This repository has been archived by the owner on Nov 9, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathkernel_sp.c
122 lines (107 loc) · 2.39 KB
/
kernel_sp.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
#include <mach/mach.h>
#include <plog.h>
#include <sockpuppet.h>
#include <common.h>
#include <io.h>
#include <kernel.h>
mach_port_t tfp0_sp = 0;
kern_return_t copyin_sp(void* to, addr_t from, size_t size)
{
kern_return_t r = KERN_SUCCESS;
mach_vm_size_t outsize = size;
size_t szt = size;
if (size > 0x800)
{
size = 0x800;
}
size_t off = 0;
while (1)
{
r = mach_vm_read_overwrite(tfp0_sp, off+from, size, (mach_vm_offset_t)(off+to), &outsize);
szt -= size;
off += size;
if (szt == 0)
{
break;
}
size = szt;
if (size > 0x800)
{
size = 0x800;
}
}
return r;
}
kern_return_t copyout_sp(addr_t to, void* from, size_t size)
{
return mach_vm_write(tfp0_sp, to, (vm_offset_t)from, (mach_msg_type_number_t)size);
}
kern_return_t kread32_sp(addr_t addr, uint32_t* retval)
{
kern_return_t r = KERN_SUCCESS;
uint32_t val = 0;
r = copyin_sp(&val, addr, 4);
if(r == KERN_SUCCESS)
{
*retval = val;
}
return r;
}
kern_return_t kread64_sp(addr_t addr, uint64_t* retval)
{
kern_return_t r = KERN_SUCCESS;
uint64_t val = 0;
r = copyin_sp(&val, addr, 8);
if(r == KERN_SUCCESS)
{
*retval = val;
}
return r;
}
kern_return_t kreadptr_sp(addr_t addr, addr_t* retval)
{
#ifdef __LP64__
return kread64_sp(addr, retval);
#else
return kread32_sp(addr, retval);
#endif
}
kern_return_t kwrite8_sp(addr_t addr, uint8_t val)
{
return copyout_sp(addr, &val, 1);
}
kern_return_t kwrite16_sp(addr_t addr, uint16_t val)
{
return copyout_sp(addr, &val, 2);
}
kern_return_t kwrite32_sp(addr_t addr, uint32_t val)
{
return copyout_sp(addr, &val, 4);
}
kern_return_t kwrite64_sp(addr_t addr, uint64_t val)
{
return copyout_sp(addr, &val, 8);
}
kern_return_t kwriteptr_sp(addr_t addr, addr_t val)
{
#ifdef __LP64__
return kwrite64_sp(addr, val);
#else
return kwrite32_sp(addr, val);
#endif
}
kern_return_t kalloc_sp(addr_t* retval, vm_size_t size)
{
kern_return_t r = KERN_SUCCESS;
mach_vm_address_t addr = 0;
r = mach_vm_allocate(tfp0_sp, (mach_vm_address_t *)&addr, size, VM_FLAGS_ANYWHERE);
if(r == KERN_SUCCESS)
{
*retval = addr;
}
return r;
}
kern_return_t kfree_sp(mach_vm_address_t addr, vm_size_t size)
{
return mach_vm_deallocate(tfp0_sp, addr, size);
}