apple-data 1.0.399 → 1.0.402
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/apple_data/boot_args.rb +1 -0
- data/lib/apple_data/fdr.rb +1 -0
- data/lib/apple_data/ioreg.rb +1 -0
- data/lib/apple_data/lockdown.rb +1 -0
- data/lib/apple_data/macho.rb +1 -0
- data/lib/apple_data/version.rb +1 -1
- data/lib/apple_data.rb +1 -0
- data/share/defaults.yaml +4 -0
- data/share/environment_variables.yaml +301 -0
- data/share/keys.yaml +143 -0
- data/share/sip.yaml +58 -0
- metadata +6 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: ef40d3e8c16d7f2ecd2c6c68a673d1addc18bb488b1a794f8043ab90d50d8f7b
|
4
|
+
data.tar.gz: bb5e04abe96ca41466bb7372662c13183c81746e0d0d3b14c436b30f6d9948f8
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 78d46ec0ef6cf603b8f635d52d9184c4c7988439dee63014f94d5960c21393362838a100f500d9f05620e80c7fe1519bea23b6249f6f6c16aa730d52bf70aa7f
|
7
|
+
data.tar.gz: 253e8b619604a7d6cc3f2942af61f96a60e584dc3d3b3e472c5b019d57fd0665bba98ad1525ab76a4bddeae00ef1253280e3a18e6a16f27e43a47ccdd029d25b
|
data/lib/apple_data/boot_args.rb
CHANGED
data/lib/apple_data/fdr.rb
CHANGED
data/lib/apple_data/ioreg.rb
CHANGED
data/lib/apple_data/lockdown.rb
CHANGED
data/lib/apple_data/macho.rb
CHANGED
data/lib/apple_data/version.rb
CHANGED
data/lib/apple_data.rb
CHANGED
data/share/defaults.yaml
ADDED
@@ -0,0 +1,301 @@
|
|
1
|
+
---
|
2
|
+
variables:
|
3
|
+
__CFBundleIdentifier:
|
4
|
+
type: string
|
5
|
+
__CFPREFERENCES_AVOID_DAEMON:
|
6
|
+
type: boolean
|
7
|
+
values: [ 0, 1 ]
|
8
|
+
__CF_USER_TEXT_ENCODING:
|
9
|
+
examples:
|
10
|
+
- 0x0:0:0
|
11
|
+
- 0x1F5:0x0:0x0
|
12
|
+
ASL_DISABLE:
|
13
|
+
type: boolean
|
14
|
+
values: [ 0, 1 ]
|
15
|
+
CA_ASSERT_MAIN_THREAD_TRANSACTIONS:
|
16
|
+
type: boolean
|
17
|
+
values: [ 0, 1 ]
|
18
|
+
CA_DEBUG_TRANSACTIONS:
|
19
|
+
description: debug core animation transactions
|
20
|
+
type: boolean
|
21
|
+
CFFIXED_USER_HOME:
|
22
|
+
type: string
|
23
|
+
format: path
|
24
|
+
examples:
|
25
|
+
- /tmp
|
26
|
+
CFNETWORK_STORAGED_TIMERELOFF:
|
27
|
+
type: boolean
|
28
|
+
values: [ NO, YES ]
|
29
|
+
CHECK_IN:
|
30
|
+
type: boolean
|
31
|
+
values: [ 0, 1 ]
|
32
|
+
CLEAN_FILES_OLDER_THAN_DAYS:
|
33
|
+
type: integer
|
34
|
+
"com.apple.CoreData.CloudKitDebug":
|
35
|
+
type: boolean
|
36
|
+
values: [ 0, 1 ]
|
37
|
+
"com.apple.CoreData.XPCDebug":
|
38
|
+
type: boolean
|
39
|
+
values: [ 0, 1 ]
|
40
|
+
COMMAND_MODE:
|
41
|
+
type: string
|
42
|
+
examples:
|
43
|
+
- unix2003
|
44
|
+
CUPS_DEBUG_FILTER:
|
45
|
+
type: string
|
46
|
+
format: regex
|
47
|
+
examples:
|
48
|
+
- ^(cupsDo|cupsGet|cupsMake|cupsSet|http|_http|ipp|_ipp|mime).*
|
49
|
+
CUPS_DEBUG_LEVEL:
|
50
|
+
type: integer
|
51
|
+
CUPS_DEBUG_LOG:
|
52
|
+
type: string
|
53
|
+
format: path
|
54
|
+
DEBUGSCOPE:
|
55
|
+
type: array
|
56
|
+
seperator: ","
|
57
|
+
values:
|
58
|
+
- all
|
59
|
+
- -policy-node
|
60
|
+
- policy-set
|
61
|
+
- policy
|
62
|
+
- alloc
|
63
|
+
- trust
|
64
|
+
- bind
|
65
|
+
- profile
|
66
|
+
- trace
|
67
|
+
- dbconn
|
68
|
+
- OTR
|
69
|
+
- serverxpc
|
70
|
+
- sqlite3
|
71
|
+
- error_thee_well
|
72
|
+
- ringSigning
|
73
|
+
DEFAULT_NETWORK_PRIVACY_LEVEL:
|
74
|
+
type: string
|
75
|
+
values:
|
76
|
+
- public
|
77
|
+
DYLD_BIND_AT_LAUNCH:
|
78
|
+
DYLD_DISABLE_DOFS:
|
79
|
+
DYLD_FALLBACK_FRAMEWORK_PATH:
|
80
|
+
description:
|
81
|
+
This is a colon separated list of directories that contain frameworks. If a framework is not found at its
|
82
|
+
install path, dyld uses this as a list of directories to search for the framework.
|
83
|
+
type: array
|
84
|
+
seperator: ":"
|
85
|
+
default: /Library/Frameworks:/System/Library/Frameworks
|
86
|
+
DYLD_FALLBACK_LIBRARY_PATH:
|
87
|
+
description: |
|
88
|
+
This is a colon separated list of directories that contain libraries. If a dylib is not found at its install
|
89
|
+
path, dyld uses this as a list of directories to search for the dylib. By default, it is set
|
90
|
+
to /usr/local/lib:/usr/lib.
|
91
|
+
type: array
|
92
|
+
seperator: ":"
|
93
|
+
default: /usr/local/lib:/usr/lib
|
94
|
+
DYLD_FORCE_FLAT_NAMESPACE:
|
95
|
+
description: |
|
96
|
+
Disable two level namespaces
|
97
|
+
DYLD_FRAMEWORK_PATH:
|
98
|
+
description: |
|
99
|
+
This is a colon separated list of directories that contain frameworks. The dynamic linker searches these
|
100
|
+
directories before it searches for the framework by its install name. It allows you to test new versions of
|
101
|
+
existing frameworks. (A framework is a library install name that ends in the form `XXX.framework/Versions/A/XXX`
|
102
|
+
or `XXX.framework/XXX`, where `XXX` and `A` are any name.)
|
103
|
+
|
104
|
+
For each framework that a program uses, the dynamic linker looks for the framework in each directory in
|
105
|
+
`DYLD_FRAMEWORK_PATH` in turn. If it looks in all those directories and can't find the framework, it uses
|
106
|
+
whatever it would have loaded if `DYLD_FRAMEWORK_PATH` had not been set.
|
107
|
+
|
108
|
+
Use the -L option to otool(1) to discover the frameworks and shared libraries that the executable is linked
|
109
|
+
against.
|
110
|
+
type: array
|
111
|
+
seperator: ":"
|
112
|
+
DYLD_IMAGE_SUFFIX:
|
113
|
+
description: |
|
114
|
+
This is set to a string of a suffix to try to be used for all shared libraries used by the program. For
|
115
|
+
libraries ending in ".dylib" the suffix is applied just before the ".dylib".
|
116
|
+
|
117
|
+
For all other libraries the suffix is appended to the library name. This is useful for using conventional
|
118
|
+
"_profile" and "_debug" libraries and frameworks.
|
119
|
+
type: string
|
120
|
+
DYLD_INSERT_LIBRARIES:
|
121
|
+
description: |
|
122
|
+
This is a colon separated list of additional dynamic libraries to load before the ones specified in the program.
|
123
|
+
If instead, your goal is to substitute a library that would normally be loaded, use `DYLD_LIBRARY_PATH`
|
124
|
+
or `DYLD_FRAMEWORK_PATH` instead.
|
125
|
+
type: array
|
126
|
+
seperator: ":"
|
127
|
+
DYLD_LIBRARY_PATH:
|
128
|
+
description: |
|
129
|
+
This is a colon separated list of directories that contain libraries. The dynamic linker searches these
|
130
|
+
directories before it searches the default locations for libraries. It allows you to test new versions of
|
131
|
+
existing libraries.
|
132
|
+
|
133
|
+
For each dylib that a program uses, the dynamic linker looks for its leaf name in each directory in
|
134
|
+
`DYLD_LIBRARY_PATH`.
|
135
|
+
|
136
|
+
Use the `-L` option to `otool(1)` to discover the frameworks and shared libraries that the executable is linked
|
137
|
+
against.
|
138
|
+
type: array
|
139
|
+
seperator: ":"
|
140
|
+
DYLD_NO_FIX_PREBINDING:
|
141
|
+
DYLD_PRINT_APIS:
|
142
|
+
description: |
|
143
|
+
If set, causes dyld to print a line whenever a dyld API is called (e.g. `dlopen()`).
|
144
|
+
DYLD_PRINT_BINDINGS:
|
145
|
+
description: |
|
146
|
+
If set, causes dyld to print a line each time a symbolic name is bound.
|
147
|
+
DYLD_PRINT_DOFS:
|
148
|
+
DYLD_PRINT_ENV:
|
149
|
+
description: |
|
150
|
+
If set, causes dyld to print a line of key=valule for each enviroment variable in the process.
|
151
|
+
type: presence
|
152
|
+
DYLD_PRINT_INITIALIZERS:
|
153
|
+
description: |
|
154
|
+
If set, causes dyld to print out a line when running each initializer in every image. Initializers run by dyld
|
155
|
+
include constructors for C++ statically allocated objects, functions marked with
|
156
|
+
`__attribute__((constructor))`, and `-init` functions.
|
157
|
+
DYLD_PRINT_LIBRARIES:
|
158
|
+
description: |
|
159
|
+
If set, causes dyld to print a line for each mach-o image loaded into a process. This is useful to make sure
|
160
|
+
that the use of DYLD_LIBRARY_PATH is getting what you want.
|
161
|
+
type: presence
|
162
|
+
DYLD_PRINT_LIBRARIES_POST_LAUNCH:
|
163
|
+
DYLD_PRINT_LOADERS:
|
164
|
+
description: |
|
165
|
+
If set, causes dyld to print a line whether each image is tracked by a JustInTimeLoader or a PrebuiltLoader.
|
166
|
+
Additionally, it prints if a PrebuiltLoaderSet was used to launch the process or if a PrebuiltLoader was
|
167
|
+
written to make the next launch faster.
|
168
|
+
type: presence
|
169
|
+
DYLD_PRINT_OPTS:
|
170
|
+
DYLD_PRINT_REBASINGS:
|
171
|
+
DYLD_PRINT_RPATHS:
|
172
|
+
DYLD_PRINT_SEARCHING:
|
173
|
+
description: |
|
174
|
+
If set, causes dyld to print a line about each file system path checked when searching for an image to load.
|
175
|
+
type: presence
|
176
|
+
DYLD_PRINT_SEGMENTS:
|
177
|
+
description: |
|
178
|
+
If set, causes dyld to print out a line containing the name and address range of each mach-o segment that
|
179
|
+
dyld maps. In addition it prints information about if the image was from the dyld shared cache.
|
180
|
+
DYLD_PRINT_STATISTICS:
|
181
|
+
DYLD_PRINT_TO_FILE:
|
182
|
+
description: |
|
183
|
+
This is a path to a (writable) file. Normally, the dynamic linker writes all logging output
|
184
|
+
(triggered by `DYLD_PRINT_*` settings) to file descriptor 2 (which is usually stderr). But
|
185
|
+
this setting causes the dynamic linker to write logging output to the specified file.
|
186
|
+
type: string
|
187
|
+
format: path
|
188
|
+
DYLD_ROOT_PATH:
|
189
|
+
DYLD_SHARED_CACHE_DIR:
|
190
|
+
description: |
|
191
|
+
This is a directory containing dyld shared cache files. This variable can be used in conjunction with
|
192
|
+
`DYLD_SHARED_REGION=private` to run a process with an alternate shared cache.
|
193
|
+
DYLD_SHARED_CACHE_DONT_VALIDATE:
|
194
|
+
DYLD_SHARED_REGION:
|
195
|
+
description: |
|
196
|
+
This can be "use" (the default) or "private". Setting it to "private" tells dyld to remove the shared region
|
197
|
+
from the process address space and `mmap()` back in a private copy of the dyld shared cache in the shared region
|
198
|
+
address range. This is only useful if the shared cache on disk has been updated and is different than the shared
|
199
|
+
cache in use.
|
200
|
+
DYLD_VERSIONED_FRAMEWORK_PATH:
|
201
|
+
description: |
|
202
|
+
This is a colon separated list of directories that contain potential override frameworks. The dynamic linker
|
203
|
+
searches these directories for frameworks. For each framework found dyld looks at its `LC_ID_DYLIB` and gets
|
204
|
+
the current_version and install name. Dyld then looks for the framework at the install name path.
|
205
|
+
Whichever has the larger current_version value will be used in the process whenever a framework with that
|
206
|
+
install name is required. This is similar to `DYLD_FRAMEWORK_PATH` except instead of always overriding,
|
207
|
+
it only overrides if the supplied framework is newer.
|
208
|
+
|
209
|
+
Note: dyld does not check the framework's Info.plist to find its version. Dyld only checks the `-current_version`
|
210
|
+
number supplied when the framework was created.
|
211
|
+
type: array
|
212
|
+
seperator: ":"
|
213
|
+
default: /Library/Frameworks:/System/Library/Frameworks
|
214
|
+
DYLD_VERSIONED_LIBRARY_PATH:
|
215
|
+
description: |
|
216
|
+
This is a colon separated list of directories that contain potential override libraries. The dynamic linker
|
217
|
+
searches these directories for dynamic libraries. For each library found dyld looks at its `LC_ID_DYLIB` and
|
218
|
+
gets the current_version and install name. Dyld then looks for the library at the install name path.
|
219
|
+
Whichever has the larger current_version value will be used in the process whenever a dylib with that install
|
220
|
+
name is required. This is similar to DYLD_LIBRARY_PATH except instead of always overriding, it only
|
221
|
+
overrides is the supplied library is newer.
|
222
|
+
HOME:
|
223
|
+
type: string
|
224
|
+
format: path
|
225
|
+
LAUNCHD_SOCKET:
|
226
|
+
LIBDISPATCH_STRICT:
|
227
|
+
type: boolean
|
228
|
+
values: [ NO, YES ]
|
229
|
+
LOGNAME:
|
230
|
+
type: string
|
231
|
+
format: username
|
232
|
+
LaunchInstanceID:
|
233
|
+
type: string
|
234
|
+
format: UUID
|
235
|
+
MallocCorruptionAbort:
|
236
|
+
type: boolean
|
237
|
+
values: [ 0, 1 ]
|
238
|
+
MallocMaxMagazines:
|
239
|
+
type: integer
|
240
|
+
MallocNanoZone:
|
241
|
+
type: boolean
|
242
|
+
values: [ 0, 1 ]
|
243
|
+
MallocSpaceEfficient:
|
244
|
+
type: boolean
|
245
|
+
values: [ 0, 1 ]
|
246
|
+
MallocStackLoggingDirectory:
|
247
|
+
type: string
|
248
|
+
format: path
|
249
|
+
NSRunningFromLaunchd:
|
250
|
+
type: boolean
|
251
|
+
values: [ 0, 1 ]
|
252
|
+
NSZombieEnabled:
|
253
|
+
type: boolean
|
254
|
+
values: [ NO, YES ]
|
255
|
+
PATH:
|
256
|
+
type: array
|
257
|
+
seperator: ":"
|
258
|
+
default:
|
259
|
+
- /usr/bin
|
260
|
+
- /bin
|
261
|
+
- /usr/sbin
|
262
|
+
- /sbin
|
263
|
+
PRINTTOOL_MODE:
|
264
|
+
type: string
|
265
|
+
examples:
|
266
|
+
- agent
|
267
|
+
- daemon
|
268
|
+
PRODUCT_INFO_FILTER_DISABLE:
|
269
|
+
OS_ACTIVITY_MODE:
|
270
|
+
type: boolean
|
271
|
+
values: [ disable, enable ]
|
272
|
+
PWD:
|
273
|
+
type: string
|
274
|
+
format: path
|
275
|
+
REACH_DARK_WAKE_CONTROL:
|
276
|
+
type: boolean
|
277
|
+
values: [ TRUE, FALSE ]
|
278
|
+
REACH_DARK_WAKE_NOTIFY:
|
279
|
+
type: boolean
|
280
|
+
values: [ TRUE, FALSE ]
|
281
|
+
RPC_DEBUG:
|
282
|
+
type: boolean
|
283
|
+
values: [ 0, 1 ]
|
284
|
+
RUN_WITH_LAUNCHD:
|
285
|
+
type: boolean
|
286
|
+
values: [ 0, 1 ]
|
287
|
+
SSH_AUTH_SOCK:
|
288
|
+
type: string
|
289
|
+
format: path
|
290
|
+
TMPDIR:
|
291
|
+
type: string
|
292
|
+
format: path
|
293
|
+
WAIT4DEBUGGER:
|
294
|
+
type: boolean
|
295
|
+
values: [ NO, YES ]
|
296
|
+
XPC_FLAGS:
|
297
|
+
XPC_NULL_BOOTSTRAP:
|
298
|
+
type: boolean
|
299
|
+
values: [ 0, 1 ]
|
300
|
+
XPC_SERVICE_NAME:
|
301
|
+
type: string
|
data/share/keys.yaml
ADDED
@@ -0,0 +1,143 @@
|
|
1
|
+
---
|
2
|
+
keys:
|
3
|
+
0x7D0: uid
|
4
|
+
0x3E8: gid
|
5
|
+
derrived_keys:
|
6
|
+
0x835:
|
7
|
+
type: uid
|
8
|
+
data: 0x01010101010101010101010101010101
|
9
|
+
description: |
|
10
|
+
Used for data protection.
|
11
|
+
0x836:
|
12
|
+
type: uid
|
13
|
+
data: 0x00E5A0E6526FAE66C5C1C6D4F16D6180
|
14
|
+
description: |
|
15
|
+
This is computed by the kernel during a restore, but is zeroed out during a normal boot. It is also computed by
|
16
|
+
the Secure Bootloader, and its only known use is to decrypt LLB in NOR. Like `0x835`, it is different
|
17
|
+
for each device.
|
18
|
+
0x837:
|
19
|
+
type: gid
|
20
|
+
chip_id: 8900
|
21
|
+
data: 0x345A2D6C5050D058780DA431F0710E15
|
22
|
+
value: 0x188458A6D15034DFE386F23B61D43774
|
23
|
+
description: |
|
24
|
+
It is used as the encryption key for IMG2 files. With the introduction of IMG3 in iPhone OS 2.0, KBAGs are now
|
25
|
+
used instead of the `0x837` key. Because iPhone OS versions 1.x were used only on the iPhone and iPod touch
|
26
|
+
(both use the S5L8900) the encrypted values for other processors don't matter.
|
27
|
+
0x838:
|
28
|
+
type: uid
|
29
|
+
data: 0x8C8318A27D7F030717D2B8FC5514F8E1
|
30
|
+
description: |
|
31
|
+
Another UID-AES-key-based key, it is used to encrypt everything but LLB in the NOR (iBoot,
|
32
|
+
DeviceTree, pictures).
|
33
|
+
0x899:
|
34
|
+
type: uid
|
35
|
+
data: 0xD1E8FCB53937BF8DEFC74CD1D0F1D4B0
|
36
|
+
description: Usage unknown.
|
37
|
+
0x89A:
|
38
|
+
type: uid
|
39
|
+
data: 0xDB1F5B33606C5F1C1934AA66589C0661
|
40
|
+
description: |
|
41
|
+
Used on A4 devices. A device-specific key. It is used to encrypt the SHSH blobs on the device.
|
42
|
+
0x89B:
|
43
|
+
type: uid
|
44
|
+
data: 0x183E99676BB03C546FA468F51C0CBD49
|
45
|
+
description: |
|
46
|
+
It is used to encrypt the data partition key.
|
47
|
+
0x8A3:
|
48
|
+
type: uid
|
49
|
+
mode: AES-256-CBC
|
50
|
+
data: 0x568241656551e0cdf56ff84cc11a79ef
|
51
|
+
description: |
|
52
|
+
It is used during software upgrades on A12 and later to encrypt the "generator" value (using AES-128-CBC)
|
53
|
+
before hashing it to become the nonce.
|
54
|
+
keybags:
|
55
|
+
8101:
|
56
|
+
19A5325f:
|
57
|
+
ibec:
|
58
|
+
filename: iBEC.d54p.RELEASE.im4p
|
59
|
+
version: iBoot-7429.12.4.162.1
|
60
|
+
iv: 0a30f9a74429e5ae62e9cbcaab820000
|
61
|
+
key: 7561cc9a560f0cb00d760e532c5990ad64415cc74e7d53fbdbdf8146b0288696
|
62
|
+
sha:
|
63
|
+
256: d8a0fb99cd3b77045e697c952fcb90b254e66cb3e2303eba99a243e148065cf6
|
64
|
+
384: a87b3d5f0c1fa0d619d7e22e549af63f0eacba864a86dedd6aeb25cf1e73a42b9eb0505f72792f832d8d6bdf5d912549
|
65
|
+
keybags:
|
66
|
+
- index: 1
|
67
|
+
iv: ED6A6539EDDA1B669E0D79BAC7AC6995
|
68
|
+
key: 700494F34EDD2D05FA01286D6E0F1D18DDA96CA32D14884EE4CD2A5E5968D17A
|
69
|
+
- index: 2
|
70
|
+
iv: 4C03D556F9492D158426684B5030CBCC
|
71
|
+
key: 02617C9AB5E35A6650517A2D2BB356EE13CD4A79E5D2E81436A98DC2C4B34424
|
72
|
+
ibdt:
|
73
|
+
filename: iBootData.d54p.RELEASE.im4p
|
74
|
+
version: iBoot-7429.12.4.162.1
|
75
|
+
iv: 12b3b21327cdde96ead01b3ee1605ee7
|
76
|
+
key: b901fedd26fdee96ecfc8d9f7e1f825f9b9e995179b6c89b5c54eea0cbce7996
|
77
|
+
sha:
|
78
|
+
256: b7b91d189a3fa02efe6c696aba84170914113e34a8418fba4a3001dbf19740f6
|
79
|
+
384: f95fac4ba933ee56d7d38d572c5dc90f1131c04861c85120360bc80dbad29da02861c3f4482bce957b0894268e517944
|
80
|
+
keybags:
|
81
|
+
- index: 1
|
82
|
+
iv: 5F28B1EC63319941FC45F37FB6CD5ACC
|
83
|
+
key: 1C34099B106C39FECB0DD905434EB35C5FEBC25A26DF9061F0BA29949F07B710
|
84
|
+
- index: 2
|
85
|
+
iv: FEBDE49AFC7D6F049984E2799FE28444
|
86
|
+
key: BA20814DA519F4545A1FF4034AECE5847ED95EA85D98D1E8B3E4747790285F65
|
87
|
+
ibot:
|
88
|
+
filename: iBoot.d54p.RELEASE.im4p
|
89
|
+
version: iBoot-7429.12.4.162.1
|
90
|
+
iv: 059f68f4e825628feb57de2fb098008a
|
91
|
+
key: a7b73b08cab0e699b94eeb057ed7800241e8db7d1618fa45de68ef8448746444
|
92
|
+
sha:
|
93
|
+
256: 4b4deb6b7f47bb514cb5c8e3ffa74f37ecc6ecdfe2fb485de389e4626ce01305
|
94
|
+
384: a73944cbeadb16f62e272dabc705426fafa7b71f7ca87b1e94d0acd9b0586e00dd72f090410a19efc9d6ed7af59e8162
|
95
|
+
keybags:
|
96
|
+
- index: 1
|
97
|
+
iv: 7C0A48E3FF037C87E2C0FBD04C9B2E62
|
98
|
+
key: E59D27779A1DDB2663155FD44A04009886E9CB2FB9F1D95C5A14DA0F65089314
|
99
|
+
- index: 2
|
100
|
+
iv: 53895A46806F1F71B4A886BAD948C96D
|
101
|
+
key: FE351B586DCE9F555B122C98BCC3A00F010769916670F74D0748CA5920669BC8
|
102
|
+
illb:
|
103
|
+
filename: LLB.d54p.RELEASE.im4p
|
104
|
+
version: iBoot-7429.12.4.162.1
|
105
|
+
iv: f2f56b0e53aface4c9ea237efca81517
|
106
|
+
key: 165716a9b2d7e74e21db44aa7d06fc17b5098b93458e45ec0b561ed5dcad111a
|
107
|
+
sha:
|
108
|
+
256: bf9d87ae45823b1fc61b06d87acbadce9b8907b6228155b74fd17ff7f28489c6
|
109
|
+
384: eb2a9f63ad0c115f9ef6937eee07b0580ec12479f840ba83a5714e16539fbdf4be6d060bfbc5c05779f63616174a7a9d
|
110
|
+
keybags:
|
111
|
+
- index: 1
|
112
|
+
iv: 351513ED467EE110B34975A55ED99ADF
|
113
|
+
key: 850A0759202C59C2CFEF35117C1AA12BF1FC74763CA69B97D9A5EE93B611224B
|
114
|
+
- index: 2
|
115
|
+
iv: 64664E3A16FC44EF0C6CF7647DBBC5CC
|
116
|
+
key: 9ABBC8C78D18AD3453C2BCEB2780073C3214A0AE890D0B8B04250592EF7FD73D
|
117
|
+
ibss:
|
118
|
+
filename:
|
119
|
+
version: iBoot-7429.12.4.162.1
|
120
|
+
iv: 6317d53b9cfd8a47e716c31ab52833c7
|
121
|
+
key: d7b765a16da51caa74ba0dc1c4d1de420671ab7d6d047e89a6e2391c91cd6d9a
|
122
|
+
sha:
|
123
|
+
256: 462ac45417808d479a3e680811706f8b96e74f2bcabe199944f715307bd8f917
|
124
|
+
384: faec3de149f72b1c043de2846527c1ca4f75ff7d4e7840e729e44386e40c5c62f02a001f7c5007a56814228a6efbcf39
|
125
|
+
keybags:
|
126
|
+
- index: 1
|
127
|
+
iv: 8FC9712B90EE6E39461EC26C460677FE
|
128
|
+
key: 6B403617B54B25BA0ED61EE2188C687516CD1E835AD28E670C439D13C110701D
|
129
|
+
- index: 2
|
130
|
+
iv: 57FDA83ABD46CF01D6BE54B91F79CBED
|
131
|
+
key: 9511ED5BE4BD1968ECC8C598DD7D74202DC22215295B6C9BB598999E510BE261
|
132
|
+
sepi:
|
133
|
+
filename: sep-firmware.d54p.RELEASE.im4p
|
134
|
+
sha:
|
135
|
+
256: e98ffb65fecd09759b820be22a23163e10f29f13c01eef341aadf562c06db1d4
|
136
|
+
384: b2a2fbbf02ff8c21e304098d89a804b9b7190b9216725634b258b4dc056b5da09567a2dd997844f112d8f604011fb29c
|
137
|
+
keybags:
|
138
|
+
- index: 1
|
139
|
+
iv: C7F6A2EBD7B1E538251A583604871855
|
140
|
+
key: 8EAAFD85BA88A03184ABCEF974254F446D3373711847A3CBB17F6A14CACF0AF3
|
141
|
+
- index: 2
|
142
|
+
iv: E6A6828811C6D5730B4AFCC534B6FAC1
|
143
|
+
key: 4502ABC0C190EB4A5DC590D9045483FA7604F4D1FC05EA6D195CF1056B59CCA0
|
data/share/sip.yaml
ADDED
@@ -0,0 +1,58 @@
|
|
1
|
+
---
|
2
|
+
process_capabilities:
|
3
|
+
CSR_CAPABILITY_UNLIMITED:
|
4
|
+
value: 1
|
5
|
+
description: process is not restricted by SIP and may bypass
|
6
|
+
CSR_CAPABILITY_CONFIG:
|
7
|
+
value: 2
|
8
|
+
descrption:
|
9
|
+
CSR_CAPABILITY_APPLE_INTERNAL:
|
10
|
+
value: 4
|
11
|
+
description:
|
12
|
+
flags:
|
13
|
+
CSR_ALLOW_UNTRUSTED_KEXTS:
|
14
|
+
value: 1
|
15
|
+
description: allow loading kernel extensions that are not signed
|
16
|
+
disable_default: true
|
17
|
+
CSR_ALLOW_UNRESTRICTED_FS:
|
18
|
+
value: 2
|
19
|
+
description: disable SIP protections of various paths (such as write protection of /System)
|
20
|
+
disable_default: true
|
21
|
+
CSR_ALLOW_TASK_FOR_PID:
|
22
|
+
value: 4
|
23
|
+
description: allow getting the pid task, required for debugging
|
24
|
+
disable_default: true
|
25
|
+
CSR_ALLOW_KERNEL_DEBUGGER:
|
26
|
+
value: 8
|
27
|
+
description: allow using the kernel debugger (KDP) - requires configuring the kernel debugger via boot-args
|
28
|
+
disable_default: true
|
29
|
+
CSR_ALLOW_APPLE_INTERNAL:
|
30
|
+
value: 16
|
31
|
+
description:
|
32
|
+
disable_default: true
|
33
|
+
CSR_ALLOW_UNRESTRICTED_DTRACE:
|
34
|
+
aliases: [ CSR_ALLOW_DESTRUCTIVE_DTRACE ]
|
35
|
+
value: 32
|
36
|
+
description:
|
37
|
+
disable_default: true
|
38
|
+
CSR_ALLOW_UNRESTRICTED_NVRAM:
|
39
|
+
value: 64
|
40
|
+
description: disable restrictions to writing to restricted NVRAM variables
|
41
|
+
disable_default: true
|
42
|
+
CSR_ALLOW_DEVICE_CONFIGURATION:
|
43
|
+
value: 128
|
44
|
+
description:
|
45
|
+
always_enforced: true
|
46
|
+
CSR_ALLOW_ANY_RECOVERY_OS:
|
47
|
+
value: 256
|
48
|
+
description: disable validation of BaseSystem.dmg by ignoring BaseSystem.chunklist
|
49
|
+
always_enforced: true
|
50
|
+
CSR_ALLOW_UNAPPROVED_KEXTS:
|
51
|
+
value: 512
|
52
|
+
description: do not require kext approval (managed in the T2 when it exists)
|
53
|
+
CSR_ALLOW_EXECUTABLE_POLICY_OVERRIDE:
|
54
|
+
value: 1024
|
55
|
+
description: override spctl or executable policy
|
56
|
+
CSR_ALLOW_UNAUTHENTICATED_ROOT:
|
57
|
+
value: 2048
|
58
|
+
description:
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: apple-data
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.0.
|
4
|
+
version: 1.0.402
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Rick Mark
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-
|
11
|
+
date: 2022-04-10 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: pathutil
|
@@ -48,7 +48,9 @@ files:
|
|
48
48
|
- share/bundles.yaml
|
49
49
|
- share/cores.yaml
|
50
50
|
- share/credits.yaml
|
51
|
+
- share/defaults.yaml
|
51
52
|
- share/dnssd.yaml
|
53
|
+
- share/environment_variables.yaml
|
52
54
|
- share/fdr.yaml
|
53
55
|
- share/homekit.yaml
|
54
56
|
- share/iboot.yaml
|
@@ -57,6 +59,7 @@ files:
|
|
57
59
|
- share/ioreg.yaml
|
58
60
|
- share/ipsw.yaml
|
59
61
|
- share/kext.yaml
|
62
|
+
- share/keys.yaml
|
60
63
|
- share/launchd/services_bridgeOS_6.1.yaml
|
61
64
|
- share/lightning.yaml
|
62
65
|
- share/lockdownd.yaml
|
@@ -72,6 +75,7 @@ files:
|
|
72
75
|
- share/resources.yaml
|
73
76
|
- share/sep.yaml
|
74
77
|
- share/services.yaml
|
78
|
+
- share/sip.yaml
|
75
79
|
- share/syscfg.yaml
|
76
80
|
- share/vmapple.yaml
|
77
81
|
homepage: https://docs.hackdiffe.rent
|