思路
- 借用libimobiledevice 和手机通信
- iphone开热点,通过上述工具usb线组局域网
- 写一个小网页做树莓派control-interface,用avahi-daemon广播自己域名给iphone,可以直接浏览器控制
- Pi上用调ideviceimagemounter向手机写入开发者镜像
- Pi上借助libimobiledevice库,以及"com.apple.dt.simulatelocation"协议发送虚拟定位给手机
准备环境
- 树莓派官网拖一个Ubuntu下来,写sdcard启动系统
apt-get install avahi-daemon先配好自己域名由于Ubuntu 19软件源中版本为1.2.1~git20181030.92c5462-1,这个版本有bug,写镜像会卡在mounting...
- https://packages.ubuntu.com/search?keywords=libimobiledevice
- https://packages.debian.org/sid/libimobiledevice-dev
- 参考ubuntu和debian的下一个版本,都升级到了git20191129.9f79242-1,尝试了一下这个版本可用
- 有现成的就不自己编译啦,肯定有很多坑,索性在上述网站下载deb然后
apt install ./xxx.deb - 参考 https://wiki.debian.org/RaspberryPi 我的RaspberryPi 2B使用armhf版本,
- 我们需要:libusbmuxd6 -> libimobiledevice-dev -> libimobiledevice-utils
- 例如debian版本为:https://packages.debian.org/sid/libimobiledevice6
- 例如ubuntu版本为:https://packages.ubuntu.com/focal/libimobiledevice-dev
- 有一部分依赖可以apt-get安装,但我不确定能不能用(估计差不多)
好了,如果重新开始的话,请跳过那些复杂的安装,直接升级到Ubuntu 20.04 Focal Fossa
- http://cdimage.ubuntu.com/ubuntu-server/daily-preinstalled/current/
- 开机用户名密码默认ubuntu/ubuntu,如果不行请多等一会然后重启再试。(莫名其妙)
- 再安装libimobiledevice就是新版的没问题的啦!
然后新建"/etc/sysctl.d/50-unprivileged-ports.conf"或者修改"/etc/sysctl.conf"
- 加入
net.ipv4.ip_unprivileged_port_start = 80 - 这个值默认是1024,改完就可以不用sudo了!
- 加入
配置自动启动
新建/home/ubuntu/iosanywhere.service如下
[Unit]
Description=iOS Locate Simulator by vrqq
After=network.target
[Service]
ExecStart=/home/ubuntu/pi
ExecReload=/bin/kill -HUP $MAINPID
WorkingDirectory=/home/ubuntu
StandardOutput=inherit
StandardError=inherit
Restart=on-failure
User=root
[Install]
WantedBy=multi-user.target
Alias=iosanywhered.service然后
cd /lib/systemd/system
sudo ln -s /home/ubuntu/iosanywhere.service
sudo systemctl enable iosanywhere接下来开机就自动运行啦!当然我们也可以service iosanywhere start
注入开发者镜像
ideviceimagemounter 13.2/DeveloperDiskImage.dmg 13.2/DeveloperDiskImage.dmg.signature用com.apple.dt.simulatelocation写位置
这部分是从各个开源版本抄来的
还原定位:我尝试发一个不正确的经纬度数字,然后等一小会就自动还原了,但是很不稳定。稳定办法还是重启。。
bool setLocation(const char* udid, std::string lat1, std::string lng2) {
std::cout << "[DEBUG] latitude=" << latitude << " longitude=" << longitude << std::endl;
idevice_t device = nullptr;
lockdownd_client_t lckd = nullptr;
lockdownd_service_descriptor_t service = nullptr;
service_client_t client = nullptr;
if (IDEVICE_E_SUCCESS != idevice_new(&device, udid)) {
if (udid)
std::cout << "No device found with udid " << udid << ", is it plugged in?" << std::endl;
else
std::cout << "No device found, is it plugged in?" << std::endl;
return false;
}
int ldret;
if (LOCKDOWN_E_SUCCESS != (ldret = lockdownd_client_new_with_handshake(device, &lckd, NULL))) {
idevice_free(device);
std::cout << "ERROR: Could not connect to lockdownd, error code "<< ldret << std::endl;
return false;
}
lockdownd_start_service(lckd, "com.apple.dt.simulatelocation", &service);
lockdownd_client_free(lckd);
service_client_new(device, service, &client);
// start sending lng/lat
char datasize[4] = {0, 0, 0, 0};
auto mksize = [&](size_t sz) {
union {
uint32_t uintval;
char charval[4];
}test, cnv;
cnv.uintval = sz;
test.uintval = 0x1;
if (test.charval[0] == 0x1) {
datasize[0] = cnv.charval[3]; datasize[1] = cnv.charval[2];
datasize[2] = cnv.charval[1]; datasize[3] = cnv.charval[0];
}
else {
datasize[0] = cnv.charval[0]; datasize[1] = cnv.charval[1];
datasize[2] = cnv.charval[2]; datasize[3] = cnv.charval[3];
}
};
size_t sent;
service_send(client, datasize, sizeof(datasize), &sent);
mksize(lat1.size());
service_send(client, datasize, sizeof(datasize), &sent);
service_send(client, lat1.c_str(), lat1.size(), &sent);
mksize(lng2.size());
service_send(client, datasize, sizeof(datasize), &sent);
service_send(client, lng2.c_str(), lng2.size(), &sent);
service_client_free(client);
if (service)
lockdownd_service_descriptor_free(service);
idevice_free(device);
return true;
}网页版console
- 用popen开进程执行外部程序
- 配合fgetc或者fread读程序输出
开箱即用代码!
iosAnywhere_20200112.zip (LGPL-3.0 License)
下面几个来自/Applications/Xcode.app/Contents/Developer/Platforms/iPhoneOS.platform/DeviceSupport/
10.3.zip (iPhone5 最高)
12.4.zip (iPhone6 最高)
13.2.zip (兼容iOS 13.3)
13.3.zip
13.4.zip
13.5.zip
老公!想给你生猴子!