#futurerestore-help

ok done

Now try again it taked 20 minutes for me

congrats!!

Thanks

oh wait did you already do that

Oh you were the one with the issue with cynject

did you ever fix it?

Installing apps and other stuff

MacOS version get stuck with this

Tip: Unc0ver Restore-fs step 2 Changes generator value

gotcha, going to try the removal of ireboot

ive been skipping the restore-fs step, guess ill do that step now

Your Generator value should match to SHSH Generator Value

trying to goto 13.5 -> 14.2 as well

im looking at the generator value in textedit and its 0x(15)'s

err 16 1's

can add screenshot ?

of teh ios device or gui?

from gui

lemme try a fresh try, sec

You didnt set generator properly @timber wigeon

.

i feel like theres a second mini reboot that kicks out what im setting

as long as you enter recovery in one go

itll pause after putting into recovery mode then run everything again like i pressed start for the first time

then your generator should stay

what are you using to set generator

sec, phones exiting recovery mode

nonceset143

your generator is 0x1111111111111111

make sure you are putting that in

all 16

right

then as soon as you set it

run futurerestore

no reboots in between

thats what ive been doing

jailbreak

then open nonceset

click setnonce with 0x1111111111111111

try again

pay attention to exactly what happens

phone went blick

task is downloading savage

itunes pops when recover is activated

.......

Now

Just stop futurerestore and run it again

Dont touch your device

Removed? iBoot Driver it causing this

no

its a futurerestore problem

I solved with removing this

Im back to club

ok running restore again

and now its saying my nonce is messed up

on iphone xs

didnt touch my phone, left in recovery mode

iphone xs?

you fucked up saving your blobs

yes xs

<

2735... is iPhone X and below

You shouldve manually specified an apnonce

i was

You did the wrong one

2735 is 0x1111 for A11 and below

For A12 and above its different

i wanna say i did the manual mode with apnonces and then also using system info

you know the nonceset143 tweak

When you set your nonce with that

Send a screenshot of the app

using 0x1.....

yeah theres another number there

a longer one

ok

ive found a different blob from shsh.host

the “Current Apnonce” has to match with the string at the end of your blob

Thats the only way it will work

stupid entanglement

so going forward i suppose, even if i was specifiging ecid and apnonce how would i make sure those blobs stay valid, using tsssaver or shsh.host?

if they're valid once they'll stay valid forever so long as you can set your nonce

^

but u have to save ur blobs correctly first

someone should make a guide on how to save blobs A12+ with nyu's getnonce

i followd a guide about 2 years ago? to pull out a nonce and stuff via command line when i first got my xs

2 years ago

ya.... then i just saved my shit to a stickynote and just kept copy paste every few months

🙄

like 3 other people did that

that tool has been broken forever

well, lemme ask this, installing the system info tweek has a swipe method for saving blobs, that should keep proper generators no?

not on ios 14 i think

ios13

you should be using the tsssaver app anyway

it does everything for you

and its not broken

um

gir wth

:(

filter go brrrr

put a space inbetween

you can't say old gen but instead of old, new

[[TSS Saver]]

what could possible be filtered

lmao

ah i see

why is it filtered

anyways system info always failed to derive a newww generator and nonce pair

for me

logging back into icloud

I have no clue lol, maybe it's a slur in some language

maybe

idk

the filter is jank tdy

well, thanks everyone for the help even thought it ended up with me being a super dumbo

Ubuntu done, 2 to go

Didn't realize I needed red hat to build rpm, I'm dumb

Will finish tomorrow, I'm going to go to bed

poggers

gn

oops

my pings were 30mins late

Lol

Done sending NORData
ERROR: Unable to receive message from FDR 000000000411a400 (-2). 0/2 bytes
ERROR: Could not read data (-256). Aborting.``` anyone know what this means from a troubleshooting standpoint (FR v194) ? iphone X

FR git says "Error: unable to receive message from FDR…

• This error can be caused when using an SEP and Baseband that is not compatible with the unsigned firmware you're trying to upgrade, downgrade, or re-restore to.
• Make sure that you know that the SEP and Baseband you use in order to upgrade, downgrade, or re-restore is compatible with your desired unsigned firmware."
  but the guide im following just says to issue --latest-sep --latest-baseband so im not sure what i should do to make sure theyre "compatible"

hmm you seem to be missing the most important thing in your question

you have all the context except this

im sorry, im on 13.5 iphoneX trying to FR 14.2 (yes, i know not officially supported but ive talked to a few people who it worked fine for)

so im trying to do the manual SEP/BB method that is described in the Git guide, but when i go to the telegram bot and select my device and 14.2 firmware, it says "The specified device doesn't seem to have an SEPOS or BBFW inside its IPSW" .. so i need to figure out a way to get the sep/bb that works with 14.2 for my device

14.2 either works

or it doesn't

14.3 and later work fine

right i get that. only issue is the people who it worked for, i dont know which approach they used so im just trying to follow the errors and see if i can resolve them. so far it gets halfway there and then i get the error that apparently is caused by sep/bb

^ just use --latest, if it doesn't work it's not your fault and you can't do anything to fix it

yeah --latest is first thing i did. you dont think manually specifying sep/bb could work around it?

Nope

14.3 works though

right.. well, there's no jb on the horizon for 14.3 correct?

Um lol

I'm on unc0ver 14.3 A12 rn?

oh right.. i mean 14.4

14.3 is the only blob i dont have, sadly

14.4 also works but no jb

Ah ok

yeah so its either 14.2 (miracle) or 14.4 or later

im on A11

i might just go into the store tomorrow and see if i can find a new i-12 with 14.3 ..

What’s the best way to save blobs now?

Does systeminfo still work?

[[TSS Saver]]

What happened

you need [[libkrw]]

and unc0ver version above 6.1.0

@brisk leaf

Oh ok it worked

Does that mean I can’t use tsssaver on my iPad?
I’m running unc0ver 6.0.0 bc no other version works on it

which ipad

iPad Pro 2nd gen 11”

a12z?

Yep

yeah

you need a generator/ nonce pair

there are a few other ways to get it i suppose

I didnt need that for a13?

you do?

A12+ has nonce entanglement

meaning you need this

Does tsssaver do it for you or smt?

the app

not the website

you can do i ton website too

you have check the box though i think

So for the iPad is there another tool that’ll do it for me?

not automatically

i use tsssaver on my ipad

Since I can’t use the tsssaver app

I’m on unc0ver 6.0.0

tss saver would be the easiest option

yes you have to check the box, its not automatic

how comes you cant use above 6.0.0+

Bc it won’t jailbreak for some reason

its not about just checking the box

you have to provide the nonces too

are you familiar with python (just using scripts, not developing)

if not

you can try and use unc0vers generator setter

but that is unreliable af

and theres no easy way to check

I have a different generator set in unc0ver from when I futurerestored bc the blobs were saved with that generator

thats fine

0xdc77cc754eccb488

you can change the generator input

Wym?

you can set the generator to 0x111... and then save blobs

but its unreliable

you would set it to 0x111... bc the nonce pair is known already?

Wym by unreliable?
Would there be a possibility for the blobs to be invalid?

no because thats easiest and most blobsavers set it as default

thats exactly what i mean

and theres no easy way to check without futurerestoring

Validity?

not validity

you see if the generator doesnt set properly you would save with the wrong APNonce (which is generated from the generator, meaning that if one changes the other will too)

and because nonce entanglement, you cant find out the generator which generated that APNonce, which is why we set the generator in the first place

if we dont find out the generator we can’t use the blob

Ahh I see

so what’s a more reliable way to set the generator?

TSS Saver...

all the reliable ones use something called dimentio

which requires libkrw

Hmm

Ok

Wait so for the phone tho should I set my generator back to 0x111...?

you dont have to but you should

makes life easier

I set it with tss saver but how come it doesn’t reflect in unc0ver?

because unc0ver doesnt read generator (unless you set it with u0 first)

Alright

But it was best to set it in tsssaver right?

yes

The tsssaver site has all my blobs stored there right?

yes you can look it up on the tss saver website

**UPDATE ** (for anyone whos interested):
Trying to work around the FDR error, I downloaded all ios13 IPSWs for my device and 13.5 (what i was FR-ing from).. I then extracted all of them, located the SEP, BaseBand, and BuildManifest.plist files for each one. There was an update to the SEP/BB recently, and the latest SEP/BB in 14.4+ is not compatible with earlier ios14 builds (i.e. using the --latest.. command line arguments will cause the Unable to receive message from FDR... error.

The "Common Errors" page on TheRealKeto Github says "caused when using an SEP and Baseband that is not compatible with the unsigned firmware you're" going to. Then on his Futurerestore Guide, the prep steps listed say to use "(Optional) The specific SEP, Baseband and BuildManifest from the IPSW that are compatible with the version you're trying to upgrade, downgrade, or re-restore to"

So, if you extract these files from the IPSW (of whatever firmware you're going to), then manually feed them into the FR command line, you will get an error saying that the SEP and/or BB is not currently signed, meaning they cant be used either.

In summary: On one hand, using the latest SEP/BB (i.e. --latest-sep --latest-baseband), these files are not compatible. The workaround listed on the Git is to get the files that are compatible and manually assign them with the FR command. This however leads to "this SEP/BB is not currently signed". So the real issue seems to be there is (currently) no way for FR to work around the SEP and BB signing check.

This is what my hours of research and testing have uncovered.. maybe someone here will find it useful

Sources: Manual use of SEP/BB files: http://bit.ly/manualSEPBB ; Documentation of most common errors: http://bit.ly/commonFRerrors ; Futurerestore's Common Errors: https://therealketo.github.io/futurerestore-guide/error-codes

if they aren't compatible, explain why some devices can restore to it using the same files

this only affects a11 and later anyway

I already diagnosed the issue

Imagine a doctor re-examining an illness when its on Google

#futurerestore-help message

@rugged rampart

https://cdn.discordapp.com/attachments/809648240663724032/816861654842343444/unknown.png
https://cdn.discordapp.com/attachments/627601934463008796/818637882641612840/unknown.png

just trying to help out

yes

thank you

I gave you more info

doesnt really matter now im on 14.4.1

it does matter

in what way?

you can still set nonce

but afaik nonce was just something to consider for FR on A12+

huh?

Im saying you can still test 14.2 restores

because X can set nonce on 14.x

well all the guides i read only made a point about apnonce for a12+ devices

im talking about setting the nonce generator

for restores

to use blobs

not sure what you mean completely. i thought i exhausted all my options

im saying you can still test from 14.4.1

like in the future if somehow theres a workaround i could drop back to 14.2?

yes and im also saying you can look for workarounds from 14.4.1

help*

ah ok

what should i do?

You're talking about a11 as a tester yet you're worried about a12

im not worried about a12

just do stuff similar to this #futurerestore-help message

just mentioned that all the guides and info i read talked about a12+ in terms of apnonce and apnonce in blobs, etc

ok

FTR, it /is/ possible to downgrade to 13.4 using a checkra1n device but it screws up baseband and activation

I never once mentioned apnonce lol

I was speaking of nonce generator

you set the generator to use the blob

this has nothing to do with a12

this is the iOS restore process

sorry confused. the generator i set in my JB

yes

Im saying you can do that on 14.4.1

Apnonce is different from the generator

with a11 and lower

yep i understand that part

Despite the name similarities

so you can help test

thats all I was saying

i just thought you were referring to nonce in terms of how i understood it from reading things like "Once you have successfully found the generator your blobs were saved with (or the generator which created the Apnonce your blobs were saved with, for A12+ devices)"

but its moot

Wish they'd make an "in a nutshell" explination

wym

so what exactly needs testing? Ive already tested every SEP/BB from 14.1-14.4.2

@vivid nova

the issue isn't the restore files, its the restoremode files @rugged rampart

ok

Well, it seems most of the guides go in-depth for the average user to skim along and ask Qs later

If they made something concise and "in a nutshell" then we wouldn't get as many support Qs

i found most to be good and detailed.. just that the suggestions didnt pan out for me

I find that you just get lost in translation and you feel like asking yourself "... So.. Will it work?"

yeah in my case i was told pretty much to just forget about it, it wasnt gonna work. but, being stubborn, i decided to keep troubleshooting as much as i could. still didnt work but at least i learned some stuff

Hi guys, Is there a latest FR guide? I am trying to restore A9 ( iPhone 6s plus) on iOS from 12.2 (jailbroken currently). I have got valid blobs.

https://ios.cfw.guide/restoring-to-14-3

Thanks!

try from the shsh.host website itself

when it autocompletes the nonce

change it

then resave

after that you should be able to use system info again

does it autocomplete the same one

even on the website?

rip

might have to wait for a system info update

for now just save with tss saver

Hi there! I am restoring my iPhone6sp to ios 14.3. I see two blobs. Which one I choose? Thanks.

are you getting them from tss saver?

Yes

download both, open them and ctrl + f search for "generator" in both of them, whichever one you see has the 0x1111111111111111 value, thats the one you use

Ah, great. Let me check. ....

Great Tanbeer! I found one that contains the generator. The other one is without any generator. Thank you for saving my jb! 🙂

Sorry, the other one has a different generator. So I will be using the one with default ( 0x11... ) generator.

the other one should be 0xbd34....

its normal

you can use both but the 0x1111 is easier

yes.

You are right. BTW do you know who and why 0xbd34... requested?

Just curious.

its the default generator for the odyssey/electra/chimera jailbreak

0x1111... is unc0ver's default

I thought it was 0x11... = default....?

Yes, I use electra in the past.

it doesnt matter what jailbreak you use, its more to do with those on A12+ who need a jailbreak to save blobs

Forensics in operation! ... :Devil:

lmao

Yeah, I see why you mean. I just wanted to practice FR. Checkm8 is always available anyways.

true

I will try the FR tonight ( uk time). Let me see how it goes.

wow someone else from the uk never thought id see the day

Yeah, jailbreakers are such a minority. I never saw anyone in flesh.

I somehow have

Lucky boy!

wow 😮

been jailbreaking for a decade tho

sadly cant convince my friends to do it 🥲

I started jbing in 2013

@valid adder apparently onboard blobs with a generator dumped from /dev/disk1 work for restores on A9, the "Device can't enter to restore mode" error is only on A10+... any idea if this is fixable?

they are update blobs only

futurerestore says they're erase blobs

unless you restored

if I use -u it says "APTicket can't be used for this restore"

they are single type

either or

what dd command

I used https://github.com/Merculous/SHSHDump and System Info, both produced the exact same file

use deverser

command

for dd

apparently shshdump does:

dd if=/dev/disk1 of=/tmp/shsh_dump.bin
img4tool -s .tmp/blob.shsh2 --convert .tmp/shsh_dump.bin

macOS

I said the command

actually don't see a reason it shouldn't work on Linux with img4tool installed

cat /dev/rdisk1 | dd of=dump.raw bs=256 count=$((0x4000))

got it

let me try

yes

this is the proper way

@valid adder dumped successfully but same error

Received SHSH blobs
Waiting for device to enter restore mode...
irecv_event_cb: device [redacted] (udid: N/A) connected in Recovery mode
Cleaning up...
[exception]:
what=Device can't enter to restore mode
code=67698705
line=1033
file=futurerestore.cpp
commit count=194:
commit sha  =0ab9df3209ee599f581532d05d331e6abe0f53f3:
Done: restoring failed!

linux?

yes

idk

are they valid

send me the raw file

and the iOS version/device

iPhone X GSM (iPhone10,6) 14.3 (18C66)

the raw

oh

and you set 0xd286d5567e1dca42 ? in dimentio?

yes

maybe I should try using checkra1n instead of u0

idk if that makes a difference

@celest basalt are you sure its 18C66

yes

idk what it is

still says invalid

what command did you use

says valid for me

for the raw

its valid

invalid after convert

oh yeah

[IMG4TOOL] checking hash for "RestoreRamDisk"          BAD! (hash not found in im4m)
[IMG4TOOL] checking hash for "RestoreSEP"              OK (found "rsep" with matching hash)
[IMG4TOOL] checking hash for "RestoreTrustCache"       BAD! (hash not found in im4m)

https://github.com/tihmstar/img4tool/pull/25

tihmstar reverted this for some reason

https://github.com/tihmstar/img4tool/commit/04bc71266d1e51215bd020e36f66999287c1f58c

yeah, the same verification error happens with FR but then

Failed to get exact match for build identity, using fallback to ignore certain values

so it tries to proceed anyway but fails

the raw dump says valid because

[IMG4TOOL] checking hash for "RestoreRamDisk"          IGN (hash not found in im4m, but ignoring since we only care about 'illb')
[IMG4TOOL] checking hash for "RestoreSEP"              OK (found "rsep" with matching hash)
[IMG4TOOL] checking hash for "RestoreTrustCache"       IGN (hash not found in im4m, but ignoring since we only care about 'illb')

anyone tried windows 8.1?

or should i just boot ubuntu

this

might work with fixes in the pins but Ubuntu will probably be easier

Cryptic's fix #futurerestore-help message
BUT I also had to do this #futurerestore-help message

that was Win10

but 8.1 probably similar

ok ill use win 8.1

they are the same

Hi, My FR log window says : Done : restoring succeeded

But phone still showing apple logo and progress slider

Is that normal?

Congrats!!

Thanks

And yes, after the second progress bar it will boot

Thanks. Ye, it booted. I am into setup.

poggers

filter go brr

Can someone help me, please?

I've just futurerestored to iOS 14.3 my iPhone 8, from iOS 13.6 (checkra1n), using the GUI.

Everything worked like a charm, according to the logs:

Sending BasebandData now... Done sending BasebandData Updating baseband (19) Updating baseband (19) Cleaning up... Done: restoring succeeded! FutureRestore process ended.

But my device is still in recovery mode. I've used —exit-recovery but nothing. I've also tried some tools, but I got no luck. Is there something I can do?

can you send a log

a full one

if you used the GUI it will be in the [homedirectory]/FutureRestore GUI folder

Can I send it privately? I suppose there are sensible information about the device, in the log

sure

What does choose build manifest mean

dw about it

if you're using latest

ok

i wont choose it then

Also, what does the debug option mean

gives you more output in the log

helpful if you come across an error

ill turn it on

redhat is the stupidest thing ever

you need a subscription to fetch from default repos...

luckily they have free subscriptions for individuals but like it took 30m to get the vm registered

i mean finally

Lol and I can't even test FR because precompiled doesn't work on red hat

vmware fusion is being really nice :) no need to download from sketch website, I can literally just drag and drop the installer. it just created the image and it just works

pog

I want to thank @zealous bridge publicly. He was so kind, he helped me patiently, explaining what's wrong in my futurerestore process. Now I'm finally on iOS 14.3. Thank you Tanbeer!

pog

taurine ipa got leaked

no way

some ppl have it

dont use it if you get it lol

wha-

probably buggy ah

nah

nobody knows who leaked it

plot twist cs did as a "public beta"

Lol jk

plot twist: https://twitter.com/Adams___family/status/1376561967465431042?s=20

found the leaker

Lmho

i feel like if it was real they would have removed it

folky r u trolling

WAIT WHAT

IM FAMOUS

uk thats the odyssey jb rebranded

lol 1 like

not rly

lol

the real leaker is someone else

still like a lot of impressions tho i bet

the ones i uploaded are odyssey and u0 rebrands

this is what i call famous

true

lol eh

froggy with the clout

^^^

in other news I got vmware tools working on mac, resolution changes to whatever you want which is where virtualbox failed horribly

retina on retina

lol

mojave :)

oh it seems to be having issues with network

oh because I'm a dummy and forgot to implement the windows fix in mac

awesome working

Is the FDR error fixed for the A11 devices or not yet ?

to which version

14.4

TO 14.2 OR 14.1

no

14.3 works fine though

14.3 SHSH BLOBS I FORGOT TO DON'T REGISTER

Mee too! Got help from him. Nice guy. 🙂

true fame right here

😊

Looks interesting. Which image you are referring to? I wish to try on my VirtualBox. Thanks.

Mac App Store > MacOS Mojave. Literally only had to drag the "Install MacOS Mojave.app" into VMWare Fusion and it did it all for me

Well. My windows machine is slow. Can't afford to run osX.

ah lol

Thanks for the info. But I can try a virtual hard disk on my sd card. That one is pretty fast.

how much space is on the SD?

Let me see how it goes. Thanks!

230 GB. Big one.

ah ok

good luck!

It's Class 10 or something like that. SDXC card.

Thank you!

Probably forgot something but
https://github.com/CoocooFroggy/FutureRestore-GUI/releases/tag/v1.70

poggers

new update

can confirm this native file picker pogness

i would like to see an update checker

for?

and to update without uninstall frgui first

frgui

u mean this?

yes

oh wait

its already there

im dumb oops

..lmao

new installer will automatically uninstall old

ah

also, is it possible to reuse the old download for futurerestore when restarting the gui

because i have to download it everytime frgui restarts

smart i can add that

or does that get cleared when closed frgui

ah

nah it stays

rip

time to clear it

i probably have like 8 futurerestore.exes there

actually, somehow it has one

it overwrites

because overwrites

ah

hopefully the guy who leaked taurine gives it to me

so i can run fr

Hi I'm having trouble upgrading my iPhone X from 13.6 to 14.2. It keeps failing in the FDR stage. I've read on here that others have had the same issue. Is there not a fix yet? Thanks

no fix

Forsure. Thanks for letting me know. Do you think it is something that can be fixed? Or something with the A11

nope

Can i use FutureRestore without SHSH blobs?

no

bruh

oh

whole point of futurerestore is saving signatures which can be reused

lmao

But i can save my SHSH blobs on https://shsh.host

it asks for an APnonce

how do i get that?

yes you can save blobs for the currently signed versions

yeah

use [TSS Saver]]

ok

[[TSS Saver]]

this app ^

Im not Jailbroken

what device are you on

Iphone 11

can't save blobs without a jailbreak

oh

for now at least

ok then

if you have experience with python

you can try https://github.com/nyuszika7h/getnonce

Could i use it with Python Launcher?

Python Launcher?

the one that lets you choose between multiple python versions?

i dont know

..

i just know it can execute python scripts

if it can do that then yeah

all you need is to execute it and install dependencies if it has any

ok

how do i install this xmltodict

pip install xmltodict?

can't you just do like python getnonce.py or does it not work like that

yeah

pip install xmltodict

ur forgetting about dependencies

nyu or someone should make a tutorial

but ye

oh ye

theres that

https://github.com/libimobiledevice-win32/imobiledevice-net

u need this

i think

or is it smthn else

imma try it now acc

doesnt work with jb but lemme see if i can get it running

when you run wget but it saves html

lmao

lol

I know how

now

U can get it with itunes

?

do you really need to compile libimobiledevice

ffs

u can get your ApNonce with itunes by backing up your device. Now open the path on your computer. There will be a lot of folders there. In all of the folders, there will be a .plist file. On if the plist file contains your APnonce

apnonce != generator

no it doesnt

lol

and u need both apnonce and generator

damn wth

how do u get idevicediagnostics

im doing it now i'll share a list of commands when im done

i think i know how

alright

but its c

so

idk

pog

i got it to work

easy

i was just dumb enough to miss the file lol

https://github.com/libimobiledevice-win32/imobiledevice-net

go here

download latest release and extract

and place the idevicediagnostic.exe inside the getnonce dir

and run

why no linux version

im pretty sure u can get it from a repo but ye

i kinda want to try it with my mother's 12

but prob not lol

linux has to compile libimobiledevice

lmaooooooooo

only way i think

lol

just reboot

or wait

and go to windows to try

i was using wsl anyways

or

they could just compile that

There's a PPA you can use, https://launchpad.net/~quamotion/+archive/ubuntu/ppa, which provides compiled versions of libimobiledevice for Ubuntu 14.04, 16.04 and 18.04. Most Linux distributions also include a libimobiledevice package, but that may be outdated - be aware.
https://stackoverflow.com/questions/52231301/is-there-a-precompiled-version-of-libimobiledevice-that-i-can-distribute-with-my

what you sent

libimobiledevice-dev

yeah

but i dont like it

used it before and its kinda iffy

got the apnonce fine

[+] Rebooting device
[*] Waiting for USB device (make sure the device is unlocked)

yh its gonna be locked during a reboot ikr

Lol

uh

tf

got the apnonce but didnt get the generator

wow my apnonce changes every single reboot

mad

lol tf

What's a Baseband

firmware component

How do i get that

How to i get it?

wdym

FutureRestore asks for it

just use --latest

use latest flags

use latest baseband

send screenshot

download extra ram + baseband from appel.ocm

oh shite

omg

imagine if that worked

bruh

*imagine

it got a pair

now time to see if its valid

Does any of this works?

pair, like generator and apnonce?

https://github.com/search?q=APnonce

yes

no

pog

@celest basalt what version are u futurerestoring from and to?

bruh unc0ver wtf

?

use dimentio to set generator

got stuck on 27 and refuses to open now

and check if apnonce matches

no

ik that

reboot

and try again

phone aint even turning on now

tf

is it in recovery?

lol imagine if it got unsigned

no its fine now

aight

try again

finally

pog

Note: This is not intended to be used on jailbroken devices, as it will make the device set a new random generator instead of using the existing one.

hm

idk

it probably wont work

restoring root fs should do fine

i aint boutta install all my tweaks one by one again

bruh

uh trying someone else's phone

fingers crossed

trying now

pog

rip

apnonces are completely different

wtf

uh is restoring rootfs worth it for this

try someone else's phone

dont have any other a12+

damn

Could you downgrade to unsigned ios without SHSH blobs?

yes

no

how?

?

How?

you didnt say unsigned first

no

oh

ok

Is Taigone a scam?

what

what?

is this a scam

stop using weirdass shit

https://taigone.com/

yes

its a scam

ok

999999%

when will taurine be out?

when it comes out, it wont support 14.4+

im dying lmao

oh

lemme try one more pair

still doesnt work then maybe i will sacrifice four hours to test

filtered

so

100% a scam

ok

Then how can i jailbreak my Iphone 11 on IOS 14.4

you can't

aw man

i just found coolstar's offiial website

@green onyx

look at that lmao

wow

wait wtf

detected different apnonce but same boot nonce

why is the apnonce different

ye

yeah why

worst thing is

none of them are right

haha

@celest basalt

no dont ping

whats wrong lol

its not meant for jb

oops

lemme try rootfs

wait, u didnt restore root fs?

no

i said

i'll try one more

lol

ah

If there is two ApNonce the Tool generated, wich one do i use?

yeah I mean it should still work but it will set a completely random generator

that's weird how the BootNonce stayed the same there though 🤔

is that A13?

ye

wdym a random generator?

one that doesnt match the apnonce?

no, I mean it disregards whatever you set like 0x1^16 and makes it set a new one

oh

why are none of them right then

weird

the second time i didnt have my phone unlocked...

could that impact it?

tried to research if anything already existed and literally my own irrelevant post came up -_-

I might push the new version I've been working on which does some validation by double checking the nonce in recovery as well so you can test that

havent restored rootfs yet, maybe trying again from an unjailbroken state will do something

shouldn't affect it, it only needs to be unlocked manually after the device reboots

yeah i noticed that

if the device was already unlocked once since reboot and it's already paired then no issue

ok i got a new pair

that won't help, what could help is manually clearing the generator but I don't think you can do that with u0 on iOS 14 atm

@vivid nova Took over a week but finally added your file picker

i rebooted which cleared it apparently

Ooh?

I had to checkra1n my device to do sudo nvram -d com.apple.System.boot-nonce

which clears it

different apnonce means its cleared right?

dimentio uses libkrw so it's all good on u0 but the nvram conmand doesn't

BRO

YOU ARE A LEGEND

NO WAY

depends, if you reboot and request nonce again in normal mode it will change the generator

you should test it in recovery - if two subsequent recovery checks return the same nonce you have a generator set, if they're different you don't have one set

(you can just do noncestatistics -t 2)

why was the boot nonce a char short tho

lmao

lol 15 digit generator

poggers

that was completely random tho

oh interesting

nyu, publish it

I should probably pad it but seems like dimentio did it automatically

happy that it worked, was confusing af at the beginning

it's already a public repo, but it will probably be integrated into blobsaver rather than me making a separate GUI tool which I'm too lazy for atm

ah

blobsaver v3

I wish blobsaver had unlimited presets

my code can also help for jailbroken users if you just skip the "get apnonce in normal mode part"

Restored to using a script now..

who has unlimited devices

like it can verify that your generator was set correctly

who has more than 10 devices

A TV saving for multiple users whom easily forget

oh haha

bc if the nonce keeps changing in recovery then the generator wasn't set

ur saving blobs for ppl?

Indeed

wtf

Giving people every chance they get to downgrade when updates screw them over

scripting it is better anyway, you can put tsschecker in a daily cronjob

Since when were ios updates released daily though lol

Even that's overkill

weekly maybe but that's cutting the signing window close

well

actually nvm

a new version will be signed for long enough to catch it

new (not yet published) version of my getnonce script works like:

• Are you jailbroken? (y/n)

[skip if jailbroken] get apnonce in normal mode
reboot to recovery
get apnonce in recovery mode - error if mismatch
send reset command in recovery
get apnonce in recovery mode again - error if mismatch
reboot to normal mode
get generator

I feel like good timing would be if @swift elm does something to check and save blobs every app resign

whos @swift elm

wrong tag?

some people dont set generator before saving blobs, maybe you could add something that ensures they’re valid

(When jailbroken)

yeah this makes sure the generator was set

could also add an img4tool verify step though

we had a conversation on reddit which moved to discord which moved to him developing a PR for altserver to save blobs

#futurerestore-help message

but that would be in blobsaver not this getnonce script that doesn't save any blobs itself

altserver?

yes the signing app

hm

actually I wonder if you can get apnonce and generator from a sandboxed app

While jailbroken yes

don't know if I ever got back to you but he made it

https://github.com/joshblah555/JoshTV/blob/master/SEPChecker.json

no I mean something like MGCopyAnswer(@"ApNonce") and MGCopyAnswer(@"BootNonce")

like idk if the info you can query from MobileGestalt over USB is more than what an app can get

I was going to say, you were talking to me about that Pythonista thing haha, that;s the first thing I thought of

I should try there actually yeah

#futurerestore-help message

which writeup was he talking abt?

one sec

https://www.reddit.com/r/jailbreak/comments/m3744k/tutorial_shsh_generatorbootnonce_apnonce_nonce/

haha ty

that one ^

woa

im def reading this

underrated post tbh

if you have any questions, feel free to ask here :)

k summary of what we can and cannot do.

Cannot save ≥A12 blobs if you haven't ever been jailbroken: We can only save useless blobs at any time for any phone. We can get the nonce but not the generator, so we cannot recreate our blob's state on our phone.

badum tsh

yeah ofc thank you !

ok ok ill edit

Maybe you should wait until the new release

I'll update if nyu releases something else

yeah

this just crashes the app 🤔

ignore the filename

I reused another script for it

can you use flex for logs or something to see why it crashed?

I'll check if syslog says anything

@lilac wren is it possible for frgui to localssh and set generator?

yeah I was planning on usbmuxd

since it would be plugged in for FR really

ah i see

pog

wasnt that part of your “super ap nonce mismatch fixer” idea you had a while back lmao

yep haha

waiting on conan's api >:(

@green onyx

ah i see

poggers

or make ur own api

but probably a lot of work

I was gonna scrape lol but he said no

bc ad revenue

oh ye i remember

how do you get ad revenue from an API

misunderstanding, Conan doesn't have an API bc he would lose ad revenue

just make it paid after X requests

nah, dont make it twitter v2

twitter api is paid iirc

only certain endpoints like premium search

Lol you think a user of some tool is going to sign up for a 1conan api access and even pay

no the idea would be that you pay and hardcode the token in the app, though if it was usage-based pricing someone could abuse your token to spam requests I guess

so... the dev who's making free software... pays

at that point I'd say get your own blobs from conan, shsh host has got you covered

or we make another entire blob saving website

Very informative writeup. Thanks. ( Checked the sha-384s and sha-1s, you've got correct ones! 🙂 ).

good to hear :)

i never got to turn my generator to an apnonce simply from hashing alone

I think i did something wrong with the aes keys

@red sleet if you want, feel free to update the guide. Java isn't necessary anymore, Mac is the same.
For windows, it's not an .exe anymore, it's an installer.
Linux has a few options now.

Check this out for more info
https://github.com/CoocooFroggy/FutureRestore-GUI/blob/master/README.md#installation

aight

why is windows now an installer?

bc Windows is dumb and can't pack any files into an Exe

so it has to link the JRE which has to be installed somewhere on the system

oh true

Mac and Linux, the JRE is just inside the .app

smort

going to try and build a 32 bit deb rn

why does this zip get bigger every time i try to open it

I actually removed like 3 dependencies and added 1

oh

wow that's weird

reminds me of that zip bomb thing I saw on youtube

Is it cause i had a zip inside of a zip

lmao

Thing keeps getting bigger lol

I packed this myself as well

lol

weird it was around ~ 4GB

Lemme keep opening it

use tigisoft repo

it is

do you have all the deps

and 64bit version

lol it crashed everything lol

it extracted tho

interesting

zero padding

need to take care of that there too, not just for the generator

ah

are apnonces always the same length or does it vary

no its always substringed i believe

on A12+ anyway

is this a user error

hashes are always the same length anyways right

it's my fault

actually, A10- uses SHA1 (40 chars) and A11+ uses SHA384 truncated to 64 chars afaik

Yep

I could just check if the lower 24 bytes are all zero after padding I guess

Except that A11 encrypts the unencrypted generator and A12 encrypts the encrypted generator

Both 64 chars tho

yeah but it's always the same length

40 and 64 is not the same length..

ah I misread the original question

can't find a 32 bit java 14 or later

or jpackage at all

Does futurerestore even work with 32-bit

Lol good question

‘32-bit Windows is not supported’

it's for linux anyways

but yeah probably not then

lmao

fr doesnt work with 32bit?

i mean

isnt 32bit eol

yes

32 bit old shit

at least on pc

does I need to be jailbroken to use futurerestore ?

yes

Yes

heLLO GUYS!! halp me now. I have no shsh blubbles. i am on 14.5 beta 5 iPhone 12 pro max mini. can I futurerestore to iOS 11???

ugh so slow

will ping all geniuses

@Geniuses™

@Administrators

true

!warn @lilac wren 50 unnecessary ping

:(

lmao

lol

No but you can download from appol.com to futurerestore to iPhone 14 from iPhone 7+

LMHO

iPhone 13 broken rn

ok where do I download a faster processor

I wanted M1 on my phone