Stuck on "Right before trigger" on iPad 6th-gen with Linux; worked fine on a iPhone

Espionage724 commented 4 years ago

Information:

iPad (6th generation, A1893)
iPadOS 13.3.1
checkra1n beta 0.9.8 (CLI, x86_64)
Fedora Workstation 31 (5.4.15-200.fc31.x86_64)
USB-A (official lightning cable directly to the computer's USB port)

Reproduce:

Run checkra1n via sudo checkra1n
Press Start to boot device to Recovery
Follow on-screen timed prompts to press/release buttons in order to boot to DFU mode
checkra1n stops at Right before trigger (this is the real bug setup) prompt with about 2/3rds of the progress bar filled

Expected Behavior:

iPad would boot jail-broken

Issue:

iPad is stuck in DFU mode and checkra1n fails to proceed past a certain point
Happens with Safe Mode (-s argument with checkra1n) as well
No output is displayed on the iPad screen

Other info:

I was able to run checkra1n on this same computer and cable with an iPhone 6S Plus without issue
I've tried rebooting the computer and trying a different USB port without success
Leaving checkra1n open for 5 minutes doesn't change anything

Log:

 - [02/06/20 08:41:09] <Info>: Waiting for DFU devices
 - [02/06/20 08:41:09] <Verbose>: DFU device connected: [14-characters string redacted]
 - [02/06/20 08:41:09] <Info>: Exploiting
 - [02/06/20 08:41:09] <Verbose>: Attempting to perform checkm8 on 8010 11...
 - [02/06/20 08:41:09] <Info>: Checking if device is ready
 - [02/06/20 08:41:09] <Verbose>: == Checkm8 Preparation stage ==
 - [02/06/20 08:41:10] <Info>: Setting up the exploit (this is the heap spray)
 - [02/06/20 08:41:10] <Verbose>: == Checkm8 Setup stage ==
 - [02/06/20 08:41:10] <Verbose>: Disabled probabilistic mode since we encountered a partial xfer
 - [02/06/20 08:41:10] <Verbose>: Deterministic approach was successful!
 - [02/06/20 08:41:10] <Info>: Right before trigger (this is the real bug setup)
 - [02/06/20 08:41:10] <Verbose>: Entered initial checkm8 state after 0 steps, issuing DFU abort..
 - [02/06/20 08:41:10] <Verbose>: DFU device connected: [14-characters string redacted]
 - [02/06/20 08:41:10] <Verbose>: == Checkm8 Trigger stage ==
 - [02/06/20 08:41:11] <Verbose>: Checkmate!

woachk commented 4 years ago

Can you send a dmesg log for the successful and another one for the failing device?

Espionage724 commented 4 years ago

Can you send a dmesg log for the successful and another one for the failing device?

iPhone 6S Plus (successful):

[ 3660.330836] usb 1-4: new high-speed USB device number 23 using xhci_hcd
[ 3660.344688] usb 1-4: New USB device found, idVendor=05ac, idProduct=12a8, bcdDevice= 8.02
[ 3660.344692] usb 1-4: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3660.344695] usb 1-4: Product: iPhone
[ 3660.344697] usb 1-4: Manufacturer: Apple Inc.
[ 3660.344700] usb 1-4: SerialNumber: [REDACTED]
[ 3660.376448] ipheth 1-4:4.2: Apple iPhone USB Ethernet device attached
[ 3660.423613] ipheth 1-4:4.2 enp0s20f0u4c4i2: renamed from eth0
[ 3698.345971] usb 1-4: USB disconnect, device number 23
[ 3698.355978] ipheth 1-4:4.2: Apple iPhone USB Ethernet now disconnected
[ 3703.044025] usb 1-4: new high-speed USB device number 24 using xhci_hcd
[ 3703.058973] usb 1-4: New USB device found, idVendor=05ac, idProduct=1281, bcdDevice= 0.00
[ 3703.058977] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3703.058980] usb 1-4: Product: Apple Mobile Device (Recovery Mode)
[ 3703.058982] usb 1-4: Manufacturer: Apple Inc.
[ 3703.058985] usb 1-4: SerialNumber: SDOM:01 CPID:8003 CPRV:01 CPFM:03 SCEP:01 BDID:06 ECID:[REDACTED] IBFL:1D SRNM:[F2LRT3BAGRWD]
[ 3715.895131] usb 1-4: USB disconnect, device number 24
[ 3724.945127] usb 1-4: new high-speed USB device number 25 using xhci_hcd
[ 3724.958085] usb 1-4: New USB device found, idVendor=05ac, idProduct=1227, bcdDevice= 0.00
[ 3724.958089] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3724.958092] usb 1-4: Product: Apple Mobile Device (DFU Mode)
[ 3724.958094] usb 1-4: Manufacturer: Apple Inc.
[ 3724.958097] usb 1-4: SerialNumber: CPID:8003 CPRV:01 CPFM:03 SCEP:01 BDID:06 ECID:[REDACTED] IBFL:1C SRTG:[iBoot-2234.0.0.2.22]
[ 3728.018415] usb 1-4: reset high-speed USB device number 25 using xhci_hcd
[ 3728.031280] usb 1-4: usbfs: process 6073 (checkra1n) did not claim interface 0 before use
[ 3728.032514] usb 1-4: USB disconnect, device number 25
[ 3728.281148] usb 1-4: new high-speed USB device number 26 using xhci_hcd
[ 3728.293975] usb 1-4: New USB device found, idVendor=05ac, idProduct=1227, bcdDevice= 0.00
[ 3728.293979] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3728.293983] usb 1-4: Product: Apple Mobile Device (DFU Mode)
[ 3728.293985] usb 1-4: Manufacturer: Apple Inc.
[ 3728.293988] usb 1-4: SerialNumber: CPID:8003 CPRV:01 CPFM:03 SCEP:01 BDID:06 ECID:[REDACTED] IBFL:1C SRTG:[iBoot-2234.0.0.2.22]
[ 3728.295870] usb 1-4: USB disconnect, device number 26
[ 3728.545138] usb 1-4: new high-speed USB device number 27 using xhci_hcd
[ 3728.558085] usb 1-4: New USB device found, idVendor=05ac, idProduct=1227, bcdDevice= 0.00
[ 3728.558089] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3728.558092] usb 1-4: Product: Apple Mobile Device (DFU Mode)
[ 3728.558095] usb 1-4: Manufacturer: Apple Inc.
[ 3728.558097] usb 1-4: SerialNumber: CPID:8003 CPRV:01 CPFM:03 SCEP:01 BDID:06 ECID:[REDACTED] IBFL:1C SRTG:[iBoot-2234.0.0.2.22]
[ 3729.359539] usb 1-4: USB disconnect, device number 27
[ 3730.170142] usb 1-4: new high-speed USB device number 28 using xhci_hcd
[ 3730.184956] usb 1-4: New USB device found, idVendor=05ac, idProduct=1338, bcdDevice= 0.00
[ 3730.184961] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3730.184964] usb 1-4: Product: Apple Mobile Device (DFU Mode)
[ 3730.184966] usb 1-4: Manufacturer: Apple Inc.
[ 3730.184969] usb 1-4: SerialNumber: SDOM:01 CPID:8003 CPRV:01 CPFM:03 SCEP:01 BDID:06 ECID:[REDACTED] IBFL:1D
[ 3731.831300] usb 1-4: USB disconnect, device number 28
[ 3755.205298] usb 1-4: new high-speed USB device number 29 using xhci_hcd
[ 3755.218860] usb 1-4: New USB device found, idVendor=05ac, idProduct=12a8, bcdDevice= 8.02
[ 3755.218865] usb 1-4: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3755.218868] usb 1-4: Product: iPhone
[ 3755.218871] usb 1-4: Manufacturer: Apple Inc.
[ 3755.218874] usb 1-4: SerialNumber: [REDACTED]
[ 3755.249127] ipheth 1-4:4.2: Apple iPhone USB Ethernet device attached
[ 3755.260117] ipheth 1-4:4.2 enp0s20f0u4c4i2: renamed from eth0

iPad 6th-gen (failing):

[ 3854.054677] usb 1-4: new high-speed USB device number 31 using xhci_hcd
[ 3854.068601] usb 1-4: New USB device found, idVendor=05ac, idProduct=12ab, bcdDevice= 7.05
[ 3854.068623] usb 1-4: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3854.068628] usb 1-4: Product: iPad
[ 3854.068630] usb 1-4: Manufacturer: Apple Inc.
[ 3854.068633] usb 1-4: SerialNumber: [REDACTED]
[ 3854.097526] ipheth 1-4:4.2: Apple iPhone USB Ethernet device attached
[ 3854.102630] ipheth 1-4:4.2 enp0s20f0u4c4i2: renamed from eth0
[ 3886.401190] usb 1-4: USB disconnect, device number 31
[ 3886.415988] ipheth 1-4:4.2: Apple iPhone USB Ethernet now disconnected
[ 3888.396843] usb 1-4: new high-speed USB device number 32 using xhci_hcd
[ 3888.410708] usb 1-4: New USB device found, idVendor=05ac, idProduct=12ab, bcdDevice= 7.05
[ 3888.410713] usb 1-4: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3888.410716] usb 1-4: Product: iPad
[ 3888.410718] usb 1-4: Manufacturer: Apple Inc.
[ 3888.410721] usb 1-4: SerialNumber: [REDACTED]
[ 3888.440061] ipheth 1-4:4.2: Apple iPhone USB Ethernet device attached
[ 3888.446858] ipheth 1-4:4.2 enp0s20f0u4c4i2: renamed from eth0
[ 3904.176948] usb 1-4: USB disconnect, device number 32
[ 3904.188893] ipheth 1-4:4.2: Apple iPhone USB Ethernet now disconnected
[ 3909.946932] usb 1-4: new high-speed USB device number 33 using xhci_hcd
[ 3909.962093] usb 1-4: New USB device found, idVendor=05ac, idProduct=1281, bcdDevice= 0.00
[ 3909.962097] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3909.962101] usb 1-4: Product: Apple Mobile Device (Recovery Mode)
[ 3909.962103] usb 1-4: Manufacturer: Apple Inc.
[ 3909.962106] usb 1-4: SerialNumber: SDOM:01 CPID:8010 CPRV:11 CPFM:03 SCEP:01 BDID:18 ECID:[REDACTED] IBFL:3D SRNM:[[REDACTED]]
[ 3918.236486] usb 1-4: USB disconnect, device number 33
[ 3927.343002] usb 1-4: new high-speed USB device number 34 using xhci_hcd
[ 3927.356004] usb 1-4: New USB device found, idVendor=05ac, idProduct=1227, bcdDevice= 0.00
[ 3927.356008] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3927.356011] usb 1-4: Product: Apple Mobile Device (DFU Mode)
[ 3927.356014] usb 1-4: Manufacturer: Apple Inc.
[ 3927.356017] usb 1-4: SerialNumber: CPID:8010 CPRV:11 CPFM:03 SCEP:01 BDID:18 ECID:[REDACTED] IBFL:3C SRTG:[iBoot-2696.0.0.1.33]
[ 3930.256141] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 192 ret -110
[ 3930.267137] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.278149] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.289159] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.300149] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.311151] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.322158] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.333167] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.344122] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.355071] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.366158] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.377120] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.388144] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.400140] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.412146] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.423157] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.434172] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.445148] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.457139] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.468155] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.479141] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.490151] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.501126] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.512146] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.524144] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.536143] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.547062] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.558059] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.569073] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.580068] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.591061] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.603076] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.614050] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.625063] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.636063] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.647054] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.658056] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.669069] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.680059] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.691067] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.702104] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.713051] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.724056] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.735058] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.746054] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.757052] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.768072] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.779060] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.790064] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.801072] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.812058] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.824061] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.835062] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.846071] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.857054] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.868056] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.879070] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.890055] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.901054] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.912072] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.923062] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.934056] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.945068] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.956055] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.967048] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.969194] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3930.980144] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3930.991140] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.002138] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.013147] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.024165] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.035143] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.046146] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.057146] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.068143] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.079150] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.090147] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.101146] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.112147] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.123145] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.134146] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.145157] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.147104] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.158150] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 193 ret -110
[ 3931.272286] usb 1-4: reset high-speed USB device number 34 using xhci_hcd
[ 3931.285413] usb 1-4: usbfs: process 6333 (checkra1n) did not claim interface 0 before use
[ 3931.287000] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 33 rq 4 len 0 ret -71
[ 3931.287021] usb 1-4: USB disconnect, device number 34
[ 3931.536027] usb 1-4: new high-speed USB device number 35 using xhci_hcd
[ 3931.549033] usb 1-4: New USB device found, idVendor=05ac, idProduct=1227, bcdDevice= 0.00
[ 3931.549038] usb 1-4: New USB device strings: Mfr=2, Product=3, SerialNumber=4
[ 3931.549041] usb 1-4: Product: Apple Mobile Device (DFU Mode)
[ 3931.549044] usb 1-4: Manufacturer: Apple Inc.
[ 3931.549046] usb 1-4: SerialNumber: CPID:8010 CPRV:11 CPFM:03 SCEP:01 BDID:18 ECID:[REDACTED] IBFL:3C SRTG:[iBoot-2696.0.0.1.33]
[ 3931.562081] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.573176] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.584164] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.595124] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.606136] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.617143] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.628154] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.639142] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.650145] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.661138] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.672154] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.684150] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.695151] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.706156] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.717144] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.728164] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 128 rq 6 len 64 ret -110
[ 3931.832152] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 0 rq 0 len 64 ret -110
[ 3931.936150] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 33 rq 1 len 512 ret -110
[ 3932.040160] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 33 rq 1 len 2048 ret -110
[ 3932.144149] usb 1-4: usbfs: USBDEVFS_CONTROL failed cmd checkra1n rqt 33 rq 4 len 0 ret -110

LennyPenny commented 4 years ago

Getting exactly the same dmseg log on fedora 31 for an iphone x running ios 13.3.1

fhc5326 commented 4 years ago

I stuck on my iPhone 5s,too.

sollde commented 4 years ago

same dmesg log on iPhone5s 12.3

EnekoT2001 commented 4 years ago

Exactly the same on iPad Mini 2 iOS 12.4. I tried in a dozen of different configurations (os/machine) and can't get past it

FDeghy commented 4 years ago

iphone 5s ios 12.4 ubuntu 19.10 have this error

liu-congcong commented 4 years ago

When you stuck on "Right before trigger", keep connected, press and hold the power button for 2 seconds to start the iPad, checkra1n then can recognize the iPad and complete the jailbreak.

flyboy13 commented 4 years ago

When you stuck on "Right before trigger", keep connected, press and hold the power button for 2 seconds to start the iPad, checkra1n then can recognize the iPad and complete the jailbreak.

Dose it work for ios 13.3.1, ip 6s ? please help me :((( I use kali linux on virtualbox to jailbreak

liu-congcong commented 4 years ago

When you stuck on "Right before trigger", keep connected, press and hold the power button for 2 seconds to start the iPad, checkra1n then can recognize the iPad and complete the jailbreak.

Dose it work for ios 13.3.1, ip 6s ? please help me :((( I use kali linux on virtualbox to jailbreak

I installed the GUI version of checkra1n, because when installing checkra1n, there will be 3 additional programs (libusbmuxd6, libplist, xxx.) installed. When stuck on "Right before trigger", checkra1n is not connected to the iPhone / iPad, so I start the iPad by pressing the power button, checkra1n can recognize again and complete the jailbreak.

wstlxx commented 4 years ago

When you stuck on "Right before trigger", keep connected, press and hold the power button for 2 seconds to start the iPad, checkra1n then can recognize the iPad and complete the jailbreak. Dose it work for ios 13.3.1, ip 6s ? please help me :((( I use kali linux on virtualbox to jailbreak

I installed the GUI version of checkra1n, because when installing checkra1n, there will be 3 additional programs (libusbmuxd6, libplist, xxx.) installed. When stuck on "Right before trigger", checkra1n is not connected to the iPhone / iPad, so I start the iPad by pressing the power button, checkra1n can recognize again and complete the jailbreak.

My iPad air 1 on ios 12.4.3 didn't response to the pressing of power button when stuck at real bug setup.

resurface4562 commented 4 years ago

When you stuck on "Right before trigger", keep connected, press and hold the power button for 2 seconds to start the iPad, checkra1n then can recognize the iPad and complete the jailbreak. Dose it work for ios 13.3.1, ip 6s ? please help me :((( I use kali linux on virtualbox to jailbreak

I installed the GUI version of checkra1n, because when installing checkra1n, there will be 3 additional programs (libusbmuxd6, libplist, xxx.) installed. When stuck on "Right before trigger", checkra1n is not connected to the iPhone / iPad, so I start the iPad by pressing the power button, checkra1n can recognize again and complete the jailbreak.

My iPad air 1 on ios 12.4.3 didn't response to the pressing of power button when stuck at real bug setup.

This is my exact problem! Pressing the power button didn't work! I also have an iPad Air 1, except it's on iOS 12.4.5.

cstrouse commented 4 years ago

I was able to get it working on ipad 7,5 running 13.3.1 and 0.9.8.2 checkra1n beta. I finally got it working after compiling new versions of libplist, libusb, libusbmuxd, usbmuxd, and libimobiledevice (all from the latest git commit rather than from the stale releases) using chromebrew. I ran the arm 32-bit binary on a Samsung Chromebook Plus V1 using a genuine Apple USB-C to Lightning cable.

Before updating the dependencies it would always hang at "right before trigger"; after upgrading, it went passed that point but didn't complete. When I was stuck at the "right before trigger" screen I was still able to use home+power to restart the device and get back into recovery or DFU mode.

I tried it from another TTY instead of the ChromeOS hterm and then had a working iproxy session connected to usbmuxd that I ran as usbmuxd -f -u. I ran checkra1n via sudo ./checkra1n -cv.

Now the trick is figure out what it overheats and the home button, volume, and power button stop responding.

FDeghy commented 4 years ago

I was able to get it working on ipad 7,5 running 13.3.1 and 0.9.8.2 checkra1n beta. I finally got it working after compiling new versions of libplist, libusb, libusbmuxd, usbmuxd, and libimobiledevice (all from the latest git commit rather than from the stale releases) using chromebrew. I ran the arm 32-bit binary on a Samsung Chromebook Plus V1 using a genuine Apple USB-C to Lightning cable.

Before updating the dependencies it would always hang at "right before trigger"; after upgrading, it went passed that point but didn't complete. When I was stuck at the "right before trigger" screen I was still able to use home+power to restart the device and get back into recovery or DFU mode.

I tried it from another TTY instead of the ChromeOS hterm and then had a working iproxy session connected to usbmuxd that I ran as usbmuxd -f -u. I ran checkra1n via sudo ./checkra1n -cv.

Now the trick is figure out what it overheats and the home button, volume, and power button stop responding.

you stuck in dfu???!!!

cstrouse commented 4 years ago

No, it goes through the jailbreak and leaves me at Setup but if I mount the filesystem and start modifying it the home button, power button, and volume buttons stop responding, the display stops registering touch events, and the right side of the device starts getting really hot.

boxofdeath commented 4 years ago

Turning off passcode in settings and using version 0.9.6 worked for my iPad Mini 2.

Edit: On my second and third iPad Mini 2 I was having issues with 0.9.6 as well. However, I managed to get a successful load after launching checkra1n and clicking Start while it was still in the boot process.

AMDBartek commented 4 years ago

This is a known issue. #984

checkra1n / BugTracker

Stuck on "Right before trigger" on iPad 6th-gen with Linux; worked fine on a iPhone #812