Editing User talk:Masterzorag
Jump to navigation
Jump to search
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 189: | Line 189: | ||
We got info0 + info1, 64bytes each | We got info0 + info1, 64bytes each | ||
content is 2845bytes, total is data | content is 2845bytes, total is data lenght 2973 | ||
info0, info1 are not encrypted | info0, info1 are not encrypted | ||
</pre> | </pre> | ||
Line 362: | Line 362: | ||
=questions= | =questions= | ||
why you collect these hashes and signatures?<br /> | why you collect these hashes and signatures?<br /> | ||
Now if 2 digests are different then R signatures would be diffenet too. Pseudo Random number (that used to creating signature) now is F(digest);<br /> | Now if 2 digests are different then R signatures would be diffenet too. Pseudo Random number (that used to creating signature) now is F(digest);<br /> | ||
Line 369: | Line 368: | ||
<br /> | <br /> | ||
_Reply_<br /> | |||
ECDSA signature is the (r, s) keypair:<br /> | ECDSA signature is the (r, s) keypair:<br /> | ||
http://en.wikipedia.org/wiki/Elliptic_Curve_Digital_Signature_Algorithm#Signature_generation_algorithm | http://en.wikipedia.org/wiki/Elliptic_Curve_Digital_Signature_Algorithm#Signature_generation_algorithm | ||
Line 394: | Line 393: | ||
*those two needs investigation | *those two needs investigation | ||
1. For every digest, we have 1 and only 1 signature (R,S).<br /> | |||
Sorry , but don't think so, because as you can have read, r comes from a random number. (I'll check)<br /> | |||
2. Pseudo Random number (that used to creating signature) now is F(digest);<br /> | |||
They can't be so idiots, since digest is ever known...<br /> | |||
_EndOfReply_<br /><br /> | |||
*So I will show for you that R = Function(digest) and what this fail is not so critical. | |||
So I will show for you that R = Function(digest) and what this fail is not so critical. | |||
I was interested for edat algorithm and figured out how edats (and sdat) files are signed.<br /> | I was interested for edat algorithm and figured out how edats (and sdat) files are signed.<br /> | ||
It contains 2 non-randomfailed ecdsa signatures. http://www.psdevwiki.com/ps3/EDAT_files#Structure_.28Encrypted_Format.29<br /> | It contains 2 non-randomfailed ecdsa signatures. http://www.psdevwiki.com/ps3/EDAT_files#Structure_.28Encrypted_Format.29<br /> | ||
Line 416: | Line 408: | ||
So if digests are same then pseudo_random_numbers are same and signatures are same.<br /> | So if digests are same then pseudo_random_numbers are same and signatures are same.<br /> | ||
Please make your conclusions.<br /> | Please make your conclusions.<br /> | ||
<br /> | <br /> | ||
= | _Reply_<br /> | ||
[[File:EDATs diff.png|thumbnail]] | |||
You have already seen differences between two files, but maybe some other not. Here a png.<br /> | |||
First of all, that wiki page have a lot of "?", so something can be (really) different from what I've read.<br /> | |||
Page is telling me that at 0xB0 there is an ECDSA signature, and you are pointing out that we have the same (ECDSA) signature on two different files !?!<br /> | |||
1. I see your "same signature", but how do you get "metadata digest = DA39A3EE5E6B4B0D3255BFEF95601890AFD80709" from both?<br /> | |||
2. Conclusion to me are that at 0xB0 there is not an ECDSA signature, so: have you checked? Have you validated? Have you proven that r, s is the valid signature for the digest?<br /> | |||
3. There is also another aspect to not forget: alignment (%16 = 0), so there is an ECDSA signature in 40 bytes? does not sound good to me...<br /> | |||
4. SHA-1 produces a fixed lenght of 20 bytes: at wiki page I read "''0x40 QA digest, size 0x10 (seems like to be a SHA-1 hash of the non-finalized file) ... Can be ... zeroed on forged file.''" !?!<br /> | |||
5. There are two ECDSA signatures on an EDAT file and only one to protect CORE_OS_PACKAGE.pkg from alteration !?!?!<br /> | |||
_EndOfReply_<br /><br /> | |||
_Reply for reply_<br /> | |||
1. metadata length = 0 bytes for both files, so digest for empty message is DA39A3EE5E6B4B0D3255BFEF95601890AFD80709. | |||
2. r,s validated and valid of course. so you can use make_npdata the newest version for validate signatures into edats. there are no mistakes, it is realy ecdsa sig. | |||
3. Both signatures has 40 bytes, first 20 bytes is R , second 20 bytes is S. | |||
irc: #ps3hax, #playstationhax |