LukeZGD/Legacy-iOS-Kit

Install alloc8 Exploit failed

Closed this issue · 2 comments

zhirongxiang commented

#? 7
[Input] PwnDFU Tool Option

  • Select tool to be used for entering pwned DFU mode.
  • This option is set to ipwnder by default (1). Select this option if unsure.
  • If the first option does not work, try the other option(s).
    [Input] Select your option:
  1. ipwnder
  2. ipwndfu
    #? 1
    [Log] Placing device to pwnDFU mode using ipwnder
    [main] enabled: debug log
    [main] Waiting for device in DFU mode...
    [io_get_serial] Found serial number!
    [main] CONNECTED
    [main] CPID: 0x8920, BDID: 0x00, STRG: [iBoot-359.3.2]
    [main] ERROR:Already pwned!
    [Log] python2 from pyenv detected
    [Log] Installing alloc8 to device
    Installing alloc8 exploit to NOR.
    Traceback (most recent call last):
    File "ipwndfu", line 109, in
    dump = device.nor_dump(saveBackup=False)
    File "/Users/zhirongxiang/Downloads/Legacy-iOS-Kit-main/saved/ipwndfu/dfuexec.py", line 184, in nor_dump
    (bdev, empty) = self.execute(struct.pack('<2I5s', self.config.get_block_device, self.config.load_address + 12, 'nor0\x00'), 0)
    File "/Users/zhirongxiang/Downloads/Legacy-iOS-Kit-main/saved/ipwndfu/dfuexec.py", line 134, in execute
    dfu.send_data(device, EXEC_MAGIC + cmd)
    File "/Users/zhirongxiang/Downloads/Legacy-iOS-Kit-main/saved/ipwndfu/dfu.py", line 48, in send_data
    assert device.ctrl_transfer(0x21, 1, 0, 0, data[index:index + amount], 5000) == amount
    File "/Users/zhirongxiang/Downloads/Legacy-iOS-Kit-main/saved/ipwndfu/usb/core.py", line 1043, in ctrl_transfer
    self.__get_timeout(timeout))
    File "/Users/zhirongxiang/Downloads/Legacy-iOS-Kit-main/saved/ipwndfu/usb/backend/libusb1.py", line 883, in ctrl_transfer
    timeout))
    File "/Users/zhirongxiang/Downloads/Legacy-iOS-Kit-main/saved/ipwndfu/usb/backend/libusb1.py", line 595, in _check
    raise USBError(_strerror(ret), ret, _libusb_errno[ret])
    usb.core.USBError: [Errno 60] Operation timed out

  • If you get the error "No backend available," install libusb in Homebrew/MacPorts
    [Log] Done!

  • This may take several tries. If it fails, unplug and replug your device, then run the script again

  • For more troubleshooting, go to: https://github.com/axi0mX/ipwndfu/blob/master/JAILBREAK-GUIDE.md

  • Save the terminal output now if needed.

  • Legacy iOS Kit v24.07.14 (a108f81)

  • Platform: macos (13.5.1)

Tried with another Mac with lower macOS version after issue #526 . Now no longer getting libusb error but this time another error.

LukeZGD commented

yeah about that, attempting to install alloc8 fails quite a lot and can take a lot of tries, nothing i can do about this since its something with ipwndfu

i have heard that success rates on linux are higher when compared, but even on linux it does take a few attempts before it succeeds

if all else fails, i suggest doing the alloc8 install procedure on linux

here's someone on reddit who was also having the same issue https://www.reddit.com/r/LegacyJailbreak/comments/1ckrd5n/legacy_ios_kit_alloc8/

zhirongxiang commented

Update: Tried with ubuntu 24.04 on an x86 device and it's an immediate success. Will recommend using Linux over Mac