FSPXI:ImportIntegrityVerificationSeed: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 45: | Line 45: | ||
=Description= | =Description= | ||
This decrypts the input SEED and verifies it with the input AES-CCM MAC, verifies the RSA-signature, then writes the data to [[nand/private/movable.sed]]. | This decrypts the input SEED and verifies it with the input AES-CCM MAC, verifies the RSA-signature, then writes the data to [[nand/private/movable.sed]]. The nonce used for the AES-CCM MAC seems to be all-zero. | ||
Revision as of 21:43, 22 August 2012
Request
| Index Word | Description |
|---|---|
| 0 | Header code [0x00460002] |
| 1 | Always 0x00013004, for 0x130 size: (size<<8) | 4 |
| 2 | Input IntegrityVerificationSeed pointer |
Response
| Index Word | Description |
|---|---|
| 0 | Header code |
| 1 | Result code |
IntegrityVerificationSeed
| Offset | Size | Description |
|---|---|---|
| 0x0 | 0x10 | AES-CCM MAC over a SHA256 hash, which hashes the first 0x110-bytes of the cleartext SEED. |
| 0x10 | 0x120 | The nand/private/movable.sed, encrypted with AES-CTR using the above MAC for the counter. |
Description
This decrypts the input SEED and verifies it with the input AES-CCM MAC, verifies the RSA-signature, then writes the data to nand/private/movable.sed. The nonce used for the AES-CCM MAC seems to be all-zero.