Great to see some progress on ps3 scene, again. Hope this time something like homebrew can be achieved.
so i'm assuming what we are hoping to do here is find a way to use those set calls to set say recovery to maybe 1 instead of 0 and hope that when it reboots the bootloader boots to recovery.. vs. needing the "jig" to set that flag?
sorry.. further thought.. i would assume thats all the jig does.. supposedly when used the ps3 boots picks up the jig.. then it reboots again.. so i would assume thats what the jig is doing.. using hopefully the same set call to set the recovery flag then making it reboot and the ps3 system takes over from there.
Last edited by ekrboi; 02-12-2010 at 07:48 PM Reason: Automerged Doublepost
Upon next power up, its in "manufacturing mode", which allows diagnostic tools (encrypted, of course) to be run.
cool.. obviously we can add our own calls for reading/writing memory using the exploit.. and you may already have done/tried it.. can't you just push one of the set flag calls into memory so that the hypervisor executes it? or not that simple?
but i do understand wanting to know what the call actually does before just trying it..