Theory/Discussion for 3.50 JB
Thought I'd start a thread to throw around some ideas on restoring the JB back into 3.42/3.50 (possibly even 3.55).
This is ALL pure speculation and ALL theoretical. I am not a dev.
When Geo had his (rumoured) 3.2100 firmware, it was stated that he extracted the 3.21 pup and replaced some of the files with those from 3.15 (unedited therefore still signed) and installed it. This gave him the option of OtherOS in 3.21
With the work Graf has been doing with all his decrypting, would it be possible to unpack from 3.42 and replace with files from 3.41?
This can be installed without having to open up your PS3, just by restoring a custom generated PUP file, but only from 3.15 or previous. It's possible this CFW will also work on the slim to actually *enable* OtherOS
Now we have service mode available, we have a reasonably 'safe' playground for testing.
The exploit was closed via software so by comparing the files contained in 3.41 & 3.42 (and higher) we could see what was changed and/or how it was blocked etc.
I know we would have to use the original exploit or Graf's decryption payload on 3.41 & 3.42 pups to get the files before we could start looking at them.
The only issue is at what point would the signature break?
As long as you didn't edit the original files, would the signature still be intact?
If the signature does not break, then Geo's method *could* work to JB higher than 3.41 by installing/restoring this modified pup.
Please remember that I am not a dev and this is only an idea.
I fully admit to knowing nothing of how the security works and also how the encryption/decryption routines work.
So, if any of the resident devs would like to discuss whether this would be feasible or not, go ahead and jump in!
Please let's keep it to a technical discussion on this theory and also share any theories you may have yourself.
Jailbreak 3.50in Factory mode, is possible ?
Anyone tried to access factory mode and then use the jailbreak dongle to play games etc on 3.50 ?