A9X / iOS 14.5: Detected corrupted kerninfo
mystrain opened this issue ยท 136 comments
Tell us about your setup:
- What iDevice are you using?
Ipad Pro 1st gen
- On what version of iOS is it?
iOS 14.5
- What version of checkra1n are you using?
0.12.3
- What is your host system (OS version? Hackintosh? VM? etc.)?
Mac Os Catalina 10.15.7
- How are you connecting to the device (USB-A? USB-C? Apple/3rd party cable? Through a USB hub?)?
LIGHTNING TO USB A
What are the steps to reproduce the issue?
- when attempting to jailbreak error 20 shows up midway even with checkra1n in safe mode
on iPad error states:
Found old-style rdsk!
Detected corrupted kerninfo!
Enabling usb
done!
pongoOS
2.RESTORED iPad and setup as new with same issue
- attempted other versions of checkra1n all crash midway other than latest version
...
What do you expect, and what is happening instead?
jailbreak should complete
Did you see a popup on the device stating it entered "Safe Mode" due to an error?
yes and it did with same issue
Does the issue also occur if you tick "Safe Mode" in the checkra1n options?
Yes
issue still happens when safe mode is ticked!
Any other info, error logs, screenshots, ...?
Checkra1n:
error 20
on iPad error states:
Found old-style rdsk!
Detected corrupted kerninfo!
Enabling usb
done!
pongoOS
It appears a few people I know with the iPad Pro first gen have the same issue.
Please checkra1n update your app and website to help!
I have updated the iOS just to get the new jailbreak, as the website states, it will work with my device and it doesnโt.
So now I have lost my jailbreak. Please help!
I have a suspicion as to what it could be... here's a debug build of Pongo:
Could you please unzip that, then run checkra1n on the command line with -k path/to/PongoConsolidated.bin?
That should print a bunch of hex values on the screen, please take a photo of those.
I have a suspicion as to what it could be... here's a debug build of Pongo:
Could you please unzip that, then run checkra1n on the command line with
-k path/to/PongoConsolidated.bin?
That should print a bunch of hex values on the screen, please take a photo of those.
hi there
I've received the PongoConsolidated.bin file.
When I try to unzip that file it states it's unsupported format. Unsure how to run checkra1n on a command line.
can you help in explaining the process please?
Open Terminal, Drag the checkra1n app into the window (that should auto-paste its path), then append /Contents/MacOS/checkra1n and make sure there is no space between the part you dragged in and the one you appended.
Then hit space, type -k, hit space again, then drag PongoConsolidated.bin into the window and hit enter.
The GUI should pop up at that point.
@Siguza I tried to load the modified Pongo, and here's the result (iPadOS 14.4.2):
/Contents/MacOS/checkra1n
thank you,
this is what i get when following your instructions.
Hi here, Same device, same release, same results !
It worked last week with ios 14.4.2 and checkra1n 0.12.2
I updated to ios 14.5 and 0.12.3 with current issues
I then came back to 14.4.2 but still getting the issues mentioned in this thread with both 0.12.2 and 0.12.3...
I completely wiped my HighSierra iMac, and I was able to get 14.4.2 working with checkra1n 12.2.
I completely wiped my HighSierra iMac, and I was able to get 14.4.2 working with checkra1n 12.2.
Great! Strange to see that the issue is coming from macos๐
Furthermore, I'm having this issue with Ubuntu as well.
@Siguza is this the output from your command when trying to load the modified Pongo?
Ok, I messed up the previous build. Try again with this one:
So follow the same instructions as before and send you a snapshot?
Yes, please.
Yes, please.
Thank you,
this is what I get
Having exactly the same issue
Ok, I messed up the previous build. Try again with this one:
Ok, I messed up the previous build. Try again with this one:
Any updates?
Hi, Having exactly the same issue
same here also...
same thing here on 12.9" A9X as well, I'm running Big Sur (Thunderbolt to USB A Adapter>USBA-LIghtning) but also have a Catalina Mac ("Good ol'" straight USBA) and am willing to test.
Weird because I seem to recall seeing that 14.5 was preventing jailbreak from working at all via the checkra1n exploit(s), then I saw specific support for the new 0.12.3 beta and just like a robot, went and upgraded from 14.3. I hope this isn't permanent, but I dunno, seeing nothing but 00000000s where someone expected a bunch of hex readouts is never going to fill me with confidence haha
Thanks for bringing this up people.
The more people sharing this issue the more the developers can see and help.
Thanks for bringing this up people.
The more people sharing this issue the more the developers can see and help.
I guess any of us using ipad pro a9x has the issue, or is there somebody with the same device able to jailbreak??
Marking this as accepted.
I'm pretty sure the issue is that the A9X iBoot overwrites a part of our payload on 14.5. That would also explain the 0% success rate.
Marking this as accepted.
I'm pretty sure the issue is that the A9X iBoot overwrites a part of our payload on 14.5. That would also explain the 0% success rate.
Great to see that you seem to understand the issue ! :D Would that mean that you already know how to fix it? I would be happy to help if you don't have an a9x close to you !
Same here!
Same issue here, IPad Pro 1st gen. tried everything.
Marking this as accepted.
I'm pretty sure the issue is that the A9X iBoot overwrites a part of our payload on 14.5. That would also explain the 0% success rate.
Does this mean we will have an update soon?
Experimental build. Please try this:
Experimental build. Please try this:
1st gen iPad 12.9" user here. Unfortunately, it didn't work. It went right from DFU mode to a normal boot with no sign anything was actually injected.
Experimental build. Please try this:
Hi Siguza
didnโt work for me either. After I follow the guide to DFU, within seconds my iPad starts up as normal without installing anything.
I confirm, it reboots normally after DFU without going to usual jailbreak state. No ssh root possible
I have the same problem on AppleTV 4K, fails with --force-revert option too. Doesn't even init KPF unless ran through the app with no options either.
Device is now stuck in blinking mode, cannot boot into tvOS
I have the same problem on AppleTV 4K, fails with --force-revert option too. Doesn't even init KPF unless ran through the app with no options either.
Device is now stuck in blinking mode, cannot boot into tvOS
Hi kasiimh1
not sure this is the same issue we are all experiencing. I recommend trying to open a new issue for this as it would help a lot of people experiencing similar issues to you:)
Hi,
same error (Detected corrupted kerninfo) here with the iPad Pro 1.Gen. A9X
but with iOS 14.5.1
Hello! Same issue - iPad Pro 9.7 1st gen, iOS 14.5, checkra1n 0.12.3 through odysseyra1n. Backup to iOS 14.4.2 doesnโt work.
I have the same problem on AppleTV 4K, fails with --force-revert option too. Doesn't even init KPF unless ran through the app with no options either.
Device is now stuck in blinking mode, cannot boot into tvOS
https://imgur.com/a/3mlm6aAHi kasiimh1
not sure this is the same issue we are all experiencing. I recommend trying to open a new issue for this as it would help a lot of people experiencing similar issues to you:)
if anyone has issues with Apple TV 4K (A10X) on 14.5 post in this thread: #2083
Experimental build. Please try this:
doesn't work. Same thing. Just boots up normally. Console version doesn't work either
It seems that A9X will always be a pain in the butt
Another experimental build:
Another experimental build:
This one does properly attempt to inject the jailbreak, but the behavior is back to the initially reported one: It gets stuck at "PongoOS>".
@jetblackrx89 with the same issue? Corrupted kerninfo?
@jetblackrx89 with the same issue? Corrupted kerninfo?
Yes, it's identical to the logs the original report indicated. Nothing new. No new debug log events. Gets stuck in the same place.
Found old-style rdsk!
Detected corrupted kerninfo!
Enabling usb
done!
pongoOS
@jetblackrx89 with the same issue? Corrupted kerninfo?
Yes, it's identical to the logs the original report indicated. Nothing new. No new debug log events. Gets stuck in the same place.
Found old-style rdsk! Detected corrupted kerninfo! Enabling usb done! pongoOS
Yep, same for me ! :(
Has anyone tried the new 14.5.1.
same issue for me
No, and honnestly i don't think new ios releases will change anything. It seems that Apple has updated iBoot for A9x and as far as i understood checkra1n needs to be updated :/
Has anyone tried the new 14.5.1.
I've tried the new 14.5.1 on my iPad pro 1 Gen. and got the same error.
I'm staying on 14.4.2, until this is fixed. :) I managed to downgrade while it was still signed.
Me too!
@jetblackrx89 with the same issue? Corrupted kerninfo?
Yes same issue
@Siguza you said that you expect iboot to overwrite you payload. Is the payload address offset set in pongoOs code? Can we try to find the right offset, compile and test on our side to help you?
I don't know if this can help, but here are the logs when running with your last build:
- [05/05/21 21:25:49] : Waiting for DFU devices
- [05/05/21 21:25:49] : DFU mode device found
- [05/05/21 21:25:49] : Exploiting
- [05/05/21 21:25:49] : Attempting to perform checkm8 on 8001 10...
- [05/05/21 21:25:49] : Checking if device is ready
- [05/05/21 21:25:49] : == Checkm8 Preparation stage ==
- [05/05/21 21:25:49] : Stalled input endpoint
- [05/05/21 21:25:49] : DFU mode device found
- [05/05/21 21:25:50] : Setting up the exploit (this is the heap spray)
- [05/05/21 21:25:50] : == Checkm8 Setup stage ==
- [05/05/21 21:25:50] : Right before trigger (this is the real bug setup)
- [05/05/21 21:25:50] : Entered initial checkm8 state after 3 steps, issuing DFU abort..
- [05/05/21 21:25:50] : DFU device disconnected
- [05/05/21 21:25:50] : DFU mode device found
- [05/05/21 21:25:50] : == Checkm8 Trigger stage ==
- [05/05/21 21:25:50] : Checkmate!
- [05/05/21 21:25:51] : DFU device disconnected
- [05/05/21 21:25:51] : DFU mode device found
- [05/05/21 21:25:51] : == Checkm8 Trying to run payload... ==
- [05/05/21 21:25:51] : If everything went correctly, you should now have code execution.
- [05/05/21 21:25:51] : DFU device disconnected
- [05/05/21 21:25:54] : Entered download mode
- [05/05/21 21:25:54] : Download mode device found
- [05/05/21 21:25:54] : Booting...
- [05/05/21 21:25:54] : Setting bootargs to: rootdev=md0
- [05/05/21 21:25:56] : Download mode device disconnected
Yeah, can confirm that using that last Pongo bin file worked fine. Jailbroke my iPad 12.9" on 14.5.1. Only minor weirdness is it took a full minute for the Checkra1n app to appear on the homescreen.
@Siguza Thank you! The last Pongo bin file works also for me on my iPad 12.9" 1st gen. 14.5.1.
Also worked on a 9.7in iPad Pro on iPadOS 14.5.1.
Alright, we'll check that this doesn't break anything on any other device and if not, there should be an official hotfix out soon-ish.
@Siguza thanks for the fix I have haven this problem on iPad Pro 9.7 on iOS 14.4 and 14.5 with the modded pongos I have able to rejailbreak 14.4 and jailbreak 14.5 thanks again
thank you! all done, iPad pro 9.7
Thanks! all done, iPad pro 9.7 (14.5)
Alright, we'll check that this doesn't break anything on any other device and if not, there should be an official hotfix out soon-ish.
Thank you Siguza
This works.
Is there a place to donate to you guys as I appreciate your help?
It worked for me on the same device (iPad Pro 9.7 WiFi aka iPad6,3) on 14.5 enabling me to restore to 14.3 (no problems with the modded pongoOS on 14.3 either)
Open Terminal, Drag the checkra1n app into the window (that should auto-paste its path), then append
/Contents/MacOS/checkra1nand make sure there is no space between the part you dragged in and the one you appended.
Then hit space, type-k, hit space again, then drag PongoConsolidated.bin into the window and hit enter.
The GUI should pop up at that point.
I get permission denied on my MacBook, the folder the app is installed is /applications/checkra1n.app. Please help
@proffie Have you ever opened the app itself normally? (If not, try doing that.)
This command worked for me: /Applications/checkra1n.app/Contents/MacOS/checkra1n -k ~/Downloads/Pongo/PongoConsolidated.bin
@proffie Have you ever opened the app itself normally? (If not, try doing that.)
This command worked for me:
/Applications/checkra1n.app/Contents/MacOS/checkra1n -k ~/Downloads/Pongo/PongoConsolidated.bin
I did run the app in normal mode, but my iPad just got stuck. then I follow the instruction to run it in terminal mode with the -k and pogo. as soon as I run checkra1n -k I get the permission error.
You command worked for me as well, thanks ๐
@proffie No problem, glad to hear you figured out the command instructions ๐
Only minor weirdness is it took a full minute for the Checkra1n app to appear on the homescreen.
@jetblackrx89 Seems normal to me; it did that on older versions too. ๐
is there any way to apply this patch on USB boot checkra1n on windows system?
is there any way to apply this patch on USB boot checkra1n on windows system?
yes just build your own checkn1x iso
it looks something like this: https://github.com/asdfugil/checkn1x32/tree/a8a9_14.5
is there any way to apply this patch on USB boot checkra1n on windows system?
yes just build your own checkn1x iso
it looks something like this: https://github.com/asdfugil/checkn1x32/tree/a8a9_14.5
Thanks for reply! Please, can you detail the process? We need just take the files from the link above then add the patch and build iso?
is there any way to apply this patch on USB boot checkra1n on windows system?
yes just build your own checkn1x iso
it looks something like this: https://github.com/asdfugil/checkn1x32/tree/a8a9_14.5Thanks for reply! Please, can you detail the process? We need just take the files from the link above then add the patch and build iso?
actually that not going to work atm because assets.checkra.in is down
Fixed in 0.12.4.
bugger! I upgraded to 14.5.1 like the complete imbecile I am, and the latest checkra1n 0.12.4 is stopping at the PongoOS prompt just like before. Then I noticed that the checkra1n site says 14.5, not 14.5.1 or 14.5+ etc. Yet checkra1n itself didn't force me to check the "untested versions" option..."??
Anyway I'm going to try the solution above that I was happily using until now, I'm not optimistic though, it might be worth specifying a bit more "loudly" on the dl page that 14.5.1 isn't supported yet/doesn't work for... "less perceptive" users such as myself
EDIT yes, that worked... so I guess maybe 0.12.4 is only applying the new PongoConsolidated for 14.5, and not 14.5.1 or 14.5+?
Just like to show my deep appreciation for absolutely everybody involved with making my life so so so much better thanks to your hard, brilliant, unique, and seemingly never ending work and support!!! It's ok if a small proportion of us need to use this workaround, don't work yourselves into the ground! WE LOVE YOU
@Siguza I am having the same issue on Linux, but I am new to this, can you please help me fix it?
@CellRichards 14.5.1 is supported, and works everywhere else. And the new Pongo is being applied on all versions, on all devices.
But if the fix for 14.5 broke in 14.5.1 already, then it's clear that this strategy is not viable.
@gamer60404 It seems the hotfix needed a hotfix ๐
You can apply the modded pongoOS from the comments above manually with the -k argument, or you can wait until the issue is properly resolved...
What's strange is that both @CellRichards and the Redditor said it worked fine on 14.5.1 with the patched pongoOS applied manually in the above comments, but not with the 0.12.4 release.
Uhm, the Redditor is me (chrislaw)I think. I was posting there as well to help anyone who was in my situation, then I thought I should come and update here as well. Maybe itโs some weirdness with me/my Mac? If itโs only me experiencing the issue โฆ?
can confirm the hotfix of the hotfix posted above in the zip file appears to work. it allowed checkra1n to complete the boot process whereas prior versions would stall out.
checkra1n 0.12.4, A9X / iOS 14.5.1
same issue
w/o -k argument
I have the same problem. Does not work on IpadOS 14.5.1 version.
Device: iPad Pro 9.7-inch (WiFi) - A1673 / IpadOS 14.5.1 / A9X / Checkra1n 0.12.4
Edit #1 timeline for clarity's sake.
Edit #2 added table of trial and errors along with constants
Successfully JB'd with Checkra1n 0.12.2 on iPad Pro 9.7-inch (WiFi) - A1673 with iPadOS 14.4 using laptop running Ubuntu and 3rd party USB cable more than a month ago.
A recent reboot required me to reJB.
Using the same Ubuntu laptop, I upgraded to Checkra1n 0.12.4 and was stuck at
Found old-style rdsk!
Detected corrupted kerninfo!
Enabling usb
done!
pongoOS
Reran Checkra1n 0.12.4 Result: Stuck at PongOS error
Reran Checkra1n 0.12.3 Result: -31 error
Reran Checkra1n 0.12.2 Result: Stuck at PongOS error
Constants: iPadOS 14.4, Tried both GUI and CLI versions of each Checkra1n version. Tried with and without Hotfixed Hotfix. Used -k argument as well.
Should I upgrade to iPadOS 14.5.1 and retry Checkra1n 0.12.4 with PongOS hotfixed hotfix?
I re-read the thread and couldn't specifically glean if that's the case. TIA.
Edit 16-May-2021 9pm EST
Tried all methods including those posts created up until my post timestamp and still not able to JB.
Edit 18-May-2021
Successful Jailbreak after following the instructions here
https://www.reddit.com/r/jailbreak/comments/nds387/tutorial_checkra1n_workaround_using_pongoos_if/
@usernameindeed That's weird, never heard of it on 14.4.
Does checkra1n 0.12.3 also have this problem?
If so, using the patched pongoOS above seems like a good idea.
@usernameindeed That's weird, never heard of it on 14.4.
Does checkra1n 0.12.3 also have this problem?
If so, using the patched pongoOS above seems like a good idea.
I'll give 12.3 a try. I just edited my comment to state I only tried 12.2 and 12.4. I used 12.2 successfully in the past and thought I'd replicate it. I'll update with my findings. Thanks much.
@usernameindeed That's weird, never heard of it on 14.4.
Does checkra1n 0.12.3 also have this problem?
If so, using the patched pongoOS above seems like a good idea.I'll give 12.3 a try. I just edited my comment to state I only tried 12.2 and 12.4. I used 12.2 successfully in the past and thought I'd replicate it. I'll update with my findings. Thanks much.
No such luck with 12.3. Ran into -31 error. Reflected it in my main post above.
I am in the same boat as usernameindeed. I am running the latest version of Ubuntu. If I use Checkra1n that has been installed through the apt-update method, regardless of any options / combination of options I use, my A9X Wifi Ipad Pro 9.7" running iOS 14.5 .... boots into pongo displaying the same error as described =
Found old-style rdsk!
Detected corrupted kerninfo!
Enabling usb
done!
pongoOS
---
It gets stuck there until it reboots back to normal on its own and I get stuck at Booting on checkra1n
If I try using the CLI version it fails to even get passed the trigger step so it doesnt even work at all compared to the regularly installed Checkra1n ... with a -31 error. Sometimes I get -21, -26. So the CLI version doesn't even make the iPad go into that "corrupted" PongoOS boot state (it fails before).
Also if I try using the apt-update installed Checkrain and it goes to that corrupted PongOS menu, I force it eventually to recovery/DFU mode and run the CLI version in verbose where it says something about partially uploaded but then it ultimately fails with =
Timed out in state 2, assuming we are back to square one with this device. (error code: -31)
I have tried every single thing from every thread I've found and nothing has worked. Even fresh installs of Linux and dependencies just in case and nothing. I was hoping 0.12.4 had solved this but to no avail I still get the same issues as usernameindeed above. So neither 12.3 or 12.4 Checkra1n works for me.
I also wanted to add I've already tried 2074's pongo.zip "fix" and nothing works regardless of how I start checkra1n in the terminal (GUI & CLI mode, sudo or no sudo).
Still stuck on booting with PongoOS - iPad Pro 9.7 1st gen, iOS 14.5, checkra1n 0.12.4
same problem, checkra1n .12.4, ipad pro 9.7 wifi A1673, freeze on booting check rain and get message corrupted kerninfo
checkra1n 0.12.4, A9X / iOS 14.5.1
Using -k argument w/ PongoConsolidated.bin as above jailbreak is OK
checkra1n 0.12.4, A9X / iOS 14.5.1
Usar o argumento -k w / PongoConsolidated.bin como o jailbreak acima estรก OK
Were you able to work with IpadOS 14.5.1 on A9X?
checkra1n 0.12.4, A9X / iOS 14.5.1
Usar o argumento -k w / PongoConsolidated.bin como o jailbreak acima estรก OKWere you able to work with IpadOS 14.5.1 on A9X?
yes. this patched file is required
#2074 (comment)
#2074 (comment)
checkra1n 0.12.4, A9X / iOS 14.5.1
Usar o argumento -k w / PongoConsolidated.bin como o jailbreak acima estรก OKWere you able to work with IpadOS 14.5.1 on A9X?
yes. this patched file is required
#2074 (comment)
#2074 (comment)
Well! I was also able to work here with the patched file. Thanks
Device: iPad Pro 9.7-inch (WiFi) - A1673 / IpadOS 14.5.1 / A9X / Checkra1n 0.12.4 + PongoConsolidated.bin
any way to get the pongo fix running on windows or how to create the .iso to run trough bios?? pls
hi all i try this with iPad Pro A1652 and A1673 in iPadOS 14.5.1 and its not working i m stuck when
and on iPad i have this
someone have an idea?
hi all i try this with iPad Pro A1652 and A1673 in iPadOS 14.5.1 and its not working i m stuck when
and on iPad i have this
someone have an idea?
Tried? -> #2074 (comment)
hi all i try this with iPad Pro A1652 and A1673 in iPadOS 14.5.1 and its not working i m stuck when
and on iPad i have this
someone have an idea?Tried? -> #2074 (comment)
I have try this and obtain errors I show before.
โcli -v -k ./PongoConsolidated.bin always same