-
Notifications
You must be signed in to change notification settings - Fork 25
crackleware/idevice-app-runner
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
*** Run app on iDevice using com.apple.debugserver ***
This simple utility will start iOS app (using com.apple.debugserver)
and tail its output.
Interrupting idevice-app-runner process (ctrl-c) stops app on iDevice
too.
Requirements:
* libimobiledevice - http://www.libimobiledevice.org/
* iDevice(s) (maybe in developer mode)
Build:
$ make
Usage:
$ idevice-app-runner -r /private/var/mobile/Applications/........-....-....-....-............/...
I cooked up something mostly by tracing APIs and syscalls used in
Xcode and fruitscrap.
To get app path, for example:
$ APPNAME=something APPPATH=`ideviceinstaller -l -o xml | egrep -A1 '<key>Path</key>|<key>CFBundleName</key>' | tr -d $'\n' | sed 's/--/\n/g' | egrep -A1 'CFBundleName.*'$APPNAME | tail -1 | tr '<>' ' ' | awk '{print $5}'`
or
$ ideviceinstaller -l -o xml | grep -A1 '<key>Path</key>' | grep '<string>' | tr '<>' ' ' | awk '{ print $2 }' | grep $APPNAME
Tested:
Linux 3.0, x86_64, libimobiledevice-git, iOS 4.1 - works
Linux 3.0, x86_64, libimobiledevice-git, iOS 5.0.1 - works
Linux 3.0, i686, libimobiledevice-git, iOS 5.0.1 - works
Notes:
Sometimes debugger process or application being run is left
hanging, it's not killed properly. When that happens it's impossible
to run application again. Workaround for this issue is to restore
device with --reboot option,
$ idevicebackup2 restore --reboot bakdir...
Wait for device to come back online by monitoring with ideviceinfo. It
will take a few minutes. When reboot is completed, developer image
should be mounted,
$ idevicemountimage .../{DeveloperDiskImage.dmg,DeveloperDiskImage.dmg.signature}
so idevice-app-runner can be used again.
References:
https://github.com/ghughes/fruitstrap - very helpful
Contact:
[email protected]
DTRUSS COMMANDS:
With tweak in fruitscrap.c:
#define GDB_SHELL "sudo dtruss /Developer/Platforms/iPhoneOS.platform/Developer/usr/libexec/gdb/gdb-arm-apple-darwin --arch armv7 -q -x " PREP_CMDS_PATH " 2> dtruss2.log"
For example:
$ egrep 'write\(0x5,|read\(0x5,' dtruss2.log
GDB COMMANDS:
$ gdb .../Xcode nnnnn
set print elements 10000
b mobdevlog
command
silent
printf "mobdevlog: %s\n", $rsi
cont
end
b USBMuxDebugLog
command
silent
printf "USBMuxDebugLog: %s %s\n", $rsi, $rdi
cont
end
b send
command
printf "fd=%ld, size=%ld\n", $rdi, $rdx
x/s $rsi
bt 3
cont
end
b SSL_write
command
p/d $rdx
x/s $rsi
cont
end
#b write
b *0x0000000100fd3268
command
printf "fd=%ld, size=%ld\n", $rdi, $rdx
x/s $rsi
bt 3
cont
end
#b recvfrom
b *0x10100494c
command
printf "fd=%ld, size=%ld\n", $rdi, $rdx
set variable $buf = $rsi
cont
end
#b <recvfrom+17>
b *0x10100494c+17
command
x/s $buf
cont
end
#b read
b *0x100fcb45c
command
printf "fd=%ld, size=%ld\n", $rdi, $rdx
set variable $buf2 = $rsi
cont
end
#b read+17
b *0x100fcb45c+17
command
x/s $buf2
cont
end
#b BIO_write
b *0x106aefaf8
command
printf "fd=%ld, size=%ld\n", $rdi, $rdx
x/s $rsi
x/100c $rsi
bt 3
cont
end
b DTDKStartSecureDebugServerService
About
Run app on iDevice using libimobiledevice and com.apple.debugserver service
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published