Post: PS3 {Partial} Hacking Program
Options
01-25-2012, 11:38 PM
#1
BriceC
Computer Programmer
See if you can finish Geohot's Unfinished program...
Originally posted by another user
volatile int init_module() {
unsigned long priv2_addr, problem_phys, local_store_phys, context_addr, shadow_addr, spe_id, vas;
lv1_get_virtual_address_space_id_of_ppe(0, &vas);
printk(KERN_ERR "die kernel %d\n", lv1_destruct_logical_spe(0xb));
printk(KERN_ERR "construct SPE: %d\n", lv1_construct_logical_spe(0x10,0x10,0x10,0x10,0x10, vas, 0, &priv2_addr, &problem_phys, &local_store_phys, &context_addr, &shadow_addr, &spe_id));
boom_lpar(shadow_addr);
printk(KERN_ERR "make SPE id: %d\n", spe_id);
printk(KERN_ERR "enable SPE: %d\n", lv1_enable_logical_spe(spe_id, 0));
unsigned long *problem_mapped, *privileged_mapped, *local_mapped;
problem_mapped =__ioremap((unsigned long)problem_phys, 0x20000, PAGE_SHARED_X);
privileged_mapped =__ioremap((unsigned long)priv2_addr, 0x20000, PAGE_SHARED_X);
local_mapped =__ioremap((unsigned long)local_store_phys, 0x40000, PAGE_SHARED_X);
printk(KERN_ERR "status: %lx\n", problem_mapped[0x4020/8]);
printk(KERN_ERR "privileged control: %lx\n", privileged_mapped[0x4040/8]);
privileged_mapped[0x4040/8] |= 4;
printk(KERN_ERR "privileged control: %lx\n", privileged_mapped[0x4040/8]);
struct file* fd;
mm_segment_t old_fs = get_fs();
set_fs(KERNEL_DS);
fd = filp_open("/work/pwned/metldr", O_RDONLY, 0);
if(!IS_ERR(fd)) {
printk(KERN_ERR "file is open\n");
printk(KERN_ERR "read %d\n", fd->f_op->read(fd, local_mapped, 0x40000, &fd->f_pos));
filp_close(fd, NULL);
} else {
printk(KERN_ERR "file open failed!!!!\n");
}
set_fs(old_fs);
printk(KERN_ERR "read in metldr\n");
problem_mapped[0x4018/8] |= 3;
int i;
for(i=0;i<0x20;i++) {
printk(KERN_ERR "status: %lx\n", problem_mapped[0x4020/8]);
}
printk(KERN_ERR "destruct SPE: %d\n", lv1_destruct_logical_spe(spe_id));
return 0;
}
The following 4 users say thank you to BriceC for this useful post:
The following 2 users groaned at BriceC for this awful post:
01-26-2012, 01:05 AM
#3
DlBSY993
There's 0nly 1..
Originally posted by TheEliteSoldier
I wanted to encourage you to code some software to decrypt the PS3 FW update file. So stop searching metldr/trying to dump lv2 and code that program. According to geohot's blog. It IS possible to load metldr into a SPU and from that load the loader of your wish and decrypt everything you want!
See if you can finish Geohot's Unfinished program...
See if you can finish Geohot's Unfinished program...
by the looks of it ... far from unfinished..
The following user thanked sunce99 for this useful post:
The following 11 users groaned at sunce99 for this awful post:
01-26-2012, 02:22 AM
#5
ResistTheMoon
< ^ > < ^ >
The following 4 users say thank you to ResistTheMoon for this useful post:
01-26-2012, 02:52 AM
#7
Alexis Rhodes
#get rekt
Originally posted by TheEliteSoldier
I wanted to encourage you to code some software to decrypt the PS3 FW update file. So stop searching metldr/trying to dump lv2 and code that program. According to geohot's blog. It IS possible to load metldr into a SPU and from that load the loader of your wish and decrypt everything you want!
See if you can finish Geohot's Unfinished program...
See if you can finish Geohot's Unfinished program...
your missing some info here the bootloader incaps all the loaders that follow you cant use the spe(spu is isolated) to dump anything anymore that exploit is called memory glitching he uses a system call to map out the selfs inside the metldr thats decrypted and figured out what the other loader keys were
01-26-2012, 03:55 AM
#8
ResistTheMoon
< ^ > < ^ >
Originally posted by ILovePie24
Dude!!! lmfaoooo!! Please gtfo of newxtgenupdate and kill yourself hahahaha did you just say geohot are lazy???? lmaooo first geohot is one guy second hes the one to exploited and created the frist cfw for ps3 stfu and gtfo your a noob and a leecher
not to be a dick but KaKaRoToKs was the first to make a CFW, geohot just made it complete and way better....and hes not just "cool." He's a god damn legend!
The following user thanked ResistTheMoon for this useful post:
01-26-2012, 04:38 AM
#9
TechMemphis
< ^ > < ^ >
Originally posted by ILovePie24
Dude!!! lmfaoooo!! Please gtfo of newxtgenupdate and kill yourself hahahaha did you just say geohot are lazy???? lmaooo first geohot is one guy second hes the one to exploited and created the frist cfw for ps3 stfu and gtfo your a noob and a leecher
Just a slight correction geohot found the first exploit allowing pkg installs kakaroto made the first cfw. ehh iphone 4 quoted before me nm...
The following user thanked TechMemphis for this useful post:
01-26-2012, 05:57 AM
#10
racecar12
Do a barrel roll!
Originally posted by ILovePie24
Dude!!! lmfaoooo!! Please gtfo of newxtgenupdate and kill yourself hahahaha did you just say geohot are lazy???? lmaooo first geohot is one guy second hes the one to exploited and created the frist cfw for ps3 stfu and gtfo your a noob and a leecher
actually was KaKaRoToKs and the reason we no longer have the other os option is because of geohot... that said im still glad he made the 3.55 jailbreak
lol i see now that two others posted this..... fail
The following user thanked racecar12 for this useful post:
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
