Anyone know what the ffs and es plugins are for?
I don't see a need to hack the e-ticket services any further, we can already install anything we want. Instead, I think the es plugin is the fix for new LU64 wiis. They likely search for the bugged code pattern when loading/running an ios, and refuse to continue if it has been found. So waninkoko likely erased/overwrote the old function and added a new function for installation of content like this:
check_signature(data) {
return true;
}
So anything will always pass the signature, whether or not it was fakesigned. I'm not sure if it wasn't already hacked in this way in previous cioses. It could also be that the protection was a little more complicated, such as a whitelist where the processor only checks that the ios has a working signature checking function. Maybe someone with closer to the actual development can shine some light on it.
I don't see a need to hack the e-ticket services any further, we can already install anything we want. Instead, I think the es plugin is the fix for new LU64 wiis. They likely search for the bugged code pattern when loading/running an ios, and refuse to continue if it has been found. So waninkoko likely erased/overwrote the old function and added a new function for installation of content like this:
check_signature(data) {
return true;
}
So anything will always pass the signature, whether or not it was fakesigned. I'm not sure if it wasn't already hacked in this way in previous cioses. It could also be that the protection was a little more complicated, such as a whitelist where the processor only checks that the ios has a working signature checking function. Maybe someone with closer to the actual development can shine some light on it.