vphone-cli/scripts/cfw_install_jb_post.sh

#!/bin/zsh
# cfw_install_jb_post.sh — Finalize JB bootstrap on a normally-booted vphone.
#
# Runs after `cfw_install_jb` + first normal boot. Connects to the live device
# via SSH and sets up procursus symlinks, markers, Sileo, and apt packages.
#
# Every step is idempotent — safe to re-run at any point.
# All binary paths are discovered dynamically (no hardcoded /bin, /sbin, etc.).
#
# Usage: make cfw_install_jb_finalize [SSH_PORT=22222] [SSH_PASS=alpine]
set -euo pipefail

SCRIPT_DIR="${0:a:h}"

# ── Configuration ───────────────────────────────────────────────
SSH_PORT="${SSH_PORT:-22222}"
SSH_PASS="${SSH_PASS:-alpine}"
SSH_USER="root"
SSH_HOST="localhost"
SSH_RETRY="${SSH_RETRY:-3}"
SSHPASS_BIN=""
SSH_OPTS=(
    -o StrictHostKeyChecking=no
    -o UserKnownHostsFile=/dev/null
    -o PreferredAuthentications=password
    -o ConnectTimeout=30
    -q
)

# ── Helpers ─────────────────────────────────────────────────────
die() {
    echo "[-] $*" >&2
    exit 1
}

_sshpass() {
    "$SSHPASS_BIN" -p "$SSH_PASS" "$@"
}

_ssh_retry() {
    local attempt rc label
    label=${2:-cmd}
    for ((attempt = 1; attempt <= SSH_RETRY; attempt++)); do
        "$@" && return 0
        rc=$?
        [[ $rc -ne 255 ]] && return $rc
        echo "  [${label}] connection lost (attempt $attempt/$SSH_RETRY), retrying in 3s..." >&2
        sleep 3
    done
    return 255
}

# Raw ssh — no PATH prefix
ssh_raw() {
    _ssh_retry _sshpass ssh "${SSH_OPTS[@]}" -p "$SSH_PORT" "$SSH_USER@$SSH_HOST" "$@"
}

# ssh with discovered PATH prepended
ssh_cmd() {
    ssh_raw "$RENV $*"
}

# ── Prerequisites ──────────────────────────────────────────────
command -v sshpass &>/dev/null || die "Missing sshpass. Run: make setup_tools"
SSHPASS_BIN="$(command -v sshpass)"

echo "[*] cfw_install_jb_post.sh — Finalizing JB bootstrap..."
echo "    Target: ${SSH_USER}@${SSH_HOST}:${SSH_PORT}"
echo ""

# ── Verify SSH connectivity ────────────────────────────────────
echo "[*] Checking SSH connectivity..."
ssh_raw "echo ready" >/dev/null 2>&1 || die "Cannot reach device on ${SSH_HOST}:${SSH_PORT}. Is the VM booted normally?"
echo "[+] Device reachable"

# ── Discover remote PATH ──────────────────────────────────────
# Uses only shell builtins (test -d, echo) — works with empty PATH.
echo "[*] Discovering remote binary directories..."
DISCOVERED_PATH=$(ssh_raw 'P=""; \
    for d in \
        /var/jb/usr/bin /var/jb/bin /var/jb/sbin /var/jb/usr/sbin \
        /iosbinpack64/bin /iosbinpack64/usr/bin /iosbinpack64/sbin /iosbinpack64/usr/sbin \
        /usr/bin /usr/sbin /bin /sbin; do \
        [ -d "$d" ] && P="$P:$d"; \
    done; \
    echo "${P#:}"')

[[ -n "$DISCOVERED_PATH" ]] || die "Could not discover any binary directories on device"
echo "  PATH=$DISCOVERED_PATH"

# This gets prepended to every ssh_cmd call
RENV="export PATH='$DISCOVERED_PATH' TERM='xterm-256color';"

# Quick sanity: verify we can run ls now
ssh_cmd "ls / >/dev/null" || die "PATH discovery succeeded but 'ls' still not found"
echo "[+] Remote environment ready"

# ═══════════ 1/6 SYMLINK /var/jb ══════════════════════════════
echo ""
echo "[1/6] Creating /private/var/jb symlink..."

# Find 96-char boot manifest hash — use shell glob (no ls dependency)
BOOT_HASH=$(ssh_cmd 'for d in /private/preboot/*/; do \
    b="${d%/}"; b="${b##*/}"; \
    [ "${#b}" = 96 ] && echo "$b" && break; \
done')
[[ -n "$BOOT_HASH" ]] || die "Could not find 96-char boot manifest hash in /private/preboot"
echo "  Boot manifest hash: $BOOT_HASH"

JB_TARGET="/private/preboot/$BOOT_HASH/jb-vphone/procursus"
ssh_cmd "test -d '$JB_TARGET'" || die "Procursus directory not found at $JB_TARGET. Run cfw_install_jb first."

CURRENT_LINK=$(ssh_cmd "readlink /private/var/jb 2>/dev/null || true")
if [[ "$CURRENT_LINK" == "$JB_TARGET" ]]; then
    echo "  [*] Symlink already correct, skipping"
else
    ssh_cmd "ln -sf '$JB_TARGET' /private/var/jb"
    echo "  [+] /private/var/jb -> $JB_TARGET"
fi

# ═══════════ 2/6 FIX OWNERSHIP / PERMISSIONS ═════════════════
echo ""
echo "[2/6] Fixing mobile Library ownership..."

ssh_cmd "mkdir -p /var/jb/var/mobile/Library/Preferences"
ssh_cmd "chown -R 501:501 /var/jb/var/mobile/Library"
ssh_cmd "chmod 0755 /var/jb/var/mobile/Library"
ssh_cmd "chown -R 501:501 /var/jb/var/mobile/Library/Preferences"
ssh_cmd "chmod 0755 /var/jb/var/mobile/Library/Preferences"

echo "  [+] Ownership set"

# ═══════════ 3/6 RUN prep_bootstrap.sh ════════════════════════
echo ""
echo "[3/6] Running prep_bootstrap.sh..."

if ssh_cmd "test -f /var/jb/prep_bootstrap.sh"; then
    # Skip interactive password prompt (uses uialert GUI — not usable over SSH)
    ssh_cmd "NO_PASSWORD_PROMPT=1 /var/jb/prep_bootstrap.sh"
    echo "  [+] prep_bootstrap.sh completed"
    echo "  [!] Terminal password was NOT set (automated mode)."
    echo "      To set it manually: ssh in and run: passwd"
else
    echo "  [*] prep_bootstrap.sh already ran (deleted itself), skipping"
fi

# ═══════════ 4/6 CREATE MARKER FILES ═════════════════════════
echo ""
echo "[4/6] Creating marker files..."

for marker in .procursus_strapped .installed_dopamine; do
    if ssh_cmd "test -f /var/jb/$marker"; then
        echo "  [*] $marker already exists, skipping"
    else
        ssh_cmd "touch /var/jb/$marker && chown 0:0 /var/jb/$marker && chmod 0644 /var/jb/$marker"
        echo "  [+] $marker created"
    fi
done

# ═══════════ 5/6 INSTALL SILEO ══════════════════════════════
echo ""
echo "[5/6] Installing Sileo..."

SILEO_DEB_PATH="/private/preboot/$BOOT_HASH/org.coolstar.sileo_2.5.1_iphoneos-arm64.deb"

if ssh_cmd "dpkg -s org.coolstar.sileo >/dev/null 2>&1"; then
    echo "  [*] Sileo already installed, skipping"
else
    ssh_cmd "test -f '$SILEO_DEB_PATH'" || die "Sileo deb not found at $SILEO_DEB_PATH. Was it uploaded by cfw_install_jb?"
    ssh_cmd "dpkg -i '$SILEO_DEB_PATH'"
    echo "  [+] Sileo installed"
fi

ssh_cmd "uicache -a 2>/dev/null || true"
echo "  [+] uicache refreshed"

# ═══════════ 6/6 APT SETUP ═════════════════════════════════
echo ""
echo "[6/6] Running apt setup..."

ssh_cmd "apt-get update -qq && apt-get install -y -qq libkrw0-tfp0 2>/dev/null || true"
echo "  [+] apt update + libkrw0-tfp0 done"

ssh_cmd "apt-get upgrade -y -qq 2>/dev/null || true"
echo "  [+] apt upgrade done"

# ═══════════ DONE ═══════════════════════════════════════════
echo ""
echo "[+] JB finalization complete!"
echo "    Next: open Sileo on device, add source https://ellekit.space, install ElleKit"
echo "    Then reboot the device for full JB environment."