Question about SHSH blobs...

Discussion in 'Jailbreaks and iOS Hacks' started by gravytrain84, Sep 2, 2010.

  1. gravytrain84 macrumors 6502a

    gravytrain84

    Joined:
    Jun 24, 2010
    Location:
    LA
    #1
    Yesterday I was finally able to figure out how to restore my ip4 and keep 4.0.1 firmware running. The question I have is, what exactly does TU do if I am DL the firmware and installing via iTunes? How are the shsh blobs being used there? Is TU only used to kick iPhone out of recovery mode in this instance?
     
  2. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #2
    Tu replicates Apple's signature server. itunes asks these servers if x.x firmware is authorized for restore and as of right now Apple is only allowing restores of 4.0.2. TU/cydia pretends to be Apple's server and return's the authorization for saved blobs. This is what SHSH hashing is for. It stores the reply OK from Apple for a given firmware allowing another server to return these in place of Apple's at a later time.
     
  3. Myzhi macrumors 6502a

    Joined:
    Dec 15, 2009
    #3
    Normally, when you try to install a firmware, iTunes connects to apple server, sends SHSH blobs if allow / deny your request. Of course, it will only allow current firmware, now 4.0.2, and deny everything else. With Tinyumbrella => local or changing host file => Cydia server, tricks ITunes into thinking it's connected to apple server when it's not and allow you to install older firmware. That's the basic for it.
     
  4. gravytrain84 thread starter macrumors 6502a

    gravytrain84

    Joined:
    Jun 24, 2010
    Location:
    LA
    #4
    Thanks for the explanation guys. So as long as TU is up and running, it'll trick iTunes into thinking it's on the server? If I were to dl firmware and try to install without TU open, it would deny?
     
  5. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #5
    Yes, when it running it just intercepts the requests and returns the the cached 'OK'. If it's not running the request goes to Apple's server and is denied.
     
  6. gravytrain84 thread starter macrumors 6502a

    gravytrain84

    Joined:
    Jun 24, 2010
    Location:
    LA
    #6
    Genius
     
  7. gravytrain84 thread starter macrumors 6502a

    gravytrain84

    Joined:
    Jun 24, 2010
    Location:
    LA
    #7
    One more question fellas... If i am doing a restore with a d/l version of 4.0.1 and I have TU open but do not 4.0.1 SHSH, it would not work, right? You have to have the d/l firmware, the shsh in TU, and itunes all working together?
     
  8. f4780y macrumors 6502

    f4780y

    Joined:
    Jul 21, 2009
    Location:
    Troon, Scotland
    #8
    Correct. TU must return your real SHSH for 4.0.1 which was created by Apple for you sometime in the past. There is no way to spoof an incorrect version which is why it is so important to have your SHSH's saved...
     
  9. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #9
    Redundant, this was emphasized in post #2. Stored hashes are device and firmware specific.
     

Share This Page