Bootrom exploits

[Android+iPhone]

My question is if SHAtter or geohot's new limera1n is Bootrom than will that mean you can port to 3rd and 4th generation devices?

[fenix]

I will be chuffed to bits if we get android on the iPhone 4.  It'll be the best Smartphone on the market then, either iOS or Android.  All we need some really hard work to get Android for iPhone 4 as good as some of the custom android roms such as CM6.  I really hope we will be dual booting in a couple of months time

[shaheen]

possibly booting, but very shittily. they would have to write new drivers for everything.

[alex]

No, it is very unlikely. The exploits are tethered bootrom with a kernel patch to untether the device.

[Rekoil]

No, it is very unlikely. The exploits are tethered bootrom with a kernel patch to untether the device.

Actually alex, it seems as though limera1n is an untethered bootrom exploit which would indeed be usable in this project. The reason for geohot releasing limera1n on monday is that he wants greenpois0n to use his exploit and keep theirs for later devices (as the details of theirs are still unknown). This is because he believes Apple already knows how to fix his exploit (meaning it'll be fixed in future hardware revisions of 4th gen hardware anyway), he fears Apple might patch both bootrom exploits in the same hardware revision if greenpois0n releases SHAtter + userland hack on monday.

So the best news will be if on monday greenpois0n release is postpwned for a later date

[ddominator]

Based on the tweets from comex, limera1n is tethered but will be untethered because of the same userland exploit used by greenpois0n.

[Rekoil]

Based on the tweets from comex, limera1n is tethered but will be untethered because of the same userland exploit used by greenpois0n.

Hmm, well even if it's tethered, its still usable on 3GS which is unlikely to get another hardware revision now, better to save SHAtter for when there won't be any more hardware revisions of the current A4 devices so as to maximise compatibility. If Chronic-Dev teams release goes as planned without replacing SHAtter with limera1n then we will be burning 2 bootrom exploits instead of just one.

[ddominator]

Is it really a bootrom exploit?

But yeah I hope limerain can jailbreak the ipt2G MC models...

[Rekoil]

Is it really a bootrom exploit?

But yeah I hope limerain can jailbreak the ipt2G MC models...

It can, that much is known, same for all models of iPhone 3GS. But yes, it seems you are right, it gets untethered in userland, the tethered bootrom exploit is just the injection vector, which means we get tethered OiB using either exploit (but limera1n for more devices, so any tool designed by us will likely use limera1n if I get to have my way )

[ddominator]

Is it really a bootrom exploit?

But yeah I hope limerain can jailbreak the ipt2G MC models...

It can, that much is known, same for all models of iPhone 3GS. But yes, it seems you are right, it gets untethered in userland, the tethered bootrom exploit is just the injection vector, which means we get tethered OiB using either exploit (but limera1n for more devices, so any tool designed by us will likely use limera1n if I get to have my way )

Well then rekoil as Nickp666 asked, startporting OIB to 3GS!!! LOL

But on topic: yes I believe I can jailbreak my iPod Touch 2G 4.1 MC model (stupid Apple update).

[Rekoil]

It's a shame both the dev teams are so fucking proud. They will never back down to geohot even though we all know geohot always gets his way (because he doesn't care about anything other than his own ego).

I hope the greenpois0n team can man up and wait with releasing their exploit until the next hardware revision.

[iPwnUK]

So, an update:

Limera1n was released earlier, and then taken down, then comex allowed geohot to use the userland exploit to allow it to be un-tethered. I'm guessing that it will be officially re-released soonish.
Also, the SHAtter exploit is now being put on hold and greenpois0n is apparently going to use geohot's exploit so as to not waste two boot level exploits in one go.

Seems this thing is starting to work out better than I thought after all, and the best for this project, or so it seems. although i believe that even geohot's exploit is still tethered at boot level, which would mean that openiboot would be tethered if I'm not mistaken... still, its a start!

[ddominator]

Fail though as this does not work on MC models...

[iPwnUK]

no, apparently it doesn't work on the iPhone 3G, iPod touch 2G, or the newer bootrom 3GS, or so I've heard from twitter posts :/

[Rekoil]

no, apparently it doesn't work on the iPhone 3G, iPod touch 2G, or the newer bootrom 3GS, or so I've heard from twitter posts :/

It should work on new 3GS, just needs fixed patches from what I understand.

known bugs
3GS new bootrom is broken, fix pending