PS3 Per Console Keys

From EurAsiaWiki

Main Page | Recent changes | View source | Page history | Log in / create account |

Special pages Double redirects Broken redirects Disambiguation pages Log in / create account Preferences My watchlist Recent changes Upload file File list Gallery of new files User list Statistics Random page Orphaned pages Uncategorized pages Uncategorized categories Uncategorized files Uncategorized templates Unused categories Unused files Wanted pages Wanted categories Most linked to pages Most linked to categories Most linked-to templates Pages with the most categories Most linked to files Pages with the most revisions Pages with the fewest revisions Short pages Long pages New pages Oldest pages Dead-end pages Protected pages Protected titles All pages Prefix index List of blocked IP addresses and usernames User contributions What links here Book sources Categories Export pages Version System messages Logs MIME search List redirects Unused templates Random redirect Pages without language links File path Popular pages Search

Printable version | Disclaimers | Privacy policy
Category: PS3

---

Source: http://ps3devwiki.com/index.php?title=Per_Console_Keys

---

Contents 1 per_console_root_key_0 2 per_console_root_key_1 / EID_root_key 2.1 Obtaining It 2.1.1 Option 1 - Dumper Kernel Module 2.1.2 Option 2 - Dumper Payload 2.1.3 Comments 3 per_console_root_key_2 / EID0_key 3.1 Obtaining It 4 per_console_root_key_n 5 Documentation 6 Kaz very kind explanation

per_console_root_key_0

• metldr is decrypted with this key
• bootldr is decrypted with this key
• might be obtained with per_console_root_key_1? (largely speculative, not nec. true - need more looked into, only based on the behavior of the other derivatives known to be obtained through AES)

per_console_root_key_1 / EID_root_key

• derived from per_console_key_0
• stored inside metldr
• copied to sector 0 by metldr
• cleared by isoldr
• Used to decrypt part of the EID
• Used to derive further keys (per_console_key_0 is not the key which will be derived, but is the key which has derived per_console_key_1)
• can be obtained with a modified isoldr that dumps it
• can be obtained with a derivation of this key going backwards

Obtaining It

Launch the patched isoldr with your prefered method, let it be Option 1, or Option 2...

Option 1 - Dumper Kernel Module

• modify glevands spp_verifier_direct to dump the mbox to wherever_you_want and then (use the payload below as an example)
• the example code on how to dump the mbox can be found on 'Option 2 -Dumper Payload' below

insmod ./spp_verifier_direct.ko
cat metldr > /proc/spp_verifier_direct/metldr
cat dump_eid_root_key.self > /proc/spp_verifier_direct/isoldr
echo 1 > /proc/spp_verifier_direct/run
cat /proc/spp_verifier_direct/debug
cat /proc/spp_verifier_direct/wherever_you_want

Option 2 - Dumper Payload

• http://pastie.org/pastes/2101977

• patched isoldr to dump it

*DO NOT CREATE AN MFW USING THIS IT WOULD BRICK PS3

• patched isoldr: http://www.multiupload.com/2MP5KY28EZ

• this can be loaded as the payload stage2 in the payload marcan used to load linux
  • http://marcansoft.com/blog/2010/10/asbestos-running-linux-as-gameos/
  • http://git.marcansoft.com/?p=asbestos.git

• this can also be loaded as with lv2patcher and payloader3
  • https://github.com/euss/payloader3.git

Comments

• What this selfs do is dump your ISOLATED SPU LS through your mbox, so you only need a way to cach this info with PPU code in lv2 enviroment aka a dongle payload or linux kernel
• This has been tested and proven to work on 3.55 MFW
• In the dump the remaining dump is the metldr clear code. metldr clears itself and all the registers an jumps to isoldr.
• Overwritting that code lets you dump your key + metldr
• Consider that per_console_key_1 and per_console_key_n are in fact still in need decryption.
• per_console_key_0 particularly needs to be dumped once revived from per_console_key_1.

per_console_root_key_2 / EID0_key

• this key can be obtained through AES from EID_root_key

• EID can be partially decrypted by setting this key in anergistics and fireing aim_spu_module.self
• Load aim_spu_module.self + EID0 + EID0_key in anegistics = decrypted EID0
• This code is to decrypt your EID0 on your PC http://pastie.org/2000330
  • The prerequisites are:
    • dump your EID0 from your ps3 and save it in the same folder as EID0
    • dump your EID0_key from your ps3 and put it on the code above where the key is needed
    • load all of them in anergistic

• EID0_key could also be obtained with EID_root_key directly in the following manners:
  • knowing the algorithm (located in isoldr)and applying it to the EID_root_key
  • leting isoldr apply that algorithm directly in anergistic
    • the process is exactly as the one above (modifing anergistic to feed isoldr with EID_root_key

Obtaining It

• patched aim_spu_module to dump it

*DO NOT CREATE AN MFW USING THIS IT WOULD BRICK

• http://www.multiupload.com/1XUOOYS9I0

per_console_root_key_n

These are further derivations of the per_console_key_1/EID_root_key

Documentation

http://polarssl.org/trac/browser/trunk/library/aes.c

---

Kaz very kind explanation

EID crypto is very complicated, it is done so on purpose. first of all EID0 isn't decrypted with one key, and one algorithm alone. it is decrypted in several parts which use different algos and keys. the keys are all derivations of a per console key (per_console_key_1)which is stored inside metldr and copied by it to sector 0 and never leaves isolation. that same key is a derivation of the per console key (per_console_key_0) used to encrypt metldr and the bl in the first place as well.

isoldr clears that key from sector 0 before jumping to the isolated module. but before doing so it encrypts it with another keyset and stores it in a buffer so that the isolated module can use the new crafted key. since the operation is AES, if you know that keyset you can decrypt the crafted key and get the eid root key without pwning a loader or metldr through an isolated module. that is not like you really need it because you can already use the crafted key to decrypt some of eid0, but not all of it. and the crafted key also uses the first elf section to be built as in your isolated module will have a small section which only contains a key. and that key is used as another layer by isoldr to encrypt the buffer with it. so basically you have 2 encryption layers over the root key. the final key then decrypts a specific part of the EID.

eid crypto is actually done smart. that is because most of it originally comes from the cell bootrom, as in they reuse the same algo used for metldr binaries and bl in the eid crypto, including some of the keys and the steps. and you cannot decrypt all of the eid sections unless you gathered every single keys and steps. and there are a lot then you still have to figure out wtf it is you decrypted because eid is actually full of keys.

---

View source | Discuss this page | Page history | What links here | Related changes


This page has been accessed 330 times. This page was last modified 03:48, 27 October 2011.
Main Page | About EurAsiaWiki |

 

Check the EurAsia Online Shop for your hardware modding needs.