Smooth Blog

Now available through Apple’s Developer Center, iOS 4.1 Beta is available for download. This is news we have all been anticipating for some time now, but the question here is, what exactly are we getting in iOS 4.1? Will our antenna issues be solved, or will they simply be “masked”?

The releases notes don’t go into detail about any fixes, however they do state that support for the iOS 4 preview version of Game Center will be phased out soon. There is some discussion about renaming some files, and some string changes, but nothing extremely interesting.

UPDATE: Reports of users experiencing no change in signal quality for those that have been having the “death grip” problem.

UPDATE: It appears that the iOS 4.1 update includes the signal bar changes that Apple had promised that “will adjust how signal strength bars are calculated and displayed.” This includes making the bars larger than they were before so it’s easier to identify the signal strength

Quote:

The change will adopt a recently recommended formula from AT&T that will more accurately display actual signal strength at any given time. The update will also increase the size of the smaller bars (1, 2, and 3) to make them easier to see.

As expected, the modem firmware has also now been updated to 02.07.01. This means: JAILBREAKERS AND UNLOCKERS NEED TO STAY AWAY UNTIL FURTHER NOTICE! Remember all that hard work planetbeing just showed us? Do yourself a favor and do not update yet, so that you too may utilize the unlock method he has found in the future.

What might be particularly exciting to most of our readers, is that this release, once public, could mean that our next Jailbreak Tool will be unleashed upon us all. However, I wouldn’t get too excited yet, this is just the SDK Beta. Once this baby goes public, keep your eyes peeled for an iOS 4.0 Jailbreak. So that means, REMEMBER TO BACK UP YOUR SHSH BLOBS!

Source: Apple

Here is a video from Planetbeing’s unlock, he doesnt show how its done, but instead he shows the phone unlocked.

So fingers crossed that there will be a release soon from the devteam

A recent twitter update from @planetbeing gives more confidence to hopeful iPhone 4 owners waiting for the unlock from the dev team. Just under an hour ago, planetbeing (David Wang) posted the following messages on his twitter account:

From the looks of things, the iPhone 4 jailbreak and unlock is stable and working on the iPhone 4. It is still suspected that the dev team are waiting for Apple to release 4.0.1 before making their jailbreak public. We chatted with Wang this morning about the unlock, and he mentioned Apple’s definitely catting this mouse (or is it the other way around?):

Here is RecovBoot, a software created by Rital77 and Niko_0804 (Backup Helper), like RecBoot, it will permit you to leave Recovery Mode while trying to restore an old or custom firmware.

• Windows only.
• All iDevices.
• iTunes 9.2
• Net Framework 3.0.
• RecovBoot.exe
• It does NOT use libusb.
• Restore an old or custom firmware and wait for the error 1015 or 1600.
• Start the software and click on Sortir du mode de Restauration.

Be patient, the untethered jailbreak tool proposed will be like Spirit, easy to use and compatible with all iDevices, old and new iBoot.
No release before the update of the future update of iOS 4 (4.01? 4.1?) by Apple.

Since the release of Sn0wbreeze and PwnageTool that let you create custom firmware 4.0, 3.1.3 and older to jailbreak iPhone and iPod Touch, many of you has been asking on how to fix 1600, 1601, 1602, 1603, 1604 or 29 error during iPhone custom firmware restore.

This is what error reads:

The iPhone “-” could not be restored. An unknown error occurred (16xx).

To get rid of error 1600, 1601, 1602, 1603, 1604 or 29 during custom firmware restore, follow the steps mentioned below.
We are listing all the possible fixes for 16.04, 16xx error when restoring a custom firmware below. Please read it first before trying.

Solution 1

I encountered 1604 error just once back in OS 3.1.2 days. Trying on another PC helped me in successfully restoring the CFW. So, if you have another PC or Mac, I suggest you to try on that computer first.

Solution 2

• Make sure to show hidden files under your folder options.
• Close the iTunes and disconnect your iDevice from your Computer.
• Go to the following directory:
  Win 7 & Vista Users:
  C:Users\*UsersName*\AppData\Roaming\Apple Computer\iTunes\Device Support
  Windows XP :
  C:\Documents and Settings\*UserName*\Application Data\Apple Computer\iTunes\Device Support or iPhone Software Updates
• Backup the files available in the folder and delete them from that folder.
• Put your iPhone into Recover Mode. and Restore the Custom firmware.

Solution 3

iPhone 3G, 2G and iPod Touch 1G, iPod Touch 2G users running OS 3.1.2 can use a handy little utility named iREB (iTunes Restore Error Bypasser) to get rid of error 16xx or 29:

1. Download iREB
2. Start iTunes and put your iPhone into DFU mode:
3. Now close iTunes and Start iREB on your PC.
4. Select your device and wait for a few seconds till you get white or a red screen on your iPhone.
   
5. Open iTunes. Now press and hold left “alt” button (“Shift” button on Windows) on the keyboard and then click on “Restore”  button in the iTunes. Select a custom firmware .ipsw file and restore it. Your 16xx or 29 errors are gone.

Please note that iREB is NOT a jailbreaking utility but it aids in jailbreaking iPhone or iPod Touch.

iH8sn0w has posted a process quite complex to jailbreak iOS 4 for iPhone 3GS with new iBoot.
This jailbreak based on the creation of a custom firmware using Sn0wbreeze, that you will install thanks to a new tool iBooty from iH8sn0w.

iPhone 3GS, find the version of your iBoot.
For old iBoot, follow this guide.
For iPhone 3GS with new iBoot, this tutorial concerns you !

Required :

• iPhone 3GS New iBoot. [Mac only]
• Have your ECID (shsh) signed for FW 3.1.2 only on Saurik server.
• IBSS Grabber
• Pwner Paylod RC2 pour iPhone 3GS
• iBooty 4.0 GUI
• Sn0Wbreeze 1.6.2
• Libusb (links below)
• Firmwares 3.1.2 et 4.0 pour le 3GS
• iTunes 9.2

Warning Note: All the standard warnings apply. This is for advanced users only. Only proceed if you think you know your iPhone inside out.

Required :

libusb-1.0
xpwntool
iOS 3.1.2, 4.0
iOS 3.1.2 SHSH blobs
=>> Download this

STEP 1 : Grabbing your 3.1.2 iBSS file.

Pointing your hosts :
I : If you have your shsh blobs saved on Cydia/Saurik’s server then follow this tutorial.
II : If you have it saved with TinyUmbrella, then download the GUI here.

Restoring to grab the iBSS file.

I : Place your device in DFU.
II : Start up the iBSS/iBEC grabber.
III : Put the save folder on a new folder on your desktop.
IV : Hit “Start Monitoring”.
V : Now go back to iTunes and do SHIFT + Restore. Then browse for your 3.1.2 IPSW. You will need to restore to 3.1.2 in order to pwn 4.0.

STEP 2: Creating your custom firmware

Use Pwnage Tool to create a custom ipsw ignore the warnings about the new bootrom.

STEP 3:
Extract the zip file we downloaded earlier and use terminal to enter it
STEP 4:
Create a new folder inside this called 3.1.2 and extract your 3.1.2 ipsw here (unzip *.ipsw in terminal)
STEP 5:
Use xpwntool to patch iBoot & iBSS (run this in terminal)

xpwntool Firmware/dfu/iBSS.n88ap.RELEASE.dfu ibss.d -iv 41639d34547ae3dd7921bf3539dba529 -k 9121de4a038675d92e1a28683b2138b7a3bdb80994273d090398051c7f5af53c; bspatch ibss.d ../exploitibss312 ../ibss.patch; xpwntool Firmware/all_flash/all_flash.n88ap.production/iBoot.n88ap.RELEASE.img3 iboot.d -iv 127aa60e77da219961ee70707f44cbd4 -k c72ab4aae971f3a9ec356dfe555e4aef72d8e96c480698445ac236904e6a3443; bspatch iboot.d ../iboot.payload ../iboot.patch; cd ..; rm -rf 3.1.2

STEP 6:
Create a folder called 4.0_cust inside 4.0_pwn and enter it with terminal and copy your custom 4.0 ipsw here.
STEP 7:
Extract your custom ipsw (unzip *.zip)
STEP 8:
Run the following in terminal:

cp kernelcache.release.n88 ../kcache.40; cp Firmware/dfu/iBEC.n88ap.RELEASE.dfu ../iBEC.40; cd ..;

STEP 9:
Copy your signed iBSS from earlier into 4.0_pwn
STEP 10:
Place your device in DFU mode (power home for 10 seconds, release power keep holding home (blank screen and itunes asking to restore).
STEP 11:
Run the following in terminal:

./irecovery -u ibss312.dfu; ./irecovery -r; sleep 10; ./irecovery -e exploitibss312; ./irecovery -u iBEC.40; ./irecovery -c go; sleep 10; ./irecovery -u sn0w.img3; ./irecovery -c “setpicture 0″; ./irecovery -c “bgcolor 1 1 1″;

STEP 12:
Restore your custom 4.0 ipsw
Booting your device:
Run the following in terminal (once in the 4.0_pwn directory):

./irecovery -u ibss312.dfu; ./irecovery -r; sleep 10; ./irecovery -e exploitibss312; ./irecovery -u iBEC.40; ./irecovery -c go; sleep 10; ./irecovery -u sn0w.img3; ./irecovery -c “setpicture 0″; ./irecovery -c “bgcolor 1 1 1″; ./irecovery -u kcache.40; ./irecovery -c bootx;

iTunes will detect your device several times before it boots.
PS: When i wake up i will write a script to automate most of this.

Once you have jailbroken your phone, you can unlock it using ultrasn0w 0.93 (on any baseband)

Update : Version 1.7 released ! Now compatible with models iPod Touch 2G (MC) and 3G, iDevices with new iBoot.

iH8sn0w.com just released Sn0wbreeze 1.7 (for Windows) as the effort to fix problems found on iBooks, Youtube also iTunes error issues. And for iOS 4 jailbreaker such problems is pain in the neck.
Sn0wbreeze 1.7 also added with the additional support for old bootrom for users of Spirit jailbreak tool who are able to jailbreak iOS 4 using Sn0wbreeze.

Yesterday we had the release of PwnageTool 4.01 for Mac, from the Dev-Team, which allowed you to make custom iOS 4 firmwares ready for jailbreaking. Only a day later, we now have Windows support for creating custom jailbroken firmwares, with Sn0wBreeze 1.7

Just like RedSn0w, you will have the additional functionality options for the iPhone 3G and iPod Touch 2G, for multitasking and wallpapers. The same rules apply for Sn0wBreeze 1.7 as does PwnageTool. Certain devices are not supported. This is simply due to the fact that the hardware is not supported in iOS 4.0. The Phone 2G, iPod Touch, iPod Touch 3G are not supported. Neither is the iPhone 3GS with the new Bootrom, the MC models.

If you have an iPhone 3GS, Sn0wbreeze 1.7 only works on previously jailbroken 3GS devices with the old bootrom.

If you have a Jailbroken 3.1.2 iPhone 3G then you can create the firmware with Sn0wBreeze and restore your iPhone 3G from recovery mode or DFU mode. If you have an out of the box iPhone 3G you should restore using a Sn0wbreeze’s DFU mode.
If you have a Jailbroken 3.1.3 iPhone 3G it is very possible that this can fail from recovery mode, if this failure happens you will need to restore using DFU mode.

Just like PwnageTool, you can add custom packages, which means you can include ultrasn0w along with the firmware so that you won’t need Wi-Fi access to install it later. So basically everything that was offered on the Mac side with PwnageTool, is now available on the Windows side via Sn0wBreeze.

As an alternative to Sn0wbreeze 1.7, you can use redsn0w on iPhone 3G (on both Windows and Mac).

Let us recap real quick. Here is a list of supported devices :

iPhone 3GS (old bootrom, non MC model, not spirit jailbroken)
iPhone 3G (might require DFU,)
iPod 2G (non MC model, not spirit jailbroken)

Snowbreeze 1.7 Windows

Download redsn0w 0.9.5b5-5:

• Mac
• Windows

——————————–

Sn0wbreeze is a tool for Windows of team iH8sn0w, creator of iReb, equal to the software PwnageTool for Mac users, it will permit you to customize a Firmware to jailbreak your iPhone or iPod Touch.
You can also include debs, define a root partition for Cydia, save their baseband, etc…
Launch Sn0wbreeze. Click OK.
Continue reading “How-To – Jailbreak iPhone 3GS FW 4.0 using Sn0wbreeze 1.7 *Update*”