#development

why can't safari auto format

chrome isnt either

bc it's deliberately a raw json file

pain

made for a discord bot someone is writing

JSON.stringify for js users

agggghh im too lazy to make this tweak even though i literally have the on device side set up from something else

lmao my main isnt jailbroken i just realized

ok making ios app instead

thanks krit

Swift or gay

no

swift is not good

swift hard

Ok but it isn't

mainly cause that would require something other than copy pasting other code from projects

its like obj-c but ez

yes

cheap

U ez if it means what you said above^

mainly cause that would require something other than copy pasting other code from projects
mooood

yes

i just copy paste shit from drm web requests and adjust params

and profit

get raw data to add to UIGraph (if only)

would you like to guess which commits were made after i went live with it

LMAOOO

can't describe how bad the first two hotfixes are

so basically

the fields are ordered on the page by who has more electoral college votes

so when biden took the lead

switched

the tool started interpreting biden's stats as trumps instead

?

lmao

yea

lol

so what i did was just, reverse the names in the tool

:)

and if/when one takes the lead again, i'm gonna have to do that again

oml

unless i can find a hack to figure out who's first

web scraping google is a fucking nightmare

No proper class names like urgghhh

true

no css selectors, i have to just rely on order of elements on the page

googel suc

google very good actually

no

google stalks u

Discord bad... and on that note I made a program that generates thousands of discord accounts on one email

I just need a proxy server

so I can bypass global ratelimits

web scraping is a fucking nightmare
@half walrus FTFY

nah

i mean for me anyways

Nah web scraping is fun

i did insane amounts of CSS for years

Especially when the one thing you search for gets renamed

WHY DOES XCODE NEVER WORK

this still didn't take me long because i can just #main #search div table td span and get the element I need

Surely there’s an api for this instead of scraping Google?

nope

well there is now

wtf

and then it says please reconnect device

election.krit.me

and then it says please reconnect device
@tepid olive if you open the device/simulator window, it tells you why

the associated press has the only API i could find

and it's extremely expensive

@tepid olive if you open the device/simulator window, it tells you why
@grim sparrow probably cause im still using xcode 12 beta 2

yup

LMAO

whyyyy

now i need download xcode

Why you still on beta 2

@half walrus Why not just check the content of the box for "Biden" or "Trump"??

Why you still on beta 2
@grim sparrow lazy

Yeah that’ll be why it’s not working

@half walrus Why not just check the content of the box for "Biden" or "Trump"??
@final nacelle click inspect element on a google search for "US election results"

you'll understand why that's not exactly easy to do

(do note those selectors are randomly generated every session)

is the api dead again?

10 GB????

mine is online

then im gonna have to extract xip

woe

It’s miles behind though

you'll understand why that's not exactly easy to do
@half walrus Don't worry about the selectors, go through each child elements inner html till you find "Biden" or "Trump"

oh right i have fast internet

[{"candidate": "Trump", "electoral": "85", "percentage": "48.5%", "count": "16,425,990"}, {"candidate": "Biden", "electoral": "61", "percentage": "50.3%", "count": "17,034,240"}]

It’s miles behind though
@grim sparrow hard refresh

donald trump

ctrl+shift+r

or cmd+shift+r

I’ve tried 3 different devices now

that exist?

woah

All same thing

yes it does exist

have you considered using the correct url

[{"candidate": "Trump", "electoral": "92", "percentage": "50.7%", "count": "22,289,504"}, {"candidate": "Biden", "electoral": "119", "percentage": "48%", "count": "21,100,494"}]

No

http://election.krit.me/results.js

Oh lmao

well

Btw the selector that holds the names "Macaq" is not generated I beleive

Well that would explain why

lmao web server is down

no

what

no SSL

oh

i'm adding ssl because people keep missing that

wtf

Btw the selector that holds the names "Macaq" is not generated I beleive
@half walrus can confirm

.json works tho

@half walrus can confirm
@final nacelle both boxes have that selector

exactly so look at both... I don't see what the problem is

Are logical operations dead?

i'd like to find a more robust method of doing that

than assuming a randomly generated class name isn't going to change

It hasn't after 10 hard reloads

have any of the others?

I'll proof those one sec

i mean my plan right now is just find the box that contains all of this via selector inherits and figure out which of the names i find first in the entire blob

Uhhh no no other ones changed either

yep

I think the names are generated once on google "Build Release"

assuming how it works isn't robust enough

i don't want to use class names for this

it'll break and the entire tool will burn

oh boy mac is heating up

big time

Uhhh get more proof that class names are reliable

Or use heirarchy

that won't change

Uhhh get more proof that class names are reliable
not useful after today anyways

Brazil Op-Ed Writing Assignment
meanwhile in another tab

Or use heirarchy

i mean my plan right now is just find the box that contains all of this via selector inherits and figure out which of the names i find first in the entire blob

archive utility taking its sweet time

Yep

OK there is going to be one th with a group of 4 trs inside of the main box

https://election.krit.me/

moved to ssl

In the meantime I just had a discussion about memory management between languages in the comment section of a Minecraft video

inside the th is the first name

decided to also update index.html since ppl cant read

Lol

th > 1st div > 1st a > 1st div > 1st div

@half walrus there is your structure

thank you

that'll give me first name?

Full

split by space

i meant

first candidate

in the tbody use the second tr

inside there is where the structure starts

for the first candidate yes

I wish I knew enough python to code it myself

People actually are selecting Kanye west on a ballot

lmao yea umm he says he has a vision

so some people trust it?

That’s normally a sign of deteriorating mental health

LOL yep

when people start making hallucinogens in their head

Yes

no need for any mushrooms

i love when every time someone wants to discredit kanye they use the fact that he's bipolar and having a manic episode and completely villainize that

:)

uh I didn't know he was bipolar

I just thought he was weird

lmao

NOOO THIS DID NOT HAPPEN TO ME

WHYYYY

download failed?

FUCKKKK

I NEED THE XCODE BETA

BRUHHHHH

Haha

On the appstore it says its supported iOS versions afaik

maybe check there first

i got the xip

soup.body.select('th div a div div')[1].get_text() zoop

i dont want to install to /applications

soup.body.select('th div a div div')[1].get_text() zoop
@half walrus I gotta learn python smh... but at least it looks ez

oh cool i am not part of kritanta development anymore

oh well i dont need dev team

anymore

because i didn't pay yet

yes

@half walrus I gotta learn python smh... but at least it looks ez
god it's so easy

Imagine demoting urself

i would send you the money

but

no pay----

ah

no paypal

I need 100 or else my development or at least hacking career is ruined

i know its a sore subject to this day so

Barely even started

tbh may as well fork out the money for my own dev acc

sigh

haha

ok

I don't have my appleid till the 10th

me telling my dad why i have no money left in bank account

haha

no

homie i was about to cover it lol

then election

what abt election

Wa-

i'm working on this shit rn

ok

lol

i really dont need to continue suckling off your dev acc like a leech tho

Don't worry... some people would be happy to take ur place :)

why pay for dev acc when you can just create your own operating system and develop on that?

AHG THE DOWNLOAD CANCELLED CAUSE INTERNET

download failed?

lol knew that would happen at least once

btw whats with the youtube-dl takedown

2020-11-03 21:47:29.430609-0500 election shit[9021:6539432] Got data from krit api: (
{
candidate = "Joe Biden";
count = "29,698,606";
electoral = 131;
percentage = "48.3%";
},
{
candidate = "Donald Trump";
count = "30,850,747";
electoral = 92;
percentage = "50.2%";
}
)

sick election api updated

and yay now my async shit is working without fucking itself

lol swift makes that quite a challenge ngl

i dispatch async in refresh function but the function to get data uses semaphore to wait for completion

lol swift makes that quite a challenge ngl
@final nacelle what?

swift is easy

I had a rough occurrence with firebase async image loading

so it was more of a Framework thing then a swift thing

Jumping threads in Swift is ezpz

@shut stag want a webhook for electoral college updates

i had one but turned it off

spammy

How do people commit to repositories they down own and act like they are another account?

But they do

You mean a pull request?

Its called PR

youtube-dl appeared in the github owned repo saying that it should be removed or something

Either a pull request or multiple users have edit access?

oh lol that thing

oh haha

https://www.bleepstatic.com/images/news/software/y/youtube-dl/github-warns-ban/youtube-dl-dmca.jpg

How?

yeah there's an issue with github's PR (?) system

well check the url

I don’t know the specifics but someone scuffed the pr system

yep lmao

Oh lol sounds fun

and github refused to fix it

so someone did that with youtube-dl to the DMCA repo

Just DMCA yourself

Ah

What is the issue exactly, I kinda want to test this on a repo

There’s a write up somewhere

Ah if someone could find that for me I would be grateful lol

been looking for over an hour

@final nacelle https://www.reddit.com/r/programming/comments/jhlhok/someone_replaced_the_github_dmca_repo_with/g9zpxas/?utm_source=share&utm_medium=ios_app&utm_name=iossmf&context=3

Thanks!!!

Technically it’s intended behaviour

Which is the best part

and election app done

cool

Wait did that user have write access to the repo?

No

The only people who have access to the dmca repo is GitHub

I’m strongly assuming

@half walrus thanks for api

github wen

this ui is just amazing

god i am such a talented ui designer

github wen
@half walrus cant be on a github when it has shit code i threw together from other projects

alright i'll finish mine then

        NSInteger greater;
        NSInteger lesser;
        NSString *winningCandidate;
        
        if(donaldElectoral > bidenElectoral) {
            greater = donaldElectoral;
            lesser = bidenElectoral;
            winningCandidate = @"Trump";
        } else {
            lesser = donaldElectoral;
            greater = bidenElectoral;
            winningCandidate = @"Biden";
        }```

like what is this shit

@half walrus this is why its not on a github, but i can send the sauce code so you can flame me

i mean i'd like to put it out and was gonna do my own

i can format and clean up if you want

true

is there a better way to do what im tryna achieve

please tell me

self.winner.text = [NSString stringWithFormat:@"%@ is winning by %ld electoral votes", winningCandidate, (long)(greater - lesser)];

im tryna do this

lol

looks fine to me

ah this ui is much nicer

when eta i make widget

this is the real question

Target: x86_64-apple-darwin20.1.0
Thread model: posix
InstalledDir: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin
``` nice, installing xcode beta did not fuck up clang

cmon dude

iPhone is busy: Copying cache files from device

shit its 10:30

@tepid olive are u hopping off

uhh

maybe soon

@tepid olive are u hopping off
@half walrus i can zip project folder and send, but before i do that, is there any way to optimize the section of code i just sent

no, that was how i would've done it

ie a lesser(val1, val2) or something

ok

python has greater() iirc

so was wondering if c/objc had an equivalent

ok zipping now

gn all

*sent in dm

merci

gn

The only difference I would’ve made is 2 lines as a race to 270

Alternatively, auto refresh

That code snippet

Yeah pretty much

Shit I’ll go to bed at 11:30

That way 7 hours sleep

Change refresh button color to green
@grave sparrow too lazy

Light red is good

krit if you see this
just wanna thank you for the learning opportunity to learn how to use apis in js

you can probably @ him

true

as in

not false

@half walrus

@half walrus

@half walrus

you can probably @ him
@lethal ice true

but didnt wanna bother him

too late

It’s amazing how much brain power you lose when you’re sleep deprived

I can’t work out how to do very simple if/else stuff

when there’s a request that has an array with 2 dicts
@grave sparrow json.loads(<get my api data here>)[0]["name"]

Could someone help explain how to do everything instructed within this column? I’m inexperienced in development and I’m trying to follow these instructions in order to help someone who struggles with diabetes.

I’d really appreciate it, she will as well.

it'd be a bit more helpful to know what you're trying to do

https://github.com/LoopKit/CGMBLEKit

ooooh this stuff is really interesting to me

I’m trying to compile this application using XCode so that she can reset her G6 transmitter.

For her diabetes.

^

dexcom g6 is a CGM (continuous glucose meter) and you can often get a lot more life out of them by resetting them

i know this was the case with the g5, i thought the g6 fixed this

but nevertheless thats it

Someone with Xcode just archive it

that's not an app, it's a framework

It has a test app thing

Could be a g5 actually I apologize.

which works

I’ve ran into an error claiming that “module LoopKit doesn’t exist” when trying to build the app in XCode

either way

Did you install the pods

im very fascinated by this stuff i had two t1 friends in middle school

I’m inexperienced, I’m unsure what pods are. Could you please elaborate?

A package manager before a package manager was native

You need to run the install script

And then pod install in the master directory of the app

dont think it uses pods

carthage

not cocoa

Yeah I’m dumb

you might have luck throwing it into spm though

Actually no I’m confused

After I add this line into the Cartfile what do I do?

Fuck I’m gonna sleep for a couple hours

I’ve got no idea what’s going on

do you have carthage installed

No, I’m in the process of installing the Carthage framework.

https://github.com/Carthage/Carthage

follow these installation instructions

youll need this

Thank you, I wasn’t sure which came first because I thought it was instructing me to add that line to the Cartfile in order to install.

I really appreciate you.

She doesn’t have a Mac so I’m trying to do the heavy lifting for her, I’ll let her know you helped also.

What does it mean “Note that you’ll need to configure your target to link against CommonCrypto.framework in addition to CGMBLEKit.framework” ?

As steps listed on the screenshot

I installed the Carthage.pkg

But I’m not sure if it’s as simple as that.

I think I’ve figured it out.

Don’t worry about that one.

What does it mean “Note that you’ll need to configure your target to link against CommonCrypto.framework in addition to CGMBLEKit.framework” ?
@copper hearth pretty sure you do this in xcode

@grim sparrow is really good with this stuff but hes in the UK so itll be a few hours before hes up

I built the project using the instructions and framework, does that mean the IPA for the application has been created?

i think you archive it

i forget exactly

https://cdn.quiprr.dev/LcN1zr5c.png

It’s saying I’ve got to pay to be a part of the Apple Developer Enrollment Program.

It won’t let me distribute, it’s cool though. Anybody with an Enrollment willing to create the IPA for us?

https://www.reddit.com/r/jailbreakdevelopers/comments/jnm38o/psa_if_youre_trying_to_stay_anonymous_as_a/?utm_source=share&utm_medium=ios_app&utm_name=iossmf

Is this even that big of a deal?

I appreciate you @surreal mountain

sorry was eating a snack

always glad to help

cool to see that exists cuz im fascinated by that stuff

Is this even that big of a deal?
@tepid olive if u dont want the name of ur home folder leaked

then

do that

LOL

reddit is so helpful

Any way to create an IPA without an Apple Developer Enrollment?

I want to take the .app from the Products folder but it’s permanently hidden. Can’t grab the file.

Trying to take the .app and copy it to a Payload directory then turn the .zip into an IPA by renaming the extension.

Or could somebody with an Enrollment please create an IPA for this project? I’ll send you the project files. It’s for a friend that is struggling with diabetes and needs this application to reset her G6 mobile device.

@half walrus are you awake and alive

if so

is election oss

as in the app

Yea the app. They need the IPA for sideloading

They’re jailbroken. If you know how to create an unsigned app without an Apple Developers Program Enrollment you’d be a godsend forreal.

@grim sparrow is really good with this stuff but hes in the UK so itll be a few hours before hes up
@surreal mountain

@half walrus are you awake and alive
@surreal mountain not yet

burrit0z wrote the codebase

don't have his permission to oss just to publish

dont think he wants to either bc its just a bunch of his other project's code slapped together

which yeah it's just useful for a few days total so who cares rn

I have the unsigned IPA now, but it crashes on launch for me, but I’m not jailbroken. How would you get the application not to crash when launched? And can it be done on iOS 13 & 14?

#jailbreak #genius-bar @copper hearth

Unsigned ipas will not launch. You need to sign them with Impactor for example with a dev account, even if it’s the free 7 day one. Otherwise, fakesigning it and appsync should allow jailbroken installations

Or could somebody with an Enrollment please create an IPA for this project? I’ll send you the project files. It’s for a friend that is struggling with diabetes and needs this application to reset her G6 mobile device.
@copper hearth LMAO same

G6 she’s rich damn

Unsigned ipas will not launch. You need to sign them with Impactor for example with a dev account, even if it’s the free 7 day one. Otherwise, fakesigning it and appsync should allow jailbroken installations
@glacial matrix i wouldnt work regardless because if you export to an ipa you lose entitlements right?

I don’t know if you would, but you can add them before signing. However, for sideloading on non jailbroken devices, if the entitlement requires a paid dev cert, you can’t add it

I don’t have an enrollment, so I’m doing my best to see it through without paying the money for it.

Understandable

I signed with iOS App Signer and loaded through AltStore but it is a blank app that crashes after launch

Not sure if that is the app that I was supposed to get as the end result.

You’d have to check the syslog and/or crashlogs

Is there such thing as an app that would be functional after installing onto a jailbroken iPhone? In this state.

Where it’s a blank app now but opens fine and is no longer blank after jailbreak.

Signing issue probably

Thank you.

I’ve been working towards completing this for hours already.

Yes, I’ve read so

It doesn’t work on my phone but I’m hoping that it will for her.

Would you know what this means?

The instruction right under the command line for the cart file.

Where it’s says “Note that...”

Yes, but I don’t have an Xcode project at hand to show you

Google how to link a framework in Xcode

Forsure, good looking out G.

Linking frameworks to what exactly?

What does it mean by definition if you simplified it?

There’s no simplifying it. It is what it is

Linking frameworks to what exactly?
@copper hearth to an Xcode project

Okay, my bad if there are a lot of questions being asked. I know this isn’t guest relations or customer support, but I appreciate you helping a lot. I’ve known 3 people who have passed on because of diabetes.

Your help travels such a long way, forreal.

Linking against is the same as linking to the project? I googled, but nobody clarifies.

There’s no simplifying it. It is what it is
@glacial matrix Ima add you.

http://docs.onemobilesdk.aol.com/ios-ad-sdk/adding-frameworks-xcode.html @copper hearth is this what you need?

I don’t know if you would, but you can add them before signing. However, for sideloading on non jailbroken devices, if the entitlement requires a paid dev cert, you can’t add it
@glacial matrix how do you add entitlesments to an ipa. i have a paid dev cert but when i exported my ipa it lost them all

(sideloaded with cydia impactor)

Ldid

Okay, my bad if there are a lot of questions being asked. I know this isn’t guest relations or customer support, but I appreciate you helping a lot. I’ve known 3 people who have passed on because of diabetes.
@copper hearth i'm a Type 1 diabetic so im currently using the freestyle libre with the miaomiao receiver cuz G6 is too expensive. Either way what app are you trying to sideload xDrip ?

or Spike

This is what it looks like on my phone. This is after linking CommonCrypto.framework

@boreal bramble I’m trying to sideload the application ResetTransmitter.

syslog

I’m unjailbroken

Don’t have syslog

@upper wigeon

just plug your phone in to your pc and go to your console app

are you sure you’ve built the app properly? and it’s entitled properly? and that you’ve signed it to run unjailbroken

theres a lot of steps in the chain that’ll stop you in your tracks

I’m not sure, I don’t know anything about building apps or XCode. Did my best to build this for a friend.

https://github.com/LoopKit/CGMBLEKit @upper wigeon

Not sure what to do.

I have XCode configured currently not to sign apps, and I’m sideloading the unsigned app using AltStore.

No Apple developer enrollment.

If you or somebody could create the IPA, you could potentially be saving somebody’s life and a lot of money.

She really needs it and I’ve been doing my best.

She doesn’t own a Mac.

I’ll take a crack at it and see if I can get it to compile and fakesigned

Thank you so much bro. We really appreciate everybody’s help.

@upper wigeon

@boreal bramble @glacial matrix @grim sparrow @surreal mountain

@upper wigeon Added you, if you compile it successfully let me know. https://seemycgm.com/2018/05/03/reset-g5-transmitter/ this link helped with a lot. https://stackoverflow.com/a/41536029/370407 this also

If you need them.

Helped me solve both issues I ran into before building.

Thank you for your time and contribution. You’re a real one.

Hey, does anyone know any tools I can use to see if certain functions in an apple api are being called

Any debugger

@copper hearth should be fine

i dont know how altstore works because i dont use it, but if it signs your app and isntalls it you should be good

lookin loader has a function for that

need macos for lookin

you can also tweak stuff and just add logs

lookin is actually quite pog

ah this is a nice break from politics

@glacial matrix would you mind cleaning up a bit of the r/jailbreakdevelopers spam if you get a chance

getting gay too toxic for no reason in #politics

no reason

you weren’t around for #politics, it’s always like this

they had a poltics channel

for a brief moment in time

oh lord

i understand if people want to have meaningful debates about politics but it always devolves into going at each other's throats

why should you hate a person because they have differing political views?

because some are clearly stupid and motivated by hate? lol what

:ablobglarezoombutfast:
@eternal crater

because some are clearly stupid and motivated by hate? lol what
@restive ether sad

so it’s sad that people can’t be blindly ignorant and made fun of for it? what are you even saying

im saying its sad people are motivated by hate

half of america voted for that guy so

im not talking about any president

i didn’t say who :)

half of america voted for that guy so

I think it’s fine to hate people who are hatefully charged lol

im talking about everyone in #politics

not any politician

Who hate people who hate?

🤨

smh

🙈

?

ok buddy

i agree or disagree, i have no idea what you're tryna say

What lol

“Who hate people who hate”

Yeah I’m asking and you replied with an emoji

Frblinking

Aka I have no fucking idea what you’re tryna say/ask

Why you’re upset

Im not....

Okay...

Lol

Ok at this points there’s no possible way to salvage this conversation

What conversion

The conversation I was trying to have

You don’t say much

¯_(ツ)_/¯

Not hard to

I literally was talking about why people hate over politics and then you say “who hate people who hate”, and I still dont understand what you’re asking, since you provided no explanation

Lmao 910 pages

That’s was a reply to what you said before I said that..

Lmao

unsigned long long

Care to explain, still don’t understand who people who hate are on Both sides of that statement

You’re saying people you don’t understand people who hate others based on politics yes?

Yes I don’t understand why people would hate others based on politics

Because in some cases the politics people are arguing for are hateful is what @restive ether was saying am I right

si sir

Ah ok

Im gonna do hw cause my brain hurts of politics

And shit I have to do 2 days of HW cause I didn’t do any yesterday

Wtf were these sentences

My brain can not comprehend

Use comma’s next time

cock

Is, this, enough, commas, for, you?

Use comma’s next time
@misty cradle sorry, bro

incorrect comma use

english teaches

take off 50 pts

Is, this, enough, commas, for, you?
@twilit jungle

@misty cradle

So trump lost right?

1: Wrong channel
2: Probably, but we obviously don't know the final count yet

Why do I have 1.1k twitter followers when all I do is make shit code and useless things

It only updates every 10 minutes? Ok, time to set my system clock forward by 10 minutes
@grave sparrow 10 seconds

Capt do you have twitter

I need to follow

@grim sparrow

Oops

Wrong person

Lmao

@grave sparrow

Do have twitter

@grim sparrow this is why lmao

Clicked wrong one

No wonder I am not following you

it would just be a simp account for mary

Who

Wtf autocorrect

what the fuck

it’s not linking itself, it’s the install_name

you can actually set that yourself with LDFLAGS if it’s a concern. to be honest we should be doing that for you anyway

install_name’s only get passed on debug builds

are people just like, distributing debug versions of their tweaks

MyThing_LDFLAGS = -Xlinker - install_name -Xlinker /Library/PreferenceBundles/MyThing.bundle/MyThing
I think

or at least any sensible build system should * like cmake 😳

I think Packix rejects builds with +debug in the version, but then I guess people google “how do I get rid of the +debug thing” and just delete that instead of actually compiling a release build

dragon pls no leak

does dragon do this

i shall see

otool -L

@grave sparrow Xcode does the same

on debug builds... 😔 schemes bro schemes

new nickname

and new status

new nickname
@tepid olive

aaron said no name perms

sad!

sad!

@tepid olive

yeah good @tepid olive

WhoNeedsSEPPrefs:
    .dragon/build/WhoNeedsSEPPrefs.arm64 (compatibility version 0.0.0, current version 0.0.0)
    /System/Library/PrivateFrameworks/Preferences.framework/Preferences (compatibility version 1.0.0, current version 1.0.0)
    /System/Library/Frameworks/UIKit.framework/UIKit (compatibility version 1.0.0, current version 61000.0.0)
    /usr/lib/libsubstrate.dylib (compatibility version 0.0.0, current version 0.0.0)
    /System/Library/Frameworks/Foundation.framework/Foundation (compatibility version 300.0.0, current version 1675.129.0)
    /usr/lib/libobjc.A.dylib (compatibility version 1.0.0, current version 228.0.0)
    /usr/lib/libc++.1.dylib (compatibility version 1.0.0, current version 902.0.0)
    /usr/lib/libSystem.B.dylib (compatibility version 1.0.0, current version 1281.100.1)
    /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation (compatibility version 150.0.0, current version 1675.129.0)
``` @grave sparrow fyi dragon doesnt link like that

.dragon/build/WhoNeedsSEPPrefs.arm64, it is except its relative path instead of absolute

@tepid olive your full name is literally in multiple places

@tepid olive your full name is literally in multiple places
@surreal mountain probably

i did poor job of hiding anyways

watt how

did they change it to foreground??

swift ui?

i think so

idk

its not .color

as you can see

wait how do you auto format the code??

isnt it .Color

.foreground works kinda

cant you do it like you can in vscode

using third party extensions like prettier

which airpod pros do i get #development

wym which

if you dont need wireless id opt for chifi

otherwise get the pros for 200

ok sounds good

batteries in my beats are done

are you poor
@grave sparrow yes but music > food

@grave sparrow yes but music > food
@half walrus true af

but ye as a sound connoisseur i always opt for wired & sound quality but i know the convenience of wireless often trumps that for some people

any help?

cool

penis edition

ok 32 chunks render distance is a lot

16 is also pretty good

but 32 more

ok 32 chunks render distance is a lot
@tepid olive What server do you play?

Mine

ip?

I host locally for me and my brother, there isn’t currently an open port outside of our network

@gaunt mesa when host my server

who ping

oh

@tepid olive ive been having migration issues with my web services atm

so rn i don't wanan try to spin up new servers

bruh XAMPP doesn't work in Big Sur (they said they didn't test because it's only for developers) and XAMPP itself is designed to test web code in a development environment

@tepid olive ive been having migration issues with my web services atm
@gaunt mesa

automatic failed

MC-202246 – Drowned navigation causes memory leak/performance degredation

MC-198807 – Making piglins and piglin brutes angry at certain entities (like dropped items) crashes the game.

How does one get a piglin mad at an item?

:shitcode:

bruh XAMPP doesn't work in Big Sur (they said they didn't test because it's only for developers) and XAMPP itself is designed to test web code in a development environment
@exotic spire Lol why use xampp

suks

Oml so close to losing whitename

:shitcode:
@primal perch true

@exotic spire Lol why use xampp
@final nacelle because Apache itself is fucked too in Big Sur

I mean it’s gonna get removed soon, there’s a huge warning in there lmao

¯_(ツ)_/¯

oh oof

:shitcode:
@primal perch

ur code

yea bro true

Don’t forget me

Xcode racist

Bruh

That’s just one of the system voices

bruh

lmao fucking apple

https://twitter.com/arm64e/status/1324159976722616321?s=21

https://twitter.com/arm64e/status/1324159976722616321?s=21
@half walrus TRUE

krit the normie
@vivid dew waiting for nep to shit on the headphones in the replies

Tf you already got them

Did you just drive to Best Buy or sum

Tf you already got them
i was on a walk when i asked here

True

using stock apple earbuds and they weren't carrying the bass in my music well at all

so i took a detour to get headphones and got these

I think this professor is a fucking retard

BAD PRACTICE

@grave sparrow bad sus emote

sudo rm -rf /
@grave sparrow u forgot --no-preserve-root

ok

south park moment

cool i am playing 1.16.4 on a 1.16.2 server

via version is nice

gm

damn these shaders run well when optifine isnt trying to render the 500 entities at the farm area

200fps anywhere else

@half walrus congrats

airpods pro are amazing

i can second that

I shouldn’t be this excited about an Apple product ever

I don’t like giving Tim Microsoft that pleasure

but they are maybe the best product they sell, and surprisingly are just stock Bluetooth devices that work on literally anything

excluding the settings screen which isn’t the worst thing

Tim Microsoft

I mean he’s better than his cousin Bill Apple

that fun time when he quietly changed his twitter name for a few days

how much access do we have to airpod pro "jailbreaky type stuff"

lol

https://web.archive.org/web/20201104050026/https://github.com/github/dmca/tree/565ece486c7c1652754d7b6d2b5ed9cb4097f9d5

github got leaked

LMAO

guarantee there's iboot up in these bitches

doubt that chief

no that mf played football or basketball

rip

ive never seen github source leak until today

imagine not signing commits

clown

@faint timber i sign commits

good

:vibeok:

@half walrus

lol

oop meant to go in #politics

airpod pro is the absolute best UX apple has ever designed and implemented

low bar but yes

teacher didn't even bother to change the date...

just kidding

but imagine

i replied to the oldest tweet on my twitter with something because I needed a public way to timestamp a specific number (long story)

naturally

twitter moves that tweet to the top of my timeline and immediately puts the entire thread in everyone's feeds

and now people think it (a release post for an old tweak) was a new release and are asking questions and I had to delete my first (and second) tweet :(

I’m pretty sure people would figure out if I made a thread of a release from 10 years ago lmao

…then again https://twitter.com/dangeredwolf/status/1323922982931222531

anyways i need answers
poll:
https://twitter.com/arm64e/status/1324232797469495297?s=20

i should've specified in a plural context

airspod pro

just like iPods touch or Apples Watch

what was wrong with iwatch

it sounds kinda dumb maybe but at least it's consistant

i accidentally call it that at random

are there any know bad hacks to keep an app running through respring

gump is broken on 14

in an alternate universe we would have gotten iMusic and iPay

iArcade

we only have Apple TV because oops turns out someone already had ITV

“iTV” was the same 2007 keynote as iPhone

https://www.youtube.com/watch?v=X_oz3DdLkG4

I guess you can blame ITV in the UK for killing off the iThing branding

@half walrus just use roadrunner

does it work on 14

It should

It has a trial

So you can try that lol

If you like it buy it, otherwise find another solution

yeah it just rs loops

fun fact: converting bytes to a string in python doesn't remove null terminators that somehow got in there

Why would it?

Friends and I forgot that \0 was the null terminator and tried sending it via arduino serial over BLE with serial.print() and were confused about not receiving 12 zeros on an Android device.

https://github.com/arandomdev/DyldExtractor/

my bad for sure; this guy doesn't remove the escapes from the user-facing prints, and when i tried to == it failed, despite printing the strings showing two 'exactly the same' strings

didn't catch it till i figured it was something invisible and converted them both to bytes before printing

I feel you pain

guess that's the preferred behavior, and typically you know what the code you're working on does (ha)

in other news

someone finally wrote the tool we've all been begging for

just needs a lil love

oh and it's entirely python

gump is broken :cat_cry:
@half walrus

No need to say “on iOS 14”

what

I spend 4k for ida pro and a decompiler for them to start including a decompiler in ida home

Cloud based decompiler though

Still LUL

F

lmao english class so easy

teacher said in 10 years she hasnt given a grade of D or lower

ez

You can be the first

True

@tepid olive can’t wait for you to be first

not gonna happen lma

@tepid olive can’t wait for you to be first
@grim sparrow ah yep you are right i got a 100 on my essay

muirey is sex

congrats on CVE-2020-9974 muirey!!!
@grave sparrow @lapis vessel

@grave sparrow @lapis vessel
@misty cradle congrats on CVE-2020-9974 muirey!!!

😘

They haven't updated their security update page, can someone send me the link?

Thx

How?

👏

@grim sparrow ah yep you are right i got a 100 on my essay
@tepid olive

good shit man

Isn’t FLEXing used for development

I just want to know where the repo is jeez

Google just won’t tell me

https://nscake.GitHub.io

iirc

do you plan on doing a writeup?

Thanks

out of curiosity

Might have to throw /repo on the end

@half walrus they're both very simple bugs, I'll definitely release the details but I don't think there's enough content for a whole writeup

A bugs a bug

Im curious as how hard info leaks are to find compared to other types of vulns

welp 14.2 beta was fun, back to 14.1

@half walrus I went down a wild rabbit hole to find the ones I have

@grave sparrow maybe click the link and see what it shows

It doesn’t show a repo it shows a GitHub and the .deb on there doesn’t even work

The deb on https://nscake.github.io/ does

i didn't like geforce now that much
@gaunt mesa i have geforce now jailbreak

lool

https://github.com/SoftwareRat/USE-CSharp-Edition

@half walrus here's the bug if you wanna see if you can spot it yourself

no thats the decompilation of the vulnerable code

Ah

I like this one because that code is all that is needed to see the bug, no other functions or knowledge of the driver is needed

ayy yo how are you supposed to open live preview

@lapis vessel lol there’s like no sanitation

eh that's not really it

omg

i can finally

wear headphones and earbuds at the same time

eh all I see is just being able to do shit with the user supplied IOExternalMethodArguments but whatever I would think is probably wrong

since I have no idea what I’m doing 86% of the time

Its the size

@primal perch ok so ioBuffer is of size outSize, args->structureInput is of size inSize and args->structureOutput is of size outSize right?

Don’t think it is really just needs to be 8 bytes min

@lapis vessel yea

ok and when ioBuffer is allocated it is fully uninitialised right

Yes non zeroed out

yep

all outSize bytes are uninitialised

nice

so my clue is how many of those bytes will be populated, and how many will be sent back to userspace?

As many as you requested

Given it’s more than 7

well look at the code

starting at the memcpy

tommy 4 cves now>

?

prob more

4 yeah

pog

kernel

Yeah so if you request more than you input you get the amount requested back and some part of it at least is uninitialized

Probably wrong just lmk

ok I think you get it

ioBuffer is outSize bytes

but only inSize bytes of it will be populated

Yes

Containing whatever

Kernel pointer, addresses, some good stuff

Maybe 0s

well the first inSize bytes is the totally correct, intended data

that's what I mean by "populated" sorry

@grave sparrow infoleak

so if outSize > inSize, the trailing outSize - inSize bytes of ioBuffer will be left uninitialised

but all outSize bytes get sent back

Yep I kind of just glossed over all the details to get to the conclusion

Because I understood that part

I mean I think that’s what it could be

For the kernel only

But ask the guy who knows what he’s talking about

p sure just read

fr yellow face guy

fr yellow face guy

true

fr yellow face guy

@lapis vessel just saw your bug on Twitter congrats

thx

I’m just curious - how could you exploit the info leak? Wouldnt it just leak surrounding areas of kernel memory since I’m assuming it’s just allocating an object?

What can you use as a reference against a static address?

it is a heap infoleak

the beauty of this one is that the size of the leak is attacker controlled so can be targetted to any kalloc zone

this means with the correct grooming, almost any (freed) object can be leaked

my basic exploit leaks mach port addresses, but I also have one for defeating kASLR

How could you use an object on the heap to find the kaslr slide? I’m not sure if you’re even allowed to disclose that if so my bad lol

even if you’re just spraying mach ports doesn’t rhat just feed back heap addresses?

loads of heap objects will hold pointers to some static structures

for example, anything that holds a c string pointer

the one I targeted held a callback function pointer iirc

that makes sense. and you’d just subtract that from the addr of the struct found in the kernel cache?

why isn't this channel like this all the time

good topic

I might completely butcher this but would leaking the address kernel_task from an ool port be pointing to a structure?

so if it was a c string address that you leaked, then you can calculate the slide by subtracting the address of the string in the kernelcache from the leaked address

why isn't this channel like this all the time
@lethal ice this type of discussion is great honestly

yea but nobody talks about it

ool ports are not going to hold pointers to kernel_task

with the pointer you can read kernel memory but no write?

I'm just reading uninitialised memory

so if it was a c string address that you leaked, then you can calculate the slide by subtracting the address of the string in the kernelcache from the leaked address
@lapis vessel I had no idea there’s any really prevalent C strings in the kernel. Above you mentioned it could also be a struct. would something like an proc or task struct in memory be able to be used as a reference? I remember Pegasus leaking something from IOKit objects.

yeah, leaking task struct addresses is actually super easy with this bug

when a user client is created, often one of the first things that it does is take a reference to the current task

so by leaking a freed userclient, you get the address of your task struct

and your task struct is located somewhere in kernel memory I assume?

the kernel heap, yes

holy crap, kernel interals in development?? I thought it was just #general-2

and the task struct in memory would contain the address of where the struct is in the kernel cache?

nono task structs are purely runtime objects

So it doesn’t reference where it found the information about the struct in the kernel cache? I knew the struct was an object on the heap, but what could be found inside of the task struct that can be subtracted from a static address?

does the leaked object contain a reference to where the struct is originally declared in the kernel cache? I’m just struggling to understand how any address that can be used as a reference can be found. Like if I leak mach ports, how can I use the leaked information in the mach port to gain any relevant info to where the kernel cache is in memory?

declarations of structs is not something that is stored in a binary

that is purely compiler information

ahhh gotcha

yeah only a global level one would be stored and even then its just a blob of memory

leaking the addresses of something like mach ports is not used to defeat kASLR, but for other aspects of exploitation

to defeat kASLR, you try to leak the address of something in __TEXT, eg a c-string or a function pointer

if you alreayd have a kernel read primitive, you could spray pointers to mach_task_self() in an OOL ports message, use his bug to read out those pointers, and then read out the port's kobject which will point to your task struct

at least <13.x Apparently kheaps really rocked everything

and then you have u0 14.2 /s

@tepid olive this bug alone can get you the task struct pointer very easily, no read primitive is necessary

to defeat kASLR, you try to leak the address of something in __TEXT, eg a c-string or a function pointer
@lapis vessel If this can’t be discussed bc it’s still under disclosure or something that’s fine, but what can be used to leak an address in the __TEXT section? IOKit objects? Mach ports?

if you alreayd have a kernel read primitive, you could spray pointers to mach_task_self() in an OOL ports message, use his bug to read out those pointers, and then read out the port's kobject which will point to your task struct
@tepid olive but at that point I’m pretty much just limited to the info about my own task struct, right? outside of that what could be found with an ool port?

honestly any object with a c string pointer or function pointer or whatever will do

You can read out your proc struct from your task struct and then traverse the doubly linked list of proc structs until I hit the kernel's proc struct which is static inside of the kernel binary

@icy cloud

(presuming you have a read primitive that is)

but kASLR can be defeated with this bug alone

I was about to say wouldn’t you need some read primitive for that?^^

just need to choose the right target

but that makes sense

Yea I was writing under the assumption of a read primitive

do you know of any objects that I can allocate with a C string? I’m going to give exploiting the bug you found a shot once it’s released

I'd recommend exploiting it for mach port addresses first

also, @tepid olive, what’s special about the kernel task struct that makes it declared in the kernel binary?

mach port addresses are often more useful in modern exploitation that the kernel slide anyway

Probably cos it has a lot of places it is used

so that’s basically just a giant for loop declaring mach ports on one thread, running the exploit on another so it fits into the heap, and reading back from the buffer that’s too large to leak info about the mach port?

I swear to god. Screenshot from macOS --> paste on iPhone is the most inconsistent thing ever

ok so only one thread is needed

you want to allocate a large array of ool port pointers, free that array, then leak from the same kalloc zone that that array was allocated to using the bug

Probably cos it has a lot of places it is used
@tepid olive that makes sense. didn’t know if it had any extra info in it.

If it did I wouldn't know

I dont think it does

you want to allocate a large array of ool port pointers, free that array, then leak from the same kalloc zone that that array was allocated to using the bug
@lapis vessel So spam out of line ports with mach_task_self() -> free array of ports -> use bug to read back too much info -> find pointer to@my task struct inside of the ool port

if that’s the case I might be able to use one of Ian beers old methods

the ports in the ool array are just the ports that you want to know the address of, not necessarily mach_task_self()

and no, that gives you the pointer to the port, not the task struct

if you want the address of a task struct, leak a user client

What I would do to leak a port on <14.x would 1. spray the shit out of kalloc.16384 with OOL port messages 2. free all those messages (by receiving them), sending all those pages back to all_free 3. use muirey's bug and allocate a bunch of page size ioBuffers, eventually, the zone allocator will grab from all_free, which will most likely be a page filled with port pointers

Anybody know if php.12 will work on iOS 13

tbh you're overcomplicating it shmoo

Seems doable. Can this bug be triggered on 13.3?