CoolStar Shares Progress Update on 'Cheyote' Jailbreak of iOS 15
Posted July 27, 2022 at 7:27pm by iClarified
CoolStar has shared a progress update on the upcoming 'Cheyote' jailbreak of iOS 15. Based on the task list below, it appears the jailbreak is nearly complete.
iOS 15.0 - 15.1.1 A11 - A14 jailbreak progress:
✅ breaking out of sandbox
✅ getting root
✅ getting read/write access to filesystem (except rootfs)
✅ break AMFI / codesign
✅ run shell commands
- bugs identified: fork() broken on A12+
✅ fix fork() on A12+
- bugs identified: dyld hook
✅ get OpenSSH running
✅ get legacy (Odyssey) launchd injection working
✅ add USB Ethernet debug support
⌛ fix dyld hook
✅ get userspace reboot working
✅ get Cheyote recovery working
✅ get system services started properly after userspace reboot
- bugs identified: requires manual intervention where a command must be run in Cheyote recovery first
⌛ fix userspace reboot bug so manual intervention isn't needed
✅ put a bounty out for an iOS 15 tweak to install
✅ run tweak in SpringBoard
⌛ make sure injection works in app store apps
In a followup post this morning, CoolStar notes that "safe mode still works".
Please download the iClarified app or follow iClarified on Twitter, Facebook, YouTube, and RSS to be notified when the jailbreak becomes available.
iOS 15.0 - 15.1.1 A11 - A14 jailbreak progress:
✅ breaking out of sandbox
✅ getting root
✅ getting read/write access to filesystem (except rootfs)
✅ break AMFI / codesign
✅ run shell commands
- bugs identified: fork() broken on A12+
✅ fix fork() on A12+
- bugs identified: dyld hook
✅ get OpenSSH running
✅ get legacy (Odyssey) launchd injection working
✅ add USB Ethernet debug support
⌛ fix dyld hook
✅ get userspace reboot working
✅ get Cheyote recovery working
✅ get system services started properly after userspace reboot
- bugs identified: requires manual intervention where a command must be run in Cheyote recovery first
⌛ fix userspace reboot bug so manual intervention isn't needed
✅ put a bounty out for an iOS 15 tweak to install
✅ run tweak in SpringBoard
⌛ make sure injection works in app store apps
In a followup post this morning, CoolStar notes that "safe mode still works".
Please download the iClarified app or follow iClarified on Twitter, Facebook, YouTube, and RSS to be notified when the jailbreak becomes available.