AltStore/Operations/VerifyAppOperation.swift

//
//  VerifyAppOperation.swift
//  AltStore
//
//  Created by Riley Testut on 5/2/20.
//  Copyright © 2020 Riley Testut. All rights reserved.
//

import Foundation

import AltStoreCore
import AltSign
import Roxas

extension VerificationError
{
    enum Code: Int, ALTErrorCode, CaseIterable {
        typealias Error = VerificationError

        case privateEntitlements
        case mismatchedBundleIdentifiers
        case iOSVersionNotSupported
    }

    static func privateEntitlements(_ entitlements: [String: Any], app: ALTApplication) -> VerificationError {
        VerificationError(code: .privateEntitlements, app: app, entitlements: entitlements)
    }

    static func mismatchedBundleIdentifiers(sourceBundleID: String, app: ALTApplication) -> VerificationError {
        VerificationError(code: .mismatchedBundleIdentifiers, app: app, sourceBundleID: sourceBundleID)
    }

    static func iOSVersionNotSupported(app: ALTApplication) -> VerificationError {
        VerificationError(code: .iOSVersionNotSupported, app: app)
    }
}

struct VerificationError: ALTLocalizedError {
    let code: Code

    var errorTitle: String?
    var errorFailure: String?

    var app: ALTApplication?
    var entitlements: [String: Any]?
    var sourceBundleID: String?

    var errorFailureReason: String {
        switch self.code
        {
        case .privateEntitlements:
            let appName = (self.app?.name as String?).map { String(format: NSLocalizedString("'%@'", comment: ""), $0) } ??
            	NSLocalizedString("Unknown app", comment: "")
            return String(format: NSLocalizedString("“%@” requires private permissions.", comment: ""), appName)

        case .mismatchedBundleIdentifiers:
            if let app, let sourceBundleID {
                return String(format: NSLocalizedString("The bundle ID '%@' does not match the one specified by the source ('%@').", comment: ""), app.bundleIdentifier, sourceBundleID)
            } else {
                return NSLocalizedString("The bundle ID does not match the one specified by the source.", comment: "")
            }

        case .iOSVersionNotSupported:
            var failureReason: String!
            if let app {
                var version = "iOS \(app.minimumiOSVersion.majorVersion).\(app.minimumiOSVersion.minorVersion)"
                if app.minimumiOSVersion.patchVersion > 0 {
                    version += ".\(app.minimumiOSVersion.patchVersion)"
                }
                failureReason = String(format: NSLocalizedString("%@ requires %@.", comment: ""), app.name, version)
            } else {
                let version = ProcessInfo.processInfo.operatingSystemVersionString
                failureReason = String(format: NSLocalizedString("This app does not support iOS %@.", comment: ""), version)
            }
            return failureReason
        }
    }
}

@objc(VerifyAppOperation)
final class VerifyAppOperation: ResultOperation<Void>
{
    let context: AppOperationContext
    var verificationHandler: ((VerificationError) -> Bool)?
    
    init(context: AppOperationContext)
    {
        self.context = context
        
        super.init()
    }
    
    override func main()
    {
        super.main()
        
        do
        {
            if let error = self.context.error
            {
                throw error
            }
            
            guard let app = self.context.app else { throw OperationError.invalidParameters }
            
            guard app.bundleIdentifier == self.context.bundleIdentifier else {
                throw VerificationError.mismatchedBundleIdentifiers(sourceBundleID: self.context.bundleIdentifier, app: app)
            }
            
            guard ProcessInfo.processInfo.isOperatingSystemAtLeast(app.minimumiOSVersion) else {
                throw VerificationError.iOSVersionNotSupported(app: app)
            }
            
            if #available(iOS 13.5, *)
            {
                // No psychic paper, so we can ignore private entitlements
                app.hasPrivateEntitlements = false
            }
            else
            {
                // Make sure this goes last, since once user responds to alert we don't do any more app verification.
                if let commentStart = app.entitlementsString.range(of: "<!---><!-->"), let commentEnd = app.entitlementsString.range(of: "<!-- -->")
                {
                    // Psychic Paper private entitlements.
                    
                    let entitlementsStart = app.entitlementsString.index(after: commentStart.upperBound)
                    let rawEntitlements = String(app.entitlementsString[entitlementsStart ..< commentEnd.lowerBound])
                    
                    let plistTemplate = """
                        <?xml version="1.0" encoding="UTF-8"?>
                        <!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
                        <plist version="1.0">
                            <dict>
                            %@
                            </dict>
                        </plist>
                        """
                    let entitlementsPlist = String(format: plistTemplate, rawEntitlements)
                    let entitlements = try PropertyListSerialization.propertyList(from: entitlementsPlist.data(using: .utf8)!, options: [], format: nil) as! [String: Any]
                    
                    app.hasPrivateEntitlements = true
                    let error = VerificationError.privateEntitlements(entitlements, app: app)
                    self.process(error) { (result) in
                        self.finish(result.mapError { $0 as Error })
                    }
                    
                    return
                }
                else
                {
                    app.hasPrivateEntitlements = false
                }
            }
            
            self.finish(.success(()))
        }
        catch
        {
            self.finish(.failure(error))
        }
    }
}

private extension VerifyAppOperation
{
    func process(_ error: VerificationError, completion: @escaping (Result<Void, VerificationError>) -> Void)
    {
        guard let presentingViewController = self.context.presentingViewController else { return completion(.failure(error)) }
        
        DispatchQueue.main.async {
            switch error.code
            {
            case .privateEntitlements:
                guard let entitlements = error.entitlements else { return completion(.failure(error)) }
                let permissions = entitlements.keys.sorted().joined(separator: "\n")
                let message = String(format: NSLocalizedString("""
                    You must allow access to these private permissions before continuing:

                    %@

                    Private permissions allow apps to do more than normally allowed by iOS, including potentially accessing sensitive private data. Make sure to only install apps from sources you trust.
                    """, comment: ""), permissions)
                
                let alertController = UIAlertController(title: error.failureReason ?? error.localizedDescription, message: message, preferredStyle: .alert)
                alertController.addAction(UIAlertAction(title: NSLocalizedString("Allow Access", comment: ""), style: .destructive) { (action) in
                    completion(.success(()))
                })
                alertController.addAction(UIAlertAction(title: NSLocalizedString("Deny Access", comment: ""), style: .default, handler: { (action) in
                    completion(.failure(error))
                }))
                presentingViewController.present(alertController, animated: true, completion: nil)
                
            case .mismatchedBundleIdentifiers: return completion(.failure(error))
            case .iOSVersionNotSupported: return completion(.failure(error))
            }
        }
    }
}
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`//`
			`// VerifyAppOperation.swift`
			`// AltStore`
			`//`
			`// Created by Riley Testut on 5/2/20.`
			`// Copyright © 2020 Riley Testut. All rights reserved.`
			`//`

			`import Foundation`

Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`import AltStoreCore`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`import AltSign`
			`import Roxas`

Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`extension VerificationError`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`{`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`enum Code: Int, ALTErrorCode, CaseIterable {`
			`typealias Error = VerificationError`

			`case privateEntitlements`
			`case mismatchedBundleIdentifiers`
			`case iOSVersionNotSupported`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`}`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00
			`static func privateEntitlements(_ entitlements: [String: Any], app: ALTApplication) -> VerificationError {`
			`VerificationError(code: .privateEntitlements, app: app, entitlements: entitlements)`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`}`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00
			`static func mismatchedBundleIdentifiers(sourceBundleID: String, app: ALTApplication) -> VerificationError {`
			`VerificationError(code: .mismatchedBundleIdentifiers, app: app, sourceBundleID: sourceBundleID)`
			`}`

			`static func iOSVersionNotSupported(app: ALTApplication) -> VerificationError {`
			`VerificationError(code: .iOSVersionNotSupported, app: app)`
			`}`
			`}`

			`struct VerificationError: ALTLocalizedError {`
			`let code: Code`

			`var errorTitle: String?`
			`var errorFailure: String?`

			`var app: ALTApplication?`
			`var entitlements: [String: Any]?`
			`var sourceBundleID: String?`

			`var errorFailureReason: String {`
			`switch self.code`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`{`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`case .privateEntitlements:`
			`let appName = (self.app?.name as String?).map { String(format: NSLocalizedString("'%@'", comment: ""), $0) } ??`
			`NSLocalizedString("Unknown app", comment: "")`
			`return String(format: NSLocalizedString("“%@” requires private permissions.", comment: ""), appName)`

			`case .mismatchedBundleIdentifiers:`
			`if let app, let sourceBundleID {`
			`return String(format: NSLocalizedString("The bundle ID '%@' does not match the one specified by the source ('%@').", comment: ""), app.bundleIdentifier, sourceBundleID)`
			`} else {`
			`return NSLocalizedString("The bundle ID does not match the one specified by the source.", comment: "")`
Moves minimum iOS version check to VerifyAppOperation 2021-02-26 13:46:49 -06:00			`}`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00
			`case .iOSVersionNotSupported:`
			`var failureReason: String!`
			`if let app {`
			`var version = "iOS \(app.minimumiOSVersion.majorVersion).\(app.minimumiOSVersion.minorVersion)"`
			`if app.minimumiOSVersion.patchVersion > 0 {`
			`version += ".\(app.minimumiOSVersion.patchVersion)"`
			`}`
			`failureReason = String(format: NSLocalizedString("%@ requires %@.", comment: ""), app.name, version)`
			`} else {`
			`let version = ProcessInfo.processInfo.operatingSystemVersionString`
			`failureReason = String(format: NSLocalizedString("This app does not support iOS %@.", comment: ""), version)`
			`}`
			`return failureReason`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`}`
			`}`
			`}`

			`@objc(VerifyAppOperation)`
final classes marked as final Signed-off-by: Joseph Mattello <mail@joemattiello.com> 2023-01-04 09:52:12 -05:00			`final class VerifyAppOperation: ResultOperation<Void>`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`{`
			`let context: AppOperationContext`
			`var verificationHandler: ((VerificationError) -> Bool)?`

			`init(context: AppOperationContext)`
			`{`
			`self.context = context`

			`super.init()`
			`}`

			`override func main()`
			`{`
			`super.main()`

			`do`
			`{`
			`if let error = self.context.error`
			`{`
			`throw error`
			`}`

			`guard let app = self.context.app else { throw OperationError.invalidParameters }`
Verifies app’s bundle ID matches source’s before installing Prevents apps with incorrect bundle IDs from being installed and then deleted from disk due to AltStore thinking the apps have been removed. 2020-05-07 13:13:05 -07:00
			`guard app.bundleIdentifier == self.context.bundleIdentifier else {`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`throw VerificationError.mismatchedBundleIdentifiers(sourceBundleID: self.context.bundleIdentifier, app: app)`
Verifies app’s bundle ID matches source’s before installing Prevents apps with incorrect bundle IDs from being installed and then deleted from disk due to AltStore thinking the apps have been removed. 2020-05-07 13:13:05 -07:00			`}`
Moves minimum iOS version check to VerifyAppOperation 2021-02-26 13:46:49 -06:00
			`guard ProcessInfo.processInfo.isOperatingSystemAtLeast(app.minimumiOSVersion) else {`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`throw VerificationError.iOSVersionNotSupported(app: app)`
Moves minimum iOS version check to VerifyAppOperation 2021-02-26 13:46:49 -06:00			`}`

Hide private entitlements on >= iOS 13.5 (#415) iOS 13.5 fixes the psychic paper hack so showing the private entitlement warning popup is confusing to the user. Additionally iOS 14 checks the entitlements on installation, so we should not copy the private entitlements on iOS 14. Depends on https://github.com/rileytestut/AltSign/pull/15 Co-authored-by: osy <osy86@users.noreply.github.com> 2020-11-03 14:02:19 -08:00			`if #available(iOS 13.5, *)`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`{`
Hide private entitlements on >= iOS 13.5 (#415) iOS 13.5 fixes the psychic paper hack so showing the private entitlement warning popup is confusing to the user. Additionally iOS 14 checks the entitlements on installation, so we should not copy the private entitlements on iOS 14. Depends on https://github.com/rileytestut/AltSign/pull/15 Co-authored-by: osy <osy86@users.noreply.github.com> 2020-11-03 14:02:19 -08:00			`// No psychic paper, so we can ignore private entitlements`
			`app.hasPrivateEntitlements = false`
			`}`
			`else`
			`{`
			`// Make sure this goes last, since once user responds to alert we don't do any more app verification.`
			`if let commentStart = app.entitlementsString.range(of: "<!---><!-->"), let commentEnd = app.entitlementsString.range(of: "<!-- -->")`
			`{`
			`// Psychic Paper private entitlements.`

			`let entitlementsStart = app.entitlementsString.index(after: commentStart.upperBound)`
			`let rawEntitlements = String(app.entitlementsString[entitlementsStart ..< commentEnd.lowerBound])`

			`let plistTemplate = """`
			`<?xml version="1.0" encoding="UTF-8"?>`
			`<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">`
			`<plist version="1.0">`
			`<dict>`
			`%@`
			`</dict>`
			`</plist>`
			`"""`
			`let entitlementsPlist = String(format: plistTemplate, rawEntitlements)`
			`let entitlements = try PropertyListSerialization.propertyList(from: entitlementsPlist.data(using: .utf8)!, options: [], format: nil) as! [String: Any]`

			`app.hasPrivateEntitlements = true`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`let error = VerificationError.privateEntitlements(entitlements, app: app)`
Hide private entitlements on >= iOS 13.5 (#415) iOS 13.5 fixes the psychic paper hack so showing the private entitlement warning popup is confusing to the user. Additionally iOS 14 checks the entitlements on installation, so we should not copy the private entitlements on iOS 14. Depends on https://github.com/rileytestut/AltSign/pull/15 Co-authored-by: osy <osy86@users.noreply.github.com> 2020-11-03 14:02:19 -08:00			`self.process(error) { (result) in`
			`self.finish(result.mapError { $0 as Error })`
			`}`

			`return`
			`}`
			`else`
			`{`
			`app.hasPrivateEntitlements = false`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`}`
			`}`

			`self.finish(.success(()))`
			`}`
			`catch`
			`{`
			`self.finish(.failure(error))`
			`}`
			`}`
			`}`

			`private extension VerifyAppOperation`
			`{`
			`func process(_ error: VerificationError, completion: @escaping (Result<Void, VerificationError>) -> Void)`
			`{`
			`guard let presentingViewController = self.context.presentingViewController else { return completion(.failure(error)) }`

			`DispatchQueue.main.async {`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`switch error.code`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`{`
Finish Riley's monster commit 3b38d725d7e8e45fb2c0cb465a3968828616c209 May the Gods have mercy on my soul. 2024-05-06 10:14:05 -04:00			`case .privateEntitlements:`
			`guard let entitlements = error.entitlements else { return completion(.failure(error)) }`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`let permissions = entitlements.keys.sorted().joined(separator: "\n")`
			`let message = String(format: NSLocalizedString("""`
			`You must allow access to these private permissions before continuing:`

			`%@`

			`Private permissions allow apps to do more than normally allowed by iOS, including potentially accessing sensitive private data. Make sure to only install apps from sources you trust.`
			`""", comment: ""), permissions)`

			`let alertController = UIAlertController(title: error.failureReason ?? error.localizedDescription, message: message, preferredStyle: .alert)`
			`alertController.addAction(UIAlertAction(title: NSLocalizedString("Allow Access", comment: ""), style: .destructive) { (action) in`
			`completion(.success(()))`
			`})`
			`alertController.addAction(UIAlertAction(title: NSLocalizedString("Deny Access", comment: ""), style: .default, handler: { (action) in`
			`completion(.failure(error))`
			`}))`
			`presentingViewController.present(alertController, animated: true, completion: nil)`
Verifies app’s bundle ID matches source’s before installing Prevents apps with incorrect bundle IDs from being installed and then deleted from disk due to AltStore thinking the apps have been removed. 2020-05-07 13:13:05 -07:00
			`case .mismatchedBundleIdentifiers: return completion(.failure(error))`
Moves minimum iOS version check to VerifyAppOperation 2021-02-26 13:46:49 -06:00			`case .iOSVersionNotSupported: return completion(.failure(error))`
Asks user for permission before installing apps with private entitlements 2020-05-02 22:06:57 -07:00			`}`
			`}`
			`}`
			`}`