113w ago - Today PS3 hacker
Mathieulh has tweeted some new details on dumping LV0 from PlayStation 3 3.60 Firmware and obtaining the new keys, followed by
Ps3WeOwnYoU claiming he has already reproduced it to confirm it works.
Below are all the tweets, as follows:
Mathieulh's Tweets:
- xShadow125 You can update from your own pup only from 3.55 or lower, unless you have an exploit.
- xShadow125 Of course that should be fixed in upcoming lv0 revisions anyway (By moving the ldrs to the top of lv0)
- xShadow125 You run the 3.60 lv0, then you switch the nor, and pull the cell reset line, and you dump the extra KBs where the loaders are.
- xShadow125 Basically you have a nor with 3.55 (or lower) lv0 and your own small lv1 code that does the dump, and 3.60 lv0 on the other.
- xShadow125 You wont get all of lv0 but the part with the loaders shouldn’t be overwritten.
- xShadow125 You can actually get all the 3.60 keys/loaders without knowing lv0 keys by dumping lv0 from ram with dual nor and signed lv1.
- To those planning on building a 3.56+ pup for whatever reason, the files attributes changed, the group and user ids for the files as well.
- The new 3.56+ values for tarballs are the following: owner_id, "0000764" group_id, "0000764" owner, "tetsu" group, "tetsu" ustar, "ustar"
- You can use fix_tar to use those new values. Use with caution.
- By comparison, those are the pre-3.56 values. owner_id, "0001752" group_id, "0001274" owner, "pup_tool" group, "psnes" ustar, "ustar"
- Ps3WeOwnYoU You need to either decrypt or dump lv0, then you can get the encrypted loaders and decrypt them with the metldr key. Good luck.
So, to decrypt this LV0 thing, we need to get to know it better. In the latest blog post by
rms, he has explained briefly what LV0 is in the console’s security.
Anyway, let’s really discuss something PS3 instead of my PC xD, let’s start with Lv0, the most unknown level of the PS3. Lv0 initializes PS3 base hardware such as PowerPC/PPU portion of Cell/BE, SPU isolation for asecure_loader, and gelic ethernet/WLAN device. Lv0 also proudly proclaims itself as the "Cell OS Bootloader".
In older firmwares, 0.80-ish to 3.56, Lv0 initialized SPU isolation on one of the SPUs, then it loaded and decrypted asecure_loader. Asecure_loader or metldr then decrypts the isolated loader, in this case, lv1ldr, then lv1ldr decrypts lv1.self. In 3.60 this changed. Lv0 now has all of the loaders integrated into it as one large fat binary.
All the keys one needs such as Public ECDSA key/AES CBC key and Initialization Vector and ECDSA curve type are in there. Just go ahead and grab them if you can get the ldrs out of the binary.
So, unless you can decrypt Lv0, no 3.60 "CFW" for you . Is there any need for it anyway?
Mathieulh also has some facts to clarify about LV0.
1. lv0 isn’t a loader it’s a ppu binary
2. Lv0 isn’t encrypted per console and can be updated with the rest of the coreos
3. Lv0 is decrypted by the bootloader, there is no such thing as a lv0ldr.
4. The bootloader keys cannot be updated/modified on EXISTING hardware
5. lv0.2 is NOT a binary, it’s a new metadata for lv0 which is to be decrypted and verified by a new bootloader (which is to be available on future ps3s), it is NOT used by the current bootloader (and thus in current playstation 3 consoles)
But wait, messing with this thing could lead to the YLOD tragedy, unless you have those expensive NOR flasher you might want to proceed, and that’s according to rms again.
Lv0 also does some more interesting stuff such as SPU mailbox handling, and eEID integrity checks. Lv0 also used to check for QA flag and proper token, that is now in a spu isolated self in Core OS. Now, if you did tamper with eEID, lv0 will panic out, and your console will then "YLOD", and you’d need a flasher for your PS3 to recover.
Finally, from
rms on lv0: Lv0 initializes PS3 base hardware such as PowerPC/PPU portion of Cell/BE, SPU isolation for asecure_loader, and gelic ethernet/WLAN device. Lv0 also proudly proclaims itself as the "Cell OS Bootloader". In older firmwares, 0.80-ish to 3.56, Lv0 initialized SPU isolation on one of the SPUs, then it loaded and decrypted asecure_loader.
Asecure_loader or metldr then decrypts the isolated loader, in this case, lv1ldr, then lv1ldr decrypts lv1.self. In 3.60 this changed. Lv0 now has all of the loaders integrated into it as one large fat binary. All the keys one needs such as Public ECDSA key/AES CBC key and Initialization Vector and ECDSA curve type are in there. Just go ahead and grab them if you can get the ldrs out of the binary.
So, unless you can decrypt Lv0, no 3.60 "CFW" for you. Is there any need for it anyway?
Lv0 also does some more interesting stuff such as SPU mailbox handling, and eEID integrity checks. Lv0 also used to check for QA flag and proper token, that is now in a spu isolated self in Core OS. Now, if you did tamper with eEID, lv0 will panic out, and your console will then "YLOD", and you’d need a flasher for your PS3 to recover.
Some time ago there was a buzz about unbanning methods, but I didnt care. Now I do, but I have no idea what current situation is and its hard to figur...
They are on DMCA mode , for everything. They sent a DMCA to Garyopa too, just because his website was hosting some OFW and CFW, go figure what kind of trash is now this company people daily support buying their products. Look the last EULA. THEIR product now is untouchable. For the reasons you wrote, agree. Their image was damaged. They lost and every day are at risk of losing contracts, and games could disappear. Looking the last big fails of this company, with PSPGO and now PSVITA, if they lose their face a spit more, Sony can fail.
You know what? They will not shrink. Devs will, a lawyer and it's done. Do you remember that guy who was going to release a new PSN method for go online? Guess what happened to him..
Not that some one spread this on the web and produce a new drama with it. We dono need more drama's. We all in scene need to calm done a bit and try to make this scene good again
On a way, i can understand Sony, because they didn't really attack any users or dev on the PSone/PS2/PSP, when i see some people claim Geohot do so good stuff, i was claiming he does completely the inverse of what i real dev will do... when you a dev/hacker like that, you never claim something from that way and all what Geohot did, it was a completely a mistake.
He didn't find anything => the stuff was from the past and it was a surprise for him that the PS3 have a PPC and that you need to code in C (he had a PS3 and don't know it), just to clarify something, ok it's intelligent but he never find any exploit on Apple product or any Sony product, it was not him, it was other dev that find exploit and use work from other to be in the top of everything, he release stuff that not supposed to be release => need to ask the owner before it.
Just do a small research of PS3 scene, Geohot etc... he make the piracy/hack a f.... commercial and every he claim he can push out Sony before they do this action.
Have a misunderstood about the Sony Action, i don't defend Sony for other stuff they made but it's clearly a misunderstood, Why Sony do this ? it's because of all the pub/insult they have received from the PS3 Scene, touching too much the company, etc... also they didn't give warning to the PS3 users but to the guy who claimed so much stuff that he did not.
Remember that Sony = Company, they need to make money but have also human person who work, they can be fired just for that... take the place of the worker who work in here, if you want to hack, do piracy, it's your problem, you can do it but i never seen in my life a person who claimed like Geohot or some people that they did something like that to make only piss off Sony.
I check the past and i see no action from Sony, just try to make the product better
I check the past and i see no action from Microsoft (only ban, so ?) also if you check how much Windows was pirated, Microsoft don't really care, this make good pub for the company
I check the past and i see no action from Nintendo (only try to stop the card) but they have reason, did you see the peace of crap R4, etc ?...
I mean come on, don't be paranoia, they didn't have really action from any company to a person, the only think about it was for people who make money with stuff that is free and also some mistake
I don't support the company that close the product like that but it's also a challenge for the dev/hacker that make sense
Who talked about it when you have actually a PS3 completely open with a CFW (do you imagine that we can do everything we want) and also who talk about ECDSA ? Kakarotoks said the way he find to make a HEN was not possible because of that but he didn't say all
and also said he don't want to waste the time... but anyway why you talk about him in here ?
and why waste that much time on that than work on something else, if you try to stop some of the work, you waste your time.
i already showed that we can do something on 4.0 and i don't need any keys for that, have already the tool, source and everything.
Forget it, you can't brute ECDS ....
Hopefully it will be hacked one day, but not soon ..