From 4a7f64272769ae439487fd50ba0dcd5dbe307fc1 Mon Sep 17 00:00:00 2001 From: BigBoiMan123 <96019531+BigBoiMan123@users.noreply.github.com> Date: Mon, 3 Oct 2022 16:08:10 -0700 Subject: [PATCH 1/4] Corrected minor grammatical issues --- README.md | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/README.md b/README.md index 6285717..8924e4c 100644 --- a/README.md +++ b/README.md @@ -1,14 +1,14 @@ # TrollStore -TrollStore in a permasigned jailed app that can permanently install any IPA you open in it. +TrollStore is a permasigned jailed app that can permanently install any IPA you open in it. -It works because of a CoreTrust bug that affects iOS 14.0 - 15.4.1 (15.5b4). +It works because of the CoreTrust bug that **_ONLY_** affects iOS 14.0 - 15.4.1 (15.5b4). **NOTE: TrollStore will _NEVER_ work on anything higher than iOS 15.5 beta 4 (No not on iOS 15.5, not on iOS 15.6 and certainly not on iOS 16.x), please stop asking!** ## Installation Methods -N/A means: NO DEVICE / VERSION COMBINATION EXISTS +N/A means: No device / version combination exists None means: No way to install TrollStore currently @@ -43,27 +43,27 @@ None means: No way to install TrollStore currently | iOS 15.4.1 | [SSH Ramdisk](./install_with_sshrd.md) | [SSH Ramdisk](./install_with_sshrd.md) | [SSH Ramdisk](./install_with_sshrd.md) | [SSH Ramdisk](./install_with_sshrd.md) | None | None | None | None | | iOS 15.5 Beta 1 - Beta 4 | [SSH Ramdisk](./install_with_sshrd.md) | [SSH Ramdisk](./install_with_sshrd.md) | [SSH Ramdisk](./install_with_sshrd.md) | [SSH Ramdisk](./install_with_sshrd.md) | None | None | None | None | -Full 14.0 - 15.5b4 installation support will come when the Fugu15 installation method is public. +Full 14.0 - 15.5b4 installation support will come once the Fugu15 installation method is public. # Updating TrollStore -After having installed TrollStore, you can update it to newer versions by opening the .tar file in releases in TrollStore. It will install the update and respring afterwards. +After installing TrollStore, you can update it to newer versions by opening the .tar file in releases in TrollStore. It will install the update and respring afterwards. # Uninstalling an app -TrollStore installed apps can only be uninstalled from TrollStore itself, tap an app or swipe it to the right in the 'Apps' tab to delete it. +Apps installed from TrollStore can only be uninstalled from TrollStore itself, tap an app or swipe it to the right in the 'Apps' tab to delete it. # Persistence Helper -The CoreTrust bug used in TrollStore is only enough to install "System" apps, this is because FrontBoard has an additional security check (it calls libmis) every time before a user app is launched. Unfortunately it is not possible to install new "System" apps that stay through an icon cache reload. Therefore when iOS reloads the icon cache, all TrollStore installed apps including TrollStore itself will revert back to "User" state and will no longer launch. +The CoreTrust bug used in TrollStore is only enough to install "System" apps, this is because FrontBoard has an additional security check (it calls libmis) every time before a user app is launched. Unfortunately it is not possible to install new "System" apps that stay through an icon cache reload. Therefore, when iOS reloads the icon cache, all TrollStore installed apps including TrollStore itself will revert back to "User" state and will no longer launch. -The only way to work around this is to install a persistence helper into a system app, this helper can then be used to reregister TrollStore and it's installed apps as "System" so they become launchable again, an option for this is available in TrollStore settings. +The only way to work around this is to install a persistence helper into a system app, this helper can then be used to reregister TrollStore and its installed apps as "System" so that they become launchable again, an option for this is available in TrollStore settings. On jailbroken iOS 14 when TrollHelper is used for installation, it is located in /Applications and will persist as a "System" app through icon cache reloads, therefore TrollHelper is used as the persistence helper on iOS 14. # Features -The binaries inside an IPA can have arbitary entitlements, fakesign them with ldid and the entitlements you want (`ldid -S `) and TrollStore will preverse the entitlements when resigning them with the fake root cert on installation. This gives you a lot of possibilities, some of which are explained below. +The binaries inside an IPA can have arbitary entitlements, fakesign them with ldid and the entitlements you want (`ldid -S `) and TrollStore will preverse the entitlements when resigning them with the fake root certificate on installation. This gives you a lot of possibilities, some of which are explained below. ## Banned entitlements From 0c2b77c6564673436dc19c44d51b4da083724c38 Mon Sep 17 00:00:00 2001 From: BigBoiMan123 <96019531+BigBoiMan123@users.noreply.github.com> Date: Mon, 3 Oct 2022 16:13:43 -0700 Subject: [PATCH 2/4] Improved clarity --- install_trollhelper.md | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/install_trollhelper.md b/install_trollhelper.md index 7398f2c..965ad7d 100644 --- a/install_trollhelper.md +++ b/install_trollhelper.md @@ -1,11 +1,13 @@ # Installation through TrollStore Helper -**Supported devices:** All jailbroken devices between iOS 14.0 and 15.5b4 +**Supported devices:** All **jailbroken** devices on iOS versions **14.0 to 15.5b4** -1. Download TrollStore Helper from Havoc repo (https://havoc.app), alternatively you can also download the deb from releases and install it yourself. +1. Download TrollStore Helper from Havoc repo (https://havoc.app). -2. Open TrollStore Helper on the home screen + Alternative: Directly download the .deb from GitHub releases and install it manually in your preferred package manager. -3. Press "Install TrollStore", make sure you're connected to internet +2. Open TrollStore Helper on the home screen. -4. Done, your device will respring and TrollStore should appear on your home screen \ No newline at end of file +3. Make sure you're connected to the internet, and press "Install TrollStore." + +4. Done, your device will respring and TrollStore should appear on your home screen. From e706195990d067f0a82e4655ebdb210f63ca2406 Mon Sep 17 00:00:00 2001 From: BigBoiMan123 <96019531+BigBoiMan123@users.noreply.github.com> Date: Mon, 3 Oct 2022 16:15:49 -0700 Subject: [PATCH 3/4] Minor edit for clarity --- install_trollinstaller.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/install_trollinstaller.md b/install_trollinstaller.md index 7af12ae..17b8a00 100644 --- a/install_trollinstaller.md +++ b/install_trollinstaller.md @@ -14,4 +14,4 @@ 6. If TrollStore is on home screen, start it, if not then reboot and it should appear afterwards, then start it -7. **(Optional)** Tap "Install Persistence Helper" and choose a system app you don't need to use (e.g. Tips) in the list that appears, this app can later be used to refresh TrollStore registrations when iOS reloads the icon cache and the TrollStore apps no longer launch \ No newline at end of file +7. **(Recommended)** Tap "Install Persistence Helper" in TrollStore and choose a system app you don't need to use (e.g. Tips) in the list that appears, this app can later be used to refresh TrollStore registrations when iOS reloads the icon cache and the TrollStore apps no longer launch From 849cfb230049f66f5358f23859917fa45e330a7d Mon Sep 17 00:00:00 2001 From: BigBoiMan123 <96019531+BigBoiMan123@users.noreply.github.com> Date: Mon, 3 Oct 2022 16:27:36 -0700 Subject: [PATCH 4/4] Improve clarity and added DFU mode step. --- install_with_sshrd.md | 14 ++++++++++---- 1 file changed, 10 insertions(+), 4 deletions(-) diff --git a/install_with_sshrd.md b/install_with_sshrd.md index 40f53b8..729714f 100644 --- a/install_with_sshrd.md +++ b/install_with_sshrd.md @@ -1,5 +1,7 @@ # Installation through an SSH Ramdisk (Linux and macOS only) +**_**If you do not have a Mac or a Linux PC, make an Ubuntu live USB and boot from it on your computer. **_** + **Supported devices:** A8(X) - A11, iOS 14.0 - 15.5b4 Video tutorial: https://youtu.be/B0MueVvJSK4 @@ -9,11 +11,15 @@ Video tutorial: https://youtu.be/B0MueVvJSK4 2. Run `./sshrd.sh TrollStore ` - Make sure to **not** include the `<>` - The uninstallable system app should be an app you don't need to use (e.g. Tips) + - i.e. `./sshrd.sh 15.0 TrollStore Tips` -3. Run `./sshrd.sh boot` the device should start verbosing and show a TrollFace in ascii, then reboot eventually +3. Put your device into DFU mode. Instructions for this can be found [here](https://www.theiphonewiki.com/wiki/DFU_Mode#iPhone.2C_iPad.2C_iPod_touch). + - If you are on an A11 device, entire recovery mode first by pressing and quickly releasing the volume up and volume down button, one at a time. Then, press and hold the side button until you see the recovery mode screen. Finally, put your device into DFU mode as said above. + +4. Run `./sshrd.sh boot` the device should start verbosing and show a TrollFace in ascii, then reboot eventually -4. Open up the app you replaced, it should be TrollStore Helper now +5. Open up the app you replaced (Tips in this example), it should be TrollStore Helper now. -5. Press "Install TrollStore", make sure you're connected to the internet +6. Make sure you're connected to the internet, and press "Install TrollStore." -6. Done, your device will respring and TrollStore should appear on your home screen +7. Done, your device will respring and TrollStore should appear on your home screen.