simulating the reconnection wont work

Wait why not

I'm gonna try it

alright

@zealous bridge o_O
https://reddit.com/r/jailbreak/comments/nv0p02/help_stuck_in_a_bootloop_after_triggering/

LOL

deleted /tmp

Bruh one next to the other

https://reddit.com/r/jailbreak/comments/nv3aay/help_taurine_105_boot_loop_after_crashing/

I am getting Unhandled status code 162

cam amyone help?

I mean userspace reboots are a disaster it’s appearing

Weren’t Hayden’s and CS’s from userspace rebooting?

@zinc moon well do you want to update the guide with 1.0.4 instead

Because if 1.0.5 is causing massive issues we shouldn’t recommend the version imo

Use the pinned version of FutureRestore

Latest Linux build or Mac 2.0.0

For?

I’ve personally seen a lot of issues with 1.0.5 when checking Sileo server and #taurine

I was using one with GUI, I am trying again with terminal this time let's see how it goes.

Just indefinite BSOD, Consistent BSOD despite no tweaks being present, and the rare bootloop after userspace reboot.

[TSSC] opening /tmp/futurerestore/basebandManifest.plist
[TSSR] Checking BuildIdentity 0
[TSSR] Selected BuildIdentity for request
[TSSR] User specified to request only a Baseband ticket.

[TSSR] Found undocumented baseband

Request URL set to https://gs.apple.com/TSS/controller?action=2
TSS server returned: STATUS=162&MESSAGE=An internal error occurred.
ERROR: tss_send_request: Unhandled status code 162
Sending TSS request attempt 1... Request URL set to https://17.171.36.30/TSS/controller?action=2

Is it happening because I have a virtual sim as well?

I don't have big sur

@arctic valve did your bootloop by chance happen after the userspace reboot by the way?

Yes

That’s Sierra through Big Sur

had this

then taurine boot screen

and it kept repeating

I tried hard reboot then got into boot loop

was able to get into DFU then tried getting out thinking that it would fix it but had to restore my device eventually now I am on 14.6 trying to downgrade to 14.5 so if webkit jb is released I'll still have some hope.

You can live boot linux and use the GUI with the pinned FutureRestore

taurine 1.0.5 shit?

brb, gonna use 1.0.4

My nonce is set I'm risking 1.0.5

probably to be honest

not sure if I should tag CS about it

I'm new to all this

Do I have to be jailbroken to downgrade?

cause I have my original nonce

and the one I set after watching a video on youtube

so after restoring I believe my nonce has been set back to what it was or will it still be 0x1111111111

Yeah you just need to have your generator set to the one in your blob

You might need to jailbreak to set it if you haven't yet

When I was jailbroken I did set my nonce but my system was corrupted and had to restore now I am on iOS 14.6 and I have blobs since 14.4.2

and I am trying to go back

to 14.4.2 or 14.5

yes

yeah he is

I recognized him

I have my original nonce

Your nonce has changed though

I saved it before changing it

Ohh it regenerates

fml

so there's literally nothing I can do?

@zinc moon has a similar issue of userspace reboot killing devices on 14 been found occurring at all on u0 that is not the result of an outside factor

Userspace rebooting in general while using that jailbreak

just to make sure, am I totally screwed?

Cause what I’m wondering is if it’s somehow the way userspace rebooting in Taurine works that is fucking with /var occasionally

We know it’s a /var corruption of some type (likely more) and we know that springboard and backboardd also refuse to start again if something like this happens so

What device

did u ever delete /var/tmp?

12 pro max

no, but we know CS had it happen and was able to get logs which said the springboard stuff mentioned above

Nonce retention works on A11 and lower but we haven't tested on A12+, you should try FutureRestore to see if the nonce stayed set

@arctic valve do u have ios 14.3 blobs?

And dfu updating alone didn’t even revive it for CS I’m pretty sure

They’re a 12pm

yes

They can’t even do it.

It's giving me ```[TSSR] Checking BuildIdentity 0
[TSSR] Selected BuildIdentity for request
[TSSR] User specified to request only a Baseband ticket.

[TSSR] Found undocumented baseband

Request URL set to https://gs.apple.com/TSS/controller?action=2
TSS server returned: STATUS=162&MESSAGE=An internal error occurred.
ERROR: tss_send_request: Unhandled status code 162

They’re on 14.6 now

nonce could be set

specify bb and sep

They already dfu restored

oh rip

nvm

https://tenor.com/view/dramatic-cry-will-ferrell-gif-13298637

You need to used pinned FR, "Latest Linux build" that has fixed for A14

I used that one

I used this command

future restore -t shshblob --latest-sep --latest-baseband IPSW

Try this one
#futurerestore-help message

Okay

[TSSR] Selected BuildIdentity for request
[TSSR] User specified to request only a Baseband ticket.

[TSSR] Found undocumented baseband

Request URL set to https://gs.apple.com/TSS/controller?action=2
TSS server returned: STATUS=162&MESSAGE=An internal error occurred.
ERROR: tss_send_request: Unhandled status code 162

got this error

Ok you could try specifying SEP and Baseband manually for 14.6

Don't take away that hope from me

How can I do that?

yes

And how can I know that?

Download ipsw for 14.6, unzip it, look in BuildManifest.plist for your device's boardconfig for erase restore, then find SEP and Baseband firmware paths

@arctic valve before you do this

Okay

Go into recovery and do irecovery -q, reboot, do it again and see if the nonce changed

Tanbeer DFU restored and nonce didn't change

Actually I think it was recovery restore

Yeah

I am in recovery mode

tss saver

sire

site*

I have hexadecimal and all that

I did set it to 0x111111111

I am in recovery, how do I check now?

On it

https://formulae.brew.sh/formula/libirecovery

This is not it lol

Yes I am on mac

brew install libirecovery?

zsh: command not found: brew

Okay, I feel as dumb as a rock 😂

done

it is installing

While it is installing I would like to say thank you for helping me out with this I really appreciate it 🙂

Downloading Command Line Tools for Xcode

ofc

@lilac wren Thank you very much for helping me out with this I had totally given up but tanbeer was able to do it

and I hope so can I

Oh lol

it is still on Downloading Command Line Tools for Xcode

that's an interesting experiment

I'll go get something noodles made me a bit hungry brb

@zinc moon by the way I asked CS about how their bootloop exactly went just now

so we’ll see how that goes

Cause if it’s a 101% match then yeah I think we got a link

I am back

Tapping homebrew/core

yes

done

I'm doing irecovery -q

NONC: 7caf9b682c0373cb5fb81ff7af9dd70c171ef399799207625459feb0d32956a1

different nonce I guess

@zinc moon I assume this means nonce reset?

f indeed

thank you for trying 🙂

I'll have to stick with 14.6 for a while now

If you reboot then go back into recovery and read nonce again is it different though
@arctic valve

Okay let me try

hard reboot or regular?

If you're already in normal mode just go into revovery

If you're in recovery then hard reboot to get out or "irecovery -n"

It changed

Dang

NONC: d81148a3c5ee7464691c7f860d974023b1ea63423b92dfa5a74053863a1ed95b

So no generator set

Set one now with blobsaver v3

https://www.youtube.com/watch?v=32ddyXJPWAM&t=174s

this tutorial works?

Uh

Idk youtube is usually wrong

!t blobs I’d just use this

!t yt

lol alright

https://github.com/airsquared/blobsaver/discussions/242 ?

I think it already got released

https://github.com/airsquared/blobsaver/releases

SeemsGood

I got a generator value

can't I use that with my old blob?

But it reset my nonce so I cannot right

No you can't use your old blobs until a jailbreak to set your generator to 0x1111111111111111

got it thank you

about that, with dcsd cable and magicfg tool can you set this nonce, or must be jailbroken too?!

No clue what magicfg does but it's just an nvram variable

He use nvram stuff this why i asked about that 😅, but im not sure if need jailbreak first to do that or you can do it on purple mode

https://magiccfg.com

If you can unlock kernel only NVRAM vars and set custom nvram vars then maybe you could do it with that program?

never tried before even i dont have dcsd cable

its not worth it

anyways

chances are, nobody has those cables

There's already checkm8 nonce setter I think

@zinc moon When I was in DFU in jailbroken state when my system was corrupted was it possible then to use future restore with saved blobs to install an unsigned os?

You would need to be able to go to recovery mode

^

and ur nonce must still be set

Yes I was in recovery mode

it was set

yes but nonce can change inbetween reboots

at the point,

u shouldve tried futurerestore if u had ios 14.3 blobs

I didn't have 14.3 blobs I had blobs from 14.4.2

You probably should have done it then

DFU restore is probably only smart if you need the device immediately or it's checkm8able

tbh

at this point

hm

nvm

Okay

Gm

Gm

hello everyone 👋

Gm

Recovery*

Yeah

Try dfu

And ios 15

DFU shouldn’t work because seperate nonces

Does getnonce work on 15?

@lilac wren apparently you need a mac to restore to 15.0 beta 1

Idevicerestore should work

Yeah but we're seeing if it messes with the nvram var right

#jailbreak message probably should add that here then

Gonna just add it to common issues

But you don’t need a Mac to update afaik. Worked for me on windows

But idk if that’s because I have Dev

Idevicerestore failed to update on Linux

Wasn’t one really. It just got to “sending PersonalizedData” and never went pass. My iPad crashed and I was in recovery

Old idevicerestore

Ah

Welp I’ll add it to common issues

nyu’s latest static should work

here

!t libimobiledevice

Idk if it has the DFU fix

yeah, if you try to install from Ubuntu 21.04 apt you'll get that with 14.5+ at least

TIL, ty

imagine updating to a beta and wondering why sh!ts broken...

whos questioning this?

Also @lilac wren where I do the dumb at?

where are you downgrading/upgrading from

14.6 to 14.3

lol

wifi-only?

yep

Something is unsigned?

old fr version

lol

you need to use the test version

Why did it download an old version?

oh

its not

its latest release

Ill just do this via terminal lol

idk what im doing

Not gonna change the outcome

everything is fine

just use v208

^ just select that one and click start again

or v2.0.0 as its now being called

I think he's linux

So the one pinned or no

It's in pins

Yeah

194 is outdated for ipads @full osprey

v2.0.0(212) is the latest version

So im basically just pointing the gui to the bin?

yeah

yes

bet

Yes I like 15

whats weird about it

If I didnt reboot do I have to restore or can I just continue

well I guess I cant reboot

dude

but you know what I mean

its literally the commit count

number of commits

thats why I switched to versioning because even you got confused

@zealous bridge you posted a message earlier and then deleted it why

Wow

saw someone saying ios 15 got pulled and asked about it here but apparently it was a joke

Illegal

ikr

Unfortunately all the seps are encrypted

Probably said '3u is best for downloading ipsw's'

Apple didn’t goof

wow rip

you can still get a12 keys tho

i think

Reverse

using your special device

pog

Nice

It was severely cringe that it was closed source

Because coolstar is a clown sometimes

lol i saw classicfolders3 was proc only

on purpose

propietary ui tweaks

tf

libhooker only

not proc only

oh lol

and yeah it being libhooker only is stupid

What’s next for fr

Like what should be fixed or added

Personalizing IMG4 component iBSS...
Sending iBSS (261883 bytes)...
ERROR: Unable to send iBSS component: Unable to upload data to device
ERROR: Unable to send iBSS to device
ERROR: Unable to place device into recovery mode from DFU mode

why is this still a thing

how have they not fixed it

Because lib irecovery is dogshit

It’s so fucking difficult to fix Mac, Linux, 32bit, and 64bit all in the same code

Help please lol @shy magnet

No

i began working on an ipwndfu rewrite in python3

but haven't touched in months

I’m 32bit mf

uhhh wyn

bruh

its python 2

why does usbmuxd break with manually compiled libirecovery

and there's some shit that isn't necessary at all

this is so ass

deal

brb

Sending iBSS iBEC in pwn recovery is super inconsistent and if you fix it on one host it breaks the other and if you fix one device it breaks the other @shy magnet

how do i even do a dfu restore now :/

whats the current process of dfu -> pwnrecovery rn?

This is all caused by lib irecovery being terrible

rewrite it

in rust

@shy magnet pwn brom, send pwned images

some SoCs need their connections reset

prob just reset connection then send images?

Let’s incorporate a fix then

No

It’s not soc specific

And that’s not the issue

Pwn recovery assumes the user pwned dfu properly

Meaning images are already reset

And it still fails

Because lib irecovery is dodo

@shy magnet

cant we just copy irecovery code then

cause sending images there works fine

Try it I guarantee if it works for 64bit it will break 32bit and if it works for Linux it will break mac

monka

The same issue plagued windows non pwned

Lib irecovery is just bad

windows is just shit

It’s lib irecovery because iTunes uses the drivers just fine

what file is the code in i’m too lazy to look for it

void futurerestore::enterPwnRecovery(plist_t build_identity, string bootargs){

it can't use normal irecovery stuff because it sends the patched files via byte buffer, not directly extracted from ipsw

ah

@zinc moon it shouldn't take long hence why we should switch to rust

Why don’t we just make futurerestore in Python /s

it scares me that its possible

@valid adder what devices does it fail on rn

fails on my iPod 5 currently

works on 64bit at the moment

a6

wait

a5

im dumb

@zinc moon a5

yes I've had it since launch

@shy magnet enterPwnRecovery works on mac for 64bit, but breaks on mac for 32bit but if we fix 32bit it will break 64bit

so we need a fixall solution

what's the "fix"

for 32bit

no idea

then how do we know itll break 64bit

already done

lemme check

209

u stupid fuck

quit complaining about 194 issues

@zinc moon but do look for other strings in 212 that are legacy or redundant or have typos

pins

first pin

must've been something here? https://github.com/tihmstar/futurerestore/commit/292fca0e0260dac8d5a590c06c288c25fc69f793#diff-53f14ca144abb7c3ab898177f891e9ea4253a6c68fb469c5477ff98077d91a03

but the irecv_send_buffer() call was never changed

idk

Not even southwes?

the only ones i know of that were at least relevant were mine'

southwes's

and encounter's

whats special about encounter''s fork?

i wasnt in the jb scene back then

it fixed ios 11 support

i think

or some shit

damn

@valid adder tbh not sure where the issue is

@shy magnet its iBEC

oh

dumb

its always iBEC

always

LOL

because of how shit libirecovery is

fork it

why would you link a fork with no commits

@lilac wren idevicesetnonce works on 15

but does nonce stay after restore

thats for every project

idevicerestore recovery restore

yea

OOH

that's amazing

what

damn

wtf

wait

does getnonce work

on ios 15?

nyu's mobilegestalt thing

ideviceinfo -k ApNonce, booting to recovery, restoring, keeps the same nonce

even post-restore

pog

@shy magnet the problem with 32bit, ibec sends fine but fails to reconnect

yes

have iboot32patcher patches changed at all in the past like 2 years?

patches are fine

this is iOS 8

https://tenor.com/view/throwing-dice-quavo-trouble-popped-dice-roll-gif-17702925

tihm code success rate

at least kloader works almost everytime

again, fixed

https://github.com/tihmstar/futurerestore/blob/4a8cabbe556d264df17379372f01f0523ba8d6c4/futurerestore/futurerestore.cpp#L460 mb sth inbetween there to the end of the function works for 32bit?

@valid adder

https://twitter.com/ren7995/status/1402332455634341899

how tf did they get a jailbreak

*checkra1n

^

simulator

dumb

oh

checkra1n works in a sim?

shows it in the screenshot

no

jb

you can run tweaks in the shim

tweaks

by itself

ah

i see

thats cool

ok

on >iOS 8 it resets the connection after sending ibss

maybe thats it?

have you tried a 9.x pwn restore @valid adder

cs made a compatibility layer

what

yep

yea

because of the backlash

@zealous bridge look for legacy strings

@green onyx u too blue boy

i have 2 exams tmr

hell no, not rn

lol

joes

pwned doesn't currently support update restores

isn't it supposed to be mobilegestalt?

its the same thing

ideviceinfo will call it

@zinc moon doesn't matter

every kind of restore helps

we are improving fr

its either
idevicediagnostics mobilegestalt ApNonce
or
ideviceinfo -k ApNonce
only difference is the former has it in a plist, while the latter only prints out the b64 by itself @soft turtle

what so i didn't need to write all that extra JNA code???

dang i wasted so much time

if only i could fucking get into pwndfu consistently, fucking ryzen

@shy magnet found the bug, in futurerestore main, build version is correct: 8 but in futurerestore it reports 12 lol

rip

@zealous bridge works consitently with serial + kanzi

thats my only fix

omg i just looked at code and it's a simple lockdownd_get_value

yup

somehow futurerestore thinks my device is on iOS 12

still probably wouldnt work on linux

o lol

lemme see

noob

jk

people overuse the word bricked

If im building from scratch on linux where is everything updated at I need?

I've had a migraine for 3 days straight

without a valid sep you’re gonna get bootlooped yes

touchid relies on sep to encrypt biometric data

Also

Why are you digging out posts from 3y ago

basically you body decides you are in a bad condition ahead of time and will delay the headache by a few days, the headache can last multiple days

yes

so 208 is the one im using then?

I was told 200 earlier

not that it matters, u should use 2.0.0 212

where is this for linux

building soon

@valid adder can you add linux static to CI

since thats easy

yeh ill try

after 32bit is fixed

how tf imma use it then my guy lol

alr

208 is new enough afaik @full osprey

bet

@shy magnet im dumb 12 means build 12 iOS 8 is 12

o

rip

wtf is build 8 then

like >7?

fr has no many thing that can be changed and improved

?

@zinc moon @stiff hazel pls explain this

Yeah

idek

@zealous bridge your discord is fucked and I have no idea why

you sure you guys didn’t just… merge

no?

This

They are the same person

mike is dabezt?

def

stop hiding it

LOL

Told you

They are becoming one

they are the same

wait mf ain't using light mode something is wrong here

omg ur right

I was using Chrome which doesn't change

according to Mac

F

here have this

just rewrote the entire enterpwnrecovery

my eyes ...

didn't work

because libirecovery is shit

they're swapping

https://tenor.com/view/bh187-bill-and-ted-bogus-journey-bill-and-ted-excellent-air-guitar-gif-21841749

@zinc moon wen eta changing ur cringe pfp

it aint cringe

I think hes emma

the guy with glasses

huh

wtf

i refreshed discord

and got this too

YAY

uh what

why don't you make one

a pfp

:(

code=13762568
line=210
file=main.cpp
commit count=194:
commit sha =0ab9df3209ee599f581532d05d331e6abe0f53f3:
ERROR: Device is in an invalid state
FutureRestore process ended.

help

Get it out of DFU mode

It’s not gonna work in DFU

If auto-boot is false

how to fix it my fone keeps on rebooting

Bootloop?

try to get to recovery mode

or recovery mode loop

does checkm8 nonce setter work in recovery

bc checkm8 works in recovery

lol

nah it needs DFU

because ipwndfu

oh ok

so you can set it in DFU

i dont have a checkm8 device lol

It goes from DFU to pwnrecovery

and sets it in recovery?

yep

ok

yes because boot-nonce isn’t blacklisted

that's nice so if you're bootlooped you can set generator

oh wait

Yep

you can just go to latest anyways

Yeah lol

unless you bootlooped on iOS 13 on A11

Checkm8 users got all the protection in the world

in which you'd need to stay on iOS 13 to go to 14.2

this is why you save 14.3 blobs

true

and i love it

link please

does checkm8 nonce setter work with linux?

or is there a linux version?

for what

itunes?

@celest basalt https://support.apple.com/en-us/HT201263#sections

it does but you have to remove a lot of things

like?

what do u need to remove

device checks, macos specific binaries, strings

is there a linux fork?

https://github.com/MatthewPierson/checkm8-nonce-setter/blob/5e70b1c39f4d82ef8d2d0fa2f3520b1e68a299a0/main.sh#L58

getGenerator() {
  echo $1 | grep "<string>0x" $shsh  | cut -c10-27
}

bruh

bad practice

is that in checkm8-nonce-setter

lmaoooo

yeah

it's doing your thing

but bad

isnt that what i did

yeah

lol

oh i thought you changed it lol

great minds think alike

:|

i did

past tense

did you change it back lol

no lol

it reads from plist now like a dictionary

LOL

thanks

bruh checkm8 nonce setter literally includes igetnonce just to get boardconfig

IKR

is there no libimobile way

like they're already including irecovery

irecovery has it as well

bruh

BRUH

LOL

ITS SO STUPID

u could rewrite it for linux

i have one that works for linux

wut

But it’s modified a lot that suits my own need

I think it might be Mac only because of igetnonce or something

or irecovery

that is literally just committed in some folder there

but does it work?

i dont understand what u mean by that statement

what the fuck

I just entered DFU with USB-C

are u not suppose to do that?

it doesn't work with official Apple USB-C cables

seems normal to me

bruh

obv it works

its just pwndfu is shit for me

so I adjusted some things to make it less shit

oh shit

send ur repo

bruh

its a bash script

fr?

bruh

I legit just entered DFU with USB-C 3 times in a row

your usb descriptors are back omg

I'm afraid to unplug the cable in case it never works again

they could’ve fixed the accessory ID in tristar ig, i think they can do that with an ios update

checkm8-nonce-setter-linux eta son

can they? I thought the hardware fully takes over if you hold the buttons long enough

not for dfu i don’t think, you literally can’t enter dfu if there’s no power coming into the device

only issue is, DFU times out in like 1 minute

I thought DFU can be entered with just power?

not even pwndfu

I did it on XR with a non apple cable connected to a lamp with usb

just regular DFU

oh

but continuing to hold the volume down button seems to prevent it from timing out

weird

are u on ios 15?

yes

POG I NEED THAT

It should work with just power

can you just replace the irecovery and igetnonce with your built ones / static and see if it works

my ap exam is tmr

you don’t even need igetnonce

just remove that shit entirely

that's what I'm doing except I replaced igetnonce with ideviceinfo

echo that your device is supported anyway

that was what I did first yeah

@celest basalt did you have to adjust the timings for the script

nah

only timing that's wrong is printing new nonce

but that's non-essential

works without that

yay

for me after it set nonce and reset recovery it took wayyy too long to connect back to print new nonce

i changed sleep 7 to sleep 10 and it worked

sometimes it takes forever for me if the USB stack shits itself

rebooting the computer usually helps

lol nah it was kinda consistent for me

anyways it’s not gonna harm anyone if it waits 3 extra seconds

@celest basalt for some reason detecting device disconnect doesn't work at all

not like recoverys gonna time out by then

I think one time I had that thing where every step was sluggish as hell and checkm8-nonce-setter just never worked, only thing that solved it was idevicerestore in DFU mode

but usually rebooting the computer is enough

Nah it only took to long to echo the new nonce back to terminal, other than that the timings were perfect

just the last sleep 7 after reset was the problem

where are the patched ibec/ibss from

it’s probably uploaded somewhere, you can decrypt them easily with fw keys

iphonewiki?

yeah but who made them and how did they remove the blacklist on boot-nonce

that goes back to like redsnow days

and cfw

those days they burned so many iBoot exploits lol

https://github.com/nyuszika7h/checkm8-nonce-setter-linux

@lilac wren i think the iBSS is patched out of every single signature check, not just boot-nonce

is that a signature check?

I think that's just a piece of code

wait

I fucked up irecovery

the signature patch allows the boot-nonce to be set

like what was it called

img4 signature check can fully work on a demoted device with 3 patches 1 patch is needed for non demoted

FreshNonce

lol

are you sure

Yeah that FreshNonce patch is a signature patch, allows setting generator

yes it’s in pwndfu futurerestore

@celest basalt why do you have so much difficulty with freshnonce

linux?

yes Linux

the thing is

it freezes tf out

first time freshnonce patch, device doesn't reconnect after sending the pwned iBEC that sets generator

but then I pwndfu and start it again, sees the nonce is fine, so it proceeds to start the restore

@celest basalt lets just rewrite the function properly

pog

i love how non-cross-platform cross-platform some parts of fr is

lol true

@lilac wren petiton to make futurerestore gui's logo

Yeah I'm looking at libipatcher and I don't think it's a signature patch but rather it directly changes the whitelist/blacklist

It should still patch out the signature check when it’s loaded

otherwise it won’t run cause it’s not signed

:| duh

LOL you actually did it

sigpatch

genuis abuse

sigpatch isn't the problem why do you keep mentioning it

it’s not a problem lol

why do you keep speaking about it

bc he wanted to know stuff about ibss

and patching

I use one patch

I return 0 for image4_validate_property_callback_interposer

it is called for each property

istg this CPU hates me

it lets me enter pwndfu like once a month

otherwise it just claims interface and sits on it

yep

some ryzen dev is a fucking dipshit

so fucking stupid

i should probably do a stress test and get it to 70 C

@valid adder i don’t get why axi0mx implementation of checkm8 is so shit compared to the checkra1n teams version

checkra1n uses system usb

ipwndfu uses libusb

libusb is put in the backseat when it comes to system usb

for some reason system usb claims interface when it really shouldn't

its a ryzen issue

how hard would it be to rewrite ipwndfu with system usb

how's this guys

best I'll do

@zealous bridge not worth the effort just write your own exploit

oh, put our pfps as icons

like froggy can be in the face time one (top left)

Hey that'd be cool

Forrealstore

@zinc moon decide on a pfp

i always have good ideas 😎

LOL the parrot bot got verified

@celest basalt lol typical

I guess you actually need to send iBSS to reset usb even on 32bit

joe

lol what

@solid basin get ur geniuses in check bro

i bet i know who it was too

if a genius was doing something after being told multiple times not to

then that genius should be removed

ezpz

oh

i was wrong then

he’s gonna search his name and see this lol

i’ll make it easy

@storm apex hi babe stop being stupid kthx

“babe”

ok i am stupid tired

gnnnnnn

who’s the mod

why no checkm8 nonce setter for windows 🥲

but there is trick to do it i think, more coding sure 😅

the tweak of conan dimentio

no im not talking direct from checkm8

there is a trick to automate dimentio tweak

jailbreak with checkra1n to get ssh access first(usb live) all in windows, iproxy to device, mount rw, upload dimentio exec and dylib, then set generator all from fr gui 😅, the dev will hate me @lilac wren , i think always for windows user 🤪

i think this part can be automate too if no licence issue about the tweak of conan

im talking on windows future restore gui 😅, user jailbreak on windows with usb linux live, then go back to windows

this part on windows can be automate for checkra1n user(on windows), but more code for dev of fr gui 😅

there are no usb drivers for checkra1n as of this moment

because checkra1n needs custom usb drivers

@green onyx I sincerely doubt checkra1n on windows will ever happen anyways

I mean I’m pretty sure someone technically got it working but it was like absolutely garbage success rate

suppose I saved blobs for ios 14.5.1 while jailbroken on ios 14.0, and update to ios 14.6 or 15 beta, will it be possible to futurestore to 14.5.1 when jailbreak drops?

only on iPhone X or below (A11)

you need to jailbreak to downgrade with blobs

means you must be jailbroken to use futurestore?

yes

okay understand thanks

well, if a generator isn't set at all, then every reboot randomizes it, otherwise anything that leads to ApNonce being requested in normal mode:

• manual request with ideviceinfo/etc.
• checking for OTA updates
• iTunes/Finder checking for updates

i didnt say use checkra1n on windows to set nonce, i asked for checkra1n devices on windows side(live usb), if my device is jailbroken with checkra1n first, need nonce setter tweak(dimentio conan), i talked about make this tweak install auto over ssh to set this nonce automatically(user dont need cydia, add source, install dimentio, install terminal), can be one click but more code here(iproxy shit and others), this thought only for windows who dont have vm mac or hackintosh or real mac/linux to use checkm8 nonce setter on dfu, so for windows user there is alternative option but not like linux/mac, even checkra1n dont support windows yet, but need much more code 😅

yo how do i use ipwndfu on linux

i get this error when trying to run it

bash: ./ipwndfu: /usr/bin/python: bad interpreter: No such file or directory

i have python tho

anyone around to have a look at my shsh file , saved it with tsssaver on 14.2 , cant find the generator in the file to set my device up to it , tried 0x1111111111111111, but says not correct ??

I think so, that's what people said, but I haven't tested it actually

im on ipone x

downgrade to 14.2

13.5. 14.1, 14.2,14.6

noooooo

why got the 14.3, blob, check rain to set the nonce, surely it will , the error im getting is it says the nonce dont match ?

no

14.2

does ra1nsn0w work with devise? or only ramiel, pyboot?

yeah problem is

id have to use this crappy hackintosh which has an amd ryzen + b450 board

plus trash usb

i got ipwndfu to work on my linux intel laptop

but idk if i can use ipwndfu on my laptop and then continue with like ramiel or pyboot

well yes dynamic bins are even more problematic of course

if you're referring to my build the filename has "static" in it

well i booted to my hackintosh and ipwndfu works great on my linux laptop but when i try to boot the device i keep getting errors like "failed to patch iBSS -1" or "failed to dump device SHSH"

im trying to dualboot with ramiel rn

yeah idfk it gives errors

prolly cause im on a trash amd hackintosh

with poor usb support

theres legit nothing for linux which sucks

7

yeah i did

but when i have to like

select boot device

i select the ipsw

and then it gives me errors

like failed to patch iBSS

or failed to dump SHSH

or sum

wdym

tf

i dont have to do that shit?

well it didnt do smth before

maybe i need to wait a lil more?

yeah mac sucks hard without web drivers rn

ill update mac first so i can install the drivers

7mb vram

i wish i could hackintosh my laptop but unsupported gpu ig

@zinc moon ok so u just put the number in and wait till it boots up?

cause i did that rn and nothings happening

and my ipad needs to be in pwndfu

right

well i placed it in pwndfu and connected it to the hackintosh

put the number in and ticked apply AMFI patches

now im waiting ig

Uses lockdownd_enter_recovery

I try to use the native library instead of calling executables as much as possible

then i was told incorrect info

nvm ly babe

@zealous bridge look it's basically you

https://reddit.com/r/jailbreak/comments/nvrofq/

Since when do I rm -rf

you did rm -rf ../ or something

rm -rf ../tmp

i did rm -rf /var/root/../tmp/*

Lol

!t fr

!t futurerestore

if you meet certain requirements

Requirements:
Blobs saved for the version you want to restore to
A jailbroken iDevice
A computer with at least 8 gigabytes of available space (not including the ipsw)

:|

we should rewrite that

bc fr needs to extract the ipsw

nah if they've bootlooped themselves on checkra1n they should know how to DFU

?

i mean

?

~4-5gb IPSW

extracting rootfs dmg from it too

exactly

so why remove it

don't underestimate how stupid users are

Probably, but you need fw bundles

No point, they can restore to latest and downgrade anyway

^

Dont think he understood what you meant by that

yeah

They’re still fucking doing it @lilac wren

LOL

Scott

I can't dawnload anything in appstore can someone help me

I got Stephen

#genius-bar

ah jamf vs vmware

How long has it been tho

• Scott

should I be honest with him

and say we're jb'ers and this is the best tool for delayed ota

im gonna text him back then

here's the transcript of his last voicemail

Hey John, Scott Benson over at VMware. Hope all is well. Hey, following up in regards to the free trial request you submitted late last week for workspace one. It's all your name and come up a couple of times. I'm assuming you're having issues or challenges get access in there. So give me a call when you can. I'm your dedicated resource here. Love to get your hands on 470-247-6204. It's got over at VMware 470-247-6204.
what do I say lol

oh lol I thought he was mad that I made a second trial

"your name and come up a couple of times. I'm assuming you're having issues or challenges get access in there"

"YO WHY DO YOU HAVE TWO ACCOUNTS HM??"

why would you reuse the name

John Klay is best name

that was my fortnite name as well

one of my random teammates said "johnny klay is a clay" over and over idk why

is this with FR version 2.0.0

maybe the .'s are making it mad

wikiproxy

very very early?

it just died?

or you clicked stop

looks like latest pongo still doesnt have full ios 15 support

sadge

ik

but i wanted to try anyway

preview command and do copy

blob file

same as -t

lol

Segfaults loool

cryptic what did you do

Lol

my brother is a huge liverpool fan

pog

salad is best player

but wait does he say soccer or football

futbal or soccer

ew

wow racist i see /s

buenos dias juegos

goooooooooooooolasso

i swear he has a liverpool shirt for every day

bet he's wearing one today

no joke

lol

check and see whos shirt it is

is there a london team

you should cheer for that

yes but my dad took me to liverpool games when he was younger

if i didnt grow up with it i probably would support a london team

There’s news about the guide by the way

what news

• odysseyra1n may be integrated into A11 main charts
• Emma is looking into sponsorships for the guide, which would eliminate tracking ads and make the ads not rarely collide over/under objects, but in the process they would make it to where ads could not be (easily) blocked

cool

lol one of the first things I did on this server was bully capt with nyu

it’s not that obtrusive anyway

From Capt to JTV… why do you have such a grudge against geniuses

I only bully back

actually don’t answer that… i think i know the answer

self defense

denial

guess who the only genius who said FRGUI was useless was

#futurerestore-help message

#jailbreak message

just do it manually

fr though why do you have giant icons

nah

you cant freeze nonce in recovery

This is embarrassing

restore

ikr lol

gEniUS

literally

he pulled a JTV mode

confidently incorrect

JTV confuses me imo