Doesn't run on 14.1 Beta (23B5056e)

Question

Doesn't run on 14.1 Beta (23B5056e)

Closed this issue 6 months ago · 5 comments

Readme suggests that this should work on all versions. 14.x

I understand it is Beta but I also figure this may be the case for a large cohort of users.

Answer 1 · 2023-12-22T15:31:27.000Z

It looks like provisions for addressing this are covered in this PR: #7

However, I'm gathering Beeper may be abandoning this repo and it will be up to the community to fork and manage this moving forward.

Answer 2 · 2023-12-22T23:08:24.000Z

It looks like provisions for addressing this are covered in this PR

@synman Curious, which aspects of that PR do you feel cover this 14.1 beta bit? The 'automatically find offsets' prototype I mentioned in #7 (comment) ?

@itsphilgeorge Are you able to zip up the following file and upload it somewhere (ideally probably not this repo to avoid potential copyright/etc issues)?

/System/Library/PrivateFrameworks/IDS.framework/identityservicesd.app/Contents/MacOS/identityservicesd

Bonus points if you rename it to something like macos-14.1-beta-BUILDCODE-identityservicesd, where BUILDCODE is the bit of the version that looks similar to this 22E261

That way I (or someone) might be able to have a look and find the offsets for it (and can also test if my automatic script works on that version)

Answer 3 · 2023-12-23T10:47:05.000Z

Latest updates on the 'automatically find offsets' prototype:

Edit: See

#6

I've also been working on a PoC script that is able to find the offsets automagically (at least across the 13.3.1, 13.5, 14.2 x86 binaries I have tested it against so far). I'll probably continue working on it tomorrow, and then hopefully push the code on a PoC repo

This is the repo:

https://github.com/0xdevalias/poc-re-binsearch

The 'find offsets automagically' script is:

https://github.com/0xdevalias/poc-re-binsearch/blob/main/find_fat_binary_offsets.py

Some helper scripts for figuring out what to use as the patterns there include:

https://github.com/0xdevalias/poc-re-binsearch/blob/main/rafind2-fat-binary

https://github.com/0xdevalias/poc-re-binsearch/blob/main/xxd-fat-binary

You might find some useful or interesting notes here:

https://github.com/0xdevalias/poc-re-binsearch/blob/main/notes.md

There might be more stuff that is/will end up in that repo that could also be useful; but for now, I think that is the bulk of it.

Originally posted by @0xdevalias in #7 (comment)

Answer 4 · 2024-01-06T08:21:59.000Z

@jetfir3 If you felt like reversing some more versions.

Curious, how do you have access to the older binaries? Extracting them from Time Machine backups/similar, or?

Originally posted by @0xdevalias in #12 (comment)

Downloading macOS and extracting the binary for each version.

https://github.com/corpnewt/gibMacOS
https://support.apple.com/kb/DL2052
etc

Originally posted by @jetfir3 in #12 (comment)

Answer 5 · 2024-01-09T17:53:59.000Z

Beta versions (other than the latest one) won't be supported manually. It may work if #9 is implemented at some point