UPDATE: The application related issues have been moved to a new article Fix Application Issues in 1.1.3
UPDATE: Since the dev team has released the 1.1.3-2, I have updated some of the contents, check the UPDATE in each section.
UPDATE: Here’s the log files from my 1.1.3-2 upgrade. There’re two files, /var/log/syslog generated by syslogd daemon as well as BearPhuc created by Upgrade process.
System Log of Official Jailbreak 1.1.3-2 Upgrade Process
BearPhuc Log of Official Jailbreak 1.1.3-2 Upgrade Process
UPDATE: the 1.1.3-3 has been released, since 1.1.3-2 works fine for me (except the launchctl), I don’t wanna try this new release unless I found any severe problems (or if the launchctl will be fixed :). UPDATE: yes, it does fix the launchctl, but I still won’t try it because the launchctl issue can be fixed on a running system now.
UPDATE: as far as I can tell, the 1.1.3-3 is mainly released to fix the launchctl issue.
—
The dev team has officially released the iPhone firmware 1.1.3 jailbreak method, so now we have two 1.1.3 jailbreaks, the official one and the leaked one (published by natetrue, former dev team member, has been kicked out because of this leak). Technically, both methods work the same way:
1. Decrypt firmware to get compressed rootfs
2. Decompress rootfs
3. Patch decompressed rootfs
4. Patch user partition
5. Copy patched rootfs over system partition
The official way is slightly better though, the work is done totally on iPhone, some of the issues found in the leaked one have been fixed. But there’re other problems/drawbacks arising after the upgrade which make the upgrade way from perfect yet. Here are some of the issues found so far:
Issue: No Sound
After the 1.1.3-2 upgrade, no ringtones and no music in iPod, some of the error messages are:
Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: MeccaCoreAudio.cpp[856]: MeccaCoreAudioDevice::SetCustomProperty: FAIL: Assertion "kAudioHardwareNoError != result" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: MeCCAAudioDevice_CoreAudio.cpp[854]: MeCCAAudioDevice_CoreAudio::setAudioRouteEnabledForHWDevice: FAIL: Assertion "kAudioHardwareNoError != CADevice->SetCustomProperty(propertyID, propertyScope, sizeof(UInt32), (const void*) &propertyData)" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[959]: AudioRoutingManager::disableAllAudioRoutes: FAIL: Assertion "MediaEngine::OK != MeCCAAudioDevice::theInstance()->setAudioRouteEnabledForHWDevice(kMeCCAAudioRouteDownlinkToWolfson, kMeCCAAudioHWDeviceWolfson, false)" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[922]: AudioRoutingManager::commitClearRouting: FAIL: Assertion "kReturnSuccess != result" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[487]: AudioRoutingManager::commitRoutes: FAIL: Assertion "kReturnSuccess != result" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[420]: AudioRoutingManager::applyRoutes: FAIL: Assertion "kReturnSuccess != result" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[439]: AudioRoutingManager::applyRoutes: ERROR: Error applying new audio routing routes...restoring previous routing, if available Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[484]: AudioRoutingManager::commitRoutes: FAIL: Assertion "0 == inOrderedRouteDescriptionList.size()" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingManager.cpp[118]: AudioRoutingManager::activateRoutes: FAIL: Assertion "kReturnSuccess != result" failed, goto Exit Jan 31 20:59:50 localhost /usr/sbin/mediaserverd: AudioRoutingPolicy.cpp[624]: AudioRoutingPolicy::activateRoutes: ERROR: Routing Not Supported: attempt to activate the routes failed. Jan 31 20:59:51 localhost /usr/sbin/mediaserverd: MeccaCoreAudio.cpp[976]: MeccaCoreAudioDevice::StartIO: ERROR: AudioDeviceStart failed with error 560492391 Jan 31 20:59:51 localhost /usr/sbin/mediaserverd: MeCCAAudioDevice_CoreAudio.cpp[637]: MeCCAAudioDevice_CoreAudio::startIO: FAIL: Assertion "kAudioHardwareNoError != mMeccaCoreAudioDevice->StartIO()" failed, goto Exit Jan 31 20:59:51 localhost /usr/sbin/mediaserverd: MeCCA_MediaPlayer.cpp[234]: MeCCA_MediaPlayer::play: FAIL: Assertion "kMeCCA_Error_OK != result" failed, goto Exit Jan 31 20:59:51 localhost Preferences[42]: -[AVController failPlayback:reason:notifyClient:]: item with path [omitted] failed to open with err 1
UPDATE: maybe only I had this problem, other people reported their ringtones working fine. Anyway, this relates to the permission, set the /usr/sbin/mediaserverd permission to 4555 (aka SUID root) fixes the issue:
chmod 4555 /usr/sbin/mediaserverd
Issue: Wrong System Partition Size
In 1.1.3-1, the partition size is wrong, the system partition is 266MB (279520256 bytes) after the upgrade, so you’ll lose 34MB after the upgrade, it’s a huge space loss considering the total size is only 300MB (314572800 bytes) and you’re gonna put some 3rd party applications on it. The leaked method doesn’t have this issue, it correctly expands the rootfs to 300MB.
This explains why the official jailbreak puts the terminfo into /var/root, and uses a symbolic link in /usr/share, because there’s not enough space to put them on the rootfs without that 34MB.
NOTE: my temporary workaround is to manually create the rootfs in the way introduced in the Leaked Jailbreak 1.1.3, then use the official script (need to patch) to do the rest, some post-upgrade fixes are required for this mixed method though.
UPDATE: the newly released Jailbreak 1.1.3-2 has fixed this issue, it fetches a copy of the 1.1.2 rootfs, removes all its contents, and copies 1.1.3 contents over it, thus has the correct partition size.
UPDATE: in 1.1.3-2 and 1.1.3-3, there’s a small bug :) The volume name is wrong, it’s Oktoberfest3B48b.UserBundle (1.1.2) while it should be LittleBear4A93.UserBundle (1.1.3).
UPDATE: the image manipulation is done in a binary Upgrade with the help of a shell script globscript.sh, once the image is done, the other script migrate.sh will do the rest to adjust the user partition directory structuret as well as fixing the issues.
Issue: Can’t Change Timezone
The timezone change in Settings->General will re-create the symbolic link:
/var/db/timezone/localtime
Since the link owner is root, thus Preferences (running as mobile) cannot remove and re-create it. To fix it, change the folder permission to 777:
chmod 777 /var/db/timezone
UPDATE: this has not been fixed in the Jailbreak 1.1.3-2 and 1.1.3-3. If you change your time zone, the current time will not adjust according to the new time zone, you have to manually set the time/date. A chmod is still needed to let the system auto-adjust the time for you when changing the time zone.
UPDATE: if your timezone change works right after the upgrade, check if the symbolic link at /var/db/timezone/localtime, does it point to the right place if you change the timzone? It should.
Issue: iTunes Sync Not Working
In 1.1.3-1, the iTunes sync is not working correctly due to the wrong folders/permissions. iTunes syncs the contents to root account while the phone reads the contacts, bookmark, etc from mobile account.
UPDATE: The dev team has released a script (syncfix.sh) to fix the sync issue, shown below (I added some comments):
# Remove the old data in root account rm -rf /var/root/Library/AddressBook rm -rf /var/root/Library/Safari rm -rf /var/root/Library/Calendar rm -rf /var/root/Library/Mail rm -rf /var/root/Library/Preferences # Move mobile's data to root account mv /var/mobile/Library/AddressBook /var/root/Library mv /var/mobile/Library/Safari /var/root/Library mv /var/mobile/Library/Calendar /var/root/Library mv /var/mobile/Library/Mail /var/root/Mail mv /var/mobile/Library/Preferences /var/root/Library # Create the folders (in case they do not exist yet), this will give an error # if the folder has already existed, but it's safe to ignore the errors as the # purpose is to ensure the folders exist mkdir /var/root/Library/AddressBook mkdir /var/root/Library/Safari mkdir /var/root/Library/Calendar mkdir /var/root/Library/Mail mkdir /var/root/Library/Preferences # Let mobile account owns the data folders chown -R mobile:mobile /var/root/Library/AddressBook chown -R mobile:mobile /var/root/Library/Safari chown -R mobile:mobile /var/root/Library/Calendar chown -R mobile:mobile /var/root/Library/Mail chown -R mobile:mobile /var/root/Library/Preferences # Create symbolic links so that both mobile and user accounts use the same data ln -s /var/root/Library/AddressBook /var/mobile/Library/AddressBook ln -s /var/root/Library/Safari /var/mobile/Library/Safari ln -s /var/root/Library/Calendar /var/mobile/Library/Calendar ln -s /var/root/Library/Mail /var/mobile/Library/Mail ln -s /var/root/Library/Preferences /var/mobile/Library/Preferences
UPDATE: this syncfix has been embedded into the Jailbreak 1.1.1-2 and is auto applied during the upgrade.
Issue: Incomplete Cleanup
In 1.1.3-1, there’s an error in the com.devteam.rm.plist as shown below:
<string>/System/Library/LaunchDaemons/com.devteam.rm</string>
The file name missed the suffix .plist, change it to:
<string>/System/Library/LaunchDaemons/com.devteam.rm.plist</string>
or manually remove com.devteam.rm.plist. Otherwise, the launchd will keep respawning it after each reboot, check the syslog, you’ll find it:
Jan 29 23:15:49 localhost launchd[1]: 16/com.devteam.rm: Standard Out/Error: rm: /private/var/disk0s1.dd: No such file or directory Jan 29 23:15:49 localhost launchd[1]: 16/com.devteam.rm: Standard Out/Error: rm: /System/Library/LaunchDaemons/com.devteam.rm: No such file or directory Jan 29 23:15:49 localhost launchd[1]: 16/com.devteam.rm: exited with exit code: 1 Jan 29 23:15:49 localhost launchd[1]: 16/com.devteam.rm: respawning too quickly! throttling Jan 29 23:15:49 localhost launchd[1]: 16/com.devteam.rm: Throttling: Will restart in 10 seconds
UPDATE: this has been fixed in the 1.1.3-2.
Issue: Launchctl Not Working
In 1.1.3-1, the launchctl does not work after offcial upgrade, here’s the error message:
bash-3.2# launchctl list launch_msg(): Socket is not connected
The leaked one doesn’t have this problem..
UPDATE: I still can’t use launchctl to turn on/off services after the Jailbreak 1.1.3-2.
UPDATE: a temporary solution is to use UIctl developed by Erica Sadun.
UPDATE: actually the socket has been created, but in the wrong place. The following steps fix the launchctl issue for 1.1.3-2 (should work for 1.1.3-1 as well) and requires no re-jailbreak:
1. Make an image of the running system partition in /var/113-2.dmg:
dd if=/dev/rdisk0s1 of=/var/113-2.dmg bs=1048576 count=3002. Transfer the 113-2.dmg to your Mac, mount it, it’ll be mounted at /Volumes/Oktoberfest3B48b.UserBundle, erase all the contents in its var folder:
rm -rf /Volumes/Oktoberfest3B48b.UserBundle/var/*3. Unmount and upload it back to iPhone, put it into /var folder
4. Issue the following commands to overwrite the current system partition with the modified image, make sure your WiFi is alive during the process:
mount -u -o ro / dd if=/var/113-2.dmg of=/dev/rdisk0s1 bs=1048576 count=300When it’s done, turn iPhone off and on as usual (hold Sleep button for 3 seconds, then slide to turn off), don’t worry, it will not hang.
NOTE: the above steps will not corrupt your user data.
UPDATE: an easier way (thanks Nil to mention it) is to force a umount on /private/var and modify the system partition on the fly:
umount -f /private/var && rm -rf /private/var/* && mount -a && reboot
UPDATE: the 1.1.3-3 has fixed this issue.
Drawback: Unnecessary Download
In 1.1.3-1, the upgrade script downloads the firmware from Apple which is a bad idea, it makes the whole upgrade process a nightmare when you don’t have a fast and stable internet connection.
NOTE: a workaround is to rename the firmware to restore.zip, upload to /var folder through iPHUC or SSH, then comment out the download lines in installation script:
#if [ "$PLATFORM" = "iPod" ] #then #RESTORE_IPSW="http://appldnld.apple.com.edgesuite.net/content.info.apple.com/iPod/SBML/osx/061-4060.20080115.9Iuh5/iPod1,1_1.1.3_4A93_Restore.ipsw" #else #RESTORE_IPSW="http://appldnld.apple.com.edgesuite.net/content.info.apple.com/iPhone/061-4061.20080115.4Fvn7/iPhone1,1_1.1.3_4A93_Restore.ipsw" #fi #wget "$RESTORE_IPSW" -O /private/var/restore.zip
UPDATE: this has been improved in the 1.1.3-2, now the upgrade auto detects the firmware in /var/root/Media, if a 022-3743-100.dmg or iPhone1,1_1.1.3_4A93_Restore.ipsw is found, it’ll use it instead of downloading from Apple, pretty nice feature. During my test, I uploaded the 022-3743-100.dmg, and the Upgrade successfully picked it up and used it.
Issue: Boot Into Recovery
In 1.1.3-1, a reboot/hard reboot will easily send your iPhone to recovery mode. This has been fixed in 1.1.3-2, which copies the partition structure from your working 1.1.2 system disk thus no longer causes any filesystem structure related problems.
UPDATE: tested several times on 1.1.3-2, with both normal reboot as well as hard reset, all fine, except the hard reset takes more time to boot because it needs to check the filesystem that was not cleanly shut down.
Issue: Operator May Not Detected
I know most of you guys don’t have this issue, but it does happen to me. To be honest, I really don’t know if this is because of the jailbreak or if it’s a bug in SpringBoard. Anyway, after the jailbreak, the SpringBoard can’t detect my operator, it successfully recognized my local carrier though (MCC/MNC 46000). This results in a weird thing:
The carrier settings are correct, there are two links created correctly:
/var/mobile/Library/Carrier Bundle.bundle /var/mobile/Library/Preferences/com.apple.carrier.plistBut there’s NO operator links, the following two links are expected but not created:
/var/mobile/Library/Operator Bundle.bundle /var/mobile/Library/Preferences/com.apple.operator.plist
So I simply can’t customize my carrier logo on 1.1.3 :(
UPDATE: I tried on 04.02.13_G as well as on 04.03.13_G, both no luck.
Issue: YouTube May Not Work
After jailbreak 1.1.3, YouTube may or may not work. From what I experienced, if you jailbreak through i.unlock.no then your YouTube may not work after jailbreak 1.1.3, if you go through jailbreakme.com it will work, this is likely because of the different cert files.
I tried 3 times, twice through jailbreakme.com and both had YouTube working, once through i.unlock.no and my YouTube didn’t work. Fortunately, I copied the cert files from jailbreakme to my computer, so I took the following steps to make it work:
1. Get the YouTube Cert Files (from Jailbreakme)
2. Extract and upload files to /var/root/Library/Lockdown, replacing old files
3. Remove pair_records folder if it exists
Reboot iPhone, your YouTube will work now.
Others Issues
There’re other issues in the script, if you installed the SSH through iNdependence, your SSH will not survive after the upgrade. Look at the following lines in the script:
cp /etc/ssh* /mnt/etc/ cp /Library/LaunchDaemons/* /mnt/Library/LaunchDaemons/
This is not suitable for SSH installed through iNdependence, because of different file/folder positions, change the above lines to:
cp -r /etc/ssh* /mnt/etc/ if [ -f /System/Library/LaunchDaemons/org.thebends.openssh.plist ]; then cp /System/Library/LaunchDaemons/org.thebends.openssh.plist /mnt/System/Library/LaunchDaemons/ fi cp /Library/LaunchDaemons/* /mnt/Library/LaunchDaemons/
This will satisfy both SSH installed through iNdependence and OpenSSH installed through Installer.
UPDATE: this has not been fixed as of 1.1.3-3, in order to have SSH access after the upgrade, you’ll have to use OpenSSH instead of SSH installed through iNdependece.
How to Upgrade (Official Jailbreak 1.1.3-2 and 1.1.3-3)
Make sure your iPhone is running 1.1.2, jailbroken and activated. Install the following packages:
Installer
BSD Subsystem
OpenSSH (not necessary but helpful in case)
Official 1.1.3 Upgrader (or HERE (v2) or HERE (v3) if you prefer installing it manually)
Simply execute the Upgrade application from SpringBoard, give it some minutes to finish, there is a progress indicator so you won’t be too boring during the long wait, very user friendly. It’ll automatically reboot after the upgrade.
Status after the upgrade (tested on a 1.1.1, newly restored and updated to 1.1.2, jailbroken and activated of course, unlocked with anySIM 1.2.1u, NOTE: I used iNdependece to activate 1.1.1 & 1.1.2):
Call in/out - working
SMS in/out - working
EDGE - working
Bluetooth- working
WiFi - working
YouTube - working
iTunes syncing - working
Customized ringtones - working
Google Map Location - not working
NOTE: the upgrade will wipe your current Installer data files, and installs a new Installer (bundled with the upgrade package), so after the upgrade, you’ll have a clean installer environment.
UPDATE: if you’ve already had a copy of the firmware and don’t want to download it again, please upload your copy of firmware to /var/root/Media folder on iPhone, then start Upgrade, it’ll pick it up. A better way is to extract the 022-3743-100.dmg from the firmware and upload it to /var/root/Media folder, Upgrade will happily pick it up and save you a lot of time waiting for the decompression (you know iPhone is much slower than your computer right?).
How to Upgrade (Official Jailbreak 1.1.3 v1 - Obsolete)
The official jailbreak package is here: Official Jailbreak 1.1.3
UPDATE: the new package with syncfix: Official Jailbreak 1.1.3 with Syncfix
You should run syncfix.sh on iPhone after the upgrade to fix the iTunes sync issue.
To use the package, make sure you meet the following requirements:
WiFi to Internet
iPhone on firmware 1.1.2, jailbroken and activated
BSD Subsystem
Installer
OpenSSH (if you plan to use SSH to do the upgrade)
Expand and copy all files onto the iPhone, put them under the root (/) folder, then set the Auto-Lock to Never on your iPhone, better keep the iPhone connected with your computer to avoid possible power failure during the upgrade.
When everything’s ready, SSH login to your iPhone (or use Term-vt100), issue the command:
/install.sh
Then wait and pray. The upgrade takes quite some time because the firmware download will take a long time. When I upgrade, I modify the script slightly so it won’t download the firmware, I upload the firmware manually, the actual upgrade process took me about 20 minutes until the SSH connection was closed. A normal upgrade (with the firmware download process) will take much longer than that. If something’s wrong during the upgrade (e.g. some error messaegs), you can always stop it by pressing Ctrl-C, and restart from the beginning.
The iPhone may stuck (at the last cp command) when the upgrade is done, this is normal, just force a shutdown by press and hold both the Sleep and the Home button for some seconds, then turn the iPhone back on, you’ll have a fresh jailbroken 1.1.3.
The install.sh script can easily be modified to allow customized upgrade. I did some changes during my upgrade to ease my life and made it working faster:
Using local firmware (not downloading from Apple)
Pre-installing additional applications to rootfs, especially Term-vt100
With the above modifications, I have some applications to use right after the upgrade.
I did the upgrade on a non-OTB 1.1.2 (was upgrade from 1.0.2, jailbroken and unlocked), the status after the upgrade (with needed fix):
Call in/out - working
SMS in/out - working
EDGE - working
Bluetooth- working
WiFi - working
YouTube - working
iTunes syncing - working
Google Map Location - not working
Customized ringtones - working
UPDATE: in 1.1.3-1, if you didn’t install BSD Subsystem before the upgrade, after the upgrade, you’ll have problem installing the BSD Subsystem because there’s a symbolic link which is not expected, just remove the following symblic link:
rm /usr/share/terminfo
and you should be able to install the BSD Subsystem now.
121 Comments
Im trying to upgrade to 1.1.3 but i must be ignorant or something. What does it mean or how do I expand the 1.1.3 file I downloaded. I try to open it after downloading it from rapid share. Im a little lost. Can you help please??
The package is a compressed archive, so you have to expand it using command like ‘tar xzvf Jailbreak-1.1.3.tar.gz’.
Hi George,
Can you please explain the hybrid method and how exactly to go about it in detail. Also please can u share the customized version of install.sh that you talked about.
Thanks!
Great!
Hm.. your explanation looks details bro, one stupid question i’ve been wonderinng
Can i “soft upgrade” if my iPhone is OTB 1.1.2 firmware 04.02.13_G and BootLoader 4.6?
Dean,
Sure you can, it’s just a jailkreak with activation, nothing to worry about, you can always downgrade if you don’t like it.
Thanks a lot George, will try :D
Thanks George. I lack the technical chops to tweak the process the way you did. Dumb (?) Question - is there a way, after performing the dev team update and running syncfix (both of which I’ve done) to re-size the system partition size back to the proper 300MB?
TIA
TM
Tony,
I’m afraid there’s no way to resize a running filesystem on iPhone (yet).
Saurabh,
You may check my another post titled “Leaked Jailbreak 1.1.3″ which describes the way to make the rootfs. When you have your rootfs ready, rename it to “disk0s1.dd” and upload to iPhone at /var folder, then modify the install.sh, remove all those lines that deal with the rootfs creation, then execute it. It should pickup the rootfs you made and continue the other operations.
Did I miss something about the timezone? It seems root owns /private/var/db/timezone/localtime (symbolic link to desired TZ in /usr/share/zoneinfo). I changed permissions to allow ‘mobile’ to create this link and was then able to change TZ through General->Settings.
I couldn’t see this info anywhere…
MT
CS
Chris,
Yes, you are right, I just noticed the error message in syslog:
Jan 29 00:13:11 localhost Preferences[62]: unable to unlink /var/db/timezone/localtime
Needs to fix the permission.
Dumb question - how do you enable syslog - in mine, /private/var/run/syslog is a socket :( Ideally I’d like it to broadcast on the network, like normal syslog can.
Chris,
Please search blog with ‘redirect syslog’ as keywords.
Shouldv’e done that before sorry :( — http://dev.splunk.com/2007/08/26/splunking-your-iphone/
Thanks,
C.
Thanks George. I feared as much but figured I should ask!
Thanks,
TM
Please, help me solve the problem!
I upgraded my 1.1.2 OTB jailbroken using soft update (from iClarified). It went fine. Then i installed the EDGE fix from the same source and my WiFi stopped working. I can’t get it to work any more!
PLEASE, suggest something! This is impossible to realise that I can’t use my iPhone properly, esp. after i went through the whole process of unlocking the 1.1.2 OTB…
Irina,
I assume the problem may relate to the permission, if you’d like to try, give all folders/files under /var/root and /var/mobile the rwx permission, like this:
in case it doesn’t work, it doesn’t hurt either :)
this is probably a completely stupid question, but what is there some Windows SW that I can use for that? I don’t have ssh on the iPhone any more, since it vanished into the blue after i upgraded to 1.1.3.
And thanks for replying so quickly!
The most used freeware maybe PuTTY. The most famous commercial software maybe SecureCRT. You may find more if you Google ‘SSH client’.
I come to think about it, how can I connect to the iPhone through SSH if it doesn’t have IP address? Or at least it is not showing in Settings… :(
You can’t, you need WiFi to use SSH. If you don’t have WiFi, try install Term-vt100, and enter the commands in it.
Is there a way to downgrade back to 1.1.2?
And thank you for all your answers! I really appreciate your help!
Yes, set iphone to DFU mode and select to restore to 1.1.2, you can find the actual steps by Googling.
I have a question!
I was using firmware 1.1.1 and updated using early upgrade to 1.1.3 but now i have very much bugs on it. such as errors sending sms call ending and stuff like that which is not mentioned in forums.
I would like to try official dev teams upgrade, maybe it will solve thous problems.
But it is safe to downgrade to 1.1.1jailbreak then using oktoprep to 1.1.2 jailbreak and activate using Anysim? Does i need some virginization tool or downgrade will solve all changes with baseband?
originally i had a 1.0.2 phone
I guess I am stuck with what i’m at right now. I can’t get the sim out, coz i am using the NextSIM III and it is too thick to come out. Shit…. I guess there is no way for me to downgrade any more coz I know that the original AT&T SIM is supposed to be used while Jailbreaking.
i want to use yr method to upgrade, when creating the rootfs ,after i decompress the decrypted image(i name it decrypted113.dmg) to (expanded113.dmg) using dmg2img, then do i rename (expanded113.dmg) to (disk0s1.dd) and upload it to iphone /private/var/ or Do i still need to Patch the decompressed image with patch.sd3 result in a new dmg then rename that new dmg as disk0s1.dd and upload to iphone , also after i’ve uploaded disk0s1.dd I should delete the line from if [ "$PLATFORM" = "iPod" ] to “rm /private/var/decrypted.dmg” at the beigning part of sh.install ????
You need to apply the patch, otherwise the disk size will be 266MB, upload the patched one, remove the lines as you said (from if to rm /private…).
Hi George,
Was wondering why the kernelcache from 1.1.2 is being used? Both methods use the same 1.1.2 kernel. Does the new kernel require the new baseband or, is there some other reason? Has anyone tried using the 1.1.3 kernel?
Hi george
where can i get the file patch.sd3 to patch it ????
$ ./sdelta3 expanded113.dmg patch.sd3 > rootfs113.dmg
lyonanderson, It’s bus/cpu frequency related, for 1.1.1, you get 100MHz/400MHz after the upgrade, for 1.1.2, it’s 103MHz/412MHz, so upgrading from 1.1.2 can gain faster speed. No idea about the 1.1.3.
Terry, try googling ‘patch111b.zip’ or ‘patch112b.zip’.
Hi George
Thanks a lot for your reply. I am facing an issue. I tried soft upgrade on 1.1.2 but it failed somehow. Now when I tried to downgrade it to 1.0.2, it fails giving an error (1). I have successfully downgraded to 1.1.1 but the WiFi connection I have is through a proxy. So, I can’t use the jailbreakme.com method. Also, I still cant downgrade to 1.0.2. Please suggest.
Thanks in Advance
Saurabh
George, just a quick question: If I use Nate’s JB’s image, wouldn’t that mean I end up with the same problems Nate’s JB has?
Hi George. After upgrading from 1.1.2 to 1.1.3 all 3rd part apps icons have disappeared, but the apps are still there as I see them while on installer. I deleted them, but still some won’t allow deletion (Devicescape Connect, SummerBoard, for instance). Currently I see only the 14 standard apps, but when I make them wiggle… two little spots appear, indicating a number (at least 3) of “hidden” apps. What Shall I do to make the icons visible again and, especially, to delete all 3rd parts? Final note: I’m very grateful to the Dev Tema, but maybe waiting another couple of weeks and solving all these bugs BEFORE releasing an upgrade wouldn’t be a bad idea ;-)
My best. Max
I’m wondering the same thing as Velines… I’m assuming the image file is the same and the script just sets up things differently in the DevTeam method (with /var/mobile/… instead of /var/root/…).
If there are any differences, would it be possible to just run the first part of the DevTeam script (up to “rm /private/var/decrypted.dmg”) then apply the “expand” patch in Nate’s method to the downloaded disk0s1.dd, then finish the DevTeam script? Perhaps adding the “expand” patch commands to the script in the right spot might be even easier then splitting it up.
Very, very sorry to double-post, but to clarify, would this work?
Changing this in Install.sh:
/dmg2img -v /private/var/decrypted.dmg /private/var/disk0s1.dd
rm /private/var/decrypted.dmg
to this:
/dmg2img -v /private/var/decrypted.dmg /private/var/expanded113.dmg
/sdelta3 /private/var/expanded113.dmg patch.sd3 > /private/var/disk0s1.dd
rm /private/var/decrypted.dmg
assuming we have sdelta3 on our iPhone (which I’m not sure would even work)?
hi, I don’t succeed in understanding this passage: Can’t Login After Upgrade? Try This-
On windows it doesn’t work me iPHUC…
how do I do to restore the operation of the terminal with windows?
Thanks
Kevin:
I removed the ipatcher line further down in the file also, worked fine to update. Even though I am having problems launching Installer.app, think I forgot to install the laterst version before upgrade… :<
After going the the clarified process I have two problems.
1) Installer was working, but now it doesn’t seem to let me install any new apps (installed a couple). I’m running the latest installer, and it’ll start the process of installing, but then quit back to springboard
2) SSH password has changed. Does anyone know what I could type in to connect?
vekkt0r:
I’m so glad to hear it worked! I can’t wait to get home to try it! So you uploaded sdelta3 and patch.sd3 to root with the tarball and did it remotely? Or did you break the script up and expand on your desktop computer?
How does your df output look now? Also, can you successfully run fsck (without an “Invalid node structure” error)?
monkey3203:
1) Your root partition is out of room.. A quick fix is to move your Applications to the media partition. Try checking around some forums for a guide.
2) ‘alpine’?
But at the end……nat or dev ?????
tks George
roberto,
It’s hard to say, I personally prefer the official one, but I hate its partition issue, so I used the rootfs created in nate’s method, and use the official script to do the other things. There’re many issues need to be fixed after this method, but I finally have it sorted. I might write another article about how to do this mixed jailbreak 1.1.3.
I just completed this method, but an article would be much appreciated!
At first I attempted to patch.sd3 to the disk0s1.dd that the first half of the DevTeam script creates. sdelta3 didn’t like this so I went ahead and created rootfs113.dmg with the manual steps for the first half of Nate’s method, and used this as my disk0s1.dd for the second half of the DevTeam script.
I’ve done both Nate’s and the DevTeam’s methods before this, and I’ve noticed that the DevTeam method sets everything up under the mobile user (/var/mobile) rather than root (/var/root). However, after using this hybrid method with the DevTeam jailbreak using a rootfs created with Nate’s method, it seems like everything is set up under root (iTunes syncs to /var/root, Installer reads package/source files from /var/root/Library, etc..). Is this one of the many issues that needs to be fixed with this hubrid method? If so, how? If not, will this interfere with the SDK as some have said Nate’s method will?
how can I fix the Launchctl after the official Dev team jb ?
if I switch off SSH I can’t get to turn it on again
Kevin:
I broke up the process and made the whole disk0s1.dd on my computer because I was having problems with sdelta3 on the iPhone.
df says /dev/disk0s1 300M and fsck is all fine.
Used hybrid method and everything is set up under /var/mobile/
George:
I had iPhone 1.0.2 OTB unlocked (IPSF) - upgraded to 1.1.1 and the to 1.1.2 - I did try ur method but something went wrong… so I did try to restore 1.1.1 (iTunes 7.4.2.4) finished with error 1015 so I tried iBrickr (0.91) to go back from restore mode… unfortunately it hangs up during checking my iPhone below error report:
ex_phonequalify
s_iPhoneInterface
s_Logging in restore.log: 0
s_I NEED A WAY TO EXIT THIS MODE
s_To exit, you need to do a full restore
r_recovery
s_readvalue ProductVersion: 0
r_recovery
s_system echo iPhone found: 0
r_recovery
any idea what to do? thx
hmm having some problems with my music now, iTunes syncs to /private/var/mobile but the phone looks for the Media folder in var/root/Media not in mobile/Media, made a symlink from the mobile/Media to root/Media to solve it, anybody know a better fix?
hey geroge! i like what u do here.. trying to help people and solve these bugs.. but.. is there any chance that u make a “proper” jailbreak 1.1.3 ? i mean.. one correcting all those bugs u listed above.. or if that’s not possible.. is there any chance to do a “little” program that correct all that?
cuz i dont really think im confident enough to do so much lines on ssh
thanks
vekkt0r and/or kevin. Did you run sdelta3 on the phone, pc, or mac? Im stuck at this part right now. Thanks.
I used the “Brief Steps to Manually Jailbreak 1.1.3″ on this page:
http://george.insideiphone.com/index.php/2008/01/25/leaked-113-jailbreak/
Follow the guide up to step 4, and you should end up with rootfs113.dmg with a filesize of 314572800 bytes.
Rename this file to disk0s1.dd, upload it to /private/var, and run the DevTeam’s install.sh (edited to not download the image).
Mesovao, we (I and my friends) are still collecting the problems occurred after the jailbreak (two methods). So far, all works are done manually, and I don’t have a already-made good script. Sorry.
Hmm I ran it and I got this
sdelta3 expanded113.dmg patch.sd3 > rootfs113.dmg
The sha1 for the dictionary file did not match.
Aborting.
Did you guys run this on a PC?
Apparently iTunes Movie Rentals don’t work with jailbroken iPhones, regardless of whether the jailbreak was NateTrue or devTeam, and regardless of baseband version. The movie won’t sync…it will say that the iPhone is unable to connect with iTunes music store. (Needless to say, they work with non-jailbroken iPhones). Do you know why this is?
I have an OTB 1.1.2, yesterday i did the update to 1.1.3 from the DEv team update, it took me about 50 minutes, but i didn’t deleted anything before updating it,
After 50 minutes my iPhone was Updated to 1.1.3.. i restarted the phone and everything seems to work fine..
after 5 minutes i want to change my theme (summerboard) and when i want to go to the home page my iphone suddenly restarts and all i’m getting now is the screen that i must connesct to iTunes…
BUT i DO can make/receive calls…. but i can’t get into the menu…no matter what i do.
and if i try to connect with iTunes it says:
‘Your iphone is Damaged & can’t connect to our services please go to your nearest Apple store’…
what should i do… i have not a damn clue what to do :((( i feel so sad..
Hope someone can help me.. thnx anyway
Hi there,
Thanks for all the info. I have a weird problem though.
All my time info on calls, sms and local time have been fixed, even on the weather app, but the weather shows the moon during the day and sun during night. I’m in Mauritius btw (GMT+4).
Can you help?
Cheers,
Shawin.
coaster:
I ran vfdecrypt on the phone and dmg2img, sdelta3 on a ppc mac, also had problems with the sha1 sum but I think my image was corrupt already after I had ran vfdecrypt.
I see that there is a new “Official 1.1.3 Upgrader” available, version 1.1.3-2.
Does anyone knows if these issues still aply?
Specially the “Wrong System Partition Size” issue.
Thanks
George,
Cheers for this post. Think the ’scene’ would really appreciate a walkthrough this hybrid method. May help make the dev team fix the partition issue on their release. Its annoying me too!
Also has anyone else had a problem when ure iphone crashes running the dev jb (freezes up). Happened on mine and would only boot to recovery mode. Had to get it to boot with ibrickr. Would suck big time if that happened when i was away from my computer :(
just heard about the new “Official 1.1.3 upgrader 1.1.3-2″ !
did anyone try this one? couldnt find anything yet but some bloggers are saying that most issues were fixed but til now no one listed the fixes.. so.. anyone?
Yea I looked at the package, seems they do the install with a binary and a bit of shell script glue. Guys on irc say it fixes the partition problem! Ain’t got time tonight to try it tho. Heres the package installer downloads:
http://conceitedsoftware.com/iphone/zips/113Upgrade.zip
GEORGE.. i have 1.1.2otb and now with this new jb1.1.3-2 i think id like to give it a try…..
do u think i need to install IWORLD on 1.1.3? i live outside us
George.. did u “read” the program jb 1.1.3-2?
what happen if wi fi connection is lost?
cuz i was downlaind the firmware.. 52%.. and went to the kitchen and 10 minutes later i got back.. and the phone was on the summerboard.. i tought it was done and went to general about and it was 1.1.2
tryed to get the icons to move and nothing.. entered google maps and it was as 1.1.2!!
i gues the conecction was lost and it stopped ang got back to summerboard.. do u know if this is right?
now i just restarted and everything is going ok, waiting it to finish
boizaofilipe,
Nothing’s gonna change if you lost WiFi during the firmware downloading.
my stopped the 1st time… i think it was lost wifi connection.. maybe my router restarted..
so i got it to start again.. 2nd time were REALLY fast.. the download took something like 5 minutes..
now im ok in 1.1.3-2… the only part that took a big time was the “trying to restart phone”.. the last part of the update..
my RINGOTNES and ipod is working ok george..
I use the 1.1.3-3. Everything looks good except youtube. It will show that “you must first conect to iTunes with an Internet connection to enable youtube” ps Timezone had been fixed.
Sorry for my chinglish.
Yea, just noticed 1.1.3-3 on Installer… now I’m restoring and jailbreaking again (for about the sixth time in 3 days). Can’t wait for your analysis of the differences (improvements) in this new version.
After using the new jailbreak I have ~192mb of ‘other’ listed in itunes. I have no music and df -h is reporting the correct amount of space i.e. without the missing 192mb. How does itunes calculate the free space? I’ve heard reports of people seeing differing amounts of ‘other’ space depending on itunes 7.4 and 7.6. Any ideas?
lyonanderson: I’m pretty sure this is a bug in iTunes 7.6. This also seems to be occurring on iPhone’s that have not been jailbroken as it is being discussed on the official Apple forums here:
http://discussions.apple.com/thread.jspa?threadID=1352701&tstart=-1
Ah ok, so it must be a 1.1.3 and 7.6 thing then. I’ve just plugged a friend’s legit 1.1.3 iphone in and it has 200mb of ‘other’.
whoops, I hope they sort it out!
what is the difference between 1.1.3-2 and 1.1.3-3? thanks
UPDATE: the 1.1.3-3 has been released, a quick compare shows that there’s an additional rm -rf /mnt/private/var/* in the globscript.sh.
what does it mean?
with 1.1.3-3 the launchctl works but the youtube did not and need activation
launchctl is workiing for me after 1.1.3-3!
Only prob was the TERM variable not being set and backspace not working in terms.
launchctl works for me with 1.1.3-3.
# launchctl list
PID Status Label
- 0 16
- 0 com.openssh.sshd
25 - com.apple.mediaserverd
24 - com.apple.ptpd
23 - com.apple.update
22 - com.apple.syslogd
- 0 com.apple.securityd
27 - com.apple.notifyd
21 - com.apple.mobile.lockdown
- 0 com.apple.mobile.lockbot
- 0 com.apple.mDNSResponderHelper
20 - com.apple.mDNSResponder
19 - com.apple.iapd
- 0 com.apple.daily
18 - com.apple.cron
17 - com.apple.crashreporterd
16 - com.apple.configd
65 - com.apple.SpringBoard
- 0 com.apple.SCHelper
- 0 com.apple.DumpPanic
13 - com.apple.CommCenter
12 - com.apple.BTServer
- 0 com.apple.AddressBook
- 0 com.apple.launchd.readconfig
Can someone put a copy of the working 1.1.3-3 upgraded system file list online for me to download ? Use the command:find / -exec ls -dl {} \; > /var/root/filelist.logI’ve some issues with my YAHOO using my Iphone under 1.1.23.
I upgraded too 1.1.3 with the DEV.3 method, but couldn’t get the message “cannot get mail” imap.apple.mail.yahoo.com is incorrect. At FW 1.1.2. everyting is working fine… I really need Yahoo….. pity…
Can someone help me i can’t make YouTube work after 1.1.3-3 it tells me connect to iTunes with internet connection
BTW… Yahoo was 100% working after the Nate True upgrade… I’m not sure what excatly is the difference between those two methods.
Hi George,
Thank you for providing the complete (& only) source for the Official Jailbreak 1.1.3! I can tell you that I used the installer 1.1.3-1 version and I experience only several of the symptoms that you describe.
It seems like the newer versions (1.1.3-2, and now 1.1.3-3) provide much better handling of the issues you describe. For someone who wishes to downgrade and retry the upgrade to 1.1.3 using a newer version, how would one do so? It’s important that my baseband be unlockable - right now, it’s unlocked using AnySIM 1.2.1u.
Thanks.
Stephen,
This has nothing to do with you baseband, it only upgraded the operating system, so you can always downgrade as you wish.
george: is there a way to get launchctl working on a 1.1.3-2 jailbreak? Are there any other differences between 1.1.3-2 and 1.1.3-3?
:-)
Yes! It has been fixed, refresh to see my latest comments in the Launchd section.
George, quick question:
Three days ago I tried the original dev team 1.1.3 jailbreak on my unlocked 1.1.2 phone and had problems. I reverted to 1.1.2. Since then I’ve added a few apps, but the phone is in more pristine condition. This is my question. Can I simply run the new 1.1.3-3 jailbreak from the phone? Or do I need to clean out all my apps? Do I need to go back to 1.1.1, then 1.1.2 and have a very fresh phone before I do 1.1.3-3? I’m mainly worried about the way the apps are stored on the small partition and not in the bigger drive partition. Please advise. I don’t want to run out of space. I think that’s what happened last time. I used the bosstool thing, but it ended up putting my Applications folder in a funny place–not the correct 1.1.3 place.
I always upgrade from a fresh 1.1.2 restoration, but other people have had successful stories on non-fresh phone, and from the upgrade script, the contents at /var/root/Media are copied during the upgrade, so I would say it probably doesn’t hurt if you go directly to 1.1.3, but in case something’s wrong during the upgrade, you may have to get back your data from the /var/mobile/Media which might be a pain if you don’t know what the upgrade script does to your partition.
So I would backup my data and do an upgrade, in case something’s wrong, I always have a chance to get back my data.
P.S. The upgrade will wipe out your apps but retain your data.
Hi, forgive my ignorance, but if I want to upgrade from 1.1.2 using 1.1.3-3 version and I have already download the 1.1.3 firmware and rename it to restore.zip and copy it to /private/var/ dir on my iPhone this work like the manual upgrade using putty? If not working can you tell me where to copy the restore.zip file to avoid download it again and save time?
Thank you
hello guys.. im new to iphone.. im using 1.1.3-2 and im very satisfeid.. just wondering 1 thing
WHAT IS launchctl ??
Hey George,
Here the mobile finder not change file names or change the permission, has some fix for this?
Jorge,
Yeah, do this:
should fix all file copying/moving/removing issues.
Thanks a lot. Now, the World Clock ihas the right time…
Any idea about TodoList in 1.1.3?
jorge,
Check my new article “Fix Application Issues in 1.1.3″.
how about sms order issue? please mention that too,
and wi fi issue: http://hackint0sh.org/forum/showthread.php?t=27346
Yeah that’s a known issue, but it’s Apple’s problem, so I didn’t take it into consideration as this article is about the jailbreak 1.1.3 issues.
Any fix for youtube?
Hi George,
I’m upgrade today to 1.1.3-3 using installer and all look like work great. But when opens iTunes iPhone tell me: “You must first connect to iTunes with an internet connection to enable YouTube”
Any one here have the same problem? Anyone know how to solve that?.
I have:
Wi-Fi = OK
Safari = OK
Maps = OK
Weather = OK
Sorry I made a mistake on my above post I means that when I open YouTube I recieve the message “You must first connect to itunes…
For youtube fix add i.unlock.no in sources and install version for 1.1.2, its work fine!
Hi George,
Do you have a solution for fixing launchctl with a Windows or Unix machine? I can’t mount .dmg files in the process. I used 1.1.3-1.
Thanks.
Yes, work. Muchas gracias Jorge.
Hm, the i.unlock.no youtube fix doesn’t work here, I also tried other fixes, none of them work. Also Preferences.app crashes when I try to enter my EDGE settings. All of this worked with the original dev team terminal jb, the only reason I redid the jb was the fixed / size.
Hi George,
Is there a way to dump the rdisk0s1 of 1.1.3 by iphuc? I tried few times but no luck, got a error code 11.
Cheers
I’m all kinds of confused right now. Updated myself to 1.1.3-3 using your notes here, and everything seemed to go pretty well. After I was done, phone looked good, and sync’ed well with my home PC. Thing is, I keep my actual music on my work PC…so when I get to work, and plug into the same 7.6 iTunes as I have at home, iTunes tells me it cannot read the contents of the iPhone “^1″, and that I ought to restore it. Phone itself works lovely, and I’ve got iPhone Browser here that can see the file structure via USB just fine. I have no wireless to connect to here, so I can’t SSH in or re-jailbreak right now. If anyone has any suggestions, please let me know before I start over again tonight. Thanks.
Me again already, and I think I found my problem. Since my unlocking tools were at home, and music at work, I thought I’d be clever and backup my entire iTunes_Control folder and restoring it post update. To be fair, it worked a couple of times with 1.1.2, Nate’s faux-1.1.3 and even the original 1.1.3-1 update. Anyway, I used MobileFinder on my iPhone to rename iTunes_Control out of the way, and plugged into my work PC. iTunes sees it easily, and I’m resyncing the old-fashioned way right now.
I’ve since deleted the bad iTunes_Control folder, and iTunes is still showing an enormous amount of “Other” space. Is t