rootlessJB icon indicating copy to clipboard operation
rootlessJB copied to clipboard

Published 20 hours ago verified publisher icon jakeajames

build tweakinject.dylib

Open matbrik opened this issue 5 years ago • 7 comments

Hi, I tried to build TweakInject the make.sh in its folder but the resulting dylib doesn't work. my steps are:

  • git clone
  • in rootlessJB/payloads_source/TweakInject I copy the folder rootlessJB/payloads_source/fishhook
  • I run make.sh
  • the obtained TweakInject.dylib is 56944 B against 73744 B of the original file.

Did I miss anything? maybe the payload source it is different? I've tried both rootlessJB3 and rootlessJB

matbrik avatar Jul 15 '19 15:07 matbrik

What does "doesn't work" mean

jakeajames avatar Jul 16 '19 10:07 jakeajames

Without modifying the code the tweaks do not work on jailbreak, while root daemons and ssh are working. I have tried to sign the dylib with ldid/2 and on the respring after the jailbreak procedure the screen stays black with the spinner spinning. If via ssh I ps | grep the springboard is not running

matbrik avatar Jul 16 '19 11:07 matbrik

Did you ldid2 after sending it to device?

jakeajames avatar Jul 16 '19 12:07 jakeajames

I have tried to ldid2 TweakInject both on the mac and then running rootlessJB and doing the normal rootlessJB, scp of tweakInject to the device in /tmp, ldid2 on it and then sending it back to the mac to be tested inside rootlessJB

matbrik avatar Jul 17 '19 15:07 matbrik

I believe that the binary file in the repo does not match the source code, could you confirm it?

matbrik avatar Jul 24 '19 09:07 matbrik

Did you inject the dylib to the trustcache after copying to device? And yes, source code matches, but maybe the binary is for arm64e as well and I forgot to update the Makefile.

jakeajames avatar Jul 24 '19 10:07 jakeajames