1. ChrisW's Avatar
    Hi All

    This is my first post in this forum - been lurking for a short while though...

    I thought it would be beneficial if I shared my iPhone jailbreaking/unlocking experiences. I know many of you seasoned iPhone hackers may already know this stuff, but bear with me...

    First, I bought a 16Gb iPhone at the start of April, then my son bought an 8Gb one, and then my wife wanted one.... Anyway, I'm now sysadmin for 3 iPhones!

    Here's what I've learnt (the hard way...)

    Don't use ZiPhone to jailbreak/unlock your phone!
    1. It permanently down grades the boot loader. This reduces future flexibility. But for me, its too late on that one...
    2. ZiPhone adds the "Installer" application. This appears at first to be fine, but then as you start installing and de-installing different apps, SpringBoard starts to become unstable - it gets into an infinite restart loop. At first, a reboot was sufficient to stop the loop, but eventually it became so unstable that issuing a simple "respring" from SysInfo was enough to kill it....

      I had this problem on all three phones.

      Fortunately, I was able to ssh into each phone, and I could see in the logs that SpringBoard kept crashing and restarting and crashing etc... The only way to stop this is to restore it from iTunes.

      I am convinced now that Installer is the cause of the SpringBoard instability.

      I got the point that after a clean restore -> jail break/activate/unlock and then installed something basic like SysInfo, the respring needed to cause the new icon to appear started the SpringBoard loop. swear words...

      Also, a normal shutdown followed by a restart was enough to start the infinite loop... more swear words....
    3. Once SpringBoard crashes, the ptpd process also usually crashes. This is a real PITA because this is the process that allows iTunes to communicate with the iPhone. So once you're trapped in the SpringBoard crash/restart loop, plugging the phone into your computer won't work if ptpd has died. Its simple enough to fix this though. From an ssh prompt enter:

      /usr/libexec/ptpd -t usb &

      Don't forget the ampersand "&" character at the end of the command line - this is UNIX speak for "run the program in the background". Then you'll get the command prompt back again. If you forget the ampersand, then communication with iTunes will still work, you just don't get your command prompt back in ssh.


    Always Use iLiberty!
    1. iLiberty does not downgrade the boot loader permanently, so you can upgrade it from 3.9 back to 4.6 at a later date if you need to.
    2. iLiberty adds a much better installer app called "Cydia". This is a far more useful installer because not only does it not cause the instability problems in SpringBoard, but it gives you technical information about which files its installed where. This is a major plus when backing stuff up over WinSCP to a PC, because you can grab every file belonging to the apps.
    3. Cydia does seem to have a few logical gaps in the package list it displays. For instance, you can download a book for the eBooks app, but you can't install the eBook app itself. Also, you can download SummerBoard themes, but not SummerBoard itself. These inconsistencies are because the source lists that come with Cydia don't include the relevant websites.

      See iphoneebooks - Google Code for details on eBooks and SummerBoard for iPhone.


    So that's my hard earned experience shared with you folks.

    Hope it helps.

    Chris W
    2008-06-10 07:42 PM
  2. desepticon's Avatar
    I doubt it was Installer.app that was screwing up your phone. It was more than likely the Ziphone jailbreak that was causing problems. I use Installer and Cydia both with no problem on my pwned phone. I tried to install the bulk of my apps with Cydia because I find it to be quicker, and use Installer to install whatever I can't find there.

    However, now I have found it useful to set up a custom Installer repo compilation at iappcat.com, add all the apps I want on it first, and then download all my apps from installer from one repo.

    Also, now that we have BootNueter you can upgrade/downgrade your bootloader and unlock it if you want as well. So you're no longer stuck with a downgraded Ziphone bootloader. This is what pwnage uses to unlock.
    -----------------------------------------------------------
    My brother was eaten by wolves on the NJ Turnpike.
    2008-06-10 10:58 PM
  3. ip1.61803398874's Avatar
    Hi,
    after having installed OpenSSH and changed the root password, my iphone (OS 1.1.4 broken with Zipphone two month ago) went to the springboard infinite crash loop

    hopefully, i had connection with wifi before this problem happened, so i can still connect with "ssh [email protected]" each time it is on.

    i have found a way to stop the infinite springboard loop but i don't know which file or preference file i should delete or modify

    here is what i do, once connected as root from a terminal :

    # cd /System/Library/CoreServices/SpringBoard.app
    # mv SpringBoard SpringBoard.bak

    this stops springboard to restart , I wait a little moment, then

    # mv SpringBoard.bak SpringBoard

    # ./SpringBoard &

    then it runs without problems and dont re-enter the crash loop
    why does this crash loop stops now ?
    after start ingmanually springboard, I have the following messages :

    (# ./SpringBoard &)
    [1] 396
    # 2008-06-19 12:51:39.260 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:51:39.278 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:51:40.059 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:51:40.070 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:51:40.536 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:51:40.676 SpringBoard[396:d03] -[<LKLayer 0x190ef0> display]: Ignoring bogus layer size (0.000000, 0.000000)
    2008-06-19 12:51:41.374 SpringBoard[396:d03] BT: BTLocalDeviceGetPairedDevices returned 0 devices
    2008-06-19 12:51:41.520 SpringBoard[396:d03] Couldn't get IAP TV out settings
    2008-06-19 12:51:57.288 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:52:59.394 SpringBoard[396:d03] An app SpringBoard isn't tracking just launched, pid: 426.
    2008-06-19 12:53:42.032 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:54:58.625 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:54:59.679 SpringBoard[396:d03] -[AVController failPlayback:reason:notifyClient:]: item with path [omitted] failed to open with err -12921
    2008-06-19 12:55:00.382 SpringBoard[396:d03] BT: BTLocalDeviceGetPairedDevices returned 0 devices
    2008-06-19 12:55:05.049 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:55:47.716 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:55:48.967 SpringBoard[396:d03] BT: BTLocalDeviceGetPairedDevices returned 0 devices
    2008-06-19 12:55:49.140 SpringBoard[396:d03] -[AVController failPlayback:reason:notifyClient:]: item with path [omitted] failed to open with err -12921
    2008-06-19 12:55:55.352 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0
    2008-06-19 12:55:55.363 SpringBoard[396:d03] lockdown says the device is: [FactoryActivated], state is 0


    I have reduced or rename the number of applications but it does not change anything :


    # cd Applications
    # ls
    Calculator.app Maps.app MobileNotes.app MobileStore.app-off Sketches.app-off
    FieldTest.app-off MobileAddressBook.app MobilePhone.app MobileTimer.app SysInfo.app-off
    HP-11C.app-off MobileCal.app MobileSMS.app Preferences.app Weather.app
    HP-15C.app-off MobileMail.app MobileSafari.app SIMport.app-off YouTube.app
    Installer.app-off MobileMusicPlayer.app MobileSlideShow.app SMBPrefs.app-off

    in the /var/logs/CrashReporter I have found the last springboard crashlog but I doubt if it is usefull :

    Process: SpringBoard [255]
    Path: /System/Library/CoreServices/SpringBoard.app/SpringBoard
    Version: N/A (N/A)
    Code Type: 0000000C (Native)
    Effective UID: 501
    Parent Process: launchd [1]

    Date/Time: 2008-06-18 19:20:38.421 +0300
    OS Version: OS X 1.1.4 (4A102)
    Report Version: 101

    Exception Type: EXC_BAD_ACCESS
    Exception Codes: KERN_PROTECTION_FAILURE at 0x00000004
    Crashed Thread: 0

    Thread 0 Crashed:
    0 AppSut 0x301e26d4 0x301dd000 + 22228
    1 Calendar 0x30260d20 0x30250000 + 68896
    2 Calendar 0x30261544 0x30250000 + 70980
    3 SpringBoard 0x0006b93c 0x1000 + 436540
    4 Foundation 0x30997dee 0x30980000 + 97774
    5 CoreFoundation 0x30515bae 0x304ff000 + 93102
    6 CoreFoundation 0x305153c6 0x304ff000 + 91078
    7 GraphicsServices 0x30ab4e60 0x30ab2000 + 11872
    8 UIKit 0x328cb8fc 0x328bc000 + 63740
    9 UIKit 0x328c3420 0x328bc000 + 29728
    10 UIKit 0x328c92ec 0x328bc000 + 53996
    11 SpringBoard 0x000055f0 0x1000 + 17904
    12 SpringBoard 0x000054f4 0x1000 + 17652

    thank you for any comment, help or hints !
    2008-06-19 02:58 PM
  4. MattMac's Avatar
    @ip1.61803398874, the reason you had the infinite boot loop was because in version 1.1.3 and above's BSD Subsystem's "pswd" command doesn't work, forcing your springboard to constantly reboot.
    You don't really need to change the password, alpine is sufficient, but if you really want to, install Cydia (apptapp.saurik.com). This will solve your problem, it has the fixed version of "pswd" command allowing you to change your root password hassle free.

    @ChrisW, it defiantly wouldn't have been Installer. You problem is one of 3 things.
    1. You have installed too many applications on your iPhone and either you have gone over the 80 app limit.
      There is a limit on the amount of apps you can have installed on your iPhone in version 1.1.3/4. The max is 79, im not sure if has been fixed (I don't install that many apps, no need really ), but that could be a contributing factor.
      Try only installing app that you need and uninstall apps you don't use. This should help your problem in this area.
    2. Or you have used all the space in your partition.
      If you fill up your first partition, where the apps are installed by default, you will expecience downgraded perfomance and possible continus springboard reboots. The first partition is only 300mb and fills quickly when installing apps.
      The best way to increase the amount of apps and increase performance is by installing Cyida. Cydia is much like Installer, except lesser used, but is feature loaded... When you install Cydia it moves all the apps to the second partition and creates a symlink (the linux equivalent of a shortcut in Windows) but this is only achieved by installing through installer, not through a iLiberty payload.
      Cydia's source is: apptapp.saurik.com.
      You can use Installer normaly side by side with Cydia, or you don't even have to use Cydia at all.
    3. Finally, you could have installed a bad app or one that clashes with another perviously installed. For example, IntelliScreen used to clash with SkrewCommon untill it was fixed causing the iPhone to constantly reboot.
      Make sure you do a quick look over the forum for any idea of stability of any new apps and if you encounter a problem, just do a simple search and someone will have had that smae problem as you.
      As a last resort post a thread. Double posters get flamed!


    I agree, ZiPhone is dangerous, but my iPhone came with bootloader 3.9 anyway, so I have never really had a problem. It is curently being phased out, there is a thread on it and all.

    Most of all, welcome to the forum. Hope you enjoy your stay. And happy modding!
    16GB iPhone 3G
    2.2 Pwned
    Dedicated Cydia User

    2.2 GHz Intel MacBook

    Mac OS X 10.5.5
    Bootcamp w/ Windows XP
    2008-06-19 04:00 PM
  5. ip1.61803398874's Avatar
    thank you very much for your help MattMac !
    i understand i should not have changed the root passwd !
    i've found a nice solution here also , replacing the /etc/master.passwd and /etc/passwd files, this worked for me :

    Howto fix the “edit home screen” loop for iPhone | Personal weblog of Robert Beekman

    now my iphone is booting OK, but the strange thing is that I can't receive SMS and i can send SMS only to one phone number (the first I have tried to) .. i don't know if this is related to some file ownership or permissions ? I'll try to investigate this now , or maybe should I restore everything from itunes ? if I do so, will the iphone jailed again ? should I use iLiberty or Zipphone to re-jailbreak it ? or pwnage ?

    thanks again for your help !
    2008-06-20 11:07 AM
  6. MattMac's Avatar
    Yeah, Maybe it's time for a fresh start.
    Use iLiberty. ZiPhone is damaging. =]
    16GB iPhone 3G
    2.2 Pwned
    Dedicated Cydia User

    2.2 GHz Intel MacBook

    Mac OS X 10.5.5
    Bootcamp w/ Windows XP
    2008-06-20 11:59 AM
LINK TO POST COPIED TO CLIPBOARD