Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

not valid for use in process using Library Validation #68

Closed
AlJohri opened this issue Sep 4, 2019 · 2 comments
Closed

not valid for use in process using Library Validation #68

AlJohri opened this issue Sep 4, 2019 · 2 comments

Comments

@AlJohri
Copy link

AlJohri commented Sep 4, 2019

I'm getting this error: not valid for use in process using Library Validation: mapped file has no Team ID and is not a platform binary (signed with custom identity or adhoc?)

Full Error:

Process 2908 launched: '/Users/atul/Desktop/App Store.app/Contents/MacOS/App Store' (x86_64)
dyld: warning: could not load inserted library '/Users/atul/Development/ssl-kill-switch2/build/Release/SSLKillSwitch.framework/Versions/A/SSLKillSwitch' into hardened process because no suitable image found.  Did find:
	/Users/atul/Development/ssl-kill-switch2/build/Release/SSLKillSwitch.framework/Versions/A/SSLKillSwitch: code signature in (/Users/atul/Development/ssl-kill-switch2/build/Release/SSLKillSwitch.framework/Versions/A/SSLKillSwitch) not valid for use in process using Library Validation: mapped file has no Team ID and is not a platform binary (signed with custom identity or adhoc?)
	/Users/atul/Development/ssl-kill-switch2/build/Release/SSLKillSwitch.framework/Versions/A/SSLKillSwitch: stat() failed with errno=1
	/Users/atul/Development/ssl-kill-switch2/build/Release/SSLKillSwitch.framework/Versions/A/SSLKillSwitch: code signature in (/Users/atul/Development/ssl-kill-switch2/build/Release/SSLKillSwitch.framework/Versions/A/SSLKillSwitch) not valid for use in process using Library Validation: mapped file has no Team ID and is not a platform binary (signed with custom identity or adhoc?)

I'm trying to view the requests to/from the App Store. I codesigned using: codesign -f --deep -s "Self-signed Applications" build/Release/SSLKillSwitch.framework

I tried both using the Dylib method and lldb and got the same error.

I have SIP disabled and I even copied the binary from /Applications to ~/Desktop.

$ csrutil status
2019-09-03 22:22:15.267 csrutil[2941:25936] === SSL Kill Switch 2: Fishhook hook enabled.
System Integrity Protection status: enabled (Custom Configuration).

Configuration:
	Apple Internal: disabled
	Kext Signing: disabled
	Filesystem Protections: disabled
	Debugging Restrictions: disabled
	DTrace Restrictions: disabled
	NVRAM Protections: disabled
	BaseSystem Verification: disabled

This is an unsupported configuration, likely to break in the future and leave your machine in an unknown state.

Am I doing something wrong?
@AlJohri
Copy link
Author

AlJohri commented Sep 4, 2019

I read somewhere the key needs to have an OU (organizational unit) but that also didn't work:

Screen Shot 2019-09-03 at 10 22 59 PM

@liuxuan30
Copy link

I think this is because the macOS has hardened runtime for the app. Thus using lldb and dyld insert is not enough. Refer #52

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@nabla-c0d3 @AlJohri @liuxuan30