10-04-2009, 01:00 AM
|
 |
Senior Member
|
|
Join Date: Feb 2008
Posts: 106
Rep Power: 0
|
|
GreenPois0n - 1 Min Jailbreak
Coming Soon ...
source : Chronic Dev Blog
Quote:
Another Progress Update
October 1st, 2009
Because so many people on Twitter and the comments want an update, here it is. We said it would be technical, so please don’t get pissed off if you don’t understand it and do not flood the comments with questions of “what does this mean?”.
- After a stupid mistake was corrected, posixninja was able to use a payload written by ius that retrieved the location of the aes_crypto_cmd routine, so now we can decrypt the firmware files.
- “greenpois0n”, as in, the payload, is coming along quite nicely. This is it’s third rewrite, and I am doing it entirely in C with the exception of the loader.
Plans for the end product
- No DFU required
- No libUSB required
- No extra time to send over a ramdisk and boot that, everything is planned to be done over iBoot
- No IPSW required, firmware files are read directly from flash, then decrypted and patched on the fly, then reflashed and / or put aside to be booted from later
- Mac, WIndows, and Linux support
- The first revision will support OTB iPhone 3G[s] devices, or ones that have been upgraded without an ECID backup. on firmware 3.1 (build 7C144)
- The first revision will support the iPod touch 3G, on firmware 3.1.1 (both 7C145 and 7C146 will be supported)
- If the device is connected in Normal Mode, automatically reboot into Recovery Mode
- Jailbreak takes less than 1 minute from the time it boots to recovery
- Verbose reporting of progress, like “patching iBoot” or “reflashing DeviceTree” on the screen of the device, if you don’t understand what this means, it is similar to what the screen looks like if you were verbose booting your Mac / iPhone
- Extra patches such as access to the UID and GID keys from userland automatically applied, no need to dig up kernel decryption keys and use the patcher provided in xpwn and such
- Totally untethered jailbreak. This may or may not require an extra exploit.
- In case our exploit is in any other firmware revision, it can be ported in just a few line changes.
If you did not understand what some of that meant, this is the most important fact: on release, you will be able to go up to some random laptop at Best Buy, download the very small program plug in your device no matter what state it is in (normal or recovery), run it, and 1 minute later your device will be jailbroken. I am obviously not suggesting you randomly go in and do that, but the point I am trying to get across is that you will not need to prerequisites like libUSB, just plug it in, push a button, and the jailbreak is done in 1 minute. This is the way jailbreaking should always be.
|
|
Similar Threads
Linear Mode
