Hello everyone,

This is my first post in here. My problem is:

I want to check out the 1.1.4 firmwire. I don't have an iPhone yet, so I'm not able to download the decrypted firmwire from there. I've read some guides on the internet on how to do it, but it fails when using vfdecrypt on windows!

The steps in the guides are as following:

- Download the 1.1.4 firmware from apple
- Rename the .ispw to .zip and unpack
- Download vfdecrypt and libeay32.dll and use it on 022-3894-4.dmg
- Open the new dmg with MagicISO or some other software

The key to be used in vfdecrypt is:
d0a0c0977bd4b6350b256d6650ec9eca419b6f961f593e74b7 e5b93e010b698ca6cca1fe

The problem with this is, that the vfdecrypt does not accept any KEY as input, while the script goes like this:

Code:

    if ((in = fopen(argv[1], "rb")) == NULL) {
      fprintf(stderr, "Error: unable to open %s\n", inFile);
      exit(1);
    }

    if ((out = fopen(argv[2], "wb")) == NULL) {
      fprintf(stderr, "Error: unable to open %s\n", outFile);
      exit(1);
    }

I can see in the code, that you have to manually set the key in the C source. It goes like this

Code:

  //--------INSERT KEY HERE--------------
  //Find the key using command:
  // strings 009-7662-6.dmg | grep "^[0-9a-fA-F]*$"
  //It's the longest string that pops out
  //The first bit of the key replaces the first set of hyphens
  convert_hex("--------------------------------", aes_key, 16);
  //The second bit is the second set - there is no separation in the file though
  convert_hex("---------------------------------------", hmacsha1_key, 20);

Where the -------- should be replaced with the key (the first 16 first characters, the next the 20 last characters of the keys)

I have tried to edit this in the source, but I CANNOT compile it, because I need a lot of openssl files and a C compiler and so on.


To sum up
I cannot compile or use vfdecrypt.exe on my windows machine


My question is therefore, is anybody of you running on linux or mac, and is able to send me the untouched decrypted 1.1.4 firmwire? Maybe uploading it on the rapid$hare or megaupload?

Sorry for my english, and sorry for my long post.
Thanks in advance!

Youe need the vfdecrypt binary for pc here
http://**********.com/files/41004473/vfdecrypt.exe.html

libeay32.dll here
http://pecl4win.php.net/download.php...2/libeay32.dll

Originally Posted by javacom

Youe need the vfdecrypt binary for pc here
http://**********.com/files/41004473/vfdecrypt.exe.html

libeay32.dll here
http://pecl4win.php.net/download.php...2/libeay32.dll

Thank you, but its not working.

The problem is, that you CANNOT enter the key to decrypt in this vfdecrypt.exe version! You can try it yourself in the console, that you cannot use the -i and -o and -k arguments.

If i decrypt the file using:

vfdecrypt 022-3894-4.dmg lol.dmg

the file will output a file called lol.dmg. But it decrypts with the wrong key! The right key is in the thread.

This has worked for me:

Code:

vfdecrypt -i 022-3894-4.dmg -k d0a0c0977bd4b6350b256d6650ec9eca419b6f961f593e74b7e5b93e010b698ca6cca1fe -o 022-3894-4.decrypted.dmg

If my recollection is right, I downloaded vfdecrypt from http://code.google.com/p/iphoneelite/downloads/list

Originally Posted by winmedia

Thank you, but its not working.

The problem is, that you CANNOT enter the key to decrypt in this vfdecrypt.exe version! You can try it yourself in the console, that you cannot use the -i and -o and -k arguments.

If i decrypt the file using:

vfdecrypt 022-3894-4.dmg lol.dmg

the file will output a file called lol.dmg. But it decrypts with the wrong key! The right key is in the thread.

This is a compiled binary for windows

Code:

vfdecrypt -i 022-3894-4.dmg -o decrypted114.dmg -k d0a0c0977bd4b6350b256d6650ec9eca419b6f961f593e74b7e5b93e010b698ca6cca1fe

after issuing this command:

Code:

vfdecrypt 022-3894-4.dmg  decrypted.dmg  d0a0c0977bd4b6350b256d6650ec9eca419b6f961f593e74b7e5b93e010b698ca6cca1fe

using vfdecrypt downloaded from:

Code:

http://rapid$hare.com/files/41004473/vfdecrypt.exe.html

I receive this output:

Code:

D:\Zips\iPhone\Firmware 2.0>vfdecrypt 022-3894-4.dmg decrypted.dmg d0a0c0977bd4b
6350b256d6650ec9eca419b6f961f593e74b7e5b93e010b698ca6cca1fe
sig     encrcdsa
blocksize       4096
datasize        128371697
dataoffset      122880
keyDerivationAlgorithm      0
keyDerivationPRNGAlgorithm  0
keyDerivationIterationCount 0
keyDerivationSaltSize       0
keyDerivationSalt


blobEncryptionIVSize        0
blobEncryptionIV


blobEncryptionKeySizeInBits 0
blobEncryptionAlgorithm     0
blobEncryptionPadding       0
blobEncryptionMode          0
encryptedBlobSize           0
encryptedBlob

And I can't mount the resulting decrypted.dmg image using poweriso or ultraiso. What am I doing wrong?

thanks!

same here!

Edit: For ppl not bein able to open the decrypted files on windows just use Transmac

Originally Posted by spyboy

same here!

Edit: For ppl not bein able to open the decrypted files on windows just use Transmac

Doesn't work for me either, still the same problem!

Try the version of vfdecrypt from the link in my post. Worked for me.