Closed zbencz3 closed 3 years ago
mattdyoung
commented
3 years ago Hi @zbencz3
Thanks for the info! We have some planned work coming up to improve jailbroken/rooted detection on both iOS and Android so we'll look into factoring in your suggestions as part of that.
zbencz3
commented
3 years ago v6.6.4 includes More robust jailbreak detection https://github.com/bugsnag/bugsnag-cocoa/pull/1000
mattdyoung
commented
3 years ago Yes. This has been addressed in v6.6.4.
Describe the bug
Device jailbroken with Checkra1n or Unc0ver is not marked as jailbroken by Bugsnag.
Steps to reproduce
Expected outcome: the jailbroken property should be set to true.
Environment
Additional details
Bugsnag uses the
MobileSubstrateimage string to determine whether a device is jailbroken.With the above mentioned jailbreaks the
MobileSubstrateimage might not necessarily be there. See the list of loaded images: Checkra1n_iPhoneSE1_iOS14.0.1_loaded_images.txt Unc0ver_iPad1_iOS12.4.6_loaded_images.txt It seems theMobileSubstrateimage is loaded depending on the tweak used, e.g. Kill Switch 2 would load it and then Bugsnag would mark the device as jailbroken, but having OpenSSL, Cydia, etc would not mark the device as jailbroken.To improve detection I suggest adding additional image strings like
SubstrateBootstrap,substitute-inserter, and possibly others forProcursus(OdysseyRa1n),libhooker(Chimera).Also, if possible please expose the
isJailbrokenmethod to avoid having to replicate this basic detection.Thanks.
EDIT:
KillSwitch2 related log with loaded frameworks: Checkra1n_iPhoneSE_iOS14.0.1_KillSwitch2.txt Note the
/Library/MobileSubstrate/DynamicLibraries/SSLKillSwitch2.dylibwhich would trigger the detection because of the substringMobileSubstrate.