PwnageTool with my newest, updated 4.3b3 bundles [March 1st 2011]

Hey

Today I’m providing you with my latest version of my iPad and iPod touch 4g bundles for 4.3b3. The bundles are now included in this modified PwnageTool.app (click here for download) that I’ve uploaded to make things easier on people.

Right now, the iPod touch 4g 4.3b3 custom firmware should not require you to modify the restore ramdisk (it should restore without needing to modify the IPSW). However, this is still in testing and feedback is appreciated. Update March 3rd, 2011: Looks like iPod touch 4g still requires you to modify the restore ramdisk in order for a successful restore. I’ll try and get this fixed asap.

 

The iPad custom firmware created with my bundle still requires you to modify the restore ramdisk. Check out iPhone Privacy or talk to Djayb6 for more information. This bundle also uses a SpringBoard (K48AP) plist patch that allows for non-default applications to appear on the SpringBoard (such as Cydia). Don’t ask my why, but the iPad is the only device that needs this. I have had trouble with this patch before, so if your Settings.app is gone from the SpringBoard after restore, let me know.

Enjoy. @reply me on Twitter for questions, comments, concerns, or nuclear war strategy advice.

[iPod touch 4g] No need to fix restore rd anymore! (4.3b3)

Thanks to @MuscleNerd, for iPod touch 4g (for now) there is no longer a need to fix your restore ramdisk. You can simply create the custom fw, then restore, (…after you put device in pwned DFU mode with Redsn0w)

Download the new bundle

 

 

 

Donate if you’d like

iPod4 and iPad 4.3 b3 bundles

Hey guys. I’m going to start releasing all of my bundles here from now on, (or at least until I finish my own site).

Nothing special, just some PwnageTool bundles for 4.3b3. Some people have already released bundles but here are mine.

iPad [Updated Feb 5, 1:44 PM PST] (This should be the last build — Sorry)

For this iPad bundle, Cydia will not show up after you restore. Go to /System/Library/CoreServices/SpringBoard.app and modify the value in K48AP.plist “hide non-default apps” to false.

iPod touch 4g [Updated Feb 9, 7:09 PM PST] (Wrong root fs key in Info.plist – sorry about that)

As with all of these jailbreaks, remember that the initial restore will fail. Go to iPhone Privacy for more information on fixing the restore ramdisk.

Enjoy.

How to use my 4.3b1 bundles and get Cydia working. [Advanced topic]

If you consider yourself new to this stuff, read no further.

So most people have downloaded my bundles, then realized they had no idea what they’re doing. Hopefully this will fix that.

No, this jailbreak is not untethered. In no way shape or form is in untethered. Stop asking. It is a tethered jailbreak.

Thanks to DjayB6 and msft_guy for making this possible!

Please let me know if there are mistakes in this tutorial. It is quite long, and I may have messed up some parts. Thanks.

What you need

- A brain

- A computer running Mac OS X (Sorry, Windows users. I mean, Mac’s are better anyway…)

- PwnageTool

- A bundle

- tetheredboot utility (thanks Chronic-Dev)

- Ramdisk_maker (Credit: DjayB6) — Fixes restore ramdisk (This will be explained).

- Cydia stuff

—————–

Custom Firmware

Put whatever bundle of mine you’re using into: /Applications/PwnageTool.app/Contents/Resources/FirmwareBundles

Open PwnageTool and do “Expert Mode” and click on whatever device applies.

Browse for the 4.3b1 IPSW you want to use, then you’ll see this screen.

Now what you want to do is double-click on “General” and see what root filesystem size is already there. (DO NOT CHANGE IT).

1. Download the ramdisk maker (link above), and put “rd_maker” on your Desktop.

2. Create a new folder on your Desktop called “My_Ramdisk”

3. Put the “options.plist” in the “My_Ramdisk” folder.

4. Copy and paste “1177″ or whatever PwnageTool says in that field into the “options.plist” under “SystemPartitionSize”

Now create the custom FW as you normally would. Do not install any custom packages.

Ramdisk Bullshit

4. Go to wherever your ORIGINAL (not custom) 4.3b1 IPSW is, and rename it from “.ipsw” to “.zip”

5. Unzip the archive.

6. Open the folder from the archive and right-click on 038-0408-002.dmg and select “Duplicate”

7. Drag 038-0408-002 copy.dmg to “My_Ramdisk” and rename it back to 038-0408-002.dmg

8. Now, go to “rd_maker” and open ramdisk_maker.sh in a text editor (TextWrangler works great)

9. Rename everything in the file to what your computer entails. (More information included in README file). Mine looks like this:

10. Save that file

11. Open Terminal

12. Type “sudo sh” then type your password (Note: as you type the password, it will not show the characters for security purposes, so just type your password and press enter.)

13. Copy/paste:  cd ~/Desktop/rd_maker

14. Copy/paste: ./ramdisk_maker.sh

15. That will create a fixed ramdisk called “final_ramdisk.dmg”

16. Now, find your custom firmware, unzip it, and drag 038-0408-002.dmg to the trash, then drag final_ramdisk.dmg to the directory. Rename it to 038-0408-002.dmg

17. Now highlight that file, on the keyboard press “Command (Apple), A) to select all the files. Right click, then press “Compress”

18. That will compress to “Archive.zip” but you must rename it to something like “final.ipsw” or whatever. As long as it’s .ipsw

19. Use redsn0w to enter “Pwned DFU mode” (It doesn’t matter what fw you select initially, as long as it’s for the same device).

20. Restore in iTunes

21. Now your device will boot, but you’re not done.

Booting The Device

22. Put the “tetheredboot” (link above) folder on your Desktop.

23. Now, go back to the custom fw directory you unzipped (Jesus this is confusing) and grab the kernel and iBSS. (for iPad, the kernel is k48. for iPod4, kernel is n81). Rename the files to ibss.pwned and kernel.pwned and put them in the tetheredboot folder on the Desktop.

24. Open Terminal. Copy/paste: cd ~/Desktop/tetheredboot

25. Copy/paste: ./tetheredboot -i ibss.pwned kernel.pwned

26. Follow on-screen instructions

27. If all goes well, your device will boot into a jailbroken state. You will need to re-run tetheredboot everytime you want to reboot.

I Can Has Cydia?

28. Now, download cydiastuff.zip (link above) and you will see two .deb files, cydia.deb and essential.deb

29. Open Terminal, type: ssh root@IPADDRESS (You can find this in Settings>WiFi>Blue arrow next to WiFi name)

30. Password is alpine

31. Copy/paste: apt-get remove cydia

32. “Yes, do as I say”

33. Now using a SFTP client, put both .deb files from cydiastuff and put them in your / directory.

34. In SSH Terminal window copy/paste: cd /

35. Copy/paste: dpkg -i cydia.deb essential.deb

36. Copy/paste: killall SpringBoard

37. Finally..you’re done.

If this was too confusing, I apologize. Just wait for official FW to come out.

How to: Boot into jailbroken state after Custom IPSW restore (for bundles by 0xjohnny)

Update 11/21: The newest redsn0w released by the iPhone Dev team makes a lot of this much easier. Go check it out here.

My job is done; there is no need for me to support these bundles anymore. Meaning, I probably won’t help as much now, and this guide is pretty much obsolete. However, when 4.2.x is finally released, I will have iPad and iPod touch 4g bundles on the day of release, guaranteed. A big thanks to all people who tested the bundles, and a even bigger thanks to msft_guy for his Cydia patch, and tools he wrote that made the bundle creation possible.

—————————————————————————————————————————————

Many of you have been severely confused by how to use these bundles, so I’m posting this tutorial. For now, this tutorial is for Mac only.

Let’s set things straight: These bundle jailbreaks with PwnageTool are semi-untethered jailbreaks. Meaning, that if you want anything from the jailbreak to work (Cydia, SSH, apt, etc.) you need to boot the device INTO a jailbroken state.

Files needed

- Patched kernel and iBSS from the Custom firmware (These can be retreived by doing this: rename the .ipsw file to .zip, unzip the archive, and get the files. There are different kernels, and in this case, k48 is for iPad and n81 is for iPod touch 4g. Get the one you need for your device. The iBSS file is located in /Firmware/dfu/

-tetheredboot by msft_guy

-libusb installed — if it isn’t installed, install MacPorts. Once that finishes, in Terminal type: “sudo port install libusb” without quotes. That will install the latest libusb.

What to do:

1. After restore with the Custom firmware made by PwnageTool, put your device into Recovery Mode. — or just reboot the device (it will boot into recovery mode on an iPod touch 4g, but use Recboot for the iPad).

2. On your Desktop, make a folder called tetheredboot — Put the tetheredboot file from the download above into that folder, as well as the kernel and iBSS you got from the custom firmware. Rename the kernel to “kernel” and rename the iBSS to “iBSS”

3. Open Terminal, and type “sudo sh” — this will login to root. It will ask for your password (adminstrator password), and as you type you will not see the text, but it is being entered (it’s for security).

4. Once you’re logged into root, type these commands into the Terminal window, and press enter after each command:

cd ~/Desktop/tetheredboot

./tetheredboot iBSS kernel

You will see some code running in the window, and then it will say that the device needs to be in DFU mode to continue. So, while the process is still running in Terminal, put the device into DFU mode.

Once it’s correctly put into DFU mode, the tetheredboot program will do the rest for you. It will upload the kernel and iBSS, and then boot of the patched kernel.

The end of the process is marked by “Exiting libpois0n”

Notice: Your screen WILL be *WHITE* when the device is booting up. It may not look like it’s turning on, but if you did everything right it will show the “slide to unlock” screen after a few seconds.

If you didn’t understand how the Terminal process went, I copy and pasted what it should look like. Check it out here.

Once your device boots up, you will have SSH access, APT access, etc. Cydia will show up on the homescreen, but it will not work. You will need to patch it. Check out how to patch it on this other blog post.

Some people had been getting problems like the Settings.app disappearing for the iPad 4.2.1 bundle. I fixed it. Check out revision #2  here.

Thank you msft_guy and the Chronic Dev Team

How to: Get Cydia running on 4.2 [UPDATED NOV. 16 2010]

Credit: @msft_guy

This is a quick howto on getting Cydia to run on 4.2.

Remember, this is not a tutorial on how to jailbreak 4.2 / enable Cydia, this is purely for those who are jailbroken on 4.2, but do not have a working Cydia.

This is not for people who are new to jailbreaking, or those who do not know what SSH or APT are.

This can be confusing, though. You need to have APT and SSH enabled on your device.

1. In a command line prompt, run: apt-get install bsdiff

2. Download this Cydia.patch file. Place it in the Cydia.app directory on your device (SSH)

3. Type the following commands in a command prompt on your device:

cd /Applications/Cydia.app/

cp Cydia_ Cydia.bak

bspatch Cydia.bak Cydia_ Cydia.patch

chmod +x+s Cydia_

Reboot. Cydia should run.