2020-01-08 12:41:02 -08:00
//
// F e t c h A n i s e t t e D a t a O p e r a t i o n . s w i f t
// A l t S t o r e
//
// C r e a t e d b y R i l e y T e s t u t o n 1 / 7 / 2 0 .
// C o p y r i g h t © 2 0 2 0 R i l e y T e s t u t . A l l r i g h t s r e s e r v e d .
//
import Foundation
2023-05-18 01:30:18 -07:00
import CommonCrypto
import Starscream
2020-01-08 12:41:02 -08:00
2020-09-03 16:39:08 -07:00
import AltStoreCore
2020-01-08 12:41:02 -08:00
import AltSign
import Roxas
@objc ( FetchAnisetteDataOperation )
2023-05-18 01:30:18 -07:00
final class FetchAnisetteDataOperation : ResultOperation < ALTAnisetteData > , WebSocketDelegate
2020-01-08 12:41:02 -08:00
{
2020-03-06 17:08:35 -08:00
let context : OperationContext
2023-05-18 01:30:18 -07:00
var socket : WebSocket !
var url : URL ?
var startProvisioningURL : URL ?
var endProvisioningURL : URL ?
var clientInfo : String ?
var userAgent : String ?
var mdLu : String ?
var deviceId : String ?
2020-01-08 12:41:02 -08:00
2020-03-06 17:08:35 -08:00
init ( context : OperationContext )
2020-01-08 12:41:02 -08:00
{
2020-03-06 17:08:35 -08:00
self . context = context
2020-01-08 12:41:02 -08:00
}
override func main ( )
{
super . main ( )
2020-03-06 17:08:35 -08:00
if let error = self . context . error
2020-01-08 12:41:02 -08:00
{
self . finish ( . failure ( error ) )
return
}
2024-08-06 10:43:52 +09:00
self . url = URL ( string : UserDefaults . standard . menuAnisetteURL )
2023-05-18 01:30:18 -07:00
print ( " Anisette URL: \( self . url ! . absoluteString ) " )
2022-11-16 17:51:13 -05:00
2023-05-18 01:30:18 -07:00
if let identifier = Keychain . shared . identifier ,
let adiPb = Keychain . shared . adiPb {
fetchAnisetteV3 ( identifier , adiPb )
} else {
provision ( )
}
}
// MARK: - C O M M O N
func extractAnisetteData ( _ data : Data , _ response : HTTPURLResponse ? , v3 : Bool ) throws {
// m a k e s u r e t h i s J S O N i s i n t h e f o r m a t w e e x p e c t
// c o n v e r t d a t a t o j s o n
if let json = try JSONSerialization . jsonObject ( with : data , options : [ ] ) as ? [ String : String ] {
if v3 {
if json [ " result " ] = = " GetHeadersError " {
let message = json [ " message " ]
print ( " Error getting V3 headers: \( message ? ? " no message " ) " )
if let message = message ,
message . contains ( " -45061 " ) {
print ( " Error message contains -45061 (not provisioned), resetting adi.pb and retrying " )
Keychain . shared . adiPb = nil
return provision ( )
} else { throw OperationError . anisetteV3Error ( message : message ? ? " Unknown error " ) }
}
}
2022-11-16 17:51:13 -05:00
2023-05-18 01:30:18 -07:00
// t r y t o r e a d o u t a d i c t i o n a r y
// f o r s o m e r e a s o n s e r i a l n u m b e r i s n ' t n e e d e d b u t i t d o e s n ' t w o r k u n l e s s i t h a s a v a l u e
var formattedJSON : [ String : String ] = [ " deviceSerialNumber " : " 0 " ]
if let machineID = json [ " X-Apple-I-MD-M " ] { formattedJSON [ " machineID " ] = machineID }
if let oneTimePassword = json [ " X-Apple-I-MD " ] { formattedJSON [ " oneTimePassword " ] = oneTimePassword }
if let routingInfo = json [ " X-Apple-I-MD-RINFO " ] { formattedJSON [ " routingInfo " ] = routingInfo }
if v3 {
formattedJSON [ " deviceDescription " ] = self . clientInfo !
formattedJSON [ " localUserID " ] = self . mdLu !
formattedJSON [ " deviceUniqueIdentifier " ] = self . deviceId !
// G e n e r a t e d a t e s t u f f o n c l i e n t
let formatter = DateFormatter ( )
formatter . locale = Locale ( identifier : " en_US_POSIX " )
formatter . calendar = Calendar ( identifier : . gregorian )
formatter . timeZone = TimeZone . current
formatter . dateFormat = " yyyy-MM-dd'T'HH:mm:ss'Z' "
let dateString = formatter . string ( from : Date ( ) )
formattedJSON [ " date " ] = dateString
formattedJSON [ " locale " ] = Locale . current . identifier
formattedJSON [ " timeZone " ] = TimeZone . current . abbreviation ( )
} else {
if let deviceDescription = json [ " X-MMe-Client-Info " ] { formattedJSON [ " deviceDescription " ] = deviceDescription }
if let localUserID = json [ " X-Apple-I-MD-LU " ] { formattedJSON [ " localUserID " ] = localUserID }
if let deviceUniqueIdentifier = json [ " X-Mme-Device-Id " ] { formattedJSON [ " deviceUniqueIdentifier " ] = deviceUniqueIdentifier }
if let date = json [ " X-Apple-I-Client-Time " ] { formattedJSON [ " date " ] = date }
if let locale = json [ " X-Apple-Locale " ] { formattedJSON [ " locale " ] = locale }
if let timeZone = json [ " X-Apple-I-TimeZone " ] { formattedJSON [ " timeZone " ] = timeZone }
}
if let response = response ,
let version = response . value ( forHTTPHeaderField : " Implementation-Version " ) {
print ( " Implementation-Version: \( version ) " )
} else { print ( " No Implementation-Version header " ) }
print ( " Anisette used: \( formattedJSON ) " )
print ( " Original JSON: \( json ) " )
if let anisette = ALTAnisetteData ( json : formattedJSON ) {
print ( " Anisette is valid! " )
self . finish ( . success ( anisette ) )
} else {
print ( " Anisette is invalid!!!! " )
if v3 {
throw OperationError . anisetteV3Error ( message : " Invalid anisette (the returned data may not have all the required fields) " )
} else {
throw OperationError . anisetteV1Error ( message : " Invalid anisette (the returned data may not have all the required fields) " )
2022-11-16 17:51:13 -05:00
}
2023-05-18 01:30:18 -07:00
}
} else {
if v3 {
throw OperationError . anisetteV3Error ( message : " Invalid anisette (the returned data may not be in JSON) " )
} else {
throw OperationError . anisetteV1Error ( message : " Invalid anisette (the returned data may not be in JSON) " )
}
}
}
// MARK: - V 1
func handleV1 ( ) {
print ( " Server is V1 " )
if UserDefaults . shared . trustedServerURL = = AnisetteManager . currentURLString {
print ( " Server has already been trusted, fetching anisette " )
return self . fetchAnisetteV1 ( )
}
print ( " Alerting user about outdated server " )
let alert = UIAlertController ( title : " WARNING: Outdated anisette server " , message : " We've detected you are using an older anisette server. Using this server has a higher likelihood of locking your account and causing other issues. Are you sure you want to continue? " , preferredStyle : UIAlertController . Style . alert )
alert . addAction ( UIAlertAction ( title : " Continue " , style : UIAlertAction . Style . destructive , handler : { action in
print ( " Fetching anisette via V1 " )
UserDefaults . shared . trustedServerURL = AnisetteManager . currentURLString
self . fetchAnisetteV1 ( )
} ) )
alert . addAction ( UIAlertAction ( title : " Cancel " , style : UIAlertAction . Style . cancel , handler : { action in
print ( " Cancelled anisette operation " )
self . finish ( . failure ( OperationError . cancelled ) )
} ) )
let keyWindow = UIApplication . shared . windows . filter { $0 . isKeyWindow } . first
DispatchQueue . main . async {
if let presentingController = keyWindow ? . rootViewController ? . presentedViewController {
presentingController . present ( alert , animated : true )
} else {
keyWindow ? . rootViewController ? . present ( alert , animated : true )
}
}
}
func fetchAnisetteV1 ( ) {
print ( " Fetching anisette V1 " )
URLSession . shared . dataTask ( with : self . url ! ) { data , response , error in
do {
guard let data = data , error = = nil else { throw OperationError . anisetteV1Error ( message : " Unable to fetch data \( error != nil ? " ( \( error ! . localizedDescription ) ) " : " " ) " ) }
try self . extractAnisetteData ( data , response as ? HTTPURLResponse , v3 : false )
2022-11-16 17:51:13 -05:00
} catch let error as NSError {
print ( " Failed to load: \( error . localizedDescription ) " )
self . finish ( . failure ( error ) )
}
2023-05-18 01:30:18 -07:00
} . resume ( )
}
// MARK: - V 3 : P R O V I S I O N I N G
func provision ( ) {
fetchClientInfo {
print ( " Getting provisioning URLs " )
var request = self . buildAppleRequest ( url : URL ( string : " https://gsa.apple.com/grandslam/GsService2/lookup " ) ! )
request . httpMethod = " GET "
URLSession . shared . dataTask ( with : request ) { data , response , error in
if let data = data ,
let plist = try ? PropertyListSerialization . propertyList ( from : data , format : nil ) as ? Dictionary < String , Dictionary < String , Any > > ,
let startProvisioningString = plist [ " urls " ] ? [ " midStartProvisioning " ] as ? String ,
let startProvisioningURL = URL ( string : startProvisioningString ) ,
let endProvisioningString = plist [ " urls " ] ? [ " midFinishProvisioning " ] as ? String ,
let endProvisioningURL = URL ( string : endProvisioningString ) {
self . startProvisioningURL = startProvisioningURL
self . endProvisioningURL = endProvisioningURL
print ( " startProvisioningURL: \( self . startProvisioningURL ! . absoluteString ) " )
print ( " endProvisioningURL: \( self . endProvisioningURL ! . absoluteString ) " )
print ( " Starting a provisioning session " )
self . startProvisioningSession ( )
} else {
print ( " Apple didn't give valid URLs! Got response: \( String ( data : data ? ? Data ( " nothing " . utf8 ) , encoding : . utf8 ) ? ? " not utf8 " ) " )
self . finish ( . failure ( OperationError . provisioningError ( result : " Apple didn't give valid URLs. Please try again later " , message : nil ) ) )
}
} . resume ( )
}
}
func startProvisioningSession ( ) {
let provisioningSessionURL = self . url ! . appendingPathComponent ( " v3 " ) . appendingPathComponent ( " provisioning_session " )
var wsRequest = URLRequest ( url : provisioningSessionURL )
wsRequest . timeoutInterval = 5
self . socket = WebSocket ( request : wsRequest )
self . socket . delegate = self
self . socket . connect ( )
}
2023-09-17 10:45:55 -07:00
func didReceive ( event : WebSocketEvent , client : WebSocketClient ) {
2023-05-18 01:30:18 -07:00
switch event {
case . text ( let string ) :
do {
if let json = try JSONSerialization . jsonObject ( with : string . data ( using : . utf8 ) ! , options : [ ] ) as ? [ String : Any ] {
guard let result = json [ " result " ] as ? String else {
print ( " The server didn't give us a result " )
client . disconnect ( closeCode : 0 )
self . finish ( . failure ( OperationError . provisioningError ( result : " The server didn't give us a result " , message : nil ) ) )
return
}
print ( " Received result: \( result ) " )
switch result {
case " GiveIdentifier " :
print ( " Giving identifier " )
client . json ( [ " identifier " : Keychain . shared . identifier ! ] )
case " GiveStartProvisioningData " :
print ( " Getting start provisioning data " )
let body = [
" Header " : [ String : Any ] ( ) ,
" Request " : [ String : Any ] ( ) ,
]
var request = self . buildAppleRequest ( url : self . startProvisioningURL ! )
request . httpMethod = " POST "
request . httpBody = try ! PropertyListSerialization . data ( fromPropertyList : body , format : . xml , options : 0 )
URLSession . shared . dataTask ( with : request ) { data , response , error in
if let data = data ,
let plist = try ? PropertyListSerialization . propertyList ( from : data , format : nil ) as ? Dictionary < String , Dictionary < String , Any > > ,
let spim = plist [ " Response " ] ? [ " spim " ] as ? String {
print ( " Giving start provisioning data " )
client . json ( [ " spim " : spim ] )
} else {
print ( " Apple didn't give valid start provisioning data! Got response: \( String ( data : data ? ? Data ( " nothing " . utf8 ) , encoding : . utf8 ) ? ? " not utf8 " ) " )
client . disconnect ( closeCode : 0 )
self . finish ( . failure ( OperationError . provisioningError ( result : " Apple didn't give valid start provisioning data. Please try again later " , message : nil ) ) )
}
} . resume ( )
case " GiveEndProvisioningData " :
print ( " Getting end provisioning data " )
guard let cpim = json [ " cpim " ] as ? String else {
print ( " The server didn't give us a cpim " )
client . disconnect ( closeCode : 0 )
self . finish ( . failure ( OperationError . provisioningError ( result : " The server didn't give us a cpim " , message : nil ) ) )
return
}
let body = [
" Header " : [ String : Any ] ( ) ,
" Request " : [
" cpim " : cpim ,
] ,
]
var request = self . buildAppleRequest ( url : self . endProvisioningURL ! )
request . httpMethod = " POST "
request . httpBody = try ! PropertyListSerialization . data ( fromPropertyList : body , format : . xml , options : 0 )
URLSession . shared . dataTask ( with : request ) { data , response , error in
if let data = data ,
let plist = try ? PropertyListSerialization . propertyList ( from : data , format : nil ) as ? Dictionary < String , Dictionary < String , Any > > ,
let ptm = plist [ " Response " ] ? [ " ptm " ] as ? String ,
let tk = plist [ " Response " ] ? [ " tk " ] as ? String {
print ( " Giving end provisioning data " )
client . json ( [ " ptm " : ptm , " tk " : tk ] )
} else {
print ( " Apple didn't give valid end provisioning data! Got response: \( String ( data : data ? ? Data ( " nothing " . utf8 ) , encoding : . utf8 ) ? ? " not utf8 " ) " )
client . disconnect ( closeCode : 0 )
self . finish ( . failure ( OperationError . provisioningError ( result : " Apple didn't give valid end provisioning data. Please try again later " , message : nil ) ) )
}
} . resume ( )
case " ProvisioningSuccess " :
print ( " Provisioning succeeded! " )
client . disconnect ( closeCode : 0 )
guard let adiPb = json [ " adi_pb " ] as ? String else {
print ( " The server didn't give us an adi.pb file " )
self . finish ( . failure ( OperationError . provisioningError ( result : " The server didn't give us an adi.pb file " , message : nil ) ) )
return
}
Keychain . shared . adiPb = adiPb
self . fetchAnisetteV3 ( Keychain . shared . identifier ! , Keychain . shared . adiPb ! )
default :
if result . contains ( " Error " ) || result . contains ( " Invalid " ) || result = = " ClosingPerRequest " || result = = " Timeout " || result = = " TextOnly " {
print ( " Failing because of \( result ) " )
self . finish ( . failure ( OperationError . provisioningError ( result : result , message : json [ " message " ] as ? String ) ) )
}
}
}
} catch let error as NSError {
print ( " Failed to handle text: \( error . localizedDescription ) " )
self . finish ( . failure ( OperationError . provisioningError ( result : error . localizedDescription , message : nil ) ) )
}
case . connected :
print ( " Connected " )
case . disconnected ( let string , let code ) :
print ( " Disconnected: \( code ) ; \( string ) " )
case . error ( let error ) :
print ( " Got error: \( String ( describing : error ) ) " )
2022-11-16 17:51:13 -05:00
2023-05-18 01:30:18 -07:00
default :
print ( " Unknown event: \( event ) " )
}
}
func buildAppleRequest ( url : URL ) -> URLRequest {
var request = URLRequest ( url : url )
request . setValue ( self . clientInfo ! , forHTTPHeaderField : " X-Mme-Client-Info " )
request . setValue ( self . userAgent ! , forHTTPHeaderField : " User-Agent " )
request . setValue ( " text/x-xml-plist " , forHTTPHeaderField : " Content-Type " )
request . setValue ( " */* " , forHTTPHeaderField : " Accept " )
request . setValue ( self . mdLu ! , forHTTPHeaderField : " X-Apple-I-MD-LU " )
request . setValue ( self . deviceId ! , forHTTPHeaderField : " X-Mme-Device-Id " )
let formatter = DateFormatter ( )
formatter . locale = Locale ( identifier : " en_US_POSIX " )
formatter . calendar = Calendar ( identifier : . gregorian )
formatter . timeZone = TimeZone ( identifier : " UTC " )
formatter . dateFormat = " yyyy-MM-dd'T'HH:mm:ss'Z' "
let dateString = formatter . string ( from : Date ( ) )
request . setValue ( dateString , forHTTPHeaderField : " X-Apple-I-Client-Time " )
request . setValue ( Locale . current . identifier , forHTTPHeaderField : " X-Apple-Locale " )
request . setValue ( TimeZone . current . abbreviation ( ) , forHTTPHeaderField : " X-Apple-I-TimeZone " )
return request
}
// MARK: - V 3 : F E T C H I N G
func fetchClientInfo ( _ callback : @ escaping ( ) -> Void ) {
if self . clientInfo != nil &&
self . userAgent != nil &&
self . mdLu != nil &&
self . deviceId != nil &&
Keychain . shared . identifier != nil {
print ( " Skipping client_info fetch since all the properties we need aren't nil " )
return callback ( )
}
print ( " Trying to get client_info " )
let clientInfoURL = self . url ! . appendingPathComponent ( " v3 " ) . appendingPathComponent ( " client_info " )
URLSession . shared . dataTask ( with : clientInfoURL ) { data , response , error in
do {
guard let data = data , error = = nil else {
return self . finish ( . failure ( OperationError . anisetteV3Error ( message : " Couldn't fetch client info. The server may be down \( error != nil ? " ( \( error ! . localizedDescription ) ) " : " " ) " ) ) )
}
if let json = try JSONSerialization . jsonObject ( with : data , options : [ ] ) as ? [ String : String ] {
if let clientInfo = json [ " client_info " ] {
print ( " Server is V3 " )
self . clientInfo = clientInfo
self . userAgent = json [ " user_agent " ] !
print ( " Client-Info: \( self . clientInfo ! ) " )
print ( " User-Agent: \( self . userAgent ! ) " )
if Keychain . shared . identifier = = nil {
print ( " Generating identifier " )
var bytes = [ Int8 ] ( repeating : 0 , count : 16 )
let status = SecRandomCopyBytes ( kSecRandomDefault , bytes . count , & bytes )
if status != errSecSuccess {
print ( " ERROR GENERATING IDENTIFIER!!! \( status ) " )
return self . finish ( . failure ( OperationError . provisioningError ( result : " Couldn't generate identifier " , message : nil ) ) )
}
Keychain . shared . identifier = Data ( bytes : & bytes , count : bytes . count ) . base64EncodedString ( )
}
let decoded = Data ( base64Encoded : Keychain . shared . identifier ! ) !
self . mdLu = decoded . sha256 ( ) . hexEncodedString ( )
print ( " X-Apple-I-MD-LU: \( self . mdLu ! ) " )
let uuid : UUID = decoded . object ( )
self . deviceId = uuid . uuidString . uppercased ( )
print ( " X-Mme-Device-Id: \( self . deviceId ! ) " )
callback ( )
} else { self . handleV1 ( ) }
} else { self . finish ( . failure ( OperationError . anisetteV3Error ( message : " Couldn't fetch client info. The returned data may not be in JSON " ) ) ) }
} catch let error as NSError {
print ( " Failed to load: \( error . localizedDescription ) " )
self . handleV1 ( )
}
} . resume ( )
}
func fetchAnisetteV3 ( _ identifier : String , _ adiPb : String ) {
fetchClientInfo {
print ( " Fetching anisette V3 " )
2024-08-06 10:43:52 +09:00
let url = UserDefaults . standard . menuAnisetteURL
2023-05-18 01:30:18 -07:00
var request = URLRequest ( url : self . url ! . appendingPathComponent ( " v3 " ) . appendingPathComponent ( " get_headers " ) )
request . httpMethod = " POST "
request . httpBody = try ! JSONSerialization . data ( withJSONObject : [
" identifier " : identifier ,
" adi_pb " : adiPb
] , options : [ ] )
request . setValue ( " application/json " , forHTTPHeaderField : " Content-Type " )
URLSession . shared . dataTask ( with : request ) { data , response , error in
do {
guard let data = data , error = = nil else { throw OperationError . anisetteV3Error ( message : " Couldn't fetch anisette " ) }
try self . extractAnisetteData ( data , response as ? HTTPURLResponse , v3 : true )
} catch let error as NSError {
print ( " Failed to load: \( error . localizedDescription ) " )
self . finish ( . failure ( error ) )
}
} . resume ( )
2022-11-16 17:51:13 -05:00
}
2020-01-08 12:41:02 -08:00
}
}
2023-05-18 01:30:18 -07:00
2023-09-17 10:45:55 -07:00
extension WebSocketClient {
2023-05-18 01:30:18 -07:00
func json ( _ dictionary : [ String : String ] ) {
let data = try ! JSONSerialization . data ( withJSONObject : dictionary , options : [ ] )
self . write ( string : String ( data : data , encoding : . utf8 ) ! )
}
}
extension Data {
// h t t p s : / / s t a c k o v e r f l o w . c o m / a / 2 5 3 9 1 0 2 0
func sha256 ( ) -> Data {
var hash = [ UInt8 ] ( repeating : 0 , count : Int ( CC_SHA256_DIGEST_LENGTH ) )
self . withUnsafeBytes {
_ = CC_SHA256 ( $0 . baseAddress , CC_LONG ( self . count ) , & hash )
}
return Data ( hash )
}
// h t t p s : / / s t a c k o v e r f l o w . c o m / a / 4 0 0 8 9 4 6 2
func hexEncodedString ( ) -> String {
return self . map { String ( format : " %02hhX " , $0 ) } . joined ( )
}
// h t t p s : / / s t a c k o v e r f l o w . c o m / a / 5 9 1 2 7 7 6 1
func object < T > ( ) -> T { self . withUnsafeBytes { $0 . load ( as : T . self ) } }
}
