def __init__(self,udid=None):
self.paired = False
self.SessionID = None
self.c = PlistService(62078,udid)
self.hostID = self.generate_hostID()
self.SystemBUID = self.generate_hostID()
self.paired = False
self.label = "pyMobileDevice"
assert self.queryType() == "com.apple.mobile.lockdown"
self.allValues = self.getValue()
self.udid = self.allValues.get("UniqueDeviceID")
self.UniqueChipID = self.allValues.get("UniqueChipID")
self.DevicePublicKey = self.allValues.get("DevicePublicKey")
self.ios_version = self.allValues.get("ProductVersion")
self.identifier = self.udid
if not self.identifier:
if self.UniqueChipID:
self.identifier = "%x" % self.UniqueChipID
else:
raise Exception("Could not get UDID or ECID, failing")
if not self.validate_pairing():
self.pair()
self.c = PlistService(62078,udid)
if not self.validate_pairing():
raise FatalPairingError
self.paired = True
return
def startServiceWithEscrowBag(self, name, escrowBag=None):
if not self.paired:
self.logger.info("NotPaired")
raise NotPairedError
if (not escrowBag):
escrowBag = self.record['EscrowBag']
self.c.sendPlist({
"Label": self.label,
"Request": "StartService",
"Service": name,
'EscrowBag': escrowBag
})
StartService = self.c.recvPlist()
if not StartService or StartService.get("Error"):
if StartService.get("Error", "") == 'PasswordProtected':
raise StartServiceError(
'your device is protected with password, please enter password in device and try again'
)
raise StartServiceError(StartService.get("Error"))
ssl_enabled = StartService.get("EnableServiceSSL", False)
plist_service = PlistService(StartService.get("Port"), self.udid)
if ssl_enabled:
plist_service.ssl_start(self.sslfile, self.sslfile)
return plist_service
def startService(self, name):
if not self.paired:
print "NotPaired"
raise NotPairedError
self.c.sendPlist({"Label": self.label, "Request": "StartService", "Service": name})
StartService = self.c.recvPlist()
if not StartService or StartService.get("Error"):
raise StartServiceError(StartService.get("Error"))
return PlistService(StartService.get("Port"), self.udid)
def startServiceWithEscrowBag(self, name, escrowBag = None):
if not self.paired:
print "NotPaired"
raise NotPairedError
if (not escrowBag):
escrowBag = self.record['EscrowBag']
self.c.sendPlist({"Label": self.label, "Request": "StartService", "Service": name, 'EscrowBag':escrowBag})
StartService = self.c.recvPlist()
if not StartService or StartService.get("Error"):
if StartService.get("Error", "") == 'PasswordProtected':
raise StartServiceError('your device is protected with password, please enter password in device and try again')
raise StartServiceError(StartService.get("Error"))
return PlistService(StartService.get("Port"), self.udid)
def pair(self):
self.DevicePublicKey = self.getValue("", "DevicePublicKey")
if self.DevicePublicKey == '':
print "Unable to retreive DevicePublicKey"
return False
print "Creating host key & certificate"
certPem, privateKeyPem, DeviceCertificate = ca_do_everything(
self.DevicePublicKey)
pair_record = {
"DevicePublicKey": plistlib.Data(self.DevicePublicKey),
"DeviceCertificate": plistlib.Data(DeviceCertificate),
"HostCertificate": plistlib.Data(certPem),
"HostID": self.hostID,
"RootCertificate": plistlib.Data(certPem),
"SystemBUID": "30142955-444094379208051516"
}
pair = {
"Label": self.label,
"Request": "Pair",
"PairRecord": pair_record
}
self.c = PlistService(62078, self.udid)
self.c.sendPlist(pair)
pair = self.c.recvPlist()
if pair and pair.get("Result") == "Success" or pair.has_key(
"EscrowBag"):
pair_record["HostPrivateKey"] = plistlib.Data(privateKeyPem)
pair_record["EscrowBag"] = pair.get("EscrowBag")
writeHomeFile(HOMEFOLDER, "%s.plist" % self.identifier,
plistlib.writePlistToString(pair_record))
self.paired = True
return True
elif pair and pair.get("Error") == "PasswordProtected":
self.c.close()
raise NotTrustedError
else:
print pair.get("Error")
self.c.close()
raise PairingError
def startServiceWithEscrowBag(self, name, escrowBag=None):
if not self.paired:
print("NotPaired")
raise NotPairedError
if (not escrowBag):
escrowBag = self.record['EscrowBag']
self.c.sendPlist({
"Label": self.label,
"Request": "StartService",
"Service": name,
'EscrowBag': plistlib.Data(escrowBag)
})
StartService = self.c.recvPlist()
if not StartService or StartService.get("Error"):
raise StartServiceError(StartService.get("Error"))
return PlistService(StartService.get("Port"), self.udid)
def startService(self, name):
if not self.paired:
self.logger.info("NotPaired")
raise NotPairedError
self.c.sendPlist({
"Label": self.label,
"Request": "StartService",
"Service": name
})
startService = self.c.recvPlist()
ssl_enabled = startService.get("EnableServiceSSL", False)
if not startService or startService.get("Error"):
raise StartServiceError(startService.get("Error"))
plist_service = PlistService(startService.get("Port"), self.udid)
if ssl_enabled:
plist_service.ssl_start(self.sslfile, self.sslfile)
return plist_service
def validate_pairing(self):
pair_record = None
certPem = None
privateKeyPem = None
if sys.platform == "win32":
folder = os.environ["ALLUSERSPROFILE"] + "/Apple/Lockdown/"
elif sys.platform == "darwin":
folder = "/var/db/lockdown/"
elif len(sys.platform) >= 5:
if sys.platform[0:5] == "linux":
folder = "/var/lib/lockdown/"
try:
pair_record = plistlib.readPlist(folder +
"%s.plist" % self.identifier)
except:
pair_record = None
if pair_record:
print "Using iTunes pair record: %s.plist" % self.identifier
certPem = pair_record["HostCertificate"].data
privateKeyPem = pair_record["HostPrivateKey"].data
else:
print "No iTunes pairing record found for device %s" % self.identifier
print "Looking for pymobiledevice pairing record"
record = readHomeFile(HOMEFOLDER, "%s.plist" % self.identifier)
if record:
pair_record = plistlib.readPlistFromString(record)
print "Found pymobiledevice pairing record for device %s" % self.udid
certPem = pair_record["HostCertificate"].data
privateKeyPem = pair_record["HostPrivateKey"].data
else:
print "No pymobiledevice pairing record found for device %s" % self.identifier
return False
self.record = pair_record
ValidatePair = {
"Label": self.label,
"Request": "ValidatePair",
"PairRecord": pair_record
}
self.c = PlistService(62078, self.udid)
self.c.sendPlist(ValidatePair)
r = self.c.recvPlist()
if not r or r.has_key("Error"):
pair_record = None
print "ValidatePair fail", ValidatePair
return False
self.hostID = pair_record.get("HostID", self.hostID)
self.SystemBUID = pair_record.get("SystemBUID", self.SystemBUID)
d = {
"Label": self.label,
"Request": "StartSession",
"HostID": self.hostID,
'SystemBUID': self.SystemBUID
}
self.c.sendPlist(d)
startsession = self.c.recvPlist()
self.SessionID = startsession.get("SessionID")
if startsession.get("EnableSessionSSL"):
sslfile = self.identifier + "_ssl.txt"
sslfile = writeHomeFile(HOMEFOLDER, sslfile,
certPem + "\n" + privateKeyPem)
self.c.ssl_start(sslfile, sslfile)
self.paired = True
return True
