-
-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Error: Couldn't parse function with signature #5
Comments
Hi, sorry it's been a long time since I worked on this project. Can you upload the binary or link to it so I can reproduce? |
Thanks for the response, @hot3eed . But this application belonged to a customer, so I cannot share it unfortunately :( |
Hey, actually I don't need the binary for this specific error. Thanks for reporting, this bug is next in queue to be fixed. |
Fantastic. Thank you, @hot3eed ! |
Hello @hot3eed , apologies for this message. But there is so little information available about Frida Swift scripts and examples, it is extremely difficult to do anything, without some developer knowledge. When you have a moment, could you have a look at the below, please? Any suggestion, pointers, examples, or forum I can ask such question would be greatly appreciated. I have the following class definition dumped with DSDUMP:
Some frida console output:
Could you advise how I can execute 'createNewPincode' or 'verifyPincodeHash' method from Frida interface? Also, how I can intercept the 'verifyPincodeHash' method and read the 'pincodeHash' value? I don't want to waste your time. I spend many hours trying different approaches, scripts (like your test-suite), but nothing worked for me. Other scripts on the internet like "https://codeshare.frida.re/@Numenorean/cryptoswiftsha1/" are extremely manual in translating different types. thanks a lot for any advice |
Hi @0xElessar. For interception, have you tried using the For executing those APIs ad-hoc, you can also theoretically use the PS: try using the bridge from git since the one bundled with Frida can be lagging behind in releases. |
Thank you, @hot3eed . Much appreciated. I have managed to use frida-trace successfully. Although the new Swift supported frida-trace (https://frida.re/news/2023/11/04/frida-16-1-5-released/ -option '-y') does not work, I am getting the Swift version not supported, but the standard 'module/function' tracing works fine for me:
I also found on the Internet a nice trick to display Swift strings:
I wanted to avoid to play with RAW bytes, but it seems it is unavoidable with String creation. Fortunately, I found another Swift method to bypass the authentication by modifying the BOOL value returned from the function. Suprisingly the code I used with Obj-C, worked fine with the Swift function:
Thanks a lot for your help, @hot3eed . |
Still can't figure out how to get string from retval. |
Hello @hot3eed ,
thanks for the great extension. However, I am failing miserably with Interceptor. I am getting this error message:
Error: Couldn't parse function with signature: static APP.CFMKeyChain.get(APP.CFMKeyChain.Items) -> Swift.Optional<Swift.String>
here is the function definition in the decompiler:
int _$s15APP11CFMKeyChainC3getySSSgAC5ItemsOFZ(int arg0) {
I am using the following Frida script:
I am getting the same output if I put 2 Int:
Any advice? I am losing my head here :(
thanks
The text was updated successfully, but these errors were encountered: