Checkra1n fails on Mac mini 2018

[KayGundhardt]

Tell us about your setup:

1. What iDevice are you using? Mac mini (late) 2018 (first equipped with T2)
2. On what version of iOS is it? It's MacOS and I do not know because I don't get beyond recovery-mode.
3. What version of checkra1n are you using? 0.12.4
4. What is your host system (OS version? Hackintosh? VM? etc.)? macOS 12.6.1
5. How are you connecting to the device (USB-A? USB-C? Apple/3rd party cable? Through a USB hub?)? USB-C (on DFU-device) to USB-A (on host system)

What are the steps to reproduce the issue?

1. Launch /Applications/checkra1n.app/Contents/MacOS/checkra1n -c -v
2. Awaits DFU-Device
3. Finds and connects
4. Fails with <Error>: Timed out waiting for bootstrap upload (error code: -20)

What do you expect, and what is happening instead? Bootstrap upload should be successful.

Did you see a popup on the device stating it entered "Safe Mode" due to an error? No.

Does the issue also occur if you tick "Safe Mode" in the checkra1n options? Yes.

Any other info, error logs, screenshots, ...? Here's the complete checkra1n-output:

#
# Checkra1n beta 0.12.4
#
# Proudly written in nano
# (c) 2019-2021 Kim Jong Cracks
#
#========  Made by  =======
# argp, axi0mx, danyl931, jaywalker, kirb, littlelailo, nitoTV
# never_released, nullpixel, pimskeks, qwertyoruiop, sbingner, siguza
#======== Thanks to =======
# haifisch, jndok, jonseals, xerub, lilstevie, psychotea, sferrini
# Cellebrite (ih8sn0w, cjori, ronyrus et al.)
#==========================

 - [11/01/22 00:21:53] <Info>: Waiting for DFU devices
 - [11/01/22 00:22:00] <Verbose>: DFU mode device found
 - [11/01/22 00:22:00] <Info>: Exploiting
 - [11/01/22 00:22:00] <Verbose>: Attempting to perform checkm8 on 8012 10...
 - [11/01/22 00:22:00] <Info>: Checking if device is ready
 - [11/01/22 00:22:00] <Verbose>: == Checkm8 Preparation stage ==
 - [11/01/22 00:22:00] <Verbose>: Stalled input endpoint
 - [11/01/22 00:22:00] <Verbose>: DFU device disconnected
 - [11/01/22 00:22:00] <Verbose>: DFU mode device found
 - [11/01/22 00:22:00] <Info>: Setting up the exploit (this is the heap spray)
 - [11/01/22 00:22:00] <Verbose>: == Checkm8 Setup stage ==
 - [11/01/22 00:22:00] <Info>: Right before trigger (this is the real bug setup)
 - [11/01/22 00:22:00] <Verbose>: Entered initial checkm8 state after 3 steps, issuing DFU abort..
 - [11/01/22 00:22:00] <Verbose>: DFU device disconnected
 - [11/01/22 00:22:00] <Verbose>: DFU mode device found
 - [11/01/22 00:22:01] <Verbose>: == Checkm8 Trigger stage ==
 - [11/01/22 00:22:01] <Verbose>: Checkmate!
 - [11/01/22 00:22:01] <Verbose>: DFU device disconnected
 - [11/01/22 00:22:01] <Verbose>: DFU mode device found
 - [11/01/22 00:22:01] <Verbose>: == Checkm8 Trying to run payload... ==
 - [11/01/22 00:22:01] <Verbose>: If everything went correctly, you should now have code execution.
 - [11/01/22 00:22:02] <Verbose>: DFU device disconnected
 - [11/01/22 00:23:31] <Error>: Timed out waiting for bootstrap upload (error code: -20)

[MrMan314]

Do you know the bridgeOS version? checkra1n does not work on bridgeOS 6+

[KayGundhardt]

Is this relevant for the host or the mac that has to be jailbreaked?

And how could I find out as host is inaccessible and in Internet recovery mode…

[alhaithammsar]

hahahaha checkra1n not working on bridgeOS 6+ or 7+ do not bother, need Ramdisk method to get ssh & make changes