[Windows Tutorial] Run Rs Full Firmware

Discussion in 'iPod touch 2G Jailbreak: redsn0w, 24kpwn, etc.' started by seanG, Mar 7, 2009.

  1. seanG

    seanG Active Member

    Joined:
    Dec 28, 2008
    Messages:
    1,746
    Likes Received:
    14
    Device:
    iPhone 5 (Black)
    [Windows Tutorial] redsn0w "Run Rs"

    Ok guys I figured out to make the Run Rs ipsw and the Sha1 values match MuscleNerd's. I will make a video shortly.

    You need libusb and C++ Redistributable installed.

    Update 1: Video Uploading

    Update 2: http://www.youtube.com/watch?v=tJZo0yrL-dc


    Things you need:
    xPwn
    iRecovery
    Custom Firmware Builder
    Patch Fix
    2.1.1
    2.2.1

    1.) First you need to make a new folder and call it run rs. Put all those winrar and zip files into the run rs folder.

    2.) Now extract xpwn. Put the runrsnew.rar in the xpwn folder and extract it. Place your 2.2.1 and 2.1.1 files in the xpwn folder.

    3.) Now run the file inside your xpwn folder called "mkipsw.bat". It should now be making the cfw. Wait a few minutes for it to finish.

    4.) When it's done put the FIX.zip in your xpwn folder and extract it. Now run "FIX.bat" and wait for it to finish.

    5.) Put ipod into DFU mode.

    cd to irecovery folder

    Code:
    irecovery -f ibss211.dfu
    
    un-plug and re-plug ipod
    
    iRecovery -s
    arm7_stop
    mw 0x9000000 0xe59f3014
    mw 0x9000004 0xe3a02a02
    mw 0x9000008 0xe1c320b0
    mw 0x900000c 0xe3e02000
    mw 0x9000010 0xe2833c9d
    mw 0x9000014 0xe58326c0
    mw 0x9000018 0xeafffffe
    mw 0x900001c 0x2200f300
    arm7_go
    arm7_stop
    /exit
    Shift+Restore in iTunes and select your Custom Firmware

    iPod will be in Recovery mode

    "irecovery -s"

    Copy and paste this one block at a time:

    Code:
    setenv rs "arm7_stop;mw 0x9000000 0xe59f3014;mw 0x9000004 0xe3a02a02;mw 0x9000008 0xe1c323b4;run rs1"
    
    setenv rs1 "mw 0x900000c 0xe59f300c;mw 0x9000010 0xe3e02000;mw 0x9000014 0xe503223f;run rs2"
    
    setenv rs2 "mw 0x9000018 0xeafffffe;mw 0x900001c 0x0ff1a100;mw 0x9000020 0x0ff2afff;arm7_go;run rs3"
    
    setenv rs3 "sha1 0x8000000 0x3000000;arm7_stop;mw 0xff006d4 0x21906943;mw 0xff006d8 0x68da6898;run rs4"
    
    setenv rs4 "mw 0xff006dc 0x9300699b;mw 0xff006e0 0x69c40509;mw 0xff006e4 0x47a02300;run rs5"
    
    setenv rs5 "mw 0xff006e8 0xf0002000;mw 0xff006ec 0xe002fde3;tsys"
    
    saveenv
    Type "run rs" to boot. If it turns off then hold home and power until it reboots. Then type run rs again and it should boot.

    Congratulations!! Credit goes to jfb392 and r3dmond.
  2. higuys

    higuys Member

    Joined:
    Dec 30, 2008
    Messages:
    70
    Likes Received:
    0
    Device:
    2G iPod touch
    just out of curiosity (because i haven't done it yet), what appears on the screen when you're required to type "run rs"? is it just black or a logo or what?
  3. seanG

    seanG Active Member

    Joined:
    Dec 28, 2008
    Messages:
    1,746
    Likes Received:
    14
    Device:
    iPhone 5 (Black)
    It's the connect to iTunes logo. That is Recovery mode.
  4. Xii

    Xii New Member

    Joined:
    Sep 9, 2008
    Messages:
    1,147
    Likes Received:
    0
    Device:
    iPhone 4 (Black)
    Just to be completely clear, this erases everything on you iPod. It's not a NOR flash, correct?
  5. seanG

    seanG Active Member

    Joined:
    Dec 28, 2008
    Messages:
    1,746
    Likes Received:
    14
    Device:
    iPhone 5 (Black)
    Yes. That is right.
  6. Xii

    Xii New Member

    Joined:
    Sep 9, 2008
    Messages:
    1,147
    Likes Received:
    0
    Device:
    iPhone 4 (Black)
    Alright, thanks.

    Please Register or Log in to view images



    I would give this a try but don't feel like completely restoring and I'm not having much luck at flashing the NOR.
  7. tomasfn93

    tomasfn93 Member

    Joined:
    Feb 20, 2008
    Messages:
    433
    Likes Received:
    0
    why is better run rs method than the old tehtered jailbreak??, in this you requires of 2 programs installed (C++ PACKAGE AND LIBUSB) and for the original and old tethered you just need the LIBSUB PROGRAM.
  8. seanG

    seanG Active Member

    Joined:
    Dec 28, 2008
    Messages:
    1,746
    Likes Received:
    14
    Device:
    iPhone 5 (Black)
    I will try to get it to where it only flashes the NOR in a few minutes. Stay tuned.

    Please Register or Log in to view images

    Please Register or Log in to view images


    ------------------double post merged------------------
    Actually since iRecovery requires C++ to run, it is needed in both.
  9. jfb392

    jfb392 New Member

    Joined:
    Oct 20, 2007
    Messages:
    2,512
    Likes Received:
    21
    Device:
    iPod touch
    This is exactly what I was thinking about releasing, but I don't feel like dealing with everything (honestly, it gets annoying).
    I've made some modifications to XPwn though that allow NOR-only IPSWs to be created (I also made it skip the modification of the RootFS disk image too when it is NOR-only, so it's really fast).
    As to whether or not I'll ever release it; it really depends.
    I'd need someone to test that it creates both full and NOR-only IPSWs correctly (still don't have a 2G).
  10. mitchell209

    mitchell209 Active Member

    Joined:
    Jan 21, 2009
    Messages:
    8,024
    Likes Received:
    5
    Device:
    iPhone 4 (Black)
    Yeah, I can't ever get a NOR Flasher to work.
    I always get error 6

    I had to fully restore for the 5th time this week. Lol.

Share This Page