[求助]ios逆向。ida中的问题。希望大佬救救-求助问答-看雪-安全社区|安全招聘|kanxue.com

最新回复 (4)
小调调雪币： 3237 活跃值： (3286) 能力值： ( LV4，RANK：40 ) 在线值：发帖 26 回帖 380 粉丝 19 关注私信	小调调 2 楼 pac 了解下 2024-6-5 18:21 0
mb_pohakapv 雪币： 100 活跃值： (50) 能力值： ( LV2，RANK：10 ) 在线值：发帖 2 回帖 4 粉丝 0 关注私信	mb_pohakapv 3 楼小调调 pac 了解下大侠能展开说说吗 2024-6-5 19:17 0
周游列国雪币： 615 活跃值： (1926) 能力值： ( LV2，RANK：10 ) 在线值：发帖 0 回帖 17 粉丝 1 关注私信	周游列国 4 楼根据2楼大佬给的关键字找到的文章不知道是否正确 https://seanchense.github.io/2019/10/01/pointer-authentication/ 2024-6-6 09:04 0
小调调雪币： 3237 活跃值： (3286) 能力值： ( LV4，RANK：40 ) 在线值：发帖 26 回帖 380 粉丝 19 关注私信	小调调 5 楼 Similarly, function pointers created manually (e.g. by using a direct offset + slide) cannot be called directly either. Trying to access the contents of a signed function pointer is no longer possible, you will segfault. You can use the following header to convert between PACed and non-PACed pointers. It just wraps the intrinsics so your code will still compile if the toolchain doesn't understand arm64e yet. If you encounter an issue you believe is caused by our version of Substitute, let us know. #ifndef PTRAUTH_HELPERS_H #define PTRAUTH_HELPERS_H // Helpers for PAC archs. // If the compiler understands __arm64e__, assume it's paired with an SDK that has // ptrauth.h. Otherwise, it'll probably error if we try to include it so don't. #if __arm64e__ #include <ptrauth.h> #endif #pragma clang diagnostic push #pragma clang diagnostic ignored "-Wunused-function" // Given a pointer to instructions, sign it so you can call it like a normal fptr. static void make_sym_callable(void ptr) { #if __arm64e__ ptr = ptrauth_sign_unauthenticated(ptrauth_strip(ptr, ptrauth_key_function_pointer), ptrauth_key_function_pointer, 0); #endif return ptr; } // Given a function pointer, strip the PAC so you can read the instructions. static void make_sym_readable(void ptr) { #if __arm64e__ ptr = ptrauth_strip(ptr, ptrauth_key_function_pointer); #endif return ptr; } #pragma clang diagnostic pop #endif 最后于 2024-6-7 17:57 被小调调编辑，原因： 2024-6-7 17:56 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

最新回复 (4)
小调调雪币： 3237 活跃值： (3286) 能力值： ( LV4，RANK：40 ) 在线值：发帖 26 回帖 380 粉丝 19 关注私信	小调调 2 楼 pac 了解下 2024-6-5 18:21 0
mb_pohakapv 雪币： 100 活跃值： (50) 能力值： ( LV2，RANK：10 ) 在线值：发帖 2 回帖 4 粉丝 0 关注私信	mb_pohakapv 3 楼小调调 pac 了解下大侠能展开说说吗 2024-6-5 19:17 0
周游列国雪币： 615 活跃值： (1926) 能力值： ( LV2，RANK：10 ) 在线值：发帖 0 回帖 17 粉丝 1 关注私信	周游列国 4 楼根据2楼大佬给的关键字找到的文章不知道是否正确 https://seanchense.github.io/2019/10/01/pointer-authentication/ 2024-6-6 09:04 0
小调调雪币： 3237 活跃值： (3286) 能力值： ( LV4，RANK：40 ) 在线值：发帖 26 回帖 380 粉丝 19 关注私信	小调调 5 楼 Similarly, function pointers created manually (e.g. by using a direct offset + slide) cannot be called directly either. Trying to access the contents of a signed function pointer is no longer possible, you will segfault. You can use the following header to convert between PACed and non-PACed pointers. It just wraps the intrinsics so your code will still compile if the toolchain doesn't understand arm64e yet. If you encounter an issue you believe is caused by our version of Substitute, let us know. #ifndef PTRAUTH_HELPERS_H #define PTRAUTH_HELPERS_H // Helpers for PAC archs. // If the compiler understands __arm64e__, assume it's paired with an SDK that has // ptrauth.h. Otherwise, it'll probably error if we try to include it so don't. #if __arm64e__ #include <ptrauth.h> #endif #pragma clang diagnostic push #pragma clang diagnostic ignored "-Wunused-function" // Given a pointer to instructions, sign it so you can call it like a normal fptr. static void make_sym_callable(void ptr) { #if __arm64e__ ptr = ptrauth_sign_unauthenticated(ptrauth_strip(ptr, ptrauth_key_function_pointer), ptrauth_key_function_pointer, 0); #endif return ptr; } // Given a function pointer, strip the PAC so you can read the instructions. static void make_sym_readable(void ptr) { #if __arm64e__ ptr = ptrauth_strip(ptr, ptrauth_key_function_pointer); #endif return ptr; } #pragma clang diagnostic pop #endif 最后于 2024-6-7 17:57 被小调调编辑，原因： 2024-6-7 17:56 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

未解决 [求助]ios逆向。ida中的问题。希望大佬救救