Main Page

Welcome to the iPhone wiki. This is a conglomerate work of everything done by everyone on the iPhone. Anyone can post here, just create an account. This is needed to avoid spam.

Read(and edit) the constitution to understand what purpose this wiki serves.

Read this to get up to speed in the iPhone community. Read the timeline to see where we are.

If you have notes on something you did, post them here. Even if it isn't pretty.

If you have a fix for a problem people are having, post it here.

Hardware

 * iPhone(m68ap)
 * iPhone 3G(n82ap)
 * iPod touch(n45ap)

App Processor(Jailbreak)

 * S5L8900

Exploits

 * Restore Mode
 * LibTIFF
 * Symlinks
 * Ramdisk Exploit
 * Pwnage 1.0 (Ramdisk + AppleImage2NORAccess)
 * Diags Exploit
 * Pwnage 2.0 (DFU + Malformed Signature)

Boot Chain
VROM->LLB->iBoot->Kernel->System Software

One of the iPhoneLinux goals are to replace that Boot Chain after iBoot : VROM->OpeniBoot->Linux Kernel->X Server->Window Manager

Upgrade Process
VROM->DFU->WTF->iBoot->Kernel->Ramdisk->Restore

Baseband(Unlock)

 * S-Gold 2
 * X-Gold 608

Exploits

 * SIM hacks
 * Hardware Fakeblank
 * IPSF
 * Minus 0x400
 * Jerrysim
 * Minus 0x20000 with Back Extend Erase

Theoretical Attacks

 * NCK Brute Force
 * Baseband JTAG

Boot Chain
bootrom->bootloader->firmware

File formats

 * 8900 File Format
 * IMG2 File Format
 * IMG3 File Format
 * secpack
 * secpack 2.0
 * seczone

Protocols

 * Recovery Mode 0x1280
 * Recovery Mode 0x1281
 * DFU 0x1222
 * WTF 0x1227
 * Normal Mode 0x1290
 * Restore Mode
 * Baseband Bootrom Protocol
 * Baseband Bootloader Protocol

Keys

 * AES Keys
 * Apple Certificate
 * Baseband RSA Keys
 * Baseband TEA Keys
 * Root Filesystem DMG Keys

Application Development

 * Toolchain
 * Toolchain 2.0
 * Frameworks
 * Apple Certification Process
 * Distribution Methods

Tutorials

 * Toolchain Tutorial
 * Decrypt iPhone ipsw Beta 4-7 ramdisk
 * TurboSIM Unlock

Definitions

 * jailbreak
 * activation
 * unlock
 * baseband
 * bootloader