AsbestOS and Geohot?

**stoker25** · 11-04-2010,06:10 AM

Does anybody know if Geohot's exploit was actually patched in 3.20, or just stopped by removing OtherOS?

If it still works in AsbestOS, I think there's some fun to be had ;D

**user** · 11-04-2010,08:05 AM

i don't know if it got removed. Just try it out

if we make a lv2syscall that lets us indirectly call any hvsc, it could be ported to gameos, too

i already tried but my lv2 syscall just returns 0 so i guess i'm doing something wrong.

**stoker25** · 11-04-2010,09:01 AM

Originally Posted by user

i don't know if it got removed. Just try it out

if we make a lv2syscall that lets us indirectly call any hvsc, it could be ported to gameos, too

i already tried but my lv2 syscall just returns 0 so i guess i'm doing something wrong.

I would try it out, but I don't have AsbestOS up and running yet :/

I thought of that idea too, but I wasn't sure how the hypercall would have params/registers passed to and from it... Maybe the code here can help:

Code:

mr    %r3, %r4
mr    %r4, %r5
mr    %r5, %r6
mr    %r6, %r7
mr    %r7, %r8
mr    %r8, %r9
mr    %r9, %r10

Does the jailbreak have some kinda LV1 exploit inside too? I remember reading that hypercall 99 was patched to allow unsigned SELFs, maybe it was just the function in LV2 that uses the hypercall that was patched?

Also, seems I posted this in the wrong section >.> can somebody move it over to the Linux board?

**Jon Salat** · 11-04-2010,10:01 AM

Pretty sure the reason they removed otheros was because they couldn't patch it. It should still work in AsbestOS.

**mеdi01** · 11-04-2010,07:14 PM

How is this connected to AsbestOS please? What stops you from doing the same hv calls from your pkg?

**user** · 11-05-2010,10:19 AM

Originally Posted by mеdi01

What stops you from doing the same hv calls from your pkg?

from gameos we have access to lv2 syscalls. the exploit uses lv1 (hypervisor) syscalls

**iCEQB** · 11-05-2010,12:58 PM

Originally Posted by user

from gameos we have access to lv2 syscalls. the exploit uses lv1 (hypervisor) syscalls

You can talk to lv1 trough lv2 via hypercalls. The geohot exploit is portable to lv2.

**mеdi01** · 11-05-2010,01:31 PM

Originally Posted by user

from gameos we have access to lv2 syscalls. the exploit uses lv1 (hypervisor) syscalls

I didn't ask why you need geohot's exploit.
I asked why do you need AsbestOS.

**iCEQB** · 11-05-2010,01:45 PM

Originally Posted by mеdi01

I didn't ask why you need geohot's exploit.
I asked why do you need AsbestOS.

Maybe because this would make a 100% port of the geohot exploit absolete, because you wouldn't have to port libs and stuff to lv2.
Should be only a matter of optimization.

**Jon Salat** · 11-05-2010,03:46 PM

Here you go, he even refers to this thread

NOTE: Yep, this syscall can be tweaked to let you call any point in LV-1 too, if you have some exploit in it before. This way can create a LV-2 SYSCALL that call any LV-1 point, anyways in this post any LV-1 exploit is explained, it is only the SYSCALL as it. I explain it because i read this post:

Number 9 – Jumper SYSCALL « Ps3mrenigma's Blog

User Tag List

Thread: AsbestOS and Geohot?

Tweet

LinkBack

Thread Tools

Display


	Would you like to get all the new info from PSX-Scene in your email each day? Subscribe to our Daily Digest! Want to learn more about the team keeping you up to date with the latest scene news? Read about them now! Check out our Developer bios, too!