From 5267c3482b50540998e632cadc9d95b742351af7 Mon Sep 17 00:00:00 2001 From: Cameron Katri Date: Thu, 20 Jan 2022 00:03:26 -0500 Subject: ldid.1: Document -E --- docs/ldid.1 | 25 +++++++++++++++++++------ 1 file changed, 19 insertions(+), 6 deletions(-) diff --git a/docs/ldid.1 b/docs/ldid.1 index fdab9ed..c071a8d 100644 --- a/docs/ldid.1 +++ b/docs/ldid.1 @@ -15,6 +15,7 @@ .Op Fl C Ns Op Ar adhoc | Ar enforcement | Ar expires | Ar hard | Ar host | Ar kill | Ar library-validation | Ar restrict | Ar runtime .Op Fl D .Op Fl d +.Op Fl E Ns Ar num : Ns Ar file .Op Fl e .Op Fl h .Op Fl K Ns Ar key.p12 Op Fl U Ns Ar password @@ -27,7 +28,8 @@ .Ar .Sh DESCRIPTION .Nm -adds SHA1 and SHA256 hashes to a Mach-O file so that they can be run on a system that has validation but not signature verification. +adds SHA1 and SHA256 hashes to a Mach-O file so that they can be run +on a system that has validation but not signature verification. .Bl -tag -width -indent .It Fl a Print the CPU types and subtypes in hexadecimal. @@ -56,26 +58,36 @@ Print the cryptid in the binaries if it exists. For compatibility reasons it also acts as .Fl h , but this will be removed in the future. +.It Fl E Ns Ar num : Ns Ar file +Embed the hashes of +.Ar file +in the special codesign slot at +.Ar num . .It Fl e Print the entitlements in each slice, or the slice specified by .Fl A , to .Ar stdout . .It Fl h -Print information about the signature, such as hash types, flags, CDHash, and CodeDirectory version to +Print information about the signature, such as +hash types, flags, CDHash, and CodeDirectory version to .Ar stdout . .It Fl K Ns Ar key.p12 Sign using the identity in .Ar key.p12 . -This will give the binary a valid signature so that it can be run on a system with signature validation. +This will give the binary a valid signature so that it can be run +on a system with signature validation. If .Ar key.p12 -has a password you will be prompted for it, or you can specify from the command line with +has a password you will be prompted for it, +or you can specify from the command line with .Fl U . .It Fl M When used with .Fl S , -merge the new and existing entitlements instead of replacing the existing entitlements, this is useful for adding a few specific entitlements to a handful of binaries. +merge the new and existing entitlements instead of replacing the existing +entitlements, this is useful for adding a few specific entitlements to a +handful of binaries. .It Fl P Mark the Mach-O as a platform binary. .It Fl Q Ns Ar file @@ -108,7 +120,8 @@ Use .Ar password as the password for the p12 certificate instead of prompting. .It Fl u -If the binary was linked against UIKit, then print the UIKit version that the Mach-O binaries was linked against. +If the binary was linked against UIKit, then print the UIKit version that the +Mach-O binaries were linked against. .El .Sh EXAMPLES The command: -- cgit v1.2.3-56-ge451