6 pagesV  < 1 2 3 4 5 6 > »  
 
REPLY
> Rollback with futurerestore (Odysseus) | For iPhone (4S, 5, 5C), iPod touch 5G, iPad (2, 3, 4), iPad mini 1
T0ugh
Message#1
16.08.17, 13:32
^_^
*********
[offline]

Topics Curator
Group: Moderators
Messages 5632
Check in: 20.10.09
Apple iPhone 5

Reputation:-  1448  +

Rollback with futurerestore (Odysseus)
\ iPhone (4S, 5, 5C), iPod touch 5G, iPad (2, 3, 4), iPad mini 1 /


Attached Image

What is a rollback (downgrade)?
  • Rollback (downgrade) - install the old version of iOS, which is officially no longer relevant on the Apple server and is not signed by the SHSH certificate. Officially, you can only flash on the latest, current firmware.
  • For informativeness ->Wikipedia
You need to understand the following:
  • For rollback usingfuturerestoreneed a jailbreak.
  • For rollback usingfuturerestorepreviously saved SHSH required.
  • futurerestoresupports ->iPhone (4S, 5, 5C), iPod touch 5G, iPad (2, 3, 4), iPad mini 1
  • futurerestoresupports ->Linux and macOS, does not support Windows.
To roll back / restore iOS, we need:
  • macOS (10.10 Yosemite, 10.11 El Capitan, 10.12 Sierra).
  • Firmware for our device on which we roll back ->IOS firmware
  • Previously saved SHSH from the firmware on which we roll back.
  • futurerestorefor rollback.
  • kDFUApp from repository ->http://repo.tihmstar.net
For example, takefuturerestorefor macOS, iPhone 4S (A1387, A1431) (onboard iOS 9.3.5) with an identifier ->iPhone4,1 (n94ap) and SHSH ->******** 44587-iPhone4,1-7.1.2-11D257.shsh to roll back to iOS 7.1.2
Create a folder on your desktop ->Downgrade
From the archive ->futurerestoreportable ->futurerestore_macosin the folder on your desktop ->Downgrade
SHSH ->******** 44587-iPhone4,1-7.1.2-11D257.shshcopy to the folder on your desktop ->Downgrade
Firmware (iOS 7.1.2, to which we roll back) ->iPhone4,1_7.1.2_11D257_Restore.ipswcopy to the folder on your desktop ->Downgrade

In folder ->Downgrademust be3a file.
Attached Image
******** 44587-iPhone4,1-7.1.2-11D257.shsh ->certificate from the firmware for which we roll back / restore (iOS 7.1.2).
futurerestore_macos ->executable file futurerestore for macOS.
iPhone4,1_7.1.2_11D257_Restore.ipsw ->The firmware for which we roll back / restore (iOS 7.1.2).

For normal operationfuturerestoreadditional packages are needed, we open the terminal and enter commands.
🢃🢃🢃
Open a terminal and enter commands one by one
Attached Image
  1. xcode-select --install

  2. / usr / bin / ruby ​​-e "$ (curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"

  3. brew install automake autoconf libtool pkg-config libplist openssl libzip
    git clone https://github.com/tihmstar/libirecovery && cd ./libirecovery && bash autogen.sh && make install
    cd
    git clone https://github.com/tihmstar/libcrippy && cd ./libcrippy && bash autogen.sh && make install
    cd
    git clone https://github.com/tihmstar/libfragmentzip && cd ./libfragmentzip && bash autogen.sh && make install
    cd
    git clone https://github.com/tihmstar/libpartialzip && cd ./libpartialzip && bash autogen.sh && make install

  4. cd / usr / local
    sudo mkdir ssl
    sudo chmod 777 / usr / local / ssl
    cd
    git clone https://github.com/openssl/openssl.git
    cd openssl
    ./config
    make
    make install

  5. brew install curl

  6. ln -s /usr/local/opt/openssl/lib/libcrypto.1.0.0.dylib / usr / local / lib /
    ln -s /usr/local/opt/openssl/lib/libssl.1.0.0.dylib / usr / local / lib /
    ln -s /usr/local/Cellar/openssl/1.0.2j/bin/openssl openssl

After preparing the necessary files and system, go to the main, preparing the device for rollback / recovery.

1.Open Cydia on your device and add a repository ->http://repo.tihmstar.net
2.Install from repository ->kDFUApp.
3.We connect the device to the computer and runkDFUAppfrom the main screen.
Attached Image
4.Activate all switches so that they becomegreenatkDFUApp.
Attached ImageAttached Image
5.It does not matter which version is listed in the Bundle.
6.Pushenter kDFUThe device will go into DFU mode (black screen).
Attached ImageAttached Image
7.Open the terminal.
8.We entercd, press the spacebar and drag the folder to the terminal ->Downgrade
Attached Image

Attached Image
9.Hit Enter
Attached Image
10.To be sure that we are in the right folder, enterlsand hit enter
Attached Image

Attached Image
11.We enterchmod + x futurerestore_macosand hit enter
Attached Image

Attached Image
The next step will be final, after which the rollback / restore will begin. The core team looks like this:
./futurerestore_macos -t **. shsh --latest-baseband --use-pwndfu **. ipsw

Where**the names of the main files in the folder ->Downgrade
My team, with my data looks like this:
./futurerestore_macos -t ******** 44587-iPhone4,1-7.1.2-11D257.shsh --latest-baseband - use-pwndfu iPhone4,1_7.1.2_11D257_Restore.ipsw

If your device is without a SIM, the command will be
./futurerestore_macos -t **. shsh --no-baseband --use-pwndfu **. ipsw

Data example
./futurerestore_macos -t ******** 84401-iPad3,4-7.1.2-11D257.shsh --no-baseband --use-pwndfu iPad3,4_7.1.2_11D257_Restore.ipsw

12.We enter./futurerestore_macos -t ******** 44587-iPhone4,1-7.1.2-11D257.shsh --latest-baseband - use-pwndfu iPhone4,1_7.1.2_11D257_Restore.ipswand hit enter
Do not close the terminal window, do not disconnect the device from the Mac, check everything several times.
Attached Image
Attached Image
Attached Image
Attached Image
Done: restoring succeeded. Congratulations, after successful recovery, block iOS update ->How to disable automatic iOS update

Post has been editedT0ugh - 18.08.17, 12:25
T0ugh
Message#22
27.10.17, 17:06
^_^
*********
[offline]

Topics Curator
Group: Moderators
Messages 5632
Check in: 20.10.09
Apple iPhone 5

Reputation:-  1448  +

* bodybuilding
There may be problems with 8gigs, maximum on iOS 8.4.1


--------------------
Tolbas
Message#23
27.10.17, 18:22
Guru
*********
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 2604
Check in: 20.12.13
Apple iPhone 7

Reputation:-  434  +

* bodybuilding
Only those released through October 2014 are inclusive. All that later - only on 8.4.1.


--------------------
Apple iPhone 7 11.3 Apple Watch Series 1 (42mm) watchOS 4.3.1
bodybuilding
Message#24
27.10.17, 20:24
*******
[offline]

Group: Banned
Messages 1135
Check in: 30.06.11
Apple iPhone 5s

Reputation:-  18  +

* Tolbas
Ie at least I can roll back any 4s without ssh to 8.4.1?
T0ugh
Message#25
27.10.17, 20:34
^_^
*********
[offline]

Topics Curator
Group: Moderators
Messages 5632
Check in: 20.10.09
Apple iPhone 5

Reputation:-  1448  +

* bodybuilding
Yes


--------------------
MrRomezzz
Message#26
29.10.17, 16:17
Experienced
******
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 575
Check in: 05.02.08
Apple iPhone X

Reputation:-  46  +

It turned out this method ipad2 roll back from 9.3.5 to 6.1.3. There was no other method (without SHSH), but it turned out that SHSH was downloaded there. I tried several times, and then I realized that I now have SHSH! And tried this method. And the first time everything went well.
sverccosh
Message#27
09.11.17, 09:35
¯ \ _ (ツ) _ / ¯
******
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 504
Check in: 15.09.13

Reputation:-  12  +

Just today came across a topic. I haven’t got it yet, but I’ll ask the question: the first and mini 4s are set 7.1.2. Certificates not saved. I want to use 6.1.3 on them, but return later. Is it possible now to save certificates from 7.1.2, pass 6.1.3, and then return to 7.1.2?


--------------------
Intel (R) Core i7 6700k 4 Ghz processor Asus z170-p motherboard DDR 4 16 GB RAM Intel HD Graphics 530 video adapter
T0ugh
Message#28
09.11.17, 11:54
^_^
*********
[offline]

Topics Curator
Group: Moderators
Messages 5632
Check in: 20.10.09
Apple iPhone 5

Reputation:-  1448  +

* sverccosh
Remove the certificate and go ahead ->Save SHSH for all devices
Minic on 6.1.3 do not roll back.

Post has been editedT0ugh - 09.11.17, 12:33


--------------------
Danfrid
Message#29
09.11.17, 14:23
Local
*****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 206
Check in: 10.01.13
Xiaomi Redmi Note 3 Pro Prime

Reputation:-  17  +

* sverccosh
Google how to use odysseus to dump apticket.der


--------------------
iPad Air 2 Wi-Fi 128GB 11.3.1 (JB Electra)
Noisia1
Message#30
10.11.17, 16:30
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 96
Check in: 04.05.12
Google nexus 5

Reputation:-  2  +

Guys when rolling back 4s gives-11 error, why?
mal__
Message#31
11.11.17, 10:47
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

Something I'm confused, it seems that for a rollback, you need SHSH from a specific firmware, on the other hand they write that for rollback 4s there are no problems and you can roll back without saved shsh.
Tell me, there is an ipad mini 1, there is no firmware 9.3.5 on it.
If I put the jail on the minicar, can I roll it back to 7.1.2, if so, then for this I need to save apticket.der and convert it to shsh from firmware 7.1.2?
If I do not understand correctly, poke how to roll back the minicar from 9.3.5 to 7.1.2 without saved shsh
T0ugh
Message#32
11.11.17, 13:50
^_^
*********
[offline]

Topics Curator
Group: Moderators
Messages 5632
Check in: 20.10.09
Apple iPhone 5

Reputation:-  1448  +

mal__ @ 11.11.17, 10:47*
If I do not understand correctly, poke how to roll back the minicar from 9.3.5 to 7.1.2 without saved shsh

It's impossible.


--------------------
mal__
Message#33
11.11.17, 18:55
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

T0ugh @ 11.11.17, 13:50*
It's impossible.

Can I roll back iPad mini to 8.4.1 without SHSH?
Will I be able to install jail on 8.4.1 after rollback?
T0ugh
Message#34
11.11.17, 19:06
^_^
*********
[offline]

Topics Curator
Group: Moderators
Messages 5632
Check in: 20.10.09
Apple iPhone 5

Reputation:-  1448  +

mal__ @ 11.11.17, 18:55*
Can I roll back iPad mini to 8.4.1 without SHSH?

You can
Save OTA SHSH from iOS 8.4.1 ->Rollback using futurerestore (Odysseus) (Post T0ugh # 66398748)
Further, as described here ->Rollback with futurerestore (Odysseus) (Post earth.lukas # 64329393)
Additional bundles here ->Rollback using futurerestore (Odysseus) (Post adober # 65988502)

iPhone4.1 / iPad2.1 / iPad2.2 / iPad2.3 - can be rolled back to iOS 6.1.3
iPad2.1 / iPad2.2 / iPad2.3 / iPad2.4 / iPad2.5 / iPad2.6 / iPad2.7 / iPad3.1 / iPad3.2 / iPad3.3 / iPad3.4 / iPad3.5 / iPad3, 6 / iPhone4.1 / iPhone5.1 / iPhone5.2 / iPod5.1 - can be rolled back to iOS 8.1.4


--------------------
mal__
Message#35
12.11.17, 11:40
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

Earth.lukas @ 08.23.17, 14:18*
5. Decrypt and patch iBSS. Yes, only iBSS without iBEC, which makes it easy. To do this, look for the bundle for your iDevice here, download, and take from it the file "iBSS.identifier_your_models.RELEASE.patch" (I had "iBSS.p105.RELEASE.patch") - it will be needed for the patch, but for now let's go to Windows, run FCE 365 Firmware Manager (here it is). First iBSS is decrypted with the help of keys (and they are here), and then patched with the help of that file "iBSS.your_mobile_ identifier.RELEASE.patch" and save the file with * .patched extension (let's call it ibss.patched), we will need it later. If you have, like me, iPad2.5 - take my ibss.patched.zip (48.62 KB)

A harsh item in 1 line.
If this is the first time to do this, it is not at all clear:
1 - Tell me, in which menu and on which button do I need to “decrypt iBSS using keys” can I screen?
2 - "using the keys (and they are here)" on the page a bunch of text, tell me, for iPad 2.7 (1455) what to download? more precisely, it’s not even clear where to download this button, there are a lot of information on the page in English.
3 - "and then patch using that file" tell me, what button should I click in the software?

sort of found where to do the decrypt and patch, but at least beat the forehead, the patched file is not saved. Maybe the software version is a curve? and from the admin I ran and danced with a tambourine, help make this fucking patch for iPad models 1455 and 1454
Attached Image


Post has been editedT0ugh - 12.11.17, 14:09
Reason for editing: Extra spaces
Danfrid
Message#36
12.11.17, 14:35
Local
*****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 206
Check in: 10.01.13
Xiaomi Redmi Note 3 Pro Prime

Reputation:-  17  +

* mal__,
the patched file is in the folder with fce itself
look


--------------------
iPad Air 2 Wi-Fi 128GB 11.3.1 (JB Electra)
mal__
Message#37
12.11.17, 14:57
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

* Danfrid,
And there I also looked, well, there is none, there is nowhere, even stupidly search on all disks started on this file.

The decrypt works, the file is created, but patched is not.

Running with admin rights and everything else checked, even a virtual machine on Win 7 set for this
mal__
Message#38
12.11.17, 16:38
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

private void iTalk_Button_213_Click (object sender, EventArgs e)
{
{
ProcessStartInfo psi2 = default (ProcessStartInfo);
Process proc = new Process ();
string pat1 = Application.StartupPath;
dynamic process3 = pat1 + "/Data/bspatch.exe";
dynamic asrorigi = OriginalDFU.Text;
dynamic asrpatch = PatchFilePf.Text;
dynamic finalpatch = PatchedFilePf.Text;
dynamic args3 = string.Format ("{0} {1} {2}", asrorigi, finalpatch, asrpatch);
psi2 = new ProcessStartInfo (process3, args3);
proc.StartInfo = psi2;
proc.Start ();
MessageBox.Show ("Done creating PATCHED File!", "F.C.E. 365 Firmware Manager X", MessageBoxButtons.OK, MessageBoxIcon.Information);
}
}

It turns out that F.C.E. 365 Firmware Manager is not the case here, it’s just a shell, and accordingly bspatch.exe doesn’t work, but this crap can only be done with the advanced telepathy skill.
Who did it at least once to do it yourself, and did not take the finished one, do a good deed, collect the .patched file for my device, the files and keys in the attachment.
Attached fileDown_iPad2,7_8.4.1_12H321.bundle.zip(85.1 KB)


Post has been editedT0ugh - 13.11.17, 16:28
mal__
Message#39
13.11.17, 11:57
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

mal__ @ 12.11.17, 16:38*
It turns out that F.C.E. 365 Firmware Manager is not the case here, it’s just a shell, and accordingly bspatch.exe doesn’t work, but this crap can only be done with the advanced telepathy skill.

Found a problem, everything was as usual trite ...
When downloading a patch file from a githab, I did not use the download button, but clicked on the file with the right mouse button and save, in this case the file was saved with the correct name, but inside there was information that it was downloaded from the github, and not the file itself.
It turned out this is also really simple, as I wrote earlierF.C.E. 365 Firmware Managerby itself, it does not crypt or patch anything, but simply launches an application from the Data folder with file paths in the console, here’s how, for example, an error looks at the patch file if the file with which the patch is “crooked”
E: \ temp \ apple>bspatch.exe iBSS.dfu iBSS.patched iBSS.p107.RELEASE.patch
Corrupt patch

those. For the patch, the full utility is not needed, put the file that is patched and the patch file next to bspatch.exe and run from the console in this format: bspatch.exe old_file new_file_patch
also for the decrypt, you can use the xpwntool.exe utility with the following parameters from the console:
xpwntool.exe "filename" "newfile" -k "key" -iv "iv key"

If there is a desire, then it is possible to put both files into the instruction and with what parameters to run them, otherwise if the links to the compiled F.C.E. 365 Firmware Manager does translate into a network.

Post has been editedT0ugh - 13.11.17, 16:29
Reason for editing: Extra spaces
mal__
Message#40
14.11.17, 05:41
User
****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 79
Check in: 01.04.08

Reputation:-  5  +

* AirShark,
The only thing when I started ./kloader through the iPad itself was not how kDFU did not start, connected via ssh and executed all the same commands except su, and immediately iTunes found the body in recovery mode.

Tell me, through ssh, do you mean just put openssh and enter the same commands but connecting from the computer?
Already through mterminal I tried it, and from the computer through putty I connected, I do not want everything, it goes into the black screen and in this way is lost from the devices at all.
But I have a Mac through a virtual machine, I already tried to wait for the transition to recovery mode on tuna in Windows. He still does not want to, even in Windows, the tuna loses it and nothing happens, he waited about 3-5 minutes.
Maybe there is a sense of a file in another directory to shift and run from there, or something else to do? Who else won the reluctance to go to kDFU?
Airshark
Message#41
14.11.17, 14:51
Local
*****
[offline]

Group: Friendswww.savagemessiahzine.com
Messages 293
Check in: 31.08.11
Xiaomi Redmi 5 Plus 3/32

Reputation:-  61  +

* mal__,via putty connected to iPad
Want to roll back to 8.4.1? Did not try in plist to change the version on iOS 6 and reboot the device?
I managed on iPad2.5 changed the version in plist and update 8.4.1 itself started to swing and the norms were established

Post has been editedAirshark - 14.11.17, 14:54


--------------------
Xiaomi Redmi 5 Plus 3/32 - Lenovo S930 - iPad mini 16Gb
Thank you so much -MrDi84- For sent motherboard for K900. The war ended matt. fee lost x_x

6 pagesV  < 1 2 3 4 5 6 > » 


 mobile version    Now: 06/22/19, 03:58