Is this a Taurine Bug? Apps that crash with EXC_BAD_ACCESS (SIGSEGV)

[plia7]

https://imgur.com/3mE7SrK

Hello,

I’m seeing a consistent crash with Livenpace v1.0.6 on iOS 14.4.1 when using the HHM1 ECG monitor on a Taurine jailbreak.

Behavior:

• App crashes immediately after starting Bluetooth communication with the ECG device.

• Disabling all tweaks with iCleaner Pro / specific app in Choicy does not help.

• Taurine has no Safe Mode, so libhooker hooks remain active even with no tweaks.

• Non-jailbreak reboot makes the app work normally.

Works fine on Dopamine iOS 15 jailbreak.

Analysis:

• Crash occurs during CoreBluetooth calls.

• Taurine’s libhooker hooks CoreBluetooth, even without tweaks, which likely causes the null pointer dereference.

Full stack trace (Thread 0):

0   ???                            0x0000000000000000
1   Livenpace                      0x102fa64ec
2   Livenpace                      0x102fa6204
3   Livenpace                      0x102fa5700
4   Livenpace                      0x102fa5650
5   Livenpace                      0x103039be8
6   Livenpace                      0x102f1b980
7   Livenpace                      0x102fede9c
8   Livenpace                      0x102f39788
9   Livenpace                      0x10303594c
10  Livenpace                      0x102f39464
11  Livenpace                      0x102edf010
12  Livenpace                      0x102edef44
13  Livenpace                      0x102ede0d0
14  Livenpace                      0x102f510ec
15  CoreBluetooth                  0x1bc5cfb64
16  CoreBluetooth                  0x1bc5cfcd0
17  CoreBluetooth                  0x1bc5cc354
18  CoreBluetooth                  0x1bc5c1584
19  CoreBluetooth                  0x1bc5e8a2c
20  CoreBluetooth                  0x1bc5dc754
21  libdispatch.dylib              0x1a255824c
22  libdispatch.dylib              0x1a2559db0
23  libdispatch.dylib              0x1a256110c
24  libdispatch.dylib              0x1a2561c90
25  libdispatch.dylib              0x1a2567694
26  CoreFoundation                 0x1a28e111c
27  CoreFoundation                 0x1a28db120
28  CoreFoundation                 0x1a28da21c
29  GraphicsServices               0x1ba4a7784
30  UIKitCore                      0x1a531aee8
31  UIKitCore                      0x1a532075c
32  Livenpace                      0x102f93ecc
33  libdyld.dylib                  0x1a259a6b0

Full log: https://pastebin.com/HGDZbf8w

Things I've tried:

• Disable app tweak injection

• Bypass Jailbreak detection with A-Bypass/Fly JB.

• Use Taurine's libhooker app to disable tweaks in these daemons: bluetoothd, BTLEServer.

• I found other people having similar issues where apps work fine in other types of jailbreak like unc0ver but then fail in Taurine with the same error.

Do you have any other suggestions how can I resolve the issue?

This feels more like a Taurine bug at this point? @coolstar @Diatrus @23Aaron Is this still maintained? Can it be fixed?

Thanks.

P.S.

I tried to use Choicy to launch the app without tweaks or to disable the tweaks for the Livenpace app in libhooker and pspawn_payload-stg2.dylib/TweakInject.dylib are still there in the crash log.

Here is the full crash log when app is launched without tweaks:

https://pastebin.com/JYgZ1RWz