Open ghost opened 4 years ago
Valentinez
commented
4 years ago ...idk how many times people are going to have to say this...
This project is in development, if you don't know what you are doing, back away slowly, and wait for your device to be supported...
This is meant for Developers.
If it says it's not supported, then that is TRUE~!
Also, read here before posting as issue: #107
ghost
commented
4 years ago ...idk how many times people are going to have to say this...
This project is in development, if you don't know what you are doing, back away slowly, and wait for your device to be supported...
This is meant for Developers.
If it says it's not supported, then that is TRUE~!
Also, read here before posting as issue: #107
I am a developer, I have developed many apps, games and other stuff, and I have been trying to bypass icloud with my cfw, with no success.
Valentinez
commented
4 years ago Well, I'm not a Developer, and have been learning the steps on the way. For my iPad Mini 3, I used this fork: Cryptiiiic - ipwndfu Public
Would say: Device Not Found or No Lang ID,
And lsusb -d 0x5AC:0x1227 -vv would still return Apple Device (DFU Mode), [with errors]
Found out if I unplug and replug in usb from iDevice side, 10 - 15 times REALLY fast,
Then use lsusb -d 0x5AC:0x1227 -vv Serial now has PWND[checkm8]~!
So my questions are: How did you Decrypt the firmware to make a CFW WITHOUT Decrypting the IVKeys from Extracted Keybags?
Steps I've had to take:
Get iPad Mini 3 [CPID: 8960] into PWNDFU Mode.
Use img4 to extract Keybags from Encrypted parts of Firmware [iBEC and iBSS stuff]
img4 -i encrypted_file.im4p -b
Use ipwndfu to use iDevice CPU to Decrypt IVKEY
ipwndfu --decrypt-gid=HEXKEY
[Needs to be in PWNDFU Mode to do]
Use said Decrypted IVKEY from KEYBAG in img4 to Decrypt Firmware:
img4 -i encrypted_file.im4p -o decrypted_output.decrypted -k decrypted_IVKEY
Now you can edit the encrypted iBoot stuffs~! With a HEX Editor no Less... [My next Challenge~!]
Which, I'm fairly certain need to be edited for CFW
Also, probably need to use rmsigchks.py,
[It's apart of the Cryptiiiic Fork]:
This fork allows you to load img4 images (e.g. iBSS/LLB) in pwned DFU mode.
Also supports loading of unsigned img4 images. Run "python rmsigchks.py" to remove signature checks.
Supports s5l8960x (iPhone 5s) and - new - t8011 (iPad Pro 2017).
IMPORTANT: Other devices are currently NOT SUPPORTED.To remove Signature Checks, so device accepts CFW. [Will disable ipwndfu mode! Will have to Flash Device [restore via iTunes] to go back to regular dfu mode, to ipwndfu again, to decrypt keys, so don't do this until you have decrypted firmware keys~!]
I'm trying to do same thing with my iPad Mini 3. I'm not a Dev. However, I do have my iPad Mini 3 in PWNDFU Mode, and have decrypted 12.4.2 firmware using the decrypted ivkeys.
Used this handy program: shinvou - decrypt0r Downloads only parts you need from IPSW,
---[Be sure to use -fw version, or it will download ALL available Firmwares for your PWND iDevice!
Example: decrypt0r.py -fw 12.4.2
Extracts Keybags from encrypted files, uses ipwndfu to decrypt Keys, and decrypts firmware all in one~! [Need a Device in PWNDFU mode to use iDevice CPU to Decrypt IVKeys]
Here's where I'm stuck, cause I have NO IDEA about HexEiting. Just wanted to change boot logo, nope, its embedded in an im4p file... at least that's decrypted by default lol
By my logic, if you made CFW, you should be able to edit ipwndfu to point to right dfu_load_base addresses, and set cpid_overwrite_offsets, to get it to work.... no?
Valentinez
commented
4 years ago Also, I believe your CPU for 1st gen iPad Mini is an A5, [CPID:8940] Yes?
I just looked at the ReadMe really quick too, and noticed this:
Future SoC support: s5l8940x, ...
Future, As in, they are working on it still. As in, Not Supported at this time.
ghost
commented
4 years ago Also, I believe your CPU for 1st gen iPad Mini is an A5, [CPID:8940] Yes?
I just looked at the ReadMe really quick too, and noticed this:
Future SoC support: s5l8940x, ...Future, As in, they are working on it still. As in, Not Supported at this time.
Yes, I think it is, thanks for checking for me.
Hi, I tried putting my ipad mini (1st gen) in pwned dfu mode, but it says it's not supported. I went online and looked at the supported devices, and it says it's supported! What should I do?