Hackers are getting faster and faster. Apple released the iOS 4.3 GM to developers earlier today. A few hours later, hackers had figured out a jailbreak for that same release. The same actually went for the iOS 4.3 betas (1 through 3, to be exact).
After the break: how to jailbreak your iOS 4.3 device (Be warned: it’s a bit of work to gather up the required keys and patches to make the jailbreak).
First, the credits!
- @jcf_dev for the iPT4G PT bundle.
- @DjayB6 for the iPhone 4 bundle.
- @msft_guy for the tools.
- @besweeet for the pre-made IPSWs.
The manual method for the GM jailbreak is to download a custom PwnageTool bundle, insert that bundle into the actual PwnageTool application, create a custom IPSW, make a ramdisk, insert it into the custom IPSW, and hope you can install it with no problems. This is not an easy procedure for end-users.
So, is there an alternative? Absolutely! But, there are some catches to this jailbreak:
- It’s a TETHERED jailbreak, meaning you’ll have to reboot your device using your computer to get it to boot up again. Think of it as jump-starting your car.
- This jailbreak requires a RESTORE. All custom IPSW jailbreaks require a restore. But besides, a restore is always good for your device, because it can start fresh.
The alternative is to download a pre-jailbroken IPSW file that’s already jailbroken for iOS 4.3 GM for a particular device. You can download one here:
- iPad 1G [Not uploaded yet, as there are still some annoying issues]
- iPhone 4 (681.1MB)
- iPod Touch 4G (666.8MB)
(Other devices will eventually become available, but those are the ones that are ready.)
The installation procedure is as follows:
- Download the above IPSW(s).
- If you’re on Mac OS X, download PwnageTool 4.2. If you’re on Windows, download iREB RC4.
- If you’re on Mac OS X, open your downloaded copy of PwnageTool 4.2 and use its “DFU” mode button to put your device into pwned DFU mode (it’s slightly different from regular DFU mode, and won’t work unless you do it this way). If you’re on Windows, open your downloaded copy of iREB RC4 and click on your device to put it into pwned DFU mode (it’s slightly different from regular DFU mode, and won’t work unless you do it this way).
- Once you’re finished,open up iTunes.
- If you’re on Mac OS X, hold alt/option while clicking on the restore button, and find the custom IPSW. If you’re on Windows, hold shift while clicking on the restore button, and find the custom IPSW.
You should now be at your home screen with a “Cydia” icon on it. If you tap on it, it’s probably going to crash. This is because you have to boot your device into a jailbroken state. The procedure to do that is below. You’ll also need to follow this procedure EVERY TIME you reboot your device. This may be bad to some, but I honestly can’t remember the last time I had to reboot my iPhone 4 or iPad (it’s been at least a month).
- If you’re on Mac OS X, download THIS. If you’re on Windows, download THIS.
- Put your device into DFU mode (turn your device on; hold power+home for 10 seconds; while continuing to hold home, let go of power; you should now be in DFU mode (iTunes should detect your device in recovery mode, and your screen should be completely off).
- Follow the below video.
[I can’t embed videos for some reason, so here it is on YouTube.]
There’s a few things that I forgot to mention… To get the iBSS and kernel cache (which is required for TetheredBoot), you’ll have to rename your custom IPSW to a .ZIP file. After extracting the contents of the .ZIP (IPSWs are just ZIPped up files), you’ll be presented with the kernel cache. K48 is for the iPad, N90 is for the iPhone, and N81 is for the iPT4G. To get the iBSS, you’ll have to go to the /Firmware/dfu/ folder. Make sure you grab the iBSS, not the iBEC! Use this files in conjunction with the video above to boot your iDevice up. It may seem like a lot at first, but it’s very straightforward after you try it once.
There you have it folks. It may sound complicated, but this is as good as it gets, for now at least, until an untethered jailbreak is discovered and made public.
Enjoy!
Feel free to follow Brian on Twitter!
Brian Sweet is a young 20-year old student who loves technology (PCs, Macs, iPhones) and auto racing. Brian also writes for JailbreakZone, and is the host of the This Week in iPhone podcast (not affiliated with TWiT). Follow Brian on Twitter (the quickest way to get in touch), or visit his website.
74 responses to “How To Jailbreak iOS 4.3 GM [Yeah, That Was Quick!]”
Excellent work! The pre made IPSWs could make it more easy.
Is it still possible to do this with a 1st gen iphone? My friend’s phone is still 1.+ and he wants to upgrade his iphone to 4.+
it is really not possible to upgrade the 1st gen iphone to a ios 4.x
Very quick with this one, but i presume thats because the JB has been sitting for some time, purely for the GM release to be produced.
Where is the video for tethered boot?
Thanks!
Jailbroke my 1st Gen IPhone for the knowledge and so I could use it on pay as you go T-Mobile but T-Mobile has no data network so I only have wifi. Why jailbreak an IPad. You only open yourself up for viruses, malware and spyware. It’s not worth the few half-a**ed extra things you can do with a jailbroken IPad.
you can jailbreak the 1st iphone but you can’t run IOs 4.3 on it. The 1st iphone doesn’t have the hardware to run 4.3
Why bother? Part of the appeal of the iOS family of devices is the convenience and functionality of the software. Maybe it’s just because I no longer have an interest in hacking my way into software/hardware just to prove I can do it.
Im stuck in this error can anybody help me please??? i hae a IpT 4 libusb:error [darwin_close] USBDeviceClose: no connection to an IOService
Waiting 2 seconds for the device to pop up…
Connection failed. Waiting 1 sec before retry
Have the exact same problem, tried 2 different macs as well. Please help
i had that as well.. then i tried on bootcamp windows and it worked.. but then my phone was all messed up like icons were messed up and all.. so i went back to normal 4.3GM.
i saw another article which said to use the ibss files and kernel file from original ipsw.. is that correct?
BiteSMS
MyWi
3G Unrestrictor
SBSettings
GV Phone Add-On
GV SMS Add – On
Just a few reasons for bothering. When Apple puts these functionalities in, I’ll have no reason to JB either. Except, by then, maybe swype and other functions will be added.
Download CUSTOM IPSW 4.3 GM with Cydia. Pre-Jailbroken for Windows and Mac http://xsellize.com/topic/1193…
when i get to terminal and load all three(teatherboot, ibss, and kernel) and hit enter it tells me:
dyld: Library not loaded: /opt/local/lib/libusb-1.0.0.dylib
Referenced from: /Users/charlesdurazo/Downloads/tetheredboot
Reason: image not found
Trace/BPT trap
i have done this on a PC with an iPad and there seems to be no cydia ??
anyone have the same problem??
everything worked im running 4.3 gm but there just isnt cydia
ummmm its worth it to me i dont know what to do with myself when not having apps
I would appreciate if anyone could make a pre-jailbroken ipsw for 3GS for me, I got problems with the power button so can’t do it myself… ¨
Thanks in advance!
well i was able to do all the following- except that i dont have a “valid sim” :) so i am stuck at the emergency screen- is there any way to get pass this without a reg sim???
Your buddy would have to use the modded iOS 3.x mods found at www(dot)whited00r(dot)com for his/her iPhone 2G to get the similar functionality to iOS 4.x such as folders, multi-tasking, etc.
i get upto the steps in the video and after dragging the three files in the same order as the video says this comes up which really annoys me. can anyone help?
dyld: unknown required load command 0x80000022
how do i change the ispw file to a .zip????
Just rename the ****.ipsw to ****.zip, it will prompt you about changing file types etc etc then choose “Use .zip” :)
I have a problem when i run terminal and upload boot tethered and the IBSS It Won’t Let Me and Says Permission Denied
You have to run sudo -s first.
I used the steps and files found here to jailbreak iOS 4.3 http://surreystore.com/Forums/…
I used the steps and files found here to jailbreak iOS 4.3 http://surreystore.com/Forums/…
the link to download iREB rc3 doesnt work any tips?
jhuuh
It says error when i restore it
Don’t you hate it when someone posts “error” without posting what it actually says?
why always the windows stop working? using redsnow
Itunes says: “The Ipod couldn’t be restored. This device isn’t eligible for the requested build.” Any ideas?