Page 1 of 10 12345678910 LastLast
Results 1 to 10 of 92
Discuss Some iPhone Internals Info... at the iPhone "2G" (Rev. 1) - Hackint0sh.org; Hello, I see a lot of confusion recently about various software components inside the iPhone. ...
  1. #1
    Advanced Array

    Join Date
    Sep 2007
    Posts
    32
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default [WHAT IS A BOOTLOADER?] Some iPhone Internals Info...

    Hello,

    I see a lot of confusion recently about various software components inside the iPhone. Here is a small glossary that could help out some people actually understand what we are talking about here:


    The iPhone is a small computer with two processors, some RAM and some eraseable FLASH for long-term storage (the 8GB of storage).

    ARM Core: This is the processor used to run the Operating System (the OS), which is a scaled down version of MAC OS X. The job of the OS is as a general manager of the phone's resources (RAM, FLASH, Baseband, etc...) , as well as overview the concurrent running of the phone's applications.

    Baseband: This is the processor that manages all the functions which need an antenna. The GSM phone, as well as the WiFi and bluetooth are all under the control of the baseband processor. The baseband processor has its own RAM and FLASH resources, separate from the ARM core resources. The baseband processor is a resource to the OS.

    Boot Loader: This is a (normally) very small program in non-volatile memory (can be FLASH, often is un-eraseable) that 'bootstraps' a processor startup and calls the main (usually much larger) program. The boot loaderhas also the responsibility to provide a protocol for obtaining and storing an updated version of the main program. Normally, the boot loader changes very rarely, as there is no need to. It is the main program that gets upgraded, not the boot loader. Also, if something happens during the update of the main program, the boot loader will always be there to save you and restore the main program with a good one. However, when you update the boot loader, if anything bad happens, then you have no more boot loader, which means that the processor will not restart at all. A Brick.

    Question: how are bootloaders first programmed into the system? The answer is left as an exercise to the student... :)

    The ARM core processor has its own bootloader for restoring the OS, which implements the so-called <DFU mode>.

    The Baseband processor also has its own boot loader too. That boot loader is a lot more hardened with crypto protection, and will not normally let you update the baseband program with one that is not digitally signed with the special Infineon crypto key. Infineon are the makers of the baseband processor. However, there is a bug in version 3.9 of the baseband bootloader that enables re-programming the baseband even with a version that has the wrong crypto signature. Thus, with a 3.9 boot loader, anything is possible.

    However, with the new 4.x bootloader, the backdoor has been closed and we are back to square one: any update to the baseband must be cryptographically signed with the correct signature. That is why no unlock is possible at the moment.

    Now, finding the key is next to impossible. For the unlock to work, some people must find a new crack in the bootloader, a new backdoor. Considering that Apple must have put quite a bit of pressure on Infineon in order to have a well protected bootloader this time, I would tend to think that it might take some time before a crack is actually found.

    Time will tell.

    WHAT HAPPENS WHEN I UPGRADE:

    When you upgrade (or restore), the OS will be changed to whatever version you want (1.0.2, 1.1.1, 1.1.2) , however the baseband bootloader will only allow baseband firmware updates UP in the version chain. Never down. Moreover, the bootloader itself is not upgraded or changed in any way (that would be quite daring to do for Apple). Which is why when you restore a UK phone from 1.1.2 to 1.1.1 you still have the new 4.02.13 baseband firmware and bootloader 4.x. It is UNLOCKABLE at the moment. And which is also why you can restore from an original 1.1.1 US phone (with bootloader 3.x) to 1.1.2 (it then has baseband 4.02.13, but still bootloader 3.x), then restore down to 1.0.2 and unlock the baseband 4.02.13 (because bootloader 3.x has backdoor and allows unlock) and then can re-upgrade all the way up to 1.1.2 (only the OS changes, the 4.02 baseband firmware is already there and does not get updated, it is already at highest version, thus it stays unlocked).

    Since it is very unlikely that the old 3.9 boot loaders will ever be upgraded via software, and also it is unlikely that a backdoor will be found in the 4.x bootloader, I would tend to think that the market value of iPhones with the 3.9 bootloaders should become much higher very soon...

    I hope this helps understand a bit more...
    Last edited by realo; 11-17-2007 at 03:09 PM.



  2. #2
    Professional Array akiacat's Avatar

    Join Date
    Oct 2007
    Posts
    61
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    10

    Default

    I added a link to this to the iPhone Status Ticker.

    http://docs.google.com/Doc?id=dgzw9xs_0gfhxns

  3. #3
    Rookie Array

    Join Date
    Nov 2007
    Posts
    19
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    this is bad news.. basically its unhackable bootloader? soo how will the hacker devlop an crack ver for it? since its unhackable...as u said the bak door is been close down and no loose string for hackers could trace MY IPHONE IS DOOMMED!!! dammit stupid UK bootloader 4.x!!

  4. #4
    Senior Professional Array

    Join Date
    Oct 2007
    Posts
    171
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    15

    Default

    Urghhh!!!


    I got 5 OTB/1.1.2/wk 45/bl 4.6!


    Patiently waiting for a solution!!

  5. #5
    drg
    drg is offline
    Senior Professional Array

    Join Date
    Oct 2007
    Location
    Canada
    Posts
    479
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    34

    Default

    Very sobering write up....


  6. #6
    Rookie Array

    Join Date
    Oct 2007
    Posts
    28
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    New Booter is unbreakable at this point then.

    Now.... my friend just got a 1.12 iphone from US apple.com,

    how can he check the booter version? If it still 3.9, then he still stand for a chance.

  7. #7
    Newbie Array

    Join Date
    Nov 2007
    Posts
    9
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    how can I check the bootloader version of my iphone?

  8. #8
    Senior Professional Array

    Join Date
    Oct 2007
    Posts
    174
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    16

    Default

    This is an excellent explanation of the inner workings of the iPhone. If more people wrote/read posts like this, we would have far fewer pointless posts. I was actually wondering for a while now if Apple would upgrade the bootloader through iTunes. You make a good case for them not doing so, and appear to be right since the upgrade to 1.1.2 hasn't changed the bootloader.

  9. #9
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    148
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    14

    Default

    Quote Originally Posted by dannyhy View Post
    how can I check the bootloader version of my iphone?
    bbupdater -v

    or via minicom

  10. #10
    Respected Professional Array

    Join Date
    Oct 2007
    Posts
    514
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    34

    Default

    Quote Originally Posted by tony604 View Post
    This is an excellent explanation of the inner workings of the iPhone. If more people wrote/read posts like this, we would have far fewer pointless posts.
    O RYLY??

    just look at the posts between the OP's and your post


 

 
Page 1 of 10 12345678910 LastLast

Similar Threads

  1. MacRumors: Updated Mac Pro Benchmarks and Video of Internals
    By hackint0sh in forum Latest Headlines
    Replies: 0
    Last Post: 03-15-2009, 01:40 AM
  2. MacNN: MacBook teardown reveals 'beautiful' internals
    By hackint0sh in forum Latest Headlines
    Replies: 0
    Last Post: 10-16-2008, 07:00 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 12:46 AM.
twitter, follow us!