Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

iphone x 15.4.1 after install nothing happen #13

Closed
loadnl opened this issue Sep 19, 2022 · 7 comments
Closed

iphone x 15.4.1 after install nothing happen #13

loadnl opened this issue Sep 19, 2022 · 7 comments

Comments

@loadnl
Copy link

loadnl commented Sep 19, 2022

loadnl@loadnls-iMac palera1n % ./palera1n.sh /Users/loadnl/jb/palera1n/8ae.shsh2 --dfu 15.4.1 --debug
palera1n | Version 1.0.0
Written by Nebula | Some code by Nathan | Patching commands and ramdisk by Mineek | Loader app by Amy

[] Getting device info...
ERROR: Unable to connect to device
[] Pwning device
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: RESET
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: SPRAY
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: SETUP
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: PATCH
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23] PWND:[gaster]
Found the USB handle.
Now you can boot untrusted images.
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
Found the USB handle.
[*] Booting device

Done!
The device should now boot to iOS
If you already have installed Pogo, click uicache and remount preboot in the tools section
If not, get an IPA from the latest action build of Pogo and install with TrollStore
Add the repo mineek.github.io/repo for Procursus
@itsnebulalol
Copy link
Contributor

please run ./palera1n.sh clean then try again

@loadnl
Copy link
Author

loadnl commented Sep 20, 2022

loadnl@loadnls-iMac palera1n % ./palera1n.sh clean
[*] Removed the created boot files
loadnl@loadnls-iMac palera1n % ./palera1n.sh /Users/loadnl/jb/palera1n/8ae.shsh2 --dfu 15.4.1 --debug
palera1n | Version 1.0.0
Written by Nebula | Some code by Nathan | Patching commands and ramdisk by Mineek | Loader app by Amy

[] Getting device info...
[] Pwning device
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: RESET
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: SPRAY
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: SETUP
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23]
Found the USB handle.
Stage: PATCH
ret: true
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23] PWND:[gaster]
Found the USB handle.
Now you can boot untrusted images.
[] Downloading BuildManifest
Version: 9bfdde2b2456181045f74631683fba491d8bf4f2 - 38
libfragmentzip version: 0.64-aaf6fae83a0aa6f7aae1c94721857076d04a14e8-RELEASE
init pzb: https://updates.cdn-apple.com/2022FCSWinter/fullrestores/002-80132/70DA2338-4000-4DC1-8EC4-4763D6BCEDA6/iPhone10,3,iPhone10,6_15.4.1_19E258_Restore.ipsw
init done
getting: BuildManifest.plist
0% [ 100% [========================================================================== 61% [============================================================> 100% [===================================================================================================>]
download succeeded
img4tool version: 0.197-aca6cf005c94caf135023263cbb5c61a0081804f
Compiled with plist: YES
Saved IM4M to IM4M
[] Downloading and decrypting iBSS
Version: 9bfdde2b2456181045f74631683fba491d8bf4f2 - 38
libfragmentzip version: 0.64-aaf6fae83a0aa6f7aae1c94721857076d04a14e8-RELEASE
init pzb: https://updates.cdn-apple.com/2022FCSWinter/fullrestores/002-80132/70DA2338-4000-4DC1-8EC4-4763D6BCEDA6/iPhone10,3,iPhone10,6_15.4.1_19E258_Restore.ipsw
init done
getting: Firmware/dfu/iBSS.d22.RELEASE.im4p
0% [ 100% [========================================================================== 1% [> 2% [=> 4% [===> 5% [====> 7% [======> 8% [=======> 10% [=========> 11% [==========> 13% [============> 14% [=============> 16% [===============> 17% [================> 19% [==================> 20% [===================> 22% [=====================> 23% [======================> 25% [========================> 26% [=========================> 28% [===========================> 29% [============================> 31% [==============================> 32% [===============================> 34% [=================================> 35% [==================================> 37% [====================================> 38% [=====================================> 40% [=======================================> 41% [========================================> 43% [==========================================> 44% [===========================================> 46% [=============================================> 47% [==============================================> 49% [================================================> 50% [=================================================> 52% [===================================================> 53% [====================================================> 55% [======================================================> 56% [=======================================================> 58% [=========================================================> 59% [==========================================================> 61% [============================================================> 62% [=============================================================> 64% [===============================================================> 65% [================================================================> 67% [==================================================================> 68% [===================================================================> 70% [=====================================================================> 71% [======================================================================> 73% [========================================================================> 74% [=========================================================================> 76% [========================================================================== 77% [========================================================================== 79% [========================================================================== 80% [========================================================================== 82% [========================================================================== 83% [========================================================================== 85% [========================================================================== 86% [========================================================================== 88% [========================================================================== 89% [========================================================================== 91% [========================================================================== 92% [========================================================================== 94% [========================================================================== 95% [========================================================================== 97% [========================================================================== 98% [==========================================================================100% [===================================================================================================>]
download succeeded
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23] PWND:[gaster]
Found the USB handle.
Now you can boot untrusted images.
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
Found the USB handle.
[] Downloading and decrypting iBEC
Version: 9bfdde2b2456181045f74631683fba491d8bf4f2 - 38
libfragmentzip version: 0.64-aaf6fae83a0aa6f7aae1c94721857076d04a14e8-RELEASE
init pzb: https://updates.cdn-apple.com/2022FCSWinter/fullrestores/002-80132/70DA2338-4000-4DC1-8EC4-4763D6BCEDA6/iPhone10,3,iPhone10,6_15.4.1_19E258_Restore.ipsw
init done
getting: Firmware/dfu/iBEC.d22.RELEASE.im4p
0% [ 100% [========================================================================== 1% [> 2% [=> 4% [===> 5% [====> 7% [======> 8% [=======> 10% [=========> 11% [==========> 13% [============> 14% [=============> 16% [===============> 17% [================> 19% [==================> 20% [===================> 22% [=====================> 23% [======================> 25% [========================> 26% [=========================> 28% [===========================> 29% [============================> 31% [==============================> 32% [===============================> 34% [=================================> 35% [==================================> 37% [====================================> 38% [=====================================> 40% [=======================================> 41% [========================================> 43% [==========================================> 44% [===========================================> 46% [=============================================> 47% [==============================================> 49% [================================================> 50% [=================================================> 52% [===================================================> 53% [====================================================> 55% [======================================================> 56% [=======================================================> 58% [=========================================================> 59% [==========================================================> 61% [============================================================> 62% [=============================================================> 64% [===============================================================> 65% [================================================================> 67% [==================================================================> 68% [===================================================================> 70% [=====================================================================> 71% [======================================================================> 73% [========================================================================> 74% [=========================================================================> 76% [========================================================================== 77% [========================================================================== 79% [========================================================================== 80% [========================================================================== 82% [========================================================================== 83% [========================================================================== 85% [========================================================================== 86% [========================================================================== 88% [========================================================================== 89% [========================================================================== 91% [========================================================================== 92% [========================================================================== 94% [========================================================================== 95% [========================================================================== 97% [========================================================================== 98% [==========================================================================100% [===================================================================================================>]
download succeeded
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23] PWND:[gaster]
Found the USB handle.
Now you can boot untrusted images.
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
Found the USB handle.
[] Downloading DeviceTree
Version: 9bfdde2b2456181045f74631683fba491d8bf4f2 - 38
libfragmentzip version: 0.64-aaf6fae83a0aa6f7aae1c94721857076d04a14e8-RELEASE
init pzb: https://updates.cdn-apple.com/2022FCSWinter/fullrestores/002-80132/70DA2338-4000-4DC1-8EC4-4763D6BCEDA6/iPhone10,3,iPhone10,6_15.4.1_19E258_Restore.ipsw
init done
getting: Firmware/all_flash/DeviceTree.d22ap.im4p
0% [ 100% [========================================================================== 45% [============================================> 94% [==========================================================================100% [===================================================================================================>]
download succeeded
[] Downloading trustcache
Version: 9bfdde2b2456181045f74631683fba491d8bf4f2 - 38
libfragmentzip version: 0.64-aaf6fae83a0aa6f7aae1c94721857076d04a14e8-RELEASE
init pzb: https://updates.cdn-apple.com/2022FCSWinter/fullrestores/002-80132/70DA2338-4000-4DC1-8EC4-4763D6BCEDA6/iPhone10,3,iPhone10,6_15.4.1_19E258_Restore.ipsw
init done
getting: Firmware/078-29192-013.dmg.trustcache
0% [ 100% [========================================================================== 29% [============================> 60% [===========================================================> 92% [==========================================================================100% [===================================================================================================>]
download succeeded
[] Downloading kernelcache
Version: 9bfdde2b2456181045f74631683fba491d8bf4f2 - 38
libfragmentzip version: 0.64-aaf6fae83a0aa6f7aae1c94721857076d04a14e8-RELEASE
init pzb: https://updates.cdn-apple.com/2022FCSWinter/fullrestores/002-80132/70DA2338-4000-4DC1-8EC4-4763D6BCEDA6/iPhone10,3,iPhone10,6_15.4.1_19E258_Restore.ipsw
init done
getting: kernelcache.release.iphone10b
0% [ 100% [========================================================================== 0% [ 0% [ 0% [ 0% [ 0% [ 0% [ 0% [ [===================================================================================================>]
download succeeded
[] Patching and repacking iBSS/iBEC
main: Starting...
iOS 15 iBoot detected!
getting get_debug_enabled_patch() patch
getting get_sigcheck_patch() patch
applying patch=0x180030ad0 : 000080d2
applying patch=0x180030b18 : 000080d2
applying patch=0x18003289c : 200080d2
main: Writing out patched file to iBSS.patched...
main: Quitting...
main: Starting...
iOS 15 iBoot detected!
getting get_boot_arg_patch(-v keepsyms=1 debug=0xfffffffe panic-wait-forever=1 wdt=-1) patch
getting get_debug_enabled_patch() patch
getting get_sigcheck_patch() patch
applying patch=0x180030ad0 : 000080d2
applying patch=0x180030b18 : 000080d2
applying patch=0x18003289c : 200080d2
applying patch=0x180033e14 : 78c00c10
applying patch=0x18004d620 : 2d76206b65657073796d733d312064656275673d307866666666666666652070616e69632d776169742d666f72657665723d31207764743d2d3100
main: Writing out patched file to iBEC.patched...
main: Quitting...
none
none
[] Patching and converting kernelcache
Reading work/kernelcache.release.iphone10b...
[NOTE] Image4 payload data is LZFSE compressed, decompressing...
Extracted Image4 payload data to: work/kcache.raw
main: Starting...
Kernel: Adding AMFI_get_out_of_my_way patch...
get_amfi_out_of_my_way_patch: Entering ...
get_amfi_out_of_my_way_patch: Kernel-8020 inputted
get_amfi_out_of_my_way_patch: Found Internal Error: No cdhash found. str loc at 0x39974b
get_amfi_out_of_my_way_patch: Found Internal Error: No cdhash found. str ref at 0x12ba274
get_amfi_out_of_my_way_patch: Patching AMFI at 0x12b6ab0
Kernel: Adding could_not_authenticate_personalized_root_hash patch...
get_could_not_authenticate_personalized_root_hash_patch: Entering ...
get_could_not_authenticate_personalized_root_hash_patch: Found "successfully validated on-disk root hash" str loc at 0x52a99a
get_could_not_authenticate_personalized_root_hash_patch: Found "successfully validated on-disk root hash" xref at 0x1d93a74
get_could_not_authenticate_personalized_root_hash_patch: Found previous cbz at 0x1d93a50
get_could_not_authenticate_personalized_root_hash_patch: Found "could not authenticate personalized root hash!" str loc at 0x52a8ef
get_could_not_authenticate_personalized_root_hash_patch: Found "could not authenticate personalized root hash!" xref at 0x1d93fc0
get_could_not_authenticate_personalized_root_hash_patch: Found cbz target at 0x1d93fb4
get_could_not_authenticate_personalized_root_hash_patch: Patching root hash check at 0x1d93fb4
main: Writing out patched file to work/kcache.patched...
main: Quitting...
Reading work/kcache.patched...
Compressing payload using LZSS...
IM4P outputted to: work/krnlboot.im4p
Reading work/krnlboot.im4p...
Reading work/IM4M...
Creating Image4...
Image4 file outputted to: boot-iPhone10,3/kernelcache.img4
[] Converting DeviceTree
dtre
[] Patching and converting trustcache
trst
[] Pwning device
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
CPID:8015 CPRV:11 CPFM:03 SCEP:01 BDID:06 ECID:0011052210FBC02E IBFL:3C SRTG:[iBoot-3332.0.0.1.23] PWND:[gaster]
Found the USB handle.
Now you can boot untrusted images.
usb_timeout: 5
[IOKit] Waiting for the USB handle with VID: 0x5AC, PID: 0x1227
Found the USB handle.
[] Booting device
[==================================================] 100.0%
ERROR: Unable to connect to device
[-] An error occurred

@itsnebulalol
Copy link
Contributor

does your device reboot after it says the error?

@ghost
Copy link

ghost commented Sep 20, 2022

It might be that the device is exiting dfu mode after having the checkm8 exploit done to it, this happens on the iphone x I have noticed. It has to do with how you put the phone into dfu mode, you might have to do it a certain way in order for it to work. I made a video showing this https://www.youtube.com/watch?v=LzTHH9tqVoo.

You are also using .shsh2 blobs and not the dumped onboard .shsh blobs from SSHRD_Script, the blobs you are using are unlikely to work with palera1n.

@itsnebulalol
Copy link
Contributor

itsnebulalol commented Sep 20, 2022
edited
Loading

Yeah you need to go from recovery to DFU, that’s why I added that in the script. I’m an A11 user myself.

You can also do what you did in the video, I just find recovery first easier.

@ghost
Copy link

ghost commented Sep 20, 2022

UPDATE: There has been a video tutorial made for checkm8 vulnerable devices to use palera1n if they are running iOS 15.0 to 15.5 beta 4. The tutorial was made for intel mac computers running high sierra. iOS 15.0 - 15.5b4 JAILBREAK: Sileo ACHIEVED by palera1n Jailbreak - YouTube

@loadnl
Copy link
Author

loadnl commented Sep 21, 2022

https://www.youtube.com/watch?v=LzTHH9tqVoo

It worked for me. Thank you!

@loadnl loadnl closed this as completed Sep 21, 2022
@loadnl loadnl mentioned this issue Sep 23, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@loadnl @itsnebulalol