This Sunday, February 16th marks the 1-year anniversary since Dopamine jailbreak developer Lars Fröder (@opa334dev) released Dopamine v2 with support for the Kernel File Descriptor (KFD) exploit, which introduced support for up to iOS & iPadOS 16.5 on arm64e A15-A16 devices, iOS & iPadOS 16.5.1 on arm64e A12-A14 devices, and up to iOS & iPadOS 16.6.1 on arm64 devices.
This year, Fröder is celebrating the Dopamine release anniversary in a big way with the new Dopamine version 2.4 release, which adds two substantial new features including a workaround for Spinlock panics on arm64e devices running iOS & iPadOS 15.x and a significant upgrade to the Hide Jailbreak feature that makes your jailbreak undetectable by most apps that would otherwise detect and respond to your device being jailbroken.
The full change log for Dopamine v2.4 is as follows:
– Add a workaround for spinlock panics on iOS 15 arm64e that fully prevents them in all cases (except one, see below*)
– Make “Hide Jailbreak” fully hide the jailbreak, to the point where it should be undetectable (see notes below)
– Apply sandbox patches before linking, fixes issues when a process directly links against a library inside /var/jb
– Improve and optimize library validation bypass
– Slightly improve forkfix
– Fix/reenable tweak injection into WebContent on iOS 16
– Fix a rare system deadlock during “Initializing Jailbreak”
Fröder also released Dopamine v2.4.1 as a hotfix update a few short hours after launching v2.4, which includes the following changes:
– Fix support for iOS & iPadOS 16.0.x (2.4 regression)
While this is a massive update for Dopamine, there are a few caveats that users should be aware of per the project’s GitHub page, including the following:
CAVEATS WITH “HIDE JAILBREAK:”
– Once you have hidden the jailbreak once since the last userspace reboot, spinlock panics can happen again* if your device is affected by them (iOS 15 arm64e), this is because the spinlock workaround relies on a dyld hook, which has to be disabled to properly hide the jailbreak, there is not much that can be done about this, the only idea I had did not work when I tested it
– When hiding the jailbreak, a few processes, such as apps where tweak injection has been disabled via Choicy, will crash, I was trying to fully fix this by deprecating the /usr/lib bind mount in favor of a namecache based solution, but that caused weird panics on iOS 16 (the code for this has been pushed to the nofakelib branch), so unless a fix for those can be found, there is nothing I can do about thisPOTENTIAL CAVEATS WITH JAILBREAK DETECTION:
– Since Dopamine 2.4 has introduced a dyld hook and also redirects dyld to a different folder via symlink now, it might be slightly more detectable, even while tweak injection for an app is disabled, there is not much that can be done about this, but as explained in the change log, the “Hide Jailbreak” option now works better as a result of these changes
Another thing worth noting is that updating to Dopamine version 2.4 or 2.4.1 from any of the previous releases via the built-in over-the-air (OTA) update mechanism will reboot your device, which will require you to re-jailbreak again. Fröder is aware of this and says it’s unavoidable due to a bind mount that can’t be unmounted without panicking the device.
Because of all the significant changes in the latest Dopamine releases, we would strongly recommend not only all existing users to update as soon as possible, but also for all new and prospective users to ensure they’re downloading and jailbreaking with the latest version of Dopamine. You can acquire the latest version of Dopamine from the project’s GitHub page.
We show you how to use the Dopamine jailbreak to pwn iOS & iPadOS 15 and 16 on various devices ranging from A8-A16 and M1-M2 in our full tutorial post. We also discuss what devices are supported there and what devices aren’t, per the limitations of the KFD exploit and the Operation Triangulation-born PPL bypass used.
The Dopamine jailbreak works on all devices that can run TrollStore, so despite being a semi-untethered jailbreak, it essentially remains signed on your device indefinitely. This means that you never have to re-sideload the app and therefore never need to use a computer to jailbreak. Should you ever reboot your device, you merely need to re-run the jailbreak tool to pick up where you left off.
Have you downloaded and installed the latest version of the Dopamine jailbreak yet? Let us know in the comments section down below.