ipwndfu icon indicating copy to clipboard operation
ipwndfu copied to clipboard

Published 20 hours ago verified publisher icon axi0mX

Fix A7 support

Open clarityzzz opened this issue 5 years ago • 12 comments

Exploit will take a while(~12 seconds) but works.

clarityzzz avatar Sep 27 '19 18:09 clarityzzz

yeah can confirm that it took less tries

razmashat avatar Sep 27 '19 22:09 razmashat

@clarityzzz can you please explain where did you find those values? Could be helpful for other types of devices.

(For example, success rate on the iPhone 5 is horrible, maybe it's a similar problem)

alessaba avatar Sep 28 '19 14:09 alessaba

@clarityzzz can you please explain where did you find those values? Could be helpful for other types of devices.

(For example, success rate on the iPhone 5 is horrible, maybe it's a similar problem)

You need Bootrom dumps for the devices you want to add support. These offsets are load addresses from iBEC and iBSS.

clarityzzz avatar Sep 28 '19 23:09 clarityzzz

how would I find those addresses? I somewhat know how to use Hopper, but I don't know where to look for

alessaba avatar Sep 29 '19 07:09 alessaba

This fix has unfortunately not improved success rate on my iPhone(6,1). Run on both Ubuntu and macOS High Sierra about 20 times combined to no avail

DaJakerBoss avatar Oct 02 '19 01:10 DaJakerBoss

This fix has unfortunately not improved success rate on my iPhone(6,1). Run on both Ubuntu and macOS High Sierra about 20 times combined to no avail

This does not fix underlying issues with Linux and Windows.

clarityzzz avatar Oct 02 '19 10:10 clarityzzz

and Windows. I'm not running a Windows machine. What's your setup?

DaJakerBoss avatar Oct 02 '19 13:10 DaJakerBoss

@clarityzzz can you please explain where did you find those values? Could be helpful for other types of devices. (For example, success rate on the iPhone 5 is horrible, maybe it's a similar problem)

You need Bootrom dumps for the devices you want to add support. These offsets are load addresses from iBEC and iBSS.

But I can't to dump bootrom without exploiting the device, AND I can't exploit the device without dumping bootrom.. heh

gebeto avatar Oct 30 '19 14:10 gebeto

This worked for me after a few tries - iPad Mini 2, Ubuntu 21.10, using the front USB 2 ports.

kamilniew avatar Dec 28 '21 23:12 kamilniew

This worked for me after a few tries - iPad Mini 2, Ubuntu 21.10, using the front USB 2 ports.

Which version of the iPad Mini 2? The WiFi one?

calmsacibis995 avatar Jun 07 '22 13:06 calmsacibis995

Yes, the WiFi model, without cellular support.

kamilniew avatar Jun 07 '22 15:06 kamilniew

Found: CPID:8012 CPRV:10 CPFM:03 SCEP:01 BDID:3B ECID:00012CC0016B8026 IBFL:3C SRTG:[iBoot-3401.0.0.1.16] ERROR: No Apple device in DFU Mode 0x1227 detected after 5.00 second timeout. Exiting.

This is my 100th, and I am not kidding and still trying to, and nothing to wanting to work. Any help with this would be greatly appreciated. Thank you.

Sawen1981 avatar Oct 12 '22 06:10 Sawen1981