Advertising (This ad goes away for registered users. You can Login or Register)

PATCHED IPLS for 1.00/1.50 By Mathieulh

Forum rules
Forum rule Nº 15 is strictly enforced in this subforum.
Post Reply
Mathieulh
Guru
Posts: 49
Joined: Thu Jan 06, 2011 6:17 am
Contact:

PATCHED IPLS for 1.00/1.50 By Mathieulh

Post by Mathieulh » Sat Jan 18, 2020 12:55 pm

I just noticed that some of the PSP Devkit related apps/tools were not present here so I created this thread:
it is based on https://www.obscuregamers.com/threads/p ... eulh.1347/

PATCHED IPLS By Mathieulh



Those are 1.00 and 1.50 patched IPLs, they will load plain (decrypted) modules and config.txt

the ones in the "Dumps 0xbfc00000 to 0x883f0000 and supports plain modules" folder will also copy 0xbfc00000 to 0x883f0000

whereas the ones in "Plain Support with 0xbfc00000 dump and TA082 clockgen fix" add the TA-082 clockgen fix (though this is only relevant for

retail systems, as I only own development units, I tested this patch on a DTP-T1000 system)



The 0x883f0000 address is overwritten on development units and cannot be used to retrieve relevant data (so is 0xBFC00000),

you may however modify the addresses and rebuild the sources and IPL to your liking.



The plain text patch uses the patched payload from https://github.com/mathieulh/150IPL_PLAINMODULES



"Lib-PSP iplloader" contains Special kbooti that only run on development kits, which allow to run/bootstrap decrypted Lib-PSP iplloader code



This follows the project here: https://github.com/mathieulh/Lib-PSP-ip ... -DTP-T1000



Lib-PSP iplloader0.9.0_bfe03000.bin : patched iplloader0.9.0 (used in 0.9.0 to 2.5.0 SDKs to run IPL from 0xBFE03000 (0x3000 in the file)



Tachyon0x00140000i.bin: Tachyon 0x00140000 (TA-079 to TA-081 pre-ipl) patched to run on Development kit.

Tachyon0x00140000i_CS_Mode.bin: Tachyon 0x00140000 (TA-079 to TA-081 pre-ipl) patched to run on Development kit with forced service mode

Tachyon0x00400000i.bin: Tachyon 0x00400000 (TA-082 to TA-088 pre-ipl) patched to run on Development kit with forced service mode

Tachyon0x00400000i_CS_Mode.bin: Tachyon 0x00400000 (TA-082 to TA-088 pre-ipl) patched to run on Development kit with forced service mode



DOWNLOAD LINK:



https://mega.nz/#!kt1TBAIS!6UdxWw_xulrF ... GTBtljDyik



UPDATE: Added patched loadcore for 1.0.2 and 1.0.3 firmware.



UPDATE2: I updated the 1.00 IPLs to use a patched 1.00 payload instead of the a mix between 1.00 main.bin and 1.50 payload as this seems to may have caused incompatibilities on retail systems (it worked on devkit though), this is cleaner either way,(albeit more work for me) since those are full 1.00 IPLs now



UPDATE3: Added IPLs that dump to 0x883e0000 for testing purposes
Advertising
---
PGP Fingerprint: DF46 8C79 5D1A 76FF 75B2 C345 4679 EDEF 1B5B B192
Public Key: https://pgp.mit.edu/pks/lookup?op=get&search=0x1B5BB192

Proof: https://keybase.io/mathieulh

Post Reply

Return to “Programming and Security”