SUMMARY: SRD | cryptex does not persist across Reboots | kernel Sandbox: mobile_storage_p deny file-read-metadata com.apple.security.cryptexd/.../cpxd | cryptexctl --persist Crash

[xsscx]

SUMMARY

Updated FRI 2 JUN 2022:

With 19F77, the CoreTrust | AMFI_Research issues continue to lay down, but stil have Cryptex won't Persist on Reboot.

And, cryptexctl --persist causes a Crash when using X86_64, see URL #25

Current Status

• cryptexctl works fine on arm64e
• cryptexctl Crashes on X86_64
• Intermittent CoreTrust Issues
• CryptexManager works as expected
• Cryptex won't Persist on Reboot

Yet, When a cryptex is installed from X86_64, when using CryptexManager & when cryptexctl worked on X86_64, there is still an Error:

error	kernel	Sandbox: mobile_storage_p(274) deny(1) file-read-metadata /private/var/run/com.apple.security.cryptexd/codex.system/live/com.example.cryptex/cpxd

That Error results with the Console Log:

mobile_storage_proxy	Failed to convert signature from /private/var/run/com.apple.security.cryptexd/codex.system/live/com.example.cryptex/cpxd

That error is a critical issue as you can see because a signature issue means AMFI_Research will complain, and we can't use the Tooling on the Cryptex.

And, there is no persistence across Reboots for the SRD Platform.

Please Advise if additional information is required.

Reported: https://feedbackassistant.apple.com/feedback/10015448

This is a long-cycle Fix for cryptexctl on X86_64.

Workaround

Use CryptexManager https://github.com/pinauten/CryptexManager/

Closing out the Issue.