Apps crashes instantly with EXC_BAD_ACCESS

[SaurikSI]

I have tried several apps, but the majority crash instantly after being opened. I tried everything I came up with to no avail, both with the manual method using Sideloadly, and the AppDB method yields the same results.

Here’s the crash log of one instance:

{"app_name":"Numero","timestamp":"2022-06-09 18:19:59.00 -0300","app_version":"5.7.1","slice_uuid":"86c2e308-5e84-3a43-816d-385a006d4808","build_version":"7","platform":2,"bundleID":"com.google.ios.youtube.6dd68610a401198fe72cf7722702adb63a388a0c.0","share_with_app_devs":0,"is_first_party":0,"bug_type":"309","os_version":"iPhone OS 15.4.1 (19E258)","incident_id":"CE5E1AB8-61A8-45F4-AEF6-3ADFF476E99D","name":"Numero"} { "uptime" : 61000, "procLaunch" : "2022-06-09 18:19:57.6987 -0300", "procRole" : "Foreground", "version" : 2, "userID" : 501, "deployVersion" : 210, "modelCode" : "iPhone14,3", "procStartAbsTime" : 1485287438368, "coalitionID" : 1147, "osVersion" : { "isEmbedded" : true, "train" : "iPhone OS 15.4.1", "releaseType" : "User", "build" : "19E258" }, "captureTime" : "2022-06-09 18:19:59.4162 -0300", "incident" : "CE5E1AB8-61A8-45F4-AEF6-3ADFF476E99D", "bug_type" : "309", "pid" : 8015, "procExitAbsTime" : 1485328542776, "cpuType" : "ARM-64", "procName" : "Numero", "procPath" : "\/private\/var\/containers\/Bundle\/Application\/9EB2A282-4A96-476F-BDA6-9FC386F474FF\/Numero.app\/Numero", "bundleInfo" : {"CFBundleShortVersionString":"5.7.1","CFBundleVersion":"7","CFBundleIdentifier":"com.google.ios.youtube.6dd68610a401198fe72cf7722702adb63a388a0c.0","DTAppStoreToolsBuild":"13E114"}, "storeInfo" : {"deviceIdentifierForVendor":"0A45CA65-0309-407F-AF8E-D3C6F624D20F","thirdParty":true}, "parentProc" : "launchd", "parentPid" : 1, "coalitionName" : "com.google.ios.youtube.6dd68610a401198fe72cf7722702adb63a388a0c.0", "crashReporterKey" : "d898a4f2f8648ec72e7e779d65c73c8e5f7d8ac1", "basebandVersion" : "1.59.03", "vmRegionInfo" : "0 is not in any region. Bytes before following region: 4374724608\n REGION TYPE START - END [ VSIZE] PRT\/MAX SHRMOD REGION DETAIL\n UNUSED SPACE AT START\n---> \n TEXT 104c10000-1065bc000 [ 25.7M] r-x\/r-x SM=COW ...ro.app\/Numero", "isCorpse" : 1, "exception" : {"codes":"0x0000000000000001, 0x0000000000000000","rawCodes":[1,0],"type":"EXC_BAD_ACCESS","signal":"SIGSEGV","subtype":"KERN_INVALID_ADDRESS at 0x0000000000000000"}, "termination" : {"flags":0,"code":11,"namespace":"SIGNAL","indicator":"Segmentation fault: 11","byProc":"exc handler","byPid":8015}, "ktriageinfo" : "VM - pmap_enter failed with resource shortage\n", "vmregioninfo" : "0 is not in any region. Bytes before following region: 4374724608\n REGION TYPE START - END [ VSIZE] PRT\/MAX SHRMOD REGION DETAIL\n UNUSED SPACE AT START\n---> \n __TEXT 104c10000-1065bc000 [ 25.7M] r-x\/r-x SM=COW ...ro.app\/Numero", "faultingThread" : 0, "threads" : [{"triggered":true,"id":467824,"threadState":{"x":[{"value":0},{"value":0},{"value":0},{"value":4472447636},{"value":4472447664},{"value":32},{"value":32},{"value":1},{"value":0},{"value":0},{"value":4472447624},{"value":4472447625},{"value":131072},{"value":139264},{"value":4458361400},{"value":1024121851},{"value":9514639296,"symbolLocation":0,"symbol":"_platform_strlen"},{"value":15027386061100950080},{"value":0},{"value":0},{"value":4472241616},{"value":8855308618,"objc-selector":"_setInvalidatesViewsOnAppearanceChange:"},{"value":1},{"value":0},{"value":0},{"value":0},{"value":8863027971,"objc-selector":"application:didFinishLaunchingWithOptions:"},{"value":730267748},{"value":16}],"flavor":"ARM_THREAD_STATE64","lr":{"value":4467950828},"cpsr":{"value":1610616832},"fp":{"value":6092146448},"sp":{"value":6092146432},"esr":{"value":2449473542,"description":"(Data Abort) byte read Translation fault"},"pc":{"value":9514639300,"matchesCrashFrame":1},"far":{"value":0}},"queue":"com.apple.main-thread","frames":[{"imageOffset":4036,"symbol":"_platform_strlen","symbolLocation":4,"imageIndex":0},{"imageOffset":50412,"symbol":"std::1::char_traits::length(char const)","symbolLocation":24,"imageIndex":1},{"imageOffset":95620,"symbol":"std::1::basic_ostream<char, std::__1::char_traits >& std::1::operator<<<std::1::char_traits >(std::__1::basic_ostream<char, std::1::char_traits >&, char const)","symbolLocation":48,"imageIndex":1},{"imageOffset":3155616,"symbol":"LinphonePrivate::SysPaths::getConfigPath(void)","symbolLocation":516,"imageIndex":2},{"imageOffset":3158104,"symbol":"LinphonePrivate::Paths::getPath(LinphonePrivate::Paths::Type, void)","symbolLocation":112,"imageIndex":2},{"imageOffset":5623492,"symbol":"linphone_factory_get_config_dir","symbolLocation":40,"imageIndex":2},{"imageOffset":2733784,"symbol":"+[LinphoneManager preferenceFile:]","symbolLocation":88,"imageIndex":3},{"imageOffset":2723408,"symbol":"-[LinphoneManager migrateImportantFiles]","symbolLocation":104,"imageIndex":3},{"imageOffset":2685056,"symbol":"-[LinphoneManager init]","symbolLocation":696,"imageIndex":3},{"imageOffset":2683912,"symbol":"+[LinphoneManager instance]","symbolLocation":84,"imageIndex":3},{"imageOffset":2591716,"symbol":"-[NumeroAppDelegate application:didFinishLaunchingWithOptions:]","symbolLocation":4448,"imageIndex":3},{"imageOffset":3297160,"symbol":"-[UIApplication _handleDelegateCallbacksWithOptions:isSuspended:restoreState:]","symbolLocation":340,"imageIndex":4},{"imageOffset":5291428,"symbol":"-[UIApplication _callInitializationDelegatesWithActions:forCanvas:payload:fromOriginatingProcess:]","symbolLocation":3572,"imageIndex":4},{"imageOffset":5196120,"symbol":"-[UIApplication _runWithMainScene:transitionContext:completion:]","symbolLocation":1180,"imageIndex":4},{"imageOffset":3483024,"symbol":"-[_UISceneLifecycleMultiplexer completeApplicationLaunchWithFBSScene:transitionContext:]","symbolLocation":152,"imageIndex":4},{"imageOffset":1756228,"symbol":"_UIScenePerformActionsWithLifecycleActionMask","symbolLocation":104,"imageIndex":4},{"imageOffset":2979308,"symbol":"101-[_UISceneLifecycleMultiplexer _evalTransitionToSettings:fromSettings:forceExit:withTransitionStore:]_block_invoke","symbolLocation":216,"imageIndex":4},{"imageOffset":4158204,"symbol":"-[_UISceneLifecycleMultiplexer _performBlock:withApplicationOfDeactivationReasons:fromReasons:]","symbolLocation":248,"imageIndex":4},{"imageOffset":6512548,"symbol":"-[_UISceneLifecycleMultiplexer _evalTransitionToSettings:fromSettings:forceExit:withTransitionStore:]","symbolLocation":772,"imageIndex":4},{"imageOffset":6034772,"symbol":"-[_UISceneLifecycleMultiplexer uiScene:transitionedFromState:withTransitionContext:]","symbolLocation":340,"imageIndex":4},{"imageOffset":1759792,"symbol":"__186-[_UIWindowSceneFBSSceneTransitionContextDrivenLifecycleSettingsDiffAction _performActionsForUIScene:withUpdatedFBSScene:settingsDiff:fromSettings:transitionContext:lifecycleActionType:]_block_invoke","symbolLocation":196,"imageIndex":4},{"imageOffset":2545972,"symbol":"+[BSAnimationSettings(UIKit) tryAnimatingWithSettings:actions:completion:]","symbolLocation":892,"imageIndex":4},{"imageOffset":1767732,"symbol":"_UISceneSettingsDiffActionPerformChangesWithTransitionContext","symbolLocation":276,"imageIndex":4},{"imageOffset":2726560,"symbol":"-[_UIWindowSceneFBSSceneTransitionContextDrivenLifecycleSettingsDiffAction _performActionsForUIScene:withUpdatedFBSScene:settingsDiff:fromSettings:transitionContext:lifecycleActionType:]","symbolLocation":384,"imageIndex":4},{"imageOffset":7464292,"symbol":"64-[UIScene scene:didUpdateWithDiff:transitionContext:completion:]_block_invoke.615","symbolLocation":776,"imageIndex":4},{"imageOffset":1957140,"symbol":"-[UIScene _emitSceneSettingsUpdateResponseForCompletion:afterSceneUpdateWork:]","symbolLocation":256,"imageIndex":4},{"imageOffset":2233640,"symbol":"-[UIScene scene:didUpdateWithDiff:transitionContext:completion:]","symbolLocation":288,"imageIndex":4},{"imageOffset":3502996,"symbol":"-[UIApplication workspace:didCreateScene:withTransitionContext:completion:]","symbolLocation":584,"imageIndex":4},{"imageOffset":2719076,"symbol":"-[UIApplicationSceneClientAgent scene:didInitializeWithEvent:completion:]","symbolLocation":388,"imageIndex":4},{"imageOffset":168596,"symbol":"-[FBSScene _callOutQueue_agent_didCreateWithTransitionContext:completion:]","symbolLocation":440,"imageIndex":5},{"imageOffset":323728,"symbol":"94-[FBSWorkspaceScenesClient createWithSceneID:groupID:parameters:transitionContext:completion:]_block_invoke.215","symbolLocation":128,"imageIndex":5},{"imageOffset":41736,"symbol":"-[FBSWorkspace _calloutQueue_executeCalloutFromSource:withBlock:]","symbolLocation":240,"imageIndex":5},{"imageOffset":47448,"symbol":"94-[FBSWorkspaceScenesClient createWithSceneID:groupID:parameters:transitionContext:completion:]_block_invoke","symbolLocation":372,"imageIndex":5},{"imageOffset":14892,"symbol":"_dispatch_client_callout","symbolLocation":20,"imageIndex":6},{"imageOffset":29920,"symbol":"_dispatch_block_invoke_direct","symbolLocation":264,"imageIndex":6},{"imageOffset":48240,"symbol":"FBSSERIALQUEUE_IS_CALLING_OUT_TO_A_BLOCK","symbolLocation":48,"imageIndex":5},{"imageOffset":45120,"symbol":"-[FBSSerialQueue _targetQueue_performNextIfPossible]","symbolLocation":220,"imageIndex":5},{"imageOffset":63232,"symbol":"-[FBSSerialQueue _performNextFromRunLoopSource]","symbolLocation":28,"imageIndex":5},{"imageOffset":769796,"symbol":"CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION","symbolLocation":28,"imageIndex":7},{"imageOffset":838800,"symbol":"CFRunLoopDoSource0","symbolLocation":208,"imageIndex":7},{"imageOffset":25064,"symbol":"CFRunLoopDoSources0","symbolLocation":368,"imageIndex":7},{"imageOffset":47948,"symbol":"CFRunLoopRun","symbolLocation":828,"imageIndex":7},{"imageOffset":128696,"symbol":"CFRunLoopRunSpecific","symbolLocation":600,"imageIndex":7},{"imageOffset":4980,"symbol":"GSEventRunModal","symbolLocation":164,"imageIndex":8},{"imageOffset":5324424,"symbol":"-[UIApplication _run]","symbolLocation":1100,"imageIndex":4},{"imageOffset":2708972,"symbol":"UIApplicationMain","symbolLocation":364,"imageIndex":4},{"imageOffset":173868,"symbol":"main","symbolLocation":116,"imageIndex":3},{"imageOffset":105700,"symbol":"start","symbolLocation":520,"imageIndex":9}]},{"id":467836,"queue":"com.google.fira.worker","frames":[{"imageOffset":13612,"symbol":"fsync","symbolLocation":8,"imageIndex":10},{"imageOffset":449544,"imageIndex":11},{"imageOffset":487644,"imageIndex":11},{"imageOffset":448092,"imageIndex":11},{"imageOffset":364480,"imageIndex":11},{"imageOffset":149888,"imageIndex":11},{"imageOffset":338888,"imageIndex":11},{"imageOffset":279080,"symbol":"sqlite3_step","symbolLocation":312,"imageIndex":11},{"imageOffset":17370968,"symbol":"-[APMSqliteStore executeSQLStatement:error:]","symbolLocation":104,"imageIndex":3},{"imageOffset":17370824,"symbol":"-[APMSqliteStore executeSQL:error:]","symbolLocation":164,"imageIndex":3},{"imageOffset":17359520,"symbol":"-[APMSqliteStore ensureTableWithName:createSQL:requiredColumnNames:addOnColumns:error:]","symbolLocation":340,"imageIndex":3},{"imageOffset":17356208,"symbol":"-[APMSqliteStore ensureTableWithName:elementaryColumnInfo:addOnColumnInfo:error:]","symbolLocation":1644,"imageIndex":3},{"imageOffset":17358376,"symbol":"-[APMSqliteStore ensureTableWithName:elementaryColumnInfo:addOnColumnInfo:modifyColumnInfo:error:]","symbolLocation":124,"imageIndex":3},{"imageOffset":16831200,"symbol":"-[APMDatabase ensureAllTables]","symbolLocation":5204,"imageIndex":3},{"imageOffset":16825524,"symbol":"-[APMDatabase initializeDatabaseResourcesWithContext:databasePath:error:]","symbolLocation":140,"imageIndex":3},{"imageOffset":16784264,"symbol":"-[APMDatabase initWithDatabaseName:persistedConfig:error:]","symbolLocation":188,"imageIndex":3},{"imageOffset":16976284,"symbol":"47-[APMMeasurement startMeasurementOnWorkerQueue]_block_invoke","symbolLocation":1420,"imageIndex":3},{"imageOffset":16974584,"symbol":"-[APMMeasurement startMeasurementOnWorkerQueue]","symbolLocation":208,"imageIndex":3},{"imageOffset":16972508,"symbol":"-[APMMeasurement setEnabledOnWorkerQueue:]","symbolLocation":272,"imageIndex":3},{"imageOffset":16972220,"symbol":"29-[APMMeasurement setEnabled:]_block_invoke","symbolLocation":44,"imageIndex":3},{"imageOffset":17325944,"symbol":"51-[APMScheduler scheduleOnWorkerQueueBlockID:block:]_block_invoke","symbolLocation":44,"imageIndex":3},{"imageOffset":7784,"symbol":"_dispatch_call_block_and_release","symbolLocation":32,"imageIndex":6},{"imageOffset":14892,"symbol":"_dispatch_client_callout","symbolLocation":20,"imageIndex":6},{"imageOffset":45348,"symbol":"_dispatch_lane_serial_drain","symbolLocation":668,"imageIndex":6},{"imageOffset":48256,"symbol":"_dispatch_lane_invoke","symbolLocation":392,"imageIndex":6},{"imageOffset":91392,"symbol":"_dispatch_workloop_worker_thread","symbolLocation":648,"imageIndex":6},{"imageOffset":4284,"symbol":"_pthread_wqthread","symbolLocation":288,"imageIndex":12},{"imageOffset":3676,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":12}]},{"id":467837,"queue":"com.apple.UIKit.KeyboardManagement","frames":[{"imageOffset":8568,"symbol":"ulock_wait","symbolLocation":8,"imageIndex":10},{"imageOffset":17436,"symbol":"_dlock_wait","symbolLocation":56,"imageIndex":6},{"imageOffset":16848,"symbol":"_dispatch_thread_event_wait_slow","symbolLocation":56,"imageIndex":6},{"imageOffset":77680,"symbol":"DISPATCH_WAIT_FOR_QUEUE","symbolLocation":356,"imageIndex":6},{"imageOffset":76584,"symbol":"_dispatch_sync_f_slow","symbolLocation":144,"imageIndex":6},{"imageOffset":3595784,"symbol":"37-[_UIRemoteKeyboards startConnection]_block_invoke3","symbolLocation":136,"imageIndex":4},{"imageOffset":140820,"symbol":"invoking","symbolLocation":148,"imageIndex":7},{"imageOffset":262400,"symbol":"-[NSInvocation invoke]","symbolLocation":468,"imageIndex":7},{"imageOffset":215272,"symbol":"NSXPCCONNECTION_IS_CALLING_OUT_TO_REPLY_BLOCK","symbolLocation":24,"imageIndex":13},{"imageOffset":351732,"symbol":"-[NSXPCConnection _decodeAndInvokeReplyBlockWithEvent:sequence:replyInfo:]","symbolLocation":572,"imageIndex":13},{"imageOffset":197680,"symbol":"88-[NSXPCConnection _sendInvocation:orArguments:count:methodSignature:selector:withProxy:]_block_invoke_3","symbolLocation":212,"imageIndex":13},{"imageOffset":112296,"symbol":"_xpc_connection_reply_callout","symbolLocation":124,"imageIndex":14},{"imageOffset":60364,"symbol":"_xpc_connection_call_reply_async","symbolLocation":88,"imageIndex":14},{"imageOffset":15020,"symbol":"_dispatch_client_callout3","symbolLocation":20,"imageIndex":6},{"imageOffset":135700,"symbol":"_dispatch_mach_msg_async_reply_invoke","symbolLocation":340,"imageIndex":6},{"imageOffset":45056,"symbol":"_dispatch_lane_serial_drain","symbolLocation":376,"imageIndex":6},{"imageOffset":48308,"symbol":"_dispatch_lane_invoke","symbolLocation":444,"imageIndex":6},{"imageOffset":91392,"symbol":"_dispatch_workloop_worker_thread","symbolLocation":648,"imageIndex":6},{"imageOffset":4284,"symbol":"_pthread_wqthread","symbolLocation":288,"imageIndex":12},{"imageOffset":3676,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":12}]},{"id":467838,"frames":[{"imageOffset":3668,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":12}]},{"id":467839,"name":"com.apple.uikit.eventfetch-thread","frames":[{"imageOffset":5344,"symbol":"mach_msg_trap","symbolLocation":8,"imageIndex":10},{"imageOffset":6948,"symbol":"mach_msg","symbolLocation":76,"imageIndex":10},{"imageOffset":30752,"symbol":"CFRunLoopServiceMachPort","symbolLocation":372,"imageIndex":7},{"imageOffset":48300,"symbol":"CFRunLoopRun","symbolLocation":1180,"imageIndex":7},{"imageOffset":128696,"symbol":"CFRunLoopRunSpecific","symbolLocation":600,"imageIndex":7},{"imageOffset":99348,"symbol":"-[NSRunLoop(NSRunLoop) runMode:beforeDate:]","symbolLocation":236,"imageIndex":13},{"imageOffset":367788,"symbol":"-[NSRunLoop(NSRunLoop) runUntilDate:]","symbolLocation":92,"imageIndex":13},{"imageOffset":4775856,"symbol":"-[UIEventFetcher threadMain]","symbolLocation":524,"imageIndex":4},{"imageOffset":427356,"symbol":"NSThreadstart","symbolLocation":808,"imageIndex":13},{"imageOffset":6572,"symbol":"_pthread_start","symbolLocation":148,"imageIndex":12},{"imageOffset":3688,"symbol":"thread_start","symbolLocation":8,"imageIndex":12}]},{"id":467840,"frames":[{"imageOffset":3668,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":12}]},{"id":467841,"queue":"com.google.firebase.crashlytics.ios.binary-images","frames":[{"imageOffset":12020,"symbol":"write","symbolLocation":8,"imageIndex":10},{"imageOffset":113180,"symbol":"FIRCLSFileWriteWithRetries_block_invoke","symbolLocation":44,"imageIndex":15},{"imageOffset":112732,"symbol":"FIRCLSFileLoopWithWriteBlock","symbolLocation":108,"imageIndex":15},{"imageOffset":113120,"symbol":"FIRCLSFileWriteWithRetries","symbolLocation":96,"imageIndex":15},{"imageOffset":112324,"symbol":"FIRCLSFileWriteToFileDescriptor","symbolLocation":44,"imageIndex":15},{"imageOffset":112612,"symbol":"FIRCLSFileWriteToFileDescriptorOrBuffer","symbolLocation":188,"imageIndex":15},{"imageOffset":113332,"symbol":"FIRCLSFileWriteUInt64","symbolLocation":140,"imageIndex":15},{"imageOffset":115004,"symbol":"FIRCLSFileWriteHashEntryUint64","symbolLocation":56,"imageIndex":15},{"imageOffset":32776,"symbol":"FIRCLSBinaryImageRecordDetails","symbolLocation":140,"imageIndex":15},{"imageOffset":34192,"symbol":"FIRCLSBinaryImageRecordSlice","symbolLocation":268,"imageIndex":15},{"imageOffset":33204,"symbol":"FIRCLSBinaryImageChanged_block_invoke","symbolLocation":140,"imageIndex":15},{"imageOffset":7784,"symbol":"_dispatch_call_block_and_release","symbolLocation":32,"imageIndex":6},{"imageOffset":14892,"symbol":"_dispatch_client_callout","symbolLocation":20,"imageIndex":6},{"imageOffset":45348,"symbol":"_dispatch_lane_serial_drain","symbolLocation":668,"imageIndex":6},{"imageOffset":48256,"symbol":"_dispatch_lane_invoke","symbolLocation":392,"imageIndex":6},{"imageOffset":91392,"symbol":"_dispatch_workloop_worker_thread","symbolLocation":648,"imageIndex":6},{"imageOffset":4284,"symbol":"_pthread_wqthread","symbolLocation":288,"imageIndex":12},{"imageOffset":3676,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":12}]},{"id":467842,"queue":"com.apple.libtrace.state.block-list","frames":[{"imageOffset":8568,"symbol":"ulock_wait","symbolLocation":8,"imageIndex":10},{"imageOffset":17436,"symbol":"_dlock_wait","symbolLocation":56,"imageIndex":6},{"imageOffset":16848,"symbol":"_dispatch_thread_event_wait_slow","symbolLocation":56,"imageIndex":6},{"imageOffset":77680,"symbol":"DISPATCH_WAIT_FOR_QUEUE","symbolLocation":356,"imageIndex":6},{"imageOffset":76584,"symbol":"_dispatch_sync_f_slow","symbolLocation":144,"imageIndex":6},{"imageOffset":42152,"symbol":"___os_state_request_for_self_block_invoke","symbolLocation":372,"imageIndex":16},{"imageOffset":7784,"symbol":"_dispatch_call_block_and_release","symbolLocation":32,"imageIndex":6},{"imageOffset":14892,"symbol":"_dispatch_client_callout","symbolLocation":20,"imageIndex":6},{"imageOffset":45348,"symbol":"_dispatch_lane_serial_drain","symbolLocation":668,"imageIndex":6},{"imageOffset":48308,"symbol":"_dispatch_lane_invoke","symbolLocation":444,"imageIndex":6},{"imageOffset":91392,"symbol":"_dispatch_workloop_worker_thread","symbolLocation":648,"imageIndex":6},{"imageOffset":4284,"symbol":"_pthread_wqthread","symbolLocation":288,"imageIndex":12},{"imageOffset":3676,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":12}]},{"id":467843,"name":"AVAudioSession Notify Thread","frames":[{"imageOffset":5344,"symbol":"mach_msg_trap","symbolLocation":8,"imageIndex":10},{"imageOffset":6948,"symbol":"mach_msg","symbolLocation":76,"imageIndex":10},{"imageOffset":30752,"symbol":"CFRunLoopServiceMachPort","symbolLocation":372,"imageIndex":7},{"imageOffset":48300,"symbol":"CFRunLoopRun","symbolLocation":1180,"imageIndex":7},{"imageOffset":128696,"symbol":"CFRunLoopRunSpecific","symbolLocation":600,"imageIndex":7},{"imageOffset":28420,"symbol":"CADeprecated::GenericRunLoopThread::Entry(void)","symbolLocation":164,"imageIndex":17},{"imageOffset":67824,"symbol":"CADeprecated::CAPThread::Entry(CADeprecated::CAPThread)","symbolLocation":92,"imageIndex":17},{"imageOffset":6572,"symbol":"_pthread_start","symbolLocation":148,"imageIndex":12},{"imageOffset":3688,"symbol":"thread_start","symbolLocation":8,"imageIndex":12}]},{"id":467868,"frames":[{"imageOffset":3668,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":12}]},{"id":467874,"frames":[{"imageOffset":3668,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":12}]},{"id":467875,"name":"JavaScriptCore libpas scavenger","frames":[{"imageOffset":8036,"symbol":"psynch_cvwait","symbolLocation":8,"imageIndex":10},{"imageOffset":33432,"symbol":"_pthread_cond_wait","symbolLocation":1236,"imageIndex":12},{"imageOffset":19195092,"symbol":"scavenger_thread_main","symbolLocation":1232,"imageIndex":18},{"imageOffset":6572,"symbol":"_pthread_start","symbolLocation":148,"imageIndex":12},{"imageOffset":3688,"symbol":"thread_start","symbolLocation":8,"imageIndex":12}]},{"id":467877,"frames":[{"imageOffset":3668,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":12}]},{"id":467879,"queue":"com.apple.root.default-qos","frames":[{"imageOffset":8568,"symbol":"ulock_wait","symbolLocation":8,"imageIndex":10},{"imageOffset":17436,"symbol":"_dlock_wait","symbolLocation":56,"imageIndex":6},{"imageOffset":16848,"symbol":"_dispatch_thread_event_wait_slow","symbolLocation":56,"imageIndex":6},{"imageOffset":77680,"symbol":"__DISPATCH_WAIT_FOR_QUEUE","symbolLocation":356,"imageIndex":6},{"imageOffset":76584,"symbol":"_dispatch_sync_f_slow","symbolLocation":144,"imageIndex":6},{"imageOffset":24772,"symbol":"44+[FIRIAMActionURLFollower actionURLFollower]_block_invoke","symbolLocation":996,"imageIndex":19},{"imageOffset":14892,"symbol":"_dispatch_client_callout","symbolLocation":20,"imageIndex":6},{"imageOffset":21164,"symbol":"_dispatch_once_callout","symbolLocation":32,"imageIndex":6},{"imageOffset":23740,"symbol":"+[FIRIAMActionURLFollower actionURLFollower]","symbolLocation":80,"imageIndex":19},{"imageOffset":186604,"symbol":"-[FIRIAMRuntimeManager internalStartRuntimeWithSDKSettings:]","symbolLocation":2332,"imageIndex":19},{"imageOffset":184260,"symbol":"52-[FIRIAMRuntimeManager startRuntimeWithSDKSettings:]_block_invoke","symbolLocation":44,"imageIndex":19},{"imageOffset":7784,"symbol":"_dispatch_call_block_and_release","symbolLocation":32,"imageIndex":6},{"imageOffset":14892,"symbol":"_dispatch_client_callout","symbolLocation":20,"imageIndex":6},{"imageOffset":27460,"symbol":"_dispatch_queue_override_invoke","symbolLocation":784,"imageIndex":6},{"imageOffset":86372,"symbol":"_dispatch_root_queue_drain","symbolLocation":396,"imageIndex":6},{"imageOffset":88428,"symbol":"_dispatch_worker_thread2","symbolLocation":164,"imageIndex":6},{"imageOffset":4224,"symbol":"_pthread_wqthread","symbolLocation":228,"imageIndex":12},{"imageOffset":3676,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":12}]},{"id":467885,"name":"com.google.firebase.crashlytics.MachExceptionServer","frames":[{"imageOffset":5344,"symbol":"mach_msg_trap","symbolLocation":8,"imageIndex":10},{"imageOffset":6948,"symbol":"mach_msg","symbolLocation":76,"imageIndex":10},{"imageOffset":140284,"symbol":"FIRCLSMachExceptionReadMessage","symbolLocation":80,"imageIndex":15},{"imageOffset":140092,"symbol":"FIRCLSMachExceptionServer","symbolLocation":48,"imageIndex":15},{"imageOffset":6572,"symbol":"_pthread_start","symbolLocation":148,"imageIndex":12},{"imageOffset":3688,"symbol":"thread_start","symbolLocation":8,"imageIndex":12}]}], "usedImages" : [ { "source" : "P", "arch" : "arm64e", "base" : 9514635264, "size" : 28672, "uuid" : "3b2d31b3-4991-36cc-8d6a-08a26cc1ca59", "path" : "\/usr\/lib\/system\/libsystem_platform.dylib", "name" : "libsystem_platform.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 4467900416, "size" : 1048576, "uuid" : "b8ef23eb-5bff-3f51-91a9-1dc1de3f854a", "path" : "\/private\/var\/containers\/Bundle\/Application\/9EB2A282-4A96-476F-BDA6-9FC386F474FF\/Numero.app\/Frameworks\/bctoolbox.framework\/bctoolbox", "name" : "bctoolbox" }, { "source" : "P", "arch" : "arm64", "base" : 4557750272, "size" : 9994240, "uuid" : "b614325e-f623-3e46-838d-9a71f3340306", "path" : "\/private\/var\/containers\/Bundle\/Application\/9EB2A282-4A96-476F-BDA6-9FC386F474FF\/Numero.app\/Frameworks\/linphone.framework\/linphone", "name" : "linphone" }, { "source" : "P", "arch" : "arm64", "base" : 4374724608, "size" : 26918912, "uuid" : "86c2e308-5e84-3a43-816d-385a006d4808", "path" : "\/private\/var\/containers\/Bundle\/Application\/9EB2A282-4A96-476F-BDA6-9FC386F474FF\/Numero.app\/Numero", "name" : "Numero" }, { "source" : "P", "arch" : "arm64e", "base" : 7648890880, "size" : 25800704, "uuid" : "e6e89bb5-b586-3725-bf8f-4c85dcd443bd", "path" : "\/System\/Library\/PrivateFrameworks\/UIKitCore.framework\/UIKitCore", "name" : "UIKitCore" }, { "source" : "P", "arch" : "arm64e", "base" : 7914696704, "size" : 708608, "uuid" : "dd7ec2ba-239d-3f93-8618-9cf707055514", "path" : "\/System\/Library\/PrivateFrameworks\/FrontBoardServices.framework\/FrontBoardServices", "name" : "FrontBoardServices" }, { "source" : "P", "arch" : "arm64e", "base" : 7607521280, "size" : 286720, "uuid" : "69dac9c7-ddaf-318e-b068-be596d142a2f", "path" : "\/usr\/lib\/system\/libdispatch.dylib", "name" : "libdispatch.dylib" }, { "source" : "P", "arch" : "arm64e", "base" : 7610679296, "size" : 4546560, "uuid" : "d2716f2f-688b-3d51-ba8b-17e6553b209e", "path" : "\/System\/Library\/Frameworks\/CoreFoundation.framework\/CoreFoundation", "name" : "CoreFoundation" }, { "source" : "P", "arch" : "arm64e", "base" : 8081195008, "size" : 36864, "uuid" : "75a910dc-87a4-3b3a-8c0e-a868b945f5d4", "path" : "\/System\/Library\/PrivateFrameworks\/GraphicsServices.framework\/GraphicsServices", "name" : "GraphicsServices" }, { "source" : "P", "arch" : "arm64e", "base" : 4433477632, "size" : 360448, "uuid" : "d16b72c0-d619-3e48-9262-2c10a1d3066f", "path" : "\/usr\/lib\/dyld", "name" : "dyld" }, { "source" : "P", "arch" : "arm64e", "base" : 8545329152, "size" : 221184, "uuid" : "c2fcc058-7480-3c14-b479-0064a3f843e3", "path" : "\/usr\/lib\/system\/libsystem_kernel.dylib", "name" : "libsystem_kernel.dylib" }, { "source" : "P", "arch" : "arm64e", "base" : 8129159168, "size" : 1675264, "uuid" : "d566eda7-9175-3dba-88ed-5fdf6c95957b", "path" : "\/usr\/lib\/libsqlite3.dylib", "name" : "libsqlite3.dylib" }, { "source" : "P", "arch" : "arm64e", "base" : 9514668032, "size" : 49152, "uuid" : "b48efcbe-d4f7-308b-a3fa-172e0ea78e33", "path" : "\/usr\/lib\/system\/libsystem_pthread.dylib", "name" : "libsystem_pthread.dylib" }, { "source" : "P", "arch" : "arm64e", "base" : 7635771392, "size" : 3182592, "uuid" : "feeef9b1-b0e6-3561-adfa-3ef0302d23f8", "path" : "\/System\/Library\/Frameworks\/Foundation.framework\/Foundation", "name" : "Foundation" }, { "source" : "P", "arch" : "arm64e", "base" : 9514778624, "size" : 249856, "uuid" : "b56312ce-5ade-34e5-abb4-afcbe0512205", "path" : "\/usr\/lib\/system\/libxpc.dylib", "name" : "libxpc.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 4445356032, "size" : 344064, "uuid" : "a695fa46-acad-37ff-9a32-ea30ff66a03d", "path" : "\/private\/var\/containers\/Bundle\/Application\/9EB2A282-4A96-476F-BDA6-9FC386F474FF\/Numero.app\/Frameworks\/FirebaseCrashlytics.framework\/FirebaseCrashlytics", "name" : "FirebaseCrashlytics" }, { "source" : "P", "arch" : "arm64e", "base" : 8061960192, "size" : 106496, "uuid" : "dd7de675-1dcb-3bb7-a7d9-20cae6bfefdc", "path" : "\/usr\/lib\/system\/libsystem_trace.dylib", "name" : "libsystem_trace.dylib" }, { "source" : "P", "arch" : "arm64e", "base" : 7767973888, "size" : 176128, "uuid" : "37d438b9-289d-39b0-8b67-1b38de65305f", "path" : "\/System\/Library\/PrivateFrameworks\/AudioSession.framework\/AudioSession", "name" : "AudioSession" }, { "source" : "P", "arch" : "arm64e", "base" : 7797538816, "size" : 20406272, "uuid" : "6592b928-ee2c-3bc2-b4e9-4cdc77022fe0", "path" : "\/System\/Library\/Frameworks\/JavaScriptCore.framework\/JavaScriptCore", "name" : "JavaScriptCore" }, { "source" : "P", "arch" : "arm64", "base" : 4446191616, "size" : 278528, "uuid" : "31686fa3-aca3-3b5a-9319-260bd7e4c5a1", "path" : "\/private\/var\/containers\/Bundle\/Application\/9EB2A282-4A96-476F-BDA6-9FC386F474FF\/Numero.app\/Frameworks\/FirebaseInAppMessaging.framework\/FirebaseInAppMessaging", "name" : "FirebaseInAppMessaging" } ], "sharedCache" : { "base" : 7607189504, "size" : 2566684672, "uuid" : "dbcbede8-6a7a-33d4-a982-44d98dd7258b" }, "vmSummary" : "ReadOnly portion of Libraries: Total=926.5M resident=0K(0%) swapped_out_or_unallocated=926.5M(100%)\nWritable regions: Total=782.2M written=0K(0%) resident=0K(0%) swapped_out=0K(0%) unallocated=782.2M(100%)\n\n VIRTUAL REGION \nREGION TYPE SIZE COUNT (non-coalesced) \n=========== ======= ======= \nActivity Tracing 256K 1 \nColorSync 80K 5 \nCoreAnimation 16K 1 \nFoundation 16K 1 \nImage IO 16K 1 \nKernel Alloc Once 32K 1 \nMALLOC 579.9M 54 \nMALLOC guard page 192K 12 \nMach message 16K 1 \nSQLite page cache 576K 9 \nSTACK GUARD 224K 14 \nStack 8096K 15 \nVM_ALLOCATE 688K 8 \nWebKit Malloc 192.0M 5 \nAUTH 4205K 484 \nAUTH_CONST 23.6M 635 \nCTF 759 1 \nDATA 26.5M 697 \nDATA_CONST 24.5M 641 \n__DATA_DIRTY 2219K 542 \nFONT_DATA 4K 1 \nLINKEDIT 278.4M 80 \nOBJC_CONST 6015K 449 \nOBJC_RO 92.1M 1 \n__OBJC_RW 3520K 1 \nTEXT 648.4M 725 \n__UNICODE 592K 1 \ndyld private memory 1216K 3 \nlibnetwork 128K 8 \nmapped file 352.6M 27 \nshared memory 192K 4 \n=========== ======= ======= \nTOTAL 2.2G 4428 \n", "legacyInfo" : { "threadTriggered" : { "queue" : "com.apple.main-thread" } }, "trialInfo" : { "rollouts" : [ { "rolloutId" : "610d4ab6fc54bc33898403cd", "factorPackIds" : { "SIRI_UNDERSTANDING_MORPHUN" : "6201e7dc295c182621ecf027" }, "deploymentId" : 240000257 }, { "rolloutId" : "60da5e84ab0ca017dace9abf", "factorPackIds" : {

  },
  "deploymentId" : 240000008
}

], "experiments" : [

] } }

[SaurikSI]

I tried another thing now, using your patch.sh to follow exactly your instructions, but now apps crash for another reason: The Orion library isn’t found:

"exception" : {"codes":"0x0000000000000000, 0x0000000000000000","rawCodes":[0,0],"type":"EXC_CRASH","signal":"SIGABRT"}, "termination" : {"code":1,"flags":518,"namespace":"DYLD","indicator":"Library missing","details":["(terminated at launch; ignore backtrace)"],"reasons":["Library not loaded: \/Library\/Frameworks\/Orion.framework\/Orion","Referenced from: \/private\/var\/containers\/Bundle\/Application\/B9190CA2-9AA1-462E-96FE-3381A5E43416\/dantheman.app\/Frameworks\/Satella.dylib","Reason: tried: '\/Library\/Frameworks\/Orion.framework\/Orion' (no such file), '\/System\/Library\/Frameworks\/Orion.framework\/Orion' (no such file)"]},

This is honestly driving me crazy, nothings works, I even tried adding the Orion.framework manually using the inject tweak function from Sideloadly but I get the same error… I don’t think it’s related, but I’m sideloading with Sideloadly using my free developer account (Obviously without modifying the IPA), my iOS version and iDevice are shown on the logs.

[Paisseon]

Sorry for the late reply. I've been working on various fixes and improvements for Satella Jailed, which hopefully will solve this problem once they get ironed out. I think we're close to getting better stability on the updated version-- I've attached the current script/dylib/framework combination if you want to try it. SJ.zip

[SaurikSI]

Sorry for the late reply. I've been working on various fixes and improvements for Satella Jailed, which hopefully will solve this problem once they get ironed out. I think we're close to getting better stability on the updated version-- I've attached the current script/dylib/framework combination if you want to try it. SJ.zip

Cool, I'll try the same apps soon and keep you updated. Also, I forgot to add, the Orion.framework problem only happens when using your script, if I manually inject the dylib and frameworks using Sideloadly, then that issue is solved, however, the EXC_BAD_ACCESS still happens on some apps. Sorry for the long reply, I have another thing to say: While the options menu is a nice to have, there are three problems:

• When playing games like platformers, it's very easy to accidentally open it by accident.
• On landscape apps, it is impossible to close, at least on iPhone 13 Pro Max, scrolling doesn't work, and the X and apply buttons doesn't fit because of the toggles
• This is not so problematic, but it would be great if you explained what does every option mean in the README file, I don't understand, by instance, what "Observer" and "Profit cat" means.

Thanks for maintaining this tweak, the community truly appreciates it.

[Paisseon]

Weird, I tried with Sideloadly and it crashed on launch. No logs or anything. The updated script (i.e., the one in SJ.zip) has worked perfectly for me and a couple other testers though. If the updated version still has EXC_BAD_ACCESS crash, could you let me know what app it is?

Also:

1. It shouldn't be hard to add the option to switch gesture recognisers. Is there any particular gesture that you would prefer? I might be able to get one of those floating button things like iOSGods has, but that would be difficult and tbh I don't feel like it rn 😅
2. I'll add a scroll view to the prefs
3. Sure thing :)

[SaurikSI]

I'll try your new script, maybe it's solved, I'm currently waiting because I bought a certificate from UDIDRegistrations.com, I'm sick of the 10 IDs limit of the free account. Here's a detail that might help: The EXC_BAD_ACCESS happens instantly after opening up, without even using the menu, and this happened to me on like 4 apps. This issue is not just EXC_BAD_ACCESS, on at least three other apps, the same crash happens but with GUARD_TYPE_USER - EXC_GUARD.

1: Honestly I would want a gesture that can't possibly be openned by accident, pressing with four fingers would be enough, but if you have a better idea you can do it your way.

2: Great :D I'll help you test it as soon as I can, because maybe this issue is more common with the 13 Pro Max

3: Awesome, thanks for being so thoughtful.

Last thing I forgot to say, I'm not sure about this because I tried with less than 5 apps, but I haven't had success with subscriptions, I'd say it's the least important issue, so this can wait.

[SaurikSI]

The patch script has been fixed, now it works (I think the issue was that previously the app was looking for Orion.framework in the root directory like if it was jailbroken, that's why it only worked with Sideloadly)

[SaurikSI]

The EXC_BAD_ACCESS persists

[Ectalite]

Also crashes for me on iOS 15.4.1,

Sorry for the late reply. I've been working on various fixes and improvements for Satella Jailed, which hopefully will solve this problem once they get ironed out. I think we're close to getting better stability on the updated version-- I've attached the current script/dylib/framework combination if you want to try it. SJ.zip

Hi, I think I have the same problem as SaurikSI (the jailed app was crashing instantly) and I tried your update. It didn't crash anymore at launching, but I couldn't make Satella working inside the app (I was using Plex). Also when I try to open the menu, it did crash a certain amount of time before working and then when I tried applying the settings it also crashed. Here are the links to the application and the patched version if you want to try (I used them on a iPad 5 on iOS 15.4.1 and used appdb for signing). https://we.tl/t-ASNihgNSJk

[SaurikSI]

Maybe something is different in this iOS version, because I also have 15.4.1

Keep in mind that my problem is not with every app, but several of them crash instantly with the EXC_BAD_ACCESS or the Guard type thingy, this makes me think that these apps have some sort of protection, or that this tweak has a compatibility issue that affects only some apps. But this is clearly something about this tweak's code, because some exceptions mentions a problem when accessing certain address, and also apps always crash when I apply settings, with every app, so maybe this is on purpose so the settings reload at startup? Bug or feature?

[Paisseon]

Maybe something is different in this iOS version, because I also have 15.4.1

Keep in mind that my problem is not with every app, but several of them crash instantly with the EXC_BAD_ACCESS or the Guard type thingy, this makes me think that these apps have some sort of protection, or that this tweak has a compatibility issue that affects only some apps. But this is clearly something about this tweak's code, because some exceptions mentions a problem when accessing certain address, and also apps always crash when I apply settings, with every app, so maybe this is on purpose so the settings reload at startup? Bug or feature?

The "crash" when applying settings is intended behaviour-- it has to quit the app in order to initialise new features. The crash on prefs appears to be if the prefs are called more than once for some reason, I'm working on a fix for that. Still trying to figure out the EXC_BAD_ACCESS issue tho

[SaurikSI]

Maybe something is different in this iOS version, because I also have 15.4.1 Keep in mind that my problem is not with every app, but several of them crash instantly with the EXC_BAD_ACCESS or the Guard type thingy, this makes me think that these apps have some sort of protection, or that this tweak has a compatibility issue that affects only some apps. But this is clearly something about this tweak's code, because some exceptions mentions a problem when accessing certain address, and also apps always crash when I apply settings, with every app, so maybe this is on purpose so the settings reload at startup? Bug or feature?

The "crash" when applying settings is intended behaviour-- it has to quit the app in order to initialise new features. The crash on prefs appears to be if the prefs are called more than once for some reason, I'm working on a fix for that. Still trying to figure out the EXC_BAD_ACCESS issue tho

I’ll help in whatever way I can, if you need any additional logs, recordings or anything just ask me, I don’t remember every app in which this happened, but Numero and Reddit (Decrypted IPAs from the iOSGods decrypted store) are two examples of EXC_BAD_ACCESS, but this and the Guard thing happens on several and very different apps, so there must be some kind of incompatibility and/or protection, but I really don’t know about this stuff, I just use tweaks.

[Paisseon]

I might have just fixed this. For me:

• Entitlement crash is gone (idk why lol)
• Numero has no crash
• Prefs duplicate VC crash is gone
• All binaries direct to sandboxed paths
• The Easter Egg is working

See if this works for you

[Paisseon]

If it shows a bunch of warnings about breaking codesign, ignore those btw

[SaurikSI]

Thanks, I’ll try. What do you mean by entitlement crash? Sorry for my ignorance, I just moved from Android to iOS for the first time, I used Android for 7 years. idk why lol That’s a classic, fixing something not on purpose XD

[SaurikSI]

I just tried with the new version, Numero still crashes with this exception: "exception" : {"codes":"0x0000000000000001, 0x0000000000000000","rawCodes":[1,0],"type":"EXC_BAD_ACCESS","signal":"SIGSEGV","subtype":"KERN_INVALID_ADDRESS at 0x0000000000000000"}, "termination" : {"flags":0,"code":11,"namespace":"SIGNAL","indicator":"Segmentation fault: 11","byProc":"exc handler","byPid":2194},

Maybe we are testing in different conditions: I am running iOS 15.4.1 jailed on a 13 Pro Max, Numero's IPA version is 5.7.1 tomorrow I will have UDIDRegistrations active so I’ll be able to test better with the original bundle ID. I’m sure solving this will also apply for all the other apps crashing with this exception, these apps maybe have something in common.

The other stuff you mentioned works great, no more crashes when opening the menu, scrolling and setting the gesture works great, thank you for adding this so quickly :D The most common crash problem is the one I attached here, but I also found another type of crash on just an app called iFunny, but strangely it isn’t instantly, the app runs and lets you choose your country, but it crashes as soon as you can browse posts with EXC_CRASH signal SIGABRT. This isn’t really important because only happens on this app, but it’s interesting because all this crashes don’t happen when trying to buy something or at least initialize prices and buying interface, just on the early app loading, so this has to be something basic of the code interfering with the app, maybe a memory conflict? I’m sure we’ll solve this sooner or later.

Anyways, thanks for the updates and for listening to my feedback, I wish you a great week.

[Ectalite]

I might have just fixed this. For me:

* Entitlement crash is gone (idk why lol)

* Numero has no crash

* Prefs duplicate VC crash is gone

* All binaries direct to sandboxed paths

* The Easter Egg is working

See if this works for you

Works for me perfectly. Even subscriptions are working in plex which is pretty strange and broken. I'm now a bit afraid of this, can you confirm me that I won't pay the subscription if it's in the app store sandbox ?

[Paisseon]

I might have just fixed this. For me:

* Entitlement crash is gone (idk why lol)

* Numero has no crash

* Prefs duplicate VC crash is gone

* All binaries direct to sandboxed paths

* The Easter Egg is working

See if this works for you

Works for me perfectly. Even subscriptions are working in plex which is pretty strange and broken. I'm now a bit afraid of this, can you confirm me that I won't pay the subscription if it's in the app store sandbox ?

Real purchases don't go through if Satella is enabled (it would show an error) and this goes double for sideloaded apps as they can't connect to iTunes. If you want to check though, you can look at Preferences -> (your name) -> Media and Payments -> View Account -> Subscriptions and see if it's there

[Paisseon]

I just tried with the new version, Numero still crashes with this exception: "exception" : {"codes":"0x0000000000000001, 0x0000000000000000","rawCodes":[1,0],"type":"EXC_BAD_ACCESS","signal":"SIGSEGV","subtype":"KERN_INVALID_ADDRESS at 0x0000000000000000"}, "termination" : {"flags":0,"code":11,"namespace":"SIGNAL","indicator":"Segmentation fault: 11","byProc":"exc handler","byPid":2194},

Maybe we are testing in different conditions: I am running iOS 15.4.1 jailed on a 13 Pro Max, Numero's IPA version is 5.7.1 tomorrow I will have UDIDRegistrations active so I’ll be able to test better with the original bundle ID. I’m sure solving this will also apply for all the other apps crashing with this exception, these apps maybe have something in common.

The other stuff you mentioned works great, no more crashes when opening the menu, scrolling and setting the gesture works great, thank you for adding this so quickly :D The most common crash problem is the one I attached here, but I also found another type of crash on just an app called iFunny, but strangely it isn’t instantly, the app runs and lets you choose your country, but it crashes as soon as you can browse posts with EXC_CRASH signal SIGABRT. This isn’t really important because only happens on this app, but it’s interesting because all this crashes don’t happen when trying to buy something or at least initialize prices and buying interface, just on the early app loading, so this has to be something basic of the code interfering with the app, maybe a memory conflict? I’m sure we’ll solve this sooner or later.

Anyways, thanks for the updates and for listening to my feedback, I wish you a great week.

Hmm, could you send the decrypted .ipa's for these apps? My app store has the latest version of Numero as 3.3.9 lmao

[SaurikSI]

I just downloaded Numero's IPA again from the iOSGods Decrypted IPA store so you have the latest version Numero: https://www.dropbox.com/s/yc216hmeme1518p/com.kalam.numero-5.7.1-Decrypted.ipa?dl=0

iFunny: https://armconverter.com/decryptedappstore/download/429610587/ru.flysoft.ifunny/8.4.11?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdWIiOjQzNjU1NywiaWF0IjoxNjU1MTQyNTkzLCJleHAiOjE2NTUxNTMzOTMsImFwcGlkIjo0Mjk2MTA1ODcsImFwcHZlciI6IjguNC4xMSJ9.F-jricqwwV6DwRVLkIvWv_k5ghuVOR4hCL78h2_smyI

[SaurikSI]

I found an Apple that describes the two exceptions (EXC_BAD_ACCESS and EXC_GUARD): https://developer.apple.com/documentation/xcode/understanding-the-exception-types-in-a-crash-report

I hope it helps.

[Paisseon]

I found the problem causing a crash in Numero-- the VerifyHook was messing with some library. I moved it from the main group to the receipts group. I also didn't have any crashes with iFunny, SJ.zip

[SaurikSI]

59.00

Great! I forgot about iFunny, the crash was solved, it crashes only if signed with a free account because of the changed Bundle ID.

Could you find out what causes crashes with Reddit? Because I found that several apps crashes with the same exception, so solving this with Reddit will make who knows who many apps work. This is the latest decrypted IPA, forgot to send it: https://www.dropbox.com/s/br34emep63bw4r7/com.reddit.Reddit-2022.21.0-Decrypted.ipa?dl=0

Btw, yesterday I tried to make the script work with Linux/WSL, but because of an Azule issue, it doesn't work fully, the install_name_tool program just doesn't work, I also tried with a Linux alternative for it to no avail. For now AppDB is the best way to do it on Windows.

[Ectalite]

Just a simple question, changing the Bundle ID makes the app crash or will it still work ?

[SaurikSI]

Just a simple question, changing the Bundle ID makes the app crash or will it still work ?

In iFunny's case, using a changed Bundle ID (Happens on free developer accounts) made the app crash, this is also the case for online games using Game Center like Angry Birds 2, you have to use the original Bundle ID.

[Paisseon]

I wonder if changing "2F4C6962726172792F4672616D65776F726B732F4F72696F6E" (/Library/Frameworks/Orion) in the binary to "4072706174682F2F2F4672616D65776F726B732F4F72696F6E" (@rpath///Frameworks/Orion) and the same for CydiaSubstrate could replace install_name_tool on Linux 🤔

[Paisseon]

Also Reddit isn't crashing for me using the latest zip. Does this work for you?

[SaurikSI]

Also Reddit isn't crashing for me using the latest zip. Does this work for you?

No, I just tried and it crashes with: "exception" : {"codes":"0x0000000000000001, 0x00000001033cedd8","rawCodes":[1,4349291992],"type":"EXC_BREAKPOINT","signal":"SIGTRAP"}, "termination" : {"flags":0,"code":5,"namespace":"SIGNAL","indicator":"Trace\/BPT trap: 5","byProc":"exc handler","byPid":1142},

[SaurikSI]

I wonder if changing "2F4C6962726172792F4672616D65776F726B732F4F72696F6E" (/Library/Frameworks/Orion) in the binary to "4072706174682F2F2F4672616D65776F726B732F4F72696F6E" (@rpath///Frameworks/Orion) and the same for CydiaSubstrate could replace install_name_tool on Linux 🤔

It would be good to try, I honestly can’t help with implementing this, because I barely know anything about iOS, I switched from Android so I’m learning how the system works, but I sure can be a tester.

[ap46281]

Just wanted to report each app was crashing for me on open. Downloaded your zip above and replaced files in SJ folder and now it works.

[Paisseon]

I wonder if changing "2F4C6962726172792F4672616D65776F726B732F4F72696F6E" (/Library/Frameworks/Orion) in the binary to "4072706174682F2F2F4672616D65776F726B732F4F72696F6E" (@rpath///Frameworks/Orion) and the same for CydiaSubstrate could replace install_name_tool on Linux 🤔

It would be good to try, I honestly can’t help with implementing this, because I barely know anything about iOS, I switched from Android so I’m learning how the system works, but I sure can be a tester.

If you have a hex editor it shouldn't be hard to try. 0 idea how to get it to work via the script, imma ask some of the CyPwn admins who are much better scripters than me

[SaurikSI]

I have tried the latest changes, generally SatellaJailed is a lot more polished than before, specially on the menu, I would say that the main issue are instant launch crashes. I really don’t know how to debug them, everything I found requires the app’s source code in XCode, I heard about Frida but seems too hard too use. Regarding path patching, I could replace Orion's with a hex editor, but wasn’t able with CydiaSubstrate (I forgot to try with Satella.dylib) Maybe this should be mentioned to Azule's creator.

I found another instance of Reddit’a instant launch crash with NordVPN: "exception" : {"codes":"0x0000000000000001, 0x00000001e8e01b74","rawCodes":[1,8201968500],"type":"EXC_BREAKPOINT","signal":"SIGTRAP"}, "termination" : {"flags":0,"code":5,"namespace":"SIGNAL","indicator":"Trace\/BPT trap: 5","byProc":"exc handler","byPid":394}, "ktriageinfo" : "VM - pmap_enter failed with resource shortage\nVM - pmap_enter failed with resource shortage\nVM - pmap_enter failed with resource shortage\n",

A new issue I found, is that on some apps you can’t open the menu, and it sometimes seems like the tweak isn’t even loaded at all, prices keep loading. This is more common when injecting this tweak with AppDB, there’s something about their implementation that probably isn’t quite right.

[Paisseon]

Been looking into this and fixed the issue with requiring a hex editor, per a couple testers, by just using a pre-patched binary. AppDB is using an outdated version of Satella Jailed so that could be it, but not sure. 🤷‍♀️

As for the Reddit and NordVPN crashes, I have no idea. I tried Satella Jailed with them and no crash. Obviously it doesn't work on the purchases though. Maybe try version 1.3?

[SaurikSI]

I’m starting to think that the crashes are due to the iOSGods decrypted iPA store, several apps crash but other apps from them work… Maybe it’s some kind of DRM?

What’s strange is that Reddit and some others crash even without any injection, but only when decrypted, if I install from App Store they work fine🤔

Anyways, the progress on Windows support is great news, I look forward for it. BTW, what tool do you use to inject the tweak on Windows? I use Sideloadly but want to make sure I get the same results as your testers.

[SaurikSI]

Maybe something is different in this iOS version, because I also have 15.4.1

Keep in mind that my problem is not with every app, but several of them crash instantly with the EXC_BAD_ACCESS or the Guard type thingy, this makes me think that these apps have some sort of protection, or that this tweak has a compatibility issue that affects only some apps. But this is clearly something about this tweak's code, because some exceptions mentions a problem when accessing certain address, and also apps always crash when I apply settings, with every app, so maybe this is on purpose so the settings reloas at startup? Bug or feature?

On Sun, Jun 12, 2022, 1:01 PM Ectalite @.***> wrote:

Also crashes for me on iOS 15.4.1,

Sorry for the late reply. I've been working on various fixes and improvements for Satella Jailed, which hopefully will solve this problem once they get ironed out. I think we're close to getting better stability on the updated version-- I've attached the current script/dylib/framework combination if you want to try it. SJ.zip https://github.com/Paisseon/SatellaJailed/files/8884171/SJ.zip

Hi, I think I have the same problem as SaurikSI (the jailed app was crashing instantly) and I tried your update. It didn't crash anymore at launching, but I couldn't make Satella working inside the app (I was using Plex). Also when I try to open the menu, it did crash a certain amount of time before working and then when I tried applying the settings it also crashed. Here are the links to the application and the patched version if you want to try (I used them on a iPad 5 on iOS 15.4.1 and used appdb for signing). https://we.tl/t-ASNihgNSJk

— Reply to this email directly, view it on GitHub https://github.com/Paisseon/SatellaJailed/issues/3#issuecomment-1153217175, or unsubscribe https://github.com/notifications/unsubscribe-auth/AH2MDAJR3KZTMGUVPK5F3HTVOYCVVANCNFSM5YLPOQ7A . You are receiving this because you modified the open/close state.Message ID: @.***>

[Paisseon]

Crashing when applying settings is intentional, but which apps crash instantly, and which injection method?

[Genxster1998]

Crashing when applying settings is intentional, but which apps crash instantly, and which injection method?

I have tried Notability 11.7 and Good Notes 5 and Nebu , Noteshelf from iosgods Decrypted app store .All crashes with just launching . If i use without resigning , it asks to update or delete app , if i sign it using esign with scarlet enterprise profile , it crashes on opening with "SIGABRT" or "SIGTRAP" error as @SaurikSI mentioned in the log . Is it ipa faulty ? Thanks