Difference between revisions of "Odysseus"

From The iPhone Wiki
Jump to: navigation, search
m (iPad: added back all possible devices but not iOS version)
(Links: More unofficial bundles.)
 
(22 intermediate revisions by 5 users not shown)
Line 3: Line 3:
 
== How it works ==
 
== How it works ==
   
It uses a tool included in [http://winocm.moe winocm's] [https://github.com/ramytuki/ios-kexec-utils ios-kexec-utils] called kloader. kloader is a CLI that you can run on an iOS device which loads an (decrypted) image. It allows you to bootstrap a pwned iBSS and then initiate a restore using [https://github.com/libimobiledevice/idevicerestore idevicerestore] with a custom IPSW, which allows you to downgrade/upgrade/restore to the firmware of your choice. [https://github.com/xerub/xpwn/tree/master/ipsw-patch/FirmwareBundles There are firmware bundles] that allow you to restore each device to each iOS. If the bundle for the device and iOS you want to get does not exist, the downgrade/upgrade cannot happen. Each bundle is made by grabbing the Keys/IVs from the original firmware. They are posted [https://www.theiphonewiki.com/wiki/Firmware_Keys here].
+
It uses a tool included in [http://winocm.moe winocm's] [https://github.com/ramytuki/ios-kexec-utils ios-kexec-utils] called [[Ios-kexec-utils#kloader|kloader]]. kloader is a CLI that you can run on an iOS device which loads an (decrypted) image. It allows you to bootstrap a pwned iBSS and then initiate a restore using [https://github.com/libimobiledevice/idevicerestore idevicerestore] with a custom IPSW, which allows you to downgrade/upgrade/restore to the firmware of your choice. [https://github.com/xerub/xpwn/tree/master/ipsw-patch/FirmwareBundles There are firmware bundles] that allow you to restore each device to each iOS. If the bundle for the device and iOS you want to get does not exist, the downgrade/upgrade cannot happen. Each bundle is made by grabbing the Keys/IVs from the original firmware. They are posted [[Firmware Keys|here]].
   
 
== Compatibility ==
 
== Compatibility ==
Line 9: Line 9:
 
=== Notes ===
 
=== Notes ===
   
This only works on some jailbroken 32-bit devices with an untether that has [[Task_for_pid0_patch | tfp0]] enabled. The latest versions of [[TaiG]], [[Pangu8]], [[Pangu]], [[evasi0n7]], and [[evasi0n]] all have tfp0 activated. Also, this will *NOT* change your [[Baseband_Device |baseband]]. If you go too far up or down with iOS version, it may be that the version of iOS you restored to does not understand the baseband left behind by the prior version of iOS. If that happens, you will not get past activation and you cannot re-jailbreak the device. As a consequence, the device will remain in activation limbo and you'll have to restore to the [https://ipsw.me/signed currently signed version of iOS].
+
This only works on some jailbroken 32-bit devices with an untether that has [[tfp0]] enabled. The latest versions of [[TaiG]], [[Pangu9]], [[Pangu8]], [[Pangu]], [[evasi0n7]], and [[evasi0n]] all have tfp0 activated. Also, this will *NOT* change your [[Baseband_Device |baseband]]. If you go too far up or down with iOS version, it may be that the version of iOS you restored to does not understand the baseband left behind by the prior version of iOS. If that happens, you will not get past activation and you cannot re-jailbreak the device. As a consequence, the device will remain in activation limbo and you'll have to restore to the [https://ipsw.me/signed currently signed version of iOS].
   
=== iPad ===
+
=== Official Bundles ===
  +
==== iPad ====
 
{| class="wikitable"
 
{| class="wikitable"
 
|-
 
|-
 
! rowspan="2" | iOS
 
! rowspan="2" | iOS
! colspan="7" | Device
+
! colspan="13" | Device
 
|-
 
|-
| [[k93ap|iPad 2 (iPad2,1)]]
+
| [[K93AP|iPad 2 (iPad2,1)]]
| [[k94ap|iPad 2 (iPad2,2)]]
+
| [[J1AP|iPad (3rd generation) (iPad3,1)]]
| [[k95ap|iPad2,3 (iPad2,3)]]
+
| [[J2AAP|iPad (3rd generation) (iPad3,3)]]
| [[k93aap|iPad2,4 (iPad2,4)]]
 
| [[j1ap|iPad 3 (iPad3,1)]]
 
| [[j2ap|iPad3,2 (iPad3,2)]]
 
| [[j2aap|iPad 3 (iPad3,3)]]
 
 
|-
 
|-
 
| 6.1.2
 
| 6.1.2
| colspan="4" {{no}}
+
| {{no}}
 
| {{yes}}
 
| {{yes}}
| colspan="2" {{no}}
+
| {{no}}
 
|-
 
|-
 
| 6.1.3
 
| 6.1.3
 
| {{yes}}
 
| {{yes}}
| colspan="5" {{no}}
+
| {{no}}
 
| {{yes}}
 
| {{yes}}
 
|-
 
|-
 
| 7.1.2
 
| 7.1.2
| {{yes}}
+
| colspan="3" {{yes}}
| colspan="3" {{no}}
 
| {{yes}}
 
| colspan="2" {{no}}
 
 
|}
 
|}
   
=== iPhone ===
+
==== iPhone ====
 
{| class="wikitable"
 
{| class="wikitable"
 
|-
 
|-
Line 48: Line 42:
 
! colspan="8" | Device
 
! colspan="8" | Device
 
|-
 
|-
| [[n90ap|iPhone 4 (iPhone3,1)]]
+
| [[N90AP|iPhone 4 (iPhone3,1)]]
| [[n90bap|iPhone 4 (iPhone3,2)]]
+
| [[N92AP|iPhone 4 (iPhone3,3)]]
| [[n92ap|iPhone 4 (iPhone3,3)]]
+
| [[N94AP|iPhone 4S (IPhone 4,1)]]
| [[n94ap|iPhone 4S (IPhone 4,1)]]
+
| [[N42AP|iPhone 5 (iPhone5,2)]]
| [[n41ap|iPhone 5 (iPhone5,1)]]
+
| [[N49AP|iPhone 5c (iPhone5,4)]]
| [[n42ap|iPhone 5 (iPhone5,2)]]
 
| [[n48ap|iPhone 5c (iPhone5,3)]]
 
| [[n49ap|iPhone 5c (iPhone5,4)]]
 
 
|-
 
|-
 
| 6.1.2
 
| 6.1.2
 
| {{yes}}
 
| {{yes}}
| colspan="5" {{no}}
+
| colspan="3" {{no}}
| colspan="2" {{n/a}}
+
| {{n/a}}
 
|-
 
|-
 
| 6.1.3
 
| 6.1.3
 
| {{yes}}
 
| {{yes}}
| colspan="2" {{no}}
+
| {{no}}
 
| {{yes}}
 
| {{yes}}
| colspan="2" {{no}}
+
| {{no}}
| colspan="2" {{n/a}}
+
| {{n/a}}
 
|-
 
|-
 
| 7.0.4
 
| 7.0.4
| {{yes}}
 
| colspan="4" {{no}}
 
 
| {{yes}}
 
| {{yes}}
 
| colspan="2" {{no}}
 
| colspan="2" {{no}}
  +
| {{yes}}
  +
| {{no}}
 
|-
 
|-
 
| 7.0.6
 
| 7.0.6
 
| {{yes}}
 
| {{yes}}
| colspan="7" {{no}}
+
| colspan="4" {{no}}
 
|-
 
|-
 
| 7.1.2
 
| 7.1.2
| {{yes}}
+
| colspan="5" {{yes}}
  +
|-
  +
| 8.1.2
  +
| colspan="2" {{n/a}}
 
| {{no}}
 
| {{no}}
 
| colspan="2" {{yes}}
 
| colspan="2" {{yes}}
  +
|-
  +
| 8.3
  +
| colspan="2" {{n/a}}
 
| {{no}}
 
| {{no}}
 
| {{yes}}
 
| {{yes}}
| colspan="2" {{no}}
+
| {{no}}
 
|-
 
|-
| 8.1.2
+
| 9.0
| colspan="3" {{n/a}}
+
| colspan="3" {{no}}
| colspan="2" {{no}}
 
 
| {{yes}}
 
| {{yes}}
 
| {{no}}
 
| {{no}}
  +
|-
  +
| 9.0.2
  +
| colspan="3" {{no}}
 
| {{yes}}
 
| {{yes}}
  +
| {{no}}
 
|}
 
|}
   
Line 129: Line 129:
 
== Links ==
 
== Links ==
   
  +
* [[OdysseusOTA]], a derivative tool for downgrading certain devices to iOS 6.1.3
  +
* [[OdysseusOTA2]], like OdysseusOTA, but for downgrading to iOS 8.4.1
 
* [http://dayt0n.com/articles/Odysseus/ Official page]
 
* [http://dayt0n.com/articles/Odysseus/ Official page]
 
* [https://github.com/xerub/xpwn GitHub]
 
* [https://github.com/xerub/xpwn GitHub]
  +
* [https://www.reddit.com/r/jailbreak/comments/3r9o4i/release_iphone_4_4s_5_5c_ipad_2_3_bundles_for/ alitek12's Unofficial bundles]
  +
* [https://www.reddit.com/r/jailbreak/comments/6orfvh/discussion_i_made_iphone_4s_ios_80812_82_83_12f69/ OothecaPickle's Unofficial bundles]
  +
* [https://www.mediafire.com/?d5hoo151ryi0d ee_csw's Unofficial bundles]
   
 
[[Category:Software]]
 
[[Category:Software]]

Latest revision as of 17:55, 20 January 2018

Odysseus is a tool by xerub to downgrade/upgrade/restore specific 32-bit devices to specific firmwares. This method only works if you are jailbroken, have valid SHSH Blobs and a valid APTicket.

How it works

It uses a tool included in winocm's ios-kexec-utils called kloader. kloader is a CLI that you can run on an iOS device which loads an (decrypted) image. It allows you to bootstrap a pwned iBSS and then initiate a restore using idevicerestore with a custom IPSW, which allows you to downgrade/upgrade/restore to the firmware of your choice. There are firmware bundles that allow you to restore each device to each iOS. If the bundle for the device and iOS you want to get does not exist, the downgrade/upgrade cannot happen. Each bundle is made by grabbing the Keys/IVs from the original firmware. They are posted here.

Compatibility

Notes

This only works on some jailbroken 32-bit devices with an untether that has tfp0 enabled. The latest versions of TaiG, Pangu9, Pangu8, Pangu, evasi0n7, and evasi0n all have tfp0 activated. Also, this will *NOT* change your baseband. If you go too far up or down with iOS version, it may be that the version of iOS you restored to does not understand the baseband left behind by the prior version of iOS. If that happens, you will not get past activation and you cannot re-jailbreak the device. As a consequence, the device will remain in activation limbo and you'll have to restore to the currently signed version of iOS.

Official Bundles

iPad

iOS Device
iPad 2 (iPad2,1) iPad (3rd generation) (iPad3,1) iPad (3rd generation) (iPad3,3)
6.1.2 No Yes No
6.1.3 Yes No Yes
7.1.2 Yes

iPhone

iOS Device
iPhone 4 (iPhone3,1) iPhone 4 (iPhone3,3) iPhone 4S (IPhone 4,1) iPhone 5 (iPhone5,2) iPhone 5c (iPhone5,4)
6.1.2 Yes No N/A
6.1.3 Yes No Yes No N/A
7.0.4 Yes No Yes No
7.0.6 Yes No
7.1.2 Yes
8.1.2 N/A No Yes
8.3 N/A No Yes No
9.0 No Yes No
9.0.2 No Yes No

Download

Version Download SHA-1
0.1 dayt0n.com a7ebd3743479a66b7502af947f6967cb4b54b54a
0.2 dayt0n.com 812cd80725003f1aed897eebe623b5fb39500510
0.3 dayt0n.com 8aedd1af2e3e96b58d7ab5e2f58fbcf76ad08411
0.4 dayt0n.com 2f8f368b047f66a96bf2e51ab228cdde2435444a
0.99 dayt0n.com fc98665bce96f406eafeb8d4f8745f70a08f62c8
0.999 dayt0n.com 23717f90a6b5bf847b996648be4c06046bc590b

Links