|
The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Difference between revisions of "Odysseus"
Mwoolweaver (talk | contribs) m (→How it works: added links for more reference) |
(Add a lot more iOS versions and device models (+iPod). Just so we can update the downgrade status as we go) |
||
| Line 1: | Line 1: | ||
| − | '''Odysseus''' is a tool by [https://twitter.com/xerub |
+ | '''Odysseus''' is a tool by [https://twitter.com/xerub xerub] to downgrade/upgrade/restore specific 32-bit devices to specific firmwares. This method only works if you are jailbroken, have valid SHSH Blobs and a valid APTicket. |
== How it works == |
== How it works == |
||
| − | It uses a tool included in [https://twitter.com/winocm |
+ | It uses a tool included in [https://twitter.com/winocm winocm's] [https://github.com/ramytuki/ios-kexec-utils ios-kexec-utils] called kloader. kloader is a CLI that you can run on an iOS device which loads an (decrypted) image. It allows you to bootstrap a pwned iBSS and then initiate a restore using [https://github.com/libimobiledevice/idevicerestore idevicerestore] with a custom IPSW, which allows you to downgrade/upgrade/restore to the firmware of your choice. [https://github.com/xerub/xpwn/tree/master/ipsw-patch/FirmwareBundles There are firmware bundles] that allow you to restore each device to each iOS. If the bundle for the device and iOS you want to get does not exist, the downgrade/upgrade cannot happen. Each bundle is made by grabbing the Keys/IVs from the original firmware. They are posted [https://www.theiphonewiki.com/wiki/Firmware_Keys here]. |
== Compatibility == |
== Compatibility == |
||
| Line 9: | Line 9: | ||
=== Notes === |
=== Notes === |
||
| − | This only works on some jailbroken 32-bit devices with an untether that has [[Task_for_pid0_patch | tfp0]] enabled. The latest versions of [[TaiG]], [[Pangu8]], [[Pangu]] and [[ |
+ | This only works on some jailbroken 32-bit devices with an untether that has [[Task_for_pid0_patch | tfp0]] enabled. The latest versions of [[TaiG]], [[Pangu8]], [[Pangu]], [[evasi0n7]], and [[evasi0n]] all have tfp0 activated. Also, this will *NOT* change your [[Baseband_Device |baseband]]. If you go too far up or down with iOS version, it may be that the version of iOS you restored to does not understand the baseband left behind by the prior version of iOS. If that happens, you will not get past activation and you cannot re-jailbreak the device. As a consequence, the device will remain in activation limbo and you'll have to restore to the [https://ipsw.me/signed currently signed version of iOS]. |
=== iPad === |
=== iPad === |
||
| Line 15: | Line 15: | ||
|- |
|- |
||
! rowspan="2" | iOS |
! rowspan="2" | iOS |
||
| − | ! colspan=" |
+ | ! colspan="4" | Device |
|- |
|- |
||
| − | | [[ |
+ | | [[k93ap|iPad 2 (iPad2,1)]] |
| − | | [[ |
+ | | [[k94ap|iPad 2 (iPad2,2)]] |
| − | | [[ |
+ | | [[j1ap|iPad 3 (iPad3,1)]] |
| + | | [[j2aap|iPad 3 (iPad3,3)]] |
||
| + | |- |
||
| + | | 6.1 |
||
| + | | {{no}} |
||
| + | | {{no}} |
||
| + | | {{no}} |
||
| + | | {{no}} |
||
|- |
|- |
||
| 6.1.2 |
| 6.1.2 |
||
| + | | {{no}} |
||
| {{no}} |
| {{no}} |
||
| {{yes}} |
| {{yes}} |
||
| Line 28: | Line 36: | ||
| 6.1.3 |
| 6.1.3 |
||
| {{yes}} |
| {{yes}} |
||
| + | | {{no}} |
||
| {{no}} |
| {{no}} |
||
| {{yes}} |
| {{yes}} |
||
| + | |- |
||
| + | | 7.0.4 |
||
| + | | colspan="4" {{no}} |
||
| + | |- |
||
| + | | 7.0.6 |
||
| + | | colspan="4" {{no}} |
||
|- |
|- |
||
| 7.1.2 |
| 7.1.2 |
||
| − | | |
+ | | {{yes}} |
| {{no}} |
| {{no}} |
||
| + | | {{yes}} |
||
| + | | {{no}} |
||
| + | |- |
||
| + | | 8.1.2 |
||
| + | | colspan="4" {{no}} |
||
| + | |- |
||
| + | | 8.1.3 |
||
| + | | colspan="4" {{no}} |
||
| + | |- |
||
| + | | 8.2 |
||
| + | | colspan="4" {{no}} |
||
| + | |- |
||
| + | | 8.3 |
||
| + | | colspan="4" {{no}} |
||
| + | |- |
||
| + | | 8.4 |
||
| + | | colspan="4" {{no}} |
||
| + | |- |
||
| + | | 8.4.1 |
||
| + | | colspan="4" {{no}} |
||
|} |
|} |
||
| Line 40: | Line 75: | ||
|- |
|- |
||
! rowspan="2" | iOS |
! rowspan="2" | iOS |
||
| − | ! colspan=" |
+ | ! colspan="6" | Device |
|- |
|- |
||
| [[n90ap|iPhone 4 (iPhone3,1)]] |
| [[n90ap|iPhone 4 (iPhone3,1)]] |
||
| + | | [[n90bap|iPhone 4 (iPhone3,2)]] |
||
| [[n92ap|iPhone 4 (iPhone3,3)]] |
| [[n92ap|iPhone 4 (iPhone3,3)]] |
||
| [[n94ap|iPhone 4S (IPhone 4,1)]] |
| [[n94ap|iPhone 4S (IPhone 4,1)]] |
||
| − | | [[ |
+ | | [[n42ap|iPhone 5 (iPhone5,2)]] |
| [[n49ap|iPhone 5c (iPhone5,4)]] |
| [[n49ap|iPhone 5c (iPhone5,4)]] |
||
| + | |- |
||
| + | | 6.1 |
||
| + | | colspan="5" {{no}} |
||
| + | | N/A |
||
|- |
|- |
||
| 6.1.2 |
| 6.1.2 |
||
| {{yes}} |
| {{yes}} |
||
| − | | colspan=" |
+ | | colspan="4" {{no}} |
| N/A |
| N/A |
||
|- |
|- |
||
| 6.1.3 |
| 6.1.3 |
||
| {{yes}} |
| {{yes}} |
||
| + | | {{no}} |
||
| {{no}} |
| {{no}} |
||
| {{yes}} |
| {{yes}} |
||
| Line 62: | Line 103: | ||
| 7.0.4 |
| 7.0.4 |
||
| {{yes}} |
| {{yes}} |
||
| − | | colspan=" |
+ | | colspan="3" {{no}} |
| {{yes}} |
| {{yes}} |
||
| {{no}} |
| {{no}} |
||
| Line 68: | Line 109: | ||
| 7.0.6 |
| 7.0.6 |
||
| {{yes}} |
| {{yes}} |
||
| − | | colspan=" |
+ | | colspan="5" {{no}} |
|- |
|- |
||
| 7.1.2 |
| 7.1.2 |
||
| − | | |
+ | | {{yes}} |
| + | | {{no}} |
||
| + | | colspan="4" {{yes}} |
||
|- |
|- |
||
| 8.1.2 |
| 8.1.2 |
||
| − | | colspan=" |
+ | | colspan="3" | N/A |
| {{no}} |
| {{no}} |
||
| colspan="2" {{yes}} |
| colspan="2" {{yes}} |
||
| + | |- |
||
| + | | 8.1.3 |
||
| + | | colspan="3" | N/A |
||
| + | | colspan="3" {{no}} |
||
| + | |- |
||
| + | | 8.2 |
||
| + | | colspan="3" | N/A |
||
| + | | colspan="3" {{no}} |
||
|- |
|- |
||
| 8.3 |
| 8.3 |
||
| − | | colspan=" |
+ | | colspan="3" | N/A |
| {{no}} |
| {{no}} |
||
| {{yes}} |
| {{yes}} |
||
| {{no}} |
| {{no}} |
||
| + | |- |
||
| + | | 8.4 |
||
| + | | colspan="3" | N/A |
||
| + | | colspan="3" {{no}} |
||
| + | |- |
||
| + | | 8.4.1 |
||
| + | | colspan="3" | N/A |
||
| + | | colspan="3" {{no}} |
||
| + | |} |
||
| + | |||
| + | === iPod === |
||
| + | {| class="wikitable" |
||
| + | |- |
||
| + | ! rowspan="2" | iOS |
||
| + | ! colspan="2" | Device |
||
| + | |- |
||
| + | | [[n78ap|iPod touch 5G (Model A1421)]] |
||
| + | | [[n78aap|iPod touch 5G (Model A1509)]] |
||
| + | |- |
||
| + | | 6.1.2 |
||
| + | | {{no}} |
||
| + | | N/A |
||
| + | |- |
||
| + | | 6.1.3 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 7.0.4 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 7.0.6 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 7.1.2 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 8.1.2 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 8.1.3 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 8.2 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 8.3 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 8.4 |
||
| + | | colspan="2" {{no}} |
||
| + | |- |
||
| + | | 8.4.1 |
||
| + | | colspan="2" {{no}} |
||
|} |
|} |
||
Revision as of 04:53, 24 August 2015
Odysseus is a tool by xerub to downgrade/upgrade/restore specific 32-bit devices to specific firmwares. This method only works if you are jailbroken, have valid SHSH Blobs and a valid APTicket.
How it works
It uses a tool included in winocm's ios-kexec-utils called kloader. kloader is a CLI that you can run on an iOS device which loads an (decrypted) image. It allows you to bootstrap a pwned iBSS and then initiate a restore using idevicerestore with a custom IPSW, which allows you to downgrade/upgrade/restore to the firmware of your choice. There are firmware bundles that allow you to restore each device to each iOS. If the bundle for the device and iOS you want to get does not exist, the downgrade/upgrade cannot happen. Each bundle is made by grabbing the Keys/IVs from the original firmware. They are posted here.
Compatibility
Notes
This only works on some jailbroken 32-bit devices with an untether that has tfp0 enabled. The latest versions of TaiG, Pangu8, Pangu, evasi0n7, and evasi0n all have tfp0 activated. Also, this will *NOT* change your baseband. If you go too far up or down with iOS version, it may be that the version of iOS you restored to does not understand the baseband left behind by the prior version of iOS. If that happens, you will not get past activation and you cannot re-jailbreak the device. As a consequence, the device will remain in activation limbo and you'll have to restore to the currently signed version of iOS.
iPad
| iOS | Device | |||
|---|---|---|---|---|
| iPad 2 (iPad2,1) | iPad 2 (iPad2,2) | iPad 3 (iPad3,1) | iPad 3 (iPad3,3) | |
| 6.1 | No | No | No | No |
| 6.1.2 | No | No | Yes | No |
| 6.1.3 | Yes | No | No | Yes |
| 7.0.4 | No | |||
| 7.0.6 | No | |||
| 7.1.2 | Yes | No | Yes | No |
| 8.1.2 | No | |||
| 8.1.3 | No | |||
| 8.2 | No | |||
| 8.3 | No | |||
| 8.4 | No | |||
| 8.4.1 | No | |||
iPhone
| iOS | Device | |||||
|---|---|---|---|---|---|---|
| iPhone 4 (iPhone3,1) | iPhone 4 (iPhone3,2) | iPhone 4 (iPhone3,3) | iPhone 4S (IPhone 4,1) | iPhone 5 (iPhone5,2) | iPhone 5c (iPhone5,4) | |
| 6.1 | No | N/A | ||||
| 6.1.2 | Yes | No | N/A | |||
| 6.1.3 | Yes | No | No | Yes | No | N/A |
| 7.0.4 | Yes | No | Yes | No | ||
| 7.0.6 | Yes | No | ||||
| 7.1.2 | Yes | No | Yes | |||
| 8.1.2 | N/A | No | Yes | |||
| 8.1.3 | N/A | No | ||||
| 8.2 | N/A | No | ||||
| 8.3 | N/A | No | Yes | No | ||
| 8.4 | N/A | No | ||||
| 8.4.1 | N/A | No | ||||
iPod
| iOS | Device | |
|---|---|---|
| iPod touch 5G (Model A1421) | iPod touch 5G (Model A1509) | |
| 6.1.2 | No | N/A |
| 6.1.3 | No | |
| 7.0.4 | No | |
| 7.0.6 | No | |
| 7.1.2 | No | |
| 8.1.2 | No | |
| 8.1.3 | No | |
| 8.2 | No | |
| 8.3 | No | |
| 8.4 | No | |
| 8.4.1 | No | |
Download
| Version | Download | SHA-1 |
|---|---|---|
| 0.1 | dayt0n.com | a7ebd3743479a66b7502af947f6967cb4b54b54a |
| 0.2 | dayt0n.com | 812cd80725003f1aed897eebe623b5fb39500510 |
| 0.3 | dayt0n.com | 8aedd1af2e3e96b58d7ab5e2f58fbcf76ad08411 |
| 0.4 | dayt0n.com | 2f8f368b047f66a96bf2e51ab228cdde2435444a |
| 0.99 | dayt0n.com | fc98665bce96f406eafeb8d4f8745f70a08f62c8 |
| 0.999 | dayt0n.com | 23717f90a6b5bf847b996648be4c06046bc590b |
