Restoring phone jailbreak questions

[TangoJuliet]

I sold my 3GS the other day and I have been trying to erase everything on the phone and restore it back to 4.0 iOS. I went into iTunes and tried to restore it but the only option I have is to download the newest fw and restore from there which I don't want to do.

I went into the settings on the phone and there was an option to erase everything. Now the phone is in a constant reboot and won't start. I downloaded the iOS 4.0 restore file from apple and I can't seem to get it to work in redsn0w or the pwnage tool.

Any help is appreciated.

 

[TangoJuliet]

anyone??

 

[TangoJuliet]

I cant seem to figure this shit out. Apparently I read in a couple forums of people erasing the data that way and ran into similar problems.

The phone right now will boot and just hang on the apple logo. If I hold down the home button then I can get the phone to want to connect to itunes. When I go into itunes there is an option to restore which is great but it makes me download iOS 5.

I tried to do the "option" restore and run the iOS 4 ipsw and it tells me that the device doesnt have the privileges of running that OS or something to that extent.

I decided to just say F it and run the pwnage tool and update to 4.3.3 and that is giving me a problem. Any help is greatly appreciated. I really need to get this thing restore and shipped out.

 

[ViRGE]

Unfortunately you can't restore back to iOS 4.0. Apple has "signing windows" where they won't let older firmwares be loaded on a phone when a newer firmware is available. So you're stuck with the newest firmware unless it's a particularly old 3GS that has the Old Bootrom (which is exploitable).

 

[TangoJuliet]

Unfortunately you can't restore back to iOS 4.0. Apple has "signing windows" where they won't let older firmwares be loaded on a phone when a newer firmware is available. So you're stuck with the newest firmware unless it's a particularly old 3GS that has the Old Bootrom (which is exploitable).

I got this 3GS at launch. I'm pretty sure I saved the SHSH or whatever it is on cydia. How do I go about doing the exploit?

 

[ViRGE]

If it's a launch 3GS then it almost assuredly is using the Old Bootrom. Try grabbing PwnageTool, the IPSW for the version of the 3GS firmware you want to use, and use that to cook up a custom firmware. PwnageTool will run you through loading that onto your 3GS, at which point you should be set.

And you shouldn't need any SHSH files, since the Old Bootrom is fully exploitable. SHSH files are more a concern for New Bootrom 3GSes and later devices.

 

[TangoJuliet]

If it's a launch 3GS then it almost assuredly is using the Old Bootrom. Try grabbing PwnageTool, the IPSW for the version of the 3GS firmware you want to use, and use that to cook up a custom firmware. PwnageTool will run you through loading that onto your 3GS, at which point you should be set.

And you shouldn't need any SHSH files, since the Old Bootrom is fully exploitable. SHSH files are more a concern for New Bootrom 3GSes and later devices.

Yup, I got the pwnage tool and I tried to use the 4.0 and 4.0.1 restore FWs and I get an error message. I then just went to simple mode and tried the 4.3.3 the it came installed with and still got an error message. Not sure where to go now

 

[manly]

ViRGE,

is PwnageTool backwards compatible for any 4.x series FW or does he need to match a PwnageTool release to FW version?

TangoJuliet,

At what point in the process are you getting an error message?

 

[TangoJuliet]

manly

In redsn0w I'm able to get it into pwned DFU mode. I'm not sure if I don't have the correct IPSWs which is why I keep getting errors in iTunes.

I go to the option "restore" and choose either 4.0 or 4.0.1 and I get this message

If I use pwnage tool then it works in simple mode. I click on the 4.3.3 and it creates a custom IPSW. If I go into advanced and try either of the 4.0 or 0.1 I'll get this error

 

[ViRGE]

Humm, you shouldn't be having that much trouble. Give me 10 minutes to grab the tool and firmware and I'll double-check. Keep in mind that 4.3.3 is going to be the prefered route though; I'm not sure the latest PwnageTool works with 4.0.x.

Edit: What's the file name of the IPSW you have for 4.3.3?

 

[TangoJuliet]

Humm, you shouldn't be having that much trouble. Give me 10 minutes to grab the tool and firmware and I'll double-check. Keep in mind that 4.3.3 is going to be the prefered route though; I'm not sure the latest PwnageTool works with 4.0.x.

Yeah I'm kind of given up any hope of getting anything other then 4.3.3 on there. As long as its an untethered JB then it should be ok.

 

[ViRGE]

Yeah I'm kind of given up any hope of getting anything other then 4.3.3 on there. As long as its an untethered JB then it should be ok.

4.3.3 is the latest and greatest untethered jailbreak for 4.x. I can't imagine why you'd want 4.0.1.

 

[TangoJuliet]

4.3.3 is the latest and greatest untethered jailbreak for 4.x. I can't imagine why you'd want 4.0.1.

I've never had any issues with 4.0. Plus it was a nice iOS where you could do the jailbreakme.com thing

The 2 4.3.3's I have are

iPhone2,1_4.3.3_8J2_Custom_Restore.ipsw
and
iPhone2,1_4.3.3_8J2_Restore.ipsw

 

[ViRGE]

I've never had any issues with 4.0. Plus it was a nice iOS where you could do the jailbreakme.com thing

The 2 4.3.3's I have are

iPhone2,1_4.3.3_8J2_Custom_Restore.ipsw
and
iPhone2,1_4.3.3_8J2_Restore.ipsw

The problem is that there are a number of Safari exploits for older iOSes. Even if you could get 4.0.x loaded, you'd basically be an easy target for anyone that wanted to do a drive-by attack on an iOS device running a firmware that old.

Oh, and Jailbreakme actually works with 4.3.3 using the Saffron exploit. The only reason you're not using it here is that it's not possible to quickly downgrade to 4.3.3 because of the SHSH issue (which is why you're better off PwnageTooling it).

 

[ViRGE]

The 2 4.3.3's I have are

iPhone2,1_4.3.3_8J2_Custom_Restore.ipsw
and
iPhone2,1_4.3.3_8J2_Restore.ipsw

So it sounds like you have the correct IPSW for a 3GS on 4.3.3. Run that through PwnageTool 4.3.3.1, and you should be set. I also tried PwnageTool 4.3.3.1 with the 4.0.x IPSWs; it doesn't work and you would need PwnageTool 4.0.1 for that.

 

[TangoJuliet]

So it sounds like you have the correct IPSW for a 3GS on 4.3.3. Run that through PwnageTool 4.3.3.1, and you should be set. I also tried PwnageTool 4.3.3.1 with the 4.0.x IPSWs; it doesn't work and you would need PwnageTool 4.0.1 for that.

Yeah I tried those on PwnageTool 4.3.3.1 and no luck. I get that wrong firmware bundle installed message. Do you have a custom ipsw that you can send me?

 

[ViRGE]

Yeah I tried those on PwnageTool 4.3.3.1 and no luck. I get that wrong firmware bundle installed message. Do you have a custom ipsw that you can send me?

Just so we're clear, were you trying iOS 4.0.1, or 4.3.3. I can't fathom how you'd be having a problem with 4.3.3.

 

[manly]

I've never had any issues with 4.0. Plus it was a nice iOS where you could do the jailbreakme.com thing

The 2 4.3.3's I have are

iPhone2,1_4.3.3_8J2_Custom_Restore.ipsw
and
iPhone2,1_4.3.3_8J2_Restore.ipsw

okay so it seems you're halfway home with PwnageTool. Simple or advanced shouldn't matter, the simple defaults are sane AFAIK. I think the custom IPSW you've generated is fine.

As I sorta guessed, the hitch is into getting iTunes to restore the custom firmware. To eliminate something real obvious, you're certain you get the iPhone into DFU mode? The screen needs to be dark when you're option-restoring. In my experience (and I can't explain why), using PwnageTool to jailbreak the iPhone and subsequently go into DFU mode with the user-friendly handholding is essential.

 

[TangoJuliet]

I give up. I seriously have no idea what is going on.

I downloaded the official 4.3.3 and ran pwnageTool. I ran it in advanced mode, selected the 4.3.3 official FW and it created a custom 4.3.3. From there I put the phone into DFU mode and opened iTunes. I get a message from itunes saying the phone is in recovery mode and needs to be restored. So far so good.

I then click the option restore and open the custom fw. It extracts and then I get the message "this device isnt eligible for the requested build". I have tried editing the hosts file and putting in the gs apple lines and I have edited so they arent there. I have tried using tiny umbrella and unchecking the "set hosts to cydia on exit" and still no luck.

I'm done....this has gotten the best of me. I'm tired of this shit and I give up!

 

[TangoJuliet]

When I run tinyumbrella I and try to fix recovery I get this

Unable to find gBdevList
Unable to find fs_mount
Unable to find fs_unmount
Unable to find fs_load_file

 

[ChAoTiCpInOy]

When I run tinyumbrella I and try to fix recovery I get this

Unable to find gBdevList
Unable to find fs_mount
Unable to find fs_unmount
Unable to find fs_load_file

I don't think recovery works on your os version. The main thing you need to do is get the shsh blobs from Cydia to tiny umbrella. Then run the iTunes server in tiny umbrella. Then you should be able to restore to the version you have the shsh blobs in.