I returned from vacation last week, hopeful that someone had unlocked iPhone 2.0 in my absence. While it hadn’t been done on Monday or Tuesday, by Wednesday, the iPhone dev team had released their pwnage tool, which patches an Apple released image, and loads it onto an existing generation 1 iPhone. By the end of the week, there was a Windows release as well.
So I unlocked. I simply couldn’t wait another week for Rogers to send me the 3G iPhone I ordered last week.
Let me start off by saying I went about this the wrong way. Unaware that the tool had been released, I came across an advertisement on the Internet which offered to sell me a tool to unlock iPhone 2.0. I sent 30 euros via PayPal to these sharks, only to receive a copy of Zibri’s ZiPhone back — a tool which is available for free, but which can only unlock iPhone 1.1.4 and prior versions.
Moreover, WinPwn is anything but self explanatory. During my various attempts I ended up with my iPhone apparently bricked, stuck in restore mode, locked to the AT&T network, or unrecognized by iTunes and Windows as the USB was apparently not functioning. I definitely don’t recommend that anyone not technically savvy attempt this.
The process itself is somewhat involved. You’ll need copies of a valid iPhone 2.0 binary, plus the Apple 3.9 and 4.6 bootloaders. These are easily found using Google. Then you’ll need to understand the difference between iPhone DFU mode and iPhone recovery mode, and how to get your phone into each of these modes. The directions I followed were contained in the comments posted to the original announcement of the hack:
1. I upgraded to Itunes 7.7
2. Connected my iphone. It deteced the iphone and asked for an upgrade, I just cliked download only. This is how I got the original firmware form apple :)Then disconnected iphone just after the download started.
3. Before opening the pwnagetool I put my iphone in dfu mode. I tried at least 4 times to do that. The trick was to hold down the power and home botton wait until it restarts. Then pluck it into the dock wait for ten seconds during the apple logo and then release it . It is totally black but itunes recognized it as in recovery. This is the dfu we need.
4. I did not choose the expert mode. Chosed iphone 1g . It had found the restore firmware that itunes had already downloaded. Asked me for the bootloaders. I browsed both of them respectively and then it created the custom ipws.
5.Clicked next and it recognized the dfu but asked for shutdown. I had problem here before, It said that it can not put the device in dfu mode. This time it detected and asked for a shutdown. I just pressed both power and home button until it restarted. Then watch for the screen. It tells you when to release the power button and when to release home button. Then it was ok. My iphone was ready to be restored with the custom ipws. The tool gave a message everything ok and i must just close pwnagetool and use itunes.
6. I didn’t do anything to iphone just left it where it was in dfu mode. Itunes had already gave the message that it needs to restore my iphone. I just said ok. The restore screen was in front of me. Just pressed alt button on the keyboard and while pressing it i clicked restore, and I showed itunes gently my custom ipws. It restored it successfully.
7. After that the phone rebooted, bootneutral was opened automatically , first it neutral the boot and then flashed the baseband. All was automatic. Then after the last reboot, there it was jailbroken and unlocked with all features working.
And now I also have an iPhone 2.0 device. First impressions?
- The App Store is cool, but woefully underpopulated right now. The new Facebook application is really nice, as well as the TruPhone app. I was disappointed that there was no Boingo client, and the slick iPhone Twitter client that I used on 1.1.4 wasn’t available either. And for all the pre-launch hoopla over location based services, most of the location apps were trivial.
- There are some much needed upgrades to the address book — it’s searchable now, and accessible from an application on the main deck.
- It was an easier experience integrating with Rogers, since the software now knows about Rogers APN information, which it didn’t before.
Overall, the experience is a little slicker and more polished. The real value in this release, however, is the App Store and users won’t start to see that value until a larger selection of applications is available.
A cynic might say that this is more like a 1.1.5 release, with the addition of a store front.