What is this?

Update:
As of February 7, 2008 Geohot release a software method to unlock 1.1.2 Out-of-box.

Apple released firmware 1.1.3 on January 15 and the dev team is working on it right now. Good news: 1.1.3 brings a baseband update, that will once again allow us access to the baseband's memory (this means that there will be a software unlock).

Please don't bother everyone by asking about this in the forums. As soon there are any news, we will let you know.

---

If you want to stay up-to-date, consider joining our medium-traffic, moderated iPhone news group/mailing list.

Click here: iPhone Cafe News

(I will move this status ticker to the group in order to allow better formatting of all the precious information on here. :)

---

Status Matrix	1.0.0	1.0.2	1.1.1	1.1.2 (Upgraded)	1.1.2 (OOB)	1.1.3 (Upgraded)	1.1.3 (OOB)
Jailbreake	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Activation	Yes	Yes	Yes	Yes	Yes	No	No
3rd-party apps/API	Yes	Yes	Yes	Yes	Yes	Yes (not all yet)***	Yes
Unlocking	Yes	Yes	Yes	Yes (w/ workaround) (run anySIM 1.2.1u on 1.0.2) or (run AnySim 1.2.1u on 1.1.2 in Airplane mode)	YES*	YES*	YES**
TurboSIM	Don't Know (should)	Yes	No	Yes	Yes	Yes (After Dev Team 1.1.3 Update)	No

(You will find more information in the iPhone Cafe group.
* Check here
** Geohot Unlock runs on 8GB and 16GB too (1.1.3 OTB)
*** on 1.1.3 applications runs under another user (mobile) instead of root. They need to be updated from developers.

MobileSMS.app and MobilePhone.app keep crashing

Here is some information from Arnaldo aka "aviegas" as of 2007/11/15:

AppSupport needs to be patched on a per country basis. Now it contains a list of "valid" countries.

Valid ones are: US, Canada, UK, Germany, France, Italy, Japan and China

(That means: If you are using your iPhone in one of these countries, you don't have to patch anything!)

The mapping is performed from the SIM CARD default network MCC (Mobile Country Code) to the ISO country code, then the information is used to format number and that is why it crashes.

So the trick (works because [Arnaldo] did it) is to patch the country name and country dial code on AppSupport, REPLACING ONE of the countries above. The data starts at offset 0xA0A0 on the AppSupport file.

So the issue is over, but fixing it on a more general basis will be hard. Jailbreaking software will have to ask for the destination country and dial code as well as which country in the list to overwrite.

So right now, the only major feature missing in 1.1.2 for International users is CallerId matching. The patch is also on AppSupport, but since the new country matching was introduced, it became much more complex.

More information about this issue:

If you are experiencing crashes of MobileSMS.app and MobilePhone.app, read this:

http://code.google.com/p/iphone-elite/wiki/fix_crashing_phone_sms_apps

If you need more information about this, you might want to read through the following threads:

• http://forum.frenchiphone.com/index.php/topic,3743.msg44610.html#msg44610

...has a full tutorial (unfortunately, in French) regarding Updating to 1.1.2, that also mentions this problem and offers solution(s).

• You will need a patched UIMobileCountryCodes.plist to make it work. You can dowload it here:

http://forum.frenchiphone.com/index.php?action=dlattach;topic=3743.0;attach=1730

...and copy it to your iPhone into the following path:

/System/Library/Frameworks/UIKit.framework/PhoneFormats/UIMobileCountryCodes.plist

• A reboot is required for all changes to have effect.
• Tim Schuerewegen provides some more information on AppSupport (Phone+SMS problem solution) right here:

http://www.hackint0sh.org/forum/showpost.php?p=120279&postcount=229

Problematic, in progress, testing

It seems that the 1.1.2 iPhone is shipping with a different bootloader. The iPhone dev community does not provide any tools for this new bootloader yet, so wait a bit longer. It seems as if the latest iPhones in the USA are now also shipped with the new bootloader. Let's see how fast the iPhone dev team finds a way to patch the new bootloader.
These phones are shipped with the Version 4.6 bootloader where the old ones had 3.9.

iDemocracy 2.0 allows activation and jailbreaking 1.1.2 phones using your Windows PC.

http://code.google.com/p/idemocracy/

Update: Here is some technical background information on the new iPhone architecture. This clearly states WHY we can not crack/downgrade the 1.1.2 OOB/Euro iPhones right now.

http://hackint0sh.org/forum/showthread.php?t=16051

Not Working, in progress

(See description above for more information)

To jailbreak you first need to downgrade to 1.1.1 Firmware and then install OktoPrep from the Tweaks (1.1.1) Category in Installer.app. Once installed, upgrade to 1.1.2 and use the 1.1.2 Jailbreak GUI released by the Dev Team. (See section iPhone 1.1.2 below!)

Activation: Works

Once you have updated back to 1.1.2 and you have Jailbreak the iPhone, you can use WinSCP to get access to the files on the iPhone, you then rename the lockdownd in /usr/libexec to backuplockdownd112 (# mv /usr/libexec/lockdownd /usr/libexec/lockdownd_112) and then upload the new hacked lockdownd to /usr/libexec. You then set permissions to octal 555 and restart the phone. You now have complete access to the phone just no sim-unlock as of yet.

(Also see section iPhone 1.1.2 below!)

It seems that the dev team pointed out that anySIM 1.2 can NOT be run on an upgraded 1.1.2 iPhone. In fact, it can even break your baseband (which it did for me - fortunately I could restore the baseband afterwards).

This will NOT work with the 4.06 bootloader (aka 1.1.2/UK/DE/US out-of-the-box iPhones)

This WILL work with the 3.9 bootloader.

It is highly recommended to run anySIM 1.2(.1u) in iPhone firmware 1.0.2.

Here is where we are:

anySIM 1.2 will NOT run on 1.1.2 (upgraded) firmware as it will crash while running. If you want to upgrade to 1.1.2, you have to do the following:

1. RESTORE iPhone to 1.1.2 (to get the new baseband installed)
2. RESTORE iPhone to 1.0.2 (will not downgrade the baseband, requires DFU!)
3. Jailbreak, activate, install and run anySIM 1.2(.1u) – after running it you should be able to make calls on 1.0.2!
4. RESTORE iPhone to 1.1.1
5. Use the jailbreakme.com method (see links in the 1.1.1 section!) to jailbreak and activate 1.1.1.
6. Use Installer.app to install OktoPrep (from the Tweaks 1.1.1 menu) (IMPORTANT)
7. UPGRADE (not RESTORE) to 1.1.2.
8. Install a patched lockdownd to activate your iPhone (see below).

anySIM 1.2 crashes on firmware 1.0.2 or 1.1.1 right after "Copying firmware..."

This is because the developers didn't package the app correctly. To fix this, rename the downloaded anySIM file (might appear as a folder on Mac OS X right after download) to "anySIM.app", then upload it to the iPhones /Application directory. Now the unlock process should run flawlessy.

You might also need to do one or more of the following steps:

• If you are using your iPhone in a country mentioned in the 1.1.2 OOB section,

you have to install a patched version of AppSupport. (See above!)

• There now is a prototype/beta of a patched lockdownd. You can download it here:

http://rapidshare.com/files/69414087/lockdownd-1.1.2.zip.html
To test this, you will need SSH access to your phone (which you should have if you are reading this), then do the following:

1. Log into your phone via ssh.
2. Navigate to /usr/libexec/
3. Rename the file "lockdownd" to "lockdownd_orig" (# mv lockdownd lockdownd_orig)
4. Upload the lockdownd fro the zip file above.
5. Set the file permissions to octal 555 (# chmod ou+rx)
6. Reboot the phone - it SHOULD now be activated.

• [Developers] There is a bit of information available on patching lockdownd.

Find it here: http://code.google.com/p/iphone-elite/wiki/112_Lockdownd_Patch

• [Developers] The dev team has made available a patcher, that allows you to patch the 1.1.2 lockdownd on your PC or directly on the iPhone. You can read more about it on their Wiki page, http://code.google.com/p/iphone-elite/wiki/Patcher.

The dev team released a working jailbreak solution with GUI. I'm sure sooner or later the said jailbreak will also implemented into tools like iNdepence, but it is really easy to use already. All you need is Java installed on your machine.

If you are using Mac OS X and get the error that the device can not be found, this is probably because of a missing library. (To the devs: Jeez, how hard can it be to statically link this library into iPHUC?)

Do this:

1. Download this file: http://rapidshare.com/files/61509655/opt.zip.html
2. Extract the zip to your Desktop
3. Open Terminal.app and type the following:
4. sudo mkdir -p /opt/local/lib   (hit return)
5. sudo cp ~/Desktop/opt/local/lib/libreadline.5.2.dylib /opt/local/lib  (hit return)

Note: This ONLY works on INTEL Macs.

If you are on Mac OS X and the jailbreak GUI won't start, do the following:

1. Open the Terminal and navigate into the directory where the "osx" file resides.
2. Simply type "./osx"
3. After a few moments the jailbreak window should appear.

Wait and don't upgrade yet if you have a working 1.1.1 or 1.0.2 phone. Unless we have a bullet-proof solution for activation and unlocking, there is not much use of upgrading to 1.1.2, suffing endless hours of pain, before finally downgrading to 1.1.1 to make it work again.

Mark wrote a really good (computer free) guide that covers jailbreaking, activating and unlocking any 1.1.1 iPhone. You can find it here:

http://www.hacktheiphone.com/111/iphone_step_1.html

More languages and information are available on the front page, which you can find here:

http://www.hacktheiphone.com/

Works

Works

This firmware has been well-hacked. There is a lot of 3rd-party software out there and it is even possible to jailbreak an 1.1.1 phone without using a computer.

Name	Description	Platform	1.0.2	1.1.1	1.1.2 (Updated)	1.1.2 (OOB)
iDemocracy	A GUI that allows many iPhone-firmware related tasks to be done easily.	Windows	Yes	Yes	Yes	Yes (2.0)
iNdependence	A GUI that allows many iPhone-firmware related tasks to be done easily.	Mac OS X	Yes	Yes	No	No
iPHUC	Allows convenient command line access to the iPhone.	Mac OS X	Yes	Yes	Yes	No
iEraser	This tool allows you to erase/zero out the contents of the iPhone's baseband-bootloader, so that you can write a custom firmware to it.	iPhone CLI	Yes	Yes	Yes (compatible with base-band boot-loader <4.06)	No (incompatible with base-band boot-loader 4.06)