-
Notifications
You must be signed in to change notification settings - Fork 174
/
micropatcher.sh
executable file
·211 lines (188 loc) · 7.14 KB
/
micropatcher.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
#!/bin/bash
VERSIONNUM=0.5.1
VERSION="BarryKN Big Sur Micropatcher v$VERSIONNUM"
### begin function definitions ###
# Handle permissions failure that happened during a copy (cp). This has
# usually been due to the user needing root permissions for some reason.
# (It used to be possible to hit this code path for other reasons, but
# I believe I have fixed that now.)
handleCopyPermissionsFailure() {
if [ $UID != 0 ]
then
echo 'cp failed. Probably a permissions error. This is not expected, but'
echo 'patcher will attempt workaround by trying again as root.'
echo
exec sudo "$0" "$@"
else
echo 'cp failed, even as root. This is unexpected.'
echo 'Patcher cannot continue.'
exit 1
fi
}
# Check that we can access the directory that ocntains this script, as well
# as the root directory of the installer USB. Access to both of these
# directories is vital, and Catalina's TCC controls for Terminal are
# capable of blocking both. Therefore we must check access to both
# directories before proceeding.
checkDirAccess() {
# List the two directories, but direct both stdout and stderr to
# /dev/null. We are only interested in the return code.
ls "$VOLUME" . &> /dev/null
}
### end function definitions ###
echo $VERSION
echo 'Thanks to jackluke, ASentientBot, highvoltage12v, testheit, and'
echo 'ParrotGeek for their hard work to get Big Sur running on unsupported'
echo 'Macs! (See the README for more information.)'
# Add a blank line of output to make things easier on the eyes.
echo
# Check for --force option on the command line
# (currently does nothing, but that will change in the near future)
if [ "x$1" = "x--force" ]
then
FORCE="YES"
shift
fi
# Allow the user to drag-and-drop the USB stick in Terminal, to specify the
# path to the USB stick in question. (Otherwise it will try hardcoded paths
# for a presumed Big Sur Golden Master/public release, beta 2-or-later,
# and beta 1, in that order.)
if [ -z "$1" ]
then
for x in "Install macOS Big Sur" "Install macOS Big Sur Beta" "Install macOS Beta"
do
if [ -d "/Volumes/$x/$x.app" ]
then
VOLUME="/Volumes/$x"
APPPATH="$VOLUME/$x.app"
break
fi
done
if [ ! -d "$APPPATH" ]
then
echo "Failed to locate Big Sur recovery USB stick."
echo "Remember to create it using createinstallmedia, and do not rename it."
echo "If all else fails, try specifying the path to the USB stick"
echo "as a command line parameter to this script."
echo
echo "Patcher cannot continue and will now exit."
exit 1
fi
else
VOLUME="$1"
# The use of `echo` here is to force globbing.
APPPATH=`echo -n "$VOLUME"/Install\ macOS*.app`
if [ ! -d "$APPPATH" ]
then
echo "Failed to locate Big Sur recovery USB stick for patching."
echo "Make sure you specified the correct volume. You may also try"
echo "not specifying a volume and allowing the patcher to find"
echo "the volume itself."
echo
echo "Patcher cannot continue and will now exit."
exit 1
fi
fi
# Check if the payloads directory is inside the current directory. If not,
# it's probably inside the same directory as this script, so find that
# directory.
if [ ! -d payloads ]
then
BASEDIR="`echo $0|sed -E 's@/[^/]*$@@'`"
[ -z "$BASEDIR" ] || cd "$BASEDIR"
fi
# Check again in case we changed directory after the first check
if [ ! -d payloads ]
then
echo '"payloads" folder was not found.'
echo
echo "Patcher cannot continue and will now exit."
exit 1
fi
# Check to make sure we can access both our own directory and the root
# directory of the USB stick. Terminal's TCC permissions in Catalina can
# prevent access to either of those two directories. However, only do this
# check on Catalina or higher. (I can add an "else" block later to handle
# Mojave and earlier, but Catalina is responsible for every single bug
# report I've received due to this script lacking necessary read permissions.)
if [ `uname -r | sed -e 's@\..*@@'` -ge 19 ]
then
echo 'Checking read access to necessary directories...'
if ! checkDirAccess
then
echo 'Access check failed.'
tccutil reset All com.apple.Terminal
echo 'Retrying access check...'
if ! checkDirAccess
then
echo
echo 'Access check failed again. Giving up.'
echo 'Next time, please give Terminal permission to access removable drives,'
echo 'as well as the location where this patcher is stored (for example, Downloads).'
exit 1
else
echo 'Access check succeeded on second attempt.'
echo
fi
else
echo 'Access check succeeded.'
echo
fi
fi
if [ -e "$VOLUME/Patch-Version.txt" ]
then
echo "USB stick has already been patched. Running unpatch.sh to remove the"
echo "existing patches before continuing."
echo
if ./unpatch.sh --no-sync "$VOLUME"
then
echo 'Patcher is now continuing.'
else
echo 'Unpatcher failed. Patcher cannot continue.'
exit 1
fi
fi
# Patch com.apple.Boot.plist
echo 'Patching com.apple.Boot.plist...'
# It would seem more obvious to do mv then cp, but doing cp then cat lets us
# use cat as a permissions-preserving Unix trick, just to be extra cautious.
if [ ! -e "$VOLUME/Library/Preferences/SystemConfiguration/com.apple.Boot.plist.original" ]
then
cp "$VOLUME/Library/Preferences/SystemConfiguration/com.apple.Boot.plist" "$VOLUME/Library/Preferences/SystemConfiguration/com.apple.Boot.plist.original" || handleCopyPermissionsFailure
fi
cat payloads/com.apple.Boot.plist > "$VOLUME/Library/Preferences/SystemConfiguration/com.apple.Boot.plist"
# Add the trampoline.
echo 'Installing trampoline...'
TEMPAPP="$VOLUME/tmp.app"
mv -f "$APPPATH" "$TEMPAPP"
cp -r payloads/trampoline.app "$APPPATH"
mv -f "$TEMPAPP" "$APPPATH/Contents/MacOS/InstallAssistant.app"
cp "$APPPATH/Contents/MacOS/InstallAssistant" "$APPPATH/Contents/MacOS/InstallAssistant_plain"
cp "$APPPATH/Contents/MacOS/InstallAssistant" "$APPPATH/Contents/MacOS/InstallAssistant_springboard"
pushd "$APPPATH/Contents" > /dev/null
for item in `cd MacOS/InstallAssistant.app/Contents;ls -1 | fgrep -v MacOS`
do
ln -s MacOS/InstallAssistant.app/Contents/$item .
done
popd > /dev/null
touch "$APPPATH"
# Copy the shell scripts into place so that they may be used once the
# USB stick is booted.
echo 'Copying shell scripts...'
cp -f payloads/*.sh "$VOLUME"
# Copy Hax dylibs into place
echo "Adding Hax dylibs..."
cp -f payloads/ASentientBot-Hax/BarryKN-fork/Hax*.dylib "$VOLUME"
echo 'Adding kexts and other binaries...'
cp -rf payloads/kexts payloads/bin "$VOLUME"
# Let's play it safe and ensure the shell scripts, dylibs, etc. are executable.
chmod -R u+x "$VOLUME"/*.sh "$VOLUME"/Hax*.dylib "$VOLUME"/bin
# Save a file onto the USB stick that says what patcher & version was used,
# so it can be identified later (e.g. for troubleshooting purposes).
echo 'Saving patcher version info...'
echo "$VERSION" > "$VOLUME/Patch-Version.txt"
echo
echo 'Syncing.'
sync
echo
echo 'Micropatcher finished.'