VitaUpdateBlocker v1.2.3 for Windows/Debian/Ubuntu

[carloswkl]

It's currently not working because sony updated the method they use to communicate with the psvita, hopefully there not using a SSL cert, better yet knowing sony it might be plain text.

Yup, afraid so. I'm going deep into it now. Some helps might be great!

Updated Info:
It doesn't seem to have any SSL connection in my early findings, but somehow i ended-up at:
* NP0001-NPXS10002_00-VTSTORELIVEAREA0 PKG file, which contains (based on Yifan's file list):

Code: Select all

vs0:app/NPXS10002/eboot.bin
vs0:app/NPXS10002/sce_sys/icon0.png
vs0:app/NPXS10002/sce_sys/livearea/contents/bg0.png
vs0:app/NPXS10002/sce_sys/livearea/contents/bg1.png
vs0:app/NPXS10002/sce_sys/livearea/contents/default_gate.png
vs0:app/NPXS10002/sce_sys/livearea/contents/template.xml
vs0:app/NPXS10002/sce_sys/param.sfo
vs0:app/NPXS10002/sce_sys/pic0.png
vs0:app/NPXS10002/store_browser_plugin.rco

* version_launch.dat
* list_launch_vita.dat
* list_launch_emu.dat
I believe the PKG is the PSN store itself, and the encrypted DAT files are used to limit/control the PSV. And these files are upgraded to PSV (when launching PSN sign-in / PSN store bubble) since 10th April 2015. If someone able to hold the older version (v3.36 in this case) of the PKG and 3 DAT files on your PSV with VUB --block-traffic parameter or hosting them with your own local web server and DNS server tricks, I believe the PSN store and System Activation will be still working. Yifanlu did mention the PSN store doesn't use the PSV proxy setting, it uses direct connection with SSL encryption (that's why Transparent Proxy environment is very important). I had also confirmed that it is truth during my analysis on sigining-in PSN store, example of SSL/TLSv1 packets:

Code: Select all

  1   10.10.1.58 -> 173.230.217.226 TCP 78 58852 443 [SYN] Seq=0 Win=65535 Len=0 MSS=1460 WS=1 SACK_PERM=1 TSval=0 TSecr=0
  2   173.230.217.226 -> 10.10.1.58 TCP 74 443 58852 [SYN, ACK] Seq=0 Ack=1 Win=4050 Len=0 MSS=1350 TSval=XXXXXXXXXX TSecr=0 SACK_PERM=1
  3   10.10.1.58 -> 173.230.217.226 TCP 66 58852 443 [ACK] Seq=1 Ack=1 Win=65535 Len=0 TSval=1 TSecr=XXXXXXXXXX
  4   10.10.1.58 -> 173.230.217.226 SSL 122 Client Hello
  5   173.230.217.226 -> 10.10.1.58   TLSv1 1404 Server Hello
  6   173.230.217.226 -> 10.10.1.58   TLSv1 925 Certificate
  7   10.10.1.58 -> 173.230.217.226 TCP 66 58852 443 [ACK] Seq=57 Ack=2198 Win=63589 Len=0 TSval=2 TSecr=XXXXXXXXXX
  8   10.10.1.58 -> 173.230.217.226 TLSv1 384 Client Key Exchange, Change Cipher Spec, Encrypted Handshake Message
  9   173.230.217.226 -> 10.10.1.58   TCP 66 443 58852 [ACK] Seq=2198 Ack=375 Win=4424 Len=0 TSval=XXXXXXXXXX TSecr=2
 10   173.230.217.226 -> 10.10.1.58   TLSv1 117 Change Cipher Spec, Encrypted Handshake Message
 11   10.10.1.58 -> 173.230.217.226 TLSv1 1231 Application Data
 12   10.10.1.58 -> 173.230.217.226 TLSv1 319 Application Data
 13   173.230.217.226 -> 10.10.1.58   TCP 66 443 58852 [ACK] Seq=2249 Ack=1540 Win=5589 Len=0 TSval=XXXXXXXXXX TSecr=3
 14   173.230.217.226 -> 10.10.1.58   TCP 66 443 58852 [ACK] Seq=2249 Ack=1793 Win=5842 Len=0 TSval=XXXXXXXXXX TSecr=3
 15   173.230.217.226 -> 10.10.1.58   TLSv1 335 Application Data
 16   10.10.1.58 -> 173.230.217.226 TLSv1 95 Encrypted Alert
 17   10.10.1.58 -> 173.230.217.226 TCP 66 58852 443 [FIN, ACK] Seq=1822 Ack=2518 Win=65535 Len=0 TSval=3 TSecr=XXXXXXXXXX
 18   173.230.217.226 -> 10.10.1.58   TCP 66 443 58852 [ACK] Seq=2518 Ack=1822 Win=5871 Len=0 TSval=XXXXXXXXXX TSecr=3
 19   173.230.217.226 -> 10.10.1.58   TCP 66 443 58852 [FIN, ACK] Seq=2518 Ack=1822 Win=5871 Len=0 TSval=XXXXXXXXXX TSecr=3
 20   173.230.217.226 -> 10.10.1.58   TCP 66 443 58852 [ACK] Seq=2519 Ack=1823 Win=5871 Len=0 TSval=XXXXXXXXXX TSecr=3
 21   10.10.1.58 -> 173.230.217.226 TCP 66 58852 443 [ACK] Seq=1823 Ack=2519 Win=65535 Len=0 TSval=4 TSecr=XXXXXXXXXX

The 10.10.1.58 is my PSV, whereas 173.230.217.226 is Sony authentication server. Anyway, by using the Transparent Proxy is still possible to sign-in PSN store with the PSV's root CA certificate:

Code: Select all

vs0:data/external/cert/CA_LIST.cer

Now, I have the clearer direction to further on

Advertising

[adi1adit12]

Hi carloswkl

I am supposed to get my new slim this week and most probably it's not going to be on 3.5.

I will be really glad and thankful if you could help me by telling how to activate it the firmware it comes on. I really don't want to upgrade the firmware. I am running windows 7 64. Is there any possibility if you could outline the steps to get this working on windows.

thanks for contributing.

best regards

Advertising

[psvpwner]

Hi carloswkl

I am supposed to get my new slim this week and most probably it's not going to be on 3.5.

I will be really glad and thankful if you could help me by telling how to activate it the firmware it comes on. I really don't want to upgrade the firmware. I am running windows 7 64. Is there any possibility if you could outline the steps to get this working on windows.

thanks for contributing.

best regards

If everything else fails you can use an up-to-date PS3 to activate your PSVita without updating the firmware.

[libchk]

so is the attached python script is now working? can you confirm?

[adi1adit12]

Hi!

I just received my vita slim and it is on fw 3.15. I have currently started it in some mode which allows using it without logging in to PSN. I have not connected it to internet yet and the bundled game card is working. Now I just need to get the vita update blocker working.

Thanks

[Roah]

and this just happen before the explotaible games for 3.36 came back.

[libchk]

thanks for the script, it runs smoothly in my kali Linux

[boughtavita]

THANK YOU! Been trying to figure out why VitaUpdateBlocker was giving me so much trouble on CentOS, you're a life saver, works perfectly!

[thatnoobpj]

I can't get Vita Update Blocker 1.2 to work on either my PS Vita or PS TV. Both are on 3.36 OFW. Any advice guys?

[pythonista]

I can't get Vita Update Blocker 1.2 to work on either my PS Vita or PS TV. Both are on 3.36 OFW. Any advice guys?

1.2 is still working on Windows - I'm waiting for the new Minecraft update that hits today so I had to temporarily move my PSTV upstairs to connect to the router.

(general troubleshooting but things to check)

- if you have a firewall (on the same machine running the update blocker) make sure it's allowing it to connect
- verify you entered the machine's IP address and port (8080 by default) on your Vita/PSTV Network settings

(not required but it makes it easier to remember and troubleshoot)
- have your router assign both the Vita/PSTV AND the machine running the update blocker a static IP address based on their MAC address

If you're getting an error post what it is.