Difference between revisions of "FSPXI:ImportIntegrityVerificationSeed"

From 3dbrew
Jump to navigation Jump to search
Line 45: Line 45:
  
 
=Description=
 
=Description=
This decrypts the input SEED and verifies it with the input AES-CCM MAC, verifies the RSA-signature, then writes the data to [[nand/private/movable.sed]].
+
This decrypts the input SEED and verifies it with the input AES-CCM MAC, verifies the RSA-signature, then writes the data to [[nand/private/movable.sed]]. The nonce used for the AES-CCM MAC seems to be all-zero.

Revision as of 21:43, 22 August 2012

Request

Index Word Description
0 Header code [0x00460002]
1 Always 0x00013004, for 0x130 size: (size<<8) | 4
2 Input IntegrityVerificationSeed pointer

Response

Index Word Description
0 Header code
1 Result code

IntegrityVerificationSeed

Offset Size Description
0x0 0x10 AES-CCM MAC over a SHA256 hash, which hashes the first 0x110-bytes of the cleartext SEED.
0x10 0x120 The nand/private/movable.sed, encrypted with AES-CTR using the above MAC for the counter.

Description

This decrypts the input SEED and verifies it with the input AES-CCM MAC, verifies the RSA-signature, then writes the data to nand/private/movable.sed. The nonce used for the AES-CCM MAC seems to be all-zero.