GeoHot Posts Entire Source Code for iPhone 3GS Unlock
LIKE
TWEET
SHARE
PIN
SHARE
POST
MAIL
MORE
Posted July 14, 2009 at 1:25am by iClarified · 15899 views
GeoHot has posted information on how he executed the iPhone 3GS unlock and also posted the entire source code for PurpleSn0w.
----- About a year ago today, I found the at+stkprof exploit. Back then, I struggled for 3 days to write a payload. No luck, I just wasn't a good enough reverser. So I stashed the exploit away until December, when I gave it to dev for use in yellowsn0w.
Now a year later, I wrote a payload and delivery system in a day. And it's an awesome payload. Ideally we'd like to patch the lock out of flash, but with the apparently proper sig checks, that isn't going to happen. So purplesn0w is the next best thing. I copy the page I want to patch to an unused region of memory. In memory I patch it. Then, using the MMU, I map the flash page out and remap the patched memory page in it's place.
No new iPhones are really unlocked, activation creates a ticket allowing the baseband to be used with that sim. The lockstate of the phone really lies on apples servers. Unlocked is auth all sims. Locked is auth AT&T sims only. Fortunately this ticket system provides an easy way to deliver the payload and reexecute the patched code all in one. And since the ticket is already delivered on baseband resets, theres no need to write another daemon to hog battery. I use the daemon already designed for this, lockdownd. A patch to commcenter gets it to run the payload on ticket delivery. And a patch to your activation record contains the payload. So using existing apple machinery, I unlock when needed.
In retrospect, I should've just patched commcenter to send the payload. Then hacktivation would work no problem. Oh well, tomorrow is another day.
Hey Geohot i'm gonna snatch your code and i'm telling it to your face i'm gonna do it. make my own version and pass it off as my own you put it on the sidewalk that makes it anybodies now you have noclaim on it you just lost all ownership to it idiot. thanks for the expliots to the iphone firmware anything else you wish to release while we're on the subject.
What a stupid thing to do!
Firstly your gonna get people passing it off as their own, selling unlocks, ripping people off.
Secondly, Guaranteed Apple will take a look.
it doesn't matter why would a iphone jailbreaker ever post all his code so apple can look at it noone ever in there right mind would commit so i'm guess purplerain is gonna be a one hit wonder then because as soon as apple get's it's hands on the code it will no longer work lollllll wow talk about dumb move.
Why are you people doing this! Geohot is going out of its way to give apple all of the vulnerabilities and exploits to they can fix them. Heck, why don't you just fix the firmware for them, save them the trouble!
hahahahaha the experts are impoding is this guy nuts you just handed apple a updated loop hole closing 3.2 firmware kiss your jailbreaking days good bye freakin moron oh what haapened to winpwn 4.0 i saw \cmw was taking donations lately and got all he asked for so how come no update from him on it yet.
You all forget one thing: Apple does not need any source code. They can simply reverse engineer the binaries. "Decompilers" those days produce nearly 100% identical source code... So no, he did not offered them the hole on a plate... they already had it... one way or another. I bet that they can't close the hole easy anyway, because it will be closed in the upcoming, already seeded to developers 3.1 version...
![Apple Seeds tvOS 17.2 Beta 4 to Developers [Download]](/images/news/92181/92181/92181-160.jpg "Apple Seeds tvOS 17.2 Beta 4 to Developers [Download]")
![Apple Seeds watchOS 10.2 Beta 4 to Developers [Download]](/images/news/92178/92178/92178-160.jpg "Apple Seeds watchOS 10.2 Beta 4 to Developers [Download]")
![Apple Releases macOS Sonoma 14.2 Beta 4 [Download]](/images/news/92177/92177/92177-160.jpg "Apple Releases macOS Sonoma 14.2 Beta 4 [Download]")
![Apple Releases iOS 17.2 Beta 4 and iPadOS 17.2 Beta 4 [Download]](/images/news/92175/92175/92175-160.jpg "Apple Releases iOS 17.2 Beta 4 and iPadOS 17.2 Beta 4 [Download]")
![Apple M2 Mac Mini On Sale for $479! [Lowest Price Ever]](/images/news/92172/92172/92172-160.jpg "Apple M2 Mac Mini On Sale for $479! [Lowest Price Ever]")
![Final Cyber Monday 2023 Deals [List]](/images/news/92162/92162/92162-160.jpg "Final Cyber Monday 2023 Deals [List]")
![Last Chance to Get Amazon Devices at Deep Discounts [Cyber Monday Deal]](/images/news/92161/92161/92161-160.jpg "Last Chance to Get Amazon Devices at Deep Discounts [Cyber Monday Deal]")
![Sony Headphones and Speakers On Sale for Up to 40% Off [Cyber Monday Deal]](/images/news/92159/92159/92159-160.jpg "Sony Headphones and Speakers On Sale for Up to 40% Off [Cyber Monday Deal]")
![Blink Video Doorbells and Cameras On Sale for Up to 60% Off [Cyber Monday Deal]](/images/news/92156/92156/92156-160.jpg "Blink Video Doorbells and Cameras On Sale for Up to 60% Off [Cyber Monday Deal]")
