Cryptosystem: Difference between revisions

Line 154:

master_key /* slot12 */ = aes_unwrap(bct->pubkey[0] == 0x11 ? simpleseed_dev0 : simpleseed_dev1, aes_unwrap(5ff9c2d9.., sbk))

per_console_key /* slot13 */ = aes_unwrap(4f025f0e..., aes_unwrap(6e4a9592.., ssk))

[4.0.0+] Above method was removed.

Normal key generation looks like this on 1.0.0/2.0.0:

Line 198:

Line 200:

// Final keys:

~~hmm~~

package1_key /* slot11 */ = keyblob[0x80:0x90]

master_key /* slot12 */ = aes_unwrap(normalseed_retail, keyblob+0x20)

new_master_key /* slot14 */ = aes_unwrap(2dc1f48d.., keyblob+0x20)

new_per_console_key /* slot13 */ = aes_unwrap(0c9109db.., old_keyblob_key)

per_console_key /* slot15 */ = aes_unwrap(4f025f0e.., old_keyblob_key)

SBK and SSK keyslots are cleared after keys have been generated.

Line 215:

Line 221:

==== Seeds ====

normalseed_retail = d8a2410a...

[1.0.0] wrapped_keyblob_key = df206f59...

[1.0.0] simpleseed_dev0 = aff11423...

[1.0.0] simpleseed_dev1 = 5e177ee1...

[1.0.0] normalseed_dev = 0542a0fd...

~~[1.0.0] normalseed_retail = d8a2410a...~~

[3.0.0] wrapped_keyblob_key = 0c25615d...

Line 225:

Line 232:

[3.0.0] simpleseed_dev1 = 2db7c0a1...

[3.0.0] normalseed_dev = 678c5a03...

~~[3.0.0] normalseed_retail = d8a2410a...~~

[3.0.1] wrapped_keyblob_key = 337685ee...

Line 231:

Line 237:

[3.0.1] simpleseed_dev1 = 84d92e0d...

[3.0.1] normalseed_dev = cd88155b...

~~[3.0.1] normalseed_retail = d8a2410a...~~

[4.0.0] wrapped_keyblob_key = 2d1f4880...

@@ Line 154: / Line 154: @@
    master_key      /* slot12 */ = aes_unwrap(bct->pubkey[0] == 0x11 ? simpleseed_dev0 : simpleseed_dev1, aes_unwrap(5ff9c2d9.., sbk))
    per_console_key /* slot13 */ = aes_unwrap(4f025f0e..., aes_unwrap(6e4a9592.., ssk))
+[4.0.0+] Above method was removed.
 Normal key generation looks like this on 1.0.0/2.0.0:
@@ Line 198: / Line 200: @@
    // Final keys:
-   hmm
+   package1_key        /* slot11 */ = keyblob[0x80:0x90]
+  master_key          /* slot12 */ = aes_unwrap(normalseed_retail, keyblob+0x20)
+  new_master_key      /* slot14 */ = aes_unwrap(2dc1f48d.., keyblob+0x20)
+  new_per_console_key /* slot13 */ = aes_unwrap(0c9109db.., old_keyblob_key)
+  per_console_key     /* slot15 */ = aes_unwrap(4f025f0e.., old_keyblob_key)
 SBK and SSK keyslots are cleared after keys have been generated.
@@ Line 215: / Line 221: @@
 ==== Seeds ====
+  normalseed_retail = d8a2410a...
    [1.0.0] wrapped_keyblob_key = df206f59...
    [1.0.0] simpleseed_dev0   = aff11423...
    [1.0.0] simpleseed_dev1   = 5e177ee1...
    [1.0.0] normalseed_dev    = 0542a0fd...
-  [1.0.0] normalseed_retail = d8a2410a...
    [3.0.0] wrapped_keyblob_key = 0c25615d...
@@ Line 225: / Line 232: @@
    [3.0.0] simpleseed_dev1   = 2db7c0a1...
    [3.0.0] normalseed_dev    = 678c5a03...
-  [3.0.0] normalseed_retail = d8a2410a...
    [3.0.1] wrapped_keyblob_key = 337685ee...
@@ Line 231: / Line 237: @@
    [3.0.1] simpleseed_dev1   = 84d92e0d...
    [3.0.1] normalseed_dev    = cd88155b...
-  [3.0.1] normalseed_retail = d8a2410a...
    [4.0.0] wrapped_keyblob_key = 2d1f4880...