search

TheRouletteBoi / RouLetteVshMenu

Playstation 3 VSH Menu, SPRX Loader, Mod Menu Loader, Payload injector, RPC Calls, CEX/DEX/HEN
MIT License
42 stars 10 forks source link

Show LV2 to Text is not working on my side using version 2.1 #6

Closed aldostools closed 2 years ago

aldostools commented 2 years ago

I poked the message "Hello World!" at the LV2 address 0x8000000000000000 using the web command: http://0/poke.lv2?0=Hello+World!

The message does not display and the values are not cleared from memory by the plugin.

I'm using Evilnat 4.88.2 Cobra 8.30. image

TheRouletteBoi commented 2 years ago

I tested your method and also through ps3mapi and both worked. Internal code uses PS3MAPI_OPCODE_LV2_PEEK could that be an issue on CEX?

http://192.168.0.46/setmem.ps3mapi?proc=2&addr=0&val=68656C6C6F2066726F6D206B65726E656C000000 image

http://192.168.0.46/poke.lv2?0=Hello+World! image

aldostools commented 2 years ago

Thank you for your reply. I wonder if you uploaded a version 2.1 without the LV2 to text. The Celcius / Fahrenheit is showing fine.

TheRouletteBoi commented 2 years ago

I actually tested this with the VshFpsCounter sprx you provided with the lastest wMM

aldostools commented 2 years ago

OK. Could you test on CEX?

The VshFpsCounter in wMM is a modified version with the label "Firmware" removed.

TheRouletteBoi commented 2 years ago

It is not working on CEX. Something is resetting the bytes to 00 00 00 00 @ 0x8000000000000000 I even tried to remove the reset code in the sprx and somehow it is still getting reset.

aldostools commented 2 years ago

Could you try reading from a different address?

TheRouletteBoi commented 2 years ago

I've changed the offset from 0x8000000000000000 to 0x8000000000700000 this seems to work on both CEX and DEX. This could be bad if LV2 allocates to that offset or boot_plugins_kernel payload decided to allocate to that offset. I will say this method should be used as just a concep. We should definitely create a cobra opcode with ps3mapi and let xai_plugin handle it as a vsh notfication what do you think?

Test this sprx and report back https://gofile.io/d/QkDpRE

aldostools commented 2 years ago

I tested your new plugin and for some reason it still doesn't show the text.

Maybe the issue is the method that you use to peek the value. Could you use syscall 6 (peek lv2) intead of peek lv2 through ps3mapi?

If check the memory the poked value is not removed by the plugin. image

I don't think xai would be a solution, since I'm looking for a persistent overlay message to show the progress of the content scanning, dumping %, copy progress, etc.

TheRouletteBoi commented 2 years ago

Well I used peek from ps3mapi because of my hen console which I did the tests on.

On my end both this one and previous one are confirmed working. This one is using syscall 6 https://gofile.io/d/ShbNtL

By the way the message is cleared by the plugin after 5 seconds

aldostools commented 2 years ago

Now it's working 😄 THANK YOU!!! ❤️ ❤️ ❤️ ❤️ ❤️

aldostools commented 2 years ago

The message clearing is cool as it is now, but I think it is working as regular popup.

I was looking for something that show the poked value in real time until it is removed by the homebrew. So if I poke 100 messages in minute (e.g. during a copy progress), it display at least 10 or 20 messages (depending of the poll rate that you use).

The idea is to have a "label" not a "msgbox" :-)

aldostools commented 2 years ago

Probably the original address 0x8000000000000000 works with syscall 6

TheRouletteBoi commented 2 years ago

Probably the original address 0x8000000000000000 works with syscall 6

will syscall 6 work on hen though?

aldostools commented 2 years ago

Ahhh I'm not sure... I don't use HEN. I was thinking in using the address also in-game.

TheRouletteBoi commented 2 years ago

is there a reason why your PS3MAPI_OPCODE_LV2_PEEK isn't working?

aldostools commented 2 years ago

On Cobra or HEN or MAMBA?

The implementation is different in each payload

TheRouletteBoi commented 2 years ago

On Cobra and HEN. I tried it on cobra 8.3 and HEN 3.0.3 and both worked fine for me.

aldostools commented 2 years ago

I was using syscall 6 in my test. I only use PS3MAPI opcode if syscalls are disabled.

COBRA

case PS3MAPI_OPCODE_LV2_PEEK:
    return lv1_peekd(param2 + 0x8000000ULL);

HEN

case PS3MAPI_OPCODE_LV2_PEEK:
    return *(uint64_t *)param2;
TheRouletteBoi commented 2 years ago

So should I revert back to PS3MAPI_OPCODE_LV2_PEEK for compatability since you had syscalls disabled?

aldostools commented 2 years ago

What I understood is that it worked when you used syscall 6 (lv2 peek).

TheRouletteBoi commented 2 years ago

for me it had always worked no matter the peek syscall. but for you it only started working with syscall 6

aldostools commented 2 years ago

I only used syscall 7 (lv2 poke). Maybe the ps3mapi opcode in the payload is peeking in a wrong address. It probably worked for you because you tested poking with ps3mapi, which probably poked to the same wrong address.

TheRouletteBoi commented 2 years ago

This version has persistence until message is cleared by the user. https://gofile.io/d/kwUUqG

aldostools commented 2 years ago

This version has persistence until message is cleared by the user. https://gofile.io/d/kwUUqG

Perfect!! 😀

LouisGarry commented 2 years ago

This version has persistence until message is cleared by the user. https://gofile.io/d/kwUUqG

Hi master, this 2.1 version can "Quit Game" PSN PS3 normally. Only when "Disable CFW" appears 1 Chinese character at the top right of the screen and all games don't work.

I'm using HEN 3.0.3

Thanks.

LouisGarry commented 2 years ago

This version has persistence until message is cleared by the user. https://gofile.io/d/kwUUqG

Hi master, this 2.1 version can "Quit Game" PSN PS3 normally. Only when "Disable CFW" appears 1 Chinese character at the top right of the screen and all games don't work.

I'm using HEN 3.0.3

Thanks.

And reboot or turn off seems abnormal, triple beeps.

Thanks.