search

libimobiledevice / libideviceactivation

A library to handle the activation process of iOS devices
https://libimobiledevice.org
GNU Lesser General Public License v2.1
286 stars 131 forks source link

I have Service but i cant activate! HELP #25

Closed ginsudev closed 5 years ago

ginsudev commented 7 years ago

uhh, this is the first time i have ever used libideviceactivation, and the reason i am using it, is because i downgraded with iDeviceReRestore to iOS 9.2.1 on iPhone 5c (5,4) And i cannot activate

Any help??? Thank you.

iDeviceActivate:

noah@noah:~/Desktop/libideviceactivation/tools$ sudo ./ideviceactivation activate -u 6e12bc29c2da97d8ab599649b45f6a4d82e2be2b -d
[sudo] password for noah: 
idevice_activation_request_new_from_lockdownd: Unable to get MEID from lockdownd
idevice_activation_request_new_from_lockdownd: Unable to get IMSI from lockdownd
*   Trying 17.149.240.65...
* Connected to albert.apple.com (17.149.240.65) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: /etc/ssl/certs
* SSL connection using TLSv1.2 / AES128-GCM-SHA256
* ALPN, server did not agree to a protocol
* Server certificate:
*    subject: jurisdictionC=US; jurisdictionST=California; businessCategory=Private Organization; serialNumber=C0806592; C=US; postalCode=95014; ST=California; L=Cupertino; street=1 Infinite Loop; O=Apple Inc.; OU=GNCS Traffic Management; CN=albert.apple.com
*    start date: Feb 21 00:00:00 2017 GMT
*    expire date: Feb 21 23:59:59 2019 GMT
*    subjectAltName: albert.apple.com matched
*    issuer: C=US; O=Symantec Corporation; OU=Symantec Trust Network; CN=Symantec Class 3 EV SSL CA - G3
*    SSL certificate verify ok.
> POST /deviceservices/deviceActivation HTTP/1.1
Host: albert.apple.com
User-Agent: iOS Device Activator (MobileActivation-20 built on Jan 15 2012 at 19:07:28)
Accept: */*
Content-Length: 9048
Expect: 100-continue
Content-Type: multipart/form-data; boundary=------------------------b3a50e850c49739a

< HTTP/1.1 100 Continue
< HTTP/1.1 200 OK
< Server: Apache-Coyote/1.1
< Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
< Content-Type: application/x-buddyml
< Content-Length: 295
< Date: Tue, 04 Jul 2017 08:59:43 GMT
< 
* Connection #0 to host albert.apple.com left intact
<xmlui><navigationBar title="Activation Error" hidesBackButton="true"/><tableView><section/></tableView><tableView><section footer="Activation request could not be completed. Please press the home button to try again. If the problem persists, please contact customer care."/></tableView></xmlui>
Activation server reports errors.
    Activation Error

iDeviceInfo:

noah@noah:~/Desktop/libideviceactivation/tools$ ideviceinfo
ActivationState: Unactivated
ActivationStateAcknowledged: true
BasebandActivationTicketVersion: V2
BasebandCertId: 3554301762
BasebandChipID: 7282913
BasebandKeyHashInformation: 
 AKeyStatus: 2
 SKeyHash: 7MQEUyvzG4gjjZc7KsNNAVTS8g4=
 SKeyStatus: 0
BasebandMasterKeyHash: AEA5CCE143668D0EFB4CE1F2C94C966A6496C6AA
BasebandRegionSKU: BAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
BasebandSerialNumber: F+s96g==
BasebandStatus: BBInfoAvailable
BasebandVersion: 7.60.00
BluetoothAddress: d0:4f:7e:e5:4e:0b
BoardId: 14
BrickState: true
BuildVersion: 13D15
CPUArchitecture: armv7s
CarrierBundleInfoArray[1]: 
 0: 
  CFBundleIdentifier: com.apple.Telstra_au
  CFBundleVersion: 28.4
  IntegratedCircuitCardIdentity: 89610185000688432463
  InternationalMobileSubscriberIdentity: 505013420373635
  MCC: 505
  MNC: 01
  SIMGID1: //////////8=
  SIMGID2: //////////8=
CertID: 3554301762
ChipID: 35152
ChipSerialNo: F+s96g==
CompassCalibration: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
DeviceClass: iPhone
DeviceColor: #3b3b3c
DeviceName: Noah’s iPhone
DieID: 1668091306390635984
EthernetAddress: d0:4f:7e:e5:4e:25
FirmwareVersion: iBoot-2817.20.26
FusingStatus: 3
GID1: ffffffffffffffff
GID2: ffffffffffffffff
HardwareModel: N49AP
HardwarePlatform: s5l8950x
HasSiDP: true
HostAttached: true
IntegratedCircuitCardIdentity: 89610185000688432463
InternationalMobileEquipmentIdentity: 358548055052969
InternationalMobileSubscriberIdentity: 505013420373635
MLBSerialNumber: FCC51920343FM7GGV
MobileSubscriberCountryCode: 
MobileSubscriberNetworkCode: 01
ModelNumber: MG152
NonVolatileRAM: 
 IONVRAM-SYNCNOW-PROPERTY: SU9OVlJBTS1TWU5DTk9XLVBST1BFUlRZ
 auto-boot: dHJ1ZQ==
 backlight-level: MTU0Ng==
 boot-args: 
 boot-breadcrumbs: IDAwMDMwMDBjKDAwMDAwMDAwKSAwMDAzMDAwZCAwMDAzMDAwYyg2OTYyNjU2MykgNDAzMzAwMDggNDAwMzAwMGUgPENPTU1JVD4gPEJPT1Q+IDAwMDMwMDBjKDAwMDAwMDAwKSAwMDAzMDAwZCAwMDAzMDAwYyg2OTYyNjU2MykgNDAzMzAwMDggNDAwMzAwMGUgPENPTU1JVD4gPEJPT1Q+IDAwMDMwMDBjKDAwMDAwMDAwKSAwMDAzMDAwZCAwMDAzMDAwYyg2OTYyNjU2MykgNDAzMzAwMDggNDAwMzAwMGUgPENPTU1JVD4gMDAwMTAwMDIgPENPTU1JVD4g
 oblit-begins: T2JsaXRUeXBlOiBPYmxpdGVyYXRlRGF0YVBhcnRpdGlvbi4gTm8gcmVhc29uIGdpdmVuLg==
 obliteration: aGFuZGxlX21lc3NhZ2U6IE9ibGl0ZXJhdGlvbiBDb21wbGV0ZQ==
PartitionType: 
PasswordProtected: true
PhoneNumber: +61 458 634 212
PkHash: 09pXQgM5cjY6TJJNOOzO//R5JuGKqjHElfshBbnxrhg=
ProductName: iPhone OS
ProductType: iPhone5,4
ProductVersion: 9.2.1
ProductionSOC: true
ProtocolVersion: 2
ProximitySensorCalibration: T00DAA0JSDgQAwAAAABeAQAAiQADAG0WZwMBAKTc3QLuAloACeuxAvAT+RoAAAB5AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=
RegionInfo: X/A
SBLockdownEverRegisteredKey: false
SIMGID1: /w==
SIMGID2: /w==
SIMStatus: kCTSIMSupportSIMStatusReady
SIMTrayStatus: kCTSIMSupportSIMTrayInsertedWithSIM
SerialNumber: FCCPN0HGFYWC
SoftwareBehavior: AQAAAAAAAAAAAAAAAAAAAA==
SoftwareBundleVersion: 
SupportedDeviceFamilies[1]: 
 0: 1
TelephonyCapability: true
TimeIntervalSince1970: 1499158873.804833
TimeZone: Australia/Sydney
TimeZoneOffsetFromUTC: 36000.000000
TrustedHostAttached: true
UniqueChipID: 2854980029832
UniqueDeviceID: 6e12bc29c2da97d8ab599649b45f6a4d82e2be2b
UseRaptorCerts: true
Uses24HourClock: false
WiFiAddress: d0:4f:7e:e5:3f:e5
WirelessBoardSerialNumber: 54178C403BC
kCTPostponementInfoPRIVersion: 0.1.161
kCTPostponementInfoPRLName: 0
kCTPostponementStatus: kCTPostponementStatusActivated
nikias commented 6 years ago

@vege226 not sure what "itunes login" means exactly but this snippet will certainly not activate your device.

vege226 commented 6 years ago

@nikias I mean: when I usb connect the device and iTunes software is open it will ask for the login, then with Fiddler put this snippet and I'm in. No as logged in but can acces some information.

darkboybeyond commented 1 year ago

I think I know what is happening. @RLCircuit this is your FairPlayCertChain decoded:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            33:33:af:07:04:02:af:00:02:af:00:00:03
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=Apple Inc., OU=Apple Certification Authority, CN=Apple FairPlay Certification Authority
        Validity
            Not Before: Apr  2 15:17:28 2007 GMT
            Not After : Mar 31 15:17:28 2012 GMT
        Subject: C=US, O=Apple Inc., OU=Apple FairPlay, CN=iPhone.3333AF070402AF0002AF000003
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:99:71:7c:2f:fb:f4:54:58:de:f2:18:84:82:80:
                    d1:91:d7:04:00:24:53:73:d8:c2:35:a4:b2:9b:eb:
                    f9:72:cb:22:d6:d7:d3:42:e5:3e:db:91:46:0e:b9:
                    86:8b:14:5e:5a:29:85:d3:df:1d:0e:89:41:36:e7:
                    d1:da:cb:fa:f1:2f:f3:78:72:c7:02:7f:9b:86:81:
                    31:29:5a:ea:af:fc:cc:92:47:6e:2e:8a:17:bd:6d:
                    2f:79:ac:a0:15:e3:eb:66:eb:8b:47:5f:cd:94:39:
                    30:9b:22:54:87:85:4f:19:6f:86:2b:ab:46:89:df:
                    9d:45:db:6a:0c:25:4c:61:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment, Data Encipherment, Key Agreement
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier:
                AF:17:C4:75:00:29:20:55:21:D2:E5:22:DC:B1:3D:D3:A7:11:B3:D0
            X509v3 Authority Key Identifier:
                keyid:FA:0D:D4:11:91:1B:E6:B2:4E:1E:06:49:94:11:DD:63:62:07:59:64

    Signature Algorithm: sha1WithRSAEncryption
         90:1b:2e:63:ad:12:1f:78:c3:13:1f:39:65:96:42:5f:00:13:
         4d:bf:11:e9:99:f5:65:65:66:e7:12:53:94:30:c1:3b:76:3c:
         50:b8:c2:0b:c9:a2:32:85:1f:71:14:8d:bb:d6:42:63:4f:31:
         d5:1a:63:a3:63:86:f9:bc:2e:38:32:20:24:ee:3f:67:09:2e:
         86:07:37:36:5c:b6:cc:22:db:34:29:3f:16:14:3e:4d:9f:52:
         cb:7d:d9:df:e5:49:c2:9f:b9:e9:0c:81:52:93:52:85:da:b0:
         83:69:02:c8:43:55:dc:c6:0e:a8:37:ca:ab:a6:f5:e2:80:dd:
         a7:8b

Look at the validity date. Maybe Apple started analyzing it? I sent from another device in my tests so in my case the validity range is until 2016 (which is also invalid, of course). Let me ask the guy on twitter for who it started working...

hi there!, nice decode over there, could you guide me how to decode FairPlayCertChain as you did? I'm trying to to this as decode this info and study over how this works, however every time I'm trying to decode knowing is a RSA signed key, i have everything else but haven't decoded yet as you did, if you're able to explain me, I will definitely buy you a coffee tea

ICH525 commented 8 months ago

does anyone know how to decode fairplay cert chain and how can i get fairplaycetchain manually to make a valid activation info....