[JustThatDude]

Originally Posted by r07f1 offtopic... one thing i never understood was jfw 356... i mean how did they manage to defeat the chain of trust without a propper way to resign stuff? Ontopic: this seems kind of the chicken vs egg problem... i mean for us to be able to inject code in lv0.self one must initially decrypt it right?

They had the keys for 3.56

[r07f1]

@JustThatDude yes i know but only the decryption ones since the fail was fixed...

My point is that they also must have the lv0 keys (not shared with the peeps) how else would they be able to patch the chain of trust with their custom keysets?

After reading the pastie more carefully it would seem this was the used method in jfw...

[cfwprpht]

You ever heard the word "EXPLOID" ??

Damn god, every one is so fixed on lv0 -.-

Peoples or user think there can't be a other way to obtain keys then decrypting lv0.

Open your mind.

[r07f1]

@cfwprpht i'm sorry... my area is more Software Engeneering than Computer Science however this pastie specifically talks about lv0.self with metadata sploit... care to explain for us noobz?

[JustThatDude]

Originally Posted by r07f1 @JustThatDude yes i know but only the decryption ones since the fail was fixed... My point is that they also must have the lv0 keys (not shared with the peeps) how else would they be able to patch the chain of trust with their custom keysets? After reading the pastie more carefully it would seem this was the used method in jfw...

They got the public keys then decrypted it then resigned with 3.55 private keys. They don't need to exploit lv0 either they could have found another way. Just like those 3.60 keys that were released they were only public keys. The way they found the keys on 3.56 could be the same they found 3.60 keys

[JustThatDude]

Originally Posted by r07f1 @cfwprpht i'm sorry... my area is more Software Engeneering than Computer Science however this pastie specifically talks about lv0.self with metadata sploit... care to explain for us noobz?

Okay then they possibly found a way to exploit lv0 simple as that

[r07f1]

I'm talking about the chain of trust...

An untouched 356 lv0 would not be able to decrypt anything signed with 355 keys...

[cfwprpht]

Originally Posted by r07f1 @cfwprpht i'm sorry... my area is more Software Engeneering than Computer Science however this pastie specifically talks about lv0.self with metadata sploit... care to explain for us noobz?

Dude i never learned one single bit of code in a scool. Im a learned cook but i also found some thing's which it seems other's havn't thought on it or just havn't interest's to find something.

That i meant with open your mind.

But anyway, if i would tell you that i can run a liblv2 of a 4.21 OFW on a 3.55 CFW would you belive it ??

The same like for my alpha sort hack. Some peoples claimed that i don't have this hack and that im a noob and i can't code.

Well....to the topic:

To your last post, lv0 DO NOT decrypt everything dude. Or what you think for what appldr is there ? Or what you think how rogero could add 3.60 keys to a 3.55 CFW without having the lv0 static key's ??

No offence but you miss some aknowledge about the whole sys and im not here to teach other's. There for we have a wiki or a lot of post's in other thread's.

Again no offence.

[r07f1]

@cfwprpht not probz i am a little stoned but after i looked with atention to the 355 boot order i recognize my mistake sorry about that...

of course i would... i have no reason to call you a phony mate

Peace!

Anyway i will STFU now...

[master737373]

Yeah, um, this isn't the ony way to get bootldr. And you don't need lv0 to make a 3.56+ firmware with 3.55 keys either.