2022-02-15 14:44:11 -06:00
//
// P l u g i n M a n a g e r . s w i f t
// A l t S e r v e r
//
// C r e a t e d b y R i l e y T e s t u t o n 9 / 1 6 / 2 0 .
// C o p y r i g h t © 2 0 2 0 R i l e y T e s t u t . A l l r i g h t s r e s e r v e d .
//
import Foundation
import AppKit
import CryptoKit
import STPrivilegedTask
private let pluginDirectoryURL = URL ( fileURLWithPath : " /Library/Mail/Bundles " , isDirectory : true )
private let pluginURL = pluginDirectoryURL . appendingPathComponent ( " AltPlugin.mailbundle " )
2023-01-24 13:56:41 -06:00
extension PluginError
2022-02-15 14:44:11 -06:00
{
2023-01-24 13:56:41 -06:00
enum Code : Int , ALTErrorCode
{
typealias Error = PluginError
case cancelled
case unknown
case notFound
case mismatchedHash
case taskError
case taskErrorCode
}
static let cancelled = PluginError ( code : . cancelled )
static let notFound = PluginError ( code : . notFound )
static func unknown ( file : String = # fileID , line : UInt = #line ) -> PluginError { PluginError ( code : . unknown , sourceFile : file , sourceLine : line ) }
static func mismatchedHash ( hash : String , expectedHash : String ) -> PluginError { PluginError ( code : . mismatchedHash , hash : hash , expectedHash : expectedHash ) }
static func taskError ( output : String ) -> PluginError { PluginError ( code : . taskError , taskErrorOutput : output ) }
static func taskErrorCode ( _ code : Int ) -> PluginError { PluginError ( code : . taskErrorCode , taskErrorCode : code ) }
}
struct PluginError : ALTLocalizedError
{
let code : Code
var errorTitle : String ?
var errorFailure : String ?
var sourceFile : String ?
var sourceLine : UInt ?
2022-02-15 14:44:11 -06:00
2023-01-24 13:56:41 -06:00
var hash : String ?
var expectedHash : String ?
var taskErrorOutput : String ?
var taskErrorCode : Int ?
var errorFailureReason : String {
switch self . code
2022-02-15 14:44:11 -06:00
{
case . cancelled : return NSLocalizedString ( " Mail plug-in installation was cancelled. " , comment : " " )
case . unknown : return NSLocalizedString ( " Failed to install Mail plug-in. " , comment : " " )
case . notFound : return NSLocalizedString ( " The Mail plug-in does not exist at the requested URL. " , comment : " " )
2023-01-24 13:56:41 -06:00
case . mismatchedHash :
let baseMessage = NSLocalizedString ( " The hash of the downloaded Mail plug-in does not match the expected hash. " , comment : " " )
guard let hash = self . hash , let expectedHash = self . expectedHash else { return baseMessage }
let additionalInfo = String ( format : NSLocalizedString ( " Hash: \n %@ \n \n Expected Hash: \n %@ " , comment : " " ) , hash , expectedHash )
return baseMessage + " \n \n " + additionalInfo
case . taskError :
if let output = self . taskErrorOutput
{
return output
}
// U s e . t a s k E r r o r C o d e b a s e m e s s a g e a s f a l l b a c k .
fallthrough
case . taskErrorCode :
let baseMessage = NSLocalizedString ( " There was an error installing the Mail plug-in. " , comment : " " )
guard let errorCode = self . taskErrorCode else { return baseMessage }
let additionalInfo = String ( format : NSLocalizedString ( " (Error Code: %@) " , comment : " " ) , NSNumber ( value : errorCode ) )
return baseMessage + " " + additionalInfo
2022-02-15 14:44:11 -06:00
}
}
}
private extension URL
{
#if STAGING
2022-02-22 12:35:24 -08:00
static let altPluginUpdateURL = URL ( string : " https://f000.backblazeb2.com/file/altstore-staging/altserver/altplugin/altplugin.json " ) !
2022-02-15 14:44:11 -06:00
#else
static let altPluginUpdateURL = URL ( string : " https://cdn.altstore.io/file/altstore/altserver/altplugin/altplugin.json " ) !
#endif
}
class PluginManager
{
private let session = URLSession ( configuration : . ephemeral )
private var latestPluginVersion : PluginVersion ?
var isMailPluginInstalled : Bool {
let isMailPluginInstalled = FileManager . default . fileExists ( atPath : pluginURL . path )
return isMailPluginInstalled
}
func isUpdateAvailable ( completionHandler : @ escaping ( Result < Bool , Error > ) -> Void )
{
self . isUpdateAvailable ( useCache : false , completionHandler : completionHandler )
}
private func isUpdateAvailable ( useCache : Bool , completionHandler : @ escaping ( Result < Bool , Error > ) -> Void )
{
do
{
// I f M a i l p l u g - i n i s n o t y e t i n s t a l l e d , t h e n t h e r e i s n o u p d a t e a v a i l a b l e .
2022-05-25 15:17:58 -07:00
var isDirectory : ObjCBool = false
guard FileManager . default . fileExists ( atPath : pluginURL . path , isDirectory : & isDirectory ) , isDirectory . boolValue else { return completionHandler ( . success ( false ) ) }
2022-02-15 14:44:11 -06:00
// L o a d I n f o . p l i s t f r o m d i s k b e c a u s e B u n d l e . i n f o D i c t i o n a r y i s c a c h e d b y s y s t e m .
2022-05-25 15:17:58 -07:00
let infoDictionaryURL = pluginURL . appendingPathComponent ( " Contents/Info.plist " )
2022-02-15 14:44:11 -06:00
guard let infoDictionary = NSDictionary ( contentsOf : infoDictionaryURL ) as ? [ String : Any ] ,
let localVersion = infoDictionary [ " CFBundleShortVersionString " ] as ? String
else { throw CocoaError ( . fileReadCorruptFile , userInfo : [ NSURLErrorKey : infoDictionaryURL ] ) }
if let pluginVersion = self . latestPluginVersion , useCache
{
let isUpdateAvailable = ( localVersion != pluginVersion . version )
completionHandler ( . success ( isUpdateAvailable ) )
}
else
{
self . fetchLatestPluginVersion ( useCache : useCache ) { result in
switch result
{
case . failure ( let error ) : completionHandler ( . failure ( error ) )
case . success ( let pluginVersion ) :
let isUpdateAvailable = ( localVersion != pluginVersion . version )
completionHandler ( . success ( isUpdateAvailable ) )
}
}
}
}
catch
{
completionHandler ( . failure ( error ) )
}
}
}
extension PluginManager
{
func installMailPlugin ( completionHandler : @ escaping ( Result < Void , Error > ) -> Void )
{
self . isUpdateAvailable ( useCache : true ) { result in
DispatchQueue . main . async {
do
{
let isUpdateAvailable = try result . get ( )
let alert = NSAlert ( )
if isUpdateAvailable
{
alert . messageText = NSLocalizedString ( " Update Mail Plug-in " , comment : " " )
alert . informativeText = NSLocalizedString ( " An update is available for AltServer's Mail plug-in. Please update the plug-in now in order to keep using AltStore. " , comment : " " )
alert . addButton ( withTitle : NSLocalizedString ( " Update Plug-in " , comment : " " ) )
alert . addButton ( withTitle : NSLocalizedString ( " Cancel " , comment : " " ) )
}
else
{
alert . messageText = NSLocalizedString ( " Install Mail Plug-in " , comment : " " )
alert . informativeText = NSLocalizedString ( " AltServer requires a Mail plug-in in order to retrieve necessary information about your Apple ID. Would you like to install it now? " , comment : " " )
alert . addButton ( withTitle : NSLocalizedString ( " Install Plug-in " , comment : " " ) )
alert . addButton ( withTitle : NSLocalizedString ( " Cancel " , comment : " " ) )
}
NSRunningApplication . current . activate ( options : . activateIgnoringOtherApps )
let response = alert . runModal ( )
guard response = = . alertFirstButtonReturn else { throw PluginError . cancelled }
self . downloadPlugin { ( result ) in
do
{
let fileURL = try result . get ( )
// E n s u r e p l u g - i n d i r e c t o r y e x i s t s .
let authorization = try self . runAndKeepAuthorization ( " mkdir " , arguments : [ " -p " , pluginDirectoryURL . path ] )
// C r e a t e t e m p o r a r y d i r e c t o r y .
let temporaryDirectoryURL = FileManager . default . temporaryDirectory . appendingPathComponent ( UUID ( ) . uuidString )
try FileManager . default . createDirectory ( at : temporaryDirectoryURL , withIntermediateDirectories : true , attributes : nil )
defer { try ? FileManager . default . removeItem ( at : temporaryDirectoryURL ) }
// U n z i p A l t P l u g i n t o t e m p o r a r y d i r e c t o r y .
try self . runAndKeepAuthorization ( " unzip " , arguments : [ " -o " , fileURL . path , " -d " , temporaryDirectoryURL . path ] , authorization : authorization )
if FileManager . default . fileExists ( atPath : pluginURL . path )
{
// D e l e t e e x i s t i n g M a i l p l u g - i n .
try self . runAndKeepAuthorization ( " rm " , arguments : [ " -rf " , pluginURL . path ] , authorization : authorization )
}
// C o p y A l t P l u g i n t o M a i l p l u g - i n s d i r e c t o r y .
// M u s t b e s e p a r a t e s t e p t h a n u n z i p t o p r e v e n t m a c O S f r o m c o n s i d e r i n g p l u g - i n c o r r u p t e d .
let unzippedPluginURL = temporaryDirectoryURL . appendingPathComponent ( pluginURL . lastPathComponent )
try self . runAndKeepAuthorization ( " cp " , arguments : [ " -R " , unzippedPluginURL . path , pluginDirectoryURL . path ] , authorization : authorization )
2023-01-24 13:56:41 -06:00
guard self . isMailPluginInstalled else { throw PluginError . unknown ( ) }
2022-02-15 14:44:11 -06:00
// E n a b l e M a i l p l u g - i n p r e f e r e n c e s .
try self . run ( " defaults " , arguments : [ " write " , " /Library/Preferences/com.apple.mail " , " EnableBundles " , " -bool " , " YES " ] , authorization : authorization )
print ( " Finished installing Mail plug-in! " )
completionHandler ( . success ( ( ) ) )
}
catch
{
completionHandler ( . failure ( error ) )
}
}
}
catch
{
completionHandler ( . failure ( error ) )
}
}
}
}
func uninstallMailPlugin ( completionHandler : @ escaping ( Result < Void , Error > ) -> Void )
{
let alert = NSAlert ( )
alert . messageText = NSLocalizedString ( " Uninstall Mail Plug-in " , comment : " " )
alert . informativeText = NSLocalizedString ( " Are you sure you want to uninstall the AltServer Mail plug-in? You will no longer be able to install or refresh apps with AltStore. " , comment : " " )
alert . addButton ( withTitle : NSLocalizedString ( " Uninstall Plug-in " , comment : " " ) )
alert . addButton ( withTitle : NSLocalizedString ( " Cancel " , comment : " " ) )
NSRunningApplication . current . activate ( options : . activateIgnoringOtherApps )
let response = alert . runModal ( )
guard response = = . alertFirstButtonReturn else { return completionHandler ( . failure ( PluginError . cancelled ) ) }
DispatchQueue . global ( ) . async {
do
{
if FileManager . default . fileExists ( atPath : pluginURL . path )
{
// D e l e t e M a i l p l u g - i n f r o m p r i v i l e g e d d i r e c t o r y .
try self . run ( " rm " , arguments : [ " -rf " , pluginURL . path ] )
}
completionHandler ( . success ( ( ) ) )
}
catch
{
completionHandler ( . failure ( error ) )
}
}
}
}
private extension PluginManager
{
func fetchLatestPluginVersion ( useCache : Bool , completionHandler : @ escaping ( Result < PluginVersion , Error > ) -> Void )
{
if let pluginVersion = self . latestPluginVersion , useCache
{
return completionHandler ( . success ( pluginVersion ) )
}
let dataTask = self . session . dataTask ( with : . altPluginUpdateURL ) { ( data , response , error ) in
do
{
if let response = response as ? HTTPURLResponse
{
guard response . statusCode != 404 else { return completionHandler ( . failure ( PluginError . notFound ) ) }
}
guard let data = data else { throw error ! }
let response = try JSONDecoder ( ) . decode ( PluginVersionResponse . self , from : data )
completionHandler ( . success ( response . pluginVersion ) )
}
catch
{
completionHandler ( . failure ( error ) )
}
}
dataTask . resume ( )
}
func downloadPlugin ( completion : @ escaping ( Result < URL , Error > ) -> Void )
{
self . fetchLatestPluginVersion ( useCache : true ) { result in
switch result
{
case . failure ( let error ) : completion ( . failure ( error ) )
case . success ( let pluginVersion ) :
func finish ( _ result : Result < URL , Error > )
{
do
{
let fileURL = try result . get ( )
2023-03-02 17:07:38 -06:00
let data = try Data ( contentsOf : fileURL )
let sha256Hash = SHA256 . hash ( data : data )
let hashString = sha256Hash . compactMap { String ( format : " %02x " , $0 ) } . joined ( )
2022-02-15 14:44:11 -06:00
2023-03-02 17:07:38 -06:00
print ( " Comparing Mail plug-in hash ( \( hashString ) ) against expected hash ( \( pluginVersion . sha256Hash ) )... " )
guard hashString = = pluginVersion . sha256Hash else { throw PluginError . mismatchedHash ( hash : hashString , expectedHash : pluginVersion . sha256Hash ) }
2022-02-15 14:44:11 -06:00
completion ( . success ( fileURL ) )
}
catch
{
completion ( . failure ( error ) )
}
}
if pluginVersion . url . isFileURL
{
finish ( . success ( pluginVersion . url ) )
}
else
{
let downloadTask = URLSession . shared . downloadTask ( with : pluginVersion . url ) { ( fileURL , response , error ) in
if let response = response as ? HTTPURLResponse
{
guard response . statusCode != 404 else { return finish ( . failure ( PluginError . notFound ) ) }
}
let result = Result ( fileURL , error )
finish ( result )
if let fileURL = fileURL
{
try ? FileManager . default . removeItem ( at : fileURL )
}
}
downloadTask . resume ( )
}
}
}
}
func run ( _ program : String , arguments : [ String ] , authorization : AuthorizationRef ? = nil ) throws
{
_ = try self . _run ( program , arguments : arguments , authorization : authorization , freeAuthorization : true )
}
@ discardableResult
func runAndKeepAuthorization ( _ program : String , arguments : [ String ] , authorization : AuthorizationRef ? = nil ) throws -> AuthorizationRef
{
return try self . _run ( program , arguments : arguments , authorization : authorization , freeAuthorization : false )
}
func _run ( _ program : String , arguments : [ String ] , authorization : AuthorizationRef ? = nil , freeAuthorization : Bool ) throws -> AuthorizationRef
{
var launchPath = " /usr/bin/ " + program
if ! FileManager . default . fileExists ( atPath : launchPath )
{
launchPath = " /bin/ " + program
}
print ( " Running program: " , launchPath )
let task = STPrivilegedTask ( )
task . launchPath = launchPath
task . arguments = arguments
task . freeAuthorizationWhenDone = freeAuthorization
let errorCode : OSStatus
if let authorization = authorization
{
errorCode = task . launch ( withAuthorization : authorization )
}
else
{
errorCode = task . launch ( )
}
guard errorCode = = 0 else { throw PluginError . taskErrorCode ( Int ( errorCode ) ) }
task . waitUntilExit ( )
print ( " Exit code: " , task . terminationStatus )
guard task . terminationStatus = = 0 else {
let outputData = task . outputFileHandle . readDataToEndOfFile ( )
if let outputString = String ( data : outputData , encoding : . utf8 ) , ! outputString . isEmpty
{
2023-01-24 13:56:41 -06:00
throw PluginError . taskError ( output : outputString )
2022-02-15 14:44:11 -06:00
}
throw PluginError . taskErrorCode ( Int ( task . terminationStatus ) )
}
2023-01-24 13:56:41 -06:00
guard let authorization = task . authorization else { throw PluginError . unknown ( ) }
2022-02-15 14:44:11 -06:00
return authorization
}
}
