#development

i would say its hardly a POC

this could be a coincidence

like

0.2 seconds

doubt it

Remember that a few nanoseconds is a sizeable difference in resprings

milliseconds are big numbers in computing

i'll wait for a comparison where we can actually see a difference in the seconds

true

they’ll probably implement opengl yeah

and vulkan

i mean just so we're clear, the M1 is already capable of some impressive stuff

here's my linux vm

fedora

more like

tip my hat

based fedora

m'linux

fedora linux:

fedora the clothing item

only like 1% can pull it off

dont miss the display info

without being cringe

(i am the 1%)

couldnt figure out why my code broke when the function ran another function that returned a struct then i saw this lmao there goes 3 hours https://developer.arm.com/documentation/den0024/a/The-ABI-for-ARM-64-bit-Architecture/Register-use-in-the-AArch64-Procedure-Call-Standard/Indirect-result-location

apparently thats the objc_msgSend_stret killer so now they route everything through msgSend

when pic

:camfedora:

git format-patch is cool

smooooke weed everyday

i'm using it to patch my gitconfig to work for the docker image i have with my dotfiles

linux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 releasedlinux 5.17 released

aka remove gpg signing and stuff and also remove the override i have that makes it use ssh instead of https

okay

only thing is the names are a bit weird

can you do @import Foundation;?

can you do @import Foundation;?

can you do @import Foundation;?

No

false

i dont either

but i heard its good practice

so im starting to try

its also good practice to send 100$ to this paypal

https://paypal.me/DGhost

on it

I got confused and bought 1200$ worth of meth

I'm so clumsy

rip

it be like that

it do sometimes

mfs named deep

Is there a tweak that does this? I tried doing it myself, but seemed like loading a widget manually is quite complicated.

I know one that displays custom stuff in that place, but it doesn’t actually load the real native widgets

Ah okay, I want something to make something that can use the official widgets

hello guys, does anyone have any documentation for substrate ? I need to do some hooking and inject a lib into the process.

there was LSWidgets I think?

https://iphonedev.wiki/index.php/Cydia_Substrate

Real?

is it works for iOS 14 + checkra1n ?

it is works on any versions

thank u @weary heath =]

Cynder did a lot of work with the widget loader, they'll probably know how to load it manually

sorry already sent $100 to shallow patel

I'm on 22.04 devel so I was already using the snap

it's been having some issues with replicating the state of the host gtk config with theme and fonts, but I guess they've figured it all out now

if you've seen any of my recent screenshots from linux Firefox struggled to find my custom system font and kept falling back to times new roman lmao

and also wouldn't switch themes when my system switches light/dark mode, but that at least is definitely fixed

mozilla moment

can’t wait for them to go under, it’s inevitable

mozilla really tryna expand when they cant even get their shit together

mozilla keeps downsizing because they make no money lol

they killed off any good possible product and kept stupid ones

mozilla vpn anyone

it's a shame that they've been running the company the way they are, but at the same time I don't even know what product they can really offer to the world aside from Firefox, Thunderbird, and MDN

i miss firefox send that’s all i know

they did kill half the secondary things that were somewhat handy like Firefox Send

i used it a lot

lmao snap

that was the one i was mad about most

yeah aka whitelabelled Mullvad lmao

still no idea who legit uses pocket

mozilla runs their company like google but they don’t have the capital to be doing that

I mean nothing wrong with Mullvad, it just comes off as a cash grab when they have nothing to offer on top of an established VPN provider

they really push that hard in Firefox huh

man kinda sucks to think in about a few years every browser with any user base will be chromium based

maybe one day someone will actually use it instead of having to disable the extension

firefox ain’t gonna last long

i’m sure some rando linux people will pick it up

yeah they won't

maybe give it the treatment mozilla was neglecting

mozilla down so bad they made the startup page an ad for a movie at some point

i think it was Turning Red?

not even a good movie

feels like Mozilla needs to be dissolved and its assets + employees inherited by some other big OSS company that figured out the making money thing

and they made it sounds like they enjoyed that movie

and not just disney paid mozilla

i sure hope it’s canonical 🙏🏻🙏🏻🙏🏻

my favorite company

fr fr

all linux distributions of firefox is now exclusively through snaps

.

heh, Canonical, the company known for

• Ubuntu
• a cancelled DE
• a cancelled phone
• charging subscriptions for kernel livepatching

did you see their hiring process

they really fell off

where they want you to work for free

unity 8/mir could've been great

• stubbornly keeping an Amazon search integration until they finally decided "actually yeah turns out that was a bad idea lmao"

Unity was beautiful

we wanted unity 8 and all we got was gnome 3 with a dock

gnome

I still just can't like Gnome perfectly

https://tenor.com/view/seriously-come-on-come-on-man-wtf-wtf-blink-gif-14063967

it's good and very macOS-like, but Unity was still better

no way unity 8 is still developed

https://github.com/ubports/unity8

I swear the community picked up Unity 8 as Yunit or something

absolute yunit

but, like, I don't think it went anywhere because those people didn't really have any clue where to start with the codebase

random people coming in to fork a project because they liked it, not because they have the experience to make it a reality, never ends well

yunit fell off or something

yunit.io is now an NFT thing

🤢

lmaooo

sounds about right

get some goodwill by claiming to do something people want, then never actually do it, and recycle the name into a cash grab

lmao, found a link to this repo in that Firefox snap thread https://github.com/winepak/applications/tree/master/com.microsoft.InternetExplorer8

IE8 on Linux, just what I needed 🤪🤪🤪

I really like KDE

I really don't

really?

I just want a DE that works like modern Windows/macOS, not an infinitely customisable/extendable nightmare

I've done literally zero customization to it

deepin

and it's great

gnome's defaults are super ugly though

yaru is nice

aka communitheme which I just have to mention again because someone seriously thought "communi-" was a good name

I tried to install the IE8 flatpak but apparently winepak has decided to not bother renewing their ssl cert since January

and the GPG key expired in 2020

Ubuntu devel update: I can no longer open any apps because of a missing Wayland symbol in libgdk3

BASED

discord wont let me paste this screenshot

is it Discord or KDE sucking

tough competition for suckiest software

firefox probably

kde is literally the best

it would be xorg sucking rather than kde in this case

whcih would be unsurprising

taskbar is literally windows 11 loll

how

I mean a way less polished version of it

and the win 11 one is basically the same as win 10

i cant tell the difference other than centered which it isnt on kde

have you used it? in general it's far more polished, with nicely done animations

idk it seemed about the same to me

doubt any DE knows what animations are aside from windows shooting to and from the taskbar on mini/maximise

kde has tons of animations

the launcher sort of fade-slides in

ok that doesn't count lmao

ok then what kind of animations are you talking about

there's no shortage of animations in kde

plus there's tons you can enable or change that arent enabled by default

true

peep the transmission in the corner definitely not pirating a movie

i cant tell the difference bweten glide and scale for window open/close animation

taskbar icons bounce up and down with minimise/restore, "push in" when you click them, cutely slide across when a new icon opens/closes

see if you can find it on youtube or something to see what I mean

wdym the icons bounce when minimizing

there is the minimize/restore animation by default of course

it's pretty similar to windows even

because it looks all thoughtfully done, not just we have 500 animation options have fun picking one that looks close enough

what go library do y'all recommend for creating a prompt?

a shell like prompt

i'm going mostly by defaults right now though

and the defaults are basically windows

this is just a random video that came up first in search but watch the taskbar carefully https://www.youtube.com/watch?v=k1J0pephmSY

and also i dont remember the push in animation either

not the best example sorry

halfway through he opens cmd and you can see the taskbar sliding across neatly

oh it's completely different than 10 wtf

right

i never noticed that

it literally is completely rewritten

well kde's defaults are basically identical to 10

to the point of missing obvious features like dropping files onto icons

what would tha tdo

open the file in that app

on the taskbar though??

not the desktop

yes, taskbar

well, although Windows has never supported dropping files directly on taskbar icons, never understood why

you have to rest the cursor on the icon, let the window open, then drop it on the window

but the new taskbar broke that feature, it just shows a 🚫 and refuses to open the window for you

don't understand why macOS is the only OS that implements dropping files on an app in the dock

ive never used that

I basically rely on it

can drop an image straight from a discord window onto Pixelmator

nerds.

oooo i can draw on kde with the mouse mark option

even if Pixelmator isn't running

Saw this in my Pictures folder and figured y'all would enjoy

thank you

@restive ether you especially 😉

gitea discord server

not sure what 70’s adult films you’re watching but good for you

kde connect is cool

90s

i never look at it

cant believe you are looking at my servers

It's a very recognizable logo

I love how KDE has the keep window on top thing

It's so useful

and I always want it when on macOS

YEAH

not even windows has that afaik

literally the most useful feature

no idea how windows and macOS haven't added it yet

definitely not using it to keep my hw window on top while typing into wolfram alpha beneath it

why not open them side by side

shut up

because then discord is all vertical when I switch to it

and whys that a problem

anyone else love when drkonqi coredumps in your home folder every day

for context, drkonqi is plasma's crash handler

nice

funny guy

ok

i guess

throw std::runtime_error

I tried doing this in rust but wait rust doesn't have throw and try and catch

you are welcome

rust

i dare you to inject 69,420 runtime errors into my codebase

What exactly is supposed to happen when I hook an IVAR?

objective-c class's have object variables, there is also something else called a property for the class the property is an ivar under the hood, when you hook it you can modify that property in the class

done

@blazing lotus

Say if I was trying to change an IVARS property like just characters do I have to make arguments to set the original text to what I want so like: -(void)setTextstorage:(id)arg1 {
%orig(@"deez nuts.")

oops forgot to put a closing parentheses but you get it

@faint timber oh and thank you btw

and would the top look something like this

@tepid olive NSTextStorage

or @interface RCTView : NSTextStorage*_textStorage {
RCTTextView *_textView;
}

• (id)sharedInstance;
  @naive pollen

oh yep, they broke it with the Windows 7 redesign

rip those users

Erm

so I suppose it's less bad that the 11 rewrite initially broke dropping files altogether

Erm can someone help me just by reading my message above and telling me if I’m doing it right or

What I’m doing wrong

When you’re declaring an interface you wouldn’t need to put the ‘NSTextStorage* _textStorage’ because your interface for RCTView 1 doesn’t inherit anything from NSTextStorage, but that’s besides the point

You would just put ‘NSTextStorage’

Ah ok

‘NSTextStorage* _textStorage’ because you just need to put the classes name, not an actual instance of the class

So is everything else correct

Like the hooking on the ivar

And the argument to change back to orig

@indigo peak

Oh wait

idk can you send the code?

I didn’t put it in

Sorry I just realised

MSHookIvar<char>(self, "_textStorage");

and then the argument

(void)setTextstorage:(id)arg1 {
%orig(@"deez nuts.")

-*

and what order would it be in? Establishing a private class , hooking and voiding, then making the argument?

Hang on 1 second

I just got to school

Let me sit down

oh ok lol

Thank you for the help btw

Why would you even need to hook the iVar like this

Why can’t you just do this

Isn't hooking just monitoring the memory address and changes? I want to keep a permanent binding on it

I tried and it didn't work

So maybe I have to hook into the IVAR first then try the argument

And having to hook first to edit haha

Hooking is done once

very true

thank you capt

@grave sparrow besides hooking NSURL and URLWithString, how would you grab every request made from the device

Like through a tweak

Like what you sent yesterday didn’t work

Idk it compiled just no output

I tried putting it on discord, and before you go on ab dIscORd sUCks, I know and I know it probably@isn’t calling those methods

But I’m not sure what it would be calling

Since at some point discord has to call an objc method to make a request, right?

That too

Idk I’m at school rn so I can’t do anything

I was just wondering if you knew anything

Because my logic is right? Like at some point it would have to make a C based request

Everything can’t just be react native

Right?

@stuck wyvern would you happen to know?

probably look at iokit networking

I have the stupid

I barely know shit about tweak development, I just know enough to mod Discord to my needs

Talk to me again after the coffee has hit

https://github.com/facebook/react-native you can look at the source of react native, there are some objc calls in there

tweak devs when an open source library: pain

Been through their code to figure out a good amount of shit with that

tweak devs when they reverse engineer for 10 hours to learn one thing: so pog and worth

that's so me

that's very true !

But hey it made my tweak actually usable as a standalone tweak

before that we used to patch the whole ass hermes engine

that was pain

Yeah I just started lookin through and found /Libraries/WebSocket/RCTReconnectingWebSocket.m

@stuck wyvern why i hate amd

L

this was 5 months after the gpu launch

glad i have a 5800

that seems for websockets, if you want http requests this is probably a better place https://github.com/facebook/react-native/blob/8bd3edec88148d0ab1f225d2119435681fbbba33/Libraries/Network/RCTNetworking.mm#L280

5600 XT here

wait nevermind

i have a 6800

dont even know what gpu i have

460 gang

runs monterey tho

so we’re bing chilling

yeah same

12.3 gang

runs it better than the newest nvidia cards

not hard when there’s actual driver support

gt 710 is smoother in macos than my 3070 ever was on linux

not a joke sadly

Or do like me and hack discord's js code instead

but yeah hooking RN classes works pretty well

I hook one of them to do my code injection

Yes I know

🗿

might fuck around and try to do a beta release this friday, I've documented more APIs

I just need to make a website that's not just "cum" and write a proper guide for installation

probably gonna use github wiki for that

oh cool ig someone updated the profile readme lmao

I need to look into settings for plugins but I need to get a fucking UI done for these

still haven't figured out how to hack Discord's router properly

It's even more annoying when I know exactly what's to patch but can't find a proper way to patch it

I might need to do some stupid hooking early in startup to climb down the tree of components

Yeah I can imagine, I wanted to hook RN classes yesterday, but I couldn’t find the class

Look harder, I've been through their code a good amount of time, it's not that hard to find stuff in it once you figure it out

https://tenor.com/view/you-have-alerted-the-horse-horse-gt-when-the-gif-24722142

I gave it a a solid 5 minutes and then started playing rocket league

understandable

I didn’t really search that hard

running macOS is good way to make sure I don't end up procrastinating by playing games

Just use a debian cli, it’s a good way to make sure you don’t do anything but code

more like sudo apt update every 3 seconds

https://tenor.com/view/macos-mac-book-mac-mac-users-macos-users-gif-23501466

same

running a 32 bit program <<<

false

me when

i forgot

to update

so has your mother

yea in bed

she slaps

literally

anyone know what function the alarm stop would be in ios 6

if so would it be in here somewhere
https://developer.limneos.net/?ios=6.0&framework=MobileTimer.framework&header=Alarm.h

or, how could I find it

i have a powdersn0wed iphone 5

ios 6.1.4

and also hide battery view too while im at

its for a iphone 4s i use as an alarm

is it possible

to just

disable a class

entirely

like

SBBatteryChargingView

i have theos and stuff

just decompile Springboard and then remove the SBBatteryChargingView.h and recompile

sir

how do i disable

SBBatteryChargingView

oh also

SBBatteryReflectionView

idk you could probably hook SBBatteryChargingView and when it does -(id)initWithFrame:(CGRect)arg1 type:(int)arg2 ; call dealloc or something

idk

or just return null for -(id)initWithFrame:(CGRect)arg1 type:(int)arg2 ;

no

on the lockscreen

ok got it working

somewhat

its the void now

ok now im gonna see if i can not make lockscreen bg change

@grave sparrow

%hook RCTNetworking
- (id)buildRequest:(NSDictionary<NSString *, id> *)query completionBlock:(void (^)(NSURLRequest *request))block {
    NSLog(@"%@", query);
    return %orig;
}
%end
``` didnt work

:(

Why not just set hidden???

@grave sparrow i lied, it works, i didnt inject the tweak

@grave sparrow can i just set @final stoneerface to null

fuck off discord

@final stoneerface SBBatteryReflectionView : UIView {

@grave sparrow

i dont want these

i want the background set

to

my normal

not black

https://developer.limneos.net/?ios=6.0&framework=SpringBoard&header=SBBatteryChargingView.h

i want those nuked

not exist

SBBatteryReflectionView
SBBatteryChargingView

oth

both

i have these so far

yes

battery is gone

but i want

background normal too

it changes black when i plug it in

a

https://developer.limneos.net/?ios=6.0&framework=SpringBoard&header=SBBatteryChargingView.h
https://developer.limneos.net/?ios=6.0&framework=SpringBoard&header=SBBatteryReflectionView.h

these

Wait where?

-(void)setTextstorage -> -(void)setTextStorage

Do I have to refresh the app or something because nothing is working

%hook RCTTextView

-(void)setTextStorage:(id)arg1 {
%orig(@"Lig deez nuts.")
}
-(void)contentFrame:(CGRect)arg2 {
%orig(_contentFrame)
}
-(void)descendantViews:(id)arg3 {
%orig(_descendantviews)
}

%end

@nimble parcel I can't figure out how to export the full cert chain

iirc if you save them as pem you can literally place the contents one after another

I don't think ldid -K will work with a pem

It expects a p12

yeah you pass openssl the cert chain + privkey and convert it to a p12

Oh, so I have to export the cert, and priv key as pem then make the p12 using openssl. That's a shame, I'll try it out

i think the two most nuclear options you have are either hooking all of its methods and making them stubs or you could return nil in the initialiser

sup @rapid lion

but it’s generally best practise to keep the stuff you hook really targeted

hey!

nullpixel gm

yeah, the best thing for hiding a view is to just hook the appropriate lifecycle event

and like, set the alpha to 0 or isHidden to true

gn i guess lmao

wtf this is the first time I've seen the founders icon

surprised it doesn’t crash because of a null deref in the class that initialises it

tbh

yeah

so it probably fucks the code in some other way

lmao

no engineer is writing code to assume that initialiser could return nil

mail

blame quicktype

it is terrible

yeah i will

ios autocorrect is so bad

and probably macos

but i dont use it on mac

what about in #development

neither do i

No shot that isn’t a token grabber

How do arm64 variadics work? If it’s less than 8 args can I just cast it to a function with 8 args?

@primal perch do yk how to use react native in a tweak

like what (private)frameworks do i need to add to the makefile

Hahaha that’s a new one

Never heard that one before

read the docs

basically the same as you would any app

although im gonna say: why

idk how to do any app

dw ab it

last thing we need is a whole react instance for one tweaked view

battery gon

nah dw about it react is lightweight

performs better than native tbh

idk how

:(

@primal perch do i just react-native

or no

%hook RCTTextView

-(void)setTextStorage:(id)arg1 {
%orig(@"Lig deez nuts.")
}
-(void)contentFrame:(CGRect)arg2 {
%orig(_contentFrame)
}
-(void)descendantViews:(id)arg3 {
%orig(_descendantviews)
}

%end

Is that right?

Does it work?

No 😞

Then doesn’t that answer your question

I don’t know what I’m doing wrong

idk

just copy the frameworks and write your own startup code

zoop

@nimble parcel what other info would be useful to parse related to codesign?

tomorrow

like i said earlier its all one method ```%hook RCTTextView

-(void)setTextStorage:(id)arg1 contentFrame:(CGRect)arg2 descendantViews:(id)arg3{
%orig(@"Lig deez nuts.", arg2, arg3);
}

%end``` i would recommend looking at some open source tweaks and brushing up on basic objective-c

it is not

:(

F

be the first and make a theos template i guess

die

yea idk idc tbh im going off what they posted earlier in jailbreak

its all one method

seems like a discord tweak

i do not approve

Everything that jtool2 -vv --sig and ipsw macho info -V --sig output

they said textstorage was a string

don't you love it when macOS refuses to connect to your NAS for no reason

macos moment

https://media.discordapp.net/attachments/688121419980341282/955662831662039050/gaming.gif

https://tenor.com/view/linux-linux-users-gaming-computer-computers-gif-23121479

https://tenor.com/view/sonic-windows-users-unsucked-cock-windows-gif-18116756

nfr

https://tenor.com/view/hax-gif-19007990

embed fail

You mean a string is stored under it?

It’s not a string

Ok so, it seems you can't use ldid directly to sign an app with a free cert

but wit a paid acct I was able to get the app installed

idk i have never messed with nstextstorage so do what capt said

#development message

but when I run it I get this error

Mar 23 20:38:35 kernel(AppleMobileFileIntegrity)[0] <Notice>: AMFI: '/private/var/containers/Bundle/Application/FE19DF71-10A7-42F1-A943-C628C84414DE/TestApp.app/TestApp' does not pass CT evaluation, result: 0x80008
Mar 23 20:38:35 kernel(AppleMobileFileIntegrity)[0] <Notice>: AMFI: '/private/var/containers/Bundle/Application/FE19DF71-10A7-42F1-A943-C628C84414DE/TestApp.app/TestApp': Unrecoverable CT signature issue, bailing out.

404

It doesn’t work 😣

then you are hooking the wrong thing

I’ll show u

%hook RCTView

man

you are gonna have to learn basic objetive-c on your own

@rain falcon truama

I'm not sure if that's your issue but I'd make sure your Apple Worldwide Developer Relations certificate is up to date (use the G3 one) because this is the exact same error code that happened with AltStore after the old intermediate stopped being valid for new certs on Jan 28, 2021

https://github.com/rileytestut/AltStore/issues/652

It’s not where the text is stored though??? You don’t think I’ve tried RCTview

idk what you have tried but changing a string is pretty basic stuff it usually requires basic skills to do

I never told you it was NSstring you just assumed that even when I told you it was char under NSTextStorage

you were trying to make it @"some text" which is a string

yea i know shit about react

what is the react issue?

a react native app or you talking react web?

yeah but the property isn't NSString like an easy shortcut changing the time sorry if I've been a bit nooby I just have no clue what to do anymore

ah someone trying to do some bridging of native code or something

if you are trying to change text only you need to find the string and edit it thats the easiest way to do it, if there is some special way with react i dont know it since i have never tweaked discord

no it's not discord

ok then if its react in general which apparently it is

i think smokin had the right answer a while back ... seems like every example has a single method per %hook / %end

I admit , I do a lot of react dev but I dont do much in what you seem to be doing

is there any possibility each arg has the same size? or do i have to know the type to decode it

"decode" probably isnt the right word but yk what i mean

yeah every example I can find has a single method 🤷‍♂️ ... I don't dev tweaks so I am not super familiar with this

https://tenor.com/view/clash-royale-happy-gif-15129684

ok i will

use va_list macros?

or just no implementation

isnt objc_object (id) a struct? would they try to fit that into the stack or pass a pointer?

capt

could you please add me back

I need to talk to you

capt
could you please add me back
I need to talk to you

ok

you can have multiple methods per hook

it's just that people do single method per hook for no reason

and also because flex to theos

🤢

gotcha yeah i actually just found an example

I am looking too much into objective c right now and I hate it 😂

how long are you going to avoid me capt

last time I asked to talk was 5 months ago

hope you enjoy all the brackets

oh boy

ok well now can we talk capt

cant be as many as js 😂

I can only answer #1 in dms and the last time I asked you was 5 months ago

that’s why I explicitly said I want to DM

no, talk here, I want to hear too

It’s about what you told me maybe like, 2 years and how it’s impacted me as a person

you ever heard of a template

yeah somewhere between 1 and 2

I really have no clue at this point

false

c++ better most of the time

i have converted

class / struct abstractions are borderline 0 cost and make development 5x easier than raw C

every time i start a c++ project i wrap the file in extern "C" 😐

just to spite the c++ gods

gets em fired up

when i contribute to c++ projects i just write C

exactly

based

when your language has classes but you still do typedef void* object_t anyway

    //NSLog(@"RelicLoader Active");
    test1(1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16);
    test2(1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16);
    unsigned long long num = 12345;
    long double dec = 12.345//compiler evals this to double i think but well see
    NSString * str = @"AHHHHHHHH";
    id obj = [[NSMutableArray alloc] init];
    test3(objc_getClass("NSObject"),@selector(yaitsnotreal),num,obj,str,num);
    //RelicHookMessageEx(objc_getClass("SCNMessagingMessage"), @selector(isSaved), (void*)savehax);
    
} ```

ill load it into hopper

looks like 8 bytes each

Wouldn't that just define NULL as NULL?

@primal perch

memory safe 🚀

blazing fast 🚀

blazing

how about u blaze deez nuts

clementine doesn't like lightning either and wants USB-C on her iphone

i mean ive broken more USB-C ports then lightning

I'm glad you like USB2 speeds

what about lightning to usb c cables?

like how i connect mac to phone

still 2.0?

still throttled by the speed of the lightning connect obviously

damn maybe you are right

micro usb really sucked

even if apple did usbc i bet they'd be cheap fucks and do usb c 2.0

So more codesigning woes

Mar 23 22:48:41 amfid(Security)[39644] <Notice>: Trust evaluate failure: [leaf IssuerCommonName LeafMarkerOid SubjectCommonName]
Mar 23 22:48:41 amfid(libMobileGestalt.dylib)[39644] <Notice>: elided platform fast path for key: re6Zb+zwFKJNlkQTUeT+/w
Mar 23 22:48:41 amfid(libmis.dylib)[39644] <Notice>: Authoritative
Mar 23 22:48:41 amfid(libmis.dylib)[39644] <Notice>: Keep going <private>
Mar 23 22:48:41 amfid(libmis.dylib)[39644] <Notice>: <private> was picked for validation
Mar 23 22:48:41 kernel(AppleMobileFileIntegrity)[0] <Notice>: AMFI: acquired profile with UUID: 6a8c8ffb-7b49-48ed-88bf-38849bb49b5c
Mar 23 22:48:41 kernel(AppleMobileFileIntegrity)[0] <Notice>: AMFI: device is provisioned
Mar 23 22:48:41 kernel(AppleMobileFileIntegrity)[0] <Notice>: AMFI: profile has succesfully validated all entitlements
Mar 23 22:48:41 kernel(AppleMobileFileIntegrity)[0] <Notice>: AMFI: profile validated the code signature

<private>

@tepid olive any ideas?

@grave sparrow looks like it loads it onto the stack and into the regs like a non variadic. probably for compatibility

for example when programs call objc_msgSend they load up x2 with the first arg and have it in the stack

so it loads the variadic args onto the stack

as you expect

as per the convention

and also keeps them in x1,x2,x3

rustoids

its an optimisation im guessing so that objc_msgSend can call the IMP and the args will be in place

pretty nifty

ding ding ding

why are variadics so tricky theres gotta be a better way

why does zsign work but ldid not

dildo

ldildo

dyld-o

never gets old

File f("jews.bin", "rb");

HAHAHA never saw that until now

thats life-changing

is it possible without using the extern "C" option to compile a function with a demangled name?

jc

how do I get codesign to add a sha1 hash?

https://github.com/shepgoba/SettingsWidgets/blob/master/SWUtils.m

live example here

from the unreleased widget idc enough to finish

struct OrigAndReturn hookmanager(id self, SEL _cmd, uint64_t arg2, uint64_t arg3, uint64_t arg4, uint64_t arg5, uint64_t arg6) asm("hookman"); wow that worked

custom sym shit

yup

you can then just bl hookman in asm

no questions asked

so sick

nope

i dont think

ill try it

ill try tn

*rn

asm("hookman") struct OrigAndReturn hookmanager(id self, SEL _cmd, uint64_t arg2, uint64_t arg3, uint64_t arg4, uint64_t arg5, uint64_t arg6) ;

oops

error: expected ';' after top-level asm block meant to copy paste that

nope

for sure a cool trick tho

helps a ton when you have to write half your code in asm

not too deep into that lore idk

check out this beauty

oh idk how to set that up with theos

never tried either

oh that easy huh

another weird thing i got is i pass the pointer to the orig_objc_msgSend via a return (x0) and i have to clear the top couple of bits because theyre garbage...

i only support arm64 its fine

heh

I'll fix it one day

did you file an issue btw? so I don't forget again

whats this about tho? is it because i use uintptr_t?

haha

lmao, no worries

haha i got carried away and partially wrote a hashmap implementation in inline asm

im a strong anti-variadic lmao

theyve cost me a couple more hours than i would like

hm so loop target(va_arg(whatevergoeshere, void *); )

sounds sick

haha so did the snapchat devs

they have in house string functions

so its a nightmare to reverse them

snapchat is insane

no like strstr they have an in house highly obfuscated and i think its even entangled with some kind of checksum

imagine writing shit in asm

lol

haha

wouldnt be surprised considering they go great lengths for jailbreak detection

fucking asm jaijlbreka detection

like

nope

well

its complex

they dlsym shit and check lstat for modifications, i think they have a way to see if their syms were exported

libhooker+ time

i have a bypass lol

its fragile tho

gonna stay private forever

snapchat jailbreak bypass lasting 10 versions (impossible)

not selling it for less than 2k

ikr

someone gonna buy it anyway

just throw it on r/TweakBounty

mfs are down bad for nudes

prolly some arab guy who will pay that too

ya theres like 5k worth of snap bounties

Android Skull

lmfao

their network shit is locked down too i think it has some kind of CRC type structure so its able to see if the original executable was tampered with and it refuses to interact with the network.

i would love to see the source code for that damn app

they got the o-llvm devs working on witchcraft

ya

strong.codes

lmfao ikr

https://careers.snap.com/

im imagining evan speigal smoking crack rocks being like ya lets dlsym(dlsym()) and take a checksum of the entire memory every 31s

i mean

took me a while

nah not really

ill tell you how for 40k 😉

brb about to make a group bounty on r/tweakbounty or something

just a modified version of substrate and a lot of time

lmao

modified substrate lmao

gotta do what it takes

"jailbreak-assisted detection bypass"

moment

these r/snapchattweaks2 boys thirsty

ok

shoot

you prolly know

thats the easier portion of it haha

the other part sucked ass

wait until the the app is loaded. use gum_stalker to trace the execution of the thread and then go back and patch every br to go to the intended addr

i tried that

thats one of my methods

theres like 4

nope you fail the lstats from the network core

frida-stalker

lmfao um kinda?

dynamic patchfinder

wanna hear the funny part

the bypass works without it

smh

the patch system

yup and a damn lot of it

i think i got 100 hrs in hopper in the last month

this is my first tweak too haha

first time with any serious arm64 and C

you mean like fishhook?

rebind syms?

oh boy

sounds awful

i kinda had to figure all that out for the substrate stand in put for the most part i just had to optimize it for time

hence asm hashmap

i use substrate as a term for any hooking library

bad habit

substitute still gets the job done for me tho

when i gotta hook asm functions

in asm probably?

hahaha i like it

is it public

haha ripp

wow

thats a bit

lol thats a little big

i thought it was smaller

WAIT

holy crap

that makes sense

im on ios 14 my wifianalytics d and shit keep crashing cuz of jetsam like 50+ times a day

idk i think thats why i need to ldrestart all the damn time

so annoying

apparently CydiaSubstrate is 403KB or something

makes way more sense

no i only consider CydiaSubstrate.framework/CydiaSubstrate

i am working on tweaks while jailed anyway

libsubstrate is less than relevant

when you say obscurity is not secutiry, whats security

being secure

if i dont want a tweak getting reversed whats the approach that takes them the longest

nah fr?

i never thought of that

Yes

security by design definitely exists

Just don't release it

ya lmfao thats the current plan

iossecuritysuite is literally out in the open for everyone to see and it's still one of the hardest jb detection libs

Don't be taking the advice I'm giving rn

Because I am joking

I hate security

xor a dylib and xor it again at loadtime?

lol

so i should do a hardware mod.... that way they cant do anything about it

the tweak is now a hardware mod

dont they have like a million dif chips and keys and hashes

so its possible to mod the bootloader? wouldnt you run into the same issue as checkrain

someday someone will figure out how to drill the sep chip

oh its that kind of possible

I have a new drill I got for Christmas.

imagine they sell iphones with unlocked bootloader for like 50k

theres a niche demand they would prolly make a killing

they being apple

ill have a word with tim.

ya but they gotta make them rare af

for security proffessionals it makes sense to pay thousands for something like that

M1 has that?

dope af

gonna be honest im down bad for M1

so hype

govt will force them to allow this on idevices eventually

it's just a matter of when

EU will probably be the first

US though

idk

US goverment older than my grandma

me going to the EU to buy an USB-C iPhone that might or might not ever exist

i was a good boy and paid my taxes please make apple let me use the phone i paid 1000 for how i want

zero grammar in that sentence sry

whats going on in europe

lmao

not that part of europe

lmfao

something something consumer rights stuff

something something forced USB-C by 2023 or something

Trolllandia incoming

i think it makes sense for apple to sell stuff like custom firmware capable device and usb c devices at an insane premium

like its not even that hard to do

and ppl still gonna buy

I mean I wouldn't be surprised if apple started doing such a thing

you think they keep people out of firmware so its harder to run ios on other hardware?

like they lock it so its hard to study

I mean no other devices have Apple Secure Enclave so that's already an obstacle for it to be on other devices

i mean partly true

mainly greed?

i doubt the hackintosh community would get very far if macOS was as locked down as iOS

yea fr

they didnt have much choice pre-m1 though with intel being the same hardware as many pcs

I mean if apple completely transitions to M1 the hackintosh community is fucked

so it basically boiled down to spoofing SMC (alongside a bunch of other patches)

which devleopers have down to a science

But now with as much additional hardware as an iPhone

Who knows how that will go

they will eventually

but intel mfs (myself included) still have a few more good years of hackintosh

can you dual boot hackintosh

yea

when did apple entirely drop ppc anyway

like 2 years post first intel mac

but its gonna be longer than that

their marketing is a lot more tied together with longevity now

Early I think snow leopard

the CMS signature itself would be great to see at a glance

also idk if ktool already does this but it’d also be nice to have file offsets so that it’s possible to look at the raw data in a hex editor

we'll see at least this year's and next years macos versions for x64 if you ask me

i believe apple intended to support x64 for at least 5-10 years

it’s definitely possible, i do that in supercharge (and AltStore does it too)

it does spit out the offsets for all of the blobs from the superblob in the GUI in latest commit but I plan to try and figure out how to properly parse everything or at least most of it before I push an update

I mean the Mac Pro was only released in 2019 so they've got quite a few years of X64 support left imo

if there's something similar (aside from ldid which is what I'm using now) I can use to work off of / sanity check my code that'd be helpful

yea so i think its still a good investment even now

not to like buy a whole intel pc for macos but if you wanna use macos on an exisitng pc, slap an amd gpu in it

and enjoy

ldid source is cryptic enough I basically already have to RE parts of it to figure out what's going on

Just set the smbios to the Mac Pro

im using imac19,1 bc my cpu has native power management

bing chilling

but eventually ill probably need hta

that

for the latest macos

wouldnt be surprised if they cut off the imac early

I really don't want to buy an amd gpu for Wayland but I might do it

@ocean raptor plsfix

since you daily drive linux yeah u probably should

nvidia drivers work but theyre not nearly as good

get a rx 580 8gb for 250$

I never had problems Intel, Nvidia, or AMD on Wayland

or if u wanna actually upgrade get a 6600/xt

currently using AMD, upgraded from Nvidia

Same

We bing chilling

fr

I am having transparency bugs on Wayland nvidia

I'm worried of if amd ends up being worse

Because honestly right now nvidia is working pretty well, especially on xorg

Its flawless on xorg

not at high refresh rate but yea i talk about that 3000 times a day

oh that's annoying

I can't imagine amd would be worse just then I have to set up new drivers and settings and stuff

legit, just use Xorg

xorg so crusty tho

needs to be deleted already

Seems to only happen on the KDE taskbar and notifcation

Doesn't happen in things such as konsole

Its fine there

I keep trying to use Wayland, with literally every GPU brand at this point, and I always run into problems

wut

im confused

I also have some weird scaling issues on Wayland on my 4k monitor

Cursor is huge and the taskbar is too

im on fedora kde rn but yea im gonna wipe this ssd for monterey after

instead of leaving monterey on a second class partition

Wayland is nice because then I can use multi monitor without having to have everything huge on my 1080p one

my latest was that TeamViewer couldn't connect me to the login screen because it runs on Wayland (had to override it to Xorg), previously it was that VLC just silently fails to launch on Wayland

MPV works fine for me

I haven't chdcjed if its xwayland or not

I think VLC is fixed now at least

newegg is based af

not newegg

vlc

bruh

was typing that on the side lmfao

How did that change to newegg

i was checking newegg

My guy that's the store

sometimes the words just get swapped

I'd disagree with newegg being based given the recent controversy lmao

Oh great newegg's in controversy?

What ckntroversy

idk pick one

I know nothing about newegg

https://www.youtube.com/watch?v=2fnXsmXzphI

https://www.youtube.com/watch?v=-c_rKnK-uAM

When the newegg is bribing

when the

when

What's a good place to buy amd gpu

wherever's cheap

amd.com

Also I need to get a grasp on the amd product line too

https://www.newegg.com/sapphire-radeon-rx-6600-xt-11309-01-20g/p/N82E16814202407

I don't undrsatsb it at all

this is why i was thinking about newegg

6600xt sapphire is good but still not super cheap yet

a lot better than it was

shit was like 600$ a few months ago

Still so expensive

What is a 1060 if you were to buy today

like 230

Actually that's unfair because its old

230-240 if its 6gb

180 if 3gb

Its like 400 msrp or something

I need to write some blog posts about Wayland and KDE and nvidia and stuff

nshittia

codesign is OSS

today's episode of "days of work that could've been circumvented by checking apple's open source repos"

(but what's the fun in that :) )

https://github.com/apple-oss-distributions/Security/tree/Security-60157.80.4/OSX/libsecurity_codesigning/lib

Funny exception

i have no idea why the index is that massive, it's guarded in an if-check

wtf youtube tweak

piracy

sorry

if (indexPath.section <= 8) {
  NSArray* titlesNames = @[@"eight", @"random", @"items", @"in", @"an", @"array", @"lol", @"."];
  // snip
  if (indexPath.row == 0) {
    // snip
    sponsorSegmentedControl.selectedSegmentIndex = [[[NSUserDefaults standardUserDefaults]
                    objectForKey:titlesNames[indexPath.section - 1]][@"status"] intValue];
    // snip
  }
}

here's the snippet where i think the exception happens

idk why it's screaming index 18446744073709551615

i think you wanan invert row and section

What's the loop

where theyre used

also dont subtract one

indexpath.row matches 0 indices by default

it's a UITableViewController, in tableView:cellForRowAtIndexPath:

yea

and the indexPath.section is intentional