The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information.

Difference between revisions of "S5L8922"

From The iPhone Wiki
Jump to: navigation, search
(Boot Chain)
(Exploits)
Line 2: Line 2:
   
 
== Exploits ==
  
== Exploits ==
=== [[iBoot]] / [[Kernel]] ===
 +
=== [[iBoot]] ===
* [[usb_control_msg(0x21, 2) Exploit]] - 3.1.2 and below.
 +
* [[usb_control_msg(0x21, 2) Exploit]] - Works up to [[iOS]] 3.1.2
* Unreleased exploit (demonstrated by Geohot)
  
   
 
=== [[S5L8922 (Bootrom)|Bootrom]] ===
  
=== [[S5L8922 (Bootrom)|Bootrom]] ===
  +
The [[bootrom]] has one exploit (possibly two) that do not have publicly revealed technical details yet.
* Unreleased exploit (demonstrated by Geohot)
  
* Unreleased exploit (pod2g)
  
   
=== [[Firmware|Userland]] ===
 +
=== [[Kernel]] ===
* [[MobileBackup Copy Exploit]] - Works up to [[iOS]] 3.1.3
  
 
* [[BPF STX Kernel Write Exploit]] - Works up to [[iOS]] 3.1.3
  
* [[BPF STX Kernel Write Exploit]] - Works up to [[iOS]] 3.1.3
  +
* [[IOSurface Kernel Exploit]] - Works up to [[iOS]] 4.0
  +
  +
=== [[Userland]] ===
  +
* [[MobileBackup Copy Exploit]] - Works up to [[iOS]] 3.1.3
  +
* [[PDF CFF Font Stack Overflow]] - Works up to [[iOS]] 4.0
   
 
==Information==
  
==Information==

Revision as of 00:59, 23 September 2010

This is the processor used in the iPod Touch 3G.

Exploits

iBoot

Bootrom

The bootrom has one exploit (possibly two) that do not have publicly revealed technical details yet.

Kernel

Userland

Information

The load address is at 0x41000000 (same as the S5l8920).

Boot Chain

Bootrom->LLB->iBoot->Kernel->System Software

The entire boot chain (except the bootrom) resides on the NAND flash (instead of part of it on NOR flash as in earlier devices). This is the only main difference from the S5L8920 used in the iPhone 3GS.

See also

External Links

Retrieved from "https://www.theiphonewiki.com/w/index.php?title=S5L8922&oldid=9364"