Issue running pirogue-intercept-tls : java API only partially available

[ariabtsev]

Hello,

I'm running into an issue after trying to run pirogue-intercept-tls.

• Pirogue OS version arm64_v1.0.4 installed following the Build a Pirogue tutorial
• Google Pixel 4a connected by USB
• Android 12 build SP2A.220405.003
• Rooted with Magisk version 26.1

I am getting the following error :

$ pirogue-intercept-tls -U -f com.example -o ./output

14:30:28 WARNING  [pirogue_cli.frida.capture_manager] Could not load configuration - skipping.                                                                                                                                              
14:30:30 INFO     [pirogue_cli.android.device] ⚡ Connecting to the USB device...                                                                                                                                                           
         INFO     [pirogue_cli.android.device] ⚡ Connected...                                                                                                                                                                              
         INFO     [pirogue_cli.frida.capture_manager] Saving device properties                                                                                                                                                              
14:30:32 INFO     [pirogue_cli.android.device] ⚡ Frida server is already running...                                                                                                                                                        
         INFO     [pirogue_cli.network.packet_capture] ⚡ Starting network interception...                                                                                                                                                  
14:30:33 INFO     [pirogue_cli.android.screen] ⚡ Starting screen recording...                                                                                                                                                              
Failed to spawn: java API only partially available; please file a bug. Missing: _ZN3art15instrumentation15Instrumentation20EnableDeoptimizationEv
Stopping
Saving captured data
         INFO     [pirogue_cli.frida.capture_manager] Saving data captured by Frida                                                                                                                                                         
         INFO     [pirogue_cli.android.screen] ⚡ Stopping screen recording...                                                                                                                                                              
14:30:35 INFO     [pirogue_cli.android.screen] ⚡ Retrieving the screencast from the device...                                                                                                                                              
         ERROR    [pirogue_cli.android.screen] Command 'adb pull /data/local/tmp/screen.mp4 ./screen.mp4' returned non-zero exit status 1.                                                                                                  
         INFO     [pirogue_cli.android.device] ⚡ Stopping Frida server...                                                                                                                                                                  
         INFO     [pirogue_cli.network.packet_capture] ⚡ Stopping network interception...                                                                                                                                                  
14:30:36 INFO     [pirogue_cli.network.intercept_single] You can analyze the results with the following commands in the output folder:                                                                                                      
         INFO     [pirogue_cli.network.intercept_single]   * Generate a PCAPNG file: editcap --inject-secrets tls,sslkeylog.txt traffic.pcap decrypted.pcapng                                                                               
         INFO     [pirogue_cli.network.intercept_single]   * Export decrypted traffic to JSON: tshark -2 -T ek --enable-protocol communityid -Ndmn -r decrypted.pcapng > traffic.json                                                       
         INFO     [pirogue_cli.network.intercept_single]   * View the decrypted traffic: pirogue-view-tls -i traffic.json                                                                                                                   
         INFO     [pirogue_cli.network.intercept_single] ⚠️ depending on the configuration of your system you would have to run the commands with sudo.

Trying to manually run frida-ps with the latest versions of frida/frida-server (16.0.19) does not raise any error, while running it with the version installed on Pirogue OS (15.1.17) raises the same errors as pirogue-intercept-tls. This might be linked with #18.

Thanks in advance.

[U039b]

Hi! Thank you for filing this issue. The current Frida version we provide does not support Android 12. We are working on it.

[ariabtsev]

Thank you for your fast response. Do I correctly understand that the current Pirogue version is only compatible with Android 11? Would you have an estimate of the date of release of a version of Pirogue with Frida v16?

Thank you

[U039b]

To get the latest version of Frida, we will have to, first, migrate PiRogue OS to Debian 12 which is a piece of cake, or not. So, to answer your question, we don't have an estimate and yes, we support up-to Android 10. Not sure if we fully support Android 11 yet.