I guess I’ll let people know I have a Patreon in case anybody feels like contributing to it. I never liked people asking for donations, so I’m not... but if anybody feels they would like to help support my work on Elucubratus etc, this is available for you
Well minimal stuff works - still need to do a lot but I have a shell, Cydia works and substrate mostly works. Don’t hold your breath but it’s progressing.
Got unc0ver running on A12 on
@CorelliumHQ
- nice to be able to test the risky things without worrying about bootlooping. Next step will be substrate support :) thanks
@cmwdotme
I just posted an unc0ver update to 4.3.1 - it changes absolutely nothing other than the version number. 4.3.0 had two versions posted to github, one good and one old. This allows you to know that if you see 4.3.1 you have the correct version.
Just pushed a build of substrate and updated patchfinder64 on the develeop branch of unc0ver that supports A8 - once it gets tested pwn should be able to do a release.
I’ve seen rumors that I will not update TetherMe for A12 or would make a version that does not work on Chimera. I plan to release the A12 update for TetherMe as soon as I have everything in line and I would never intentionally break support for any jailbreak.
Welp, now
@Apple
has started abusing DMCA copywrite claims to take down things they don't like that are not copywritten. The encryption key for the SEP in your phone is not copywritable afaik, looks like a case for
@EFF
to start trying to provide some assistance.
FYI we plan to do a tvOS
#unc0ver
prerelease soon so people don’t get stuck. It won’t be as well tested as the iOS release but revert rootfs is well tested so any problems should not be fatal and it will allow everybody to upgrade during the upgrade window.
On iOS12 with the same settings (running the same file) a CFReadStream on an HTTPRequest reports ONLY supporting TLS 1.0 while iOS11 reports TLS 1.0 through 1.2 - what? Why? What are you doing
@Apple
I just pushed some updates to ldid, dpkg, and jailbreak-resources that should allow people who had scripts that ran ldid in postinst to just automatically use the cert if necessary. It just adds a binary wrapper before ldid that adds -K if necessary
This update includes the substitute fix that allows TetherMe to work on A12 - be sure you are running 3.7.0~b2 or later for A12 support. I will be able to push an update to BigBoss in the next day or so to allow new purchases more easily, in the meantime
unc0ver v3.7.0~b2 is now out: A12 fixes for GPS, App Store, Face ID, performance issues, stability issues, shutdown, reboot, USB, debugging, a bug that broke TetherMe, enables full-fledged AMFI/CT bypass, memory management issues, Safari tweaks, and more.
@DeanPreston
So I guess if something gets stolen from me, it’s my fault for not securing it better? Naturally. Couldn’t be that there may be another solution to social problems, and blaming the victims while ignoring the crimes is not ideal.
Pushed an update to unc0ver that makes it install a copy of the apt sources cache on initial jailbreaks that will ease the load on
@0ptimo
-
@Pwn20wnd
will do the actual release soon since he’s in the middle of something else in the source and it’s not releasable right now.
Just pushed a libapt update that will fix the SSL error on Chariz and github repos with iOS12. The problem was the _NAME_ of the directory it used for linking the SDK. Wtf.
FYI Sileo is serving packages from BigBoss (
@0ptimo
) directly without serving their ads which is essentially stealing their bandwidth without paying for it. If you want to use things off BigBoss you should not use Sileo to access it or you could cause it to go away permanently.
We have identified the cause of the recent bootloops following Cydia updates. There was a system file removed by another jailbreak app. New uicache caused the system to detect this and bootloop. A test has been implemented that will avoid informing the system of missing files.
Uikittools 1.1.15-1 fixes an issue where sbreload could hang forever if it fell back to legacy sbreload behaviors (which was generally caused by bioprotect making the normal sbreload time out if you didn't authenticate fast enough)
FYI there seems to be an Apple bug that is making it not include the required entitlements entry in new mobileprovision files. This is breaking both XCode for new profiles and Impactor installs.
There was a bug in Cydia where it was not properly releasing a lock on a file during suspend. This was making newer iOS kill it immedately. Cydia 1.1.32~b25 corrects this by properly releasing the lock.
Substrate was updated to 0.9.7100 to fix a mach port name leak that caused it to sometimes stop being able to hook new processes. For non-A12 only, don’t try to install on A12 😒
@XD_Jarno_
@Pwn20wnd
@qwertyoruiopz
The goal of jailbreaking should be allowing people to actually use the hardware they own as they see fit instead of being forced to a limited set of functionality that Apple deems permissible.
Well it’s official -
@zoom_us
sells their user database to spammers. I use a dedicated email to sign up and it’s started getting lots of spam. Used nowhere else ever.
You may experience (or may have experienced) some issues with my services over the last 5 minutes or near future. My provider had problems with a router and is working on resolving the issue. (My services primarily being the apt repo used for unix tools - elucubratus)
Some people couldn’t access over cellular because IPv6 was broken. The carrier was not blocking it, I just forgot to test that IPv6 connections were working properly. My firewall was missing the rule to permit IPv6 connections 😞
If you need tetherme for non-A12 and have been asking how to get it you can send $5 and your Cydia ID number via PayPal to paypal
@sbdhi
.com and I can grant you a copy. Please include your shipping address for tax purposes. I still need a proper payment system 😞
Just fixed a stupid bug in TetherMe that could have affected you on iOS13.3 or higher - if it wasn’t working for you it should now otherwise send me a support email
So, I have some very good news to share with you all: I've managed to fix AppSync Unified on A12 (arm64e) devices!!
Unfortunately, I am currently not yet able to release this update as it right now it only works on unc0ver due to a bugfix that Chimera has not (yet) implemented.
As I understand it, my
@Apple
AirPods with shot batteries will cost $100 to have batteries service with practically no warranty... or I could just buy new ones for $150. I guess they’re just expensive disposable devices? I expected reasonable battery replacement costs 😞
Added
@PayPal
to the payment methods available at since some of you want to use that and 2/3 of
@Square
payment methods are broken and they haven’t done anything to fix it.
An apache update for my apt server added defaults for my worker module to a different place that it used instead of my config. It caused it to not be able to handle sufficient connections and made things slow/not work. It’s fixed now.
I’ve pushed an updated Cydia that will prompt for network access on chinese devices as well as substitute (0.1.0) that fixes a bug for
@angelXwind
and no longer uses a separate substrate dummy package.
Looks like
@coolstarorg
merged in my arm64e substitute to Chimera finally. TetherMe (and AppSync Unified etc) should work on Chimera if you update his substitute to 0.1.1 or higher.
EPIC JAILBREAK: Introducing checkm8 (read "checkmate"), a permanent unpatchable bootrom exploit for hundreds of millions of iOS devices.
Most generations of iPhones and iPads are vulnerable: from iPhone 4S (A5 chip) to iPhone 8 and iPhone X (A11 chip).
Full explanation [2/2]: It then caused springboard to go into a crash loop because it tried to create an NSURL with a nil (empty) path. The workaround implemented checks to ensure that the CFBundleExecutable is present for every bundle, and aborts if it is missing.
Thanks to
@CorelliumHQ
for letting me duplicate bootloops without bootlooping a real device. Without that it would have been much more difficult to isolate this.
I got this iPhone case 1/2 an inch too small for an iPhone to a actually fit into.
@PayPal
denied the case 2x because it is “materially similar to the seller’s description”. What do you expect me to do,cut the bottom off and have the case sort of drape over the phone?
@AskPayPal
FYI if you’re trying to use TetherMe with unc0ver on 13.3 using a device supported by checkra1n it will not work properly because of a substitute bug. Please use checkra1n until it gets resolved. Substitute works fine on arm64e.
This is why you should NEVER use your cell phone for 2fa; it is less than useless. It actually makes it easier to break into your accounts because somebody can easily steal your phone number and then everybody thinks they have authoritatively authenticated you.
I wonder what fork he could be talking about 🤔 strange that he wouldn’t identify which fork? Maybe he means my fork where I fixed the bug that broke AppSync and TetherMe? Naaah couldn’t be that, must be some other fork. 🙄
I, sadly, just learned that
@e_swick
passed away last December. He was a great guy and will be missed. If you don't know who he was he made Harbor, OS Experience, and various other things and was active in
@saurik
's IRC the same time I was. Rest in peace
Google has recently gone to shit and decided it knows what I’m searching for better than I do. Is there like an “old google” link where it does what you tell it instead of assuming uou mean some other random crap and giving you unrelated links? Seriously screw machine learning.
Finally just did some kernel debugging with
@CorelliumHQ
- was pretty awesome and helped me figure out I was making a stupid mistake in static disassembly.
PSA: If you’re installing tetherme using Sileo it shows you an outdated version and you need to use any other installer (Cydia/Zebra etc) to install it until the outdated information gets updated manually by coolstar
Apt would decide it was ok to unpack half the packages and stop to configure another one where it should not have. I have updated the depends to force apt to use the proper order. If you had issues updating packages before this will have fixed it.
Substrate 0.9.7000 is my most well-tested update ever, verified to work on iOS 3.0, 4.3.1, 5.1.1, 6.1.3, 7.1.2, 8.0, 9.0.2, 10.1.1 (mach_portal), 11.1.2 (Extender), and 11.3.1 (unc0ver). I expect it will fail anyway :(. If you want to try it, add to Cydia.
Full explanation [1/2]: An app removed /Applications/Setup.app/Setup which is the executable for the bundle. When uicache was run it detected modifications to and informed the system to re-read it.
I just learned that the two idiots who screwed up Game of Thrones are booted off Star Wars. I am quite happy, may actually watch a new Star Wars movie now. Maybe the next people who want to halfass a show everybody loves will remember this and think twice. The North remembers.
Two weeks after acknowledging it mishandled millions of its users' Facebook passwords, Facebook is demanding some users hand over the passwords for their personal email accounts too. (h/t
@originalesushi
)
If you’re a tweak developer and your tweak causes respring to freeze on MobileSubstrate it’s probably causing CS_VALID to be invalidated. Suggest that if you’re patching memory you do it in a hook of something that happens as soon as the process finishes loading instead of ctor
FYI - this was done with the sep not active so no this doesn’t mean checkra1n would work on iPhoneX iOS14 yet, it was just showing that cydia itself did
@Yalujb
Please correct this tweet - there is no infringing clone. He alleges that there is, but that is not factual. The technique was identified by coolstar but I did not copy the code for uicache but rather reimplemented code to use the faster technique myself.
In other news: don’t use iCloud Backups because you’re giving all your data to somebody else who can give it to other people whenever they feel like it. (Ok not really news but some people don’t seem to realize “Cloud” just means “somebody else’s computer”)
Updated Elucubratus - you should be able to install it on devices that had electra repo loaded and upgrade packages won’t break anything now. Should soon™️ be able to release an unc0ver that will allow you to switch jailbreaks without restoring.
The AppStore subscription model from
@Apple
is broken. A family member accidentally joined a “free trial” of
@ClassDojo
. When they charged $70 after a few days, I immediately (like within hours) contacted apple for a refund. They denied it. This is not ok. (Chargeback pending)
@hbkirb
No. It was blocked because coolstar added code to Sileo all over to block it from working properly with the simple patch that let it work on Unc0ver. The patch he insists he needs has still not been shown to be needed.
@realDonaldTrump
America is Great because of our freedom and rights. If they did what you say, it would remove the privacy of everybody who owns an iphone not only criminals. Once something like that is done, it’s pretty wide open.
The problem isn’t people not using 2FA, it’d the fact that people are willing to stream videos of the inside of their children’s bedroom to a company over the internet at ALL.
Interestingly,
@Apple
promises no contact delivery on orders but actually has no such agreement with their carriers and is unwilling to even request it. Looks like a good false advertising case at a minumum to me.