Page 1 of 1

jtool support for SHA256 signatures

PostPosted: Sat Aug 05, 2017 3:16 pm
by commanderKin
Hey,

I tried running the following command on my app compiled with xcode-beta (iOS11)
Code: Select all
jtool --sig ./path/to/xcode/binary


it results in two things you should be aware of

Code: Select all
Unknown opcode 7375626a - has Apple changed the op codes?Please notify J!
False Info plist
Entitlements (314 bytes) (use --ent to view)
Code Directory (1637 bytes)
      Version:     20200
      Flags:       none
      CodeLimit:   0x2be30
      Identifier:  ---
      CDHash:        2454e6bc81877486dcd2c79cf5201db89d7f915fe0fb496bbc37896758741bd7
      # of Hashes: 44 code + 5 special
      Hashes @229 size: 32 Type: SHA-256


Notice the Hash is of type SHA-256 and version is 20200
also the "Unknown opcode ..."

Commander.

Re: jtool support for SHA256 signatures

PostPosted: Sat Aug 05, 2017 3:20 pm
by commanderKin
Looking online I got a hit on xerub's github
https://github.com/xerub/ldid/commit/17 ... 93d97eedd3

commit message is "ldid2 handles SHA256 hashes"

Re: jtool support for SHA256 signatures

PostPosted: Sun Aug 06, 2017 5:00 pm
by morpheus
So does Jtool. That IS a sha-256 you are seeing. So that's LONG supported. Though not in self-signing, yet.

The opcodes are just because I don't handle all of the requirements language yet. Known issue, will be fixed.

[Edit: Self-sign now available in SHA-256 - by default, actually. Also better opcode handling
J