;
};

struct SuperBlob {
    uint32_t magic;
    uint32_t length;
    uint32_t count;
    struct BlobIndex index[];
};

struct CodeDirectory {
    uint32_t magic;
    uint32_t length;
    uint32_t version;
    uint32_t flags;
    uint32_t hashOffset;
    uint32_t identOffset;
    uint32_t nSpecialSlots;
    uint32_t nCodeSlots;
    uint32_t codeLimit;
    uint8_t hashSize;
    uint8_t hashType;
    uint8_t spare1;
    uint8_t pageSize;
    uint32_t spare2;
};

extern "C" uint32_t hash(uint8_t *k, uint32_t length, uint32_t initval);

#define CODESIGN_ALLOCATE "arm-apple-darwin9-codesign_allocate"

void sha1(uint8_t *hash, uint8_t *data, size_t size) {
    SHA1Context context;
    SHA1Reset(&context);
    SHA1Input(&context, data, size);
    SHA1Result(&context, hash);
}

int main(int argc, const char *argv[]) {
    bool flag_R(false);
    bool flag_t(false);
    bool flag_p(false);
    bool flag_u(false);

    bool flag_T(false);
    bool flag_S(false);

    bool timeh(false);
    uint32_t timev(0);

    std::vector<std::string> files;

    _assert(argc != 0);
    for (int argi(1); argi != argc; ++argi)
        if (argv[argi][0] != '-')
            files.push_back(argv[argi]);
        else switch (argv[argi][1]) {
            case 'R': flag_R = true; break;
            case 't': flag_t = true; break;
            case 'u': flag_u = true; break;
            case 'p': flag_p = true; break;
            case 'S': flag_S = true; break;

            case 'T': {
                flag_T = true;
                if (argv[argi][2] == '-')
                    timeh = true;
                else {
                    char *arge;
                    timev = strtoul(argv[argi] + 2, &arge, 0);
                    _assert(arge == argv[argi] + strlen(argv[argi]));
                }
            } break;

            default:
                goto usage;
            break;
        }

    if (files.empty()) usage: {
        exit(0);
    }

    size_t filei(0), filee(0);
    _foreach (file, files) try {
        const char *path(file->c_str());
        const char *base = strrchr(path, '/');
        char *temp(NULL), *dir;
        mode_t mode = 0;

        if (base != NULL)
            dir = strndup(path, base++ - path + 1);
        else {
            dir = strdup("");
            base = path;
        }

        if (flag_S) {
            asprintf(&temp, "%s.%s.cs", dir, base);
            const char *allocate = getenv("CODESIGN_ALLOCATE");
            if (allocate == NULL)
                allocate = "codesign_allocate";

            size_t size = _not(size_t);
            const char *arch; {
                Framework framework(path);
                _foreach (load_command, framework.GetLoadCommands()) {
                    uint32_t cmd(framework.Swap((*load_command)->cmd));
                    if (cmd == LC_CODE_SIGNATURE) {
                        struct linkedit_data_command *signature = reinterpret_cast<struct linkedit_data_command *>(*load_command);
                        size = framework.Swap(signature->dataoff);
                        _assert(size < framework.GetSize());
                        break;
                    }
                }

                if (size == _not(size_t))
                    size = framework.GetSize();

                switch (framework->cputype) {
                    case 12: switch (framework->cpusubtype) {
                        case 0: arch = "arm"; break;
                        case 6: arch = "armv6"; break;
                        default: arch = NULL; break;
                    } break;

                    default: arch = NULL; break;
                }
            }

            _assert(arch != NULL);

            pid_t pid = fork();
            _syscall(pid);
            if (pid == 0) {
                char *ssize;
                asprintf(&ssize, "%u", (sizeof(struct SuperBlob) + 2 * sizeof(struct BlobIndex) + sizeof(struct CodeDirectory) + strlen(base) + 1 + (size + 0x1000 - 1) / 0x1000 * 0x14 + 0xc + 15) / 16 * 16);
                execlp(allocate, allocate, "-i", path, "-a", arch, ssize, "-o", temp, NULL);
                _assert(false);
            }

            int status;
            _syscall(waitpid(pid, &status, 0));
            _assert(WIFEXITED(status));
            _assert(WEXITSTATUS(status) == 0);
        }

        Framework framework(temp == NULL ? path : temp);
        struct linkedit_data_command *signature(NULL);

        if (flag_p)
            printf("path%zu='%s'\n", filei, file->c_str());

        _foreach (load_command, framework.GetLoadCommands()) {
            uint32_t cmd(framework.Swap((*load_command)->cmd));

            if (flag_R && cmd == LC_REEXPORT_DYLIB)
                (*load_command)->cmd = framework.Swap(LC_LOAD_DYLIB);
            else if (cmd == LC_CODE_SIGNATURE)
                signature = reinterpret_cast<struct linkedit_data_command *>(*load_command);
            else if (cmd == LC_UUID) {
                volatile struct uuid_command *uuid_command(reinterpret_cast<struct uuid_command *>(*load_command));

                if (flag_u) {
                    printf("uuid%zu=%.2x%.2x%.2x%.2x-%.2x%.2x-%.2x%.2x-%.2x%.2x-%.2x%.2x%.2x%.2x%.2x%.2x\n", filei,
                        uuid_command->uuid[ 0], uuid_command->uuid[ 1], uuid_command->uuid[ 2], uuid_command->uuid[ 3],
                        uuid_command->uuid[ 4], uuid_command->uuid[ 5], uuid_command->uuid[ 6], uuid_command->uuid[ 7],
                        uuid_command->uuid[ 8], uuid_command->uuid[ 9], uuid_command->uuid[10], uuid_command->uuid[11],
                        uuid_command->uuid[12], uuid_command->uuid[13], uuid_command->uuid[14], uuid_command->uuid[15]
                    );
                }
            } else if (cmd == LC_ID_DYLIB) {
                volatile struct dylib_command *dylib_command(reinterpret_cast<struct dylib_command *>(*load_command));

                if (flag_t)
                    printf("time%zu=0x%.8x\n", filei, framework.Swap(dylib_command->dylib.timestamp));

                if (flag_T) {
                    uint32_t timed;

                    if (!timeh)
                        timed = timev;
                    else {
                        dylib_command->dylib.timestamp = 0;
                        timed = hash(reinterpret_cast<uint8_t *>(framework.GetBase()), framework.GetSize(), timev);
                    }

                    dylib_command->dylib.timestamp = framework.Swap(timed);
                }
            }
        }

        if (flag_S) {
            _assert(signature != NULL);

            uint32_t data = framework.Swap(signature->dataoff);
            uint32_t size = framework.Swap(signature->datasize);

            uint8_t *top = reinterpret_cast<uint8_t *>(framework.GetBase());
            uint8_t *blob = top + data;
            struct SuperBlob *super = reinterpret_cast<struct SuperBlob *>(blob);
            super->magic = Swap(CSMAGIC_EMBEDDED_SIGNATURE);

            uint32_t count = 2;
            uint32_t offset = sizeof(struct SuperBlob) + count * sizeof(struct BlobIndex);

            super->index[0].type = Swap(CSSLOT_CODEDIRECTORY);
            super->index[0].offset = Swap(offset);

            uint32_t begin = offset;
            struct CodeDirectory *directory = reinterpret_cast<struct CodeDirectory *>(blob + begin);
            offset += sizeof(struct CodeDirectory);

            directory->magic = Swap(CSMAGIC_CODEDIRECTORY);
            directory->version = Swap(0x00020001);
            directory->flags = Swap(0);
            directory->codeLimit = Swap(data);
            directory->hashSize = 0x14;
            directory->hashType = 0x01;
            directory->spare1 = 0x00;
            directory->pageSize = 0x0c;
            directory->spare2 = Swap(0);

            directory->identOffset = Swap(offset - begin);
            strcpy(reinterpret_cast<char *>(blob + offset), base);
            offset += strlen(base) + 1;

            uint8_t (*hashes)[20] = reinterpret_cast<uint8_t (*)[20]>(blob + offset);
            uint32_t special = 0;

            uint32_t pages = (data + 0x1000 - 1) / 0x1000;
            directory->nSpecialSlots = Swap(special);
            directory->nCodeSlots = Swap(pages);

            if (pages != 1)
                for (size_t i = 0; i != pages - 1; ++i)
                    sha1(hashes[special + i], top + 0x1000 * i, 0x1000);
            if (pages != 0)
                sha1(hashes[special + pages - 1], top + 0x1000 * (pages - 1), data % 0x1000);

            directory->hashOffset = Swap(offset - begin);
            offset += sizeof(*hashes) * (special + pages);
            directory->length = Swap(offset - begin);

            super->index[1].type = Swap(CSSLOT_REQUIREMENTS);
            super->index[1].offset = Swap(offset);

            memcpy(blob + offset, "\xfa\xde\x0c\x01\x00\x00\x00\x0c\x00\x00\x00\x00", 0xc);
            offset += 0xc;

            super->count = Swap(count);
            super->length = Swap(offset);

            _assert(offset <= size);
            memset(blob + offset, 0, size - offset);
        }

        if (temp) {
            struct stat info;
            _syscall(stat(path, &info));
            _syscall(chown(temp, info.st_uid, info.st_gid));
            _syscall(chmod(temp, info.st_mode));
            _syscall(unlink(path));
            _syscall(rename(temp, path));
            free(temp);
        }

        free(dir);
        ++filei;
    } catch (const char *) {
        ++filee;
        ++filei;
    }

    return filee;
}
Commit	Line	Data
a362a82f JF	1	/* JocStrap - Java/Objective-C Bootstrap
	2	* Copyright (C) 2007 Jay Freeman (saurik)
	3	*/
	4
	5	/*
	6	* Redistribution and use in source and binary
	7	* forms, with or without modification, are permitted
	8	* provided that the following conditions are met:
	9	*
	10	* 1. Redistributions of source code must retain the
	11	* above copyright notice, this list of conditions
	12	* and the following disclaimer.
	13	* 2. Redistributions in binary form must reproduce the
	14	* above copyright notice, this list of conditions
	15	* and the following disclaimer in the documentation
	16	* and/or other materials provided with the
	17	* distribution.
	18	* 3. The name of the author may not be used to endorse
	19	* or promote products derived from this software
	20	* without specific prior written permission.
	21	*
	22	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS''
	23	* AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING,
	24	* BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
	25	* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	26	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE
	27	* LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
	28	* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	29	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
	30	* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
	31	* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
	32	* LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR
	33	* TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
	34	* ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
	35	* ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	36	*/
	37
	38	#include "minimal/stdlib.h"
	39	#include "minimal/mapping.h"
	40
fdb119ef JF	41	#include "sha1.h"
fdb119ef JF	42
a362a82f JF	43	#include <cstring>
	44	#include <string>
	45	#include <vector>
	46
fdb119ef	47	#include <sys/wait.h>
31ad673b JF	48	#include <sys/types.h>
31ad673b JF	49	#include <sys/stat.h>
fdb119ef	50
a362a82f JF	51	struct fat_header {
	52	uint32_t magic;
	53	uint32_t nfat_arch;
	54	};
	55
	56	#define FAT_MAGIC 0xcafebabe
	57	#define FAT_CIGAM 0xbebafeca
	58
	59	struct fat_arch {
	60	uint32_t cputype;
	61	uint32_t cpusubtype;
	62	uint32_t offset;
	63	uint32_t size;
	64	uint32_t align;
	65	};
	66
	67	struct mach_header {
	68	uint32_t magic;
	69	uint32_t cputype;
	70	uint32_t cpusubtype;
	71	uint32_t filetype;
	72	uint32_t ncmds;
	73	uint32_t sizeofcmds;
	74	uint32_t flags;
	75	};
	76
fdb119ef	77	#define MH_MAGIC 0xfeedface
a362a82f JF	78	#define MH_CIGAM 0xcefaedfe
a362a82f JF	79
efd6cd4a JF	80	#define MH_EXECUTE 0x2
	81	#define MH_DYLIB 0x6
	82	#define MH_BUNDLE 0x8
	83	#define MH_DYLIB_STUB 0x9
a362a82f JF	84
	85	struct load_command {
	86	uint32_t cmd;
	87	uint32_t cmdsize;
	88	};
	89
	90	#define LC_REQ_DYLD 0x80000000
	91
fdb119ef JF	92	#define LC_LOAD_DYLIB 0x0c
	93	#define LC_ID_DYLIB 0x0d
	94	#define LC_UUID 0x1b
	95	#define LC_CODE_SIGNATURE 0x1d
a362a82f JF	96	#define LC_REEXPORT_DYLIB (0x1f \| LC_REQ_DYLD)
	97
	98	struct dylib {
	99	uint32_t name;
	100	uint32_t timestamp;
	101	uint32_t current_version;
	102	uint32_t compatibility_version;
	103	};
	104
	105	struct dylib_command {
	106	uint32_t cmd;
	107	uint32_t cmdsize;
	108	struct dylib dylib;
	109	};
	110
	111	struct uuid_command {
	112	uint32_t cmd;
	113	uint32_t cmdsize;
	114	uint8_t uuid[16];
	115	};
	116
fdb119ef JF	117	struct linkedit_data_command {
	118	uint32_t cmd;
	119	uint32_t cmdsize;
	120	uint32_t dataoff;
	121	uint32_t datasize;
	122	};
	123
	124	uint16_t Swap_(uint16_t value) {
	125	return
	126	((value >> 8) & 0x00ff) \|
	127	((value << 8) & 0xff00);
	128	}
	129
	130	uint32_t Swap_(uint32_t value) {
	131	value = ((value >> 8) & 0x00ff00ff) \|
	132	((value << 8) & 0xff00ff00);
	133	value = ((value >> 16) & 0x0000ffff) \|
	134	((value << 16) & 0xffff0000);
	135	return value;
	136	}
	137
	138	int16_t Swap_(int16_t value) {
	139	return Swap_(static_cast<uint16_t>(value));
	140	}
	141
	142	int32_t Swap_(int32_t value) {
	143	return Swap_(static_cast<uint32_t>(value));
	144	}
	145
	146	uint16_t Swap(uint16_t value) {
	147	return true ? Swap_(value) : value;
	148	}
	149
	150	uint32_t Swap(uint32_t value) {
	151	return true ? Swap_(value) : value;
	152	}
	153
	154	int16_t Swap(int16_t value) {
	155	return Swap(static_cast<uint16_t>(value));
	156	}
	157
	158	int32_t Swap(int32_t value) {
	159	return Swap(static_cast<uint32_t>(value));
	160	}
	161
a362a82f JF	162	class Framework {
	163	private:
	164	void *base_;
	165	size_t size_;
	166	mach_header *mach_header_;
	167	bool swapped_;
	168
	169	public:
fdb119ef JF	170	uint16_t Swap(uint16_t value) const {
fdb119ef JF	171	return swapped_ ? Swap_(value) : value;
a362a82f JF	172	}
a362a82f JF	173
fdb119ef JF	174	uint32_t Swap(uint32_t value) const {
fdb119ef JF	175	return swapped_ ? Swap_(value) : value;
a362a82f JF	176	}
a362a82f JF	177
fdb119ef JF	178	int16_t Swap(int16_t value) const {
fdb119ef JF	179	return Swap(static_cast<uint16_t>(value));
a362a82f JF	180	}
a362a82f JF	181
fdb119ef JF	182	int32_t Swap(int32_t value) const {
fdb119ef JF	183	return Swap(static_cast<uint32_t>(value));
a362a82f JF	184	}
	185
	186	Framework(const char *framework_path) :
	187	swapped_(false)
	188	{
	189	base_ = map(framework_path, 0, _not(size_t), &size_, false);
	190	fat_header fat_header = reinterpret_cast<struct fat_header >(base_);
	191
	192	if (Swap(fat_header->magic) == FAT_CIGAM) {
	193	swapped_ = !swapped_;
	194	goto fat;
	195	} else if (Swap(fat_header->magic) != FAT_MAGIC)
	196	mach_header_ = (mach_header *) base_;
	197	else fat: {
	198	size_t fat_narch = Swap(fat_header->nfat_arch);
	199	fat_arch fat_arch = reinterpret_cast<struct fat_arch >(fat_header + 1);
	200	size_t arch;
	201	for (arch = 0; arch != fat_narch; ++arch) {
	202	uint32_t arch_offset = Swap(fat_arch->offset);
	203	mach_header_ = (mach_header ) ((uint8_t ) base_ + arch_offset);
	204	goto found;
	205	++fat_arch;
	206	}
	207
	208	_assert(false);
	209	}
	210
	211	found:
	212	if (Swap(mach_header_->magic) == MH_CIGAM)
	213	swapped_ = !swapped_;
	214	else _assert(Swap(mach_header_->magic) == MH_MAGIC);
	215
	216	_assert(
	217	Swap(mach_header_->filetype) == MH_EXECUTE \|\|
	218	Swap(mach_header_->filetype) == MH_DYLIB \|\|
	219	Swap(mach_header_->filetype) == MH_BUNDLE
	220	);
	221	}
	222
afbb7c8e JF	223	struct mach_header *operator ->() const {
	224	return mach_header_;
	225	}
	226
a362a82f JF	227	void *GetBase() {
	228	return base_;
	229	}
	230
	231	size_t GetSize() {
	232	return size_;
	233	}
	234
	235	std::vector<struct load_command *> GetLoadCommands() {
	236	std::vector<struct load_command *> load_commands;
	237
	238	struct load_command load_command = reinterpret_cast<struct load_command >(mach_header_ + 1);
	239	for (uint32_t cmd = 0; cmd != Swap(mach_header_->ncmds); ++cmd) {
	240	load_commands.push_back(load_command);
	241	load_command = (struct load_command ) ((uint8_t ) load_command + Swap(load_command->cmdsize));
	242	}
	243
	244	return load_commands;
	245	}
	246	};
	247
fdb119ef JF	248	#define CSMAGIC_CODEDIRECTORY 0xfade0c02
	249	#define CSMAGIC_EMBEDDED_SIGNATURE 0xfade0cc0
	250	#define CSSLOT_CODEDIRECTORY 0
afbb7c8e	251	#define CSSLOT_REQUIREMENTS 2
fdb119ef JF	252
	253	struct BlobIndex {
	254	uint32_t type;
	255	uint32_t offset;
	256	};
	257
	258	struct SuperBlob {
	259	uint32_t magic;
	260	uint32_t length;
	261	uint32_t count;
	262	struct BlobIndex index[];
	263	};
	264
	265	struct CodeDirectory {
	266	uint32_t magic;
	267	uint32_t length;
	268	uint32_t version;
	269	uint32_t flags;
	270	uint32_t hashOffset;
	271	uint32_t identOffset;
	272	uint32_t nSpecialSlots;
	273	uint32_t nCodeSlots;
	274	uint32_t codeLimit;
	275	uint8_t hashSize;
	276	uint8_t hashType;
	277	uint8_t spare1;
	278	uint8_t pageSize;
	279	uint32_t spare2;
	280	};
	281
a362a82f JF	282	extern "C" uint32_t hash(uint8_t *k, uint32_t length, uint32_t initval);
a362a82f JF	283
fdb119ef JF	284	#define CODESIGN_ALLOCATE "arm-apple-darwin9-codesign_allocate"
	285
	286	void sha1(uint8_t hash, uint8_t data, size_t size) {
	287	SHA1Context context;
	288	SHA1Reset(&context);
	289	SHA1Input(&context, data, size);
	290	SHA1Result(&context, hash);
	291	}
	292
a362a82f JF	293	int main(int argc, const char *argv[]) {
	294	bool flag_R(false);
	295	bool flag_t(false);
	296	bool flag_p(false);
	297	bool flag_u(false);
	298
	299	bool flag_T(false);
fdb119ef	300	bool flag_S(false);
a362a82f JF	301
	302	bool timeh(false);
	303	uint32_t timev(0);
	304
	305	std::vector<std::string> files;
	306
	307	_assert(argc != 0);
	308	for (int argi(1); argi != argc; ++argi)
	309	if (argv[argi][0] != '-')
	310	files.push_back(argv[argi]);
	311	else switch (argv[argi][1]) {
	312	case 'R': flag_R = true; break;
	313	case 't': flag_t = true; break;
	314	case 'u': flag_u = true; break;
	315	case 'p': flag_p = true; break;
fdb119ef	316	case 'S': flag_S = true; break;
a362a82f JF	317
	318	case 'T': {
	319	flag_T = true;
	320	if (argv[argi][2] == '-')
	321	timeh = true;
	322	else {
	323	char *arge;
	324	timev = strtoul(argv[argi] + 2, &arge, 0);
	325	_assert(arge == argv[argi] + strlen(argv[argi]));
	326	}
	327	} break;
	328
	329	default:
	330	goto usage;
	331	break;
	332	}
	333
	334	if (files.empty()) usage: {
	335	exit(0);
	336	}
	337
	338	size_t filei(0), filee(0);
	339	_foreach (file, files) try {
fdb119ef JF	340	const char *path(file->c_str());
	341	const char *base = strrchr(path, '/');
	342	char temp(NULL), dir;
31ad673b	343	mode_t mode = 0;
fdb119ef JF	344
	345	if (base != NULL)
	346	dir = strndup(path, base++ - path + 1);
	347	else {
	348	dir = strdup("");
	349	base = path;
	350	}
	351
	352	if (flag_S) {
	353	asprintf(&temp, "%s.%s.cs", dir, base);
	354	const char *allocate = getenv("CODESIGN_ALLOCATE");
	355	if (allocate == NULL)
	356	allocate = "codesign_allocate";
	357
afbb7c8e JF	358	size_t size = _not(size_t);
afbb7c8e JF	359	const char *arch; {
fdb119ef	360	Framework framework(path);
afbb7c8e JF	361	_foreach (load_command, framework.GetLoadCommands()) {
	362	uint32_t cmd(framework.Swap((*load_command)->cmd));
	363	if (cmd == LC_CODE_SIGNATURE) {
	364	struct linkedit_data_command signature = reinterpret_cast<struct linkedit_data_command >(*load_command);
	365	size = framework.Swap(signature->dataoff);
	366	_assert(size < framework.GetSize());
	367	break;
	368	}
	369	}
	370
	371	if (size == _not(size_t))
	372	size = framework.GetSize();
	373
	374	switch (framework->cputype) {
	375	case 12: switch (framework->cpusubtype) {
	376	case 0: arch = "arm"; break;
	377	case 6: arch = "armv6"; break;
	378	default: arch = NULL; break;
	379	} break;
	380
	381	default: arch = NULL; break;
	382	}
fdb119ef JF	383	}
fdb119ef JF	384
afbb7c8e JF	385	_assert(arch != NULL);
afbb7c8e JF	386
fdb119ef JF	387	pid_t pid = fork();
	388	_syscall(pid);
	389	if (pid == 0) {
	390	char *ssize;
afbb7c8e JF	391	asprintf(&ssize, "%u", (sizeof(struct SuperBlob) + 2 * sizeof(struct BlobIndex) + sizeof(struct CodeDirectory) + strlen(base) + 1 + (size + 0x1000 - 1) / 0x1000 * 0x14 + 0xc + 15) / 16 * 16);
afbb7c8e JF	392	execlp(allocate, allocate, "-i", path, "-a", arch, ssize, "-o", temp, NULL);
fdb119ef JF	393	_assert(false);
	394	}
	395
	396	int status;
	397	_syscall(waitpid(pid, &status, 0));
	398	_assert(WIFEXITED(status));
	399	_assert(WEXITSTATUS(status) == 0);
	400	}
	401
	402	Framework framework(temp == NULL ? path : temp);
	403	struct linkedit_data_command *signature(NULL);
a362a82f JF	404
	405	if (flag_p)
	406	printf("path%zu='%s'\n", filei, file->c_str());
	407
	408	_foreach (load_command, framework.GetLoadCommands()) {
	409	uint32_t cmd(framework.Swap((*load_command)->cmd));
	410
	411	if (flag_R && cmd == LC_REEXPORT_DYLIB)
	412	(*load_command)->cmd = framework.Swap(LC_LOAD_DYLIB);
fdb119ef JF	413	else if (cmd == LC_CODE_SIGNATURE)
fdb119ef JF	414	signature = reinterpret_cast<struct linkedit_data_command >(load_command);
a362a82f JF	415	else if (cmd == LC_UUID) {
	416	volatile struct uuid_command uuid_command(reinterpret_cast<struct uuid_command >(*load_command));
	417
	418	if (flag_u) {
	419	printf("uuid%zu=%.2x%.2x%.2x%.2x-%.2x%.2x-%.2x%.2x-%.2x%.2x-%.2x%.2x%.2x%.2x%.2x%.2x\n", filei,
	420	uuid_command->uuid[ 0], uuid_command->uuid[ 1], uuid_command->uuid[ 2], uuid_command->uuid[ 3],
	421	uuid_command->uuid[ 4], uuid_command->uuid[ 5], uuid_command->uuid[ 6], uuid_command->uuid[ 7],
	422	uuid_command->uuid[ 8], uuid_command->uuid[ 9], uuid_command->uuid[10], uuid_command->uuid[11],
	423	uuid_command->uuid[12], uuid_command->uuid[13], uuid_command->uuid[14], uuid_command->uuid[15]
	424	);
	425	}
	426	} else if (cmd == LC_ID_DYLIB) {
	427	volatile struct dylib_command dylib_command(reinterpret_cast<struct dylib_command >(*load_command));
	428
	429	if (flag_t)
	430	printf("time%zu=0x%.8x\n", filei, framework.Swap(dylib_command->dylib.timestamp));
	431
	432	if (flag_T) {
	433	uint32_t timed;
	434
	435	if (!timeh)
	436	timed = timev;
	437	else {
	438	dylib_command->dylib.timestamp = 0;
	439	timed = hash(reinterpret_cast<uint8_t *>(framework.GetBase()), framework.GetSize(), timev);
	440	}
	441
	442	dylib_command->dylib.timestamp = framework.Swap(timed);
	443	}
	444	}
	445	}
	446
fdb119ef JF	447	if (flag_S) {
	448	_assert(signature != NULL);
	449
	450	uint32_t data = framework.Swap(signature->dataoff);
	451	uint32_t size = framework.Swap(signature->datasize);
	452
	453	uint8_t top = reinterpret_cast<uint8_t >(framework.GetBase());
	454	uint8_t *blob = top + data;
	455	struct SuperBlob super = reinterpret_cast<struct SuperBlob >(blob);
	456	super->magic = Swap(CSMAGIC_EMBEDDED_SIGNATURE);
	457
afbb7c8e	458	uint32_t count = 2;
fdb119ef JF	459	uint32_t offset = sizeof(struct SuperBlob) + count * sizeof(struct BlobIndex);
	460
	461	super->index[0].type = Swap(CSSLOT_CODEDIRECTORY);
	462	super->index[0].offset = Swap(offset);
	463
	464	uint32_t begin = offset;
	465	struct CodeDirectory directory = reinterpret_cast<struct CodeDirectory >(blob + begin);
	466	offset += sizeof(struct CodeDirectory);
	467
	468	directory->magic = Swap(CSMAGIC_CODEDIRECTORY);
	469	directory->version = Swap(0x00020001);
	470	directory->flags = Swap(0);
	471	directory->codeLimit = Swap(data);
	472	directory->hashSize = 0x14;
	473	directory->hashType = 0x01;
	474	directory->spare1 = 0x00;
	475	directory->pageSize = 0x0c;
	476	directory->spare2 = Swap(0);
	477
	478	directory->identOffset = Swap(offset - begin);
	479	strcpy(reinterpret_cast<char *>(blob + offset), base);
	480	offset += strlen(base) + 1;
	481
	482	uint8_t (hashes)[20] = reinterpret_cast<uint8_t ()[20]>(blob + offset);
	483	uint32_t special = 0;
	484
	485	uint32_t pages = (data + 0x1000 - 1) / 0x1000;
	486	directory->nSpecialSlots = Swap(special);
	487	directory->nCodeSlots = Swap(pages);
	488
	489	if (pages != 1)
	490	for (size_t i = 0; i != pages - 1; ++i)
	491	sha1(hashes[special + i], top + 0x1000 * i, 0x1000);
	492	if (pages != 0)
	493	sha1(hashes[special + pages - 1], top + 0x1000 * (pages - 1), data % 0x1000);
	494
	495	directory->hashOffset = Swap(offset - begin);
	496	offset += sizeof(hashes) (special + pages);
	497	directory->length = Swap(offset - begin);
	498
afbb7c8e JF	499	super->index[1].type = Swap(CSSLOT_REQUIREMENTS);
	500	super->index[1].offset = Swap(offset);
	501
	502	memcpy(blob + offset, "\xfa\xde\x0c\x01\x00\x00\x00\x0c\x00\x00\x00\x00", 0xc);
	503	offset += 0xc;
	504
fdb119ef JF	505	super->count = Swap(count);
	506	super->length = Swap(offset);
	507
afbb7c8e	508	_assert(offset <= size);
fdb119ef JF	509	memset(blob + offset, 0, size - offset);
	510	}
	511
	512	if (temp) {
31ad673b JF	513	struct stat info;
	514	_syscall(stat(path, &info));
	515	_syscall(chown(temp, info.st_uid, info.st_gid));
	516	_syscall(chmod(temp, info.st_mode));
fdb119ef JF	517	_syscall(unlink(path));
	518	_syscall(rename(temp, path));
	519	free(temp);
	520	}
	521
	522	free(dir);
a362a82f JF	523	++filei;
	524	} catch (const char *) {
	525	++filee;
	526	++filei;
	527	}
	528
	529	return filee;
	530	}