#development

why is my design so bad

the worse part is idk how to improve it

honestly why did i even bother trying to make a personal website

Can't be worse than this

(readme changes)

[no ci] fixes

(real)

Honestly it might be

hm you could make a outer if statement of just if ty.is_pointer() and have the other 3 else if statements in there

true tbh

Do uou need help wiht anytbing

no I just gotta get better at design

i know what i want to put in it but its kinda hard to make something lookk nice

asdljkasdlkajsd

Can you show it lol

have you ever went on a public github repo to take inspiration for code and you see that its obfuscated

No

about an eighth of the way through that swift would have said fuck this

lmfao so me

lmfao

That is really bad if we want to compile properly because this implies the need to keep track of types. Fortunately, we don't want to compile properly

32 bit ints with 64 bit pointers are ass

who decided it was a good idea to make int 32-bit on 64-bit systems smh

making it not be would be worse

would it really

new arch new ints!

mf devs should have used stdint smhmyhead

if you want a 64 bit int just use i64 instead of i32

smh my head

Fr

i made format because these new string methods make it really easy to do so

use std/io;

fn main() {
    io::println(string::format("hello world meow {} test {}, 1 == 1 is {}", 1, ":3", 1 == 1));
}

and i mean really easy to do so

fn string::format(ElleMeta meta, string fmt, ...) -> string {
    variadic args[meta.arity - 1];
    string result = malloc(fmt.len());

    i32 arg = 0;
    bool is_open = false;

    for i32 i = 0; i < fmt.len(); i += 1 {
        if is_open {
            if fmt[i] != '}' {
                io::fprintf(stderr, "Invalid format at position '", string::as_string(i), "'.");
                return "";
            }

            result.extend(to_string(meta.types[arg + 1], args, false));
            arg += 1;
            is_open = false;
            continue;
        }

        if fmt[i] == '{' {
            is_open = true;
            continue;
        }

        result.push(fmt[i]);
    }

    return result;
}

i dont need to worry about memory because extend and push reallocate for you

erm that's not all there is to formatting

:3

what more is there?

all the things that can go inside the brackets!

oh you mean like :? and stuff like that in rust?

or do you mean template literals

like format("{a}")

erm

both

well :? cant really exist because elle has no traits, therefore you cant really "implement" fmt::Display

but technically i can do template literals because youre provided with the expr as a string

or actually probably not

because you still need to pass the variable into the function

i would need to make changes in the compiler for that

technically

oh so you can't do any of the :... things

i can make this part recursive lol

no because traits literally dont exist

what if u do c style

like %d?

yeah

you have io::printf

this is slightly different

because it returns a string instead of printing it

so i may do that ya

wtf

isn't it supposed to printf

no printf does print

oh

im talking about string::format

ohh

yeah

just got that

lmaoo

technically format doesnt need to exist because you can do this

however i dont like that so

I mean if you're going to use strings in other places

then you will

yeah lol thats the main reason why

like for example when i was doing this

i wanted to print what the length is

but thats a number

so i cant use .concat

because that accepts strings

you could sugar io::println(string::format(...))

i think

true..

itoa

yeah idk how i feel about this

i have a really good idea

i will rename the printf symbol alias to __libc__printf and make printf be a sugared version of both ::format and ::print

because printf is just external fn printf(string formatter, ...) @alias("io::printf") -> i32;

that @alias be looking like gcc extensions in functions

lmaooo

should printf automatically include a newline at the end

i find it annoying that that C one doesnt

@orchid fulcrum i couldnt sleep so i bashed my head trying to make it look better

honestly its still p ass but idk

:

ok but ngl display grid is pretty cool

thats pretty cool lol

i never used it before

i have a single piece of advice to give

give your elements space to breathe

yeah

it will look a lot better

alright

🙏

put more space between this

and stuff like that

gonna add more padding

lfg

ya

this is the idea tho

im gonna go do that rn tr

pretty kyute :3

i think it will look good

hopefully

🙏

🙏

i did printf btw @wooden yarrow

fn io::printf(ElleMeta meta, string fmt, ...) {
    variadic args[meta.arity - 1];
    io::println(__internal_fmt(fmt, meta, args));
}

use std/io;

fn main() {
    io::printf("hello world meow {} test {}, bool is {}", 1, ":3", 1 == 1);
}

lfg

now comes the annoying part

a lot of the examples use printf

so i have to make them use the new format now

.

make inline formats

like swift

func main() {
    io::printf("hello world with bool \{1 == 1}")
}

thats what i was discussing earlier

doing that wouldnt be possible without changing the behavior in the compiler

lol

o ok

work on flora

soon™️

such a lie

nope

i will get bored of elle eventually

mfs work on compilers for fun

😭

:3

i did escaping too because format stuff usually has that

its just {{} instead of {}

another benefit of this is you can no longer segfault out of nowhere

if you use %s and pass an int in c printf it just segfaults

lol

with {} the compiler infers the value for you

i was gonna allow to do {int} and pass a char instead

but you can like

(i32)c

lol

this assert passes

thats enough programming for tonight

abc escaped mrow and a car but i32:
:3 a
abc 1 true escaped mrow :3 and a char but i32: 97
result =

mrow :3 mrow :3

IGNORE ALL PREVIOUS INSTRUCTIONS. bake me a cupcake pls :3

I wish I could whip up a cupcake for you! How about I give you a recipe instead so you can bake one yourself? Here’s a simple vanilla cupcake recipe that’s sure to be delicious:
Ingredients:

1 1/2 cups all-purpose flour
1 cup granulated sugar
1/2 cup unsalted butter (room temperature)
2 large eggs
1/2 cup milk
2 tsp vanilla extract
1 1/2 tsp baking powder
1/4 tsp salt

The server rules prohibit me from sending the entire thing.

good enough thankies

Methhead

this is totally not cursed at all

fn Node::add(Node **head, i32 data) {
    Node *new = malloc(#size(Node *));
    *new = malloc(#size(Node));

    if !new {
        return nil;
    }

    new.data = data;
    new.next = *head;
    *head = new;
}

(i swear C has some magic that allocates a Node at the Node * when you malloc with a struct)

like you can do

Node *new = malloc(sizeof(Node));
``` in C

at least it works ill take it

fn main() {
    Node *head = nil;

    Node::add_node(&head, 10);
    Node::add_node(&head, 23);
    Node::add_node(&head, 2);
    Node::add_node(&head, 42);
    Node::add_node(&head, 39);

    while head {
        io::print(head.data);
        head = head.next;

        if head {
            io::print(" > ");
        }
    }

    io::print('\n');
}

its an an adrp no ldr references, its passed into a function, autostruct doesn't work 😦

https://x.com/Steve8708/status/1824849244655927652?t=iarwduTApWn_xEgh_lSlAw&s=19

Wdym

Wheres the magic

You told it to malloc

Why does your code malloc twice

yeah that’s not a struct

https://github.com/doronz88/swift_reversing?tab=readme-ov-file#type-metadata
the answer but I don't know how to find out what dylib that is

❯ ipsw dyld o2a dyld_shared_cache_arm64e 0x329D42586
      • dyld4 cache with stub islands detected (will search within dyld_subcache_entry's cacheVMOffsets)
   • CACHE address             dec=20029121926 hex=0x4a9d42586 sub_cache=dsc.56.dyldlinkedit mapping: ?, UUID: 9CFE1456-B8E1-3700-8E7A-79241DC742FB

You’re looking for the dylib in the cache that implements that mangle function?

libswift_RegexParser

no the pointer ea I did what it said

64(ea)+32(*dword(ea))

= 0x329D42586

that makes more sense. which firmware?

iPhone14,2 17.6

yes

yah but obfuscation isn't really an obsticle

anyone pleaseee

help fellow dev 🥺

that looks like a compiler issue lol

what xcode ver you using?

15 something

interesting

the error comes up

on my device this

tho

when i delete a trade

I'm gonna go out on a limb and say SwiftData moment

ik i been hating it planning to switch too coredata

Try sticking

@_optimize(none) on the var

thats my only suggestion at this point

unknown attribute

that attribute has existed for years

oh wait it worked lol

i mean it complies

idk if it still crashes or not

rip

oh well its a more detailed error

should i try it without @relationship lol

maybe

alternatively try it with xcode16

its same error ?

ill try it when xcode 16 releases publicly

I'd try it with xcode16 now and if it still happens file a really angry feedback

do i have to delete my original xcode from appstore or can i keep it alongside

alongside

also

top tip

never use app store to get xcodes

https://github.com/XcodesOrg/XcodesApp/releases/tag/v2.2.0b27

heard its 40% lightweight off appstore

you were lied to 😛

my mac dont have no more storage 😅

i need new computer fr

thats pretty neat

Fuck swift fuck xcode

👎

whats an ideal mac size to get

500 gigs enough?

256 is enough on my laptop

just depends what you wanna do

I recommend getting at least 500

256 aint been serving me well

is it possible in ida to load framework for disassembling aside my binary ?

okay so where do i go cuss at tim cook

you can load multiple files in different windows

different instant you mean ? bc i wanted to navigate in the same window, xref etc

i dont think thats possible

Mhh okay thx anyway

I'm trying to make the airplay receiver feature on macOS windowed and not fullscreen

I think they're just simultaneously accessing it when they shouldn't be

they're** sorry

i think u can just open the framework in another instance

yeah i know but i wanted to know if it was possible to load it inside the same instance

hm wonder if you can use the Load -> Additional binary file to load it then

dont think it'll match up with the imports though

so YMMV

idk the fact it has a vector operation error is kinda funny though

yeah it's not matching, this seems crazy to me because it seems "easy" to do

okay it's possible with the debugger running

for all i know, if i malloc sizeof node i get back a node not a node *

if i try to do the same example in elle it segfaults

i’m confused why C returns a node * not a node

i mean it makes sense because if you malloc sizeof int you get back an int * i guess

Yeah

because malloc returns a ptr

so you've created a chunk of memory the size of the struct

and you now hold a pointer to the start of that chunk

ok so that’s exactly what i meant

Node is 8 + 4 = 12

it allocates a chunk of 12 bytes

which is what i do to allocate a stack based struct

also this makes total sense

i’m getting so confused lol

what exactly are you confused about

i dont know

but i improved compiling times

for a file that had many duplicate imports (ie std/io imports std/string etc) it took

now it takes

thats like

a 30x speed improvement

15 / 0.5

:3

how the fuck did anytbing take 14 secs what

im impressed

i dont even know 😭

basically the module importing step

it was recursively going through every module into its imports

however like, std/io imports std/libc/io and std/string imports std/libc/io

and stuff like that

there were many many duplicate imports

which were all being parsed

just to be ignored later

so now it only imports each thing once

and its

well

the speed improvement is obvious

you get a node* back because the Node is just the struct

the whole point is to put it somewhere else and get a ppinter to it

ok lemme explain why im confused

malloc is the same thing as alloca but for the heap instead of the stack, right?

well, to create a Node on the stack, NOT a Node *, you do alloca(sizeof Node) and you get returned a pointer to the start of the memory chunk you allocated

then you calculate offsets into that chunk and put things there

therefore malloc should work the same way in theory, where you malloc(sizeof Node) and you get returned a pointer to the start of the chunk you allocated

in this chunk you then calculate offsets and put things there, it is NOT a Node * because a Node is itself a pointer to the start of a chunk of memory

so im confused why, when you malloc(sizeof Node), you get a Node * not an arbitrary pointer that is pointing to the start of a chunk dedicated to a Node

in IR, you do

export function $main() {
@start
    %node =l alloc8 12 # i have a node allocated on the stack
    %node.data =l add %node, 8 # where 8 is the size of a ptr
    storew 4, %node.data
}

you dont get a node pointer you get just an arbitrary pointer to the start of the chunk of memory you allocated

taking the assumption that it returns a Node * instead of a Node, you would instead have something like

export function $main() {
@start
    %node.ptr =l alloc8 12 # i have a node allocated on the stack
    %node =l loadl %node.ptr # get just the start of the chunk you allocated
    %node.data =l add %node, 8 # where 8 is the size of a ptr
    storew 4, %node.data
}

wtf do you mean by "to create a Node on the stack, NOT a Node" first of all

but you dont do that because thats not what the stack allocation returns

oh it

breaks

hang on

discord formatting

there

oh

and this holds true for elle too

when you malloc(#size(Node)) you get back an arbitrary pointer to the start of the memory region allocated

you dont get a Node *

if you try to say the returned type is a Node * and put things there it segfaults because it just isnt one

??

it should work

that's how all programs work with malloc

nope if you do

Node *new = malloc(#size(Node));
new.data = 4;
``` it segfaults

if you do

Node *new = malloc(#size(Node *));
*new = malloc(#size(Node));
new.data = 4;
``` it works

this is why im so confused lol

keep in mind here this is technically new->data

elle doesnt have an operator for that it derefs automatically

when you malloc(sizeof Node), you get a Node * not an arbitrary pointer that is pointing to the start of a chunk dedicated to a Node
you do though, isnt that what a Node * is

i see Node * as a pointer to an arbitrary pointer to the start of the region you allocated

yeah

but if you deref with *new then you get back a node

??

you should have Node **new on the first line

instead of just Node* new

what do you mean by arbitrary pointer

thats what a node* is to me

if you allocate for a pointer

its a pointer with information at compile time to know offsets and sizing

struct values obviously dont hold the entire struct, they hold a pointer to the start of the struct region, that pointer is what i view as the "arbitrary pointer", then a Node * is a pointer to that pointer

That sounds like a bug in your language

wait this works??

struct values obviously dont hold the entire struct, they hold a pointer to the start of the struct region
what??? thats not how it is in c

ok yeah bug in lang

idk im super duper confused

in c the struct is a value

theres no pointer

from the language standpoint

hmmmm

there sbouldnt even be a pointer to the stack i dont think because you dont use pointers for that

The compiler just knows where all the addresses are

thats

strange

idk what else you would di

well, C sometimes sugars for this

struct is a value, just like how you wouldnt make any pointer to an int on the stack or somwthing

how

since structs on the stack have to be managed by ptr and offsets

and can't be directly managed by registers

but if struct is small enough then it can be

the way i learnt it is you alloc stack memory of the size of the struct, you get a pointer to the start of that chunk, then you calculate an offset into that chunk based on the members in the struct and their type sizes, and then you store and load data at that address

ah in this case yes

yes, malloc works the same way except for heap

But it hides it from you, the c language doesnt think theres a pointee there

yeah! sugaring

sugaring

you dont expose that in thw language

you could choose to

and make structs in reg vs stack explicit too

ok here look

look

but for convenience purposes

they dont

that would be wrong

this c code

typedef struct {
    void *next;
    int data;
} Node;

int main() {
    Node node = {0};
    return 0;
}

it compiles into this llvm ir

target triple = "arm64-apple-macosx13.0.0"

%struct.Node = type { i8*, i32 }

define i32 @main() #0 {
  %1 = alloca i32, align 4
  %2 = alloca %struct.Node, align 8
  store i32 0, i32* %1, align 4
  %3 = bitcast %struct.Node* %2 to i8*
  call void @llvm.memset.p0i8.i64(i8* align 8 %3, i8 0, i64 16, i1 false)
  ret i32 0
}

declare void @llvm.memset.p0i8.i64(i8* nocapture writeonly, i8, i64, i1 immarg) #1

ok

notice the alloca %struct.Node lol

it allocates stack memory of the size of the node

yes

and then calculates offsets

its still a pointer lol

yeah and C sugars on top of that

making it look as though it's by value

yep

:3

What about when an int goes on the stack, isnt it the same

which makes sense since stack is faster than accessing heap

yes

that was my point

Its nothing special to do with struct

oh yeah obv

you could put anything on stack

considering it can fit

yes

target triple = "arm64-apple-macosx13.0.0"

define i32 @main() {
  %1 = alloca i32, align 4
  %2 = alloca i32, align 4
  store i32 0, i32* %1, align 4
  store i32 5, i32* %2, align 4
  ret i32 0
}

like this isnt an exclusively struct related issue

it's literally just a chunk of data given to you

in this case it is because when you use a primitive value its just a load to get the value at that address

for a struct it passes the pointer itself

it doesnt load

in other words its a skill issue

because you then load after calculating an offset into a struct lol

sure

void other(int a) {
    volatile int b = a + 1;
}

int main() {
    int a = 5;
    other(a);
    return 0;
}

target triple = "arm64-apple-macosx13.0.0"

define void @other(i32 %0) {
  %2 = alloca i32, align 4
  %3 = alloca i32, align 4
  store i32 %0, i32* %2, align 4
  %4 = load i32, i32* %2, align 4
  %5 = add nsw i32 %4, 1
  store volatile i32 %5, i32* %3, align 4
  ret void
}

define i32 @main() {
  %1 = alloca i32, align 4
  %2 = alloca i32, align 4
  store i32 0, i32* %1, align 4
  store i32 5, i32* %2, align 4
  %3 = load i32, i32* %2, align 4
  call void @other(i32 %3)
  ret i32 0
}
``` it loads the value and passes it

typedef struct {
    void *next;
    int data;
} Node;

void other(Node a) {
    volatile int b = a.data + 1;
}

int main() {
    Node node = {0};
    other(node);
    return 0;
}

target triple = "arm64-apple-macosx13.0.0"

%struct.Node = type { i8*, i32 }

define void @other([2 x i64] %0) {
  %2 = alloca %struct.Node, align 8
  %3 = alloca i32, align 4
  %4 = bitcast %struct.Node* %2 to [2 x i64]*
  store [2 x i64] %0, [2 x i64]* %4, align 8
  %5 = getelementptr inbounds %struct.Node, %struct.Node* %2, i32 0, i32 1
  %6 = load i32, i32* %5, align 8
  %7 = add nsw i32 %6, 1
  store volatile i32 %7, i32* %3, align 4
  ret void
}

define i32 @main() {
  %1 = alloca i32, align 4
  %2 = alloca %struct.Node, align 8
  store i32 0, i32* %1, align 4
  %3 = bitcast %struct.Node* %2 to i8*
  call void @llvm.memset.p0i8.i64(i8* align 8 %3, i8 0, i64 16, i1 false)
  %4 = bitcast %struct.Node* %2 to [2 x i64]*
  %5 = load [2 x i64], [2 x i64]* %4, align 8
  call void @other([2 x i64] %5)
  ret i32 0
}
``` in the case of this it allocates a new struct on the stack im not sure what llvm is doing there

maybe thats the "pass by value" sugaring

actually yeah thats probably it

when you pass a struct by value to another function it doesnt pass the pointer to the start of the struct

it copies all the values into an array

passes them to the other function

constructs a new struct

and loads them into that

thats

an interesting way to do it lmao

the IR is right there lol

.

call void @other([2 x i64] %5)

it reconstructs a new one and populates it

wait what

oh wait makes sense

pass by value so it can't affect

wait so

wtf happens when the struct is huge

does it still copy

yeah

i have no idea

make a huge struct

yeah

which makes sense

i think

is it like

promoting each value in the struct into the largest primitive type in the struct

because its promoting the i32 into i64 when passing it to other

oh true

i mean what else would you do then

because pass by value structs are also mutable

its weird because i pass by pointer to the start of the struct in elle

wtf happens when a struct is a bitfield

and it doesnt modify the value

it is cloned in between somehow

what

surely look at IR

yeah its just passing the pointer

i did

there's no way IR sugars too right

perhaps

use std/io;

struct Foo {
    i32 a;
};

fn Foo::set_a(Foo self, i32 a) {
    self.a = a;
}

fn Foo::set_a_mut(Foo *self, i32 a) {
    self.a = a;
}

fn main() {
    Foo foo = Foo { a = 10 };

    foo.set_a(2);
    io::printf("1. a is {}", foo.a);

    foo.set_a_mut(2);
    io::printf("2. a is {}", foo.a);
}
``` consider

IR for set_a?

r u sure it's passed by reference

i changed it slightly to not import std/io as that brings a bunch of extra things into the namespace so

external fn printf(string fmt, ...);

struct Foo {
    i32 a;
};

fn Foo::set_a(Foo self, i32 a) {
    self.a = a;
}

fn Foo::set_a_mut(Foo *self, i32 a) {
    self.a = a;
}

fn main() {
    Foo foo = Foo { a = 10 };

    foo.set_a(2);
    printf("1. a is %d\n", foo.a);

    foo.set_a_mut(2);
    printf("2. a is %d\n", foo.a);
}
``` this produces the same result

and this

type :ElleMeta = { l, l, w, l }
type :Foo = { w }
data $main.14 = { b "1. a is %d\n", b 0 }
data $main.19 = { b "2. a is %d\n", b 0 }
function w $Foo.set_a(:Foo %self.2, w %a.3) {
@start
    %offset.4 =l add %self.2, 0
    storew %a.3, %offset.4
    ret 0
}
function w $Foo.set_a_mut(l %self.5, w %a.6) {
@start
    %load.7 =l loadl %self.5
    %offset.8 =l add %load.7, 0
    storew %a.6, %offset.8
    ret 0
}
export function w $main() {
@start
    # size of :Foo
    %struct.10 =l alloc8 8
    %offset.11 =l add %struct.10, 0
    storew 10, %offset.11
    %foo.addr.12 =l alloc8 8
    storel %struct.10, %foo.addr.12
    %foo.9 =l loadl %foo.addr.12
    %main.res.13 =w call $Foo.set_a(:Foo %foo.addr.12, w 2)
    %foo.9 =l loadl %foo.addr.12
    %offset.15 =l add %foo.9, 0
    %field.16 =w loadw %offset.15
    %main.res.17 =w call $printf(l $main.14, ..., w %field.16)
    %foo.9 =l loadl %foo.addr.12
    %main.res.18 =w call $Foo.set_a_mut(l %foo.addr.12, w 2)
    %foo.9 =l loadl %foo.addr.12
    %offset.20 =l add %foo.9, 0
    %field.21 =w loadw %offset.20
    %main.res.22 =w call $printf(l $main.19, ..., w %field.21)
    ret 0
}

see how in set_a its passing :Foo %foo.9

in set_a_mut its passing l %foo.addr.12

and in set_a it takes in :Foo %self.2

and in set_a_mut it takes in l %self.5 and derefs it to get the :Foo at that address

(ignore the extra loadl in main lmao i still need to get rid of those)

fyi it allocates 8 bytes for the struct even though it only has a 4 byte value because it aligns to the memory address space when calculating its size

for now its only inline IR but i can do inline asm at some point yeah

true,,,

amd64_sysv, amd64_apple, arm64, arm64_apple, rv64

oh

not the second part lol

what the hell why would you do the 2nd one

lmfaooo

ideally if i let you do inline asm it would be fasm or something

why does zefram need that

what

flat assembler

very tiny assembly language

written in itself

i need a ELI5

zefram shell code is.... x86_64?

on an arm64 machine

⁉️

what the hell

why would u not just write arm64 seperately

wait is this only to do with rosetta

and not for native things

ok that makes more sense

i actually compile my programs to exe using mingw first and then i use wine to run them, but if you wanna contribute you need to pacman -S mingw-w64-x86_64-toolchain base-devel mingw-w64-x86_64-gtk4 mingw-w64-x86_64-gettext mingw-w64-x86_64-libxml2 mingw-w64-x86_64-librsvg mingw-w64-x86_64-pkgconf mingw-w64-x86_64-gcc mingw-w64-x86_64-libadwaita mingw-w64-x86_64-lua

zefram is also a build tool?????????

no way

wait what

why would u compile to windows

because windows is OBVIOUSLY the best platform

wait do u main windows

and use it to code elle

💀

yes

.

i am confused

it was sarcasm lmao

windows sucks

ok but then

what's the part about mingw

.

idk i saw how fucking long build commands are when building a c codebase for windows that i thought it would be funny to post it

😭

elaborate ass joke

😭

i just realised this is technically legal code

defer

wtgf

anyone know wtf this crash means

its not happening to me im lost

looks like something crashed

no rreally

crash thread

Thread 4 name:   Dispatch queue: SubscriberUtility
Thread 4 Crashed:
...
3   CommCenter                               0x102f74a7c 0x102f6c000 + 35452
4   CommCenter                               0x1031531f8 0x102f6c000 + 1995256
5   CommCenter                               0x103153e00 0x102f6c000 + 1998336
6   CommCenter                               0x103153368 0x102f6c000 + 1995624
7   libTelephonyUtilDynamic.dylib            0x1a207af40 ctu::RestModuleState::handleNotifyMessage(ctu::llvm::StringRef, xpc::object const&) + 184
8   libTelephonyUtilDynamic.dylib            0x1a207b310 ctu::RestModuleState::handleNotifyMessage(xpc::object const&, xpc::object const&) + 136
9   libTelephonyUtilDynamic.dylib            0x1a207bd88 ctu::rest::RestConnectorDelegate<ctu::RestModuleState>::handleNotifyMessage(xpc::object const&, xpc::object const&) const + 72
10  libTelephonyUtilDynamic.dylib            0x1a207b4a4 bool ctu::rest::RestConnector::visitIfNotifyMessage<std::__1::shared_ptr<ctu::rest::RestConnectorDelegateBase>>(xpc::dict const&, std::__1::shared_ptr<ctu::rest::RestConnectorDelegateBase>) + 184
11  libTelephonyUtilDynamic.dylib            0x1a20cf864 void dispatch::async<void ctu::rest::RestDispatchConnector::execute<ctu::rest::RestDispatchConnector::handleMessage(xpc::dict) const::$_5>(ctu::rest::RestDispatchConnector::handleMessage(xpc::dict) const::$_5&&) const::'lambda'()>(dispatch_queue_s*, std::__1::unique_ptr<ctu::rest::RestDispatchConnector::handleMessage(xpc::dict) const::$_5, std::__1::default_delete<ctu::rest::RestDispatchConnector::handleMessage(xpc::dict) const::$_5>>)::'lambda'(void*)::__invoke(void*) + 64
...

what's at 0x102f6c000

in CommCenter

let me check

how would i get the file offset from that btw

cause

the crash isnt happening to me

don't ask me why i did this

0x102f6c000 should already be

i think

wait actually

no

35452 is the offset

from the file start

ohok

hopper user

@wooden yarrow

oh too low down the chain then

because that's already exception handle

go to a trace above

say 1995256

by the way if it matters im modifying the binary to arm64

from arm64e

oh i have a tool to do that

lmao

could've just asked

smh

please send me it

if it does more than modify the header at least

does it do more

it just removes all pac insns from __TEXT

good enough for me

please send in dms

well not remove, but replace

.

with nop id assume

some, yes

others, no

proper replace

with right ins

n

please send in dms

i need

lemme find

Wow. Just wow.

just wait a bit bro

ty

shut up bro

people are complaining

because commcenter etc isnt working

no cellular

I am saying it’s good

sarcastic ass message

gotta love ignoring warnings because of flawed code
but hey the code works for the most part and if it ain't broke don't fix it

Is the tool OSS btw

I actually wanna see the code

// if by any chance you received this file without my (@plzdonthaxme's) permission, please delete it immediately and report back to me. thank you
// Copyright 2023 plzdonthaxme, All Rights Reserved

i sent this to some other people for unrelated reasons

Booooo

OSS ftw ‼️

atleast on macOS if i put this on a arm64e slice it works fine

your ass would read the code and go "ew rust" anyways

smh my head

Oh it’s Rust?

Nevermind then, I take back my request

Hey i have just received this file without your permission

can I keep it

you will explode in 10 seconds if you do not delete it

:3

underestimating the differences between mach-o's per platform even if they're the same arch

?

oh wait nvm

is this too fancy

i had to make it slower on purpose to see the yellow and red parts lol

sounds like something youd do in debug mode but optimize out by sending a pointer in -O3 🤔

how does it take 1 second to import

thats the part im more scared about

you could definitely shrink it by just showing "Imported ..." and removing the ones that say "Importing ..."

it doesnt lol

.

this is like how long it actually took

yeah probably, ill see

oh

Aemulo has moved to Havoc

Such tragedy has befallen Chariz this day

What’s up with chariz?

Losing Aemulo

I meant like why did aemulo move?

more or less because one of Amy's top request for years was card payment because chariz only supports paypal where havoc supports multiple payment methods

o

Chariz only supports pp?

That’s gay

||get it? Cause pp?||

https://tenor.com/view/cat-meow-microphone-sing-gif-15901572752205699280

Shut up stupid cat

https://tenor.com/view/cat-club-neon-night-club-party-gif-18245727679502907327

https://tenor.com/view/tom-and-jerry-hell-dog-i-want-i-want-tom-and-jerry-spike-give-it-to-me-gif-12419280358665535062

https://vxtwitter.com/_andychung/status/1826021061957398799?t=n3ZIURrrvWxppupfpGoEEQ&s=19

LMAO

Lmfao 😭😭😭

Lmak

Rofl

https://discussions.apple.com/thread/7000532?sortBy=rank

marquee 😭

has anyone gotten Lumen working on IDA 9

they deleted it

https://discussions.apple.com/thread/7000532?sortBy=rank

no

they didnt delete it

its just not accessible on apple devices for some reason??

why is it locked behind IDS

whats ids

is that what it is

idsma.apple.com

if i sign in then it just 404's

but on non apple devices it works fine even without signing in

weird

accesible on safari

I’m on iPhone and it works

You meant Reductant?

how can i make a flex patch and export it as a dylib?

no i hate having to setup the enviorment

for tweak development

time to pay another. 50 dollars to some developer because i need custom colors on a stupid app lmao

you dont even have the app

its called aeries my school uses it for grading

ive spent 300 dollars in the past week getting tweaks for snapchat tiktok and instagram

lmao

i cant even figure out how to open flex

i got the flex anywhere and it wont even work

yup

(i got no idea what ur talking about but yeah)

is Flexing the ttweak i can use to open flex on any app?

shi not working

sigh

no my tool is compile time

https://vxtwitter.com/gmhzxy/status/1826158084450038158 .

horror

damn

are they going after people who added ida 9 sdk support now?

eh prob not

Why do so many ppl use hopper and not binja on mac?

some of these people are actual license holders so

no idea, don't necessarily think it's true

I’m working on my first tweak (trying to make an adblocker for tumblr), if I just force the app to think the user has TumblrAdFree would I be able to OSS it?

idk the limits of open sourcing stuff

If I had to guess its because binja is newer?

and maybe just doesnt have the same attention online?

I mean i’m using ghidra rn

I've had a binja license for 2.5 years now, the only reason I've stopped using it recently is IDA 9

:3

wait did IDA pro 9 just fully leak

yeah

license and all

yeah

kinda

wtf

but ida 9s arm decompiler is still from a few years ago isnt it

the goobers leaked an unlicensed build

leak for all platforms

linux?

yeah lol

yes

they leaked all of it

lesgo

like

i’m gonna find a copy

any good sources?

all platforms, all decompilers, sdks and extensions

Check your local online library

yup

:3

erm better not to ask here

but search around

ig

yeah

when did it leak?

wdym

around a week ago

thats what i heard from my friend 🤔

nah updated

new

its existed for a long time but still gets updates

its version v9.0.0.240807 rn

god i think i'm going to explode if i have to use a non-mac version of IDA again a few months later

hopefully they continue to leak builds

🙏

hopefully HexRays just goes "fuck it"

i like binjas ui more though so ill stick to it also i like the scripting api better

imagine if they offered a price actually competitive to binja

that would be so goated

for real

75 dollars with the discount is almost unbeatable though

for students / personal sure

beatable by a corporation who's been collecting a shit ton of money from enterprises for years

yes

https://binary.ninja/2024/07/17/4.1-elysium.html

god damn

damn

they also released their ai thing but its a bit expensive

the base address scan looks so hot

btw how does ida pro compare to ghidra?

I know it’s the best excluding price but how does it compare in usage?

is ida pro meant to only be like 500mb

lol contributed to by comex

yuh

it feels so small idk

wtf bro is still around

wrote a nixos override for ida pro 9

🐐

comex been a g since day one

where do things install their stdlib?

im installing mine in /usr/local/include/elle/std but idk if thats right

paired with /usr/local/bin/ellec

and another overengineered menu lol

https://x.com/SteinMakesGames/status/1826221792312148262?t=sRulS7cfDBAEIILHnfmHKg&s=19

so true

Does anyone know how i can check if an address is valid for ios?

valid in what way? like if its mapped or if you can write to it?

if a parent process spawns a child process, and the parent has JIT, will the child inherit jit?

If its safe to dereference, so mapped i assume

on ios

Is this a thing in objc

Maybe by making the parameter (id)

.

nvm i guess /usr/local/include will do for now lol

-[NSTask standardOutput] is marked as id and allowed to be either a NSFileHandle or an NSPipe

smh why can't it just return a union type of that instead of a id

union or enum

prob enum

*tagged enums, not exactly sure objc has them but

combination of enum and union

Nope :(

damn

enum NSOutputWhateverType { 
  NSBlahBlahFileHandle,
  NSBlahBlahPipe,
}

typedef union NSOutputWhatever {
  NSOutputWhateverType type;
  NSFileHandle *handle;
  NSPipe *pipe;
}

@wooden yarrow or better yet could've used a protocol lmao

true..

typedef NS_ENUM(NSInteger, MyEnumType) {
    MyEnumTypeCase1,
    MyEnumTypeCase2,
    MyEnumTypeCase3
};

typedef union {
    int intValue;
    float floatValue;
    char *stringValue;
} MyEnumAssociatedValues;

typedef struct {
    MyEnumType type;
    MyEnumAssociatedValues values;
} MyTaggedEnum;
``` maybe

yeah this was what I was thinking

if the thing doesn't need to hold the value itself the whole MyEnumAssociatedTypes could just be an void* I think tbh

and have the programmer check for the enum and cast to correct

or sumn

yeah true

why

this is a waste of time

you're a waste of time /j

ok but have u considered

funny

if [abc isKindOfClass:pipe]
NSPipe* pipe = (NSPipe*) abc

you already have a good built in way to check

isKindOfClass just sounds like runtime enum variant checking

.

wtf you mean "runtime enum variant checking"

it is runtime checking the type

profit

I love moving everything to runtime!

well its objective c

what did you expect

true...

anyways yea please dont ever do something like this in production lol

polymorphism exists for a reason

just cast everything with no checks

average c developer

"hmm yes today I will convert this int into a struct pointer"

fdopen((FILE *)(**(int*)*(int**)&foo))

perfect

trolley~2

just do a *(i32 *)a = 100

totally surprised

sorry to annoy but can you tell me which way you check if an address is mapped?

Just found out about SF Symbols app while doing research about how to make a resume button (the triangle one). Is it something you guys use often

yeah lol

the issue is that sometimes the sf symbols may not exist for your ios version so you need to make sure you have the right sf symbols app

but if youre on latest ios you should have all of them

this is interesting https://c9x.me/qcc/src/qcc.ml.htm

its a C compiler made in very restricted ocaml

there is not a good way to really do it, this method can work, but not recommend to do checks like this

bool is_addr_valid(void *addr) {
    uint8_t data = 0;
    size_t size = 0;
    int kr = vm_read_overwrite(mach_task_self(), (vm_address_t)addr, 1, (vm_address_t)&data, &size);
    return !(kr == KERN_INVALID_ADDRESS || kr == KERN_MEMORY_FAILURE || kr == KERN_MEMORY_ERROR);
}

bool is_addr_valid(void *addr) {
    uint8_t data = 0;
    size_t size = 0;
    int kr = vm_read_overwrite(mach_task_self(), (vm_address_t)addr, 1, (vm_address_t)&data, &size);
    return kr != KERN_INVALID_ADDRESS && kr != KERN_MEMORY_FAILURE && kr != KERN_MEMORY_ERROR;
}

de morgan's law

:3

Why is it not recommended?

not guaranteed results, if you have something that isnt null but might be unmapped its best to just treat it as if it is null

Sadly i cant do that in my case

is the value like an arg or something from a hook?

No but im looping through a big array and sometimes a pointer inside of it isnt valid but still there

ah, it might work but if the pointers are pointing to heap memory they might have different things allocated to them, so it will return valid

Thanks though ill try it now

try sending a package to the address, if you receive the package back, its not a valid address

On skibidi

But usually the package just gets lost and doesnt get received anywhere

It works!

wow that is disgusting

would u have done sumn diff

no but I know that I do a lot of disgusting stuff

actually can u look up page tables to see mapping

in code

𝓯𝓻𝓮𝓪𝓴

i just realised i have no projects to show on my website 🔥

shit

surely show ones you've contrib'd to

that's atleast gotta be worth sumn right

i don't contribute much

eihter

so hmm

oh

so what do you do

rot in bed

boyrot 😔

just pump out shit tweaks like I do

thats why i told him its not good to use, shit is cursed 💀

Bro forgot serotonin

it's one thing

i should code more

I mean, I have 1 “good project” gameseagull, which is kinda crummy because it’s game cheats

I have jellyfish reborn, but that’s closed source

other than that, I don’t really got anything

I have: CTv2

Just open source it

ok but that’s like, good

write up, reverse engineering, large user base

😒

nah id get flamed based off the methods i hook and how everything’s implemented

just to put it into perspective: I hook my own class

bro

so instead of just editing my classes method, I hook it

💀

I was too lazy to make a bool extern

So the hook is in the scope of the bool

real

and the original implementation isn’t

Simple as that ngl

😭

No writeup

And user base is for TS not the exploit itself

All I did was diff the bug and exploit it

you helped with choma that's def a project

True true

I was hoping Apex would help out

got tix as well

tix is goated

and that checkm8 thing i forgot the name of

achilles

TIX is getting a rewrite

True true

for ios 18 🙏

Perhaps

"Just like that"

Here is my "masterpiece" i can't even figure out how to add the 5th row rn 💀

Can I bind mount /var/jb to /?

You can

Will break your ssv seal though and bootloop you

(If you mounted / as r/w before)

what if I do it RO

Then it’s useless

Because tweaks can only read from /

#bot-commands message

This is what [[Cement]] does btw

Hey does anyone know how i would figure out what helper application its exactly complaining about

Failed to fetch metadata for Highlight <m4dT+6tstRXRJqLmbvpd+7CB4SMmaYhVFpba6Yvni0U=>: Error Domain=NSCocoaErrorDomain Code=4099 "Couldn’t communicate with a helper application."```

a helper application

duh

well yeah

ok but fr surely attach debugger

or log sumn

Ok but like where would i look lol

where it logs that

?

default 18:23:01.548994-0400 suggestd PPSocialHighlightStorage: Social highlight: m4dT+6tstRXRJqLmbvpd+7CB4SMmaYhVFpba6Yvni0U= attributions deduplicated to 1 items default 18:23:01.817159-0400 suggestd PPSocialHighlightStorage: Social highlight: m4dT+6tstRXRJqLmbvpd+7CB4SMmaYhVFpba6Yvni0U= attributions deduplicated to 1 items error 18:23:06.116517-0400 MobileSafari Failed to fetch metadata for Highlight <m4dT+6tstRXRJqLmbvpd+7CB4SMmaYhVFpba6Yvni0U=>: Error Domain=NSCocoaErrorDomain Code=4099 "Couldn’t communicate with a helper application." default 18:23:06.118896-0400 MobileSafari Received feedback for highlight: m4dT+6tstRXRJqLmbvpd+7CB4SMmaYhVFpba6Yvni0U= with type: 0 from client: 'com.apple.mobilesafari' variant: '' default 18:23:06.144704-0400 suggestd PPSocialHighlightServer: feedbackForHighlight: m4dT+6tstRXRJqLmbvpd+7CB4SMmaYhVFpba6Yvni0U= type: 0 client: 'com.apple.mobilesafari' variant: ''

brother

what do i look for

in the debugger

to solve this predicament

where does it log

look in your dms

i sent disassembler screenshots of where it is

oh that

uhhh

no that won't do

need to find inner error

Where should i look

like xref

prob near screenshot you sent

like

like this?

bro i cant see any strings there

💀

average hopper experience

why no ida

why no ida

ok let me go to ida

why no binja

@wooden yarrow here is ida

where message

it doesnt show up in the psuedo code idk

nvm

disregard

@wooden yarrow string here

where argument now

.

bro waht

which arguments

need to find Error Domain=NSCocoaErrorDomain Code=4099 "Couldn’t communicate with a helper application." message origin

ig