From c62847f7d7368d6502d5e3f02d0f45c237f45d0a Mon Sep 17 00:00:00 2001
From: KpwnZ <22996989+KpwnZ@users.noreply.github.com>
Date: Tue, 23 Jan 2024 14:33:51 -0800
Subject: [PATCH] feat: use landa on newer version

---
 escape/ViewController.m | 19 ++++++++++++++++---
 1 file changed, 16 insertions(+), 3 deletions(-)

diff --git a/escape/ViewController.m b/escape/ViewController.m
index 31d3cd3..d022bab 100644
--- a/escape/ViewController.m
+++ b/escape/ViewController.m
@@ -87,14 +87,14 @@ - (void)viewDidLoad {
     // Get iOS Version
     NSOperatingSystemVersion version = [[NSProcessInfo processInfo] operatingSystemVersion];
     [[LogHelper sharedInstance] logWithFormat:@"[*] iOS Version: %@.%@.%@", @(version.majorVersion), @(version.minorVersion), @(version.patchVersion)];
-    NSString *unsupportedMessage = @"[*] !!! Only iOS 15.7-16.5 is supported !!!";
+    NSString *unsupportedMessage = @"[!] !!! Only iOS 15.7-16.5 is supported !!!";
     if (version.majorVersion < 15 || (version.majorVersion == 15 && version.minorVersion < 7)) {
         [[LogHelper sharedInstance] logMessage:unsupportedMessage];
     } else if (version.majorVersion > 16) {
         [[LogHelper sharedInstance] logMessage:unsupportedMessage];
     } else if (version.majorVersion == 16 && version.minorVersion > 5) {
         if (version.minorVersion == 6) {
-            [[LogHelper sharedInstance] logMessage:@"[*] !!! iOS 16.6 support is experimental, you may encounter issues !!!"];
+            [[LogHelper sharedInstance] logMessage:@"[!] !!! iOS 16.6 support is experimental, you may encounter issues !!!"];
         } else {
             [[LogHelper sharedInstance] logMessage:unsupportedMessage];
         }
@@ -112,7 +112,20 @@ - (void)logButtonTapped {
     if (@available(iOS 16, *)) {
         kread_method = kread_sem_open;
     }
-    uint64_t kfd = kopen(2048, puaf_smith, kread_method, kwrite_IOSurface);
+    u64 puaf_method = puaf_smith;
+    u64 puaf_pages = 2048;
+
+    // check if we are on 16.1.x
+    NSOperatingSystemVersion currentVersion = [[NSProcessInfo processInfo] operatingSystemVersion];
+    BOOL is_on_16_5_1_and_above =
+        (currentVersion.majorVersion == 16 && currentVersion.minorVersion == 5 && currentVersion.patchVersion == 1) ||
+        (currentVersion.majorVersion == 16 && currentVersion.minorVersion > 5);
+    if (is_on_16_5_1_and_above) {
+        puaf_method = puaf_landa;
+        puaf_pages = 512;
+    }
+    sleep(1);
+    uint64_t kfd = kopen(puaf_pages, puaf_method, kread_method, kwrite_sem_open);
     dispatch_async(dispatch_get_global_queue(DISPATCH_QUEUE_PRIORITY_DEFAULT, 0), ^{
         post_exp(kfd);
         kclose(kfd);