Comments (15)
Probably due to some entitlement missing in the bootstrap / in Filza
from dopamine.
I think it may not be a matter of permissions. In iOS 14 (Taurine), the Filza installed by Trollstore also does not have permission to edit any files inside. However, after jailbreaking and continuing to use the Filza installed by Trollstore, it can be found that the files inside can be edited. I think there may be other places that need to be patch.
from dopamine.
I think it may not be a matter of permissions. In iOS 14 (Taurine), the Filza installed by Trollstore also does not have permission to edit any files inside. However, after jailbreaking and continuing to use the Filza installed by Trollstore, it can be found that the files inside can be edited. I think there may be other places that need to be patch.
The same thing happens with Checkra1n and Palera1n.
from dopamine.
@invalidunit This isn't a dopamine issue, nor palera1n, sandbox protects many directories, the process needs special entitlements to read/write to certain directories.
from dopamine.
I'm encountering this as well, but with /var/mobile/Containers/Data/
over ssh/sftp. I think it's an entitlement or sandboxing of sshd
issue
from dopamine.
Update: I fixed this by giving more entitlements to sshd
and sftp-server
, copied entitlements from TrollStore Filza
from dopamine.
@invalidunit This isn't a dopamine issue, nor palera1n, sandbox protects many directories, the process needs special entitlements to read/write to certain directories.
No, what I meant was that both checkra1n and palera1n do not have this issue and can read and write to this directory normally.
Additionally, in tests conducted on a taurine device, using filza installed through trollstore while in a jailbroken state, I was able to open this folder and read and write to it normally. However, after rebooting without restoring rootfs and continuing to use filza installed through trollstore, attempts to read and write to the path resulted in the inability to add, delete, or modify files inside it.
Therefore, I still believe that this is not an issue of missing special permissions, but rather one that requires the jailbreak to handle this situation.
from dopamine.
Previous jailbreaks injected entitlements using detached signatures, Dopamine does not do that, therefore this has to be fixed by resigning the binaries with them.
from dopamine.
Previous jailbreaks injected entitlements using detached signatures, Dopamine does not do that, therefore this has to be fixed by resigning the binaries with them.
Could you please inform me of what permissions should be granted for binary files to be signed when reading and writing to this directory?
from dopamine.
Previous jailbreaks injected entitlements using detached signatures, Dopamine does not do that, therefore this has to be fixed by resigning the binaries with them.
Could you please inform me of what permissions should be granted for binary files to be signed when reading and writing to this directory?
I have no idea, you need to figure this out by yourself
from dopamine.
Could you please inform me of what permissions should be granted for binary files to be signed when reading and writing to this directory?
@invalidunit I can tell you the standard.
Directories that will contain executables and dylibs should be 0755, directories that won’t be containing executables and dylibs should be 0644. Executables themselves should be 0755. Dylibs should always be 0644. Everything should be owned root:wheel (0:0) except /var/jb/tmp and /var/jb/var/mobile those should be 501:501 owned.
dylibs should not contain any entitlements. For sandbox entitlements I recommend looking at containermanagerd for reference.
from dopamine.
<key>com.apple.private.security.container-manager</key>
<true/>
This entitlement is required for all binaries accessing /var/mobile/Containers/Data
.
Consider update all base packages, or add a hook to dpkg
and use ldid
to re-sign the related binaries after installation.
from dopamine.
Look I'm certainly not going to hook dpkg. The way to solve this is either to convince Procursus to push updates or implement detached signatures like previous jailbreaks (a lot of work).
from dopamine.
Issue should be raised to Procursus instead.
from dopamine.
it was found that the permission could be used to write to the directory
<key>com.apple.rootless.install.heritable</key>
<true/>
from dopamine.
Related Issues (20)
- Battery HOT 12
- Dopamine 2.1.4 crashes HOT 16
- amsengagementd重启 HOT 1
- I fixed WeightBufs. HOT 5
- Unable to build Dopamine, branch 2.x HOT 4
- Safe Mode After Applying Misaka Tweaks HOT 2
- Jailbreak failed iphone11 IOS15.7.2 HOT 1
- App Crashes: EXC_BAD_ACCESS (SIGSEGV) | KERN_INVALID_ADDRESS: 0x3e HOT 6
- Install Trollstore Error HOT 2
- 发生错误 检测到标识符为[org.coolstar.SileoStore]的应用程序存在于 Dopamines 应用目录中("/privatepreboot/9A3A704D9F413383DE87733A7909A68BCAA35782282A113F33A3D3CD906FC1342F71710E18F098C6E09615B7D9585667/dopamine-CEt6qi/procursus/Applications"),但其已被单独安装在系统上,无法继续。 HOT 2
- Why cannot the iPad Pro 2022 (ipadOS 16.5.1) M2 use this Dopamine? When can adapt it
- Error after jailbreak HOT 2
- Notifications not working HOT 10
- Feature Request: support arm64e iOS 16.6 HOT 1
- Disable Tweak Injection HOT 2
- Cannot mount APFS volumes and HFS partitions
- Support for Apple TV (A1625, A1842, A2169, A2737/A2843) HOT 1
- All package managers disappeared after updating tweaks HOT 1
- Kernel version
- Web Browser not working after Jailbreak
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dopamine.