mirror of
https://github.com/LiveContainer/LiveContainer.git
synced 2026-04-26 09:35:57 +03:00
[GH-ISSUE #1066] About AppGroup in applications #941
Labels
No labels
bug
compatibility
enhancement
multitasking
pull-request
safe area
status: broken
status: usable
wontfix
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
starred/LiveContainer#941
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @softmgr on GitHub (Jan 4, 2026).
Original GitHub issue: https://github.com/LiveContainer/LiveContainer/issues/1066
Describe the issue
I installed some IPA apps (TrollStore versions) in LiveContainer.
However, some of them crash on launch, while others exhibit abnormal behavior after running.
After further investigation, I found that all of these problematic apps are configured with AppGroup (that is, the apps create some configuration files under
/var/mobile/Containers/Shared/AppGroup/).Is there any way for LiveContainer to simulate or redirect the AppGroup configuration of these apps to LiveContainer's Data directory?
Instructions to reproduce
Install an application with AppGroup configuration and then launch it.
What version of LiveContainer and iOS are you using?
iOS26.2 LC3.6.60
Verify steps
The name, version the app having issues
No response
Crash Log
No response
Other
No response
@hugeBlack commented on GitHub (Jan 4, 2026):
Apps designed for TrollStore are likely to require paid/private entitlements which LiveContainer cannot provide.
LiveContainer already redirects App Groups. See https://github.com/LiveContainer/LiveContainer/blob/main/LiveContainer/Tweaks/NSFileManager%2BGuestHooks.m#L37
If you are certain that these apps work normally when sideloaded with SideStore/AltStore, please provide their name and crash report.
@softmgr commented on GitHub (Jan 4, 2026):
@hugeBlack For example: ChatbotAI, with the App Store URL:
https://apps.apple.com/us/app/ai-chatbot-smart-ai-assistant/id1671101527Its AppGroup identifier is:
group.newway.open.chatgpt.ai.chat.botWhen the app is installed directly on iOS and launched at least once, it creates an AppGroup preferences file at:
/var/mobile/Containers/Shared/AppGroup/<UUID>/Library/Preferences/group.newway.open.chatgpt.ai.chat.bot.plistHowever, when this app is installed via LiveContainer (LC) using a decrypted IPA, the AppGroup data for this app cannot be found anywhere (even when searching with the Filza file manager).
@hugeBlack commented on GitHub (Jan 4, 2026):
That's related to NSUserDefaults. You may find it inside the app's own container.
@hugeBlack commented on GitHub (Jan 4, 2026):
Most apps's app group id is hardcoded in their code, so it's the same behavior as sideloaded with SideStore/AltStore
@softmgr commented on GitHub (Jan 5, 2026):
Some apps, after entering
CONTAINERS→ and enabling "Isolate App Group" and "Spoof identifierForVendor" (or either one of them), still fail to automatically create "LCAppGroup" in the Data directory when the app is run.In this situation, some apps crash immediately on launch, while others exhibit abnormal behavior (such as not running as expected or showing incorrect UI error messages).
In other words, the "Isolate App Group" option has serious compatibility issues.
This conclusion is based on my testing of apps dumped using different dumping tools.
Here I provide an app that cannot automatically create an App Group when running in LC for your testing:
When this app runs in LC, it shows an error message, but when installed and run normally with proper signing, it works without any issues.
Based on my observation, LC does not correctly create the "LCAppGroup" directory and its related configuration files, which causes the app to fail to locate its configuration.
@hugeBlack commented on GitHub (Jan 5, 2026):
不能复现,你提供的ipa可以正常启动,app group无论是否启用isolate app group都可以正常创建,你可能要检查下lc是否正确安装
@softmgr commented on GitHub (Jan 5, 2026):
You must log in using a mobile phone number first. After restarting the app, an error will occur as shown in the image:
After this error message appears, multiple features of the app become unavailable.
@hugeBlack commented on GitHub (Jan 5, 2026):
Not sure if you can understand Chinese, but the text reads "Current version is unsafe, please download this app in a legit app store", which basically means its sideload detection is triggered.
Please be aware that some apps have sideload detection because they don't want to be sideloaded and we won't help bypassing sideload detection.
Also I'm not sure why you know it's related to App Group. If you can debug that app please let us know the address of the check so it saves us reverse engineering that app.
@softmgr commented on GitHub (Jan 5, 2026):
@hugeBlack 应用直接通过TrollStore安装和运行,则不会出现此错误消息。
使用TrollStore版本的Filza,我观察到这个应用有一个名称为 group.com.phoenix.video 的 AppGroup,位置在:
但是,当通过
iLoader安装 LC+SideStore,然后将应用安装在LC中时,确实会出现错误消息(此时"LCAppGroup"没有自动创建)。简而言之,只要通过LC安装的应用配置中有AppGroup,它就有可能遇到问题。目前,没有AppGroup的应用,没有遇到任何问题。
@hugeBlack commented on GitHub (Jan 5, 2026):
TrollStore和LiveContainer完全不同,不能作为参考。LiveContainer无法提供TrollStore所提供的全部环境。你所猜测的AppGroup有关问题大概率是非充分非必要条件且没有任何证据可以证明。我前面也提到,LiveContiner已经对AppGroup做了足够的模拟,且该App所需的AppGroup文件夹确实已经创建,不过是虚拟的。具体位置和实现你可以查看LiveContainer的代码。
至于
由于该App所使用的App Group已经被该App的开发者使用,LiveContainer不能创建此目录。
希望你对iOS开发、权限、代码签名、TrollStore原理、LiveContainer原理有了足够的了解后再做出合理的猜测和证明。
@hugeBlack commented on GitHub (Jan 9, 2026):
研究了下,App的服务器会拉黑存在风险的identifierForVendor,出现这个弹窗就说明被拉黑了所以你怎么设置都没用,解决方案是删除当前容器并创建新的容器,启用Spoof identifierForVendor,并启用App的Hide LiveContainer from Dyld Api