TUTORIALS
Possible Downgrade to iOS 10.2 From iOS 10.2.1 for Some Users
6080
2017-07-28
Posted by 3uTools

Possible Downgrade to iOS 10.2 From iOS 10.2.1 for Some Users


Are you stuck on iOS 10.2.1 or higher, and having missed the iOS 10.2 signing window and miss the 3uTools iOS 10 jailbreak? If so, here we provided a way to downgrade. Early reports have come in that some devices are creating nonce collisions on iOS 10.3 Beta1, providing an indirect route back to iOS 10.2 through Prometheus.


First reported on Reddit, an iPhone 5s user discovered that although nonce collisions disappeared in iOS 10.2.1, they are still present, at least on some devices, in iOS 10.3 Beta 1. Whether they are present in all the 10.3 betas is unclear, but the user thought not, with beta 1 being the only option if you hope to use this method.


Another successful report, again using an iPhone 5s, mentions upgrading first to iOS 10.3 beta 1, and then using futurerestore to downgrade all the way back to iOS 10.2. This has now also been confirmed personally by futurerestore’s creator, tihmstar.


Who does this apply to?

This stroke of luck only applies to you if you fulfil all of the following requirements:

  • You are stuck on iOS 10.2.1 or an iOS 10.3 beta.

  • Your device produces collisions, i.e., is an iPhone 5s or (maybe) an iPad Air.

  • You have iOS 10.2 .shsh2 blobs, saved with the correct colliding nonces.

  • You are comfortable with the process of moving to an iOS beta version.

  • You are comfortable using the futurerestore downgrade tool.


If all of that applies to you, you may yet be able to jailbreak! The first thing to do is to move from iOS 10.2.1 up to iOS 10.3 beta 1. After that, you may optionally run noncestatistics to see which nonces are colliding the most for your device on iOS 10.3 Beta 1, and look through your saved iOS 10.2 blobs to see if you have blobs saved with those nonces.


If you do not wish to do that, you can proceed straight to running futurerestore with all of your saved nonces to see if any of them collides and matches your blob, though this is less likely to work.


According to users' feedback, the two nonces appear to be colliding heavily on iOS 10.3 Beta 1 are the same ones which collided for the iPhone 5s on iOS 10.2:


"9e4c518009d00df190a450b3b47691768812360c"
"9f4aeec726e7c682339ddb3c6c2dec52662dc517"


Whilst this is definitely an edge case, and will almost certainly be the last opportunity to make use of the nonce collision method with Prometheus, it will at least permit some users to save their jailbreak. 


Provided you are fortunate enough to have the requisite blobs and have the technical savvy to use the tool, you are suggested to give it a go now rather than stay stuck on iOS 10.2.1. If it doesn’t work out after a few hours of running Prometheus to get a collision you can always go back to iOS 10.2.1, whilst it is still signed, and wait it out there.



Thanks for visiting. For more latest updates or supports, follow us on Facebook or Twitter .
Related Articles
How to Downgrade iOS 11.1.2 to 10.3.3 for A7 Devices With SHSH? Apple Stops Signing iOS 10.2 : You Can No Longer Downgrade or Save SHSH2 Blobs Which Is Better, iOS10.1.1 or iOS10.2 Beta1?