fixed that load trust cache failed on iphone15* ios17.0

roothider · roothider · commit 0b0a7e4a34ec · 2025-12-29T22:18:21.000+08:00
diff --git a/.gitignore b/.gitignore
@@ -4,3 +4,4 @@ packages/
 /layout/
 .vscode/
 /Bootstrap/basebin
+/Bootstrap.xcodeproj/project.xcworkspace/xcuserdata
diff --git a/Bootstrap.xcodeproj/project.xcworkspace/xcuserdata/admin.xcuserdatad/IDEFindNavigatorScopes.plist b/Bootstrap.xcodeproj/project.xcworkspace/xcuserdata/admin.xcuserdatad/IDEFindNavigatorScopes.plist
diff --git a/Bootstrap.xcodeproj/project.xcworkspace/xcuserdata/admin.xcuserdatad/UserInterfaceState.xcuserstate b/Bootstrap.xcodeproj/project.xcworkspace/xcuserdata/admin.xcuserdatad/UserInterfaceState.xcuserstate
diff --git a/Bootstrap/ViewController.m b/Bootstrap/ViewController.m
@@ -160,8 +160,7 @@ void initFromSwiftUI()
 
     [AppDelegate addLogText:[NSString stringWithFormat:Localized(@"ios-version: %@"),UIDevice.currentDevice.systemVersion]];
 
-    struct utsname systemInfo;
-    uname(&systemInfo);
+    struct utsname systemInfo={0}; uname(&systemInfo);
     [AppDelegate addLogText:[NSString stringWithFormat:Localized(@"device-model: %s"),systemInfo.machine]];
 
     [AppDelegate addLogText:[NSString stringWithFormat:Localized(@"app-version: %@"),NSBundle.mainBundle.infoDictionary[@"CFBundleShortVersionString"]]];
@@ -440,7 +439,7 @@ BOOL opensshAction(BOOL enable)
 
 #define RESIGNED_SYSROOT_PATH jbroot(@"/.sysroot")
 
-int exploitStart()
+int exploitStart(NSString* execDir)
 {
     NSFileManager* fm = NSFileManager.defaultManager;
     
@@ -508,12 +507,6 @@ int exploitStart()
         ASSERT(spawnRoot(fastSignPath, @[destPath], nil, nil) == 0);
     }
     
-    
-    NSString* execDir = [@"/var/db/com.apple.xpc.roleaccountd.staging/exec-" stringByAppendingString:[[NSUUID UUID] UUIDString]];
-    
-    int child_stage1_prepare(NSString* execDir);
-    ASSERT(child_stage1_prepare(execDir) == 0);
-    
     ASSERT(spawnRoot(jbroot(@"/basebin/TaskPortHaxx"), @[execDir], nil, nil) == 0);
     
     ASSERT(spawnRoot(jbroot(@"/basebin/bsctl"), @[@"usreboot"], nil, nil) == 0);
@@ -617,9 +610,6 @@ void bootstrapAction()
             [AppDelegate addLogText:[NSString stringWithFormat:@"ERR: %@\n",str]];
         });
 
-        [AppDelegate dismissHud];
-        setIdleTimerDisabled(NO);
-
         if(status != 0)
         {
             [AppDelegate showMesage:@"" title:[NSString stringWithFormat:@"code(%d)",status]];
@@ -654,7 +644,22 @@ void bootstrapAction()
         if(@available(iOS 16.0, *))
         {
             [AppDelegate addLogText:Localized(@"exploit...")];
-            const char* argv2[] = {NSBundle.mainBundle.executablePath.fileSystemRepresentation, "exploit", NULL};
+            
+            NSString* execDir = [@"/var/db/com.apple.xpc.roleaccountd.staging/exec-" stringByAppendingString:[[NSUUID UUID] UUIDString]];
+                
+            @try {
+                ASSERT(spawnRoot(jbroot(@"/basebin/TaskPortHaxx"), @[@"prepare", execDir], nil, nil) == 0);
+                
+                int load_trust_cache(NSString *tcPath);
+                ASSERT(load_trust_cache(jbroot(@"/tmp/TaskPortHaxx/UpdateBrainService/AssetData/.TrustCache")) == 0);
+            }
+            @catch (NSException *exception)
+            {
+                [AppDelegate showMesage:[NSString stringWithFormat:@"***exception: %@", exception] title:@"ERROR"];
+                return;
+            }
+            
+            const char* argv2[] = {NSBundle.mainBundle.executablePath.fileSystemRepresentation, "exploit", execDir.fileSystemRepresentation, NULL};
             status = spawn(argv2[0], argv2, environ, nil, ^(char* outstr, int length) {
                 NSString *str = [[NSString alloc] initWithBytes:outstr length:length encoding:NSASCIIStringEncoding];
                 [AppDelegate addLogText:str];
@@ -670,6 +675,8 @@ void bootstrapAction()
             return;
         }
         
+        setIdleTimerDisabled(NO);
+        [AppDelegate dismissHud];
         [generator impactOccurred];
         
         [AppDelegate addLogText:Localized(@"respring now...")]; sleep(1);
diff --git a/Bootstrap/main.m b/Bootstrap/main.m
@@ -32,7 +32,7 @@ int main(int argc, char * argv[]) {
                 exit(unbootstrap());
             } else if(strcmp(argv[1], "exploit")==0) {
                 int exploitStart();
-                exit(exploitStart());
+                exit(exploitStart(@(argv[2])));
             } else if(strcmp(argv[1], "enableapp")==0) {
                 int enableForApp(NSString* bundlePath);
                 exit(enableForApp(@(argv[2])));
diff --git a/Bootstrap/seh.h b/Bootstrap/seh.h
@@ -7,7 +7,7 @@
 #define ABORT()  do {\
 @throw [NSException\
         exceptionWithName:@"ABORT"\
-        reason:[NSString stringWithFormat:@"%s (%d)", __FILE_NAME__, __LINE__]\
+        reason:[NSString stringWithFormat:@"%s: %s (%d)", __FILE_NAME__, __func__, __LINE__]\
         userInfo:nil];\
 } while(0)
 
@@ -17,7 +17,7 @@
 #define ASSERT(...)  do{if(!(__VA_ARGS__)) {\
 @throw [NSException\
         exceptionWithName:@"ASSERT"\
-        reason:[NSString stringWithFormat:@"%s (%d): %s", __FILE_NAME__, __LINE__, #__VA_ARGS__]\
+        reason:[NSString stringWithFormat:@"%s: %s (%d): %s", __FILE_NAME__, __func__, __LINE__, #__VA_ARGS__]\
         userInfo:nil];\
 }} while(0)
 
diff --git a/basebin b/basebin
@@ -1 +1 @@
-Subproject commit 4fdc8e7b07a42dfd1cc524ff8b35ff92d4023f82
+Subproject commit d18656c4f6cb17d0e0cb7978aa768e344b0bbc68
