Inicio Explorar Axuda
Iniciar sesión
ganzf
/
711
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Rama: master
Ramas Etiquetas
711
/
Pods
/
GoogleUtilities
/
third_party
/
IsAppEncrypted
/
IsAppEncrypted.m

IsAppEncrypted.m 4.2 KB
Permalink Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104 
  1. // Copyright (c) 2017 Landon J. Fuller <landon@landonf.org>
    2. 

  2. // All rights reserved.
    3. 

  3. //
    4. 

  4. // Permission is hereby granted, free of charge, to any person obtaining a copy
    5. 

  5. // of this software and associated documentation files (the "Software"), to
    6. 

  6. // deal in the Software without restriction, including without limitation the
    7. 

  7. // rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
    8. 

  8. // sell copies of the Software, and to permit persons to whom the Software is
    9. 

  9. // furnished to do so, subject to the following conditions:
    10. 

  10. //
    11. 

  11. // The above copyright notice and this permission notice shall be included in
    12. 

  12. // all copies or substantial portions of the Software.
    13. 

  13. //
    14. 

  14. // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    15. 

  15. // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    16. 

  16. // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    17. 

  17. // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    18. 

  18. // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
    19. 

  19. // FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
    20. 

  20. // IN THE SOFTWARE.
    21. 

  21. //
    22. 

  22. // Comment from
    23. 

  23. // <a href="http://iphonedevwiki.net/index.php/Crack_prevention">iPhone Dev
    24. 

  24. // Wiki Crack Prevention</a>:
    25. 

  25. // App Store binaries are signed by both their developer and Apple. This
    26. 

  26. // encrypts the binary so that decryption keys are needed in order to make the
    27. 

  27. // binary readable. When iOS executes the binary, the decryption keys are used
    28. 

  28. // to decrypt the binary into a readable state where it is then loaded into
    29. 

  29. // memory and executed. iOS can tell the encryption status of a binary via the
    30. 

  30. // cryptid structure member of LC_ENCRYPTION_INFO MachO load command. If
    31. 

  31. // cryptid is a non-zero value then the binary is encrypted.
    32. 

  32. //
    33. 

  33. // 'Cracking' works by letting the kernel decrypt the binary then siphoning the
    34. 

  34. // decrypted data into a new binary file, resigning, and repackaging. This will
    35. 

  35. // only work on jailbroken devices as codesignature validation has been
    36. 

  36. // removed. Resigning takes place because while the codesignature doesn't have
    37. 

  37. // to be valid thanks to the jailbreak, it does have to be in place unless you
    38. 

  38. // have AppSync or similar to disable codesignature checks.
    39. 

  39. //
    40. 

  40. // More information at
    41. 

  41. // <a href="http://landonf.org/2009/02/index.html">Landon Fuller's blog</a>
    42. 

  42. 

  43. #import "third_party/IsAppEncrypted/Public/IsAppEncrypted.h"
    44. 

  44. 

  45. #import <mach-o/dyld.h>
    46. 

  46. #import <objc/objc.h>
    47. 

  47. 

  48. /// The encryption info struct and constants are missing from the iPhoneSimulator SDK, but not from
    49. 

  49. /// the iPhoneOS or Mac OS X SDKs. Since one doesn't ever ship a Simulator binary, we'll just
    50. 

  50. /// provide the definitions here.
    51. 

  51. #if TARGET_OS_SIMULATOR && !defined(LC_ENCRYPTION_INFO)
    52. 

  52. #define LC_ENCRYPTION_INFO 0x21
    53. 

  53. struct encryption_info_command {
    54. 

  54.   uint32_t cmd;
    55. 

  55.   uint32_t cmdsize;
    56. 

  56.   uint32_t cryptoff;
    57. 

  57.   uint32_t cryptsize;
    58. 

  58.   uint32_t cryptid;
    59. 

  59. };
    60. 

  60. #endif
    61. 

  61. 

  62. BOOL IsAppEncrypted(void) {
    63. 

  63.   const struct mach_header *executableHeader = NULL;
    64. 

  64.   for (uint32_t i = 0; i < _dyld_image_count(); i++) {
    65. 

  65.     const struct mach_header *header = _dyld_get_image_header(i);
    66. 

  66.     if (header && header->filetype == MH_EXECUTE) {
    67. 

  67.       executableHeader = header;
    68. 

  68.       break;
    69. 

  69.     }
    70. 

  70.   }
    71. 

  71. 

  72.   if (!executableHeader) {
    73. 

  73.     return NO;
    74. 

  74.   }
    75. 

  75. 

  76.   BOOL is64bit = (executableHeader->magic == MH_MAGIC_64);
    77. 

  77.   uintptr_t cursor = (uintptr_t)executableHeader +
    78. 

  78.                      (is64bit ? sizeof(struct mach_header_64) : sizeof(struct mach_header));
    79. 

  79.   const struct segment_command *segmentCommand = NULL;
    80. 

  80.   uint32_t i = 0;
    81. 

  81. 

  82.   while (i++ < executableHeader->ncmds) {
    83. 

  83.     segmentCommand = (struct segment_command *)cursor;
    84. 

  84. 

  85.     if (!segmentCommand) {
    86. 

  86.       continue;
    87. 

  87.     }
    88. 

  88. 

  89.     if ((!is64bit && segmentCommand->cmd == LC_ENCRYPTION_INFO) ||
    90. 

  90.         (is64bit && segmentCommand->cmd == LC_ENCRYPTION_INFO_64)) {
    91. 

  91.       if (is64bit) {
    92. 

  92.         struct encryption_info_command_64 *cryptCmd =
    93. 

  93.             (struct encryption_info_command_64 *)segmentCommand;
    94. 

  94.         return cryptCmd && cryptCmd->cryptid != 0;
    95. 

  95.       } else {
    96. 

  96.         struct encryption_info_command *cryptCmd = (struct encryption_info_command *)segmentCommand;
    97. 

  97.         return cryptCmd && cryptCmd->cryptid != 0;
    98. 

  98.       }
    99. 

  99.     }
    100. 

  100.     cursor += segmentCommand->cmdsize;
    101. 

  101.   }
    102. 

  102. 

  103.   return NO;
    104. 

  104. }
    105.