Those of you who have jailbroken in recent times, with either yalu1011, yalu102, Home Depotor Pangu 9.2-9.3.3, can’t have failed to notice a new feature of these tools which jailbreakers never had to contend with before.

I’m not referring to the semi-untether here, but rather to the installing of a profile on your device which signs the jailbreak app for a certain amount of time. iOS 10 jailbreakers particularly have felt the irritation of this limitation, but all that may be about to change, based on some tentative words from Cydia creator Jay Freeman (Saurik).

At the same time, other workarounds for the seven-day signing limit have started surfacing; these are almost all a bad idea, and should be avoided.

As you can see from the above Reddit comment, Saurik appears to confirm here that he is now working on a “much more interesting solution” to the certification issue which has plagued jailbreakers in recent times.

To give some background information on the problem being faced: in days of yore jailbreaks tended to be easier to achieve, and consequently, tended to obtain persistence in the form of an untether. This meant that they were already jailbroken on boot, and so did not require a re-jailbreaking app to be installed on the device, meaning that the certification issue never arose. An untethered jailbroken device also does not need its apps to be signed anyway (think AppSync), so even if it did need a jailbreak app on it, the certification issue would not have arisen. Of course, on an untethered jailbreak a jailbreak app would have no purpose, so the point would be moot.

All this changed with iOS 9 and 10. As iOS’ security was hardened, and especially with the inclusion of KPP, jailbreaks became harder to achieve, particularly the ability to gain persistence between reboots. Jailbreak developers consequently avoided the untether issue by booting unjailbroken, and re-jailbreaking each time. This necessitated re-jailbreaking apps, and because these apps are only used when the device is in an unjailbroken state, they needed to be signed to be run.

Pangu 9.2-9.3.3 made this fairly painless by providing a one-year enterprise certificate, and more recently, Luca Todesco cut the strings completely by offering a browser-based exploit which obviated the need for a certificate at all. It is on the Home Depot and Yalu jailbreaks that so far users have been bound by Apple’s seven-day signing limits.

A Reddit thread discussing the need for a solution to this quandary unexpectedly saw Saurik weigh in with the comment shown above, which he followed up with the statement below:

It seems Saurik and an unknown developer are working on a solution which completely circumvents the signing issue, and which Saurik has claimed we will “enjoy or be amused by”. This seems to imply a novel or imaginative solution to the restrictions Apple has enforced.

Yalu developer Luca Todesco has also commented, offering his advice on the topic:

A word of caution about third-party hacks

Both developers warn against using more shady methods. There are date-tricks, which can mess up other settings on your device; illegal websites which add your device to someone else’s developer account; and tweaks which circumnavigate the signing requirements, but can endanger your jailbreak.

All of these methods have risks, and should be avoided. You should especially steer clear of versions of the jailbreak from sources other than Luca Todesco’s site. These may have been tampered with, and are not under Todesco’s control. Similarly, services which install a signing profile on your device which you do not control should not be used. They give an unknown entity the ability to install and run unverified apps on your device.

Given that Saurik has said it may well be “the last time” you have to use Cydia Impactor to re-sign the jailbreak app, it stands to reason (given the length of signing) that his solution may well be out within a week, or at least in the very near future. There is therefore no need to resort to other methods.

This is great news for iOS 10 jailbreakers everywhere, meaning that the Yalu jailbreaks will reach parity in terms of convenience with Pangu 9.2-9.3.3. It has yet to be seen whether this fix will be a general method for avoiding signing which can be applied to any jailbreak, including Home Depot, or whether it is specific to the Yalu release, but I would tentatively suggest the former.

While we wait to see the nature of this certification fix, be patient, do not hassle Saurik or Luca Todesco, and avoid using the more sketchy methods mentioned above. It is not worth endangering your jailbreak for the sake of one more week’s use of Cydia Impactor.

Are you waiting until a long-term solution to signing is out before you move to iOS 10.2? I know I am. How are you finding using Impactor at the moment? Let me know your thoughts in the comments.

  • Blip dude

    Wait, so if eventually if I keep signing an app every 7 days Apple might eventually get pissed off about it??

    • Joaquim Barbosa

      It’s unlikely. If you are referring to what Saurik says in his comment, I think he mainly meant that it’s an inelegant solution and is not really what Apple intends the signing to be used for. I doubt they will crack down on individual users signing an app any time soon, but hopefully soon that won’t be a problem!

  • Abo Ali

    I have listend to u and i still on 10.1.1 (7 plus)
    Just want to know if final release of yalu102 will support iphone 7 plus on 10.1.1
    Sorry for my bad english

    • Joaquim Barbosa

      Yes, nothing has changed. 10.1.1 will be supported, but we just have to patient until Luca releases it. Thanks for reading!

      • Abo Ali

        Thank u man

  • MelMa D Teach

    All I want is my 7plus jailbroken

  • Y2J: Keeper of the List

    What are my options for 3rd gen iPad on 9.3? I saw the Home Depot release but couldn’t find if it supported 9.3.

  • cdlenfert

    Joaquim Barbosa – it’ll be time to roll out that Prometheus 9.3.3 to 10.2 upgrade how-to guide soon! Thanks

    • Diego Milano

      Yes— I’m getting ready for it as soon as the issue with the certificate is over!

    • Joaquim Barbosa

      Here you go. Read the intro carefully first then do parts 1&2 of the guide:

      http://www.idownloadblog.com/2017/02/22/prometheus-guide-introduction/

      • cdlenfert

        Wow! Nicely done. Read through all of it, and the more it makes me feel content on 9.3.3 🙂

  • Adriano França

    I can’t understand what’s the problem about 7 day signing yalu102, because if we don’t reboot or power off our device jailbreak is steel active.

    • Reilitas

      Until you install a tweak that requires you to reboot.. *about* 20% of tweaks (tweaks…not themes) require you to reboot, so we’d be limiting ourselves to certain kinds of tweaks.

      • Tj Graves

        And 20%? I highly doubt that.

      • Reilitas

        *about* don’t find a reason to attack people. What? 15? 12? All I meant was it was less than twenty.

      • Vander Tramp

        Reboot will initiate a non jailbreak state and thus its pointless to do so even if the tweak claims it’s necessary. I just close the cydia app, and respring using PowerApp

      • Adriano França

        There are very few tweaks that needs a reboot to work. A respring is enough. I haven’t reboot my device since I install the base tweaks needed to others work. Of course we all love to have an untethered jailbreak, but this 7 day limitation isn’t a big problem since even with jailbreak iOS is stable.

  • Reilitas

    I accidentally downloaded and installed AppSync (I meant to click another button and instead clicked queue) and my system icons disappeared. Thank goodness I didn’t get the boot loop, but what else can I do now? I can’t use the iCloud fix because I’m not signed into it.

    • Tj Graves

      You don’t accidentally install something off of Cydia. You installed AppSync even though numerous people have warned against, and now you’re in deep shit and want help. At least be honest about it.

      • Reilitas

        Or I was actually being honest. I installed it from a source that had it in ‘beta’ stage, Aegis..something, anyways the people who were hosting the repo claimed that they were privately working to make it compatible with iOS 10. It said that work has been done, and so they released builds onto that repo and in the description it says to install at your own risk, and that the tweak may not be compatible with your device. Well I would have liked to take the chance so I clicked install, I was going to continue and confirm it but then I changed my mind, I was gonna exit but then I got a call. I picked up the phone and WITHOUT LOOKING I didn’t click high enough and as a result I clicked add to queue so when I installed another tweak it came with it. Agh. You people are losers.

      • Blip dude

        Not sure if this is true, but I believe @Angelxwind is the actual developer of the tweak. Not sure if you have Twitter, but even though I don’t personally use it, it definitely comes in handy when it comes to following developers for updates regarding Jailbreaks and such.

        The only thing I can say is, next time when you are installing a beta of a tweak, make sure that it is from the correct developer and it’s better to just simply stay patient and just wait it out. It never hurts to do a quick google research and understand we can’t always have our cake and eat it too.

      • Gucciipad

        Lol agreed

    • Jake Barbour

      I installed it before all the warnings, it was the first day of the Yalu102 jailbreak. It causes a boot loop I know from first hand experience. Of course the signing window was open so I could luckily restore. There is now a warning for a reason, read before installing. I agree you can’t accidentally install something in cydia. Karen’s repo is the only source you want to get it from.

    • Gucciipad

      Ur finger is the one who installed app sync. U install one tweak at a time. It will show what tweak the files you must have. Rocket bootstrap ect. It will also show you what it’s installing.

    • Gucciipad

      I guess u didn’t read the warnings and didn’t read what you can’t or can’t install there is a chart on Reddit

  • BigBadBruno

    So you guys speak of tweaks that call for a reboot being moot because it reboots into a non jailbroken state as to why the 7 day signature requirements are relevant. I don’t understand though. When these tweaks have presented themselves, sure it reboots nonjailbroken but I just fire up the Yalu app once more and rejailbreak which enables said tweak. Is it simply that the 7 day signing is annoying and nothing more? I’m very happy to have what I have. I’m not complaining in the slightest. In fact, shout out to Luca Todesco! Thanks for all your hard work my man!

    On a side note, from what I’ve read and know, once iTunes stops signing iOS 10.2, we can no longer install, correct? Then how does the author of this article claim to be “waiting until this 7 day signing requirement is fixed before moving to iOS 10.2” if you can’t get it signed by apple? Did he save his blobs from his current firmware, then upgraded to 10.2 and saved those blobs and finally went back down to whatever firmware he was on resulting in the ability to hop onto 10.2 whenever he fancied? Hmm…I think I answered my own question.

    • Crklynking

      The Yalu jb also needs to be signed so if you reboot or your phone dies after the 7 days you can’t jb again until you reinstall the Yalu app itself

  • Diego Milano

    Ditto!

  • Diego Milano

    Joaquim, quick wuestion, if you may know: is the jailbreak upgrade process from iOS 9.3.3 to iOS 10.2 the same for an iPhone 5s than what it is for an iPhone 6s Plus? I’m wondering cause I’m willing to try to do the upgrade on my backup device to become familiar with the process. Of course, I have SHSH2 blobs saved for both devices but I haven’t yet installed nonceEnabler or anything to neither of them. Thanks!

    • Joaquim Barbosa

      The process will be the same, yes. Sorry for the delay in the guide, it is on its way, it’s just complex. I’m waiting for a 7-day solution in any case, which apparently should be soon…

      • Diego Milano

        No worries for the delay, and thanks for answering my question. 🙂 Yeah, I’m waiting for that solution myself but I think I’m going to give my iPhone 5s a go first to get myself familiar with the process. I’m still running on iOS 9.3.3 on my iPhone 6s Plus— this whole new Prometheus thing gives me a nerve.

      • Diego Milano

        Joaquim, have you heard of any issues running Prometheus on MacOS in a virtual machine such as VMware? I’m hearing several reports where futurerestore gets stuck or it won’t even recognize the device when placed in Recovery Mode. 🙁 I haven’t tried this yet but I’m really tempted to, cause this would be a problem for me since I don’t own a device running Mac natively.

      • Diego Milano

        Hey there again— just so you know I’ve successfully upgraded my iPhone 5s from iOS 9.3.3 to iOS 10.2 (jailbroken method) via Prometheus on macOS via VMware. 😉 After the process was completed, I repeated the process (with a couple minor bumps and changes in the procedure) and successfully restored from iOS 10.2 to iOS 10.2 (jailbroken method again, of course) via Prometheus on macOS via VMware.
        The first time was fairly complex as I had to add dependencies on macOS (Sierra), but I didn’t experience any fatal errors in the process so it was quite smooth.
        Feel free to let me know if you need any input about this— I feel confident enough to try this on iPhone 6s and iPhone 6s Plus, however I’m just waiting for the 7-day certificate expiration day solution (I’m still tempted to upgrade though).

      • Joaquim Barbosa

        Glad you got it done! My guides are now up, though I guess you know what you’re doing now. I’ve done a couple of devices to test, but I’m leaving my daily driver on 9.3.3 for now. Thanks for the feedback!

  • Lloyd Bentley

    My 10.2 jailbreak has gone beyond seven days and still works. Anyone else?