I'm having problem porting hbl to some user exploits
first issue:
Code: Select all
->Module information:
Name: JGEApp_Title
Version: 0x00000101
Attributes: 0x00000000
Lib entry: 0x000A61AC
Lib stubs: 0x000A61C4
Lib stubs end: 0x000A62DC
gp: 0x000CA710
Address to allocate from: 0x08900000
-->ALLOCATING MEMORY @ 0x08900000 size 0x001DC1B0... call to sceKernelAllocParti
tionMemory partitionId: 2, name: ELFMemory, type:2, size:1950128, addr:0x0890000
0
-> final allocation made for 1560128 of 1950128 requested bytes with result 0x80
0200D9
FAILED: 0x800200D9
Failed to allocate memory for the module
ERROR 0x80020001 loading main module
It outputs
Code: Select all
sceKernelMaxFreeMemSize > 20MB...ok
I tried freemem.rb script
Only functions for dcache imported by game are
sceKernelDcacheWritebackRange and sceKernelDcacheWritebackAll, no invalidate cache ones, so im using
Code: Select all
#define CLEAR_CACHE sceKernelDcacheWritebackAll()
#define HOOK_sceKernelDcacheWritebackInvalidateAll_WITH_sceKernelDcacheWritebackAll
Also I have manually defined some functions that are in sdk.s but non in sdk_hbl.s
Could any of those cause problem ?
also :
I have disabled p5_stubs because it gets stuck when it enters the save dialog loop for second time (First time it goes through it fine)
[spoiler]
Code: Select all
Loader running
Detected firmware version is 0x06060010
p5_get_stubs
entering savedata dialog loop
status changed from -1 to 2
status changed from 2 to 3
status changed from 3 to 0
dialog has shut down
Relocating stub addresses from 0x08414A0C to 0x09D70000
current stub: 0x08414AFC 0x00000011 0x00004001 0x00000005 0x00000006 0x08414CA4
0x08414930
relocated to: 0x09D700F0 0x09D70298 0x09D6FF24
current stub: 0x08414B0C 0x00000011 0x00004001 0x00000005 0x0000000E 0x08414CCC
0x08414980
relocated to: 0x09D70100 0x09D702C0 0x09D6FF74
current stub: 0x08414B24 0x00000011 0x00004001 0x00000005 0x00000001 0x08414CC0
0x08414968
relocated to: 0x09D70118 0x09D702B4 0x09D6FF5C
current stub: 0x08414B30 0x00000011 0x00004001 0x00000005 0x00000001 0x08414CBC
0x08414960
relocated to: 0x09D70124 0x09D702B0 0x09D6FF54
current stub: 0x08414B40 0x00000011 0x00004000 0x00000005 0x00000003 0x08414C2C
0x08414840
relocated to: 0x09D70134 0x09D70220 0x09D6FE34
current stub: 0x08414B58 0x00000011 0x00004001 0x00000005 0x00000011 0x08414BD8
0x08414798
relocated to: 0x09D7014C 0x09D701CC 0x09D6FD8C
current stub: 0x08414B70 0x00000011 0x00000001 0x00000005 0x00000004 0x08414C1C
0x08414820
relocated to: 0x09D70164 0x09D70210 0x09D6FE14
current stub: 0x08414B84 0x00000011 0x00004000 0x00000005 0x00000002 0x08414CC4
0x08414970
relocated to: 0x09D70178 0x09D702B8 0x09D6FF64
current stub: 0x08414B9C 0x00000011 0x00004001 0x00000005 0x0000001B 0x08414C38
0x08414858
relocated to: 0x09D70190 0x09D7022C 0x09D6FE4C
entering savedata dialog loop
status changed from -1 to 2
---------------------------------------------------------------------------------------------------------------------------
issue with another game:
Code: Select all
Starting HBL R162 http://code.google.com/p/valentine-hbl
DEBUG version (+NIDS)
Firmware 6.6x detected
Same result with p5 stubs enabled/disabled
heres the log
[spoiler]
Code: Select all
Detected firmware version is 0x06060010
Loading HBL
HBL loaded to allocated memory @ 0x09E54300
Copying & resolving HBL stubs
Config file:ms0:/PSP/SAVEDATA/censored/imports.dat
--> HBL imports from imports.config: 64
1. 0x109F50BC
2. 0x42EC03AC
3. 0x810C4BC3
4. 0x27EB27B8
5. 0x6A638D83
6. 0xB29DDF9C
7. 0xE3EB004C
8. 0xEB092469
9. 0x54F5FB11
10. 0x55F4717D
11. 0x779103A0
12. 0x06A70004
13. 0x2E0911AA
14. 0xD8B73127
15. 0x8F2DF740
16. 0x79D1C3FA
17. 0x34B9FA9E
18. 0xCEADEB47
19. 0x446D8DE6
20. 0x616403BA
21. 0x383F7BCC
22. 0x809CE29B
23. 0x9FA03CD3
24. 0x28B6489C
25. 0xEF9E4C70
26. 0xEDBA5844
27. 0xAA73C935
28. 0x68DA9E36
29. 0x82826F70
30. 0x876DBFAD
31. 0x884C9F90
32. 0xDF52098F
33. 0x293B45B8
34. 0xE81CAF8F
35. 0x3F53E640
36. 0x4E3A1105
37. 0xD6DA4BA1
38. 0x9944F31F
39. 0x75156E8F
40. 0x6D212BAC
41. 0x05572A5F
42. 0x4AC57943
43. 0x237DBD4F
44. 0x9D9A5BA1
45. 0xB6D61D02
46. 0x289D82FE
47. 0x984C27E7
48. 0x1F803938
49. 0x3A622550
50. 0xBD2BDE07
51. 0x6FC46853
52. 0xB011922F
53. 0x136CAF51
54. 0x13F592BC
55. 0x5EC81C55
56. 0xE7C27D1B
57. 0xEBD177D6
58. 0x2A2B3DE0
59. 0xE49BFE92
60. 0x67AF3428
61. 0x9A1C91D7
62. 0x95FC253B
63. 0x2AD8E239
64. 0xE47E40E4
Loading 0x00000100
...Already loaded
Loading 0x00000101
...Already loaded
Loading 0x00000102
Loading 0x00000103
Loading 0x00000104
Loading 0x00000105
Loading 0x00000106
...Error 0x800200D9 Loading 0x00000106
Loading 0x00000200
Loading 0x00000201
Loading 0x00000202
Loading 0x00000203
Loading 0x00000301
...Already loaded
Loading 0x00000302
...Already loaded
Loading 0x00000303
...Already loaded
Loading 0x00000304
Loading 0x00000305
...Already loaded
Loading 0x00000306
Loading 0x00000307
Loading 0x00000400
...Error 0x800200D9 Loading 0x00000400
Loading 0x00000401
...Error 0x800200D9 Loading 0x00000401
Loading 0x00000402
...Error 0x800200D9 Loading 0x00000402
Loading 0x00000500
Loading 0x00000600
Found Stubs at 0x088009A0
Found Stubs at 0x089B6310
Found Stubs at 0x09E13D30
Found Stubs at 0x09E1BF30
Found Stubs at 0x09E2A614
Found Stubs at 0x09E2A640
Found Stubs at 0x09E3B8F0
Found Stubs at 0x09E41D70
Found Stubs at 0x09E48610
Found Stubs at 0x09E4CA90
Found Stubs at 0x09E4DF3C
Found Stubs at 0x09E94274
Found Stubs at 0x09EAAD78
Found Stubs at 0x09EAADB0
Found Stubs at 0x09EB4F8C
Found Stubs at 0x09EBE43C
Found Stubs at 0x09EC259C
Found Stubs at 0x09EDB8A0
Found Stubs at 0x09EEE750
Found Stubs at 0x09EF1300
Found 20 stubs
ENTERING search_game_stubs() 0x088009A0
ENTERING search_game_stubs() 0x089B6310
nid:0x2A2B3DE0, address:0x089B62C4 call:0x03E00008 0x00090F4C
nid:0xE49BFE92, address:0x089B62EC call:0x03E00008 0x0009214C
nid:0x1F803938, address:0x089B62B4 call:0x03E00008 0x0008CDCC
nid:0x289D82FE, address:0x089B6294 call:0x03E00008 0x0008C94C
nid:0x984C27E7, address:0x089B629C call:0x03E00008 0x0008C5CC
nid:0xE47E40E4, address:0x089B6284 call:0x03E00008 0x0008B40C
nid:0x42EC03AC, address:0x089B61D4 call:0x03E00008 0x0008874C
nid:0x6A638D83, address:0x089B61DC call:0x03E00008 0x00087F4C
nid:0x779103A0, address:0x089B61E4 call:0x03E00008 0x0008800C
nid:0x810C4BC3, address:0x089B61EC call:0x03E00008 0x0008804C
nid:0x109F50BC, address:0x089B6204 call:0x03E00008 0x000885CC
nid:0x27EB27B8, address:0x089B620C call:0x03E00008 0x0008868C
nid:0x05572A5F, address:0x089B61C4 call:0x03E00008 0x0008B0CC
nid:0x4AC57943, address:0x089B61CC call:0x03E00008 0x0008B18C
nid:0x2E0911AA, address:0x089B618C call:0x03E00008 0x00088BCC
nid:0xD8B73127, address:0x089B619C call:0x03E00008 0x000888CC
nid:0x8F2DF740, address:0x089B61B4 call:0x03E00008 0x00088D0C
nid:0x237DBD4F, address:0x089B614C call:0x03E00008 0x00089BCC
nid:0x9D9A5BA1, address:0x089B615C call:0x03E00008 0x00089ECC
nid:0xB6D61D02, address:0x089B6164 call:0x03E00008 0x00089FCC
nid:0xCEADEB47, address:0x089B6094 call:0x03E00008 0x0008778C
nid:0xD6DA4BA1, address:0x089B609C call:0x03E00008 0x000878CC
nid:0xE81CAF8F, address:0x089B60A4 call:0x03E00008 0x00087B0C
nid:0xEDBA5844, address:0x089B60B4 call:0x03E00008 0x000855CC
nid:0x28B6489C, address:0x089B60C4 call:0x03E00008 0x00085D4C
nid:0x293B45B8, address:0x089B60CC call:0x03E00008 0x00085DCC
nid:0x3F53E640, address:0x089B60E4 call:0x03E00008 0x0008620C
nid:0x446D8DE6, address:0x089B60EC call:0x03E00008 0x0008628C
nid:0x4E3A1105, address:0x089B60F4 call:0x03E00008 0x0008634C
nid:0x616403BA, address:0x089B60FC call:0x03E00008 0x0008664C
nid:0x68DA9E36, address:0x089B6104 call:0x03E00008 0x000867CC
nid:0x9FA03CD3, address:0x089B610C call:0x03E00008 0x000870CC
nid:0xAA73C935, address:0x089B6114 call:0x03E00008 0x0008724C
nid:0xEF9E4C70, address:0x089B6124 call:0x03E00008 0x0008560C
nid:0x79D1C3FA, address:0x089B607C call:0x03E00008 0x0008AA8C
nid:0x136CAF51, address:0x089B602C call:0x03E00008 0x0008E38C
nid:0x13F592BC, address:0x089B6034 call:0x03E00008 0x0008E3CC
nid:0x5EC81C55, address:0x089B603C call:0x03E00008 0x0008E54C
nid:0x6FC46853, address:0x089B6044 call:0x03E00008 0x0008E64C
nid:0xB011922F, address:0x089B6054 call:0x03E00008 0x0008E0CC
ENTERING search_game_stubs() 0x09E13D30
nid:0x34B9FA9E, address:0x09E13C2C call:0x03E00008 0x0008A5CC
ENTERING search_game_stubs() 0x09E1BF30
ENTERING search_game_stubs() 0x09E2A614
ENTERING search_game_stubs() 0x09E2A640
ENTERING search_game_stubs() 0x09E3B8F0
ENTERING search_game_stubs() 0x09E41D70
ENTERING search_game_stubs() 0x09E48610
ENTERING search_game_stubs() 0x09E4CA90
ENTERING search_game_stubs() 0x09E4DF3C
ENTERING search_game_stubs() 0x09E94274
ENTERING search_game_stubs() 0x09EAAD78
ENTERING search_game_stubs() 0x09EAADB0
ENTERING search_game_stubs() 0x09EB4F8C
ENTERING search_game_stubs() 0x09EBE43C
ENTERING search_game_stubs() 0x09EC259C
ENTERING search_game_stubs() 0x09EDB8A0
ENTERING search_game_stubs() 0x09EEE750
ENTERING search_game_stubs() 0x09EF1300
****STUBS SEARCHED
HBL Function missing at 0x00010028, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010030, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010038, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010040, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010048, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010058, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000100A0, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000100A8, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000100E0, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000100E8, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000100F0, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000100F8, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010128, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010130, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010138, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010180, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x00010188, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000101B8, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000101C0, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000101D8, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000101E0, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000101E8, this could lead to trouble if syscall estimates do not work
HBL Function missing at 0x000101F0, this could lead to trouble if syscall estimates do not work
UnLoading 0x00000600
UnLoading 0x00000500
UnLoading 0x00000402
...Error 0x80111103 Unloading 0x00000402
UnLoading 0x00000401
...Error 0x80111103 Unloading 0x00000401
UnLoading 0x00000400
...Error 0x80111103 Unloading 0x00000400
UnLoading 0x00000307
UnLoading 0x00000306
UnLoading 0x00000305
UnLoading 0x00000304
UnLoading 0x00000303
UnLoading 0x00000302
UnLoading 0x00000301
UnLoading 0x00000203
UnLoading 0x00000202
UnLoading 0x00000201
UnLoading 0x00000200
UnLoading 0x00000106
...Error 0x80111103 Unloading 0x00000106
UnLoading 0x00000105
UnLoading 0x00000104
UnLoading 0x00000103
UnLoading 0x00000102
UnLoading 0x00000101
UnLoading 0x00000100
HBL stubs copied, running eLoader
Starting HBL R162 http://code.google.com/p/valentine-hbl
DEBUG version (+NIDS)
Firmware 6.6x detected