iOS 9.x Re-restore Bug Even More Powerful ON 32-bit Devices



It was thought that the bug would mainly be of use for people downgrading from iOS 9.3.5 to a lower firmware, to jailbreak with Home Depot or Pangu9. However, it turns out the bug is in fact more powerful and wide-ranging than previously thought, and may have much wider utility.

However, it turns out the bug in fact affects every firmware change in which iOS 9.x is the destination. This means that as long as you are going to iOS 9, you can use it to upgrade from iOS 6-8, or even to downgrade from iOS 10 without a jailbreak.

This is of course big news, and hopefully our readers have been taking our advice and saving their blobs. As long as you have correct blobs saved for any firmware from iOS 9.0-9.3.4, you should be able to downgrade/upgrade to that firmware, and use Pangu9 or Home Depot to jailbreak. Users stuck on iOS 10 can return to a jailbreak, and users on iOS 6-8 who want to upgrade but missed the window can move to iOS 9. iOS 9 users can move up or down as they please, and even use this as a way to restore to the same firmware for a fresh start.

After talking to a couple of the developers of the tool, who were really obliging, some further technical information and restrictions have come to light, which I'll quickly sum up below.



Requirements:

  • 32-bit devices only, do not ask about 64-bit.
  • Destination firmware must be iOS 9.x, do not ask about restoring to any other firmware.
  • Starting firmware can theoretically be any, though only iOS 6, 8, 9 and 10 have so far been tested.
  • Starting firmware does not require a jailbreak.
  • Process does not require keys, bundles, or nonces.
  • Process requires blobs for the destination firmware.
  • The blobs have specific requirements. They must be Erase blobs, not OTA, and they must begin with the string MIIKkj. This is not yet fully understood.


 Further details

 The technique requires a signed baseband, like Prometheus. However, between the currently signed basebands for iOS 10 and the signed OTA basebands most, if not all, devices should be able to get a working baseband without issues.

iOS 9 -> iOS 9 restores can be done from Recovery mode, iOS ≠9 -> iOS 9 restores must be done from DFU.

In the interim, another tool may be released which will check your saved blobs for compatibility with the technique, as unfortunately not all blobs will work.

Advice
Save your blobs! Never delete any old blobs, and check to see if any of them are for iOS 9.

If on iOS 9.3.5, do not update to iOS 10 (if your device can).

Source: idownloadblog

Join our Facebook User's group, or visit our iPhoneGuide official site for the latest iPhone tips and jailbreak updates.


Comments

Post a Comment

Popular posts from this blog

How to Extract IPCC Files on Apple Website ?

Image
What is IPCC?  Zip archive created to hold all carrier customized settings for iPhones; organizes data such as voice mail numbers and APN settings; contains the Payload folder, which holds the bundle and symbolic link. Users may have various reasons to download IPCC, for instance, if you want to use more advanced carrier versions without upgrading the system. In order to solve those kinds of problem, iPhoneGuide summed up a tip aboout how to extract IPCC file on Apple website . If you want to search 27.1 version of IPCC, you can click Ctrl+F, and enter codes: <string>27.1</string> in Find box, it will be more convenient to check instead of input 27.1 directly. For example, the following field is one of the mobile carrier IPCC codes, we need to do is copy this field and open it in a browser, then it can be downloaded <string> http://appldnld.apple.com/ios10.2/031-91680-20161212-E50EE76A-BCE7-11E6-9816-52B482FDB0CC/CMCC_cn_iPhone.ipcc </string>
Read more

How to Enter KDFU Mode Using Futurerestore?

Image
If you want to downgrade, you need to enter KDFU mode. Please download: For iOS 10+: Futurerestore.zip For iOS versions lower than iOS 10:  9-futurerestore.zip Official iOS firmware:  http://www.3u.com/firmwares Step 1 Before you operate on Futurerestore, you need to customize firmware to help you enter Kdfu mode. (1) After you download then unzip the tool , launch wndGui.exe. Note: Not all iOS can be customized, you should check FirmwareBundles  in the unzipped file to see if there is iOS you want to cutomized.For example, iOS 6.1.2, 6.1.3, 7.0.4, 7.0.6 and 7.1.2 firmwares for product type iPhone 3,1 can be customized. As follow, click the third button “生成自制固件” to customize firmware. You will need custom firmware to enter KDFU mode, please remember where you save it. Then click "继续"  to start the process.On the second box, you are recommended to create a new folder, then just select the folder to save custom firmware. (2) The command window will sta
Read more

[Fully Untethered] How to Jailbreak iOS 8.4.1 with EtasonJB

Image
EtasonJB is finally out! Tihmstar has finally released his untethered iOS 8.4.1 jailbreak to the public. EtasonJB is a fully untethered jailbreak developed for 32-bit devices running iOS 8.4.1 firmware.  Here's how you can download and use it on your iPhone, iPad, and iPod touch. * DO NOT install AppSync Unified after using this tool. Here's how to downgrade iOS 9.3.5 to iOS 8.4.1 or 6.1.3 without SHSH blobs At present, the RC2 (Release Candidate 2) version is available for download, which fixes patcyh. You can expect more fixes in the upcoming versions, hopefully. Compatible devices: IPHONE iPhone 4S, iPhone 5 (GSM), iPhone 5 (Global), iPhone 5C (GSM),iPhone 5C (Global) IPAD iPad 2 ,iPad mini ,iPad 3 ,iPad 4 IPOD iPod touch 5 Instructions: Step 1 Download the EtasonJB jailbreak IPA file. Step 2 Download Cydia Impactor from this link . We will be using this utility to install this IPA file on our iOS device. Once you hav
Read more