couldn't you set its playback timer back to 0?

0.0

and the function is called repeatedly?

yeah the function is called repeatedly

also yea reinitializing does not sound like the proper solution lmao

I don't want beef with anybody but stuff happens'

imma be honest this is probably fine

i gave up on trying to tell people how to engineer proper solutions long ago

yeah im looking into other solutions rn

although whether you need reload here is questionable

guys

public static void CupidSpammer()
{
if (ControllerInputPoller.instance.rightGrab)
{
GameObject gameObject = GameObject.Find("Environment Objects/PersistentObjects_Prefab/GlobalObjectPools/CupidArrow_Projectile(Clone)"); //
GameObject gameObject2 = ObjectPools.instance.Instantiate(gameObject);
int num = PoolUtils.GameObjHashCode(gameObject2);
SlingshotProjectile component = gameObject2.GetComponent<SlingshotProjectile>();
int num2 = PoolUtils.GameObjHashCode(GorillaTagger.Instance.offlineVRRig.slingshot.projectileTrail);
int num3 = GorillaGameManager.instance.IncrementLocalPlayerProjectileCount();
Vector3 position = GorillaLocomotion.Player.Instance.rightControllerTransform.transform.position;
Vector3 vector = Vector3.up + GorillaLocomotion.Player.Instance.rightControllerTransform.transform.forward * 2;
GorillaGameManager.instance.photonView.RPC("LaunchSlingshotProjectile", RpcTarget.All, new object[]
{
position,
vector,
num,
num2,
false,
num3,
false,
1f,
1f,
1f,
1f
});
gameObject.SetActive(true);
component.Launch(position, vector, PhotonNetwork.LocalPlayer, true, false, num3, 1f, false, new UnityEngine.Color(1f, 0f, 1f, 1f)); //
}
}

i just give them the snippet they want and then if (when) it crashes and burns later then they get a better one

ie. can you just check the actual condition at the end

probably the main reason is stealing something, tweeting about it, for 'clout'

who wants more of my code

no

please

this in regards to me?

wow

I hate you more

mods

I am developing

rainbow

https://tenor.com/view/mods-discord-mod-moderator-moderation-clash-of-clans-gif-24080525

https://tenor.com/view/atomic-nuke-j-robert-oppenheimer-destroyer-of-the-worlds-death-gif-15159234

me rn

public static void QuitGame()
{
Application.Quit();
}

@timid furnace 💀

AVAssetReader doesn't support seeking or restarting, it is essentially a sequential decoder. You have to create a new AVAssetReader object to read the same samples again.

well then good luck

https://media.discordapp.net/attachments/966830763968430180/1186515432300085259/zefram.gif?ex=6593879b&is=6581129b&hm=35dc2cb452cb2071550d3e271e25b625ca35232f9206f5e2abc0e72ab83e5799&

fr

thats what I heard at least

i never cared about clout. i did tweet things even when i wasn't releasing anything. but i never cared for the clout. i already had it when i was tweeting back then.

@timid furnace i can think of any solutions bc all the solutions i have are too inefficient

because it crashes BEFORE assetReader.status is complete

and any other checks inside the if are too slow

and i dont wanna arbitrarily just reinit if i dont have to yk

like i could just

static NSTimeInterval notNow = 0;
NSTimeInterval now = [[NSDate date] timeIntervalSince1970];
if (now - notNow > some_arbitrary_sec) {
  notNow = now;
  reload = true;
}

because then when if (reload) is called itll reload and reinit the reader and whatever

hmmm i could make it be that some_arbitrary_sec is the video duration - 0.5 or smth

so it can't have more than 1 reader active at once

wtf

yeah fr me when btop looks all fked up

you sure that isn't dwarf fortress?

Anybody have guides for building IPAs and other iOS binaries without a Mac? I have a laptop I could sacrifice to be a hackintosh, but I'd need to buy a different wireless card, or I could try a MacOS VM on the desktop I'm building rn, but i'm planning to use that desktop mostly as a headless server

Always been curious, where’s the cydia source code?

if the laptop is running windows you can install WSL and then install theos

if the laptop is running linux, skip WSL and install theos

but if I want to be able to just git pull and make to build an IPA from a repo, I don't think that would work

last time I tried with theos, I ran into issues with Swift dependencies

granted, that was WSL, not native linux so I could try again on one of my linux boxes, but I don't think that would change anything

https://git.saurik.com/

yeah it wouldn't
wsl+theos is good for developing new code or compiling other theos built code
you cant really just take a xcode project and expect it to build without xcode yk

is there any special sauce in an xcode project that just can't be run on a non-mac machine, or could a xcdode project be forced to build with theos?

you could "rebuild" the project by converting the xcode format into a makefile format

if that makes sense

yeah except for the mentioned swift dependency issues

cross that bridge when you get to it

idk how swift dependencys work

i barely know how swift works to begin with

good

the main problem is converting the xcodeproj to something that existing tooling on linux can use

would it be more of a PITA to hackintosh or set up a VM, or try and makefile-ify an xcode project and make swift work under Linux?

depends on the project

i feel like there is probably a different way to do what you are doing

but idk what you are doing

so

i think i know what i can do

take the Fugu15 project for an example, it needs swift, but theos didn't error immediately when I tried it last

thanks gir

did you actually install a swift toolchain

it was under WSL, and since then I've wiped my computer a couple times, i don't think anything's installed anymore

but that was where I got stuck

consider that you'd only have to set up a hackintosh/VM worse while you'd have to convert every xcode project you come across

upfront effort vs repeated effort

how much of a PITA to try and automate it do you think it would be?

not happening

there's too much variance in what stuff can rely on

also some stuff is just not open-source

ie. swiftui

but that should be banned either way so

depends

it should become no-sourced ong

what about using the Unicorn loader that was used in pypush to try and run the closed-source MacOS binaries?
nvm, that's dumb

if you're doing a really simple app with no logic, fine
if you're doing swiftui for the gui because you cant wrap your head around designing in objc/storyboard, fine
if you're doing swiftui because you like swift, not fine

that was for one old binary

good luck with the entire toolchain

not really

takes me like 30 mins from a fresh arch install

any guides you recommend? I'll be setting up a new arch box soon

yaur

check DKVM in my links on my profile

there are 2 small bugs on the docs, after you go on the kexts page, the link to the next page is broken, thats because it links to the 04-Tools page , but it was removed a few commits ago, and the person who did the commit didnt update the link and ive been busy c:

the last bug is, the diskprovision included in the repo rn is broken for people who try to mount images twice after a failed attempt, because the program doesn't check if mount 0 was mounted beforehand, thus yeah, it should work oob for you on arch, but some people run into issues with other distros that mount shit

automatically

I've already got a 2070 super, but would it be worth getting a RX580, and just running both in the system?

in my opinion

a 6000 series gpu can be found for like 200 maybe 250 max

idk how much an rx580 is, but, i mean, for a few 50 more bucks or so

personally i got a 6600 for 200

it would be 70 bucks, but I'd need to get a new PSU too

oh shiet, awe yeah 70 bucks for a 580 is decent i cant lie

I'll sell you a 570 for 55

what wattage u got

https://docs.darwinkvm.com/docs/11-GPUSupport/01-AMD.html#polaris-10-and-20

heres teh list

just incase you see something decent on ebay or, if you get his 570

500 watts, with an i7 9700k and a 2070 super (dead fans) currently

me asf, my 2070 super fans also died

https://cdn.discordapp.com/emojis/860364015364341781.webp?size=48&name=IkuLaugh&quality=lossless

not dead, but the motor has a hair, so its off center and scrapes the plastic shroud

I'll probably go with the 580, the dude selling it to me is one of my friends, literally a 6 minute drive from me

wow thats goated, yeah if you can pretty much get your hands on it with relative ease, id prob go that route too

but nah your cpu is great, dGPU coming in, you should be fully ready to run a full on macOS vm

for context, im in my vm 24/7

go w/ it

because I need the CUDA for AI stuff, the 2070 is staying in, just probably getting moved to the second slot

hackintosh is so easy with amd and 9th gen

well the good thing about running macOS in a VM is that you basically only require a dGPU, and you're off

everything else is taken care of by Virtio and QEMU

o kvm nvm

should be easier tbh

its git clone and done

I was going to hackintosh my thinkpad t590, it's just a $50 wireless card swap

naurrr

never promote premades

did they change it

no, just dont use premades

same as for desktops running baremetal hacs

idk abt u but the macos kvm github was amazing

and idk anyone who made their own kvm lol

it works by sharing the same OC config basically

it was all that github

i did

and if you want imessage or any further support, you need to already understand how to opencore

a long time ago

well, not making a KVM, but i write the docs for it basically

but then people are going to murder me if i say it was pretty easy

so

hackintosh is easy

nah

its just praying it doesnt break down in a year

and making it not shit after installation

naur it is easy, i can agree, but it allows randos to run into many issues who just want macOS

thats the shitty part

y'all haven't experienced the troublesome hardware

can I use it over X11 forwarding or the windows remote desktop on linux? the PC I'm putting together was originally intended as a server/seedbox, so if I can use the VM remotely over the local network, it would be golden

I fw this lowkey

U know what ur right

yeah like, imo anyone can git clone a repo and run a command, but then what happens when they run into a problem

yeah

there are people in the UTM discord who are like

why doesnt bluetooth work in my windows 11 vm

and im like, its a virtual machine, it has no bluetooth in it

thats the problem with jb today imo

its too accessible

yes very, too accessible to use repos like that, its just hard when some of the core concepts are really important

cause then the support falls on those who made it

you can still VNC and use your host as usual

it's not that JB is too accessible, it's that the new people coming in have had everything else be too accessible, so they expect everything to be that way

the VM is using GPU passthrough so it means macOS is displaying directly on the 580, meaning youd need an hdmi cable out of that to a monitor to see macOS

any way to just use macOS headless?

but there are some really deep configurations you can make which involve evdev and the likes, to basically nullify needing to do usb port passthrough

in theoryyyyyyy

yeah?

if u have 2 gpus, kvm hackintosh is so nice

ssh exists so yeah

to do headless properly you need a dummy plug

itll still display to the GPU yeah exactly

but you can ssh to it from wherever

well, I'm making a MicroCenter run tomorrow, i'll put that on the shopping list too

i mean even now, you can make a high performance macOS VM and only ssh into it

alternative to dummy plug is hdmi to vga adapter

itll just still be outputting that dummy feed somewhere, so either the virtio display or, a serial display

i could put my rx 570 in my pc and have a hackintosh kvm

i think

but it overheats my pc

cuz i have to put it right under my 3070

oof i feel you

i think you might have to connect it to a vga monitor first for it to work properly

been a while since i tried it

and my 3070 has no room to blow air out

i also dont have any airflow for the two gpus

is there any native macOS boot flag that basically starts it in serial mode?

i used to do that

or console mode i guess (?)

but then i got tired of it so i just took out the rx 570 and now its just collecting dust

not in the way you expect

hmm

yeah im thinking of like, how linux does it

yeah i dont think you can

yea nah. you can have it pre-init and get a console, but this is basically before all daemons are started, and once you start them you'll be kicked to gui

u have to boot it up log in and then u can do shit

you can have (actual) serial but that's just kernel output

yeah

and additionally you can interact with this through serial

but thats pretty much it

huh

thats interesting

actually wait

so macOS basically always wants a display?

this is intel macos right?

yes

yes

single user mode

no sum on AS

single user mode is what i just described

ahh ok

yerrrr

once windowserver starts you're gonna have a display

hmm i wonder if a custom kext is possible

and no more ram

i guess you could theoretically just block windowserver from starting

but like

yeee

this has minimal use case

nah yeah, but in the case of DKVM, i cant lie, this is kinda juicy info, and could help alot of people who dont have iGPU/dGPU but simply want xcodebuild

i mean

just let it get to the login window

or the equivalent of that QEMU apple silicon fork that takes you to console

Mmm

its not like you have to use it through the gui

yeah

just set it up enough to enable ssh and then use ssh

yeah but having the OS still displaying to some display, would still eat up CPU time no? cause of no gpu and whatnot

eh maybe not, id have to even see if it does lag or not

eating up cpu time is still better than no xcodebuild

that is very true

its staying static

huh

i guess thats true

know what

i'll see how apple does it

brb

yeee all good, lemme know if you find anything cool

is there a place with a list or documentation of these subcodes?

ok i figured out how they do it

0.0

https://cdn.discordapp.com/emojis/795100543055036506.gif?size=48&name=speedycat&quality=lossless

some extra launchdaemons which put a shell over serial

I mean

you can do that

ive shoved log output over serial before

but do they disable the gui

ill see if there's a way to disable the gui though

i think no but @grave sparrow would know

bet bet, thats gonna be funny to see lol, ofc ive ran my crappy laptop with macOS and then only ever used SSH over it, but a machine starting into a console only, would be funny asf

namepsace 6 😭

😭

@grave sparrow happy birthday!

hbd zefram dev @grave sparrow

may 2024 bring less zefram bootloops (it Will Not .)

happy birthday @grave sparrow

happy birthday - shame you still won’t get a job this year

can i hire you to do my taxes?

maybe try this https://youtu.be/fjDXvXACIEA

will give big mac meal

real

capt’s mother just sent me her first nudes of the year

🔥

hot

https://tenor.com/view/surprised-sorprendido-shaquille-oneal-gif-23222312

tim apple

@grave sparrow happy birthday big man, thanks for all the help you’ve given me throughout the years 🫶

ok wholesome moment over

eat shit and die capt

@grave sparrow happy birthday

@grave sparrow happy birthday big man

10 years is a decade right

or was it 30

luh mao

its 10

deci

tricade

Kfd adds support for a new exploit puaf_landa with support up to iOS 17

16.6.1

This method exploits CVE-2023-41974.
Fixed in iOS 17.0

correct

it does not support iOS 17

unless it's a beta

Yes right.

?

definitely 30

how do I dump the entitlements of a binary with ldid

whats the AudioDSP dylib or framework

just sound?

and whats the __LINKEDIT memory region (thats what its calle right)

whats a meta file

Majority of it is just code signature

But also some information for linking

ldid -e
https://iphonedev.wiki/Ldid

thx

Recommending sbinger ldid instead of procursus is crazy

ldid_bingner -S ldid_procursus

ldid -e pathtobinary

oh didnt see someone else said

is this how you hook objc classes that are custom made from an app

it’s just documentation dawg

😭

No need for that

That’s only necessary for swift classes with a . in their name

- resident swift expert

https://cdn.discordapp.com/attachments/1169461256386785290/1178720132755882084/caption.gif

oh

It’s got the procursus manpage there too lol

are yous sure it works like that

i used ktoool to dump the classes

yes

and found this

well thats the hook but i found these functions

but no logs

They’re not being used then

do you know where the configs are stored for these things

also whats an app id

how to build libpatchfinder for gnu/linux?

https://tenor.com/view/we-are-gunna-kill-you-sponge-bob-squidward-squidward-meme-im-a-winner-se-my-prize-gif-25631410

Happy Birthday

so what could i possibly do to find out where the app finds the bundle id

i have a feeling it reads it from the info plist file honestly

Probably

i though felix_pb went dark?

most epic comeback of all time

Went dark?

They were never too active in the first place

oh i thought he just dissapeared lol

anyone know anything about adding load command to binaries? im getting sigbus errors with insert_dylib

is the purekfd beta stable enough to work on all devices? (for installing trollstore)

definetly more stable than misaka

specifically dylib load command?

@unkempt magnet could I get the method you used to obtain arm64 offsets for kfd? the current method gives overflow reached end of vmem

Can trollstore be installed with lockdown mode enabled

Yes

https://cdn.discordapp.com/attachments/443258489146572812/1191472240773054514/jkC88J_6EbY08e1O.mp4?ex=65a58ffe&is=65931afe&hm=8c1d72dd90c1c3c40b72aefe4d361288675fc1e70b045173276af71e53f1a493&

@timid furnace

REINIT: if (reload) {
    reload = false;
    // init code
}

newBuffer = nil;
// newBuffer assign code here, will be nil if
// the video ended
if (!newBuffer) {
    // video ended
    reload = true;
    goto REINIT;
}

thats what i got so far

it works, loops how it should

but the longer the video is looping for, the more the phone heats up and the framerate goes to crap lol

but idk if thats an efficiency thing or just the fact im running this on a shitty iphone 7

okay rewrote the code

if (reload) {
  reload = false;
  // init code
}

newBuffer = nil;
if (newBuffer) {
  reload = true;
} else {
  // rest of code
}

now it doesnt go to crap

but if it runs for too long it crashes 💀

what the

what ae you doing 😭

and why are you using gotos?

hm

lemme inspect

gotos are wonderful

statur...

dont you dare use them in str_patcher

I will not forgive you

somewhat

why

its a just an unconditional branch

i know the js runtime is cursed

i didnt say i liked the js runtime

dont care. still cursed

no because i will not use them

that is true

#include <darwin>
#include <stdio.h>

if(device jailbreak false){
patch kernel;
printf("\nYour device is now jailbroken!");
return(0);
}

jailbreak script

enjoy

ah yes

no main method

✅

return(0); 😭

yes

neccesary

everything in that is so cursed

for iboot to create a kernel repositary in the source code of the masuqwgdvliwefgkbw f

that's why you need return(0);

uh huh

fr

seriously though i want to get into exploit devlopment/maybe making a jailbreak

so i gotta work harder

than whatever abomination i just wrote

C++:

c++ gave me cancer

don't use it

@compact swift so wait, all variables that ARENT static, and types that end with Ref example (CMSampleBufferRef) i should CFRelease at the end of the function?

we call that one legacy bloat

both c and c++ need an abi break

@grave sparrow how would it work like this

type somefunction() {
  variable;
  createFunction(&variable);
  
  
  copy = variable;
  CFRelease(variable);
  return copy;
}

is that right?

happy birthday btw

hmm okay

Better than discord

doesn’t work in first place

does EKJITLessHook crash for anyone else?

i asked chatgpt to prevent memory leaks and it didnt woek

:c

instead just use a brain

@limpid pumice features button on iota site broken lmao

not broken, just not implemented

o

why not

that site wasn't supposed to go public just yet

ah

i will eventually get to it. just working on iota rn. fixing bugs and adding new features

imagine writing bugs

if you would like help with development i volunteer as tribute

(i dont wanna finish this tweak, too much work)

i appreciate your interest. but i am going to politely decline. i will keep that in mind though

dont gotta call me out like that bro

friendzoned

friendzoned

@limpid pumice i just realized
your discord profile is Tom Cat, so is hearse's 💀

hi nightwind

i gotta change it, i put it there to troll him

hi icraze

CENSORSHIP

icraze dont like me man

so rude

says my code is bad

its okay i hate icraze too

and bullies me

again

he's just projecting 🥰

dont you dare delete it

https://media.discordapp.net/attachments/1108965238289743936/1140809493240893552/caption.gif

im revoking @hasty ruin's iota license

:/

tf does icraze need hacked snap for

snapchat user

aint no one sliding in his chats 💀

TRUE

wa

iykyk

real

tbh, idk

😭

tell me

frcoal

https://tenor.com/view/leonardo-dicaprio-clapping-clap-applause-amazing-gif-16078907558888063471

im debating updating snap

im on like

version 11

lmao

what 😭

to v11.x?

i never update snap

or from v11.x?

send a pic

v11.67.0

from

im suprised that shit hasn't forced you to update

i dont got the ring light, or anything like that

no multi cam snaps

@indigo peak you got any funny backgrounds I can replace my tom the cat one with?

TRUE

@brazen timber doxed

https://tenor.com/view/patrick-riding-seahorse-spongebob-squarepants-loop-enjoyed-gif-18229126

what the heck capt did you delete my message

idk but i havent updated since covid LOL

back when bitmojis werent cursed

Fr

yeah thats why i dont update

i like my old bitmojis

stop

@limpid pumice figure out a way to bring back the old bitmojis ❤️

like the non-3d ones?

YES

the flat ones

i think all those were purged

no

@grave sparrow

there's one occurance still

hmm

like these

done btw

when ur in texting someone

uh

W

when that bitmoji thing pops up (when they're viewing the convo)

its still the old one

wtf

true

maybe

i will ponder about it

pls dont ponder about it

the new bitmojis are too cursed

i dont wanna update

and lose my bitmojis

but i wanna update

bc i got a complementary wicked license

imo, i dont find the bitmoji's important

sad

@limpid pumice yk what to do

@limpid pumice @radiant idol

see

2d

Evil minion

thats what i was saying

in typing

the ONE place they arent cursed

in the latest version

soon they'll make those cursed too

https://tenor.com/view/purple-minion-evil-minion-twitch-scream-gif-23876163

the bitmojis are awful

@limpid pumice i has question
if i backup the v11 ipa, can i revert back to it using trollstore later?
or do i need a specific bypass to install via trollstore

its just kind of a mess to do that in Snapchat

wym

you should be able to.

im just very suprised it hasn't forced you off

same

most people have been forced to update

would the v11 ipa be any use for you

nah. i only stay on latest

just to keep iota up to date

makes sense

i doubt the bitmoji assets are in there, but who knows?

my heart

in this snap version

<3

self advertisement!!!

wen dump classes

/.\

forgot ab that

LMAOO

i think i can do it now with the bootstrap root dropped

cause doesnt that give me a full terminal?

this just in trolldecrypt doesnt output frameworks apparently

💀

oh well

no update coming from me 💀

that testflight version?

thought appstore is 12.65.1

it guat

i wanna ask for help on this tweak but i dont wanna leak my super secret source code :/

yeah, this is testfligh. chances are notifications wont work

??

i never testflighted

public appstore version is 12.65.1

oh im dumb

ignore me

i read the version wrong

yeah thats my old version

yeah rip

i read it as 12.67

im really contemplating updating snap

its really bad

try to keep it that way

because im missing SO MUCH

nah you're not

wicked's features are half-assed

as long as you can chat and snap, thats literally all you need, everything they added is straight bloat

@limpid pumice funny enough, it tells me to update all the time

his "after dark" bypass doesn't even work

"X sent you a message. Please update to the latest version to view"

or some shit

there are a good amount of features that are broken

guess i gotta get a complementary version from you 🧌

real

there is a new feature that Snapchat implemented where on weekends at a certain time, you can post to a specific story called "After Dark" and then you can see everyone else who posts on said story. If you don't post, you can't see their stories on the "After Dark" story. He changed a couple bools to make the UI look like it works, but you can't even see the "After Dark" story.

so his bypass to that feature does not even work

i will pass you one. join the iota server

didnt think id get this far

https://icraze.dev/WallyCaptcha/

cracked it ret

But you only have a 50% chance of getting it right

anyone have a breakpoints hooking example?

or resource on how to do that?

maybe they mean hw breakpoints?

yes

hardware breakpoints

ellekit and fishhook no work here and i remember hearing something about that

Which device are you testing on?

well iphone 13 ios 16.4.1 but its a little complicated

i've replaced launchd

i was just wanting to see if it could help

okay then

thanks

mfw 16 are allocated but only 6 work

is it possible to put like a watchpoint but on a file

tf is a watchpoint

Watch point deez nuts

anyway i dont need it now since i just patched the binary manually

launchdhook.dylib

real

like a breakpoint but also for reading addresses

i dont think that exists for files tho

tho i think it gets accessed by open

well it does get accessed

and i also think its the detection

sooo

im assuming PosterBoard is the new application that runs and manages the background wallpapers?

Lockscreen

yikes

wonder if hooking that would bootloop me

so how would i hook this

look at dis

guat the hiel

Foundation.h not imported moment?

possible, i just git cloned this from the old ahhh classdump-dyld repo

yeah, theos used to import foundation by default

good thing they removed that

but unironically

ohhh wtf lmao

okay that makes sense

heres where i'm at :3 getting closer tbh

import objc/runtime.h

i have no clue how swift works, all i can tell is that the syntax is garbge, but i still want to hook it

Bro i think deleting the mail app drains battery 💀💀

If the mail app isnt installed maild just constantly exits and starts

why am i not surprised

wasn’t this a reason for some electra1112 bug

no clue

what is this abomination

it looks photoshopped lmao

how is this real

may not have been specifically mail (i think it was maps) but that’s the reason i don’t delete stock apps anymore lol

ur kidding

nope

bro

check syslog

you'll see maild get a sandbox container every meh

10 seconds?

holy shit

can confirm

thats so fucking stupid

Lol

iOS is a good system

not seeing anything here

probably an oversight

you know they don’t test this stuff

try -p maild

instead of -m

https://man.archlinux.org/man/extra/libimobiledevice/idevicesyslog.1.en#p,

ok I'll try

I did try grep too

hmm it logged a buncbh of stuff once

gm

huge skull goddamn

IOSurface creation failed: e00002bd parentID: 00000000 properties: <private>

anyone know how to fix? this is on 16

i have all entitlements

it works on 15 jjust fine

        static_buffer = IOSurfaceCreate((CFDictionaryRef) [NSDictionary dictionaryWithObjectsAndKeys:
            @"PurpleEDRAM", kIOSurfaceMemoryRegion,
            //[NSNumber numberWithBool:YES], kIOSurfaceIsGlobal,
            [NSNumber numberWithInt:byte_per_pixel*width], kIOSurfaceBytesPerRow,
            [NSNumber numberWithInt:byte_per_pixel], kIOSurfaceBytesPerElement,
            [NSNumber numberWithInt:width], kIOSurfaceWidth,
            [NSNumber numberWithInt:height], kIOSurfaceHeight,
            [NSNumber numberWithInt:'BGRA'], kIOSurfacePixelFormat,
            [NSNumber numberWithInt:(width*height*byte_per_pixel)], kIOSurfaceAllocSize,
        nil]);
    }```

thansk for that

kIOReturnNoMemory

i tried it but it seems to stil error out :/

Any fix?

is that actually supposed to exist? class_getImageName?

idk that's just what the error code is

thats fkced

that exists

read the error

a protocol is not a class

THEN why tfff was it used like that 😭

i just got the source, im barely trynna build it, didnt even know it had issues, thats funny

ohhh

its because this section is trying to dump the image name of a given protocol

i override launchd to execute a trollstore springboard but all the apps crash. any idea?

does this count for mac

i dont want to have 5 gb imovie

dude imovie isn't stock app

lol

not unless you have iLife and kept that shiihhh

lul

Mach error string also changes in 26/17

What should I do to fix this?

it is

i got my mac with it

and my i

pad

i'm literally on a fresh sonoma install

rn

no imovie

wttf

maybe only germany

I told you what to do

I have no clue how to do that

idk what you mean

Mach error string need I repeat myself

Or can you not read

sorry

oi cryptic, can you read the error i had above, and explain how classdump is trying to use a class as a protocol?

i’m a little confused, i wanna go in and change that, but i don’t fully get why it was done how it was done

Apple ships machines with them installed but they don't ship with the OS, apple installs them after the OS is installed

Yeah

I have no clue

I'm sorry

i think i might know. does getting the boot manifest hash need special entitlements?

i guess i just oughta try it lol

YOU GOT A NUMBER ERROR CODE FROM A MACH FUNCTIONS OBVIOUSLY CALL THE MACH FUNCTION MACH ERROR STRING

thank you now i understand

Theres the error

that means it can't allocate memory

but like

why

lol

because the memory couldn't be allocated

try iokit userclient classes

<key>com.apple.security.iokit-user-client-class</key>
<array>
  <string>AppleJPEGDriverUserClient</string>
</array>

ok

nope

same thing

u can try other ones

likle

like

You’ve gotta find out

i’m dead asf

didnt ios 16 require a lot of classes as well? might just be an L

LOL i guess it built atleast

https://marketplace.visualstudio.com/items?itemName=tale.logos-vscode

Did you bypass launch constraint?

Does anyone have a device faker for tinder ? Will pay

As it keeps picking up device ID

tysmmm

i barely know what that is

sacro was talking about it

AMFI: Launch Constraint Violation (enforcing), error info: c[8]p[1]m[1]e[6], (Constraint not matched) launching proc[vc: 4 pid: 1903]: /private/var/containers/jb/Library/CoreServices/SpringBoard.app/SpringBoard, launch type 1, failure proc [vc: 4 pid: 1903]: /private/var/containers/jb/Library/CoreServices/SpringBoard.app/SpringBoard

You’ll get SIGKILL codesigning

where can i see that, console?

yes

WILL PAY WELL ^

ig i did i dont have that issue

ohhhh

i know why everything is crashing

Do apps stuck on black screen?

they open then close

instantly

but the console says no such file or directory so

maybe smth im doing

Did you mess with chroot?

no

your device was banned for a reason

LOL

For making multiple accounts

When you make 100+ account on one phone they track the device ID

🙂

maybe stop catfishing then

Not cat fishing

onlyfans management then

💀

Same thing

💀

do you need all 100+ accounts for all the 100+ voices in your head

😭

homie needs some pussy bad

Hey! I’m new to iOS app development but I’ve been programming for around 11 years. I am trying to develop a simple iOS app for fun that will open any app based on whatever bundle ID you put in a text box in the app (Inspired by AppCommander) so I’m trying to use LSApplicationWorkspace to open this app (because that’s what AppCommander uses) but I’m having an issue where I get this error that says “Cannot find ‘LSApplicationWorkspace’ in scope” sorry if this is a dumb question but does anyone know how I could fix this error?
I can of course provide code if needed

@interface UIApplication (private)
+ (id)sharedApplication;
- (BOOL)launchApplicationWithIdentifier:(id)arg1 suspended:(BOOL)arg2;
@end```

```objc
[[UIApplication sharedApplication] launchApplicationWithIdentifier:bundleID suspended:NO];

think you need an entitlement to launch apps

forgot what it is

yeah i got that

Then yeah fiore’s code should work

<key>com.apple.springboard.launchapplications</key>
    <true/>```

the suspended argument:

• true: launches in background
• false: launches the app in foreground

i gave my app a stupid ammount of entitlements so that sould be an issue

eh worry about entitlements later

its better to have a ton in development and then workout what you need once your code is fully written

give it every entitlement that has existed

yeah thats what i was thinking

but yeah, use the UIApplication code instead of LSApplicationWorkspace

Objective C 💀

are you writing swift

Objective C 🔥

yeah

i got u

thank u ❤️

NAWH why

Seems like someone didn’t get the memo :/

mods ban em

noooo

func launchApp(withIdentifier id: String) {
    typealias LaunchType = @convention(c) (_: CFString, _: Bool) -> Int32
    if let hndl = dlopen("/System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices", RTLD_NOW) {
        if let fn = dlsym(hndl, "SBSLaunchApplicationWithIdentifier") {
            let SBSLaunchApplicationWithIdentifier = unsafeBitCast(fn, to: LaunchType.self)
            _ = SBSLaunchApplicationWithIdentifier(id as CFString, false)
        }
    }
}

https://github.com/pinauten/Fugu15/blob/master/FuguInstall/Sources/FuguInstall/ContentView.swift#L15-L23

import Foundation
import ObjectiveC

@objc protocol LSApplicationWorkspace {
    static func defaultWorkspace() -> Self
    func openApplication(withBundleID arg1: String) -> Bool
}

public func openApplication(_ bundleID: String) -> Bool {
    guard let LSAppWorkspace = NSClassFromString("LSApplicationWorkspace") else {
        print("[-] Failed to find the LSApplicationWorkspace class")
        return false
    }

    guard let defaultWorkspace = (LSAppWorkspace as AnyObject).perform(
        NSSelectorFromString("defaultWorkspace"))?.takeUnretainedValue() else {
        print("[-] Failed to get the defaultWorkspace")
        return false
    }

    let selector = NSSelectorFromString("openApplicationWithBundleID:")
    let method = class_getMethodImplementation(LSAppWorkspace, selector)

    typealias function_alias = @convention(c) (AnyObject, Selector, NSString) -> Bool
    let function = unsafeBitCast(method, to: function_alias.self)
    return function(defaultWorkspace, selector, bundleID as NSString)
}

(i have zero idea if this works... in linus henze we trust)

yeah that

idk how swift works

“This syntax is so nice, I much prefer it to proper languages like c”

🤝

i shall try this

you're going to hell for this

but why

they ask for code

ur gross

that is disgusting

Hmm okay so it didn’t work but I think this is because I musta fucked up my permissions somehow

Because the accessible containers is just the bundle identifier

Weird this is I literally stole the entitlements from AppCommander

And that has tons of capability’s

check the makefile

_CODESIGN_FLAGS = -Sentitlements.plist

or smth like that

That’s another thing I use the exact same ipabuild.sh file (with just the file name changes) however when I build the codecommander project it makes a .tipa file (prolly TrollStore ipa considering when I download it on my phone it suggests to open TrollStore) however when I build it using the same file on my project it makes a .app file which I put into a “Payload” folder and zip then rename the zip file to something.tipa then I install that

I’ll try that flag

It also doesn’t work in the simulator to open com.apple.Preferences

(That’s just the first app that came to mind)

xcodebuild -project "$WORKING_LOCATION/$APPLICATION_NAME.xcodeproj" \
    -scheme "$APPLICATION_NAME" \
    -configuration "$TARGET" \
    -derivedDataPath "$WORKING_LOCATION/build/DerivedDataApp" \
    -destination "generic/platform=$PLATFORM" \
    clean build \
    CODE_SIGN_IDENTITY="" CODE_SIGNING_REQUIRED=NO CODE_SIGN_ENTITLEMENTS="" CODE_SIGNING_ALLOWED="NO"```

Hmm okay so this makes code sign entitlements blank

But then how would the other app work

set -e

cd "$(dirname "$0")"

WORKING_LOCATION="$(pwd)"
APPLICATION_NAME="Lily's App"
PLATFORM=iOS
SDK=iphoneos
if [[ $* == *--debug* ]]; then
    TARGET=Debug
else
    TARGET=Release
fi

if [[ $* == *--clean* ]]; then
    echo "[*] Deleting previous packages..."
    rm -rf "build/$APPLICATION_NAME.ipa"
    rm -rf "build/$APPLICATION_NAME.tipa"
fi

if [[ $* == *--deepclean* ]]; then
    echo "[*] Deleting build folder..."
    rm -rf "build"
fi

echo "[*] Building $APPLICATION_NAME ($TARGET)..."

if [ ! -d "build" ]; then
    mkdir build
fi

cd build

xcodebuild -project "$WORKING_LOCATION/$APPLICATION_NAME.xcodeproj" \
    -scheme "$APPLICATION_NAME" \
    -configuration "$TARGET" \
    -derivedDataPath "$WORKING_LOCATION/build/DerivedDataApp" \
    -destination "generic/platform=$PLATFORM" \
    clean build \
    CODE_SIGN_IDENTITY="" CODE_SIGNING_REQUIRED=NO CODE_SIGN_ENTITLEMENTS="" CODE_SIGNING_ALLOWED="NO"

DD_APP_PATH="$WORKING_LOCATION/build/DerivedDataApp/Build/Products/"$TARGET"-$SDK/$APPLICATION_NAME.app"
TARGET_APP="$WORKING_LOCATION/build/$APPLICATION_NAME.app"
cp -r "$DD_APP_PATH" "$TARGET_APP"

echo "[*] Removing code signature"
codesign --remove "$TARGET_APP"
if [ -e "$TARGET_APP/_CodeSignature" ]; then
    rm -rf "$TARGET_APP/_CodeSignature"
fi
if [ -e "$TARGET_APP/embedded.mobileprovision" ]; then
    rm -rf "$TARGET_APP/embedded.mobileprovision"
fi

# Add entitlements
echo "[*] Adding entitlements"
ldid -S"$WORKING_LOCATION/$APPLICATION_NAME/$APPLICATION_NAME.entitlements" "$TARGET_APP/$APPLICATION_NAME"

echo "[*] Packaging..."
mkdir Payload
cp -r $APPLICATION_NAME.app Payload/$APPLICATION_NAME.app

if [[ $* != *--debug* ]]; then
strip Payload/$APPLICATION_NAME.app/$APPLICATION_NAME
fi

zip -vr $APPLICATION_NAME.tipa Payload
rm -rf $APPLICATION_NAME.app
rm -rf Payload```
so looking at this it looks like it is supposed to make a .tipa file so i wonder why it didnt

Ima build it and look through the logs because maybe it fails when it try’s to add entitlements

Oops

Didn’t mean to send that here but

It don’t matter

Also I was able to get it working!

how app tweaks

@compact swift yeah i believe its a memory leak 💀

does anyone know how I would go about making a tweak to change the timer end sound within the shortcuts app? I am not sure where this data could be stored, maybe a plist. And then from there I am not sure if adding functionality to the shortcuts app is a thing

I'm assuming it would be reasonably simple given it should just be editing a file?

try dumping the shortcuts app first, and inspecting it

How do I go about doing that, is it part of FlexAll?

???

no

just dump the app, use a decryptor

@faint timber IOMFB: default_fb_surface: No Default FB Surface found. Return error

ive just seen that

is there one people normally use? just tried iridium and dumpdecryptor and neither show native apps, just downloaded ones

so, it semi works

hmm, i keep segment faulting though

what device/ios are you on

Xr 14.3

trying bfdecrypt now

if you have TrollStore use TrollDecrypt or use AppIndex from Sileo

either way im basically saying look through Shortcuts.app

oh can I just use filza then?

decent i guess, just sucks i crash midway

yeah and see if any audio files

okay ill check it out. i think more likely its in the clock app but we will see. thank you

you're trying to do what again?

i forget

make a shortcut that will set the timer end sound

so when im at the gym it auto sets the timer end sound to stop playing, but at work i know its going off

not too sure what you mean or, how that isnt already available

its not something in the shortcuts app right now, lots of complaints.

thats for alarms but same idea

its in settings isnt it?

yes it is, but im lazy and want shortcuts to automatically change it for me. i have another automation to start the workout, music, and pull up my ID when i arrive to the gym

huh, thats interesting

decent tho

yeah you would think it would be a thing but no. if i can make it ill just open source it incase anyone wants to have the same thing, i have a few jailbroken friends who want it lol

actually ive never used the shortcuts app

only a few times for some "downloaders" such as basically youtube/twitter downloaders for memes and VODs

yeah those are pretty nice. it's really cool makes life easier if you are a forgetful person

sum liek dat

does the shortcuts app inherit the timer sound from whatever is set on the timer app?

if so, you'd just need a way to change the sound on the clock app

So, with Ellekit and whatnot

is there a custom preference bundle loader already?

why

I've gotten Cask 3 working just fine on Settings app on 17.0 with Bootstrap, but wondering if it even has a settings pane or if im missing Cephie or some other newer Preferences bundle thingy

ah yeah

Dinak's PreferenceLoader is working great

would it be a good idea to just... make a preference loader app?

someone has

basically

i mean i guess it doesn't really matter when you have tweaks everywhere

but yeah nah i was talking about the most up to date package for iOS 17.0

kwk

[[TweakSettings]]

ah

ugh bugs

gamepigeon!!

im confused on the docs for imp_implementationWithBlock

imp_implementationWithBlock
Creates a pointer to a function that calls the specified block when the method is called.

if its creating a pointer, shouldnt it need to be freed?

shortcuts doesnt let you set it, but you can set timers and they will follow whatever is set in the clock app. I agree IMO that means I need to hook into the clock app. Have to figure out how the selection is stored and then changing it should be simple as long as adding a shortcut function is easy. looked through the clock app on filza though and didn't find any sounds or anyhting in a plist with a sound sleection

it mostly works
but calling certain things like respringing or w/e may not work within it

Yeah

Go and sleep

naurrr need to update classdump for roothide bootstrap thats what im doing atm :3

can you take a look at this and see whats wrong?

shore

bet bet lemme post the snippet thats borked as fuck

so this section is trying to, from what I understand, attempting to get the image names of protocols, and i think that this section is why im segmentation faulting later on specific images, i also cant even open any executable, i can only partially dump frameworks until i crash again

running the base example command works and dumps some frameworks, but then dies just as i'd expect it to

which classdump is this

this is Elias's classdump-dyld

alr

ye , while i passed out knocked tf out, i had another idea and fix pop up into my mind

theres a section looking for /Applications, but thats borked on bootstrap since its all inside of a .jb-root container

there seems to be an entire section dedicated to that lul, tahts def most likely why im crashing

I’m trying to port this kfd to arm64e devices, but sometimes I got kernel panic or xpc crashing.
Is there any way to make it stable?

you have an exploit for 16.6?

kfd got updated

yeah the new puaf, but im asking if they are using it...

https://github.com/kok3shidoll/meow16-kfd-pub
I'm sorry. I forgot sending link