0x7ff / dimentio Goto Github PK

Trying to set generator 0x1111111111111111 with 'dementio 0x1111111111111111'

log:
Kasiims-iPhone:~ root# dimentio 0x1111111111111111
boot_path: /private/preboot/92DFB4D9421C6EE6A7619115848B7924B9D5CE965AFFC1F1457A1C86E2F5CC9A1514A336061378BE3EBCBCD391DAE998/System/Library/Caches/com.apple.kernelcaches/kernelcache
base: 0xFFFFFFF007004000
sec_cstring_addr: 0xFFFFFFF007336E54, sec_cstring_off: 0x332E54, sec_cstring_sz: 0x2C47EA
sec_text_addr: 0xFFFFFFF0079D8000, sec_text_off: 0x9D4000, sec_text_sz: 0x1DCF338
cmd_symtab_symoff: 0x0, cmd_symtab_nsyms: 0x0, cmd_symtab_stroff: 0x0
Kasiims-iPhone:~ root#

This is on the latest unc0ver with libkrw installed.

I have also tried it on my iPad Pro with checkra1n and I get the same log

Does this mean the jailbreak tools themselves haven't added the libkrw support yet?

Calling libkrw in a jailbreak that does not implement libkrw will result in abort.
If you switch to checkra1n after using unc0ver, the existence of /usr/lib/libkrw/1_unc0ver.dylib makes libkrw think that it is available but not actually, which will cause abort.

I think dimentio should first try to use tfp0 (that is, use the original method), and if it fails, try to use libkrw instead.

Thanks for your great work!

Somehow the program exits after print out kslide and I can confirm pfinder_init failed on my device.

I can provide additional details if needed.

I don't know too much about C, but it seems have issues on init_tfp0().

Please....

If the function defined in libkrw is used in a jailbreak that does not support libkrw, it will cause an abort:6 error. Therefore, libkrw added a new method to determine whether it is available.
https://github.com/Siguza/libkrw/blob/master/include/libkrw_plugin.h

I'm trying to set my nonce on unc0ver 6.1.2 A14 , and got the follwing errors

Hey, I am the lead developer of the Rootlessjail team, and i was wondering if we could use dimentio for the nonce setter. We will abide by the license of course.

Running dimentio without setting a new generator should only get data like the entangled nonce. However when doing this on iOS 14, with the generator set by unc0ver, dimentio resets the generator to a seemingly random value and reads back the new nonce.
This new nonce is accurate and persists rebooting, however since dimentio does not report the new generator, one would assume the reported nonce matches the generator set by unc0ver, which it does not. This would cause saving invalid blobs when relying on the new nonce.

This was tested on an iPad8,1 A12X iOS 14.3

The only logging is as follows:

iPhone:~ mobile% sudo dimentio
host: 0xC03
iPhone:~ mobile%

I currently have three devices for testing: iPhoneSE1(14.2), iPhone6sp(13.2.3), iPhoneSE2(13.5), dimentio does not work on any of them. On SE2, it will get stuck and I have to use ctrl+c to forcefully terminate the process.
In addition, because Apple changed the abi of arm64e devices on iOS14, if can’t use the lower version of xcode to compile for arm64e, then we have to manually patch the binary to add support for lower version devices.

Please Update it to support A15 15.4.1.