"Error: exploit" on 15F5061e (11.4 beta 3)

[samyk]

Awesome work!

I've compiled and attempted testing on the following:

• iPhone X running 15F5061e (11.4 beta 3) as I see the code supports this
• Airplane mode enabled (wifi also disabled)
• Siri disabled
• 11.4.1 update removed
• Rebooted
• Electra app compiled from source with Multipath-enabled App ID/provisioning profile

It continuously produces "Error: exploit". I can provide syslog if necessary. Any suggestions or ways I can help troubleshoot or improve?

I am seeing errors like:
Jul 18 15:17:48 the-titanic kernel(Sandbox)[0] <Error>: Sandbox: electra1131(291) System Policy: deny(1) system-privilege 10010

[zhigang1992]

My experience was when “Error: exploit” happened, If you close the Electra app system will reboot. But at that point you’ll need to manually reboot again otherwise it’ll just stuck on error: exploit forever.

[samyk]

Interesting. I haven't experienced the reboot upon closing the Electra app (and I always close the app to retest), but I'll attempt restarting myself after closing.

Here is the output from Xcode:

offsets selected for iOS 11.3 or above
2018-07-18 15:49:49.023556-0700 electra1131[310:33017] Progress: Please Wait (1/3)
rlim.cur: 256
rlim.max: 9223372036854775807
rlim.cur: 10240
rlim.max: 9223372036854775807
allocating early sockets
2018-07-18 15:49:49.028425-0700 electra1131[310:33017] Progress: Please Wait (1/3)
trying to force a 16MB aligned 0x800 kalloc on to freelist
0/6...
1/6...
2/6...
3/6...
4/6...
5/6...
6/6...
1697 1698
waiting for early mptcp gc...
trying first free
doing partial overwrite with target value: 0000000000000000, length 3
err: -1
waiting for mptcp gc...
trying to refill ****************
hopefully we got a pipe buffer in there... now freeing one of them
trying second free
doing partial overwrite with target value: 0000000000000000, length 3
err: -1
waiting for second mptcp gc...
checking....
full read

THERE ARE 1000 "full read" lines -- snipped

full read
failed to get a pipe buffer over a port
2018-07-18 15:50:06.410324-0700 electra1131[310:33017] Progress: Error: exploit

[VIXIVIXIV]

In my experience on iOS 11.3.1, seeing "Error: exploit" didn't mean anything other than killing Electra, waiting for the reboot, and trying again.

[samyk]

Does anyone happen to have the app/Xcode debug log of the multipath exploit working? I'd like to see where the failure/difference actually begins to see if it's something I can help resolve or improve.

[zhigang1992]

I got a bit further.

https://gist.github.com/zhigang1992/2d850dbbbd78d4b8f3bbfb06d44de2f5

I was able to jailbreak fine previously with multipath ipa from https://coolstar.org/electra/

But run into Error: amfid patch when compiling it myself, might because I'm already jailbroken. :(

[samyk]

Interesting, thanks!

[ghost]

Try to delete tvOS profile before reboot. It works for me.

[samyk]

I deleted tvOS profile, rebooted, and same issue.

[nullpixel]

This is usually caused when the exploit failed -- the best "fix" is to keep trying, unless you're having a more specific issue that's unknown.

The error: exploit error is far too generic and should definitely be updated, which was planned anyway (contributors: perhaps this could be done to help diagnose this & other issues)

[akbergangani]

Hi

[jwbolfer]

I’m having the exact same issues. Airplane mode. WiFi off via settings. Killed all apps. Rebooted. Let the phone sit for 5-10 mins. Still get error:exploit every time. Can’t get VFS version to do anything other than black screen and reboot.

[VIXIVIXIV]

@jwbolfer Which iOS version? How many times have you tried?

[jwbolfer]

11.4b3 and right now since it rebooted on me I’ve tried probably a good 50 times

[jwbolfer]

Any updates on this. I’m still stuck trying to get this to work on 11.4b3 on iPhone X. About to just say screw it and go without a jailbreak cuz this damn pop up everytime I unlock my phone is irritating

[supernoodled]

looks like it failed to get an overlap. just keep trying

[ShamrockPLM]

Best Steps for jailbreak 11.4 beta3
Side load with Impactor Electra1131-1.0.3-vfs.ipa
Turn on the following
Airplane Mode
Turn off the following
Siri
Lockcode
Restart Iphone X in Airplane Mode

When the phone comes back up, wait minimum of 2 mins

1. Open Electra app NOTE DON'T RUN, Close App completely (X out) if it was an iPhone 8 double click on home and close.
2. Open app again the second time wait about five seconds a jailbreak, the first time it will snapshot and restart the phone.
3. Repeat step one.
   70% success rate. the biggest help in this is TIME....
   The .mptcp does not work on the iPhone X 11.4 beta 3 period...

Update: If you get an exploit error:amfid
Turn off phone in airplane mode.
Restart phone
After about a minute turn on WIFI and wait for about 30 seconds.
Turn off WIFI and start from step one again.

[emichel22]

I have a iPhone 8+ On iOS 11.4 b3 and I've been jail broken for for some time. The steps mentioned by ShamrockPLM has worked for me for the longest. But for some reason my phone froze and restarted. Since then i keep getting the amfid error when i try to enable. I’m sure what i should to at this point.