Mirrors/Legacy-iOS-Kit
2
0
Fork 0
mirror of https://github.com/LukeZGD/Legacy-iOS-Kit.git synced 2024-11-24 00:49:17 +01:00
Code Issues Packages Projects Releases Wiki Activity

Support for daibutsu jailbreak with daibutsuCFW (#129)

Browse Source 
* Get started

* Up

* up

* Now working

* Update README.md

* Update README.md

* Input for ProductType and UniqueChipID if needed

* Update

* Update depends.sh

* Update README.md

* Update restore.sh

* Update README.md
This commit is contained in:
LukeeGD 2021-09-06 16:50:29 +08:00 committed by GitHub
parent cc4c38ca40
commit 5c014be961
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
10 changed files with 80 additions and 45 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.gitignore vendored
View File

@ -1,6 +1,8 @@
*.bbfw *.bbfw
*.dfu *.dfu
*.dmg
*.im4p *.im4p
*.ipa
*.ipsw *.ipsw
*.json *.json
*.shsh *.shsh
@ -10,6 +12,7 @@
Cydia* Cydia*
iP* iP*
saved/ saved/
resources/daibutsuCFW
resources/FirmwareBundles resources/FirmwareBundles
resources/firmware/ resources/firmware/
resources/ipwndfu/ resources/ipwndfu/

43
README.md
View File

@ -86,14 +86,15 @@
- **IPSW file integrity** will be verified before restoring and/or creating custom IPSW (if custom IPSW is already created, this will be skipped) - **IPSW file integrity** will be verified before restoring and/or creating custom IPSW (if custom IPSW is already created, this will be skipped)
- **For users having issues with missing libraries/tools:** Re-install dependencies with `./restore.sh Install` - **For users having issues with missing libraries/tools:** Re-install dependencies with `./restore.sh Install`
- Alternatively, delete the `libimobiledevice` folder in `resources` then run the script again - Alternatively, delete the `libimobiledevice` folder in `resources` then run the script again
- macOS users may have to install libimobiledevice and libirecovery from [Homebrew](https://brew.sh/) with this command: `brew install libimobiledevice libirecovery`
- The script will detect this automatically and will use the Homebrew versions of the tools
- **For A7 devices:** - **For A7 devices:**
- Do not use USB-C to lightning cables as this can prevent a successful restore - Do not use USB-C to lightning cables as this can prevent a successful restore
- ipwndfu is unfortunately very unreliable on Linux, you may have to try multiple times (Linux users may also try in a live USB) - ipwndfu is unfortunately very unreliable on Linux, you may have to try multiple times (Linux users may also try in a live USB)
- If the script cannot find your device in pwnREC mode or gets stuck, you may have to start over by [force restarting](https://support.apple.com/en-ph/guide/iphone/iph8903c3ee6/ios) and re-entering recovery/DFU mode - If the script cannot find your device in pwnREC mode or gets stuck, you may have to start over by [force restarting](https://support.apple.com/en-ph/guide/iphone/iph8903c3ee6/ios) and re-entering recovery/DFU mode
- macOS users may have to install libimobiledevice and libirecovery from [Homebrew](https://brew.sh/) with this command: `brew install libimobiledevice libirecovery`
- The script will detect this automatically and will use the Homebrew versions of the tools
- Use an Intel or Apple Silicon PC/Mac as entering pwnDFU (checkm8) may be a lot more unreliable on AMD devices - Use an Intel or Apple Silicon PC/Mac as entering pwnDFU (checkm8) may be a lot more unreliable on AMD devices
- Apple Silicon Mac users running macOS 11.3 and newer may encounter issues entering pwnDFU mode (see issue [#114](https://github.com/LukeZGD/iOS-OTA-Downgrader/issues/114)) - Apple Silicon Mac users running macOS 11.3 and newer may encounter issues entering pwnDFU mode (see issue [#114](https://github.com/LukeZGD/iOS-OTA-Downgrader/issues/114))
- For more troubleshooting steps for entering pwnDFU mode, see issue [#126](https://github.com/LukeZGD/iOS-OTA-Downgrader/issues/126)
- Other than the above, unfortunately there is not much else I can do to help regarding entering pwnDFU mode. - Other than the above, unfortunately there is not much else I can do to help regarding entering pwnDFU mode.
- **For 32-bit devices:** - **For 32-bit devices:**
- To make sure that SSH is successful, try these steps: Reinstall OpenSSH/Dropbear, reboot and rejailbreak, then reinstall them again - To make sure that SSH is successful, try these steps: Reinstall OpenSSH/Dropbear, reboot and rejailbreak, then reinstall them again
@ -109,33 +110,29 @@
- Select the "kDFU mode" option if your device is already in kDFU mode beforehand. Example of this is using kDFUApp by tihmstar; kDFUApp can also be installed from my repo - Select the "kDFU mode" option if your device is already in kDFU mode beforehand. Example of this is using kDFUApp by tihmstar; kDFUApp can also be installed from my repo
- For A6/A6X devices, "DFU mode (A6)" option can be used. This will use ipwndfu (or iPwnder32 for Mac) to put your device in pwnDFU mode, send pwned iBSS, and proceed with the downgrade/restore - For A6/A6X devices, "DFU mode (A6)" option can be used. This will use ipwndfu (or iPwnder32 for Mac) to put your device in pwnDFU mode, send pwned iBSS, and proceed with the downgrade/restore
- For A5/A5X devices, "pwnDFU mode (A5)" option can be used, BUT ONLY IF the device is put in pwnDFU mode beforehand, with an Arduino and USB Host Shield ([checkm8-a5](https://github.com/synackuk/checkm8-a5)) - For A5/A5X devices, "pwnDFU mode (A5)" option can be used, BUT ONLY IF the device is put in pwnDFU mode beforehand, with an Arduino and USB Host Shield ([checkm8-a5](https://github.com/synackuk/checkm8-a5))
- **For the jailbreak option (iOS 6.1.3 and 8.4.1):** - **For the jailbreak option:**
- If you have problems with Cydia, remove the ultrasn0w repo and close Cydia using the app switcher, then try opening Cydia again - If you have problems with Cydia, remove the ultrasn0w repo and close Cydia using the app switcher, then try opening Cydia again
- If you cannot find Cydia in your home screen, try accessing Cydia through Safari with `cydia://` and install "Jailbreak App Icons Fix" package from my Cydia repo - p0sixspwn will be used for iOS 6.1.3, and EtasonJB or daibutsu for iOS 8.4.1
- **For the jailbreak option (iOS 8.4.1 only):** - For some devices, EtasonJB untether is unstable and not working properly, so daibutsu jailbreak will be used. See PR [#129](https://github.com/LukeZGD/iOS-OTA-Downgrader/pull/129) for more details
- Stashing is already enabled and `nosuid` is removed from `fstab`, so there is no need to install "Stashing for #etasonJB" package - For devices jailbroken with EtasonJB, there is no need to install "Stashing for #etasonJB" package, as stashing is already enabled
- **For users with A5 Rev A ([8942](https://www.theiphonewiki.com/wiki/S5L8942)) and A5X ([8945](https://www.theiphonewiki.com/wiki/S5L8945)) devices:** - For devices jailbroken with daibutsu, add the system repo for future updates to the untether: https://dora2ios.github.io/repo/
- **A5 Rev A devices:** iPad2,4, iPad mini 1, iPod touch 5 - **My Cydia repo**: https://lukezgd.github.io/repo/ - for installing Dropbear and kDFUApp if needed
- **A5X devices:** iPad 3
- The jailbreak option **might not work** on A5 Rev A devices. (see issue [#70](https://github.com/LukeZGD/iOS-OTA-Downgrader/issues/70)) The script will warn you if you enable the jailbreak option on one of these devices
- For users that downgraded **without** jailbreak option, and have manually jailbroken with the EtasonJB app, it is recommended to install "EtasonJB Disable Bootloop Protection" from my Cydia repo
- For users that downgraded **with** the jailbreak option, and to users that have installed "EtasonJB Disable Bootloop Protection", your device might take a very long time to boot, possibly 20 minutes or more
- **My Cydia repo**: https://lukezgd.github.io/repo/ - for installing Dropbear, Jailbreak App Icons Fix, EtasonJB Disable Bootloop Protection, kDFUApp
## Tools and other stuff used by this script: ## Tools and other stuff used by this script:
- cURL - cURL
- bspatch - bspatch
- [ipwndfu](https://github.com/LukeZGD/ipwndfu) - [ipwndfu](https://github.com/LukeZGD/ipwndfu) - LukeZGD fork
- [iPwnder32](https://github.com/dora2-iOS/iPwnder32) - [iPwnder32](https://github.com/dora2-iOS/iPwnder32) - dora2ios
- [irecovery](https://github.com/libimobiledevice/libirecovery) - [daibutsuCFW](https://github.com/dora2-iOS/daibutsuCFW) - dora2ios
- [libimobiledevice](https://github.com/libimobiledevice/libimobiledevice) - [libimobiledevice](https://github.com/libimobiledevice/libimobiledevice) - libimobiledevice
- [imobiledevice-net](https://github.com/libimobiledevice-win32/imobiledevice-net) (macOS) - [libirecovery](https://github.com/libimobiledevice/libirecovery) - libimobiledevice
- [idevicerestore](https://github.com/LukeeGD/idevicerestore) - [imobiledevice-net](https://github.com/libimobiledevice-win32/imobiledevice-net) - libimobiledevice (macOS binaries)
- ipsw tool from [xpwn](https://github.com/LukeeGD/xpwn) (OdysseusOTA/2) - [idevicerestore](https://github.com/LukeeGD/idevicerestore) - LukeZGD fork
- ipsw tool from [xpwn](https://github.com/LukeeGD/xpwn) (OdysseusOTA/2) - LukeZGD fork
- Python 2 (for ipwndfu, rmsigchks, SimpleHTTPServer) - Python 2 (for ipwndfu, rmsigchks, SimpleHTTPServer)
- [tsschecker](https://github.com/tihmstar/tsschecker) - [tsschecker](https://github.com/tihmstar/tsschecker) - tihmstar
- [futurerestore](http://api.tihmstar.net/builds/futurerestore/futurerestore-latest.zip) used for 32-bit devices - [futurerestore](http://api.tihmstar.net/builds/futurerestore/futurerestore-latest.zip) used for 32-bit devices - tihmstar
- [futurerestore](https://github.com/m1stadev/futurerestore) used for A7 devices - [futurerestore](https://github.com/m1stadev/futurerestore) used for A7 devices - m1stadev fork
- [kloader](https://www.youtube.com/watch?v=fh0tB6fp0Sc) - [kloader](https://www.youtube.com/watch?v=fh0tB6fp0Sc)
- [kloader5 for iOS 5](https://www.pmbonneau.com/cydia/com.pmbonneau.kloader5_1.2_iphoneos-arm.deb) - [kloader5 for iOS 5](https://www.pmbonneau.com/cydia/com.pmbonneau.kloader5_1.2_iphoneos-arm.deb)
- [kloader_hgsp for iOS 10](https://twitter.com/nyan_satan/status/945203180522045440) - [kloader_hgsp for iOS 10](https://twitter.com/nyan_satan/status/945203180522045440)

10
resources/depends.sh
View File

@ -57,18 +57,18 @@ SetToolPaths() {
} }
SaveExternal() { SaveExternal() {
local ExternalURL="https://github.com/LukeZGD/$1.git" local ExternalURL="https://github.com/$1/$2.git"
local External=$1 local External=$2
[[ $1 == "iOS-OTA-Downgrader-Keys" ]] && External="firmware" [[ $2 == "iOS-OTA-Downgrader-Keys" ]] && External="firmware"
cd resources cd resources
if [[ ! -d $External || ! -d $External/.git ]]; then if [[ ! -d $External || ! -d $External/.git ]]; then
Log "Downloading $External..." Log "Downloading $External..."
rm -rf $External rm -rf $External
$git clone $ExternalURL $External $git clone $ExternalURL $External
fi fi
if [[ ! -e $External/README.md || ! -d $External/.git ]]; then if [[ ! $(ls $External/*.md) || ! -d $External/.git ]]; then
rm -rf $External rm -rf $External
Error "Downloading/updating $1 failed. Please run the script again" Error "Downloading/updating $2 failed. Please run the script again"
fi fi
cd .. cd ..
} }

12
resources/device.sh
View File

@ -31,11 +31,12 @@ GetDeviceValues() {
local ideviceinfo2 local ideviceinfo2
Log "Finding device in Normal mode..." Log "Finding device in Normal mode..."
DeviceState=
ideviceinfo2=$($ideviceinfo -s) ideviceinfo2=$($ideviceinfo -s)
if [[ $? != 0 ]]; then if [[ $? != 0 ]]; then
Log "Finding device in DFU/recovery mode..." Log "Finding device in DFU/recovery mode..."
DeviceState="$($irecovery -q 2>/dev/null | grep -w "MODE" | cut -c 7-)" DeviceState="$($irecovery -q 2>/dev/null | grep -w "MODE" | cut -c 7-)"
else elif [[ ! -z $ideviceinfo2 ]]; then
DeviceState="Normal" DeviceState="Normal"
fi fi
@ -44,7 +45,14 @@ GetDeviceValues() {
ProductType=$($irecovery -qv 2>&1 | grep "iP" | cut -c 14-) ProductType=$($irecovery -qv 2>&1 | grep "iP" | cut -c 14-)
[[ $(echo $ProductType | cut -c 3) == 'h' ]] && ProdCut=9 [[ $(echo $ProductType | cut -c 3) == 'h' ]] && ProdCut=9
ProductType=$(echo $ProductType | cut -c -$ProdCut) ProductType=$(echo $ProductType | cut -c -$ProdCut)
if [[ ! $ProductType ]]; then
read -p "$(Input 'Enter ProductType (eg. iPad2,1):')" ProductType
fi
UniqueChipID=$((16#$(echo $($irecovery -q | grep "ECID" | cut -c 7-) | cut -c 3-))) UniqueChipID=$((16#$(echo $($irecovery -q | grep "ECID" | cut -c 7-) | cut -c 3-)))
if [[ ! $UniqueChipID || $UniqueChipID == 0 ]]; then
read -p "$(Input 'Enter UniqueChipID (ECID, must be decimal):')" UniqueChipID
fi
ProductVer="Unknown" ProductVer="Unknown"
else else
ProductType=$(echo "$ideviceinfo2" | grep "ProductType" | cut -c 14-) ProductType=$(echo "$ideviceinfo2" | grep "ProductType" | cut -c 14-)
@ -54,7 +62,7 @@ GetDeviceValues() {
UniqueDeviceID=$(echo "$ideviceinfo2" | grep "UniqueDeviceID" | cut -c 17-) UniqueDeviceID=$(echo "$ideviceinfo2" | grep "UniqueDeviceID" | cut -c 17-)
fi fi
if [[ ! $ProductType ]]; then if [[ ! $DeviceState ]]; then
Error "No device detected. Please put the device in normal mode before proceeding. Recovery or DFU mode is also applicable" \ Error "No device detected. Please put the device in normal mode before proceeding. Recovery or DFU mode is also applicable" \
"For more details regarding alternative methods, read the \"Other Notes\" section of the README" "For more details regarding alternative methods, read the \"Other Notes\" section of the README"
fi fi

13
resources/downgrade.sh
View File

@ -90,11 +90,12 @@ Downgrade() {
if [[ $Jailbreak != 'N' && $Jailbreak != 'n' ]]; then if [[ $Jailbreak != 'N' && $Jailbreak != 'n' ]]; then
Jailbreak=1 Jailbreak=1
if [[ $ProductType == "iPad2,5" || $ProductType == "iPad2,6" || if [[ $ProductType == "iPhone4,1" || $ProductType == "iPad2,4" ||
$ProductType == "iPad2,7" || $ProductType == "iPod5,1" ]]; then $ProductType == "iPad2,5" || $ProductType == "iPad2,6" ||
Log "Warning - A5 Rev A device detected. Enabling the jailbreak option might not work for you" $ProductType == "iPad2,7" || $ProductType == "iPod5,1" ]] ||
read -p "$(Input 'Select Y to continue anyway, N to cancel and exit (y/N):')" Jailbreak [[ $ProductType == "iPad3"* && $DeviceProc == 5 ]]; then
[[ $Jailbreak == 'Y' || $Jailbreak == 'y' ]] && Jailbreak=1 || exit 0 Log "Using daibutsu jailbreak"
JBDaibutsu=1
fi fi
fi fi
fi fi
@ -159,7 +160,7 @@ Downgrade() {
"Delete/replace the IPSW and run the script again" "Delete/replace the IPSW and run the script again"
fi fi
elif [[ -e "$IPSWCustom.ipsw" ]]; then elif [[ -e "$IPSWCustom.ipsw" ]]; then
Log "Found existing Custom IPSW. Skipping verification." Log "Found existing Custom IPSW. Skipping IPSW verification."
Log "Setting restore IPSW to: $IPSWCustom.ipsw" Log "Setting restore IPSW to: $IPSWCustom.ipsw"
IPSWRestore=$IPSWCustom IPSWRestore=$IPSWCustom
fi fi

32
resources/ipsw.sh
View File

@ -1,6 +1,7 @@
#!/bin/bash #!/bin/bash
IPSW32() { IPSW32() {
local Bundle="resources/firmware/FirmwareBundles/Down_${ProductType}_${OSVer}_${BuildVer}.bundle"
local JBFiles local JBFiles
local JBMemory local JBMemory
local JBSHA1 local JBSHA1
@ -11,15 +12,32 @@ IPSW32() {
return return
fi fi
if [[ $Jailbreak == 1 ]]; then if [[ -e $Bundle/Info.plist.bak ]]; then
rm $Bundle/Info.plist
mv $Bundle/Info.plist.bak $Bundle/Info.plist
fi
if [[ $JBDaibutsu == 1 ]]; then
JBPartSize="-daibutsu"
SaveExternal dora2-iOS daibutsuCFW
echo '#!/bin/bash' > tmp/reboot.sh
echo "mount_hfs /dev/disk0s1s1 /mnt1; mount_hfs /dev/disk0s1s2 /mnt2" >> tmp/reboot.sh
echo "nvram -d boot-partition; nvram -d boot-ramdisk" >> tmp/reboot.sh
echo "/usr/bin/haxx_overwrite -$HWModel" >> tmp/reboot.sh
elif [[ $Jailbreak == 1 ]]; then
cp $Bundle/Info.plist $Bundle/Info.plist.bak
sed -z -i "s|</dict>\n</plist>|\t<key>needPref</key>\n\t<true/>\n</dict>\n</plist>|g" $Bundle/Info.plist
if [[ $OSVer == 8.4.1 ]]; then if [[ $OSVer == 8.4.1 ]]; then
JBFiles=("fstab.tar" "etasonJB-untether.tar" "Cydia8.tar") JBFiles=("fstab.tar" "etasonJB-untether.tar" "Cydia8.tar")
JBSHA1="6459dbcbfe871056e6244d23b33c9b99aaeca970" JBSHA1="6459dbcbfe871056e6244d23b33c9b99aaeca970"
JBPartSize="-s 2305" JBPartSize="-s 2305"
else elif [[ $OSVer == 6.1.3 ]]; then
JBFiles=("fstab_rw.tar" "p0sixspwn.tar" "Cydia6.tar") JBFiles=("fstab_rw.tar" "p0sixspwn.tar" "Cydia6.tar")
JBSHA1="1d5a351016d2546aa9558bc86ce39186054dc281" JBSHA1="1d5a351016d2546aa9558bc86ce39186054dc281"
JBPartSize="-s 1260" JBPartSize="-s 1260"
else
Error "No OSVer selected?"
fi fi
if [[ ! -e resources/jailbreak/${JBFiles[2]} ]]; then if [[ ! -e resources/jailbreak/${JBFiles[2]} ]]; then
cd tmp cd tmp
@ -32,6 +50,7 @@ IPSW32() {
JBFiles[$i]=jailbreak/${JBFiles[$i]} JBFiles[$i]=jailbreak/${JBFiles[$i]}
done done
fi fi
if [[ ! -e $IPSWCustom.ipsw ]]; then if [[ ! -e $IPSWCustom.ipsw ]]; then
Echo "* By default, memory option is set to Y, you may select N later if you encounter problems" Echo "* By default, memory option is set to Y, you may select N later if you encounter problems"
Echo "* If it doesn't work with both, you might not have enough RAM and/or tmp storage" Echo "* If it doesn't work with both, you might not have enough RAM and/or tmp storage"
@ -39,7 +58,12 @@ IPSW32() {
[[ $JBMemory != 'N' && $JBMemory != 'n' ]] && JBMemory="-memory" || JBMemory= [[ $JBMemory != 'N' && $JBMemory != 'n' ]] && JBMemory="-memory" || JBMemory=
Log "Preparing custom IPSW..." Log "Preparing custom IPSW..."
cd resources cd resources
rm -rf FirmwareBundles
if [[ $JBDaibutsu == 1 ]]; then
ln -sf firmware/JailbreakBundles FirmwareBundles
else
ln -sf firmware/FirmwareBundles FirmwareBundles ln -sf firmware/FirmwareBundles FirmwareBundles
fi
$ipsw ./../$IPSW.ipsw ./../$IPSWCustom.ipsw $JBMemory -bbupdate $JBPartSize ${JBFiles[@]} $ipsw ./../$IPSW.ipsw ./../$IPSWCustom.ipsw $JBMemory -bbupdate $JBPartSize ${JBFiles[@]}
cd .. cd ..
fi fi
@ -47,6 +71,7 @@ IPSW32() {
Error "Failed to find custom IPSW. Please run the script again" \ Error "Failed to find custom IPSW. Please run the script again" \
"You may try selecting N for memory option" "You may try selecting N for memory option"
fi fi
Log "Setting restore IPSW to: $IPSWCustom.ipsw" Log "Setting restore IPSW to: $IPSWCustom.ipsw"
IPSWRestore=$IPSWCustom IPSWRestore=$IPSWCustom
} }
@ -67,12 +92,13 @@ IPSW64() {
fi fi
mv -f $iBSS.im4p $iBEC.im4p $IPSW/Firmware/dfu mv -f $iBSS.im4p $iBEC.im4p $IPSW/Firmware/dfu
cd $IPSW cd $IPSW
zip ../$IPSWCustom.ipsw -rq0 * zip -rq0 ../$IPSWCustom.ipsw *
cd .. cd ..
mv $IPSW $IPSWCustom mv $IPSW $IPSWCustom
if [[ ! -e $IPSWCustom.ipsw ]]; then if [[ ! -e $IPSWCustom.ipsw ]]; then
Error "Failed to find custom IPSW. Please run the script again" Error "Failed to find custom IPSW. Please run the script again"
fi fi
Log "Setting restore IPSW to: $IPSWCustom.ipsw" Log "Setting restore IPSW to: $IPSWCustom.ipsw"
IPSWRestore=$IPSWCustom IPSWRestore=$IPSWCustom
} }

BIN
resources/jailbreak/symlink.tar Normal file
View File

Binary file not shown.

BIN
resources/tools/ipsw_linux
View File

Binary file not shown.

BIN
resources/tools/ipsw_macos
View File

Binary file not shown.

4
restore.sh
View File

@ -94,8 +94,8 @@ Main() {
InstallDepends InstallDepends
fi fi
SaveExternal iOS-OTA-Downgrader-Keys SaveExternal LukeZGD iOS-OTA-Downgrader-Keys
SaveExternal ipwndfu SaveExternal LukeZGD ipwndfu
GetDeviceValues GetDeviceValues