How to Load METLDR in SPU Isolation Mode on PlayStation 3

Category: PS3 Hacks & JailBreak By: PS3 News - (piemontewireless.net)
Tags: load metldr ps3 ps3 spu ps3 isolation mode ps3 hacks playstation 3

166w ago - Just over a month ago the PS3 Hypervisor lv2 (GameOS) was dumped and GeoHot hinted that it was accomplished by commanding an SPU to load METLDR.

Today dondolo let us know that simone has detailed how to load METLDR in SPU isolation mode on the PlayStation 3 and included some source code.

While this is definitely a step forward, he still doesn't specify what the read/write u32 functions are... or which functions to add to the recent XorHack release.

Those interested can check it out below, and to quote:

"After some experiment I succeded to load METLDR in spu isolation.

You need geohot's exploit to do this, because you need to turn spu relocation off (MFC_SR1[R]=0) and not let know the HV you are using a SPU (so no calls to lv1_construct_logical_spe or similar). For some strange conf, it doesn't work in HV way."

Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!

48 Comments - Go to Forum Thread »

#48 - Siggy12 - 166w ago

Originally Posted by DaweedFTW

Just wondering, and maybe CJPC can tell, if it wouldn't be easier, once the lvl2 hole is found, to have some sort of "re-signed" firmware update to convert every retail PS3 to a debug/test unit, with the possibilities it would offer.

Yeah .. I'm totally agree... for me CJPC know very well debug and tool firmware so for him will be very easy convert a retail in a debug system or find a hole for execute code in a retail firmware, I hope that we will have LV2 dump very soon.

#47 - DaweedFTW - 166w ago

Originally Posted by MimmoD360

I would like to know what's the next step in order to run unsing code has isoloader or homebrew

Thx

Looks like we're quite far far away from running unsigned code, at least on every unit. My guess is that we first need to dump lvl2 gameOS, reverse it to find exploitables holes, use a hole to software-kick isolated SPU and replace it with a custom one that would automatically "validate" each pkg/self thrown at it.

We are not yet having the lvl2 dump, so there's still a loooong way to go for a simple hello world, and the dev most prolly are working on the second step toward the full hack of the PS3 (the first one being geohot exploit to R/W ram), dumping GameOS.

Just wondering, and maybe CJPC can tell, if it wouldn't be easier, once the lvl2 hole is found, to have some sort of "re-signed" firmware update to convert every retail PS3 to a debug/test unit, with the possibilities it would offer.

#46 - SCE - 166w ago

Originally Posted by MimmoD360

I would like to know what's the next step in order to run unsing code has isoloader or homebrew

Thx

Instead of consuming your time with subscribing, you should have read the entire thread to get the answer.

#45 - MimmoD360 - 166w ago

I would like to know what's the next step in order to run unsing code has isoloader or homebrew

Thx

#44 - r3pek - 166w ago

Originally Posted by CJPC

Actually the SPU_PX() is defined in the released code - however, both read/write_u32 do need to be added in to XorHack - namely the author says it does, plus it's not there.

But the hack does need to be done first, as xorlosers code provides the nice set of tools to interact between kernel and user mode, and adds in functions that the SPU isolation code calls.

Ok, then it's solved

I suppose that those functions are for I/O i can only program them on x86/64 asm... not ppc asm... If you stil want them, just post

Page 1 of 10 12 3 4 5 6 7 8 9 ›LAST »

Related PS3 News and PS3 CFW Hacks or JailBreak Articles

• Guide to Install multiMAN PS3 Themes via USB from a PKG File
• Simple PS3Updates v1.6 Build 2 Final PS3 Homebrew App Updated
• Video: Super Pixel Jumper v1.2 PS3 Homebrew Game is Released
• Video: Pointman: The Akkadian Wars PS3 Homebrew Game Arrives
• PSPMinis / PS3Minis / Bite v1.5.1 Update for PS3 is Now Released
• PS3 Fan Control Utility v1.7 for PS3 CFW CEX 3.41 to 4.41 Arrives

PlayStation 3 Links
• Contact Us E-Mail
• PS3 Affiliates
• PS3 CFW & MFW
• PS3 Debug Firmware
• PS3 Decrypted PSN Links for CFW
• PS3 Downloads
• PS3 EBOOT.BIN Original File Links
• PS3 Firmware
• PS3 Game Releases List
• PS3 Guides & Tutorials
• PS3 Hacking Guides and Tutorials
• PS3 Hacks & JailBreak
• PS3 Help & Support
• PS3 JailBreak Game Compatibility List
• PS3 JB2 / True Blue (TB) Game Links
• PS3 multiMAN Updates
• PS3 News Forums
• PS3 News Site FAQ
• PS3 News Site Advertising FAQ
• PS3 News Site Posting FAQ
• PS3 News Site Privacy FAQ
• PS3 News Site Rules
• PS3 News Site Tag Cloud
• PS3 News Site Terms
• PS3 Resources
• PS3 Reviews
• PS3 Save Files Repository
• PS3 Themes
• PS3 Trophies List
• PS3 Videos
• PS Vita Trophies List

PlayStation 3 News Discussions

The Yes/No question thread - 1h ago

No. Are you sad?...

By mm4dsc with

2050 Comments »

Concerning different PS3 CFW versions help? - 2h ago

sure mate ... if I can, I will

...

By hilongo with

3 Comments »

Video: The Witness on PlayStation 4 / PS4: Creator Conversations - 4h ago

Thekla Incorporated President Jonathan Blow shared some video footage today which include conversations with the creators of upcoming title The...

By PS3 News with

0 Comments »

Grand Theft Auto V Special & Collector's Editions - Pre-Order Today - 4h ago

Today RockStar invites fans to pre-order the Grand Theft Auto V Special and Collector's Editions with details of each below. To quote: We are...

By PS3 News with

0 Comments »

Latest PlayStation 3 Trophies