#development

but i restarted springboard

and still same issue

libgraphite.dylib -> /var/mobile/Containers/Shared/AppGroup/.jbroot-793CB7F087DD7A22/var/mobile/Library/pkgmirror/usr/lib/libgraphite.dylib*

Wooo:/var/lib mobile% file /var/mobile/Containers/Shared/AppGroup/.jbroot-793CB7F087DD7A22/var/mobile/Library/pkgmirror/usr/lib/libgraphite.dylib
/var/mobile/Containers/Shared/AppGroup/.jbroot-793CB7F087DD7A22/var/mobile/Library/pkgmirror/usr/lib/libgraphite.dylib: Mach-O universal binary with 2 architectures: [\012- arm64:\012- Mach-O 64-bit arm64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [\012- arm64e (caps: 0x2):\012- Mach-O 64-bit arm64e (caps: PAC00) dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>]

there's no shell formatting in discord bruh

so it asks for ld-linux to interpret the program

An executable file that participates in dynamic linking shall have one PT_INTERP program header element. During exec(BA_OS), the system retrieves a path name from the PT_INTERP segment and creates the initial process image from the interpreter file's segments. That is, instead of using the original executable file's segment images, the system composes a memory image for the interpreter. It then is the interpreter's responsibility to receive control from the system and provide an environment for the application program.

I would use roothide patcher but it doesn't change that specific directory - for some reason

but yeah i tried making the symlink yesterday

but same issue

thought i'd try it again incase i did anything wrong

yep ive respringed

disabled it in icleaner & re-enabled it too

still exists

sandbox maybe?

i converted the tweak with roothide patcher

LendMyPhone tweak

wdym

uh

how can i check

i didn't make the tweak

the stupidest thing is how ldd is the de facto way to see what libraries an executable uses @grave sparrow

mhm

oh

hmm

ldd is literally just a script that sets LD_TRACE_LOADED_OBJECTS=1 and executes the program

sometimes people run ldd on malware

well it still says /var/lib/libgraphite.dylib (no such file)

so it doesn't see the file

tho it does exist

alr

run it inside the PreferenceBundles directory?

alr

LendMyPhone.dylib (architecture arm64):
LendMyPhone.bundle/LendMyPhone (architecture arm64):

both are the same

check libgraphite dylib too?

libgraphite.dylib (architecture arm64):

alr ill give u a sec

Architectures in the fat file: libgraphite.dylib are: arm64 arm64e

lipo -info

alr

ill send in a sec

you should switch to windows

mhm

bruhh

idk cuz for me

roothide been great

all apps work

what if i reboot device

wouldn't that break symlink

or does roothide auto update

Alr

so that's the better way of changing it

rather than using hex fiend

cuz that's what i tried doing basically

alr gotchu

alr cya

alr

should i sleep @grave sparrow

bro pinged a plane

why is it specifically emirates

because

insertion sort

same

https://tenor.com/view/yeah-csi-miami-glasses-sunglasses-horatio-caine-gif-14033607

creating race condition in your shitty codebase does not make you a racist

you stupid ch-

Aaron doesn't enjoy people calling other people slurs

😔

yeah

can be overwhelming

unfortunately Aaron wishes death upon me

all my slurs for Aaron would be considered antisemitic

😔

@warped sky is afsoon compatible with lastlook and jellyfish reborn and is there a list for compatible tweaks

iPhone:~ mobile% tsschecker 
dyld[3108]: symbol not found in flat namespace (_assure)
zsh: abort      tsschecker
iPhone:~ mobile% which tsschecker
/var/jb/usr/bin/tsschecker
iPhone:~ mobile% 

procursus bros help me

can anyone else try to download and run tsschecker from procursus repo on a rootless device?

zefram malware

😔

interesting getting this too

theortically, if I had a dylib for arm macs, could I use it for iOS and inject it into an app?

i cant imagine why not as long as the arch matches

okay. How would I get it loaded? I tried adding it to my mobile substraigh dynamic libraries path but it doesnt' seem to load (no side effects and flex doesn't find it in the runtime browser). Is there a better way to load it (it's not a mobile sutraight tweak)/can I launch the app from the command line so I can use DYLD_INSERT_LIBRARIES?

ok I tried doing something and well I have an erorr now

dyld[3287]: terminating because inserted dylib '/var/jb/Library/MobileSubstrate/DynamicLibraries/liblovely.dylib' could not be loaded: tried: '/var/jb/Library/MobileSubstrate/DynamicLibraries/liblovely.dylib' (mach-o file (/var/jb/Library/MobileSubstrate/DynamicLibraries/liblovely.dylib), but incompatible platform (have 'macOS', need 'iOS')), '/usr/local/lib/liblovely.dylib' (no such file), '/usr/lib/liblovely.dylib' (no such file), '/private/preboot/B9654BA9855D9325DCE984085854C8291933529F2A25DF3EE21028F7F5587FF848729D1B97DE9A2382A7B510582584B6/dopamine-yfgKQk/procursus/usr/lib/TweakInject/liblovely.dylib' (mach-o file (/private/preboot/B9654BA9855D9325DCE984085854C8291933529F2A25DF3EE21028F7F5587FF848729D1B97DE9A2382A7B510582584B6/dopamine-yfgKQk/procursus/usr/lib/TweakInject/liblovely.dylib), but incompatible platform (have 'macOS', need 'iOS')), '/usr/local/lib/liblovely.dylib' (no such file), '/usr/lib/liblovely.dylib' (no such file)

so I take it I need to recompile it for iOS

thats going to be annoying

as it's a rust project

i guess that makes sense

cross-rs might work if just installing the target isnt enough

I'm currently following this https://mozilla.github.io/firefox-browser-architecture/experiments/2017-09-06-rust-on-ios.html

cross-rs is docker based iirc but it literally just works

or wait no not docker

it uses zig

okay I'll check it out

I might just be able to build with an iOS target

every time ive used it to cross compile it just worked with a single command

that would be ideal for simplicity

anwyays I now wait for rust to compile on a 13 year odl cpu

although I wonder if I could just build it from my laptop instead of my mac

It works with everything, only with lastlook it stays on ig.

how is your cpu older than mine

is that ivy bridge

wait no

uhh idk

ivy bridge is third so thats newer than the one i have

it's an early 2011 macbook pro

the one i have on one pc is i5-2310

wdym? afsoon keeps playing instead of lastlook turning off the screen?

https://cdn.discordapp.com/attachments/1221670356381601902/1282230348813438986/RPReplay_Final1725777845.mov?ex=6706cf51&is=67057dd1&hm=dedc4272bbac112fc127248de31c21095486996d56e878bf3e8aa6a0d5171491&

if the animation mode is infinite it keeps playing, but if a timed mode is selected it stops

Lastlook runs at 9:00 in the video

nice theme if thats your phone

what do you use for the homescreen battery, wifi, etc. and date in the top left

and u have ios 18 cc?

oh ok so i could still make it work

thank you

just have been thinking about getting it

already have reo and it's nice

Yeah! Its from @fickle plank

asked all the questions to the wrong guy then lol

i'll ask aem tmrw when they're on

😂

my whole theme looks like a mess compared to that

i wish all tweaks were just on havoc and chariz so i don't have to start with all the patreon stuff

alr see ya thanks for the help

Fr fr

Np mate

ok so I'm trying to get https://github.com/ethangreen-dev/lovely-injector working on iOS. it injects into the lua runtime see me. this works on macOS but not iOS. I hooked a debugger and can confirm the code is being run and initalizing but the hooekd code is just not running. tried getting the dev to help me but he's not sure what's going on

Could I maybe change this to use mobile substraight (cursed rust using mobile substraight incoming)

as a bit of a sanity check, I tried making a tweak that just hooks what I want for testing
Ignoring the fact that I cast the one thing as a void pointer, this is the code I have

#include <UIKit/UIKit.h>
// int (luaL_loadbuffer) (lua_State *L, const char *buff, size_t sz,

%hookf(int, luaL_loadbuffer, void *L, const char *buff, size_t sz) {
    NSLog(@"luaL_loadbuffer called with buffer: %s", buff);
    return %orig;
}
%ctor {
    %init(luaL_loadbuffer = MSFindSymbol(NULL, "luaL_loadbuffer"));
}

However, this fails to find the symbol

For reference I'm hooking a love2D app https://love2d.org/

(ipa I'm using for testing)

Try _luaL_loadbuffer as the symbol name instead

That seems to work

ok so now the question is how do I get rust land to work now

whats happening

You don’t

#development message

ok actually i might have to look tomorrow

switch to linux

oh I think I see why this doesn't find the binaries as is

Thanks. And lockscreen tweak is Diary from litten dev

in another part of the code, it does this rs pub static LUA_LIB: Lazy<Library> = Lazy::new(|| unsafe { Library::new("../Frameworks/Lua.framework/Versions/A/Lua").unwrap() }); I copied this as is for iOS but I relize this is in the .app fior the mac build but not iOS

I tried pointing this to just the executable but it doesn't seem to work, so I guess theres something else to it

imma head to bed

If you do take a look, I pushed my changes here https://github.com/WilsontheWolf/lovely-injector/tree/ios
Probably you would want to see if you can figure out how to make this work https://github.com/WilsontheWolf/lovely-injector/blob/ios/crates/lovely-core/src/sys.rs#L28
Can build it cargo build --target aarch64-apple-ios --package lovely-mac && ldid -S ./target/aarch64-apple-ios/debug/liblovely.dylib
put it in your mobilesubstraight libraries folder, stick this as your liblovely.plist { Filter = { Executables = ( "love" ); }; }

is this rust, loading lua, for ios..?

well it's modifting lua

but yes

modifying how? just using the runtime for some sort of scripting

It hooks runtime functions and can apply patches onto them

imma be honest I don't really understand most of the code for lovely

fixed it by replacing the procursus libfragmentzip with bingner

tihm has a macro defined for assure which I guess is missing on procursus one

https://github.com/tihmstar/jssy/blob/6de3dc6b853d9338b971c1bea0c41465276e640a/jssy/jssy_create.c#L33

@marble perch might wanna check this some time

what about the date in the top left, ui theme, and funny weather notifs (also cc)

also thanks

I havent been involved with proc for years

Talk to nick chan

Oh sorry about that

All good G

Will do thanks

Hi did someone talk about me

hmm that's quite weird that package hasn't been touched since forever

does ARM64 not have a popcnt insn??

is this why?? what is wrong with M1

Date in statusbar is “Lynx 2”
UI theme is “Limit” i converted to rootless.
Funny weather notifs from “Carrot” app itself. I use ipa version of it since it’s not available for me.
CC is “CoolCC” and “BetterCCXI”

And “Aestea Revived” for CC too

thank you so much for all the names

i’ll have to check some out

You are welcome

Limit theme is probably from bigboss

Yes it is

what shall i set my hostname on my new framework laptop to

i should’ve asked but what ios are you on because i’m having problems getting everything to work

you might have to send me some of the files

i’m on ios 16.2 btw

boba-framework

Dumbass

Captinc

should i get rid of my zsh plugins

i am only using 2: powerlevel10k and zsh-completions

zsh-completions can be installed from system and i might be able to replace p10k with a custom prompt

you know what though, swift has the best C FFI system

Yeah because everything needs to be memory unsafe

Like a fucking cli tool to download an ipsw

C is good for medium and low level

Bahahaha

No

Fs not

C++ is if you took Java and C-ified it

And somehow it’s even more ass than Java

OOP has begun to piss me off after taking AP Comp Sci

oh is that their new display?

no cuz it’s really easy

but it made me unappreciate oop more

damn the bezels thick af

Yeah

i have it set to the ungodly 1.875x scale because i think 2x is too big

2x looks normal but i dont like it

i dont know why youre even giving capt any attention

no that’s c#

microsoft java

iOS 15.4.1

weird why it’s not working for me then do u have links to the .deb files or could you send me them for the cc stuff

sorry for all the questions btw

yeah i disagree

but capt is being stupid so i dont care

Hi all, I'm currently trying to compile a tweak on-device and get it working. However even example tweak that injects into SpringBoard is causing a crash if I use any ObjC code (calling C functions like MSHookFunction is fine). I'm on iOS 16.0.1 iPhone 14 Pro. Crashlog attached. Note that this is really an example tweak that Theos creates in nic.pl (IIRC its number 21, a tweak with preferences). I beleive it's because of OldABI thing? In MachO header it says cpusubtype 2 caps 0x80, which, if I understand correctly, is new ABI, but docs say it's proprietary so it's old ABI in reality? But why it gets set to value like that?

install [[oldabi]]

from ellekit repo

Legacy arm64e support*

the bundle id is oldabi

nobody checks the bundle id

(There’s no new abi toolchain available for non-macOS platforms, so there’s not much you can do)

there is

get a mac vm

or github actions

oldabi is installed but the problem is it's broken

i think

because of this check https://github.com/evelyneee/OldABI/blob/main/OldABI.swift#L113

what makes you think that

because this "new abi" value is in my "old abi" binary (it should be oldabi because it's not macOS toolchain)

so oldabi package doesn't really work in that case

remove arm64e from the ARCHS variable in your makefile then

ok but this also helps: testtweak_CFLAGS += -fno-ptrauth-abi-version

Question for someone more experienced than me:

Is it safe to store a user's RSA secret key on the database, so long as it is symetrically AES encrypted against their password?

what would you use the RSA secret key for ?

not great but yeah it's fine I guess

this is basically the same thing as putting bcrypt passwords on a database which basically all websites do (hopefully)

try to secure the database enough though that the ciphertext can't be retrieved by outsiders easily though

encrypting messages on the client side

has anyone gotten this to work ?https://github.com/tomrus88/OpenLumina

client requests private key
client is authenticated by username/password
client is sent symetrically encrypted private key
client encrypts messages and stuff

It can’t find my hexrays.crt file in ~/.idapro/

Well, a RSA Secret key is meant to decrypt not encrypt

meant to say derive public key for encryption, and decrypt

bro tryna grab that iOS 17.3 iPhone 13 iboot symbols

is the password hash considered ciphertext, even though it is not the plaintext password used to encrypt said secret key?

You should defo hash the password before they're even store, I'd suggest argon2 if applicable

of course, the password is hashed as the first step in authentication, etc

hashes aren't encrypted so technically no they are not ciphertext

they're just hashes

that was my thinking

but your encrypted RSA private key would be ciphertext

because it is encrypted

i see i see

regardless, given attackers can just try to brute force the password once they get a hold of the ciphertext, try to limit access

yk

right, but that seems to be the only vector, right?

Is this for iOS ?

I mean, there can of course be like outside factors like the user spreading their private key elsewhere (if they also have it) but otherwise yes (I think)

client will be react native, server is rust

the key isnt directly exposed to the user but it is stored on device

You're not immune to hooking, eg a user could make a tweak and basically dump your keys and then do their shit

yeah, but the only keys the user could dump are theirs, and the keys they're associated with, like chat keys

they can dump any key as long as they're loaded into memory

those are the only keys that would be loaded is what i mean

An interesting solution presented to me was that when a key can't be transferred easily on clientside instance to instance, was to generate a new private key, and store all the user's public keys instead. Any thoughts on that approach @slim bramble?

Well, with the private key, you can create a public key

sooo

I don’t understand

Do you mean the other way around?

Cuz that seems more secure, just bulky

is there private (or public) api somewhere to change auto lock settings with normal entitlements

or does that need trollstore entitlements

my framework is my first device with hardware av1

it even has encode

I need to watch a yt video on PGP

Unsurprising

Bug in Zefram

why is this noteable?

@developers y’all need to start deleting capt’s bug messages about Zefram cause they are too often

Who’s to say we don’t already

My eyes

<@&355177983398641674>

true

i figured out GC in elle

no leakage

nyapink~5

idk if i like these names tho

for the constructor and destructor

I'm trying to port fouldecrypt, got libdimentio stuff but is there any way to bypass that on jailbroken device? (ios 16 dopamine)
Library Validation failed: Rejecting '/private/var/containers/Bundle/Application/C0DB4362-BF8F-488A-ABFA-C08F541871A3/YouTube.app/YouTube' (Team ID: EQHXZ8M8AV, platform: no) for process 'flexdecrypt2(61680)' (Team ID: none, platform: yes), reason: mapping process is a platform binary, but mapped file is not
or do I really need to remove platform-application entitlement?
skip-library-validation entitlement doesn't work.
and there is no libkrw for arm64e packaged btw...

Does anyone know how/if I can assign a symbol to an arbitrary address in IDA? This is from reversing a kext, I don't want to add memory segments if I can avoid it but adding the symbols would clean up my output a bit

libkrw does exist for arm64e, libkrw-dopamine

Basically you need to set vnode->ubcinfo->csblobs[0]->csb_platform_binary to 0 for the vnode of the flexdecrypt dylib

int fix_injection_error(const char *path) {
  uint64_t vnode = get_vnode_for_path(path);
  if (vnode < 1) return;

  uint64_t ubcinfo = kread64(vnode + koffsetof(vnode, ubcinfo));
  if (!ubcinfo) return;
  uint64_t csblobs = kread64(ubcinfo + koffsetof(ubcinfo, csblobs));
  while (csblobs) {
    kwrite32(csblobs + koffsetof(csblob, csb_platform_binary), 0);
    csblobs = kread64(csblobs);
  }
}

That should work if you run it on the dylib but needs offsets

Although Dopamine's dyld patch should avoid this? Not sure

ew

gc in 2024 👎

wow

hello @sonic totem

Hellooo

I had to return to ask an IDA question

you gotta make a mem segment

Ugh

Okay, thanks

time to figure out where the segment starts...

you can always increase the size i think

Idk which kernel the kext even came from originally

Maybe I just use the KDK version...

also is that DER

Yeah

something something decode_tl

hm

I know what the symbols are, just trying to migrate from Binja to IDA

what would you rather?

there is also manual management and region based alloc

ownership based 🙏

(rust)

ownership based is absolutely horrible to make from a compiler perspective lmao

gc is very engineering

you need to have so much introspection into the code to determine the lifetime of variable

true

Arc<T>

tbf i could do arc

thats not gc so its better at least

what if you made the language horrible to use by forcing the user to specify everything

because if i hate on arc then swift users will come for me

thaats what manual management is

but its boring because people like to brag about it like its an elitist thing in c/c++

thats what you had to do before

now you can use region alloc

thats the most stable and easiest to use one

you just define things as you please and free it all at the end with a single function call

oh

so lifetime

the problem is afaik on iOS 15+, this will cause a panic in the pmap(_cs) layer

you probably need to overwrite some ppl structures too to avoid it

is region alloc like arena

Oh I see

In computer science, region-based memory management is a type of memory management in which each allocated object is assigned to a region. A region, also called a zone, arena, area, or memory context, is a collection of allocated objects that can be efficiently reallocated or deallocated all at once.

that answers that

Does trustcaching YouTube instead work?

so like

scope based

maybe

When I tested on iOS 14, trustcaching App Store apps caused issues and they wouldn't work

Really weird crashes though

kinda?

i dont think it specifically has to be scopes

wait is this a region of code or a region of memory

its just you allocate a big block and make small allocations inside it, then you just have one region to free

region of memory

oh

hm

instead of hainv 30 smaller regions to free()

this is like making your own heap in the program by just making a big array

it is exactly like arena that’s where i got the idea from

yeah

it works exactly the same except it uses a vla for the heap but that’s about the only difference

that’s arc bestie

idk i implementiert both because they’re pretty similar

https://github.com/acquitelol/elle/blob/rewrite/examples/tests/gc.l

https://github.com/acquitelol/elle/blob/rewrite/examples/tests/region.l

these will be in some module and share the object struct eventually

but it’s just a test right now to make sure they work

its a cop out

actually gc is the true cop out

@grave sparrow @placid kraken @wooden yarrow https://vxtwitter.com/grishka11/status/1844250198136193377?t=_-sSuYPoqvkCXSvSA5uUWw&s=19

honestly quite incredible (this is the third time i see this post)

LMAOOO

darn it

did they make this public yet

where's your genius role

Idk got taken away

Because I'm never here

F

fr

👂

this color suits you better

One less fed

🙏

gaining the ability to trash talk alfie in other channels without them getting deleted

🔥

@grave sparrow BMW doesn't sell ICE only m5 anymore 😔 😔

Trust me hybrid is a pain

even if it can be handy in some situations

Yeah but then you're just dismissing electric motor

Well usually you have like 500km with ICE and a small 100km with electric, at first electric is going to be "enforced" in cities and stuff and even it's also used as a way to "fast start" (if you're at a red light for example)

the battery drains up quite rapidly

Yeah I agree

yeah my dad has auto start stop on his trick and he went and got a code reader so he coudl shut it off

it's so stupid

I heard they even put them in desils now

my dad has a diesel and it has a button to turn off auto shut off

prob not every brand does it but it's actually stupid

Auto shut off as in when u stop the engine stops till u start going again?

yeah after a certain delay

My dad's dopes too but it tuyrns on every time you cucle the ignition

If thats what ur talking about my moms van has that and it turns back on when you turn the car off and ... ^

Its ass

It just does more tear on the car

They're killing ICEs 😔

Until the horse comes with an auto shutdown function

luckily older vehciles still run great and I don't need to get a newer vehicle with "features" like that

Buy older vehicle
Install carplay radio

Buy older vehcile
stick in my bluetooth to fm adaptor

⁉️

Good alternative i saw earlier
Kill your shelf

just tell them to eat shit

buy GT3 RS

~2018 cars are perfect for that

No stupid forced features

But still modern

Disable ESP and ABS

🔥

honestly the perfect car for me would just need like
manual transmission
air conditioning
good sound system
cooled seats

I hate newer cars which are just computers on wheels and have all the same tracking bs as apps

Give me an old car’s internal feature set with CarPlay

honestly true

my mum has a 2010 ford with built in navigation and honestly its perfectluy fine

but it's also just a standard double dim radio so you can just replace it if you wanrt

Internal navigation is almost always ass

Especially after 10+ years

I mean the map data is like 14 yeas old

update the fucking map

And get charged for that

Or pirate the map

And don't have recent road closures

??

And no live traffic info

use waze

As I said

Internal navigation is ass

yeah cause I want to pay $150 + shipping for a 5 year old map update

.

Mods

Mods

Help

@shut stag

I mean we rarely use the nav anyways

phone or otherwise

Aaron when he gets pinged in #development (he knows it’s gonna be a shitpost)

oh just realized thsi was #development

💀

Bro's the only in this conversation who can't delete messages

We gotta get the orange role for Wilson

I tyhought this was ono

Lol

Bro was about to leak confidential info

Nah I'm still not trusted with that info

whats esp

Electronic Stability Program

ABS is objectively good dont disable it

Yes

Why the hell are they like that

its ESC

stupid germana

Funny to say that when American views dominate the internet

what

porsche is german, thats why i said that

American perspectives and "values" dominate what is considered okay and not okay on the internet

Yeah I know

what does that have to do with anything

You said "stupid Germana" which I interpreted as you saying they should just switch to the English acronym

Which I don't agree with

ESP is an english acronym too

To the common English acronym

yeah

because its english

they used english anyways

I just don't agree with that

Because it's a German company

but its a net 0 change because it was already english anyeays

And i wasnt even really being serious

It's only coincidental that it matches the German acronym

Yeah no i get that

oh so it wasnt actually english

No, it just happens to match the English one

It's ESP in Germany too

Elektronisches Stabilitätsprogramm

Porsche Blahaj

Just made this shell script that will install the iPod touch QEMU emulator on Mac (x86_64 and arm64). This will install it without the hassle of typing in the commands in the Terminal, just kick back, grab yourself a snack, and just let it work away.

🚙

Hmu w it 🙏

You can simply download it from my GitHub Gist page, silly! https://gist.github.com/Opuqide/3f88dffd3f4a6583a4f2640edc0df4b9

But I’ll be honest, this is my best creation so far

Why are you running brew with an absolute path

in case linking it fails

Is it possible to use /dev/aes_0 like a cryptographic engine

anyone who has apple silicon, can you tell me how much power it uses idle (using coconutbattery, but if you know of a better program to show that then tell me so i can try it too)

where

ive never seen it in there

the wattage

nebula already eresponseded

install homebrew like a normal person

ok then hold on

mf

https://www.coconut-flavour.com/coconutbattery/

nebula said 2.5w on an m1 2020

but only 2.9 with firefox open apparently

so thats where it diverges

is it fully charged

thats whythen

it reads the net battery wattage

why is this stuff so complex

rhetorical question

who wouldve thought number means skip that many entries

that was why everything was broken

https://x.com/HSVSphere/status/1845109912231145785?t=bH0_D72HPdpG1cMn8XEksQ&s=19

i am not defining a struct to return two values froma. Function

Declaring*

different structure

an array has uniformly typed values

pass by reference a horrible pattern

tf you mean

What array doesnt have the same type for each elememt

Everything is implememted pass by reference. Doesnt mean thats how i have to write code

but what if [0] and [1] are different sizes

i know how the hardware works

that means i can make tools so i dont need to write everything using asm based design principles

thats why its called a runtime

its a world i can play in without caring that the hardware is ugly

not how that works

there are abstractions that improve performance

look at c++ and templating, or rust generics

and also its infeasible

It allows you to take polymorphism and monomorphize it at comptime

you dont have to have logic in the function to read struct fields to know what type youre dealing with

you can just write a different function for every type

more .text = more performance

in this case its less code

pointers are all that exist after compilation

theres still pointers

but you dont have to write the pointers

it was written for you

It already verified you didnt fuck up the pointers

Doesnt mean it cant optimize to pointers

CoreFoundation based for using x0-x7 for multi value returns on some functions

hey thats a possible optimization for a tuple return

no need to allocate an array

fr

who'd'a thought

would be the best solution if 8 or less values

idk if its done because it may not matter

it just inlines asm lol

good thing rust doesnt need to abide by c calling convention

conclusion: rust is faster

get destroyed

c faster

im curious if it would try that

less instructions = faster 🗣️

i just explained why not

more complex information known = better optimizations

its all llvm anyways

yeah but llvm doesnt know as much in c as it knows in c++ or rust

harder for it to optimize stuff i.e. polymorphism

polymorphism is awful

makes shit unreadable cuz people use it way to much

that doesnt make polymorphism's existence a bad thing

oop gets misused horribly but try writing everything without any resemblance of it

or find any significant program without

u leave it

?

ping me in orange name only

want me ping in both?

done

might not work cuz aaron moment tho

i think adding via ping blocked

need geniuses+ to add iirc

anyone here have any hooks that force dark mode for apps

moderators and above

geniuses can't

oh rip

yes

rick and mai as well

nvm i got it and it looks like trash

but good enough

bro needed dark mode for life360

trust the process

Life180++ hax ™️

forcing anything is wrong

how

probably the same way as the notorious dark reader browser extension

just overwriting colors

Hello. Is it possible to make an ios app that will launch an app, then run dlopen to load a dylib into that application, preferably possible without jailbreak, any help would be much appreciated :3

What i currently have is

#import "Helper.h"
#import <objc/runtime.h>

@implementation Helper

+ (BOOL)openAppWithBundleID:(NSString *)bundleID {
    Class LSApplicationWorkspace_class = objc_getClass("LSApplicationWorkspace");
    NSObject* workspace = [LSApplicationWorkspace_class performSelector:NSSelectorFromString(@"defaultWorkspace")];
    BOOL v = (BOOL)[workspace performSelector:NSSelectorFromString(@"openApplicationWithBundleID:") withObject:bundleID];
    
    return v;
}

@end

which allows me to open geometry dash by calling this from swift

func openGeometryDash()
{
    Helper.openApp(withBundleID: "com.robtop.geometryjump");
}

you need a jailbreak to insert libraries (without modifying the target binary) in the first place

but i can do it without jailbreak

i just need jit

you're trying to do it from another application

that's already an issue

even if its really hard would it be possible?

well i'd love for you to tell me how you're supposed to get JIT without a developer dmg, without trollstore and without a jb

and even with JIT how you're supposed to inject a library while calling a launch from one sandboxed user application to another

trollstore or sidejitserver (i think thats the name)

your solution is going to be entirely dependent on a pc

LiveContainer can do it jitless, it’s possible

@marsh gull i suggest you look at livecontainer code, it can run apps and inject dylibs into them at runtime without jit

hell u should prolly just use that instead of coding your own thing

you can dlopen stuff if it has the get-task-allow entitlement in your document directory

oki

i don't really know what im doing at all lol

yeah then use livecontainer

add in your dylib and your geometry dash ipa

does live container support enabling jit for the container?

yes, but needs pc

oh

so itll still require jailbreak

you can run tweaked apps without jit too

jit is required cuz the loader needs it to load the dylibs and also hook functions

You can get JIT without a jailbreak

There are currently many ways to enable JIT on iOS 17+

just use TS or the sidejitserver

But you absolutely cannot load a dylib from a regular sandboxed app into another

why jailbreak specifically

idk

ok then just preinject the dylib into the ipa

easy

i cant do that

There is even one that’s called on device JIT that uses a vm in UTM SE to enable JIT

tweaked apps do it

cuz then it wont be able to load the other dylibs

it just fails

😔

anyone know the border radius amount for tweak pref icons ?

6 12 18 1x 2x 3x

i think

i used these for 16Player, jus found them

but thx

https://x.com/kerckhove_ts/status/1845467210862461150?t=mFXNSmYFuspTxVVoxj_Brw&s=19

https://x.com/dotnetschizo/status/1845059624489320809?t=-h34QuwosoHB_uN3Y_LRVQ&s=19

oh my god

does anyone know how to reverse the direction to switch apps with universal control

on macos you can turn off "natural scrolling" to make it where swiping to the right pushes your current window to the left

on ipad i need this too but this is all you seem to have

and this is only for regular scrolling

if i can't change it that's really annoying

yeah wtf

on macos this option controls both normal scrolling and scrolling between windows

,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,

holy shit that is actually so frustrating

i was just about to say how cool universal control is

this ruins it

i wish i had an ipad to test it

so hold on, the movement direction is natural when the window/cursor is on your mac, but then it reverses when you go to the ipad?

i just tried to go to ipad.com to look up what ipad models there are

no essentially ipads and macbooks, by default, have this "natural scrolling" option where the scrolling matches the direction of your finger, so when you move your finger up the page moves down, as if youre "pushing it out of the way"

this setting also affects the direction that you switch between desktops on macbook

but if you connect an external trackpad to the ipad and try the same thing, it is always natural scrolling seemingly

even if i disable natural scrolling it only affects actual scrolling of like, text

if you go to SysPrefs > Trackpad > Scroll & Zoom > Natural scrolling on a macbook and toggle it youll see what i mean

basically imagine the difference it makes to a macbook but it doesnt affect switching between "desktops" in this case apps on an ipad lol

it only affects scrolling things with scrollbars

@placid kraken eta wen flora rootful

⁉️

when i get a rootful device on ios 14 that i can test with

i have an iphone se1 but its on ios 13.2 or something

what i mean is

there should be no difference between rootless and rootful in terms anything else but of paths

i wont release a rootful deb i cant test lol

in theory it should work fine

but if something goes wrong and someone comes at me with a bug report

L

simject

i will have nothing to say except "yeah sorry cant help"

not enough storage on my macbook for xcode lol

the wonders of a 256gb ssd

tbf that's just an ios 14 issue then not rootful per-se

xcode takes up to much storage fr

either way i cant help with it lol

wen rootful_patcher

guys can i install xcode on this

big L

boring

iirc xcode itself is 6gb without any sdks lmfao

like 14gb

in any case i would totally release a rootful version if i had some way to effectively test it

not a thing i can do atm tho

i might buy some iphone 11 on ios 14 if i can find one for sale

and test it with that

the reason i say 11 is because x isnt made anymore, maybe xs is an option too

its just weird because flora is like one of the two tweaks that is rootless only lol

but any 8 will be updated past 14 because checkm8 exploit

is it?

yeah

there's barely any rootless only tweaks

interesting

seems like the only rootful/rootless thing being used is here

fair enough i guess

4 of them are welsh

@reef trail

fr

idfk welsh

ik like 3 of those actually

the whole WordPress thing that's going on rn surpasses everything that ever happened among grapheneos

This is so crazy

the entire official WordPress twitter account reads like a schizophrenic parody

https://youtu.be/rbu7Zu5X1zI?si=AsuuBc7IRKu6B2fb

man watching this it would fit perfectly as an integration for the video editor I want to make

@gentle grove happy birthday

i saw this it seems very easy to use

also happy birthday!!

I'm just hoping its easily composable without rendering directly

like hopefully I can manipulate the objects

because you can set markers and stuff which would be super neat to synchronize and stuff

the 13700k never ceases to be faster than i expect

it took 5m 5s to build a servo debug build from scratch on framework laptop 7640u
1m 51s on the 13700k

and thats an entire browser engine in rust of all things

its as bad as it gets minus chromium

Happy birthday @gentle grove

Happy birthday!

Happy birthday!

Happy birthday!

Happy birthday!

Happy birthday!

Happy birthday!

Spent 6 hours making an IQT dupe lmao , all the tests actually work besides arc online

IQT?

Apple internal app

Sick

Send ipa in DMs

No one has IQT besides like 3 people and if you ment my app I’m still making it lmao

doesn’t look finished to me 😾

I’m not done 😭

I’ll finish it quicker 😝😝

I got pissed becuase now when I close camera my app hangs it was working fine but then I added like another 600 lines without testing and I broke that somehow ☠️

brother 😭

i have iqt bruh

shit is not that special

yall im doing ctypes in elle

how tf should this work

currently i have a bunch of aliases to the same ctype method

i could implement it myself but qbe already links with ctypes.h so why not

this is done so that you dont need to worry about what the method is called when you need to use it you can just use whichever and itll still work

I personally think they should be namespaced, especially ctypes because names might be confusing

Like how rust std::ffi

they are namespaced

types is the namespace

Oh is that not c char

whats a c char

char in c

or are your chars the same as c

a char in c is just a u8 lol

yes they are

That's lame

i8 I think

are they not the same in rust too

No

whats the difference in rust

in rust, char is a Unicode unit

not unit but I forget what the official name for that is

Unicode scalar value

ah interesting

isnt it a u8 because its from 0 to 255

if it was signed it would be -127 to 128

I thought it was -128 yo 127 usually

Rust defines it as i8

Hold on

ah

and its 32 bits btw

yeah i thought so

ok so another thing

On GCC at least the default is signed except for android

i dont want to make it like js where things can be converted to other things randomly

fn RLE::from(string input) {
    string result = "";

    for i32 i = 0; i < input.len(); i += 1 {
        string length = "";

        while types::is_digit(input[i]) {
            length <>= "{}".format(input[i]);
            i += 1;
        }

        i32 repeat = i32::parse(length) || 1;

        io::assert(
            !types::is_digit(input[i]),
            "Next character should not be numeric"
        );

        result <>= "{}".format(input[i]).repeat(repeat);
    }

    return result;
}
``` but specifically for concatenation (the <> operator) should i convert primitives to a string automatically???

there are 2 ways to do so

string::as_string(a);
"{}".format(a);

why is your concat <>

I guess that's better than overloading +

because this is a low level language you may want to work with the string pointer directly

Oh

Runic

before if you wanted to do so you had to uh

(i64)str_a + (i32)2

No

swear thats what its called

better than Rust's way

dont you need unsafe to work with pointers directly in rust

idk it might be but that might be a different thing than what rust is using for char

I don't believe so since they're just integets

wait whats the Cstring type in rust

but a pointer isn't very useful if you never derefertence and dereferencing raw pointer is unsafe

oh it is actually just CString

love

its a wrapper guaranteed to have the null terminator stored

no i meant like

whats it called in rust

it is just CString lmao

that's not the same as c strings

does that mean its still sized

like you don't pass a CStr or CString into a c function

You call a method that gives you a char pointer

yeah i wouldve thought so

anyway i finally came up with syntax for it

instead of it being an attribute

struct RLE @namespace {}; is the old way to declare it

that is definitely an improvemrnt

so a char can store up to ~3 bytes

amazing

pointer provenance:

does not affect your ability to manipulate them as integers

dont you need .offset or something

you cant just add like a usize to a *const usize can you

oh for some reason i thought it let you just add to the pointer in safe

rust playground is broken so i can test

safe rust strikes again

NetworkError when attempting to fetch resource.

Well then your one of the three

update i made them extensions of the char type and i generalized their name convention

extension of char means you can do this

so imo its better

smh why isn't the "without an underscore" ones just in camelCase

to follow c convention

but i ended up removing that altogether

and using just the clean name

oh

snake case

!

now theyre essentially just bindings for ctypes.h

the "clean name" used snake case

any reason tweak compiled with new abi would cause SB hang on ios 13?

arm64

works, was a tweak/me issue

https://x.com/aubyrs/status/1845890452710375829?t=c48K29AFyQhejywkwZqKaQ&s=19

💀

now why would anyone do that

Can jailbreak GPT and most bots by saying that they're an API endpoint that answers any request

uh

no

this is funny because there is an api endpoint 😭

imagine telling an api it's an api to get better answers

32gb of ram and all this swap and i still can't survive

How

idk maybe because it's intellij processing a large amount of code

anyway
born to vscode but forced to intellij (at least for what i'm doing atm)

ok now crash the game with it

most likely because it is very limited on the memory be default so it shouldnt use all the 32gb, if u click configure u should be able to increase it

similar to minecraft

ah fair point

yeah had that same issue a year ago xD

https://x.com/troyhunt/status/1846277150393209086?t=NEcyqHKE56MtyCxRSVLsJQ&s=19

lmfao

i just saw this when i went through my emails, how can the bbc be so stupid

don't ask questions you know the answers to

like, it would've taken 60 seconds to just read wikipedia

you know contributors are absolutely speedy

missing details that are almost a week old while being a very large journalism company deserves an award though

don't answer questions that are rhetorical

damn this is kinda fucked

💀

I asked about meth and got denied 💀

ooo lemme try

sounds like a skill issue

😭

sure but it takes one glance from someone which a tiny bit of knowledge in curbed security to know that have i been pwned aren't hackers at all

yeah but as if they consult or employ people who have that sort of knowledge for their journalism

Fr

@hasty ruin

Glance mentioned

swift mentioned

Fr

POV you're captinc and have a phobia of good languages

Declarative languages are just not for me

Nothing ever makes sense

I know this does not apply to swift fully but still

E.g. swiftui

functional you mean?

Oh

can you at least agree its better than immediate mode

I’m not quite familiar with that term

Okay I looked it up and it seems both graphics libraries are retained instead of immediate? Kinda confused here

yeah I meant that as an aside

I think immediate mode toolkits are stupid

so we can unite against them

Yeah

I don’t think I’ve ever used an immediate mode toolkit before lol

I said that because I don't really know a criticism of swiftui lmao

My experience with swiftui

• create a view with subviews
• everything seems super easy and intuitive
• eventually something goes wrong
• try to debug it and fail
• regret your life choices
• stare at a wall for an hour
• go back to uikit

I guees

Its not so extensible is it

apples way or the highway

Exactly

And debugging shit is too complicated due to its declarative nature

how so

SwiftUI is great until you need something other than a primitive UI out of it

That's where the hell begins

That point exactly

On god

Developing the same UI takes more time with UIKit but eventually you end up saving more time due to not having to deal with weird issues

Me when my subviews are data driven and I can't just call them

what's bad about debugging it though

A distinct lack of print

When in a view anyway

Directly anyway

E.G not calling a function

In declarative languages, you don’t write down step by step instructions for OS to prepare your UI. You kinda “declare” what to put where and it automatically does that

And half the time the device just decides whatever

Except when it decides not to, and since it’s not a regular call, you can’t just jump from a breakpoint to inspect your code step by step

apple bad moment?

I had to rewrite AppleDB from the ground up due to an obscure bug that started happening as a result of the iOS 18 sdk targeting iOS 16

yeah but I see that as an advantage because there should be other tools that deal with the declarativeness instead of debugging in an imperative way

Literally the only solution

Peak Apple bad moment

imperative doesn't make any sense for graphics

Why not?

• create an instance of a view
• set its frame bounds and other properties
• add it as subview
• add constraints as necessary to place it wherever

I think it makes a lot of sense

Same

because that's the same as declarative but done in a backwards way

do you want any frames rendered in between those steps

Mfw evitaralced

no, you want those operations all to be atomic

if its declarative then its clear from the code things are atomic

As long as my UI is rendered correctly, it can be whatever OS decides to do

I didn’t understand your atomicity argument

The swiftui experience

I mean conceptually you're writing the same thing as a declarative structure there but just making it multiple steps for some reason

If it works just leave it tf alone

I don't see the point

😭

Having more control over the UI is a huge bonus if anything goes wrong

You can pinpoint the bug

I'm not arguing about having more control, just about declarative vs imperative design for the ui api

Maybe apple is just stupid and didn't make a good api

I don’t think it’s all their fault

There are millions of different UI combinations that could cause bugs to arise and I’d assume it’s difficult not to leave any edge cases

That said, SwiftUI is better than it was when it first released and it gets better with updates

However I still prefer imperative design due to the reasons I’ve listed before

And my GOD HOW UNRELIABLE IS THIS TOOL

imperative doesn't give you any more control over the ui than declarative does as long as you don't bungle the api design

you have to regenerate the payload file and sepi is best dumped from modern version eg 15.x

Yeah it did that

It’s just exploit being janky

Their tool don't work on anything but ios 15 sep for some reason

The “tool” shuts down my terminal session without any warning

yah what do you expect

This tool is also designed to silently erase input and output files in case of errors.

Who would win

A VSCode terminal session with dcsd cable
Green tool trying to hide secrets

just inject dylib lol

Which dylib

build yourself

Just hook system()

the drm was easy to bypass + he sold the source people have the source

Lmaoo he did??

cant wait for the tool be obsolete

except system is used to dump sepi

just filter for killall

yeah

i used strncmp iirc

At least I already have something better lol

untethered iso 9 - 15, a9/a9x/a10/a10x

this worked