hax/DownRa1n
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

some new path

Browse source
This commit is contained in:
edwin170 2024-08-14 17:47:32 -04:00
parent f2519339d6
commit e441d8c871
4 changed files with 41 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
README.md
View file

@ -30,10 +30,10 @@ The various command-line options are as follows:
# Dependencies # Dependencies
- please execute this command: python3 -m pip install pyimg4[compression] fastapi aiohttp ujson wikitextparser uvicorn. - please execute this command: python3 -m pip install pyimg4[compression] fastapi aiohttp ujson wikitextparser uvicorn.
- unzip, python3, libimobiledevice-utils, libusbmuxd-tools, xz-utils, wget, curl, git, libssl-dev, usbmuxd.
- A disabled passcode on A10 and A11 devices. - A disabled passcode on A10 and A11 devices.
- unzip, python3, libimobiledevice-utils, libusbmuxd-tools, xz-utils.
- An .iPSW file containing iOS 15, 14, 13. - An .iPSW file containing iOS 15, 14, 13.
- A device running macOS or a Linux distro. It is recommended to use macOS, as it is likely more stable and faster. - A device running macOS or a Linux distro. It is recommended to use macOS, as it is likely more stable and faster. and for linux it is recommended to use ubuntu or debian.
# Issues Putting Device in PwnDFU Mode # Issues Putting Device in PwnDFU Mode
@ -41,7 +41,9 @@ The various command-line options are as follows:
# importants things # importants things
- A8/A8x devices downr1n is not recommended please instead use dualra1n with --downgrade option - A8/A8x devices downr1n is not recommended please instead use dualra1n with --downgrade option (if you don't have enough storage for a dualboot)
- you can't downgrade an iphone x if the device is on ios 16
- downgrading ios 16 to 14 or another version, you will have to bypass the setup somehow. good luck on it. - downgrading ios 16 to 14 or another version, you will have to bypass the setup somehow. good luck on it.

BIN
binaries/Darwin/Kernel64Patcher
View file

Binary file not shown.

BIN
binaries/Linux/Kernel64Patcher
View file

Binary file not shown.

35
downr1n.sh
View file

@ -15,6 +15,10 @@ printr()
echo -e "\033[1;31m$1\033[0m" echo -e "\033[1;31m$1\033[0m"
} }
printy() {
echo -e "\033[1;33m$1\033[0m"
}
if [ "$(uname)" == "Linux" ]; then if [ "$(uname)" == "Linux" ]; then
if [ "$EUID" -ne 0 ]; then if [ "$EUID" -ne 0 ]; then
printg "You have to run this as root on Linux." printg "You have to run this as root on Linux."
@ -96,6 +100,8 @@ Options:
--downgrade downgrade tethered your device. --downgrade downgrade tethered your device.
--jailbreak jailbreak with dualra1n-loader. usage ./downr1n.sh --jailbreak 14.8 --jailbreak jailbreak with dualra1n-loader. usage ./downr1n.sh --jailbreak 14.8
--taurine jailbreak with taurine. usage ./downr1n.sh --jailbreak 14.3 --taurine --taurine jailbreak with taurine. usage ./downr1n.sh --jailbreak 14.3 --taurine
--aslrdisable This option will path kernel to disable aslr on all process. use this when you creating boot files.
--ptracedisable This option will path kernel to disable ptrace debugger method detection. use this when you creating boot files.
--boot this boot the device. --boot this boot the device.
--keyServer use this option to downgrade when the keys server is in problem. use ex: --downgrade 14.8 --keyServer --keyServer use this option to downgrade when the keys server is in problem. use ex: --downgrade 14.8 --keyServer
--dont-restore this will avoid the restore using futurerestore, this can be used if you wanted only create the boot files, use ex: --downgrade 14.8 --dont-restore --dont-restore this will avoid the restore using futurerestore, this can be used if you wanted only create the boot files, use ex: --downgrade 14.8 --dont-restore
@ -123,6 +129,12 @@ parse_opt() {
--taurine) --taurine)
taurine=1 taurine=1
;; ;;
--aslrdisable)
aslrDisabled=1
;;
--ptracedisable)
ptraceDisabled=1
;;
--keyServer) --keyServer)
keyServer=1 keyServer=1
;; ;;
@ -336,9 +348,19 @@ _do_localboot() {
python3 -m pyimg4 img4 create -p work/krnl.im4p -o work/kernelcachd -m work/IM4M >/dev/null python3 -m pyimg4 img4 create -p work/krnl.im4p -o work/kernelcachd -m work/IM4M >/dev/null
remote_cp work/kernelcachd root@localhost:/mnt6/"$active"/System/Library/Caches/com.apple.kernelcaches/ >/dev/null remote_cp work/kernelcachd root@localhost:/mnt6/"$active"/System/Library/Caches/com.apple.kernelcaches/ >/dev/null
#printb "[*] Renaming the snapshot"
#output=$(remote_cmd "snaputil -l /mnt1")
#SNAPSHOT=$(echo "$output" | awk '/com.apple.os.update-/ {print $1}')
#if [ $SNAPSHOT ]; then
# remote_cmd "snaputil -n "$SNAPSHOT" backup."$SNAPSHOT" /mnt1"
#fi
if [ "$os" = 'Linux' ]; then if [ "$os" = 'Linux' ]; then
#sed -i 's/com\.apple\.os\.update-/downr1n\.rfsnapshot-/g' work/iBEC.dec
sed -i 's/\/\kernelcache/\/\kernelcachd/g' work/iBEC.dec sed -i 's/\/\kernelcache/\/\kernelcachd/g' work/iBEC.dec
else else
#LC_ALL=C sed -i.bak -e 's/com\.apple\.os\.update-/downr1n\.rfsnapshot-/g' work/iBEC.dec
LC_ALL=C sed -i.bak -e 's/s\/\kernelcache/s\/\kernelcachd/g' work/iBEC.dec LC_ALL=C sed -i.bak -e 's/s\/\kernelcache/s\/\kernelcachd/g' work/iBEC.dec
fi fi
@ -366,8 +388,8 @@ usage() {
ask() { ask() {
printg "Do you want to activate the iBoot localboot path? YES or NO." printg "Do you want to activate the iBoot localboot path? YES or NO."
printg "Activating this path can help avoid a lot of problems and is generally more stable." printg "Activating this path can help avoid a lot of problems and is generally more stable."
printg "If you activate it, you will need to use --boot again after it finishes to boot with localboot." #printg "If you activate it, you will need to use --boot again after it finishes to boot with localboot."
printg "If localboot breaks your boot process (like you can't boot), please execute ./downr1n.sh --downgrade (version) --dont-restore to fix the boot files." printy "If localboot breaks your boot process (like you can't boot), please execute ./downr1n.sh --downgrade (version) --dont-restore to fix the boot files."
} }
_kill_if_running() { _kill_if_running() {
@ -604,6 +626,11 @@ else
fi fi
chmod +x "$dir"/* chmod +x "$dir"/*
if [ "$os" = 'Darwin' ]; then
find "$dir" -type f -exec file {} \; | grep "Mach-O" | cut -d: -f1 | while read -r binaries_file; do
xattr -d com.apple.quarantine "$binaries_file"
done
fi
# ============ # ============
# Start # Start
@ -986,7 +1013,7 @@ if [ true ]; then
"$dir"/img4 -i work/kernelcache -o work/kcache.raw >/dev/null "$dir"/img4 -i work/kernelcache -o work/kcache.raw >/dev/null
"$dir"/Kernel64Patcher work/kcache.raw work/kcache.patched $(if [[ "$version" = "15."* ]]; then echo "-e -o -r -b15"; fi) $(if [[ "$version" = "14."* ]]; then echo "-b"; fi) $(if [[ "$version" = "13."* ]]; then echo "-b13 -n"; fi) $(if [ ! "$taurine" = "1" ]; then echo "-l"; fi) >/dev/null "$dir"/Kernel64Patcher work/kcache.raw work/kcache.patched `if [ "$ptraceDisabled" = "1" ]; then echo "-t"; fi` `if [ "$aslrDisabled" = "1" ]; then echo "-c"; fi` `if [[ "$version" = "15."* ]]; then echo "-e -o -r -b15"; fi` `if [[ "$version" = "14."* ]]; then echo "-b"; fi` `if [[ "$version" = "13."* ]]; then echo "-b13 -n"; fi` `if [ ! "$taurine" = "1" ]; then echo "-l"; fi` >/dev/null
sysDir="/mnt6/$active/" sysDir="/mnt6/$active/"
if [[ "$version" = "13."* ]]; then if [[ "$version" = "13."* ]]; then
@ -1183,7 +1210,7 @@ if [ true ]; then
fi fi
printg "[*] Patching the kernel" printg "[*] Patching the kernel"
"$dir"/Kernel64Patcher work/kcache.raw work/kcache.patched $(if [[ "$version" = "15."* ]]; then echo "-e -o -r -b15"; fi) $(if [[ "$version" = "14."* ]]; then echo "-b"; fi) $(if [[ "$version" = "13."* ]]; then echo "-b13 -n"; fi) >/dev/null "$dir"/Kernel64Patcher work/kcache.raw work/kcache.patched `if [ "$ptraceDisabled" = "1" ]; then echo "-t"; fi` `if [ "$aslrDisabled" = "1" ]; then echo "-c"; fi` `if [[ "$version" = "15."* ]]; then echo "-e -o -r -b15"; fi` `if [[ "$version" = "14."* ]]; then echo "-b"; fi` `if [[ "$version" = "13."* ]]; then echo "-b13 -n"; fi` >/dev/null
if [[ "$deviceid" == *'iPhone8'* ]] || [[ "$deviceid" == *'iPad6'* ]] || [[ "$deviceid" == *'iPad5'* ]]; then if [[ "$deviceid" == *'iPhone8'* ]] || [[ "$deviceid" == *'iPad6'* ]] || [[ "$deviceid" == *'iPad5'* ]]; then
python3 -m pyimg4 im4p create -i work/kcache.patched -o work/kcache.im4p -f rkrn --extra work/kpp.bin --lzss >/dev/null python3 -m pyimg4 im4p create -i work/kcache.patched -o work/kcache.im4p -f rkrn --extra work/kpp.bin --lzss >/dev/null