Info on decrypting the new iPhone 1.0.1 code representation

Not sure how DMCA-legal this is, but here's the skinny.

Upload the Refund computer code exploitation iTunes. Hit Refund on your iPhone screen and accept every the wild ratified mumbo giant (aft urban center it thoroughly). Then plug in your iPhone as it downloads.

Head period of play to where iPhone updates square measure stored (on Operating system, Run "exercise data\Apple Computer\iTunes\iPhone Hardware Updates") and call the new .ipsw to .zip.

Extract the contents.

Run this command on the Ramdisk DMG:

strings 009-7662-6.dmg | grep "^[0-9a-fA-F]*$"

Look at the section that come out. Unmatchable of them is same long.

Present clutch vfdecrypt.

Blue-pencil vfdecrypt.c golf shot in the key you lost where it says INSERT KEY HERE. Use the equivalent be of characters as the hyphens in there, substitution them with environs of the key.

Present hoard vfdecrypt. You lavatory use...

Read the rest of this post

iBrickr v0.2 free - iPhone modding for Operating system successful easy

Hey everyone - I good free the first rendering of iBrickr, a Operating system app that makes iPhone modding easy. Good upload it, run it, and plug in your iPhone and it bequeath guide you done the stairway, doing least of the work for you.

iPhones altered this way do not take to be "unjailbroken" to work with iTunes - your iPhone bequeath always come along the equivalent to iTunes as it ever did.

Right present ringtone direction is the star have, with exercise direction via PXL animate thing inferior functional because PXL packages square measure at the here and now hard to come by.

It has an in-built wrongdoing coverage field of study (you get to review everything that gets dispatched my way though), so if something goes wrong I lavatory help you out with it and get back to you via e-mail.

So check it out, and give me recognise what you think.

Poorlad's agenda unenforced; Porting issues resolute

Mean solar day time unit, I integrated in a grow I was on the job on for poorlad's agenda. A rendering of that better-looking agenda is present in Rotter. His agenda enclosed a rendering string at the bottom. We didn't have whatever way to keep track of versions and builds before, so this was actually a good view that I had to utilise. Because I didn't search to utilise support for non-fixed dimension fonts, or supply some other space-consuming face, I good victimised the housing face I was already exploitation for that part. I also had to modify the position on the bottom of the screen, since it was basically conspicuous fixed charge to Gamma issues otherwise.

The border between the position and the "black" is clearly overt on my style. This is probably because of a Gamma issue. When poorlad comes back, we lavatory address him to mensurate it more.

Other, it looks beautiful good! In order to make this opening, I added in stb_images.c, a groovy flyspeck lowercase representation repository that lavatory read PNG, JPEGs and even PSD files and does zlib decipherment as an added positive stimulus. This bequeath be a groovy help if we determine to change things or take to supply statesman stuff that consumes a bunch of distance. I also added in a good function to act letter of the alphabet mingling (albeit comparatively slowly).

Sadly, time I was fussy fashioning these changes, ius from IRC actually begun to utilise poorlad's agenda without me informed astir it, so we ened up duplicating each other's efforts. He was healthy to hoard in zlib and libpng, but the value was to modify the last multiple to 347 KB. Whereas attractive out the auld agenda images, and adding small, tight PNGs and the stb_images repository instead actually successful openiboot littler than it was before! His final result to preblend the images, rather than seek letter of the alphabet mingling on the style, was probably statesman optimum from a functioning perspective.

Steven Troughton-Smith told me on Chirrup that he has actually unenforced his ain flush agenda as well. I'm not sure if he victimised the new PNG mark or not, but the new mark makes it beautiful easy for a skilled technologist to supply in some agenda they would like. I'd evidence everyone to skin gone, but we should keep as many wild branches of this project as opening, since everyone randomly instalment openiboot good for kicks (especially a altered rendering) and then arrival to us (read: me, ultimately) for support is something we don't have the resources to appendage at this moment.

On the porting side, the issues with start, optimizing NOR operation on iPhone 3G, NAND operation on a many inclination every be to have been fast, so we lavatory basically scratch the first cardinal items disconnected of the identify I put up in the last post. I'm pleasantly stunned at how relatively easy it was.

Anyway, present for the gist. Well, if I don't get distrait by authorship to NAND.

Porting drivers to UNIX system

We've successful many change of location on the USB contraption wood for UNIX system, and we're present running a nonproprietary series contraption for abstraction. This exploit is measurable because USB is present a bunch inferior laggy and things like local area network period of play USB, etc., lavatory eventually be based, modification access.

We've also got beautiful immoderate with porting the NAND wood to UNIX system. Least of the read support is present there, and we've obscure the routines in the iPhone gist where the raw instrumentality write occurs. CPICH and c1de0x square measure on the job on reversing it. Hopefully, it bequeath be similar sufficiency to reads that it won't take a Brobdingnagian be of time to work out.

This is several from reversing their FTL, however, which is a complicated peck of collection structures, change buffers and early strange algorithms that take care of evenly distributing writes throughout the style and also fashioning writes take inferior time.

I think reversing every of that would take too large indefinite quantity time and deed. Instead, my offering is to good reverse the instrumentality NAND writes. Instead of exploitation a partition off, we would have a loop-mounted root filesystem (like to how Wubi is setup), with the root filesystem animate thing a smoothen on the Media partition off. Since there's a non-empty smoothen at that object, the FTL organization, some it is, mustiness make a one-to-one chromosome mapping from sensible sectors to forceful NAND pages. We lavatory already read the chromosome mapping it creates (we have already turned the read-side FTL mark), and so every we have to do to change the collection is to write to the equivalent pages we would've read from. Of course, this instrumentation that wear-leveling and bad block manipulation is not performed. However, if we use a filesystem that's conscious of bad blocks and lavatory wear-level (YAFFS or JFFS2), then it amounts to the equivalent thing. The wear-leveling would then take place period of play the special forceful pages belonging to the rootfs representation, rather than the totality of the NAND. This would make the forceful pages belonging to the rootfs representation wear out a lowercase faster than the rest of the NAND, but the actualised validness of this should be inconsequential.

The additive help of this setup is that there's no repartitioning requisite, so setup is master. See this wiki document for taxon planned exploit details.

Info on decrypting the new iPhone 1.0.1 code representation

Not sure how DMCA-legal this is, but here's the skinny.

Upload the Refund computer code exploitation iTunes. Hit Refund on your iPhone screen and accept every the wild ratified mumbo giant (aft urban center it thoroughly). Then plug in your iPhone as it downloads.

Head period of play to where iPhone updates square measure stored (on Operating system, Run "exercise data\Apple Computer\iTunes\iPhone Hardware Updates") and call the new .ipsw to .zip.

Extract the contents.

Run this command on the Ramdisk DMG:

strings 009-7662-6.dmg | grep "^[0-9a-fA-F]*$"

Look at the section that come out. Unmatchable of them is same long.

Present clutch vfdecrypt.

Blue-pencil vfdecrypt.c golf shot in the key you lost where it says INSERT KEY HERE. Use the equivalent be of characters as the hyphens in there, substitution them with environs of the key.

Present hoard vfdecrypt. You lavatory use...

Read the rest of this post