timamsk/OpenCore-Legacy-Patcher
1
0
Fork 0
mirror of https://github.com/dortania/OpenCore-Legacy-Patcher.git synced 2026-04-24 03:50:14 +10:00
Code Issues Packages Projects Releases Wiki Activity

Implement libSystem.dylib based SIP parsing

Browse Source
This commit is contained in:
Mykola Grymalyuk
2021-11-14 12:24:35 -07:00
parent fda3a1724d
commit 1799691348
1 changed files with 16 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
resources/utilities.py
View File

@@ -10,6 +10,7 @@ from pathlib import Path
import os import os
import binascii import binascii
import argparse import argparse
from ctypes import CDLL, c_uint, byref
try: try:
import requests import requests
@@ -92,10 +93,18 @@ def check_seal():
return False return False
def csr_decode(csr_active_config, os_sip): def csr_decode(os_sip):
if csr_active_config is None: # Based off sip_config.py
csr_active_config = b"\x00\x00\x00\x00" # https://gist.github.com/pudquick/8b320be960e1654b908b10346272326b
sip_int = int.from_bytes(csr_active_config, byteorder="little") # https://opensource.apple.com/source/xnu/xnu-7195.141.2/libsyscall/wrappers/csr.c.auto.html
# Far more reliable than parsing csr-active-config
# Note that 'csr_get_active_config' was not introduced until 10.11
# However this function should never be called on 10.10 or earlier
libsys = CDLL('/usr/lib/libSystem.dylib')
raw = c_uint(0)
errmsg = libsys.csr_get_active_config(byref(raw))
sip_int = raw.value
i = 0 i = 0
for current_sip_bit in sip_data.system_integrity_protection.csr_values: for current_sip_bit in sip_data.system_integrity_protection.csr_values:
if sip_int & (1 << i): if sip_int & (1 << i):
@@ -202,7 +211,9 @@ def patching_status(os_sip, os):
else: else:
sbm_enabled = False sbm_enabled = False
if get_nvram("csr-active-config", decode=False) and csr_decode(get_nvram("csr-active-config", decode=False), os_sip) is False: if os > os_data.os_data.yosemite:
sip_enabled = csr_decode(os_sip)
else:
sip_enabled = False sip_enabled = False
if os > os_data.os_data.catalina and not check_filevault_skip(): if os > os_data.os_data.catalina and not check_filevault_skip():