search

roothide / Dopamine2-roothide

Dopamine is a semi-untethered jailbreak for iOS 15 and 16
MIT License
445 stars 2.28k forks source link

Crashing on patchfinding #4

Closed m1337v closed 2 months ago

m1337v commented 2 months ago

App crashes on Patchfinding.

iPhone X iOS 16.6.1 (futurerestored with iOS 16.7.7 cryptex if that matters, no problems with original Dopamine2) IMG_0016

roothider commented 2 months ago

can you upload the crash log(*.ips) ?

m1337v commented 2 months ago

Dopamine-2024-08-19-125308.ips.txt

file as text for easier reading ``` {"app_name":"Dopamine","timestamp":"2024-08-19 12:53:08.00 -0400","app_version":"2.1.7.11","slice_uuid":"3b5b0d80-10b7-3276-961a-ffec48bae475","build_version":"1","platform":2,"bundleID":"com.opa334.Dopamine-roothide","share_with_app_devs":0,"is_first_party":1,"bug_type":"309","os_version":"iPhone OS 16.7.7 (20H330)","roots_installed":0,"name":"Dopamine","incident_id":"FABB3A51-B12B-4CF4-AEE6-BABEB283587D"} { "uptime" : 1200, "procRole" : "Foreground", "version" : 2, "userID" : 501, "deployVersion" : 210, "modelCode" : "iPhone10,6", "coalitionID" : 445, "osVersion" : { "isEmbedded" : true, "train" : "iPhone OS 16.7.7", "releaseType" : "User", "build" : "20H330" }, "captureTime" : "2024-08-19 12:53:08.1589 -0400", "incident" : "FABB3A51-B12B-4CF4-AEE6-BABEB283587D", "pid" : 558, "cpuType" : "ARM-64", "roots_installed" : 0, "bug_type" : "309", "procLaunch" : "2024-08-19 12:53:04.7363 -0400", "procStartAbsTime" : 28884967179, "procExitAbsTime" : 28966937476, "procName" : "Dopamine", "procPath" : "\/private\/var\/containers\/Bundle\/Application\/9E977D5E-584E-4A1B-8C17-27C8F7AF98FD\/Dopamine.app\/Dopamine", "bundleInfo" : {"CFBundleShortVersionString":"2.1.7.11","CFBundleVersion":"1","CFBundleIdentifier":"com.opa334.Dopamine-roothide"}, "storeInfo" : {"deviceIdentifierForVendor":"E62C2A32-7CCE-42FE-A510-2C590C39781C"}, "parentProc" : "launchd", "parentPid" : 1, "coalitionName" : "com.opa334.Dopamine-roothide", "crashReporterKey" : "f3dd1dd93a3f5542d3e1ef68189b3ffb09237615", "wasUnlockedSinceBoot" : 1, "isLocked" : 0, "codeSigningID" : "com.opa334.Dopamine-roothide", "codeSigningTeamID" : "T8ALTGMVXN", "codeSigningFlags" : 570450689, "codeSigningValidationCategory" : 4, "codeSigningTrustLevel" : 0, "basebandVersion" : "6.01.01", "vmRegionInfo" : "0x30 is not in any region. Bytes before following region: 68719476688\n REGION TYPE START - END [ VSIZE] PRT\/MAX SHRMOD REGION DETAIL\n UNUSED SPACE AT START\n---> \n commpage (reserved) 1000000000-7000000000 [384.0G] ---\/--- SM=NUL ...(unallocated)", "exception" : {"codes":"0x0000000000000001, 0x0000000000000030","rawCodes":[1,48],"type":"EXC_BAD_ACCESS","signal":"SIGSEGV","subtype":"KERN_INVALID_ADDRESS at 0x0000000000000030"}, "termination" : {"flags":0,"code":11,"namespace":"SIGNAL","indicator":"Segmentation fault: 11","byProc":"exc handler","byPid":558}, "vmregioninfo" : "0x30 is not in any region. Bytes before following region: 68719476688\n REGION TYPE START - END [ VSIZE] PRT\/MAX SHRMOD REGION DETAIL\n UNUSED SPACE AT START\n---> \n commpage (reserved) 1000000000-7000000000 [384.0G] ---\/--- SM=NUL ...(unallocated)", "faultingThread" : 3, "threads" : [{"id":18899,"queue":"com.apple.main-thread","frames":[{"imageOffset":4144,"symbol":"mach_msg2_trap","symbolLocation":8,"imageIndex":6},{"imageOffset":76568,"symbol":"mach_msg2_internal","symbolLocation":76,"imageIndex":6},{"imageOffset":77240,"symbol":"mach_msg_overwrite","symbolLocation":484,"imageIndex":6},{"imageOffset":5412,"symbol":"mach_msg","symbolLocation":20,"imageIndex":6},{"imageOffset":475464,"symbol":"__CFRunLoopServiceMachPort","symbolLocation":156,"imageIndex":7},{"imageOffset":479968,"symbol":"__CFRunLoopRun","symbolLocation":1208,"imageIndex":7},{"imageOffset":498976,"symbol":"CFRunLoopRunSpecific","symbolLocation":584,"imageIndex":7},{"imageOffset":6552,"symbol":"GSEventRunModal","symbolLocation":160,"imageIndex":8},{"imageOffset":3609672,"symbol":"-[UIApplication _run]","symbolLocation":868,"imageIndex":9},{"imageOffset":3608768,"symbol":"UIApplicationMain","symbolLocation":312,"imageIndex":9},{"imageOffset":182620,"symbol":"main","symbolLocation":620,"imageIndex":1},{"imageOffset":82756,"symbol":"start","symbolLocation":1860,"imageIndex":0}]},{"id":18907,"frames":[{"imageOffset":5912,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":10}]},{"id":18908,"queue":"com.apple.root.default-qos","frames":[{"imageOffset":7576,"symbol":"read","symbolLocation":8,"imageIndex":6},{"imageOffset":93316,"symbol":"__50-[DOUIManager observeFileDescriptor:withCallback:]_block_invoke","symbolLocation":176,"imageIndex":1},{"imageOffset":407464,"symbol":"_dispatch_call_block_and_release","symbolLocation":24,"imageIndex":11},{"imageOffset":411520,"symbol":"_dispatch_client_callout","symbolLocation":16,"imageIndex":11},{"imageOffset":244216,"symbol":"_dispatch_queue_override_invoke","symbolLocation":708,"imageIndex":11},{"imageOffset":298088,"symbol":"_dispatch_root_queue_drain","symbolLocation":328,"imageIndex":11},{"imageOffset":300080,"symbol":"_dispatch_worker_thread2","symbolLocation":160,"imageIndex":11},{"imageOffset":7060,"symbol":"_pthread_wqthread","symbolLocation":224,"imageIndex":10},{"imageOffset":5920,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":10}]},{"triggered":true,"id":18909,"threadState":{"x":[{"value":0},{"value":18446744073709551615},{"value":18446744073709551615},{"value":10780472304},{"value":6092089624},{"value":1},{"value":0},{"value":87},{"value":0},{"value":4379477088,"symbolLocation":0,"symbol":"__block_descriptor_tmp.9"},{"value":121214047223808},{"value":32},{"value":2095104},{"value":2043},{"value":2390755415},{"value":2390755415},{"value":4379638444,"symbolLocation":0,"symbol":"pfmetric_run"},{"value":2752},{"value":0},{"value":4379462246},{"value":10780472304},{"value":4379493320,"symbolLocation":0,"symbol":"gXPF"},{"value":8784407600,"symbolLocation":0,"symbol":"_NSConcreteStackBlock"},{"value":6092089664},{"value":4379493576,"symbolLocation":256,"symbol":"gXPF"},{"value":1},{"value":10776352768},{"value":0},{"value":0}],"flavor":"ARM_THREAD_STATE64","lr":{"value":4379638492},"cpsr":{"value":1610612736},"fp":{"value":6092089472},"sp":{"value":6092089408},"esr":{"value":2449473542,"description":"(Data Abort) byte read Translation fault"},"pc":{"value":4379638212,"matchesCrashFrame":1},"far":{"value":48}},"queue":"com.apple.root.user-initiated-qos","frames":[{"imageOffset":63940,"symbol":"pfmetric_run_in_range","symbolLocation":56,"imageIndex":3},{"imageOffset":64220,"symbol":"pfmetric_run","symbolLocation":48,"imageIndex":3},{"imageOffset":20952,"symbol":"xpf_find_amfi_oid","symbolLocation":184,"imageIndex":2},{"imageOffset":49228,"symbol":"xpf_offset_dictionary_add_set","symbolLocation":132,"imageIndex":2},{"imageOffset":49484,"symbol":"xpf_construct_offset_dictionary","symbolLocation":96,"imageIndex":2},{"imageOffset":100208,"symbol":"-[DOJailbreaker gatherSystemInformation]","symbolLocation":776,"imageIndex":1},{"imageOffset":115112,"symbol":"-[DOJailbreaker runWithError:didRemoveJailbreak:showLogs:]","symbolLocation":412,"imageIndex":1},{"imageOffset":53756,"symbol":"__38-[DOMainViewController startJailbreak]_block_invoke","symbolLocation":284,"imageIndex":1},{"imageOffset":407464,"symbol":"_dispatch_call_block_and_release","symbolLocation":24,"imageIndex":11},{"imageOffset":411520,"symbol":"_dispatch_client_callout","symbolLocation":16,"imageIndex":11},{"imageOffset":298376,"symbol":"_dispatch_root_queue_drain","symbolLocation":616,"imageIndex":11},{"imageOffset":300080,"symbol":"_dispatch_worker_thread2","symbolLocation":160,"imageIndex":11},{"imageOffset":7060,"symbol":"_pthread_wqthread","symbolLocation":224,"imageIndex":10},{"imageOffset":5920,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":10}]},{"id":18911,"name":"com.apple.uikit.eventfetch-thread","frames":[{"imageOffset":4144,"symbol":"mach_msg2_trap","symbolLocation":8,"imageIndex":6},{"imageOffset":76568,"symbol":"mach_msg2_internal","symbolLocation":76,"imageIndex":6},{"imageOffset":77240,"symbol":"mach_msg_overwrite","symbolLocation":484,"imageIndex":6},{"imageOffset":5412,"symbol":"mach_msg","symbolLocation":20,"imageIndex":6},{"imageOffset":475464,"symbol":"__CFRunLoopServiceMachPort","symbolLocation":156,"imageIndex":7},{"imageOffset":479968,"symbol":"__CFRunLoopRun","symbolLocation":1208,"imageIndex":7},{"imageOffset":498976,"symbol":"CFRunLoopRunSpecific","symbolLocation":584,"imageIndex":7},{"imageOffset":254184,"symbol":"-[NSRunLoop(NSRunLoop) runMode:beforeDate:]","symbolLocation":208,"imageIndex":12},{"imageOffset":253924,"symbol":"-[NSRunLoop(NSRunLoop) runUntilDate:]","symbolLocation":60,"imageIndex":12},{"imageOffset":4798740,"symbol":"-[UIEventFetcher threadMain]","symbolLocation":404,"imageIndex":9},{"imageOffset":351308,"symbol":"__NSThread__start__","symbolLocation":704,"imageIndex":12},{"imageOffset":12524,"symbol":"_pthread_start","symbolLocation":116,"imageIndex":10},{"imageOffset":5932,"symbol":"thread_start","symbolLocation":8,"imageIndex":10}]},{"id":18914,"queue":"com.apple.root.default-qos","frames":[{"imageOffset":7576,"symbol":"read","symbolLocation":8,"imageIndex":6},{"imageOffset":93316,"symbol":"__50-[DOUIManager observeFileDescriptor:withCallback:]_block_invoke","symbolLocation":176,"imageIndex":1},{"imageOffset":407464,"symbol":"_dispatch_call_block_and_release","symbolLocation":24,"imageIndex":11},{"imageOffset":411520,"symbol":"_dispatch_client_callout","symbolLocation":16,"imageIndex":11},{"imageOffset":244216,"symbol":"_dispatch_queue_override_invoke","symbolLocation":708,"imageIndex":11},{"imageOffset":298088,"symbol":"_dispatch_root_queue_drain","symbolLocation":328,"imageIndex":11},{"imageOffset":300080,"symbol":"_dispatch_worker_thread2","symbolLocation":160,"imageIndex":11},{"imageOffset":7060,"symbol":"_pthread_wqthread","symbolLocation":224,"imageIndex":10},{"imageOffset":5920,"symbol":"start_wqthread","symbolLocation":8,"imageIndex":10}]},{"id":18915,"frames":[{"imageOffset":5912,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":10}]},{"id":18916,"frames":[{"imageOffset":5912,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":10}]},{"id":18917,"frames":[{"imageOffset":5912,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":10}]},{"id":18918,"frames":[{"imageOffset":5912,"symbol":"start_wqthread","symbolLocation":0,"imageIndex":10}]}], "usedImages" : [ { "source" : "P", "arch" : "arm64", "base" : 4381442048, "size" : 524288, "uuid" : "d64b17e5-d3ad-3fea-a25a-579091848ab9", "path" : "\/usr\/lib\/dyld", "name" : "dyld" }, { "source" : "P", "arch" : "arm64", "base" : 4376494080, "size" : 2162688, "uuid" : "3b5b0d80-10b7-3276-961a-ffec48bae475", "path" : "\/private\/var\/containers\/Bundle\/Application\/9E977D5E-584E-4A1B-8C17-27C8F7AF98FD\/Dopamine.app\/Dopamine", "name" : "Dopamine" }, { "source" : "P", "arch" : "arm64", "base" : 4379410432, "size" : 65536, "uuid" : "d9a0a31d-d6bc-303f-b199-b330e5355659", "path" : "\/private\/var\/containers\/Bundle\/Application\/9E977D5E-584E-4A1B-8C17-27C8F7AF98FD\/Dopamine.app\/libxpf.dylib", "name" : "libxpf.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 4379574272, "size" : 98304, "uuid" : "d442c450-6193-3a4a-967e-5ca4e719f9fa", "path" : "\/private\/var\/containers\/Bundle\/Application\/9E977D5E-584E-4A1B-8C17-27C8F7AF98FD\/Dopamine.app\/libchoma.dylib", "name" : "libchoma.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 4379754496, "size" : 147456, "uuid" : "ad7486eb-6261-34be-b7f8-fce80b554615", "path" : "\/private\/var\/containers\/Bundle\/Application\/9E977D5E-584E-4A1B-8C17-27C8F7AF98FD\/Dopamine.app\/libjailbreak.dylib", "name" : "libjailbreak.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 4380934144, "size" : 49152, "uuid" : "1ab75847-bb2d-36f9-999a-72dd61f86b85", "path" : "\/private\/preboot\/Cryptexes\/OS\/usr\/lib\/libobjc-trampolines.dylib", "name" : "libobjc-trampolines.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 8256782336, "size" : 221176, "uuid" : "c138073b-3dba-3037-8c27-a941400eb133", "path" : "\/usr\/lib\/system\/libsystem_kernel.dylib", "name" : "libsystem_kernel.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 7258406912, "size" : 3993600, "uuid" : "8ed7639c-5070-3a5d-9ed8-599199e62b93", "path" : "\/System\/Library\/Frameworks\/CoreFoundation.framework\/CoreFoundation", "name" : "CoreFoundation" }, { "source" : "P", "arch" : "arm64", "base" : 8199258112, "size" : 36864, "uuid" : "bd39268b-dd51-3b91-a12d-a4a75a6e2308", "path" : "\/System\/Library\/PrivateFrameworks\/GraphicsServices.framework\/GraphicsServices", "name" : "GraphicsServices" }, { "source" : "P", "arch" : "arm64", "base" : 7291547648, "size" : 24203264, "uuid" : "27a9c298-b702-3c39-8c06-07196e4cd16b", "path" : "\/System\/Library\/PrivateFrameworks\/UIKitCore.framework\/UIKitCore", "name" : "UIKitCore" }, { "source" : "P", "arch" : "arm64", "base" : 8514244608, "size" : 69632, "uuid" : "78c98f18-5985-3be3-bc4b-f2a3a34ae906", "path" : "\/usr\/lib\/system\/libsystem_pthread.dylib", "name" : "libsystem_pthread.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 7373008896, "size" : 540672, "uuid" : "b51e7cdb-abc9-35af-b8bb-2dce23bc4d6e", "path" : "\/usr\/lib\/system\/libdispatch.dylib", "name" : "libdispatch.dylib" }, { "source" : "P", "arch" : "arm64", "base" : 7161454592, "size" : 8683520, "uuid" : "9338c9a1-b56a-36c5-9485-c102422d8948", "path" : "\/System\/Library\/Frameworks\/Foundation.framework\/Foundation", "name" : "Foundation" }, { "size" : 0, "source" : "A", "base" : 0, "uuid" : "00000000-0000-0000-0000-000000000000" } ], "sharedCache" : { "base" : 7143161856, "size" : 2866659328, "uuid" : "98e6326e-929b-3759-8234-82bac59f4ad0" }, "vmSummary" : "ReadOnly portion of Libraries: Total=753.7M resident=0K(0%) swapped_out_or_unallocated=753.7M(100%)\nWritable regions: Total=664.5M written=0K(0%) resident=0K(0%) swapped_out=0K(0%) unallocated=664.5M(100%)\n\n VIRTUAL REGION \nREGION TYPE SIZE COUNT (non-coalesced) \n=========== ======= ======= \nActivity Tracing 256K 1 \nColorSync 448K 25 \nCoreAnimation 704K 18 \nCoreImage 22.9M 1 \nFoundation 16K 1 \nKernel Alloc Once 32K 1 \nMALLOC 632.5M 55 \nMALLOC guard page 192K 12 \nSQLite page cache 384K 3 \nSTACK GUARD 160K 10 \nStack 5904K 10 \nVM_ALLOCATE 272K 3 \n__CTF 824 1 \n__DATA 6536K 441 \n__DATA_CONST 38.4M 454 \n__DATA_DIRTY 4089K 415 \n__FONT_DATA 4K 1 \n__INFO_FILTER 8 1 \n__LINKEDIT 318.6M 7 \n__OBJC_RO 79.8M 1 \n__OBJC_RW 2464K 1 \n__TEXT 435.1M 460 \ndyld private memory 272K 2 \nlibnetwork 1664K 24 \nmapped file 239.1M 23 \nshared memory 48K 3 \n=========== ======= ======= \nTOTAL 1.7G 1974 \n", "legacyInfo" : { "threadTriggered" : { "queue" : "com.apple.root.user-initiated-qos" } }, "logWritingSignature" : "56868808f86da989d2f91ce255411275ddd9cf32", "trialInfo" : { "rollouts" : [ { "rolloutId" : "60186475825c62000ccf5450", "factorPackIds" : { "SIRI_VALUE_INFERENCE_CONTACT_RESOLUTION" : "6604d2b5e8a3b7370ad8ff53" }, "deploymentId" : 240000074 }, { "rolloutId" : "62c5aa49beff895c8683d259", "factorPackIds" : { }, "deploymentId" : 240000441 } ], "experiments" : [ { "treatmentId" : "750f8b10-8aaa-4622-88f6-54cda8719f78", "experimentId" : "6643969b3099cf28e049862f", "deploymentId" : 400000007 }, { "treatmentId" : "eb6c550b-11dc-45ed-abf2-5497620e81cd", "experimentId" : "662152ede2d11d1408c4db33", "deploymentId" : 400000017 } ] } } ```
roothider commented 2 months ago

can you upload your kernelcache file,

image
m1337v commented 2 months ago

kernelcache.zip

roothider commented 2 months ago

try the latest commit.

m1337v commented 2 months ago

thank you so much, worked!