Macho

Mach-O , for Mach Object , describes the standard binary executable programs , libraries and dumps among many MACH-based UNIX - operating systems such as OPEN STEP (originally Next Step), FreeBSD or macOS (originally under the name of Mac OS X).

It was developed from 1985 at Carnegie Mellon University , CMU for short, for the MACH operating system. It is particularly widespread among NeXTStep and its further development macOS and Apple systems based on it, such as iOS and iPadOS . With Universal Binaries , under NeXTStep Multi-Architecture Binaries , the format was also expanded to include multi-processor architecture capability.

construction

A Mach-O file essentially consists of three parts:

• Header information, English header
  • Magic
  • various flags
  • Number and size of the load commands
• Load commands
  • Metadata
  • Offset addresses of the segments
• Segments, segments
  • up to 255 sections, sections

Header

The Mach header is a 32- bit area at the beginning of a Mach-O binary file. The following code is from osfmk/mach-o/loader.hof XNU , the kernel of macOS.

struct mach_header {
       unsigned long   magic;          /* mach magic number identifier */
       cpu_type_t      cputype;        /* cpu specifier */
       cpu_subtype_t   cpusubtype;     /* machine specifier */
       unsigned long   filetype;       /* type of file */
       unsigned long   ncmds;          /* number of load commands */
       unsigned long   sizeofcmds;     /* the size of all the load commands */
       unsigned long   flags;          /* flags */
};

An example of a Mach header from any program file:

See also

• Executable and Linking Format (ELF)

Individual evidence

1. ^ William Woodruff: Mach-O Internals. (PDF; 307 KB) February 10, 2016, p. 10 (English).; accessed on July 14, 2020 
2. ↑ https://stackoverflow.com/questions/27669766/how-to-read-mach-o-header-from-object-file