The team behind the "Checkra1n" jailbreaking tool for iOS has released version 0.11.0 of its software with support added for iOS 14, but only on a limited number of devices.
checkra1n 0.11.0 is now available, adding support for iOS 14 on A9(X) devices and below. A10 devices and above NOT SUPPORTED YET, read our statement 👇https://t.co/SIjT4PeZEX — checkra1n (@checkra1n) September 22, 2020
In a statement accompanying the announcement of the software release, the team said that it needed "more time to work around a new security mitigation" added by Apple before it could support jailbreaking iOS 14 on newer devices.
In iOS 14, Apple added a new mitigation to SEPOS on A10 and above (except on Apple TVs and iBridge): if the device was booted from DFU mode and the Secure Enclave receives a request to decrypt user data, it will panic the device. Since checkm8 does not give us control over the Secure Enclave, this is not trivial to workaround. However, with the recently published blackbird vulnerability, we are able to get control of the Secure Enclave on A10 and A10X and disable this mitigation. Support for A10 and A10X devices is being worked on and is expected to be ready in the coming weeks.
As a result of the security mitigation, the new version of "Checkra1n" works for iOS 14 and iPadOS 14 on the following devices.
- iPhone 6s, 6s Plus, and SE
- iPad (5th generation)
- iPad Air 2
- iPad mini 4
- iPad Pro (1st generation)
- Apple TV 4 and 4K
The team said it hoped to support newer devices in the coming weeks, with support for iPhone 8, iPhone 8 Plus, and iPhone X to "be addressed in a future statement."
"Checkra1n" is made by the same security researchers responsible for last year's "checkm8" exploit, which was found on nearly every chip made by Apple and paved the way for a permanent, non-patchable jailbreak on hundreds of millions of affected iOS devices.
"Checkm8" was the first publicly available boot room exploit for iOS devices since the iPhone 4 in 2010.
Top Rated Comments
* Running unsigned apps without having them tethered to a disposable Apple Developer Account is possible with a jailbreak.I’m not being sarcastic, snarky, etc but why is jail breaking still a thing? I agree in the early 1.0 and 2.0 days there were tons of customizations that added functionality or perhaps utility like Personal Hotspot or even recording video. These days iOS seems so customizable (down to icon changing and widgets) that jailbreaking doesn’t seem to have value anymore.
* Can use older versions of existing apps, assuming you’ve retained the .ipa.
* Old Music.app without the AM tabs and other visual regressions, if you’re not an AM subscriber.
* Old Fantastical.app is nice, for example.
* Crontab-style functionality can keep stuff running in the background, such as server ‘health checks’, UNIX shell scripts
* Obviously it’s your responsibility to ensure you don’t drain your battery.
* Piracy or .ipa’s with all in-app purchases unlocked, etc
* Location spoofing
* Things like Picture-in-Picture, which I guess they’ve finally introduced in iOS 14, but you’ve been able to do it for quite some time.
* Removal of the ‘Widgetsmith’ NSLabel from widgets (not actually sure if that’s a thing yet, but I’m guessing it will be due to limitations of iOS 14 still)
& 500+ other, very specific reasons that 98% of iOS users wont really care for, and that’s okay.
Which removes income from the developers.* Piracy or .ipa’s with all in-app purchases unlocked, etc
One of my apps was pirated, and made freely available, and I saw the income drop right off. It never recovered. People didn't want to pay $0.99 for an app. By allowing this to happen, these checkra1n people are hurting thousands of developers, including one-man setups like me.