Activation File: Difference between revisions
(Notes on file handling) |
|||
(10 intermediate revisions by 3 users not shown) | |||
Line 7: | Line 7: | ||
=== File Verification === | === File Verification === | ||
A HMACSHA256 of the entire act.dat file using the SHA256 of the OpenPsId as the key is stored in Vtrm using SceShellCore's | A HMACSHA256 of the entire act.dat file using the SHA256 of the OpenPsId as the key is stored in Vtrm using SceShellCore's authority-id (0x3800000000000010) in slot 0. | ||
<code>hmacsha256(sha256(sceKernelGetOpenPsIdForSystem()), act.dat)</code> (pseudo-code) | <code>hmacsha256(sha256(sceKernelGetOpenPsIdForSystem()), act.dat)</code> (pseudo-code) | ||
Line 21: | Line 19: | ||
This prevents easily adding or replacing the act.dat file directly. You will need to update this HMAC to prevent the act.dat file from being deleted when adding or replacing it. | This prevents easily adding or replacing the act.dat file directly. You will need to update this HMAC to prevent the act.dat file from being deleted when adding or replacing it. | ||
== File | == File == | ||
An act.dat file is made up of 1 to 21 sequential activation structures. | An act.dat file is made up of 1 to 21 sequential activation structures. | ||
Line 27: | Line 25: | ||
The file is truncated to valid activation structures, so its size will be a multiple of 512. | The file is truncated to valid activation structures, so its size will be a multiple of 512. | ||
=== Activation | === Activation structure (Universal) === | ||
Fields are big-endian. | Fields are big-endian. | ||
Line 40: | Line 38: | ||
| Signature || <code>0x000</code> || 4 || <code>41 43 54 00</code> ('ACT\0') | | Signature || <code>0x000</code> || 4 || <code>41 43 54 00</code> ('ACT\0') | ||
|- | |- | ||
| Version || <code>0x004</code> || 2 || <code> | | Version || <code>0x004</code> || 2 || <code>00 01</code> || 1 , 2 or 3 | ||
|- | |- | ||
| Type || <code>0x006</code> || 2 || <code> | | Type || <code>0x006</code> || 2 || <code>00 02</code> || 2 or 3 | ||
|- | |- | ||
| PSN Account ID || <code>0x008</code> || 8 || <code>AB CD EF 01 02 34 78 91</code> || | | PSN Account ID || <code>0x008</code> || 8 || <code>AB CD EF 01 02 34 78 91</code> || | ||
Line 52: | Line 50: | ||
| Unknown || <code>0x020</code> || 64 || - || | | Unknown || <code>0x020</code> || 64 || - || | ||
|- | |- | ||
| OpenPsId SHA256 Hash || <code>0x060</code> || 32 || - || <code>sha256(sceKernelGetOpenPsIdForSystem())</code> (pseudo-code) | | DeviceId (OpenPsId SHA256 Hash) || <code>0x060</code> || 32 || - || <code>sha256(sceKernelGetOpenPsIdForSystem())</code> (pseudo-code) | ||
|- | |- | ||
| Unknown || <code>0x080</code> || 32 || - || Found to match exactly for different users and consoles. Maybe system version SHA256 hash? | | Unknown || <code>0x080</code> || 32 || - || Found to match exactly for different users and consoles. Maybe system version SHA256 hash? | ||
|- | |- | ||
| | | RIF Secret Encryption IV || <code>0x0A0</code> || 16 || - || See [[Rights Information Files#RIF|rif]] | ||
|- | |||
| RIF Secret Encryption Key Seed || <code>0x0B0</code> || 16 || - || Used to decrypt [[Rights Information Files#Secret|rif secret]] (KDS RIF only) | |||
|- | |||
| RIF Secret Encryption Key Seed for Version 2 || <code>0x0C0</code> || 16 || - || Used to decrypt [[Rights Information Files#Secret|rif secret]] (KDS RIF only) (Version 2) | |||
|- | |- | ||
| | | RIF Secret Encryption Key Seed for Version 3 || <code>0x0D0</code> || 16 || - || Used to decrypt [[Rights Information Files#Secret|rif secret]] (KDS RIF only) (Version 3) | ||
|- | |- | ||
| Unknown || <code> | | Unknown || <code>0x0E0</code> || 32 || - || | ||
|- | |- | ||
| RSA Signature || <code>0x100</code> || 256 || - || Verified using same public key as RIF type 0 | | RSA Signature || <code>0x100</code> || 256 || - || Verified using same public key as RIF type 0 |
Latest revision as of 16:39, 23 April 2023
File Handling[edit | edit source]
On 1.76, act.dat is loaded and updated by the SceShellCore process.
Beyond 1.76, act.dat is loaded and updated directly by the kernel.
File Verification[edit | edit source]
A HMACSHA256 of the entire act.dat file using the SHA256 of the OpenPsId as the key is stored in Vtrm using SceShellCore's authority-id (0x3800000000000010) in slot 0.
hmacsha256(sha256(sceKernelGetOpenPsIdForSystem()), act.dat)
(pseudo-code)
sceSblVtrmStoreNth(0x3800000000000010, hmac, 64, 0)
sceSblVtrmRetrieveNth(0x3800000000000010, hmac, 64, 0)
sceSblVtrmFreeNth(0x3800000000000010, 0)
Note: sceSblVtrm* are kernel functions.
This prevents easily adding or replacing the act.dat file directly. You will need to update this HMAC to prevent the act.dat file from being deleted when adding or replacing it.
File[edit | edit source]
An act.dat file is made up of 1 to 21 sequential activation structures.
The file is truncated to valid activation structures, so its size will be a multiple of 512.
Activation structure (Universal)[edit | edit source]
Fields are big-endian.
Name | Offset | Size | Example | Remark |
---|---|---|---|---|
Signature | 0x000 |
4 | 41 43 54 00 ('ACT\0')
| |
Version | 0x004 |
2 | 00 01 |
1 , 2 or 3 |
Type | 0x006 |
2 | 00 02 |
2 or 3 |
PSN Account ID | 0x008 |
8 | AB CD EF 01 02 34 78 91 |
|
Start Timestamp | 0x010 |
8 | 00 00 00 00 52 85 64 00 |
Start timestamp (unix/epoch) |
End Timestamp | 0x018 |
8 | 7F FF FF FF FF FF FF FF |
End timestamp (unix/epoch), typically INT64_MAX |
Unknown | 0x020 |
64 | - | |
DeviceId (OpenPsId SHA256 Hash) | 0x060 |
32 | - | sha256(sceKernelGetOpenPsIdForSystem()) (pseudo-code)
|
Unknown | 0x080 |
32 | - | Found to match exactly for different users and consoles. Maybe system version SHA256 hash? |
RIF Secret Encryption IV | 0x0A0 |
16 | - | See rif |
RIF Secret Encryption Key Seed | 0x0B0 |
16 | - | Used to decrypt rif secret (KDS RIF only) |
RIF Secret Encryption Key Seed for Version 2 | 0x0C0 |
16 | - | Used to decrypt rif secret (KDS RIF only) (Version 2) |
RIF Secret Encryption Key Seed for Version 3 | 0x0D0 |
16 | - | Used to decrypt rif secret (KDS RIF only) (Version 3) |
Unknown | 0x0E0 |
32 | - | |
RSA Signature | 0x100 |
256 | - | Verified using same public key as RIF type 0 |