Just good news after good news for the PS3 scene recently, as the folks over at PS3DevWiki have documented and released on how to dump the PS3 per console keys! For the newb what this does is basically replace the current function JB2 aka TrueBlue! In short once the keys for per_console_key_0 are found, it will basically fully unlocks the PS3 and grant as CFW access on basically ALL firmwares! This is great news for everyone in the PS3 scene and is only a matter of time before we have the keys!
Update: Please understand that this method is for dumping per_console_key_1, and per_console_key_n. In order to get CFW we need to dump per_console_key_0.
For those wondering or not sure  if you should buy the JB2/TrueBlue – THIS news story is worth the wait before investing in the device/bluray burner.
Explanation of the root key:
EID crypto is very complicated, it is done so on purpose first of all EID0 isn’t decrypted with one key and one
algorithm alone it is decrypted in several parts which use different algos and keys the keys are all derivations
of a per console key (per_console_key_1)which is stored inside metldr and copied by it to sector 0 and never
leaves isolation that same key is a derivation of the per console key (per_console_key_0) used to encrypt metldr
and the bl in the first place as well
isoldr clears that key from sector 0 before jumping to the isolated module but before doing so it encrypts it
with another keyset and stores it in a buffer so that the isolated module can use the new crafted key since the
operation is AES if you know that keyset you can decrypt the crafted key and get the eid root key without pwning
a loader or metldr through an isolated module that is not like you really need it because you can already use the
crafted key to decrypt some of eid0 but not all of it and the crafted key also uses the first elf section to be
built as in your isolated module will have a small section which only contains a key and that key is used as another
layer by isoldr to encrypt the buffer with it so basically you have 2 encryption layer over the root key the final
key then decrypts a specific part of the EID
eid crypto is actually done smart that is because most of it originally comes from the cell bootrom as in they
reuse the same algo used for metldr binaries and bl in the eid crypto including some of the keys and the steps
and you cannot decrypt all of the eid sections unless you gathered every single keys and steps and there are a
lot then you still have to figure out wtf it is you decrypted because eid is actually full of keys.
Below is the documentation posted at the PS3DevWiki:
per_console_root_key_0
| Click to expand post |
SelectShow |
|---|
- metldr is decrypted with this key
- bootldr is decrypted with this key
- might be obtained with per_console_root_key_1? (largely speculative, not nec. true – need more looked into, only based on the behavior of the other derivatives known to be obtained through AES)
|
per_console_root_key_1 / EID_root_key
| Click to expand post |
SelectShow |
|---|
- derived from per_console_key_0
- stored inside metldr
- copied to sector 0 by metldr
- cleared by isoldr
- Used to decrypt part of the EID
- Used to derive further keys
- can be obtained with a modified isoldr that dumps it
- can be obtained with a derivation of this key going backwards
- derived from per_console_key_0stored inside metldrcopied to sector 0 by metldrcleared by isoldrUsed to decrypt part of the EIDUsed to derive further keyscan be obtained with a modified isoldr that dumps it can be obtained with a derivation of this key going backwards
obtaining it
launch the patched isoldr with your prefered method
Option 1 – dumper kernel module
-
modify glevands spp_verifier_direct to dump the mbox to wherever_you_want and then (use the payload below as an example)
-
the example code on how to dump the mbox can be found on the Option 2 – dumper payload below
insmod ./spp_verifier_direct.ko
cat metldr > /proc/spp_verifier_direct/metldr
cat isoldr_PATCHED > /proc/spp_verifier_direct/isoldr
echo 1 > /proc/spp_verifier_direct/run
cat /proc/spp_verifier_direct/debug
cat /proc/spp_verifier_direct/wherever_you_want
Option 2 – dumper payload
- this can be loaded as the payload stage2 in the payload marcan used to load linux
- this can also be loaded as with lv2patcher and payloader3
- What this selfs do is dump your ISOLATED SPU LS through your mbox, so you only need a way to cach this info with PPU code in lv2 enviroment aka a dongle payload or linux kernel
- This has been tested and proven to work on 3.55 MFW
- In the dump the remaining dump is the metldr clear code. metldr clears itself and all the registers an jumps to isoldr.
- Overwritting that code lets you dump your key + metldr
|
per_console_root_key_2 / EID0_key
| Click to expand post |
SelectShow |
|---|
- this key can be obtained through AES from EID_root_key
- EID can be partially decrypted by setting this key in anergistics and fireing aim_spu_module.self
- Load aim_spu_module.self + EID0 + EID0_key in anegistics = decrypted EID0
- This code is to decrypt your EID0 on your PCÂ http://pastie.org/2000330
- The prerequisites are:
- dump your EID0 from your ps3 and save it in the same folder as EID0
- dump your EID0_key from your ps3 and put it on the code above where the key is needed
- load all of them in anergistic
- EID0_key could also be obtained with EID_root_key directly in the following manners:
- knowing the algorithm (located in isoldr)and applying it to the EID_root_key
- leting isoldr apply that algorithm directly in anergistic
- the process is exactly as the one above (modifing anergistic to feed isoldr with EID_root_key
[edit]obtaining it
|
[More documentation can be seen over at PS3DevWiki]
You heard it here first one PS3Hax, stay tuned for more updates on this story 
10-26-2011
08:29 AM
if this can help get the root key then we laughing also good bye jb2 lol
10-26-2011
08:29 AM
10-26-2011
08:33 AM
10-26-2011
08:41 AM
looks live the dev team are bang on it
10-26-2011
08:42 AM
10-26-2011
08:44 AM
10-26-2011
08:52 AM
10-26-2011
09:26 AM
And also, very beautiful women (or men, I don't know?).
Looks like things are going forward now. It's been quite a while since anything "new" has been introduced to us. Save for some old DOS games, or random homebrew (not complaining, just stating it's nice to have something new. Also I'm ignorant; I just play my emulator's and don't use much/know of other `brew).
10-26-2011
09:50 AM
10-26-2011
10:05 AM
10-26-2011
10:09 AM
10-26-2011
10:17 AM
i wonder how long till sony starts psn bans once we get the root keys but then again who cares cfw shouldnt be on psn
10-26-2011
10:20 AM
If we get them devs should disable PSN because there's a lot of jerks.....
10-26-2011
10:27 AM
10-26-2011
10:28 AM
Nice, I've been praying for that for ages, that would be a huge pain for Sony since it's deadly unpatchable without a new SKU...
Here come ban waves and remote bricks plus those lame and illegal Sony rootkits, they never learn their lesson that this is illegal and they have no way to defeat this law atleast.
This (extensivelly) would also mean decryption of Cobra's payload if I'm correct, right?
10-26-2011
10:31 AM
But a mans gotta hope, right?
10-26-2011
10:35 AM
10-26-2011
10:36 AM
10-26-2011
10:39 AM
10-26-2011
10:40 AM
10-26-2011
11:08 AM
Great news indeed, can't wait to see that more development in this!
10-26-2011
01:37 PM
Great Great Great... well i am sorry jb2 but this just ruined your business...
i just hope we can patch isoldr without using hardware mods.
anyway will look at it closely, i already have my eid but yeah
10-26-2011
01:48 PM
Pockets mete isto na primeira pagina já!
(já vi que és português também).
BTW its my first time here,and i love ps3hax!
This is the best news of the year, very good, now $ony can´t stop the hackers
10-26-2011
01:49 PM
i can't front page it only news editors can...
welcome to the forums.
10-26-2011
01:51 PM
10-26-2011
01:54 PM
10-26-2011
01:58 PM
no majid i am not.
10-26-2011
02:01 PM
10-26-2011
02:54 PM
+1 for herpaderp :P
OT: Best news we've heard in a while, let's hope the rest of the keys can also be figured out(there are more necessary to fully decrypt eEID iirc), because if that happens, bye bye Sony my love :3
10-26-2011
03:01 PM
lolll..Sorry im not aware of an "EID" is, just went ahead and read what I saw
10-26-2011
03:06 PM
With this it´s possible to play 3.70+ games and go to psn for sure?
This is great serioulys.
10-26-2011
03:11 PM
10-26-2011
03:23 PM
Edit: I hope i'm saying right, but that's what i've heard...
10-26-2011
03:29 PM
10-26-2011
03:35 PM
Y this no frontpaged????
10-26-2011
03:37 PM
10-26-2011
03:41 PM
http://ps3devwiki.com/index.php?titl...Chain_of_Trust
10-26-2011
03:51 PM
It's the first time that I'm actually intrugued how Sony is going to respond to this, since they cannot form any kind of TOS that covers that issue, and not being more retarded than the already applying one...
-They are going to sue them? (I doubt the reverse engineerers would care less, plus this wouldnt be a solution since the hack would be already out in public)
-Ban Hammer? (That's kind of obvious, not that anybody of us would care, but whatever)
-Rootkit? (Since 2002 Sony caused with the ''Sony BMG incident'' the use of rootkits to be recognised officially as illegal in the market so if they do, they will face some painfully serious issues, so they won't bother with that solution)
I'm so hyped, I hope this won't have the same fate as previous PS3 news, I'd be sooo sad, it's the perfect timing for such news.
10-26-2011
03:52 PM
Yup, taken a note, bootldr is NOT updatable :D and can be decrypted with per-console keys... Good things coming up
10-26-2011
03:54 PM
this is excellent!
10-26-2011
04:01 PM
No mater what. We are about 90% farther then we where yesterday.
This is good stuff. Ps3Devwiki and anyone who ever contributed
10-26-2011
04:16 PM
10-26-2011
04:24 PM
Sh1t got serious.
Those packages are for 3.15 and 3.41.... I am guess this is more difficult for 3.55 or something?
10-26-2011
04:24 PM
Thanks for the news post, just got home and moved this to front page
10-26-2011
04:28 PM
I am not an expert though so I could be wrong.
10-26-2011
04:28 PM
Amazingly good news today has been such a great day
10-26-2011
04:29 PM
but anyway, just because the pkgs aren't available for 3.55+, finding the per console key could be done on ANY FW up until 3.41 is what i've worked out. it doesn't matter because sony implemented the same security as it is hardware not FW.
am i right? i don't know. that's what i'm getting from this.
10-26-2011
04:32 PM
Now comes the waiting game... Hard to be patient when this kind of news surfaces. I want to play me some Resistance 3 and BF3 on my PS3. XD
10-26-2011
04:35 PM
Would this allow for all games to be played discless? I have a spare PS3 with lens broken so hoping to bypass and load direct off the HD and have this sitting in the bedroom for some midnight loving.
10-26-2011
04:35 PM
this is a sad day for Sony
) and a great day for the rest of us 
)
10-26-2011
04:36 PM
i guess i wont have to buy jb2
will wait and see what happens with this
10-26-2011
04:38 PM
I would rather throw $45 at these devs than at the JB2 guys.
10-26-2011
04:38 PM
10-26-2011
04:41 PM
typical got bored of waiting and just bought a new ps3 to play batman and uncharted but hey if it comes its all good anyway
10-26-2011
04:42 PM
10-26-2011
04:42 PM
so the per_console_key_0 is the mother of all keys in the PS3?
10-26-2011
04:43 PM
lol, they waited until the Uncharted 3 release, to release their documentation, it says that it already has been tested with success, so i guess $0n4 and its PS3 are doomed again...
cheers
10-26-2011
04:44 PM
i think.
unless anyone can correct me.
10-26-2011
04:46 PM
Hey to all devs ,,, get to it
10-26-2011
04:46 PM
10-26-2011
04:49 PM
couple things actually.
1) so with the release of this info, i'm not asking for rushing or anything, but once a dev does the dumping, how long does the process actually take to get the key and create a CFW?
2) would this enable game update pkgs too? or just retail games?
10-26-2011
04:49 PM
this better not be yet another great new discovery that is forgotten in 2 weeks or so.
10-26-2011
04:51 PM
as the keys will be released i wonder who will sony sue next since that what they do best..
10-26-2011
04:52 PM
So long True Blue, We hardly knew you.
10-26-2011
04:53 PM
10-26-2011
04:54 PM
We don't even need to wait for fixes.
Well if this come quicker then the fixes lol.
10-26-2011
04:54 PM
Either way, the PS3 era is over for Sony.
10-26-2011
04:54 PM
UNCHARTED 3 IM COMING TO BUY YOU!!!!!
10-26-2011
04:56 PM
10-26-2011
04:56 PM
10-26-2011
04:57 PM
Great chance to be sued they have already given their factory for selling jb2.
The cfw needs a new name without owner if they don't want to get famous like geohot.
10-26-2011
04:59 PM
10-26-2011
05:00 PM
well i'm really waiting for that keys! but looking for other point and starting a discussion: with all FW unlocked it is interesting for game producers release new titles to ps3 platform since theirs profit will theoretically decrease?
10-26-2011
05:00 PM
okay and once it's released do we know if getting the key will be newbie friendly?
or do we not know UNTIL it's released?
10-26-2011
05:01 PM
10-26-2011
05:01 PM
I remember when the PS3 was originally hacked people were saying the same things, yet I still see a lot of people waiting for 3.6+ CFW. The "scene" is a game of cat and mouse I'm sure Sony will have something up their sleeves for the future, which will in turn lead to new methods. Rinse and repeat.
Don't get me wrong, I hope this is a long term thing but I wont be surprised if it isn't. Either way, fantastic news atm.
10-26-2011
05:01 PM
so in order to make a CFW the end user need to find the per_console_key 0 and use it?
10-26-2011
05:02 PM
A minha noite acabou de ficar melhor :D !!!
Fantastic news...i've been in here all days praying for this awesome news...
10-26-2011
05:07 PM
10-26-2011
05:08 PM
I dont want to be the bringer of bad news but we dont have the keys
And lets not write of sony's resistance as they could enclose it all in an encrypted shell or another layer. I want the keys and be able to own my ps3 but i wont hold my breath
10-26-2011
05:09 PM
10-26-2011
05:12 PM
10-26-2011
05:13 PM
10-26-2011
05:13 PM
and after u find the root key.
going from bottom to top is more easy..
10-26-2011
05:14 PM
Does it get better than this? A week or so and nearly 800 posts of JB2 rubbish and drivel...then all of a sudden, this. Now all of a sudden, the folks behind JB2 have basically a bunch of pointless usb keys.
Note to JB2: Don't phuck with the scene. If you can hit, the scene can hit harder.
10-26-2011
05:16 PM
wasnt the per console key something recently added by sony like 3.6* firmwares. that could be access restricted in later firmwares thats what i mean soz if im wrong
10-26-2011
05:17 PM
10-26-2011
05:19 PM
metldr is decrypted with this key
bootldr is decrypted with this key
10-26-2011
05:23 PM
Sounds like Sony's going to have to bust a$$ on getting their ps4 up and running if they want complete control again after we get our own keys. I like the idea of having a procedure to obtain your own unique key to play these games. This way you cant be a demanding idiot because the only one who can help yourself will pretty much be yourself (aside from the devs who lay the ground work). Now people can get a very small feel for what devs have to go through. Might humble some folks.
10-26-2011
05:26 PM
10-26-2011
05:27 PM
Just like [MENTION=51782]carldenning[/MENTION] you'll have to make the CFW yourself because every PS3 have it's own key!
Sure about that? Would they not be able to use the console specific keys, to achieve the global keys needed for CFW's, since they can decrypt them, with the console specific ones..?
10-26-2011
05:29 PM
10-26-2011
05:29 PM
keys
10-26-2011
05:33 PM
10-26-2011
05:33 PM
Great news. I will hopefully be buying a PS3 in a few weeks and want to run my legit GT5 directly from the HDD.
10-26-2011
05:34 PM
I am pretty sure that if you care only about playing single player games once everything is cracked a custom bootloader/eboots can be made that will work on 3.55 Kmeaw with tweaking.
However if you want to have "everything" and 3.7X+ CFW you'll have to get your own specific root/master key.
Still this is groundbreaking news and everything else is just a matter of time."True Blue" or whatever is absolutely uselss compared to this news.
10-26-2011
05:34 PM
10-26-2011
05:35 PM
10-26-2011
05:35 PM
WHAT DID I SAY??? WHAT DID I SAY??? I said to everyone wanting to buy the JB2 DONT!
I hate dongles! Just a bunch of people that wanna charge for the flow of information. How different are they to sony if you think of it.
So bottom line...in otherwords...we will sooner or later be able to play any ps3 game out there and there is nothing sony can do about it as far as implementing a new firmware is concerned?
Ok I know console key is unique to every console but im sure it isnt too difficult for our awesome team of devs to come up with a way to implement our key into a firmware.Theyve done awesome things as it is
Can someone confirm this? Sorry if Ive misunderstood. Kinda half asleep
10-26-2011
05:38 PM
So what's the next thing???
ok so first ppl need to dumpt there OWN root key,
the use the latest ofw, say 3.72, and use MFW to merge in the root key
install the cfw you made, and bam, you would enjoy psn and NEW games,
can this be done allready, or do we have to wait for something??
10-26-2011
05:42 PM
Don't want to ruin the mood but... as far as I've read, bootldr is encrypted with TWO keys, the root key (obtainable with this method) and a static key (not obtainable with this method, and even harder if not impossible to obtain), and even with the root key, you still can't do anything since you don't have the second key?
Besides, obtaining the root key was done a while ago, we just didn't have ready-to-use tools released to the public.
I would love to be proven wrong though :P
10-26-2011
05:43 PM
10-26-2011
05:43 PM
wow. Christmas in October!!! lol
10-26-2011
05:44 PM
Yeah, we are always so near, we are gonna conquer the world,
Like this time, in june:
http://www.ps3hax.net/showthread.php?t=24229
And at the end of the day... nothing.
10-26-2011
05:51 PM
To get new versions of CFW someone would get the 3.60+ keys from their root, key, then decrypt the latest firmware.pup then resign them with the 3.55 keys so that those of us on 3.55 could upgrade to a later version.
It's highly unlikely anyone will bother going through that much work considering they could just get the public keys to decrypt 3.60+ eboots, modify them and play it on existing 3.55 firmware like 3.41 CFW. Then we would still be able to downgrade an QA flag freely.
3.55 CFW could get back on PSN if they used to public keys to get the new XI-passphrase but I think most devs would refrain from doing that considering it would draw the evil crab's sight even faster.
In short it means that you'd still need a PS3 on <=3.55 or a hardware flasher. Good luck to anyone in their endeavour finding their root key!
10-26-2011
05:52 PM
10-26-2011
05:53 PM
I realize it's probably too early to tell, but theoretically, could this help restore access to PSN? If our CFW matched the latest OFW, I assume we could connect to PSN, but what's stopping Sony from detecting and swiftly banning?
10-26-2011
05:56 PM
not sure if i missed anything here but do they want me to give them my consol keys? im happy to do it but i didnot quite understand how.
10-26-2011
05:58 PM
what about the people that are on ofw 3.65 or ofw 3.6x and 3.7x.
HOW IN THE WORLD WOULD WE FIND OUR ROOT KEYS??????
10-26-2011
05:59 PM
we are almost there! gogo developers!
10-26-2011
06:00 PM
you wouldn't.
EDIT: oh yeah. downgrade. hahahaha. don't know why i completely ignored this.
10-26-2011
06:02 PM
************* [ - Post Merged - ] *************
10-26-2011
06:10 PM
so in basic words ...
3.XX OFW + 3.55 Keys = 3.XX CFW?
that what the Root key can do ?
10-26-2011
06:12 PM
lol so sony are screawed i can see the prices of 3.55 ps3 and lower goin up in price
10-26-2011
06:15 PM
10-26-2011
06:15 PM
LMAO at people that ran out the door to buy JB2!
Don't ever pay for homebrew, that's not what it's suppose to be about. You wanna make money?? Then go do it the right way instead of some stupid JB2 get rich quick scheme! I really hope they put alot of money into making those because their losses will serve them right.
The *******s steals Sony's coding and try to make money off of it and the people who bought that thing rewarded them for being pieces of ****.
You wanna know what will bring the hammer down on the scene?? Dumbasses like JB2 that attract unwanted attention!
10-26-2011
06:15 PM
10-26-2011
06:16 PM
what about the people that are on ofw 3.65 or ofw 3.6x and 3.7x.
HOW IN THE WORLD WOULD WE FIND OUR ROOT KEYS??????
how can i possibly downgrade without spending any money???
10-26-2011
06:16 PM
10-26-2011
06:17 PM
10-26-2011
06:20 PM
10-26-2011
06:22 PM
Good job to all the developers who used their time on this project! When sony finds out it will fully unlock the PS3 and allow CFW for most of the firmwares they will freak out.
10-26-2011
06:22 PM
10-26-2011
06:25 PM
Hate to disappoint yah all but this is been on the wiki since august so i'm starting to think there's noting new
10-26-2011
06:27 PM
10-26-2011
06:30 PM
10-26-2011
06:32 PM
Moogie said it was edited to show a way to obtain it even tough it was straight forward
10-26-2011
06:32 PM
10-26-2011
06:35 PM
i am so excited ^_^
10-26-2011
06:35 PM
Once a month (on average) there's big news like this, all sensational and bombastic, claiming to solve the fact that we're still on 3.55 and even solve the world hunger along the way too, people get excited for a few days, thus creating the illusion that something is actually happening and guess what? We're still on 3.55 today and I still haven't opened my Portal 2.
I don't want to sound like an ass but I really don't understand why people get excited over things as "abstract" as this.
10-26-2011
06:39 PM
Stop the hype and sentationalism, this is not something new according to:
http://173.255.232.215/logs/efnet/ps3dev/2011-10-26
10-26-2011
06:40 PM
i allready completed portal 2, rage and battlefield 3, but that's on pc,
On Topic, just whait for a few weeks or months,
or like other ppl say's, get e seocnd ps3 and use that for ofw, or buy a jtagged xbox360
or a decent high end pc, for just 400 bucks, amd offcoarse
10-26-2011
06:40 PM
Sorry, sorry, sorry- but I am the dumbest of all ps3 newbies. I am 66 yrs old and not a hacker, hence the stupid question.
I just purchased a refurbed ps3 6gb from GameStop (expecting an older system software issue). Unfortunately it is upgraded to 3.72. So my stupid question is: Will the decryption of the keys eventually lead to hacking system 3.72?
10-26-2011
06:41 PM
10-26-2011
06:42 PM
The scene will never advance!
10-26-2011
06:44 PM
130+ posts within 10 hours?
That's how you know this **** is good news.
on a related note:
YES
EDIT: *reads thread*
dammit guys
10-26-2011
06:45 PM
10-26-2011
06:47 PM
I'm not getting my hopes up but I'm loving the news
10-26-2011
06:49 PM
************* [ - Post Merged - ] *************
10-26-2011
06:52 PM
The point is, I read "Christmas is coming" atleast once a month for the last... 6 months? And somehow it just can't get here. THAT'S the point.
And screw True Blue, I'm never bying that ****.
10-26-2011
06:56 PM
It's some good news but how many here have their PS3 set up in order to get dumps from it?
This is so far only the console keys, and each console has it's own key, so if this does lead to something someone will have to make a user-friendly tutorial in order for newbs and noobs to get their own console key in order to use it.
And who know how long it'll take to get them decrypted, we could be waiting months.
10-26-2011
06:57 PM
can this news help in decrypting games eboot bin's?
10-26-2011
06:58 PM
10-26-2011
06:59 PM
btw if we have a guy with root cant he decrypt the 3.7x+ ofw making new cfw if im not mistaking?
10-26-2011
07:00 PM
so many people in here will be in the download CFW band wagon once this is tested and proven to work. these same people who don't give new info a chance to breathe before having something negative to say about it will be the same ones saying "see? i told you it would work".
Let's give all new info a chance to be proven before shooting it.
10-26-2011
07:00 PM
sorry question answered
10-26-2011
07:01 PM
-The news is old, has been posted since August
-This new "edit" is basically a way of obtaining the per_console key, we still have to find a way to decrypt it
-Even if this does get cracked, there are still a couple of other steps involved to entirely crack the PS3
-99.8% of the PS3 scene are not devs, are dumb, retards, and don't know how to read or post news when it comes out
-These guys are very harsh, and like to joke about everything (half their jokes makes me seem like I'm reading a IRC log with 11-year olds talking)
We're going to have to see what becomes of this.
10-26-2011
07:01 PM
10-26-2011
07:10 PM
10-26-2011
07:26 PM
what about the people that are on ofw 3.65 or ofw 3.6x and 3.7x.
HOW IN THE WORLD WOULD WE FIND OUR ROOT KEYS??????
i hope they make a downgrade with this so that we don't have to flash our hardware and open up our ps3.
JUST A REGULAR SYSTEM UPDATE VIA USB WITH SOME FILES THAT WILL TRICK THE PS3 INTO SAYING INSTALL 3.55 OFW OR, UP INSTEAD OF 3.65 OR UP.
10-26-2011
07:29 PM
i really hope this leads to a new cfw..because i want to play madden 12 and uncharted 3 so bad...and no i can't afford another ps3. Thank you so much devs for all your hard work!!!!!!!!!!!
10-26-2011
07:34 PM
that are on ofw 3.7x...The path is closed !!!!!!
fail 
I was hoping
10-26-2011
07:35 PM
and any news forward is god news.
10-26-2011
07:37 PM
greatt , but im on 3.66 boooh, just in case downloasdin bf3
10-26-2011
07:41 PM
OK PEOPLE IF YOUR ON 3.56+ THIS IS USELESS TO YOU !!!!!!!
its for people on 3.55 or below no if or buts just 3,55 or below
10-26-2011
07:44 PM
Just got home and gave this a more in depth look. So from what I understand we need per_console_root_key_0 but what we have been able to obtain is per_console_root_key_1 and key_2. So key_1 is derived from key 0. PS3devwiki.com says key_1 is used to derive further keys. So correct me if I am wrong, but it is speculated that we can get key_0 only with the assumption that the algorithm or process used to create the derivatives of key_1 is the same as the process used to create key_1 from key_0? If Sony was concerned with applying as much security as possible, which compared to other consoles has been the case aside from their network, it can be assumed that they would use different processes so that metldr and bootldr can remain encrypted.
Regarding the following:
"you can already use the crafted key to decrypt some of eid0, but not all of it. and the crafted key also uses the first elf section to be built as in your isolated module will have a small section which only contains a key. and that key is used as another layer by isoldr to encrypt the buffer with it."
So from what I understand we can only decrypt some of eid0 with key_1 but need another key to decrpyt the rest. Is there any speculation that we can get that key and if so what will be achieved once we decrypt edi0 in it's entirety?
10-26-2011
07:46 PM
Update: Please understand that this method is for dumping per_console_key_1, and per_console_key_n. In order to get CFW we need to dump per_console_key_0.
Read more: http://www.ps3hax.net/2011/10/how-to...#ixzz1bwFzvR7O
10-26-2011
07:51 PM
for the poeple on ofw 3.6x and 3.7x DEVS WE ARE SCREAMING YOUR NAMES HELP US.
10-26-2011
07:52 PM
What EXACTLY can we do with just this?
10-26-2011
07:55 PM
DAMN IM ON 3.66 so ill have to update to play MW3
10-26-2011
07:55 PM
10-26-2011
07:56 PM
10-26-2011
08:00 PM
hey hey
Developers - its your time to make a name of yourself - you know e-fame, be as huge as geohot - to be the Dark_Alex of this scene forever. Seize the opportunity!!!
Just kidding. Let's watch the match between developers vs JB2 hackers. Grab the popcorn - it shall be glorious.
10-26-2011
08:35 PM
Viva la Résistance!
10-26-2011
08:51 PM
noob question.
if i can update from fw3.55 to fw3.70+ wouldn't that mean the 3.55 keys are still working to decrypt fw3.70+ from the hdd? can't we patch something to allow the unencrypted fw path to change to an ext means?
can't we work that out to how to dump the unencrypted fw to something else then see the changes made? geohot said he used linux, on 3.15 to give us the 3.55 keys. how did he do that......
i know that bootloader and mtldr can't be patched, right? but can't we create a clone of bootloader or mtldr using hardware and software and then use it to dump (fw,keys) in a location we specify? its not patched, its just redirected to a hacked clone of mtldr/bootlaoder.
10-26-2011
09:04 PM
too drunk 2 explain but i can say is geosnot didnt give us 3.55 keys
10-26-2011
09:05 PM
Good News! thanks
10-26-2011
09:16 PM
Did this news blow up or what. I hope future CFW will take work from the end user, where's the fun in being spoon feed everything. Last time I checked when I'm hungry for something I like to get it myself. Or a least educate myself to some degree to accomplish it.
10-26-2011
09:19 PM
nothing will come of this.just us lot got nothing better to talk about.ppl haveing to get ps3 key's out of the ps3 can you see that happening.i can see it now ps3 hax tells all the 11 year old kid's to open up said ps3 have a big long wee in do it back up you have the keys.when you tell them how to do it that's what they see in your post's you see my point be a lot of crying in hear.
10-26-2011
09:21 PM
10-26-2011
09:30 PM
10-26-2011
09:38 PM
10-26-2011
09:56 PM
Can I just point out that this is not your per-console root key. This is the key that does however, encrypt many per-console specific things within your console. It is not new news, it has been publicly known for a while.
The root key is what we need, it would enable us to decrypt/encrypt bootldr/metldr breaking the chain of trust at the very topmost point, completely breaking the PS3's security model.
It is likely that the EID key is generated from the root key, It is likely that this would be a one-way irreversible hash though.
10-26-2011
09:58 PM
there is some smart people in the scene but i think this might just be something they aren't quiet capable of yet :\
10-26-2011
10:04 PM
Damnit....god damnit...
I can't believe this. I've been waiting almost a year now for CFW because my bluray lens had failed. I joined this site this month with several questions about E3 flasher hoping that I could finally play without waiting 30 tries before the disc was read. Decided not to get it.
Then, since it seemed no CFW was in sight according to most people I asked, I finally caved and ordered the lens last week.
And JUST TODAY I installed it...hours later, this news.
Meh, still happy.
Question though: If this turns out to be true, does it mean we can "dual boot" as in switch from OFW to CFW to play backups and switch again to OFW to play online? If so, then I'm not at all mad about buying the lens.
I completely agree with you.
10-26-2011
10:07 PM
Also, there's still A LOT of work to be done here. Don't expect some magical CFW to appear out of nowhere.
Dual booting CFW and OFW has been possible for quite awhile. There's NOR/NAND methods in doing so, and also HDD swap methods. There's plenty of literature on this here.
10-26-2011
10:23 PM
he absolutely helped open the doors.
its why our apps work when we go back to 3.55 official, his signing software makes sure of it.
those keys may be blacklisted now for 3.56+, but he still gave more than most ever will.
before that, you had to have a dongle to run any unsigned code.
10-26-2011
10:39 PM
So they will eventually be able to dump whatever keys onyS creates now and forever?
10-26-2011
10:50 PM
So the real hero was failoverflow team.
10-26-2011
10:50 PM
Just need a noob friendly tut
10-26-2011
11:04 PM
Alright can we drop the george hotz convo, and stick to the topic at hand i.e. per_console_key_1 and per_console_key_n
10-26-2011
11:19 PM
Whats frustrating about this is that these devs seem to always want to throw out how openly available all this information is.
When obviously it takes more than just having the information.
The system is complex enough to keep the average Joe from figuring it out,
yet complex enough for others to discover something and still make a profit off of it...
This new phase of PS3 hacking really takes very strong applied crypto knowledge to understand and implement.
Only very few can do the computer science necessary needed to gather,
understand and apply the information required to make this new generation of tools.
The elite are here.
Let them do the discovery and pass information.
Experimentation is cool but exaggerating claims, being mean or lying about things only makes the scene ugly.
Why not just sit back and enjoy the ride?
The old military saying is "Security Through OBSCURITY is No Security at All"
The original Xbox is a prime modern day example of this.
Your not completely correct about 3.41.
Nearly any PSN game that runs on 3.55CFW can be signed to run on OFW3.41.
Just like they need to be singed to run on 3.55. Not all unsigned code will run on 3.55.
Other than the pokes necessary to use a Backup Manager the JB dongle is primarily used to install packages, otherwise most of the time its not needed.
Granted 3.55 is required for many BluRay Disc games, backups and PS1 ISO games.
If you really want a Backup Manager on 3.41 without a dongle there is always ReBug.
Time will tell if 3.41 will finally die or made new again with the new Team KADO hack.
PS3 Encryption is finally falling away.
Maybe someday we wont be bound too it.
10-27-2011
12:22 AM
Yes good news
And I'm not being a teachers pet when I say this but I agree with [MENTION=19681]TheLost[/MENTION]deathnight about the whole geohot thing, geohot is done, we have kakaroto, we have deank, we have so many devs still in it to win it and because of that we may have a method to break encryption..... Lately geohot has been mentioned left and right on the sce- I mean modding community when he hasn't done anything, at least that im aware of that truly contributes to the modding community and I'm not hating on the guy, I just believe his time has passed, and likewise, the torch with it.
10-27-2011
01:36 AM
this is great news and made my day
10-27-2011
01:44 AM
WOOOOOHHOOOO!!!! **** YEA!!!!! NO MORE STUPID FIRMWARE UPDATE FROM SONY!!! HAHAHAH SONY!!! **** YOU!!!! WE WON!!!!! NOW ITS TIME FOR SONY TO ROLL OUT THE RED CARPET FOR THE PS4. HAHAHHA!!! **** YEA!!!!! CELEBRATE!!! CANT WAIT!!!
10-27-2011
01:46 AM
I don't think it's safe to say "once the keys for per_console_key_0 are found, it will basically fully unlocks the PS3". How many times have the hackers pretended that they fully hacked the PS3 just for Sony to release a new firmware a few weeks later to fix the hole ?
10-27-2011
01:50 AM
Sent from my PC36100 using Tapatalk
10-27-2011
02:29 AM
Does anyone know whether this key can be gained from a console which is higher than OFW 3.55??
10-27-2011
02:31 AM
im so in love with all ps3 devs right now.
credit is deserved in the highest levels.
i havent been this excited since i first bought my ps3.
thank you so much for all you do!
10-27-2011
02:34 AM
BTW did you know that Geohot was sued into arbitration oblivion by Sony?
He signed an agreement stating he would not hack a single Sony device ever again
or face huge monetary fines for each and every infraction.
GeoHot signed it and went on to say he would never own another Sony device...
So it should go without saying that we wont ever see him working on the PS3 again.
Also Geohot wasn't interested in completely opening up the console.
He wanted to lock it down for homebrew use only, using Sony's own encryption to do it.
That's the real reason for his low popularity with fans of the scene.
If you want a hero look at Graf_Chokolo.
Sony took all his stuff, twice, and put him in a deep dark hole.
Anyone who defies Sony from then on is a Hero.
10-27-2011
02:42 AM
let the eboot fixes start rolling out
10-27-2011
02:51 AM
It blows my mind that after ALL the clarification on this matter, people still don't understand what it means.
10-27-2011
03:15 AM
This will not lead to a CFW anytime soon... well not by itself..
There are still steps (difficult steps) from what i have understood..
Whoever front paged seem to be more excited then to go over the facts...(maybe im wrong?)
10-27-2011
03:22 AM
Halloween is early, we got the Treat and Sony got the Trick.
10-27-2011
03:42 AM
what exactly we need to do to run 3.6x+ games on 3.55cfw?
10-27-2011
03:43 AM
The isoldr or the appldr keys I think. That's what got the games that required 3.55 firmware to run on 3.41 firmware back in the old days of the jailbreak with dongle usage.
10-27-2011
03:52 AM
Sounds like great news.
but lets say they do manage to successfully dump the key 0. Would sony then still be able to somehow create a newer FW update to block us, like they currently can or is the console fully hacked? I'm just a bit sceptic that although this news is exciting, sony may find a newer method to stop hackers.
10-27-2011
04:04 AM
However this doesn't give us the key we actually need or get us much closer too it, i think more likely an open source version of "true blue / jb2" is going to be out best solution for a while
10-27-2011
04:06 AM
In order for everyone to get cfw on any ps3 and firmware we need the root keys not the console keys.
Console keys will do the same but then everyone will have to be able to dump and decrypt their own console keys and then make their own cfw. It's the first part that's the problem, how to get the dump; I'm pretty sure someone already has a diy cfw builder made.
10-27-2011
04:16 AM
thanks very much for clarifying esj and bigo93.
@ bigo93 - all you need is someone to create a tutorial on how to dump/decrypt/build cfw and the rest is upto the users to learn.
10-27-2011
04:30 AM
Exciting news indeed
Can't wait to actually start using my PS3 again. As of now it's somewhat unusable with so many new games that aren't playable on CFW 3.55.
10-27-2011
04:41 AM
Please understand that this method is for dumping per_console_key_1, and per_console_key_n. In order to get CFW we need to dump per_console_key_0.
do you understand peoples ?! we are NOT able yet to get CFW ! dont be excite to early !
10-27-2011
04:44 AM
This seems like it may not be the news everyone (including me) are/was hoping for
Moogie301 via twitter
"THAT HAS NOTHING TO DO WITH CFW AND WILL NOT LEAD TO CFW"
http://twitter.com/#!/moogie301
10-27-2011
04:45 AM
That is my understanding.
I don't think their will be a CFW above 3.55 any time soon though I guess its good to stay positive?
10-27-2011
04:46 AM
If no one has seen the cell boot code, no one can guarantee that the per_console_key is the only thing involved in bootloader encryption. If no one has seen the cell boot code, everything is just pure speculation. If someone has seen the cell boot code, then correct me. But I have never heard of anyone having their hands on that.
10-27-2011
04:52 AM
10-27-2011
05:00 AM
This is how I see it, if the devs found away to bring a CFW higher than what we currently have it would then be all over the web and the devs would also say something along the lines of this could bring new CFW or something easy for most people to understand about CFW releases but that is my opinion.
10-27-2011
07:09 AM
I've seen this movie once other vezes. Appears that one discovers the world.Calculations and more calculating than just that he did not create anything.
Tired of it and sony keeps on winning.
10-27-2011
07:12 AM
10-27-2011
07:18 AM
Only time will tell.....
10-27-2011
07:20 AM
10-27-2011
07:43 AM
10-27-2011
07:48 AM
10-27-2011
07:55 AM
Once boxed its not only too expensive... its completely impractical.
Another factor is geography/location and type of stores.
Some areas sell more than others and some stores share inventory.
10-27-2011
08:14 AM
10-27-2011
08:22 AM
Nice!
Not to stir the pot, but who said the scene was dead..?
Shout out to all involved!
10-27-2011
09:35 AM
Looks like ps3s on 3.55 or less are gonna skyrocket in price
(supply aint there to meet demand), glad I got mine when
the scene was considered 'dead'.
We have lots to look forward to this holiday season
10-27-2011
09:39 AM
10-27-2011
09:39 AM
The past month or so has been what appears holiday season coming early.
10-27-2011
10:04 AM
I hope these something new about the new Slim 3000 Models...
10-27-2011
10:13 AM
Lol oh didn't read that we must need make or own cfw's.
Well no suing then hehe.
10-27-2011
10:13 AM
honestly this is the happiest i've been today with whatever disease i have. -_-
10-27-2011
10:14 AM
Also off topic a little but heads up, Duplex is on a roll again...
...hopefully this steady stream continues...
10-27-2011
10:17 AM
Hey guys..!We have to install ps3load pkg to ps3 ...but how?Can someone put video tutorial as soon as did it..Thx )
10-27-2011
10:19 AM
THis is prolly never gonna happen. First the onm project--- never released, and now this. This is fake probably
dont get me wrong I just lost hope and selling my ps3 for a wii which can be modded AND go online
10-27-2011
10:22 AM
10-27-2011
10:38 AM
10-27-2011
10:40 AM
Thanks to everybody working on this.I have a question. I disabbled the ss patch so I didn't get the trophy error do I need to put it back to try this out?
10-27-2011
10:53 AM
Well, I suposse it is just a matter of time that an ingenieer, or a genius make a CFW from these interesting info. The rest of mortals will have to wait for the promised CFW, the one to rule them all, and in the meanwhile their so-called diogenes (cannot find an explanation why that unfair name) syndrome 2.0 (massive storage of 20GB sized games that need 3 lives to be played) will be in forced quarantine. I'd really like to know the background and IQ of the average hacker who publishes this kind of info and how in the ´´ll could they reach that level without a convenient leak. All in all they are the only ones who really enjoy the creation of a scene, not the the yonki warezlandia.
10-27-2011
11:04 AM
it's because of holiday, that devs will have more spare time to make somthing new or hack the ps3 proper instead of small and big steps,
10-27-2011
11:04 AM
10-27-2011
11:06 AM
I hope they make it available to dump the keys on 3.7x ps3's otherwise you'd have to downgrade to get the console key and then upgrade right ?
10-27-2011
11:25 AM
10-27-2011
11:35 AM
10-27-2011
11:40 AM
also if per_console_root_key_0 is obtainable:
per_console_root_key_0
* metldr is decrypted with this key
* bootldr is decrypted with this key
10-27-2011
11:47 AM
10-27-2011
12:26 PM
damn no update yet?
10-27-2011
12:37 PM
You also have to remember that the keys then have to be decrypted before they can make any use of them
This article has been over-hyped and any real user usable application probably wont be available until some time after the new year!
10-27-2011
12:48 PM
pfff they always talk talk talk, i don't how many guys said they would find the keys ,the jfw-dh cfw, ... still nothing released in like 7 months or something
10-27-2011
12:51 PM
10-27-2011
01:02 PM
tell ya what, all you guys complaining (the this does nothing for me bs as usual) wouldnt know a trout if it smacked you in the face. people give you tools to work with and you blame the tools, a poor worker blames his tools but a good worker blames himself. why dont you instead of *****ing and complaining try the tools. or wait you prolly dont have linux installed right (your prolly in that same crowd that said linux was useless on ps3 right?) well you can also use payloader3, oh you dont know how to use that either? i must say if thats the fact your SOL
10-27-2011
01:04 PM
10-27-2011
01:09 PM
10-27-2011
01:13 PM
Hi guys iam on firmware 3.56 last 7 months is any body think that i am right for not updating 3.56 to 3.60 ,3.73 ? Please give some solutlon on mail me KAMALSINGH149@GMAIL.COM
10-27-2011
01:15 PM
10-27-2011
01:15 PM
Best bet is to reverse engineer the JB2 dongle and make a cfw out of it, then whait for the master KEY,
10-27-2011
01:16 PM
Guys stop acting like *****es, this is great, and time will bring another cfw for sure! just wait and support the devs.
If I had hacking abilities i help them and stop complaining.
Just Wait and you all see, the devs and hackers have my full support
************* [ - Post Merged - ] *************
And with master key its impossible for sony blocks the keys!
Sry for my english.
10-27-2011
01:20 PM
So in theory, if you have access to the root key for your own console, someone could write an app that decrypts the entire OFW pkg onto a location on the PS3 Hard Drive (Like Dark_Alex used to do with the PSP firmware decrypters for each release) and then take your own key, and recompile a new PKG CFW with all the security bits removed so that everything that works in the 3.55 CFWs works in ANY firmware, right?
10-27-2011
01:21 PM
10-27-2011
01:33 PM
Don't get down on the devs who are using their time to explore the PS3. Most devs aren't concerned with helping piracy in the first place, some yes, don't get me wrong. Take it easy and encourage people, don't beg and insult. Devs are doing hard work. There not making a sandwich. It takes time, drive and patience. I really hope the nay sayers are first to thank any dev who provides free tools and information to allow every PS3 to do what the end user wants. I understand frustration but if you think about it, no one knows the same frustration better than the devs who are trying to unravel algorithms that split keys. I am not a programmer but I do know what they are doing is indeed very technical and requires tools that cost money. I've never donated to a dev directly and this is not very generous of me, I know. This time around though I will donate and I'm hoping any one who reads this drawn out post does the same so devs are rewarded financially for sacrificing their time, intelligence and tools. Amen, I said it!
10-27-2011
01:34 PM
I don't understand this need to get people excited for (pretty much) nothing, seriously.
Yeah, we can get the keys and that's great but the fact that the master key can't be obtained yet (and as far as I get it, that's the "important one") just slipped by somewhere in these 25 pages.
So basically, we're right where we were 2 days ago. Yes, this MIGHT allow a new CFW tomorrow but it also doesn't do anything without the master key and it just MIGHT end up forgotten like all the sensational announcements in the past (anybody remember No_One?). So can somebody please explain to me, for the love of god and everything that is pure and holy - what's the point with this? I understand any progress is great and I agree with that but why announce it like it's the best thing in the world since the invention of electricity and then give everybody a cold shower saying "well we still don't know how to get this other key and without it we can't do anything"? Thank you.
10-27-2011
01:36 PM
10-27-2011
01:39 PM
the point is there are tools on a wiki page and instructions ment for people to go play with. who knows maybe if you start to play with it you might figure out something uselful
10-27-2011
01:40 PM
Is the dispmgr_access.sh the same as having ss patchs enabled?still trying to learn.
10-27-2011
01:42 PM
some people fail to realise that others can pick up on these things and carry on the work.
without details such as this being released, the scene would be in the dark ages.
one dev can work hard for months to get a job done and keep the details to himself, slowing things down or many devs can share their findings and work together to a common goal
ignorance is bliss is a false saying. more like ignorance is a *****
10-27-2011
01:48 PM
10-27-2011
01:54 PM
So you see what happened here. Instead of all those heavy promises from above, somebody should have ACTUALLY LOOKED INTO WHAT NEEDS TO BE LOOKED INTO and then started talking about "fully unlocked PS3" and "CFW on any firmware". That's all I'm saying. I don't mind the news, I don't mind the information being shared, I don't mind encouraging people to go play with it, that's all cool. What I mind is talking about it like it's all finished and promising things that are not any less distant and unrealistic than they were yesterday.
10-27-2011
02:00 PM
can any one find a solder less progskeet for slim model ps3 Tutorial.
im getting one and i need to know how to install it.
GOTTA GET IN THIS ACTION SO THAT I CAN GET THE KEYS TO MY PS3.!!!!!!
10-27-2011
02:44 PM
well my ps3 3.70 is this good for me
10-27-2011
03:16 PM
10-27-2011
03:18 PM
so if i get this if we get the key0 we don't need a ps3 to get the key.
We can decrypt the .pup with software take the keys and just add to cfw then we can just add the new things sony add to ofw via a pkg
10-27-2011
03:47 PM
Hey, this is just Great. Really want new Firmware! Or some way to play the new games. So I fanaly get upgrade my HD with a 1000GB one and Redownloaded all my bought stuff after that on PSN than CFW 3.70+ and done
10-27-2011
04:03 PM
[MENTION=1134]ps3hax[/MENTION] staff..
Why is this being reported the way it is..
Yes it is news.. (news from August), but it like a buying a book that has half the pages missing.. Its incomplete..this wont do anything for us at this point..
This post was directed to the Newbs and fired up the scene for no reason..
I dont mind the news.. But the WAY it was REPORTED was wrong !!!!
(reason why we have over 250 post in this thread asking about CFW..)
The claims that ps3hax made on the initial news post was absolutely off base..
You guys did update it a bit... but there are still some misleading facts up there...
By telling people this will replace JB2 and not to buy JB2 you ARE IMPLYING this is right around the corner when in fact it is the same as it was in August from what i understand.. and will could be a long way off...
It is no where close to that...
Wrong.. its nothing at this point...
JB2 confirmed working..
This is incomplete..
Sort of like JFW.. this may have some light at end of the tunnel. but IT JUTS SPECULATION at this point..
This is for DEVS.. yet you are directing it to the Newbs..
Again i dont mind the news. like the news.. It just how it was reported..
And to think you guys have rules about asking for keys higher FW ect... yet you EXCITED ALL THAT TALK.... with this news post and even updated it a bit to cover youselves.. yet it still has incorrect info...
I COULD BE VERY WRONG HERE... but you have to wonder was the a stunt to gain some traffic... because still it isn't posted right... and yet it excites...
Its sad when psx-scene posted it right...
10-27-2011
04:07 PM
10-27-2011
04:11 PM
But you have to agree even if you dont agree with the (traffic comment)//
Its doing more harm then good this story..
the news is good but IS VERY MISLEADING and it is still misleading thats why i say the above.. again i could be wrong.. but one has to wonder.
Not *****ing about the news.. Just *****ing in the way it was reported..
Remenber when it was posted orginally there was no update that it has now.. and even with the update it is misleading.
you have to agree that psx-scene posted it for what it was.. Yes you guys were first and they got the story from you guys most likely but they posted for what it WAS...
also to note when running a site, you are suppose to report the facts.. The facts werent really reported here.. More speculation then anything.. and it wasnt delivered in that manner..
Thats the issue..
10-27-2011
04:24 PM
Perhaps you need to educate yourself to what this actually is, here is what [MENTION=185644]Warning[/MENTION] stated on psx-scene
Im fed up with fighting and arguing with people that keep saying that this is pointless, that this is trash etc, if you don't like the news, then why read it....
10-27-2011
04:26 PM
Its not derailing the thread its putting the info in the thread in PERSPECTIVE...
Everything i have said was directly from what was posted.. (not derailing anything)
didnt say it was trash or pointless... ect... I just said what the front page claims INS'T true at this point
mistakes happen.. but this still reads that way.
JB2 will be reversed before this method is fully exploited..
So the JB2 being useless is way off base...
That what i dont understand and thats why it makes you wonder..
From what i understood it was updated but NO NEW INFO.Just a better explantion.. but thats isnt the point here at all if its old or new..
10-27-2011
04:31 PM
Also this is the biggest news in the last couple months and deserves to be front paged. We are 90% closer to being able to play new games then we where a couple days ago.
10-27-2011
04:32 PM
Hi I am pretty new on the scene but hacked the psp as soon as it was poss. I just don't understand how people can knock the devs as much as they do . If it was me I would say f$&)k it and not develop anything as peeps are really ungrateful . Don't forget these people do it for free and might have jobs aswell . If you don't have anything positive to say don't say anything IMHO.
Cheers daz
10-27-2011
04:36 PM
AGAIN this doesnt matter when it was new or old. (all the info was there in august from what i understood, there was an update but all the info was there already..)
Im just saying the info is wrong posted..
That is the problem'
We can go back and forth to say when it was updated..
but the info put out there is wrong...
Thats the problem
but this wont help new games.. jb2 will help that before this ever would..
JB2 will be reversed before this method will help us..
It was directed to newbs and shouldnt of been, because the info was wrong.
It makes people seem like this around the corner.. Even telling them to hold off on JB2..
10-27-2011
04:38 PM
How the f*ck is it posted wrong, is it wrong because YOU don't understand it ?
10-27-2011
04:45 PM
ppl, instead of trying to break each other down or to break down the dev's and there tools of this thread, why just work together or just ignore the ignorance ppl,
10-27-2011
04:48 PM
Let me explain to you once again..
You are misleading the NEWBS and even some members who dont follow daily..
Then ps3hax goes on to say:
JB2 works. NOW !!!
this method doesnt work, it is incomplete for it to work..
Will that change, we dont know.. We also dont know when..
But by that comment you are IMPLYING (indirectly or directly doesnt matter) that this just around the corner.. There is no truth to that...
Especially put "only a matter of time" with the wait on JB2..
That is implying things are almost done.. when in fact they are a ways off..
That is the issue
I have MUCH respect for the DEVS...
10-27-2011
04:49 PM
10-27-2011
04:51 PM
ANY SMALL progres is better then NO progres
10-27-2011
04:52 PM
jb2 is NOT the only solution and as a scene, free, open source solutions are the way forward.
remember psjailbreak and the way people thought it wouldnt be reversed and it would be our only option to buy it for ££$$ etc. we were told that progress was being made and to hold off buying it.....
whats the difference with this?
10-27-2011
04:54 PM
why is there a argument abut when it was posted?
also who the F cares if it was posted in a way that would generate traffic, this site is ran buy adds & in order to keep it running we need traffic. (not saying it was made this way, but to play devil advocate i had to look at ti from the other side)
now.
the method per say was only a hypotothies in aug, i know i read it. but it wasnt no where near detailed as much as it is now
I do feel like if it was worderd a bit better, we wouldnt have stupid newbs asking for new CFW....
Isnt there a way to make news only being able to be posted on by people who have a certain post count? & or a join date...
this would weed out all the newer people who are only trolling for CF@ for 3.56+
10-27-2011
04:59 PM
10-27-2011
04:59 PM
Why couldnt it just say that..
Look at how the newbs have recieved this..
You have new threads about people excited about a new CFW.. lol..
From this story.................
That is the issue...
It all can be fixed with a proper explanation...
10-27-2011
05:01 PM
I have no intention of buying JB2 or special BD's even though I have a BD-RW that iv never used.
This is one of the best forums online.. If your not happy with the way this post reads go somewhere else
10-27-2011
05:02 PM
at least this has some grounding to its claims
10-27-2011
05:05 PM
Newbs will always be what they are. They will not stop asking. I mean look at that banner at the top of the page that tells people the status of the scene. Do noobs pay any attention to it? No.
10-27-2011
05:06 PM
but its being told to them now....
Instead of saying this will lead to it..
By saying NOT to buy JB2 that is saying this is around the corner soon..
Can anyone say that with confidence?
When you tell people to WAIT.. that is implying that things are right around the corner.
Maybe true in a weeks or months... but we dont know that..
We dont know enough to say dont buy JB2...
10-27-2011
05:08 PM
10-27-2011
05:10 PM
yep, the newbs got that right a new cfw, but i agree it's to early but still.
As i said before
ANY small progress is better then NO progress
10-27-2011
05:13 PM
Bottom line this news is useless to 99.8% of us.. Will take alot of hard work. from dedicated devs.
With that said if you want to play your 3.6X games then JB2 will be the best method for the time being.. and i bet for at least a few months if not longer...
Well to not promote something to the NEWBS that doesnt exist at this time..
I dont disagree with reporting this news it is NEWS.... but its not newb news.. thats my issue.
10-27-2011
05:17 PM
10-27-2011
05:20 PM
10-27-2011
05:21 PM
Now i read someplace (sorry not sure) that even the JB2 can be unpatchable because of something with a BD-rom.. now i dont know where i saw that or how true it is...
But yea sony will patch it.. but get your JB2 now then when it patches then maybe we see this method come to light...
Look at this thread comments:
You either have people saying yea new CFW is here..
Or you have them saying JB2 is done......
Neither is the CASE!!!
Now if ps3hax just reported the facts, with no speculation(just report it as speculation).. how many of those type post would be here (yes there would be some no matter what it is) but it Influneced alot of that...
10-27-2011
05:26 PM
did anyone tried to get the per_console_key_1 and per_console_key_n
i am not smart enough to code in linux,i had used it before on mine ps3, but thats way back, i am more of a windows guy, maybe if some of mine friends used linux, i wouldn be in this situation, but i thinkl that there are enough smart ppl out there that can make this all happen
************* [ - Post Merged - ] *************
1. payloader3 create new possible source of or precompiled:
payloader3-341.pkg: http://www.multiupload.com/MB7NE5AJYC
payloader3-315.pkg: http://www.multiupload.com/JKKZG58NOR
2. Install payloader3 pkg on the ps3
3. export in the terminal set
a. export PS3LOAD = tcp: ipaddress.of.ps3
b. start socat (socat tcp-recv: 18194 stdout)
4. payloader3 pkg start on ps3
5. It is quite likely to see is not the picture (black screen) but you will hear a distinct sound (like C64) Now things are different feasible:
a. X 4eck then starts with ps3load ethdebug
b. then you will want to circle back to the xmb and invites ethdebug (for Debuging pkg files)
6. Use your ps3load the mode used to send your ps3 dump_eid_root_key.self (ps3load dump_eid_root_key.self) Now you should see debug Terminal in your debugging and then hopefully you'll find the PCK .. (theoretically)
The per console key is used to derive other keys, some of which Sony can't change as this appears to be the bottom of their encryption chain. It's also important to note that this method is intended for dumping per_console_key_1 and per_console_key_n while per_console_key_0 is currently still required.
10-27-2011
05:28 PM
10-27-2011
05:32 PM
that was very misleading...
what they gathered was..
New cfw coming very soon..
and that JB2 is dead before it got started..
Both are incorrect.. yet they got the info from the news post..
My attitude has been fine, it just been a common sense approach...
10-27-2011
05:35 PM
man this is ridiculous
10-27-2011
05:37 PM
Ok i read ALL the post and im a newb and i didnt get that it was a insta fix more like a in the progress type of thing. And anyone with half a brain would realize sony will do away with the dongle by limiting access to the dev eboots.
The more important thing is the news brought it to my attention so now i have something to have hopes for
10-27-2011
05:39 PM
Right any more crap, there will be collaborations of infractions and if need be banning.
[MENTION=133671]STLcardsWS[/MENTION] the front page is the way it is, its going to stay that way, so quit the crying over it, nothing is going to change.
Everyone else keep it quiet, ignoring the ignorance makes it go away......
10-27-2011
05:50 PM
I smell a new CFW on the way!
10-27-2011
05:57 PM
God damn it guys...
We are REALLY far from new CFW and open PSN.
However we are pretty close to making playable 3.6+ games on 3.55 and custom eboots.
This news is good for people who don't really care about online and just want to play singleplayer games.
10-27-2011
06:01 PM
10-27-2011
06:03 PM
Attention
Stop acting like a complete retard
10-27-2011
06:15 PM
Sigh....I wonder how long!
10-27-2011
06:18 PM
1 year+...or never
10-27-2011
06:30 PM
10-27-2011
09:22 PM
your words = mine as well
i've been following ps3hax since i bought my first ps3 on june, and i never found myself in the need to talk about this... Until these recent news... But I'm glad someone said what i wanted to say since I heard about these news...
10-27-2011
09:32 PM
I asked my Magic 8 Ball if anything good related to 3.60+ is coming, it said...
NO. :D
Accept the fact people, no one is doing anything. Please name on dev who is actually working on something related to 3.60+ and not just talking. I can't seem to find anyone. The scene has not progressed ever since 3.55 came out. I call progression, 3.60. You may call it, "Multiman". I know we will get something good some day, but 8 months and NOTHING?
Glad to have a second PS3.
10-27-2011
09:50 PM
seems like that STL guy is right in what he is saying.
This is from ps3crunch.
I See he had this up and it was removed.
It seems what he said was correct. why was it censored
The guy was told he was wrong then proved he was right.
You get banned for things like that here? seems unfair.
10-27-2011
10:03 PM
[MENTION=7773]GregoryRasputin[/MENTION] STLcardsWS and Swish are the same person, nise try tho,
making another user account and then defending your previous BANNED username, really lame
first comment on this and you just joined e few minuts ago and you read abouth STLcardsWS wish was raging a few pages back, and you are defending a person you don't know, strange indeed, i feel a BAN comming
i't dosnt make sense
And a nise edit tho, AGAIN trying to defend your arse
10-27-2011
10:12 PM
You guys better all get ready ( bc I see a HEX file coming soon. �� ) from the true blue ��
10-27-2011
10:17 PM
That all..
10-27-2011
10:26 PM
right.................
10-27-2011
10:27 PM
And how can you prove it or seen the comment if its censored,
10-27-2011
10:28 PM
Anyone get this yet ?
10-27-2011
10:29 PM
10-27-2011
10:42 PM
Attention
STLcardsWS grow the hell up, seriously, how damn immature do you have to be, to create a new account to argue that your suspended account is right, stop being a little baby and get over the fact that you are wrong, seek professional help for your narcissism and get a life, any more crap like this and i will turn the three week suspension on your STLcardsWS account to a permanent one
10-28-2011
01:18 AM
I don't think this is a step closer to discovering the per-console root key. The EID root key is generated at factory and incorporated into metldr. metldr is encrypted with your per-console root key and stored on flash. Please note that while it is speculated that the EID root key is a derivative of the root key, that does not mean that it can be used to calculate the root key. Infact, being able to do so is idiotically counter-intuitive of the purpose of having two separate keys.
The per-console root key is likely burnt into the CPU via One Time Programming over the JTAG port, of which is disabled after programming. There is a hardware decryption routine that uses this key called Runtime Secure Boot, you cannot access or invoke this routine because it only runs when you load an encrypted image into an isolated SPU.
This is IBM's design, not sony's. This was designed to be a very secure multi-purpose processor and it was designed by a company that designs security and military systems for governments and large organisations, not a company that mostly makes consumer grade TV's and DVD Players. It was Sony's implementation of the secure chain of trust that failed but I don't see IBM's part failing anytime soon.
This paper explains everything: http://www.ibm.com/developerworks/po...-cellsecurity/
10-28-2011
01:28 AM
Sorry to dissappoint but according to a few good sources of mine we are not really closer to new cfw then we were few months ago. yea a lot more new guys try to make stuff happen now...but please dont get your hopes up.
10-28-2011
01:50 AM
I have a question.......
In pretty much every thread i have read it always turns into a fight, i have two kids one aged 3 and one aged 6 and they dont fight near as much as some people i have seen on this scene!!
I must admit tho it is pretty amusing some days!!
oh yea my question is....
WHY?
10-28-2011
02:47 AM
great to see that the last pages of this thread are worthless reading.. *sigh*
maybe you can use them to create a script to a mexican soap opera (no offense to the mexicans)
10-28-2011
03:20 AM
-metldr is decrypted with this key
-bootldr is decrypted with this key
-might be obtained with per_console_root_key_1?
(largely speculative, not nec. true – need more looked into,
only based on the behavior of the other derivatives known to be obtained through AES)
They are close enough to the core metal of the system that they are starting to directly take on IBM's engineering team.
Good stuff. When they are done it should give IBM something to think about...
Sony's USB Jig and Microsofts plain text DVD firmware both addons to IBM technology.
We personally love MariMar in this house... Seriously... rags to riches to revenge and sorrow... what more is there?
10-28-2011
11:46 AM
10-28-2011
02:19 PM
Also a 'hidden hint' at the top of here:
http://ps3devwiki.com/index.php?titl...318&oldid=6316
(you have all you need already ;-) just read carefully (compare option2 code with the kernel module code))
10-28-2011
03:16 PM
10-28-2011
03:26 PM
10-30-2011
05:12 AM
i think we are 100 miles away from a new cfw with no car and on a difficult road :S. no hopes for me yet!
10-30-2011
05:52 AM
I've been visiting the irc chans lately, and AFAIK, and what was told to me, is that there are two ways of getting cfw on the latest ofw:
One of the ways is by finding said key, the per_console_key_0. What we assume
is that per_console_key_1 derives from per_console_key_0, meaning that per_console_key_1 has a source on per_console_key_0, or in other words, the inverse of key_1 is key_0. Now, we don't know that for sure, we also don't know if there are further derivations of per_console_key_1, so it's a guessing game.
The second way, already achieved by one person, perhaps more, is pwning metldr. Many of you don't like the guy who has achieved that, but, truth be told, he has done it, and has inclusively given you hints on how to do it... His name is Mathieulh. If i'm not mistaken, the sum up of those hints is on ps3devwiki as well, under something entitled "Mathieulh Overflow Exploit". I suggest you take a good read at it...
Any corrections to what i've said would be apreciated and taken into account.
And don't forget twitter is a good place to collect info aswell.
10-30-2011
06:29 AM
IMO there should never be a cfw for the current ofw because you know it would only be a matter of time before someone released some sort of cheat software to absolutely ruin online games. If people want online they should really be on ofw.
All we need is some way to sign current and future games for 3.55 but i wish the devs who put their time into this the best of luck.
10-30-2011
06:59 AM
i totally agree that cheats on online sucks hard but in order to play for example 2 online games on ofw you need 100euros.too much for me
10-30-2011
12:35 PM
just some updates from the wiki
Boot Sequence
Power on : syscon boots from it's internal (non-encrypted / dual banked) ROM *1 *2
+ syscon powers up various power subsystems
+ syscon powers up cell and checks status
+ syscon sends Cell configuration ring to Cell
+ syscon pulls the reset of Cell high -> Cell INIT
Cell INIT: CELL boots from it's internal ROM *2
+ Initialises I/O
+ fetches encrypted bootldr off NAND/NOR flash (at address 0xFC0000)
+ Initialises RAM
+ loads bootldr into Isolated SPU (SPE0)
+ Runtime Secure Boot decrypts and verifies bootldr and executes
+ bootldr decrypts lv0 which runs on PPU -> loaders INIT
loaders INIT: lv0 loads metldr (SPE2)
+ passes lv1ldr (which loads lv1) to metldr
+ passes lv2ldr (which loads lv2) to metldr
+ passes appldr (which loads vsh) to metldr
+ passes isoldr (which loads *.iso_spu_module) to metldr
+ passes rvkldr (which loads rvkprg / rvklist) to metldr
1) Read/Writeable with undocumented / should also be read/writeable through serial port and possible to switch it to the backup bank1 with backup_mode pulled high
2) CEX/Retail consoles go to standby with red light. SEX/SHOP/SECH will not standby, but instead boot through without waiting for powerbutton. Also check is done on all models if update is flagged to set it into firmware updating procedure
3) Partialy Read/Writeable
about the disabled SPE: syscon reads it’s internal (non-encrypted) eeprom @ 0x48C30 which is value 0×06 on all CEX/Retail consoles and will set the cell config ring accordingly for 7 SPE’s. SPE0 and SPE2 are reserved for bootldr and metldr for isolation respectively. Setting the value to a nonworking state (e.g. 0×00, 0xFF, enabling a defective SPE or disabling a needed SPE for proper boot) might brick the console, locking you out from restoring the correct value to the syscon eeprom.
Changes in firmware 3.60
Lv0 has now been changed, LV0 now appears to encapsulate all of the loaders (appldr, isoldr, lv1ldr, lv2ldr). Now in order to break the chain of trust we need to be able to decrypt/exploit LV0 which at this time has not been done.
************* [ - Post Merged - ] *************
Also if anyone has paid attention to the gitbrew - glevand has posted tons of documentation.
10-30-2011
01:03 PM
10-30-2011
01:10 PM
No matter the situation, you will not have a CFW that will install on 3.60+, you will still need a hardware flasher.
10-30-2011
01:12 PM
defyboy nice to see you back
and posting mate, thanks for the info 
listen to this guy he knows what he says 
10-30-2011
01:55 PM
But couldn't we exploit the keys and use them on 3.55 - and keep the base of the fw
or am i jus talking rubbish
************* [ - Post Merged - ] *************
************* [ - Post Merged - ] *************
10-30-2011
02:29 PM
I accept that I cannot play online on CFW as a result of online cheaters, but it doesn't mean I like accepting it.
10-30-2011
02:54 PM
10-30-2011
03:01 PM
i re-upped as a jpg?
10-30-2011
03:59 PM
10-30-2011
04:04 PM
http://www.ps3hax.net/showthread.php?t=6359
10-30-2011
04:31 PM
[MENTION=148739]defyboy[/MENTION], i didn't say dump metldr, that has obviously been done by tons of people, i said pwn it, like exploit it, and find some vulnerabilities in it...
Edit: If we manage to get the last key, we'd still need a custom bootldr made and signed by ourselves to actually start enjoying the good stuff. And making a custom bootldr takes quite some time and patience...
11-04-2011
10:54 AM
I really don't want to complain but when I was reading this news a couple weeks ago or so I thought that some new Hax where on it's way. But serious does someone know when we can do something with this big news
11-04-2011
11:31 AM
11-04-2011
01:16 PM
We don't need to do much to bootldr, we only wan't to dump it so we can get the LV0 key, we assume this has the same signature fail.
11-15-2011
07:34 PM
11-15-2011
10:00 PM
if i remember if we get the root key then we can fully decpted 3.56+ ofw then encpted it with 3,55 keys . root key is the mother keys of all which sony cant change only by hardware
11-16-2011
05:35 AM