Advertisement

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
How does setting the nonce work?
#1
Question 
I hear everyone saying you have to set your nonce before you can downgrade. What I want to know is, when I save a lot of SHSH2 BLOBS on TSSSaver, does each blob contain a different apnonce?
I have 4 folders for 12.4 blobs; Each folder says "apnonce-" and then a line of characters and number; The last folder says "noapnonce". I assume if I'm using the 12.4 blob from any of the folders that says "apnonce-" I should set my nonce to the characters listed in the folders name?
i.e. apnonce-d8f682df87d812c372491b613d59795a80383f439587c0bb511ccf6865eb87cc
What about the folder that says "noapnonce" what do I do then?
When I open the blobs in notepad and go to the bottom of the texts I see an area that says <key>noNonce</key> which I don't know what that means? In both apnonce and noapnonce, the blobs say that.
I also really don't understand whether if I should be setting my nonce anytime after Jailbreaking; Right after the first time Jailbreaking; Or only set the nonce when I'm about to start the process of downgrading and if this last one, do i just pick randomly between the 3 folders apnonce names? and after setting it to one of them. the other 2 are useless unless i set the nonce again but to one of the other 2? so basically  it must match with the blob I'm using?

Terribly sorry if this turned out terribly confusing...
Reply
#2
Let's address this point by point.

- Nonces are unique pseudo-random keys generated by iBoot based on a generator string. As far as I know, the apnonce- ones are based on different generators (?) and the noapnonce is basically based on the 0x1111111111111111 generator which most people use. You're likely interested in that folder and that generator if you use Unc0ver. Chimera has its own generator string which produces a different kind of blobs.

- Setting it would keep it valid until a restore is initiated.
Reply
#3
(09-07-2019, 07:18 PM)GeoSn0w Wrote: Let's address this point by point.

- Nonces are unique pseudo-random keys generated by iBoot based on a generator string. As far as I know, the apnonce- ones are based on different generators (?) and the noapnonce is basically based on the 0x1111111111111111 generator which most people use. You're likely interested in that folder and that generator if you use Unc0ver. Chimera has its own generator string which produces a different kind of blobs.

- Setting it would keep it valid until a restore is initiated.
So I should like, right now, I should set my nonce to 0x1111111111111111 either just to have it set already or because I need it done right away?
If the other blobs use another generator, how would I go about using those then?
Considering I use Unc0ver would u strongly suggest i just stick to 0x1111111111111111?
Reply
#4
(09-07-2019, 07:18 PM)GeoSn0w Wrote: Let's address this point by point.

- Nonces are unique pseudo-random keys generated by iBoot based on a generator string. As far as I know, the apnonce- ones are based on different generators (?) and the noapnonce is basically based on the 0x1111111111111111 generator which most people use. You're likely interested in that folder and that generator if you use Unc0ver. Chimera has its own generator string which produces a different kind of blobs.

- Setting it would keep it valid until a restore is initiated.

When grabbing an shsh blob from tss saver from my 14.3 apnonce folder and not from the noapnonce folder (since it doesn't have one) and using blob checker as well as checking the nonce generated in the file itself it shows up as 0x1111111111111111. would I be able to use this shsh blob or would I HAVE to use an shsh blob from one saved in the noapnonce folder? I wasn't able to get a noapnonce shsh blob from tss saver probably because I didn't save it in time but I still have this one that has the generator set as 0x1111111111111111 so I'm curious if I can still use this blob to upgrade to 14.3
Reply
#5
Hello,

I know, that this is an "old" question, but actually this question is more current, than anybody guess.

Questions about all this stuff with Apnonce, nonce Generator, blops, etc....

I did futurerestoring in the past a few times successfully with my blobs. But that was before iOS 12, or with 12.4, i can't remember.... long time ago.
On my iPhone X, I'm still on 12.4 as I was afraid to jump to 13.5. And now, I'm almost in the same situation, to jump to the unsigned 14.3.
Well, for my iPhone X, it's probably not a big thing, I guess. I might do it again.
But my other situation is much more tricky. And as I am also one of the thousands users, who understand only 50% of all that Nonce stuff...


So here's my question about this:

At the time last year, iOS 13.5 was signed, and the JB were released, there was only a couple of days to react. - So I bought a brand new iPhone 11 Pro and jailbreaked it with one of the first 13.5 releases.
Then I startet also to save blops for that new device. - Hoping, I'll do it the right way. I used the Site shsh.host to do so. I had this 64 digit Apnonce string for this device! (Got from anywhere - maybe a YT tutorial? - But it came definately from my device!)
So, in my case, my blop has the name: 1804737250426921_iPhone12,3_d421ap_13.5-17F75_de2a0d75ed21efe2d4ea4b281ecf9c0edd1f0490d3d73ef866cc7b478caf9b04.shsh2 - Looks good so far.
Somehow, I did the same again, and got another Apnonce, which was: d9c9a9022f2e93aeceb3ef06d448ae5d5467cb1c5dcccf0a4024370125ee0018, and I also did the same SHSH saving for this one. - So "just in case", I have 2 of them to try.
But I didn't use this device at that time, as my iPhone X with 12.4 was still perfect for me. - Thinking to have a jailbreak-able backup device for later. That was the plan.

What I did, was: I restored it back to a stock Apple Firmware 13.5 as this was still signed. - And I didn't JB it again! But I was keeping to save SHSH every moth or on every new Firmware release.
That is also the current state of this Device by now. Stock 13.5. - Sure, I could JB it right now, with any tool, that can JB 13.5 on an iPhone 11 Pro.
But the big question is:  Do I get this iPhone 11 Pro to the newer 14.3 stock firmware, to be able to JB it again? (Using this blops)
As you can see, I have ALL Firmware blops with the nonce above. BTW, the "generator" inside the blop shows 0x1111111111111111, if this is of interest.

So the BIG question now is: Will this 64 digit Apnonce, which I got one year ago, and which I used, to save all my blops, be "valid"?
Or will I'll be ending "useless", because of the fact, that I restored this device afterwards? - And "in best case" use it with 13.5 jailbroken?

And the very last question: Is there still any limitation or issue with FaceID, when I'm doning a futurerestore to an unsigned Version?


Thanks for reading, and help me understand this thing a little better!

Warren


BTW: The ECID and the nonce above is not my "real", it's edited!  ;-)
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Nonce Setter for checkra1n devices pscullum 1 6,888 03-17-2020, 03:45 PM
Last Post: Wayne
Star NEW iOS 13.1.3 / 13 / iOS 12 / 11 / 10 Nonce Setter FOR iOS DOWNGRADE RELEASED GeoSn0w 3 9,211 02-13-2020, 07:53 AM
Last Post: mbabayo
  unc0ver nonce TerrorMan 2 3,400 09-25-2019, 12:22 PM
Last Post: TerrorMan
Video iOS 12.4 / 12.0 Nonce Setter For iOS DOWNGRADE RELEASED | How To Set Nonce Generator GeoSn0w 0 2,748 09-07-2019, 07:19 PM
Last Post: GeoSn0w

Forum Jump:


Users browsing this thread: 1 Guest(s)

About Us
    Welcome to the Jailbreak Central Forum! Here you can get the latest iOS Jailbreak News from iDevice Central, ask your jailbreak questions and request help, and find the best iOS modding tools for downgrade, CFW iCloud Bypass, Jailbreak and so on. :-)