原文地址::https://blog.csdn.net/sepnineth/article/details/95600651
相关文章
1、AFC----https://www.theiphonewiki.com/wiki/AFC
2、/System/Library/Lockdown/Services.plist----https://www.theiphonewiki.com/wiki//System/Library/Lockdown/Services.plist
AFC
AFC (Apple File Conduit) is a service that runs on every iPhone / iPod, which iTunes uses to exchange files with the device. It is jailed to the directory /private/var/mobile/Media, which is on the second (non-OS) partition. The AFC service is handled by /usr/libexec/afcd, and runs over the usbmux protocol.
AFC2
AFC2 is an additional AFC service, configured to allow access to the whole filesystem. Installing it and patching the fstab file for full write access is considered a bare-bones jailbreak. Up to iOS 7, the AFC2 service is added by editing the /System/Library/Lockdown/Services.plist file and adding a service that runs under root with access to the rootfilesystem. As of iOS 8, services list with root access permission is hardcoded inside lockdownd. There is a function that the list data inside lockdownd (CFPropertyListCreateWithData involved) and we still could use Mobile Substrate to hook the function to add AFC2 service to the list.