From 000af43d54977892bfdfee42542bfefe7e195a31 Mon Sep 17 00:00:00 2001
From: spv420 <spv@spv.sh>
Date: Sun, 31 Jul 2022 18:11:05 -0400
Subject: yahtzee

---
 README.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/README.md b/README.md
index 1851081..a62d97d 100644
--- a/README.md
+++ b/README.md
@@ -18,6 +18,19 @@ the exploit to get arbitrary mem write should work on < iOS 12 as well (i
 think), but the ROP chain's gadget addresses are currently hardcoded to one
 build.
 
+inside the `boot-args` nvram variable, `p0laris_options` is a variable you can
+set that is JSON deserialized & used as an object in `stage3` and `stage4`.
+
+keep `p0laris_options` as the last boot-arg, or it will be parsed incorrectly.
+
+example:
+
+`debug=0x1 -v p0laris_options='{"sleep_spin":true}'`
+
+don't do:
+
+`p0laris_options='{"sleep_spin":true}' debug=0x1 -v`
+
 ### current install steps
 - procure an `iPhone4,1` on `9.3.6 (13G37)`
 - jailbreak with p0laris (or Phoenix if you're old fashioned)
-- 
cgit v1.2.3