PS3 LV2 Debugging via Ethernet Added to PSGroove PL3

Category: PS3 Hacks & JailBreak By: Fr33m4n - (dukio.com)
Tags: ps3 lv2 debugging ps3 ethernet psgroove pl3 debugging ps3 jailbreak ps3 hacks

129w ago - KaKaRoTo has added PS3 LV2 Debugging via Ethernet to PSGroove PL3 this weekend for PS3 JailBreak users and developers.

Download: PS3 LV2 Ethernet Debugging PSGroove PL3 / ASC KaKaRoTo PL3 MultiPayload and LV2Dump BIN Files / PS3 LV2 Ethernet Debugging PSGroove PL3 Hex Codes / All Latest Payload - All Board All Firmware CE-X Hermes PL3

To quote from Dukio.com (linked above): Well, I think it's going to be a good framework for any new enthusiastic developer who wish to start in the ever growing PS3 Jailbreak scene. Below are the changelog for the recent refactoring work that has been done by him to his PL3 git.

WIP: rename macros.h.S to pl3.h.S and make it do a lot more stuff
Make send_eth compatible with FUNC_PTR and add a _res variant
Add proper ifndef/define/endif to all .h.S files
Port all payloads to the new pl3.h.S framework
Factor out the code to hook the hvsc instructions into its own file
fix the stupid prolog/epilog mixup
Fix the payload_dump_elfs using the new refactored system
Micro optimization
Add a missing syscall to the list of syscalls
Removing undocumented functions from the list of known functions
Add missing function name to syscall_names.idh
Make memory_patching position independent and use the new macros
Add memory patching function to the vuart tracer payload
Merge branch 'master' into playground Conflicts: payload_no_unauth_syscall.S
Make the dev payload redirect all lv2_printf to eth.. should help devs see crash reports
Remove unused instruction

Tweets by KaKaRoToKS himself: How do PL3 payloads look now? Easier to read/maintain? icon smile Yet Another Improved Version Of PL3 Payload http://bit.ly/gpUxgZ

/*
 * default_payload.S -- PS3 Jailbreak payload
 *
 * Copyright (C) Youness Alaoui (KaKaRoTo)
 * Copyright (C) Aaron Lindsay (Aaron')
 * Copyright (C) (subdub)
 *
 * This software is distributed under the terms of the GNU General Public
 * License ("GPL") version 3, as published by the Free Software Foundation.
 *
 * This payload is a modified version of the original PSJailbreak's payload.
 * The people behing PSJailbrak are the original authors and copyright holders
 * of the code they wrote.
 */

/* pl3.h.S must always be included first!!! */
#include "pl3.h.S"

#include "map_open_path.h.S"
#include "memory_patching.h.S"

RESIDENT_AREA_START()
#include "open_hook.h.S"
#include "memory_patching_res.h.S"
RESIDENT_AREA_END()

// Include patch_table after all other includes so it picks up on what
// patches to include in the table depending on what was included
#include "patch_table.h.S"

/**
 * payload_main:
 *
 * This is the entry point to the payload, it gets branched to form the injected
 * shellcode in the JIG response.
 * This is the main function of the exploit, its code is position
 * indedependent. It copies the actual payload to a safe-from-overwrite memory,
 * while it overwrites an existing function from the kernel.
 * It will also add necessary syscalls and patch some areas of the kernel before
 * returning the control back to it
 *
 */
payload_main:
// prolog
mflr %r0
stdu %r1, -0xa0(%r1)
std %r30, 0x90(%r1)
std %r31, 0x98(%r1)
std %r0, 0xb0(%r1)

GET_CURRENT_PAGE(%r3, %r31)
MEM_BASE (%r30) // Load 0x8000000000000000 in %r30

COPY_RESIDENT_AREA(%r30, %r31)

// Allocate memory and copy PIC functions to it
LOAD_FUNC_PTR(memory_patching)
LOAD_FUNC_PTR(map_open_path)

// Add system calls
ADD_SYSCALL (%r30, syscall_map_open_desc, 35)

// Add default /app_home redirection
addi %r3, %r31, ADDR_IN_PAGE(path_app_home)
addi %r4, %r31, ADDR_IN_PAGE(path_usb_default_app_home)
bl map_open_path

APPLY_PATCHES(%r30, %r31)

// epilog
ld %r30, 0x90(%r1)
ld %r31, 0x98(%r1)
ld %r0, 0xb0(%r1)
addi %r1, %r1, 0xa0
mtlr %r0
blr

path_app_home:
.string "/app_home"
path_usb_default_app_home:
.string "/dev_usb000/PS3/HOMEBREW/APP_HOME"

payload_dev now prints lv2 debug to eth. So if your homebrew app (or your payload) crashes, you can get a crash report with backtrace..

Use ./tools/dump_syscall file.pcap > /dev/null to see the debug/crash report

Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!

16 Comments - Go to Forum Thread »

#11 - oleq83 - 129w ago

yes, an explenation of all the technical terms would be very desireable.

#10 - gizmol - 129w ago

Originally Posted by oVERSoLDiER

I think we should make 2 things.

1. A guide, which explains the technical jargon of words, which you read often here.

I absolutely agree on number one... I am not a dev and this nomenclature is slightly tricky for me...

#9 - oVERSoLDiER - 129w ago

Thanks for the first interesting News written in this new thread by an user !

Good one !

I think we should make 2 things.

1. A guide, which explains the technical jargon of words, which you read often here.
2. A Maybe a thread, where you can find every developer board/cell phone/dongle, which can use for Jailbreak. An alphabetic list of the devices, with every file where you can jailbreak it. Where you can find always the newest *.hex files (official or homebrew) and see which function is added. I would make such a list, if it is desired.

#8 - tpryor00 - 129w ago

sorry a bit offtopic, path_usb_default_app_home:

.string "/dev_usb000/PS3/HOMEBREW/APP_HOME

can anybody tell me, where and how to put my apps, to work as homebrew for example in multimanager? i tried different but nothing works.

#7 - tonyqc - 129w ago

Originally Posted by SinnerShanky

what does this mean for the end user... i can believe that it has become more stable... btw which is better hermes or pl3...?

I have made this pack to stop noobs questions... Try and use the one you believe the best for you, and if you use PL3 use default_payload if your a noob.

Page 2 of 4 «‹123 4 ›LAST »

Related PS3 News and PS3 CFW Hacks or JailBreak Articles

• PSPMinis / PS3Minis / Bite v1.5.1 Update for PS3 is Now Released
• PS3 Fan Control Utility v1.7 for PS3 CFW CEX 3.41 to 4.41 Arrives
• PSPMinis / PS3Minis / Bite v1.5 for PS3 with PSP Homebrew Support
• PS3 Fan Control Utility v1.6 for PS3 CFW CEX 3.41 to 4.40 Arrives
• OpenSCETool (OSCETool) v0.9.2 By SpacemanSpiff for PS3 is Released
• PUAD GUI v1.5 - PS3 PUP Unpacker, Repacker and Decrypter Out

PlayStation 3 Links
• Contact Us E-Mail
• PS3 Affiliates
• PS3 CFW & MFW
• PS3 Debug Firmware
• PS3 Decrypted PSN Links for CFW
• PS3 Downloads
• PS3 EBOOT.BIN Original File Links
• PS3 Firmware
• PS3 Game Releases List
• PS3 Guides & Tutorials
• PS3 Hacking Guides and Tutorials
• PS3 Hacks & JailBreak
• PS3 Help & Support
• PS3 JailBreak Game Compatibility List
• PS3 JB2 / True Blue (TB) Game Links
• PS3 multiMAN Updates
• PS3 News Forums
• PS3 News Site FAQ
• PS3 News Site Advertising FAQ
• PS3 News Site Posting FAQ
• PS3 News Site Privacy FAQ
• PS3 News Site Rules
• PS3 News Site Tag Cloud
• PS3 News Site Terms
• PS3 Resources
• PS3 Reviews
• PS3 Save Files Repository
• PS3 Themes
• PS3 Trophies List
• PS3 Videos
• PS Vita Trophies List

PlayStation 3 News Discussions

PSN Games Decrypted for PS3 Custom Firmware 3.55 by DUPLEX! - 42m ago

hello,,thanks for your work,,any way i can the fix for DRAGON'S LAIR games or a link in how to do it,,thanks,,...

By ERNDOG with

8154 Comments »

Introductions: Hello Everyone, I'm New at PS3News.com! - 1h ago

Nice to know

Im on 4.30 and it works great for now!...

By cit with

6992 Comments »

PS3 questions, been out of the loop help? - 1h ago

Well this is no good. I tried installing Rebug D-Rex 4.30.2 but kept getting an error that it's corrupt from the main update screen and from the recov...

By Neo Cyrus with

5 Comments »

ps3 HELP - 2h ago

Ok for 3.41 dongle you had fixes for 3.41 Now that your on 3.55 Kmeaw you will need 3.55 fixes and you don't need the dongle Some games had the same...

By windrider42 with

2 Comments »

Latest PlayStation 3 Trophies