Main Page

Welcome to the iPhone wiki. This is a conglomerate work of everything done by everyone on the iPhone. Anyone can post here, just create an account. This is needed to avoid spam.

Read(and edit) the constitution to understand what purpose this wiki serves.

Read this to get up to speed in the iPhone community. Read the timeline to see where we are.

If you have notes on something you did, post them here. Even if it isn't pretty.

If you have a fix for a problem people are having, post it here.

Here is a mirror of the old wiki. If any information is relevant, copy it.

Hardware

 * iPhone(m68ap)
 * iPhone 3G(n82ap)
 * iPod touch(n45ap)

App Processor(Jailbreak)

 * S5L8900

Exploits

 * Restore Mode
 * LibTIFF
 * Symlinks
 * Ramdisk Exploit
 * Pwnage 1.0 (Ramdisk + AppleImage2NORAccess)
 * Diags Exploit
 * Pwnage 2.0 (DFU + Malformed Signature)

Boot Chain
VROM->LLB->iBoot->Kernel->System Software

One of the iPhoneLinux goals are to replace that Boot Chain after iBoot : VROM->OpeniBoot->Linux Kernel->X Server->Window Manager

Restore mode
The common upgrade process chain is VROM->DFU->WTF->iBoot->Kernel->Ramdisk->Restore, also called restore mode.

DFU mode
To flash an older / modified version you have to let your phone reside in DFU mode (VROM->DFU). In iTunes you have to press the Alt-Key (Mac) or the shift-key (Windows) when pressing 'Restore' to be able to manually chose an update file (ipsw file). iTunes also must be pwned to accept the firmware file.

Baseband(Unlock)

 * S-Gold 2
 * X-Gold 608

Exploits

 * SIM hacks
 * Hardware Fakeblank
 * IPSF
 * Minus 0x400
 * Jerrysim
 * Minus 0x20000 with Back Extend Erase

Theoretical Attacks

 * NCK Brute Force
 * Baseband JTAG

Boot Chain
bootrom->bootloader->firmware

File formats

 * 8900 File Format
 * IMG2 File Format
 * IMG3 File Format
 * secpack
 * secpack 2.0
 * seczone

Protocols

 * Recovery Mode 0x1280
 * Recovery Mode 0x1281
 * DFU 0x1222
 * WTF 0x1227
 * Normal Mode 0x1290
 * Restore Mode
 * Baseband Bootrom Protocol
 * Baseband Bootloader Protocol

Keys

 * AES Keys
 * Apple Certificate
 * Baseband RSA Keys
 * Baseband TEA Keys
 * Root Filesystem DMG Keys

Application Development

 * Toolchain(Includes tutorials)
 * Toolchain 2.0(Includes tutorials)
 * Frameworks
 * Apple Certification Process
 * Distribution Methods

Tutorials

 * Mounting ramdisk of ipsw beta 4-7
 * TurboSIM Unlock

Definitions

 * jailbreak
 * activation
 * unlock
 * baseband
 * bootloader

Useful Links

 * [iPhone Information Wiki (Outdated)]
 * [iPhone Dev Team Portal]
 * [Chronic Dev User Wiki]
 * [iPhone forum for the German community]
 * [iClarified iPhone tutorials]