I was tired of waiting so I've just crawled kernelcaches for all avaliable devices and made one big offsets.json containing all offsets. However, they are untested. They *should* work, but refer to table below if you're afraid of bootloops.
Wrong clock_ops is most common issue, offset should be:
- iPhone5,(2,3,4) 13E233 and 13E237: not 0x403428 but 0x40b428
- iPhone5,(2,3,4) 13B143: not 0x40c5a0 but 0x40c3cc
- iPhone5,4 13D15 and 13C75: not 0x4035a0 but 0x4033dc
Also, for iPad3,(1,2,3) on 13B143 OSSerializer::serialize
offset is missing -- pages for them contain 12 numbers instead of 13.
Devices on same chipset tend to have the same kernel (iPhone5,1-5,4 for example, or even iPod5 and iPad Mini) Also, 9.3.4 and 9.3.3 have same kernel pretty often. Keep that in mind when looking through table.
Device | 9.3.4 13G35 | 9.3.3 13G34 | 9.3.2 13F69 | 9.3.1 13E238 | 9.3 13E237 | 9.2.1 13D15 | 9.2 13C75 | 9.1 13B143 |
---|---|---|---|---|---|---|---|---|
iPhone 5c (Global) (5,4) | horatiohno | horatiohno | horatiohno | horatiohno | ? | Noah Little | ? | ? |
iPhone 5c (GSM) (5,3) | 4ppleCracker | Cooper Gordon | ? | OothecaPickle | ? | ? | ? | ? |
iPhone 5 (Global) (5,2) | deepfriedfilth | StormJ | lukee_gd_ | horatiohno | ? | d j | ? | ? |
iPhone 5 (GSM) (5,1) | deepfriedfilth | StormJ | ? | ? | ? | ? | ? | ? |
iPhone 4S (4,1) | tihmstar | letinmore | Amirpasha | stek29 | ? | tihmstar | ? | ? |
iPod Touch 5 (5,1) | erten50 | ? | Emilio Robles | Emilio Robles | ? | Earnest Wilson III | ? | ? |
iPad 4 (Global) (3,6) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad 4 (GSM) (3,5) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad 4 (WiFi) (3,4) | ? | ssmicel | Anon | ? | ? | ? | ? | ? |
iPad 3 (GSM) (3,3) | ? | ? | stek29 | ? | ? | ? | ? | ? |
iPad 3 (CDMA) (3,2) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad 3 (WiFi) (3,1) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad Mini (Global) (2,7) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad Mini (GSM) (2,6) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad Mini (WiFi) (2,5) | matteyeux | ? | OothecaPickle | MrMagicMadMax | ? | ? | ? | ? |
iPad 2 (Mid 2012) (2,4) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad 2 (CDMA) (2,3) | ? | ? | ? | ? | ? | ? | ? | ? |
iPad 2 (GSM) (2,2) | ? | leonhartsq | ? | danfr1d | ? | ? | ? | ? |
iPad 2 (WiFi) (2,1) | horatiohno | horatiohno | horatiohno | horatiohno | ? | 4ppleCracker | ? | ? |
Kay I guess it worked the second time I did it. Somehow it fucked up my jailbreak,couldn't launch any cydia installed app, and I couldn't install or uninstall anything without removing cydia,so I had to restore completely. This time it worked perfectly.
EDIT: I have some iPad3,1 offsets, tested successfully
9.3.2:
{ "Darwin Kernel Version 15.5.0: Mon Apr 18 16:44:06 PDT 2016; root:xnu-3248.50.21~4/RELEASE_ARM_S5L8945X": ["0x318264", "0x31aa6c", "0x1e170", "0xd9848", "0x403428", "0xc76b4", "0xd984a", "0xc73e8", "0x455844", "0x3f6454", "0xc7440", "0x45717c", "0xa4", "0x8001f145", "0x0", "0x0", "0x8001f171", "0x8001f191" ] }
9.3.3:
{ "Darwin Kernel Version 15.6.0: Mon Jun 20 20:10:20 PDT 2016; root:xnu-3248.60.9~1/RELEASE_ARM_S5L8945X": ["0x318388", "0x31ab90", "0x1e200", "0xd9838", "0x403428", "0xc76b4", "0xd983a", "0xc73e8", "0x455844", "0x3f6454", "0xc7440", "0x45717c", "0xa4", "0x8001f1d5", "0x0", "0x0", "0x8001f201", "0x8001f221" ] }