Search found 74 matches

by ab5000
Mon Jan 04, 2010 12:49 am
Forum: PSP Development
Topic: [How To] Make Booster's IPL SDK work with GCC > 4.0.2
Replies: 4
Views: 3860

Draan wrote:I have a question.

I have MinPSPW + DevC++. I've tried to compile Flash Led sample.
I've got an error:

Code: Select all

Assembler messages:
line numbers must be positive; line number 0 rejected
but it creates pspboot.bin anyway. So I can just ignore this error?
Yes, you can ignore it.
by ab5000
Sun Jan 03, 2010 3:06 am
Forum: PSP Development
Topic: [How To] Make Booster's IPL SDK work with GCC > 4.0.2
Replies: 4
Views: 3860

[How To] Make Booster's IPL SDK work with GCC > 4.0.2

Hi. Today i was experimenting with Booster's IPL SDK and my IPL wasn't working, even if it compiled correctly. Searching in this forum i found that the IPL SDK doesn't work with a GCC version highter than 4.0.2. I found a solution to this problem, so i wrote this short How To. The solution is deleti...
by ab5000
Thu Dec 31, 2009 7:58 pm
Forum: PSP Development
Topic: Double Pointer Allocation, and Validity Testing Errors?
Replies: 10
Views: 14769

You can't get the size of a malloc'd memory region with standard libc functions. But you can take a look at the mallocr.c for the newlib: http://sourceware.org/cgi-bin/cvsweb.cgi/~checkout~/src/newlib/libc/stdlib/mallocr.c?rev=1.17&content-type=text/plain&cvsroot=src You can see this: chunk-...
by ab5000
Thu Dec 31, 2009 2:41 am
Forum: PSP Development
Topic: Double Pointer Allocation, and Validity Testing Errors?
Replies: 10
Views: 14769

This is the error: if(sizeof(*file[0]) != strlen(just_for_example)){/*display error*/} file[0] is the pointer to "NOTHING.EXE\0". File si char **, so file[0] is a char *, so *file[0] is char, so its size will...
by ab5000
Wed Dec 30, 2009 11:32 pm
Forum: PSP Development
Topic: Strange Entry Point in Datel's Action Replay
Replies: 7
Views: 5334

I've got some info. In PSP GO! you can check for updates in the MS. The PSP will say the updater version and run it, if you want. When doing this with the AR on the MS, it says there's an update to 9.99 and, if you run it, it runs the AR. Some years ago (tested on 2.50) taking 1.50 update and changi...
by ab5000
Tue Dec 29, 2009 6:34 pm
Forum: PSP Development
Topic: Strange Entry Point in Datel's Action Replay
Replies: 7
Views: 5334

Re: Strange Entry Point in Datel's Action Replay

I think they used an exploit. Look at the Entry Point - it's 0x000000AC!!! What do you think about it? That's probably an offset from the module base. Remember, it's relocatable. Oh. Yeah. You're right. I'm so sorry :S Well, there's another thing. Can someone explain why the number of segments is 1...
by ab5000
Tue Dec 29, 2009 6:54 am
Forum: PSP Development
Topic: Strange Entry Point in Datel's Action Replay
Replies: 7
Views: 5334

Strange Entry Point in Datel's Action Replay

THIS TOPIC DOESN'T TALK ABOUT GAME HACKING/CHEATING. Hi. Today i coded a small C program to dump some informations about a PSP file (encrypted ELF). Then i tested it on Action Replay, this is the result: Magic: ~PSP Attributes: 00000800 Compression attributes: 00000000 Module version: 1.1 Module nam...
by ab5000
Sun Dec 27, 2009 8:29 pm
Forum: PSP Development
Topic: Eboot launch help
Replies: 25
Views: 38061

1) AFAIK, this isn't correct C: struct SceKernelLoadExecParam param { param.size = sizeof(param); param.args = strlen(PATH)+1; param.argp = PATH; param.key = "game"; } 2) C is case-sensitive, so don't use SceKernelLoadExec. You have to use ...
by ab5000
Fri Nov 13, 2009 11:31 pm
Forum: PSP Development
Topic: About releasing MoHH eloader source code
Replies: 58
Views: 59346

The eLoader isn't complex. It just load the ELF in memory (along with all the sections), resolve imports and jump to start address of ELF. The really PSP-dependent part is resolving the imports. Resolving user-to-user imports is a bit complex but it isn't the really difficult part because we can do ...
by ab5000
Mon Sep 21, 2009 11:46 pm
Forum: PSP Development
Topic: Decrypt the Firmware 6.0
Replies: 30
Views: 20678

Just a thing: lui load upper 16bits. correct your program ;)
by ab5000
Mon Sep 21, 2009 11:44 pm
Forum: PSP Development
Topic: Help understanding PRX sections
Replies: 8
Views: 3993

the compiler allocates a 128KB (not 32KB, i made a mistake) space in data section (or the bss section, don't remeber well now). then it set $gp to the adress in the middle of the space. the compiler uses those 128KB for storing data. suppose it's at 0xABC00000. so $gp will be at 0xABC0FFFF. then if ...
by ab5000
Sun Sep 20, 2009 10:53 pm
Forum: PSP Development
Topic: Help understanding PRX sections
Replies: 8
Views: 3993

Re: Help understanding PRX sections

Hello again! This time I'm a bit confused about some PRX sections. .rodata.sceModuleInfo Is this the correct stucture for this section? #define MAX_MODULE_NAME 0x1c /* .rodata.sceModuleInfo */ typedef struct { Elf32_Half module_attributes; Elf32_Half module_version; BYTE module_name&#9...
by ab5000
Sat Sep 19, 2009 2:25 am
Forum: PSP Development
Topic: Decrypt the Firmware 6.0
Replies: 30
Views: 20678

parts 2 and 3 aren't decrypted by psardumper... otherwise is would be too simple :P

take a look at this: http://forums.ps2dev.org/viewtopic.php?p=84468#84468

you need to take decrypted part1, reverse it, decrypt part2 & 3, decompress them and find the keys.
by ab5000
Sat Sep 19, 2009 2:19 am
Forum: PSP Development
Topic: MoHH 2 vulnerable to exploit?
Replies: 8
Views: 6624

BTW, remember this: MoHH 2 probably is exploitable (otherwise why is it in the list?) but this doesn't mean the exploit is the same as MoHH...
by ab5000
Fri Sep 18, 2009 3:44 am
Forum: PSP Development
Topic: Decrypt the Firmware 6.0
Replies: 30
Views: 20678

I made a PRX containing the patched function, then i did: modexp @myDmesgHook (myDmesgHook is the name of my module) and wrote down hook function export address. Imagine it's 0x12345678... modimp @scePSAR_Driver and i wrote down the adress of the stub for Dmesg function... imagine it's 0xABCDEF12. t...
by ab5000
Fri Sep 18, 2009 2:33 am
Forum: PSP Development
Topic: Load a PRX after an EBOOT
Replies: 9
Views: 3831

dridri wrote:I get this error :
Failed to Load/Start module 'ms0:/PSP/GAME/UPDATE/EBOOT.PBP' Error: 0x800200D9
strange... wich psp do you have? fat or slim?
do you type "reset updater" before?
do you use psplink for 1.50?
by ab5000
Fri Sep 18, 2009 12:32 am
Forum: PSP Development
Topic: Load a PRX after an EBOOT
Replies: 9
Views: 3831

I know that, but it's not my problem. In the 1.50 firmware (with TM), I want to patch the vshCtrlLoadExecMs1(...) wich is the function used to start updates. And I want to start a PRX at same time to dump the memory of the updater (to get a decompressed Psar, decrypted table, etc....) put 6.00 upda...
by ab5000
Thu Sep 17, 2009 5:16 am
Forum: PSP Development
Topic: MoHH 2 vulnerable to exploit?
Replies: 8
Views: 6624

MoHH 2 vulnerable to exploit?

Hi. As you know, MoHH is vulnerable to an exploit. Yesterday i decrypted all the user modules of the 6.00 OFW. I took a look at /vsh/module/savedata_utility.prx. In this file there are all the IDs of games vulnerable to exploits, so the savedata for this games will be checked. Here's the list: ULUS1...
by ab5000
Thu Sep 17, 2009 12:58 am
Forum: PSP Development
Topic: Adding features to firmware applications ?
Replies: 7
Views: 3877

Re: Adding features to firmware applications ?

Try LEDControl or LedOff. Indeed I already saw those programs, but I would like to do something more elegant. - I would like to hook the sceSysconCtrlLED call to avoid setting the leds every time... and I could let the blinking power led to have the low battery warning as the parameter are differen...
by ab5000
Thu Sep 17, 2009 12:42 am
Forum: PSP Development
Topic: Decrypt the Firmware 6.0
Replies: 30
Views: 20678

if you want i hooked the Dmesg function responsible for decrypting PSAR's, we can analyze the output...
by ab5000
Wed Sep 16, 2009 11:30 pm
Forum: PSP Development
Topic: Adding features to firmware applications ?
Replies: 7
Views: 3877

Re: Adding features to firmware applications ?

Hi ! It's a long time since I read this forum, and I have read several threads regarding PRX modules. I would like to know if it possible the enhance an exisitng application, such as the video player embedded in the firmware using a PRX to hook some function maybe ? In fact I would like to disable ...
by ab5000
Wed Sep 16, 2009 7:43 pm
Forum: PSP Development
Topic: Decrypt the Firmware 6.0
Replies: 30
Views: 20678

Excuse me... I decrypted usermode modules of 6.00, but i want to make a question to SilverSpring. I know i need keys for kernel modules and i know they are in part2 and part3 of IPL. I thought i can dump the ENCRYPTED firmware, but it says it can't decrypt the psar table (error -1)... So i took the ...
by ab5000
Fri Sep 04, 2009 5:27 am
Forum: PSP Development
Topic: Debug file not receiving characters
Replies: 13
Views: 7599

BTW, this is from pspsdk/src/libc/stdio.c: int fflush(FILE *stream) { int ret = EOF; // Same as default case below. switch(LOCAL_FILE(stream)->type) { case STD_IOBUF_TYPE_GE: case STD_IOBUF_TYPE_STDOUTHOST: /* stdout &...
by ab5000
Fri Sep 04, 2009 1:40 am
Forum: PSP Development
Topic: Debug file not receiving characters
Replies: 13
Views: 7599

platform wrote:
psPea wrote:>Surely I don't have to close and reopen the file each time I want to log to it.
What's wrong with that?
Isn't that innefficient?
i read it's not possible to do a fflush on psp. You can do a devctl to memorystick to fulsh ALL the files. opening, writing and closing is more efficient ;)
by ab5000
Sun Aug 30, 2009 7:18 pm
Forum: PSP Development
Topic: USBHostFS Without Memory Stick?
Replies: 4
Views: 2674

Re: USBHostFS Without Memory Stick?

My PSP recently fell off my desk, causing the flap door to open and the memory stick spring to release and fling my memory stick straight down the vent on the radiator in my dorm room. There is no way to get it back, at least until the semester is over. Lucky me! Is it possible for me to use USBHos...
by ab5000
Sun Aug 30, 2009 12:08 am
Forum: PSP Development
Topic: Warning: setting incorrect section attributes for .rodata.sc
Replies: 16
Views: 10436

Hi! :) check if in pspdev/psp/sdk/include/pspmoduleinfo.h Yes, here it is: typedef struct _scemoduleinfo { unsigned short modattribute; unsigned char modversion[2]; char modname[27]; char terminal; void * gp_value; void * ent_top; void * ent_end; void * stub...
by ab5000
Sat Aug 29, 2009 9:07 pm
Forum: PSP Development
Topic: Warning: setting incorrect section attributes for .rodata.sc
Replies: 16
Views: 10436

sakya wrote:
ab5000 wrote:wich pspsdk are you using?
I updated it a pair of weeks ago (don't remember the svn version)

Ciaooo
Sakya
umh...
check if in pspdev/psp/sdk/include/pspmoduleinfo.h:
typedef const _sceModuleInfo SceModuleInfo;
if SceModuleInfo is const GCC shouldn't make .rodata.sceModuleInfo writable.
by ab5000
Sat Aug 29, 2009 8:58 pm
Forum: PSP Development
Topic: Warning: setting incorrect section attributes for .rodata.sc
Replies: 16
Views: 10436

wich pspsdk are you using?
by ab5000
Sat Aug 29, 2009 8:35 pm
Forum: PSP Development
Topic: Warning: setting incorrect section attributes for .rodata.sc
Replies: 16
Views: 10436

Hi! :) Sorry to reply so late (and thanks for your help). The error is main.s:712: Warning: setting incorrect section attributes for .rodata.sceModuleInfo And line 712 is: .section .rodata.sceModuleInfo,"aw",@progbits Here's the main.s http://www.megaupload.com/?d=...
by ab5000
Thu Aug 20, 2009 5:54 am
Forum: PSP Development
Topic: kuKernelInitFileName
Replies: 2
Views: 2100

Torch wrote:It needs to be called immedately once your module is loaded as the path gets erased soon. Do it from module_start() or in the beginning of the main thread.
Thanks! :)
I'll try ASAP.