int recovery_is_image4_supported(struct idevicerestore_client_t* client)
{
if(client->recovery == NULL) {
if (recovery_client_new(client) < 0) {
return 0;
}
}
const struct irecv_device_info *device_info = irecv_get_device_info(client->recovery->client);
if (!device_info) {
return 0;
}
return (device_info->ibfl & IBOOT_FLAG_IMAGE4_AWARE);
}
int recovery_get_ecid(struct idevicerestore_client_t* client, uint64_t* ecid) {
if(client->recovery == NULL) {
if (recovery_client_new(client) < 0) {
return -1;
}
}
const struct irecv_device_info *device_info = irecv_get_device_info(client->recovery->client);
if (!device_info) {
return -1;
}
*ecid = device_info->ecid;
return 0;
}
int dfu_get_cpid(struct idevicerestore_client_t* client, unsigned int* cpid) {
if(client->dfu == NULL) {
if (dfu_client_new(client) < 0) {
return -1;
}
}
const struct irecv_device_info *device_info = irecv_get_device_info(client->dfu->client);
if (!device_info) {
return -1;
}
*cpid = device_info->cpid;
return 0;
}
int recovery_client_new(struct idevicerestore_client_t* client) {
int i = 0;
int attempts = 20;
irecv_client_t recovery = NULL;
irecv_error_t recovery_error = IRECV_E_UNKNOWN_ERROR;
if(client->recovery == NULL) {
client->recovery = (struct recovery_client_t*)malloc(sizeof(struct recovery_client_t));
if (client->recovery == NULL) {
error("ERROR: Out of memory\n");
return -1;
}
memset(client->recovery, 0, sizeof(struct recovery_client_t));
}
for (i = 1; i <= attempts; i++) {
recovery_error = irecv_open_with_ecid(&recovery, client->ecid);
if (recovery_error == IRECV_E_SUCCESS) {
break;
}
if (i >= attempts) {
error("ERROR: Unable to connect to device in recovery mode\n");
return -1;
}
sleep(4);
debug("Retrying connection...\n");
}
if (client->srnm == NULL) {
const struct irecv_device_info *device_info = irecv_get_device_info(recovery);
if (device_info && device_info->srnm) {
client->srnm = strdup(device_info->srnm);
info("INFO: device serial number is %s\n", client->srnm);
}
}
irecv_event_subscribe(recovery, IRECV_PROGRESS, &recovery_progress_callback, NULL);
client->recovery->client = recovery;
return 0;
}
int recovery_get_sep_nonce(struct idevicerestore_client_t* client, unsigned char** nonce, int* nonce_size) {
if(client->recovery == NULL) {
if (recovery_client_new(client) < 0) {
return -1;
}
}
const struct irecv_device_info *device_info = irecv_get_device_info(client->recovery->client);
if (!device_info) {
return -1;
}
if (device_info->sep_nonce && device_info->sep_nonce_size > 0) {
*nonce = (unsigned char*)malloc(device_info->sep_nonce_size);
if (!*nonce) {
return -1;
}
*nonce_size = device_info->sep_nonce_size;
memcpy(*nonce, device_info->sep_nonce, *nonce_size);
}
return 0;
}
static void parse_command(irecv_client_t client, unsigned char* command, unsigned int size) {
char* cmd = strdup((char*)command);
char* action = strtok(cmd, " ");
if (!strcmp(cmd, "/exit")) {
quit = 1;
} else if (!strcmp(cmd, "/help")) {
shell_usage();
} else if (!strcmp(cmd, "/upload")) {
char* filename = strtok(NULL, " ");
debug("Uploading file %s\n", filename);
if (filename != NULL) {
irecv_send_file(client, filename, 0);
}
} else if (!strcmp(cmd, "/deviceinfo")) {
int ret, mode;
const struct irecv_device_info *devinfo = irecv_get_device_info(client);
if (devinfo) {
printf("CPID: %04x\n", devinfo->cpid);
printf("CPRV: %02x\n", devinfo->cprv);
printf("BDID: %02x\n", devinfo->bdid);
printf("ECID: " _FMT_lld "\n", devinfo->ecid);
printf("CPFM: %02x\n", devinfo->cpfm);
printf("SCEP: %02x\n", devinfo->scep);
printf("IBFL: %02x\n", devinfo->ibfl);
printf("SRNM: %s\n", (devinfo->srnm) ? devinfo->srnm : "N/A");
printf("IMEI: %s\n", (devinfo->imei) ? devinfo->imei : "N/A");
} else {
printf("Could not get device info?!\n");
}
ret = irecv_get_mode(client, &mode);
if (ret == IRECV_E_SUCCESS) {
printf("MODE: %s\n", mode_to_str(mode));
}
} else if (!strcmp(cmd, "/limera1n")) {
char* filename = strtok(NULL, " ");
debug("Sending limera1n payload %s\n", filename);
if (filename != NULL) {
irecv_send_file(client, filename, 0);
}
irecv_trigger_limera1n_exploit(client);
} else if (!strcmp(cmd, "/execute")) {
char* filename = strtok(NULL, " ");
debug("Executing script %s\n", filename);
if (filename != NULL) {
char* buffer = NULL;
uint64_t buffer_length = 0;
buffer_read_from_filename(filename, &buffer, &buffer_length);
if (buffer) {
buffer[buffer_length] = '\0';
irecv_execute_script(client, buffer);
free(buffer);
} else {
printf("Could not read file '%s'\n", filename);
}
}
} else {
printf("Unsupported command %s. Use /help to get a list of available commands.\n", cmd);
}
free(action);
}
