Update #1: There is now a guide for installing, jailbreak and unlocking the iPhone 3.0 Firmware.
- Who is this Guide For
- Details You Should Know
- Getting Started
- Applying the Firmware Update
- Unlocking the iPhone w/ the 2.2.1 Firmware
This document looks long and scary — but it’s not… I just tended towards too much information when writing it so no one went into this process missing the information they needed.
A lot of folks that have Jailbroken iPhones running on unsupported networks (like T-Mobile in the U.S.) usually get fearful of trying to upgrade the firmware of the phone — usually for fear of locking themselves out of the use of the phone or bricking it. Fortunately there are so many people with Jailbroken iPhones now, and the process (thanks to projects like QuickPWN) has gotten so easy, it’s a fairly safe bet now adays.
One of the biggest motivators for applying firmware updates to the iPhone have been new features that have slowly trickled out. Us Jailbroken folks don’t want to get left in the dust.
WARNING: That being said, it is always possible to have a firmware upgrade go bad. While I’ve not seen reports of people bricking their phones into an unrecoverable state, I’m sure it’s possible if you goof the process hard enough. Please backup all data before starting, and if you need your phone for your lively-hood, I’d suggest not messing with the update process unless you need the update.
This guide is written for people using the iPhone on unsupported networks. That includes both Jailbreaking the phone as well as hacking the Baseband so it will connect to a non-supported network. If you have your iPhone on a supported network, but just want it Jailbroken so you can play with it more — I believe all you have to do is run the QuickPWN step and that’s it after upgrading the firmware through iTunes like a normal person.
This guide is also written for Windows users.
- In order to use your iPhone on a non-official network (e.g. T-Mobile in the U.S.) you have to hack the baseband on the iPhone. This is now done easily using the yellowsn0w application installed via Cydia using the Repository http://apt9.yellowsn0w.com/ once your iPhone has been Jailbroken.
- While yellowsn0w makes hacking the baseband easy, it does not support the latest baseband, 02.30.03, that is forcibly installed when installing Firmware 2.2.1 from iTunes — that means if you are on an unofficial network with your iPhone, you don’t ever want to install Firmware 2.2.1 directly from iTunes — it will upgrade your baseband to an uncrackable version (atleast not hacked yet) and you won’t be able to connect back to that network.
- What you need to do, is use PwnageTool to create a custom 2.2.1 firmware (*.ipsw file) that uses the 02.28.0 baseband (the crackable one) and then flash that custom firmware to your phone.
- UPDATE: Updating the Firmware on your iPhone will remove all apps installed via Cydia and Installer — these are unofficial apps and not backed up during the iTunes backup/sync process, so when the device is wiped and new OS installed, those apps will be erased.
A Summary of the information above is as follows:
- If you have a 3G iPhone (2nd Generation), installing the 2.2.1 Firmware updates your baseband to 02.30.03, and blocks your ability to unlock the phone — allowing it to work on unsupported networks (like T-Mobile). You can still Jailbreak the phone however. So until unlocking this phone is supported, hold off on updating it using the normal Apple firmware — if you must update it, you can build your own custom firmware by using PwnageTool (Mac Only).
- If you have a 2G iPhone (1st Generation) or a iPod Touch (1st Generation), installing 2.2.1 Firmware is fine — even though it updates your baseband, the way QuickPwn unlocks the phone still continues to work fine. So you are OK here in all cases.
- If you have a iPod Touch (1st Generation), you can still apply this upgrade but you can only Jailbreak it while teathered to your computer. So you are still OK here.
I wanted to make sure to cover all that in detail to make sure no one got caught with their pants down (and locked out of their phones).
I am writing this guide using a 1st Generation iPhone (non-3G), on the T-Mobile network with the BlackBerry data plan and all the following software listed. If your setup is similar, you can probably follow this guide to a T. If you have a slightly different network setup, the steps should still work fine, but if you are have a different device, like the 3G iPhone or 2nd Gen iPod Touch, please read the red “Summary” above at the end of the previous section — it seems you might have to hold off on doing this update just yet.
What you will need before we get started:
- Download QuickPWN 2.2.5-2 for Windows (15.4mb)
- Download iPhone (1st Generation) 2.2.1 Firmware (246mb)
- Download v3.9 Bootloader (129kb- Mirror)
- Download v4.6 Bootloader (129kb- Mirror)
- UPDATE: Have iTunes 8.1 or later installed — 8.1.1 is recommended
NOTE: Here are download links for other firmware images that you might want. Keep in mind that if you are on the 3G iPhone there doesn’t seem to be support for unlocking that upgraded firmware to work on other networks right now (read the red “Summary” above).
- 3G iPhone (2nd Generation) 2.2.1 Firmware
- iPod Touch (1st Generation) 2.2.1 Firmware
- iPod Touch (2nd Generation) 2.2.1 Firmware
Now that you have the two files downloaded that you need (QuickPwn and the 2.2.1 Firmware) our first step is to apply the firmware update.
Doc your iPhone, let iTunes sync everything up for you (or sync it manually if you don’t have it setup to sync manually) and then go to the Device node for your iPhone, hold down the Shift key and click the Update button to bring up the file-selection dialog:
Now select the iPhone1,1_2.2.1_5H11_Restore.ipsw file that we downloaded earlier:
and click Open. iTunes will begin a series of 7 or so stages of applying the update to your phone. This includes uncompressing the IPSW file, installing the software, verifying it and so on. The exact series of little dialog status windows you will see look like the following (in-order):
And after the firmware update is installed and applied, you will see a 10-second notice from iTunes that the phone is restarting:
After your phone has finished restarting, it will re-connect to your computer and iTunes will come up with a scary looking message about an unsupported SIM card that looks like this:
Don’t worry about it though, we haven’t QuickPwn’ed the phone yet, so technically it is locked. So let’s go fix that!
UPDATE: If this step doesn’t work for you, we’ve had a few users tell us re-running this portion of the guide with the SIM card pulled out of the phone helped — but many have success just leaving the card in, so if you run into trouble, try both.
Now that we have our iPhone fully upgraded with the 2.2.1 Firmware, we need to fire up QuickPwn to do the dirty work of both Jailbreaking it and unlocking it (cracking the baseband so we can get this thing on the T-Mobile network).
Go find where you downloaded QuickPwn-225-2.zip to and unzip it into a new folder (or in-place if you want, it won’t create it’s own folder), resulting in the following contents:
Then drag and drop the two .bin files (for Bootloader 3.9 and 4.6) into the same dir just so they are easy to find, like this:
Then fire up QuickPwn.
The first screen you will see is the QuickPwn warning (not for commercial use):
Click OK. Now you are instructed to make sure your iPhone is attached to your computer so QuickPwn can find it:
After making sure that step is done, QuickPwn will verify that it can see your iPhone connected to your computer, then ask you to select the iPhone firmware (IPSW file) that we used before in iTunes. In this case it is our iPhone1,1_2.2.1_5H11_Restore.ipsw file.
Click Browse…, go find it, select it and QuickPwn will do some verification on the file to make sure you selected the right onw:
Once QuickPwn has verified the image you selected was correct, it will let you know and enable the blue “Next” arrow for you, so click it:
Now QuickPwn will ask you what you want it to do for you. In this case we recommend:
- Add Cydia
- Add Installer
- OPTIONAL: Unlock phone (if you are on an unofficial network, like T-Mobile in the U.S.)
Click next when done and QuickPwn will ask you for the Bootloader v3.9 and Bootloader v4.6 files that we downloaded from earlier. Select them:
and after you are done QuickPwn will verify the Bootloaders for you, allowing you to continue:
Now click the blue “next” button and QuickPwn will ask you to make sure your iPhone is still connected to your computer:
After confirming this, click the blue “next” button.
GET READY: The next part of QuickPwn will look like a list of things it’s doing, but it’s actually prompting you to do these items — and they won’t wait for you to read the prompts. So get ready for the next screen to appear:
NOTE: As your phone moves from state-to-state, QuickPwn may move to the next item in the list before the time counts down — that’s OK, go ahead and change what buttons you are holding to correspond with the prompts when that happens — don’t worry about the timer.
You will have about 5-8secs for the first prompt to finish — this is done automatically by QuickPwn for you (putting your phone into Recovery Mode), but then after the highlighted prompt changes to the 2nd item you have to get ready to:
- Hold Home for 10 seconds (The round face-button at the bottom center of the phone)
- Keep Holding Home, and now start holding the Power button for 10 or 15 seconds (Power button is on the top right corner of the phone)
- Release the Power button, but keep holding the Home button for 30 seconds (In reality, the phone moves to the next prompt usually within 15 secs, and you can let go… but just incase wait until the prompt moves before releasing the Home button)
After you are done, your phone is in DFU mode and QuickPwn will take over, installing modified bootloaders, ramdisks and utilities to crack it:
You can now sit back and watch. After QuickPwn is done sending files to your phone, your iPhone will begin displaying status bars processing the new files, the QuickPwn logo screen (with a pineapple on it) and then some baseband cracking UIs that automatically fill out and complete as you watch.
This whole time QuickPwn will be showing you this screen:
And you will just want to wait until your phone is done installing software and rebooting itself. After either 1 or 2 reboots it will eventually stop and just go to the standard charging/locked screen. Give it about 20 secs to make sure it’s done, then swipe your finger across the screen to unlock and viola! You are upgraded to the iPhone 2.2.1 firmware!
Congratulations, you are all done now and your phone is upgraded. In this guide (as opposed to our Firmware 2.1.0 guide) we did not try and do a new fresh install of the operating system, so there is no need to try and restore the phone’s data — we just upgraded the firmware, and the phone is ready to go with all our old data on it.
In fact I would encourage you to re-sync with iTunes after this process is done just to make sure it worked. I was able to sync the phone and make some phone calls right after this guide was written without a problem.
If you did run into any problems, please post below and we’ll try and help out. Be as specific as possible!
When we did our Firmware 2.1.0 Guide, a handful of people couldn’t get iTunes or their iPhone to recognize their SIM card after flashing the phone and a few other hickups. Most all those problems were discussed/covered in the Comments section of that guide if you want to review that first before posting here.