The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Difference between revisions of "Redsn0w"
(Updated to include 0.9.6b1 info, and other edits.) |
m (→Exploit) |
||
Line 13: | Line 13: | ||
[[iPhone Dev Team]] |
[[iPhone Dev Team]] |
||
− | == |
+ | == Exploits used == |
For [[N45ap|iPod touch]], [[M68ap|iPhone]] and [[N82ap|iPhone 3G]], see: |
For [[N45ap|iPod touch]], [[M68ap|iPhone]] and [[N82ap|iPhone 3G]], see: |
||
*[[Pwnage]] |
*[[Pwnage]] |
Revision as of 10:58, 15 October 2010
redsn0w (at version 0.1) was originally a QuickPwn-like implementation of the 0x24000 Segment Overflow for the iPod touch 2G. However, due to the theft and exploitation of the name (as QuickPWN) by quickpwn.com, as of iOS 3.0, QuickPwn was discontinued and redsn0w (at the time, version 0.7) was converted into a jailbreaking tool for all current devices as well as providing unlock support the iPhone 2G. As of version 0.8, the iPhone 3GS can also be jailbroken through redsn0w.
Version 0.9 beta 3 was released for Windows and Mac OS X, and it allows iOS 3.0 through 3.1.2 to be jailbroken. It includes support for all devices except the iPod touch 3G, and supports a tethered jailbreak on iPhone 3GS units and iPod touch 2G units with new bootroms. In addition, this version supported custom boot and recovery mode logos, as well as verbose mode on bootup.
The final release, version 0.9.2, supports jailbreaking of all iDevices (at the time) with iOS 3.0 through 3.1.2 on Windows and Mac OS X, as well as 3.1.3 on S5L8900 devices. Version 0.9.3 adds support of internet tethering IPCC hack on those devices and 0.9.4 allows jailbreaking of early iPod touch 2G with iOS 3.1.3.
Version 0.9.5b5-5 supports jailbreaking the iPhone 3G and iPod touch 2G (old bootrom) with iOS 4.0 on Windows and Mac OS X.
redsn0w 0.9.6b1 supporrts jailbreaking the iPhone 3G and iPod touch 2G (both bootroms, although the new bootrom's jailbreak is tethered) with iOS 4.0 through 4.1 on Mac OS X.
Credit
Exploits used
For iPod touch, iPhone and iPhone 3G, see:
For iPod touch 2G, see:
- 0x24000 Segment Overflow
- ARM7 Go - was used to upload the oversized LLB required to utilize the 0x24000 Segment Overflow.
- usb_control_msg(0xA1, 1) Exploit - used to upload the oversized LLB to utilize the 0x24000 Segment Overflow. It is also used for a tethered jailbreak on units with the new bootrom.
For iPhone 3GS, see:
- 0x24000 Segment Overflow
- iBoot Environment Variable Overflow - Exploit has a different implementation from geohot's implementation in purplera1n.
- usb_control_msg(0x21, 2) Exploit
For iPod touch 3G