Results 1 to 2 of 2
Discuss Question about iPhone boot process/boot loader at the General -; Hello - I'm new to iPhone hacking. I've done some searching, but haven't found the ...
  1. #1
    Professional Array

    Join Date
    Mar 2007
    Post Thanks / Like
    Rep Power

    Default Question about iPhone boot process/boot loader

    Hello -

    I'm new to iPhone hacking. I've done some searching, but haven't found the info I want yet (maybe because it isn't known yet...)

    I've seen from various places that it's possible to connect to the iPhone's bootloader via a serial port. Various low-level commands are listed (memory read/write, iic access, nand stuff, etc).

    I'm curious: does anyone know the 'boot process' from the very start on the iPhone yet? Is the boot loader located in ROM? (if so, where's the ROM - is it embedded in the CPU chip?) Or is it on one of the flash chips (NOR or NAND)?

    I assume that the boot loader gets control, then validates the 'signature' of the OS before booting it. Is that the case? Is this signature-checking code available somewhere? (has someone done a dump/disassembly)?

    When the original Xbox was hacked, it was known that it would be pretty much impossible to 'break' the RSA encryption/signature checking used on the main binaries. That's why it was important to get a disassembly of the ROM boot loader, and from that a 'security hole' was found. I feel that there is a similar possibility on the iPhone, but of course we'd need to see the code first.

    Has anyone tried the 'memory dump' commands in the boot loader? Do they prohibit dumping 'private' memory sections (like where the ARM reset vector/boot loader code may be)?

    Sorry if this has all been asked before - I did do some searching, but couldn't find anything. Please point me to the correct place(s) if this info is known (I've been to the Wiki at, but haven't found this level of info).

    Thanks in advance,

    - Paulb

  2. #2
    Newbie Array

    Join Date
    Jun 2009
    Post Thanks / Like
    Rep Power

    Default You Asked About the boot process

    i think you should chk this out

    iPhone OS X Architecture: the BSD Unix Userland — RoughlyDrafted Magazine

    just keep on following the links on the issue and you just might find what you're looking for



Similar Threads

  1. Replies: 3
    Last Post: 02-16-2012, 08:33 AM
  2. 2G Iphone Boot Loader Version:Unknown or None
    By republitarian in forum iOS 3.x (iPhone OS 3.x)
    Replies: 1
    Last Post: 09-05-2009, 05:21 AM
  3. Any solution for iphone 5.09 boot loader?
    By advance in forum iPhone 3G
    Replies: 2
    Last Post: 05-11-2009, 06:40 PM
  4. Vista boot loader & Darwin boot loader
    By jedavis1 in forum Archiv (Leopard)
    Replies: 0
    Last Post: 04-27-2007, 09:46 PM


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012
All times are GMT +2. The time now is 11:16 PM.
twitter, follow us!