PSP Multi Firmware Mod

[0okm0000]

my 6 set PSP ^o^

1st PSP w/ FW 1.00

2nd PSP w/ FW 1.00 update to 1.50

3rd PSP w/ FW 2.50 Multi Firmware Mod 50% success (can't use FW 2.00, 1.50)
　　　　external FW 2.50, 2.60, 2.70

4th PSP w/ FW 1.51 Multi Firmware Mod 100% success
　　　　external FW 1.50, 2.00, 2.50, 2.60, 2.70

5th PSP w/ FW 2.50 Multi Firmware Mod 50% success (can't use FW 2.00, 1.50)
　　　　external FW 2.50, 2.60, 2.70

6th PSP w/ FW 2.01 Multi Firmware Mod 100% success
　　　　external FW 1.50, 2.00, 2.50, 2.60, 2.70

about 50% success :
in new ver PSP (FW 2.50/2.60 from factory)
it use new "protection"
maybe w/ new bootloader ?
so it can not use old ver FW
if you paste old ver FW in it
it will not boot

new ver PSP (FW 2.50/2.60 from factory)
it just can Upgrade
and can not Downgrade !!



How-To : PSP Multi Firmware Mod
copy PSP internal NAND Flash
program it to a samsung 32MB NAND Flash

wrapping Nand bus for external Firmware

[RanDom_ErrOr]

holy shit mate...interesting that 2.01 and 1.51 works with the other versions of firmware, but 2.5 does not (fully)... perhaps they added some "protection" against flashing the NAND chips on 2.5/2.6 ? (i.e disabling the UMD drive if the version of firmware isnt correct)

[0okm0000]

holy shit mate...interesting that 2.01 and 1.51 works with the other versions of firmware, but 2.5 does not (fully)... perhaps they added some "protection" against flashing the NAND chips on 2.5/2.6 ? (i.e disabling the UMD drive if the version of firmware isnt correct)

2.60 new "protection" :
if you replace the flash0/vsh/etc/index.dat w/ old ver index.dat
when you power-on you will get a error screen

2.50 new "protection" :
if you replace the flash0/vsh/etc/index.dat w/ old ver index.dat
you will can not lunch update EBOOT.PBP

on FW 2.xx you also can not replace [new ver PRX files] with [old ver PRX files]
http://forums.ps2dev.org/viewtopic.php?t=5533

[zshadow]

neat stuff :)

0okm0000 are you able to read the NAND flash of fw 2.6? If so it would be very usefull since we could then get the decryption keys for 2.6 PRX modules

[RanDom_ErrOr]

perhaps some kind of CRC checking of the IPL / NAND on boot up? checks against the "official" CRC to make sure that it matches, if it doesnt, then it doesnt load the correct things?

perhaps $ony was smart and figured we might try this sort of thing...

who knows..

[0okm0000]

PSP Multi Firmware Mod schematic

[0okm0000]

if anyone need 2.60 FW dump
you can use PspPet's PSAR Dumper w/o Decrypte to dump it
the dumped file is same as file in PSP NAND Flash(except "SIG check key")

PspPet's PSAR Dumper 2.0a w/o Decrypte prx file
this is not a new ver !!!
http://rapidshare.de/files/18878374/psa ... e.zip.html

how to generate "SIG check key" for v2 prx ?
http://forums.ps2dev.org/viewtopic.php?t=5533

PSAR Dumper 2.0 (PRX 2.0 format decrypted)
http://forums.ps2dev.org/viewtopic.php?t=3554

[KPOT0B]

Don't you think the eeprom also shall be multiple and dumped?

[shifty]

I just wanted to float my theory that the MAC address of the wifi could
be used at update time to make it difficult to simply transfer the
contents of one PSP's flash to another's.

(That's what I'd do if I were Sony...)

-N

[Art]

Anyone brave enough to swap flash chips could also swap network cards.

[Heroux]

This could have some implications:

- The ability to have two firmwares (FM) on the same machine (best of both worlds: One for homebrew, One for $ony updates).
- The ability to recover bricked PSP ($$$)
- The ability to create custom OS (Linux) -- even ones that do not support game play
- The ability to swap FM whenever :-)
- The ability to crack more recent firmwares without damaging “bricking” PSP

A manufacture could create custom backings for the PSP, which make this process pretter then the one showed above. In the past a little soldering has come with the turf ;-)

This means that keeping a version 1.5 is version important, because you can always keep up with an external firmware (but you cannot if your current firmware is above 2.xx)

How about an extensive tutorial? Keep up the research by all means; I think the results will be great.

- Heroux

[Danny769]

This could have some implications:

- The ability to have two firmwares (FM) on the same machine (best of both worlds: One for homebrew, One for $ony updates).
- The ability to recover bricked PSP ($$$)
- The ability to create custom OS (Linux) -- even ones that do not support game play
- The ability to swap FM whenever :-)
- The ability to crack more recent firmwares without damaging “bricking” PSP

A manufacture could create custom backings for the PSP, which make this process pretter then the one showed above. In the past a little soldering has come with the turf ;-)

This means that keeping a version 1.5 is version important, because you can always keep up with an external firmware (but you cannot if your current firmware is above 2.xx)

How about an extensive tutorial? Keep up the research by all means; I think the results will be great.

- Heroux

Great work

My only worrie is that as soon as the teckneque for make the dule flash gets out, sony will lable it as a mod chip, which it tecquicly would be.

Excuse my bad english, im german

[weltall]

fortunately here sony lost two times aganist modchip :)

[kyriptic]

just curious if this is possible to maybe route the reading from the original and the writing to the new external memory? This way u could run a normal update and maybe have better success of it working on that psp?

[placasoft]

2.60 new "protection" :
if you replace the flash0/vsh/etc/index.dat w/ old ver index.dat
when you power-on you will get a error screen

2.50 new "protection" :
if you replace the flash0/vsh/etc/index.dat w/ old ver index.dat
you will can not lunch update EBOOT.PBP

Hey 0okm,
this is not a new "protection", if you use the 2.50+ index.dat on a 2.0 PSP you will get the same error. Why? Easy as you can see that in the version.txt ( which is the decrypted version of the index.dat) they changed some stuff :

2.7 :

release:2.70:
build:1238,0,3,1,0:builder@vsh-build2
system:33151@release_270,0x02070010:
vsh:p5186@release_270,v22631@release_270,20060420:
target::WorldWide

1.0 :

release:1.00:
build:228,0,3,1,0:root@psp-vsh
system:17919@release_103a,0x01000300:
vsh:p4029@special_day1,v9972@special_day1,20041201:

So, after some test I found out that the PSP will load a decrypted version of index.dat w/o problems. So you should just change it like that :

release:1.00:
build:228,0,3,1,0:root@builder@vsh-build2
system:17919@release_103a,0x01000300:
vsh:p4029@special_day1,v9972@special_day1,20041201:
target::WorldWide

and save it as index.dat. I can't tell you if it works to 100% but it worked with the index.dat from 2.5 ;), but maybe they changed some stuff and the psp looks into the IPL to check the version data ;)

Greetz
Placa

[kuroitenchi]

The index.dat encryption simply changed, that's all.

All the firmware revisions from 1.00 to 2.01 can load decrypted index.dat (aka version.txt) and share the very same index.dat decryption keys while 2.50+ cannot load decrypted index.dat and cannot load old index.dat (featuring another encryption) either. That move was done by sony to prevent downgrading by swaping the index.dat (as it has been done on 2.00)
having a corrupted index.dat in flash0:/vsh/etc/ will result on the psp viewing any eboot/umd (inclueding updaters) as corrupted data and wont load those (this happends on all versions up to 2.50 as far as I could test)

About the using the 2.50 index.dat with 2.00 firmware revision it will for sure see it as corrupted as the 2.00 firmware does not have the required keys to decrypt the new index.dat files as well as the newer firmwares no longuer possess the keys required to decrypt older index.dat or the ability to load those decrypted.

[Ced-2k]

If we can connect directly to the psp flash memory just like you did, is it not possible to flash it directly, instead of using an external flash memory?

Ced

[Stealite]

Escuse me for my bad english...

Your process is it stably ? ( i want mean : it's work 100% )

It's easy to install ? What is difficult ?

Do you think : you will sell the chip ? how many ? where ?

If you sell, do you join with the packet an help for install the chip ?

I have a PsP 2.01, if i install your chip, i will be on 1.50 ? Can i choose with a selector the firware ?

Thx for your answer

++

[0okm0000]

Your process is it stably ? ( i want mean : it's work 100% )
100% work

It's easy to install ? What is difficult ?
difficult - Nand flash bus is 0.1mm

Do you think : you will sell the chip ? how many ? where ?
maybe

If you sell, do you join with the packet an help for install the chip ?
maybe

I have a PsP 2.01, if i install your chip, i will be on 1.50 ? Can i choose with a selector the firware ?
yes

[harleyg]

i find this interesting, so theres some kind of switch which allows you to read it from the flash chip or the external flash chip, yes?
how much would you build me on of these for? i mean, if you made it easyer to install id buy one...

[kuba9449]

I apologize for my weak english, but I have got several questions.
- When will be this chip in sale?
- Will it act on firmware 2.6 and 2.7?
Thanks for answer.

[BiGbrother13]

That's not magic "suppa puppa chip" that will make your PSP 1.5, once installed...
That require expencive hardware equipment (minimum 300$), great skills of using it, and good programming skills. Without that, you will not be able to attach this mod and proprly flash chip.

[Timale-Kun]

I apologize for my weak english, but I have got several questions.
- When will be this chip in sale?
- Will it act on firmware 2.6 and 2.7?
Thanks for answer.

Read the whole thread the process only work at 100% on 1.51 and 2.01, for the others (means 2.01+) -> can't use FW 2.00, 1.50 so why do you ask the question??. and as BiGbrother13 said you have to be very skilled in electronics and programming to do a such thing. but if someone really want to sell this kind of thing, it might be a package. but might not concern the noobs too

[digihoe]

I would like to know if it is possible to make the PSP have more RAM (like 64-512mb), although multiple firmwares are great, I think the PSP would be a much better machine with more RAM...

Best regards!

[Jim]

No.

[dot_blank]

I would like to know if it is possible to make the PSP have more RAM (like 64-512mb), although multiple firmwares are great, I think the PSP would be a much better machine with more RAM...

Best regards!

this would be highly impossible as one you would need
a ram/nand chip from samsung ...you can get one but
only if you buy a couple thousand :)
two ...the psps ram lines look like swiggles, why? you ask
to keep memory latency minimul and to have all lines the
same length to reduce byte polution three you cannot
create/change these lengths of the ram lines and four you
would need a very expensive equipment that nobody has
so forget the idea of more ram ...or try to build your own
dual flash ;) ...this latter method will not increase your ram
by the way but simply allow you to have two seperate ram/nand
accessible with a switch ...McZonk has taken the brave leap
to get a dual flash and its not a simple thing at all ;)

[Stealite]

Hello

Sorry 4 my bad english ^^

I want to know if you work for a new chip with more compatibility with the firware ( 2.5 and + ) ?

A new instalation more easy ? ( do you think it's possible ? )

If you sell the chip, just for know how many did it cost ? ( expensive ? 100$ more, less ? )

Thank a lot 4 your work.

[ooPo]

I'm locking this thread because it seems we're getting random asshats who think this is a modchip in development. Its only going to get worse as it gets linked on more sites.

0okm0000: Feel free to start a new thread if you want to discuss this further, its interesting work and I'd like to see where it goes...