Blog from graf_chokolo:
You know guys, you will say iím totally crazy now, but i never slept better
than in the last 2 days I donít know how to explain this feeling but
i donít care about those threats with jail and high money penalties, btw, SONY wants about 750.000 euros from me if i donít cooperate They donít know me at all I donít care about it and they might double it The higher is the sum the higher gets my motivation They donít understand what makes me tick. Money and even my life doesnít mean to me very much without knowledge. I have a scientific mind and the knowledge is food to my brain. Without HV, Linux and FreeBSD kernel hacking my life is meaningless.
I miss my HV terribly In the last 2 days i got so ďhungryĒ
for more knowledge that i cannot control it anymore. I need knowledge and research, it has a huge meaning in my life. Jail or even death cannot hold it back anymore.
The SONYís laywer asked me why iím doing what iím doing, because of my hatred for SONY ? He cannot understand why iím doing it, because he is paid for what he does. Iím not. I donít hold a grudge against SONY even now Hatred clouds your mind, keeps you from more important things. I have a better use for my mind and knowledge
So, SONY you failed again, you took my equipment but my mind is still free and you canot control it. You failed again. They are just tools, i can get new ones and will continue my HV reversing and bringing back PS3 Linux which you took from us. If you want me to stop then you should just kill me because i cannot live without programming, HV and Linux kernel hacking You know who am i and where i live, so come and get me !!!
And to prove it, i will reopen right now my HV reverse engineering page And i will post my latest findings about Update Manager and BD drive here. Most of you know already that i was able to update CORE OS from Linux. And on the last weekend i tries to hel some PS3 devs with BD drive authentication and discovered some interesting stuff about it which i will post here.
And please guys, could someone post here a link to the latest version of my cloned Linux kernel. I need it. The last week i implemnted a updater for Linux and it was finished but the police got first before i could upload it. But do not fear, i have everything in my head I can write it down again and show you how it works.
The most importnat HV process is 6. It contains Update Manager and Storage Manager e.g.
Update manager flashes e.g. new CORE OS, BD firmware or SYSCON firmware. Storage Manager sets ATA keys, authenticates HDD and BD drives.
I looked at VSH closer in the last week. And found out that VSH uses the following Storage Manager services: 0◊5004 Ė to authenticate PS3 discs, 0◊5007 Ė to authenticate PS3 discs.
Bothe these services can be used by GameOS through VUART 10 and Dispatcher Manager (is also in a HV process), I already implemented a driver for VUART 10 and DM on Linux and uploaded it, so guys who has my latest Linux version could use it on Linux :-) And get access to PS3 discs and PS2 discs but i didnít have time to test it.
Both these services accept one parameter: 32 bit integer.
Look at the funtion stor_mgr_packetid_0x5004 in my IDA database for HV 3.15. Everything is still the same on 3.41 and 3.55, so my HV 3.15 bible is the key to HV 3.41 and 3.55. They changed almost nothing in new HV versions :-) And look also at function stor_mgr_packetid_0x5007. I could write down a simple Linux program which uses my DM driver to communicate with Storage Manager and show you how it works :-) Itís very easy. I will upload it maybe next week.
To authenticate PS2 discs, VSH uses parameter 0◊52 and service 0◊5004. To authenticate PS3 discs, VSH uses parameter 0◊53 and service 0◊5007. But i didnít test it on my own unfortunately.
PS3′s BD support different profiles for different media, e.g. for PS3 discs, for DVD, for PS2 discs. And storage manager can tell BD drive which profile it should use.
All the communication between Storage Manager and BD drive goes through ATAPI/SCSI interface.
To read the current profile of BD drive, the Storage Manager uses
the storage device command 0◊11, look at storage_device_RBD_do_device_command in my HV 3.15 IDA database (lv1_storage_Send_device_command) and ATAPI_GetConfiguration. But
HV procs do not use HV calls, they use HV syscall, and Storage Manager sends ATAPI commands to BD drive through device file /dev/rbd0.
With lv1_storage_Send_device_command(0◊11) you could read the current BD profile.
Also very interesting ATAPI commands used by Storage Manager are Report Key/Send Key commands. Look at functions HW_report_key and HW_send_key in my HV proc 6 IDA database. HW_report_key function is e.g. used by Storage Manager to read BD drive policy. Storage Manager checks the policy of BD drive.
Storage Manager uses sv_iso_spu_module.self isolated module to authenticate BD drive. sv_iso_spu_module.self gives Storage Manager data which is sent to BD drive and back.
Source PS3crunch.com via grafchokolo.com