Some troubles with sceLed lib and nidresolver
Some troubles with sceLed lib and nidresolver
Some days ago I've completely reversed the led.prx, the code works but when I've tried to run it the W-LAN led stay on and won't get off, now I've found the problem!
There's some functions from syscon_driver and InterruptManager that have changed they NID's from the previous fw version, but I've thinked that it want be a problem because of Nidresolver, but it apparently won't work and then I've tried to compile the prx with the nid's of it's fw and now it works!
My question is why nidresolver won't handle this nids?
Because are not being loaded or because this calls are not important and then where not "added" to nidresolver ( probable )?
If is possible I want only a explanation, only to understand, nothing esle...
Thanks,
ne0h
			
			
									
									There's some functions from syscon_driver and InterruptManager that have changed they NID's from the previous fw version, but I've thinked that it want be a problem because of Nidresolver, but it apparently won't work and then I've tried to compile the prx with the nid's of it's fw and now it works!
My question is why nidresolver won't handle this nids?
Because are not being loaded or because this calls are not important and then where not "added" to nidresolver ( probable )?
If is possible I want only a explanation, only to understand, nothing esle...
Thanks,
ne0h
Get Xplora!
						Of the imports? They've on SilverSpring's site.
From 4.05/5.00/5.01
I'm guessing the InterruptManagerForKernel ones are the same <3.5x functions, just randomized.
0x668A0FF9 InterruptManagerForKernel_668A0FF9
0xCFFA1857 InterruptManagerForKernel_CFFA1857
Theres an additional unknown import from sceSyscon_driver. Guessing the other two are the same <3.5x ones.
0x42E443D6 sceSyscon_driver_42E443D6
0x4B8F3502 sceSyscon_driver_4B8F3502
0x8A65C819 sceSyscon_driver_8A65C819
Are these unresolved?
			
			
									
									
						From 4.05/5.00/5.01
I'm guessing the InterruptManagerForKernel ones are the same <3.5x functions, just randomized.
0x668A0FF9 InterruptManagerForKernel_668A0FF9
0xCFFA1857 InterruptManagerForKernel_CFFA1857
Theres an additional unknown import from sceSyscon_driver. Guessing the other two are the same <3.5x ones.
0x42E443D6 sceSyscon_driver_42E443D6
0x4B8F3502 sceSyscon_driver_4B8F3502
0x8A65C819 sceSyscon_driver_8A65C819
Are these unresolved?
- 
				Dariusc123456
- Posts: 388
- Joined: Tue Aug 12, 2008 12:46 am
So you are saying every PSP developer (new or not) should release multiple binaries for all possible firmware versions, test each one on all versions for release, as well as provide future updates for new versions - rather than have to reverse to find a couple missed NIDs occasionally and keep overall backwards compatibility? As well as having the makefile/toolchain process that much more complex and needing updates that much more often? (I'd think most would just settle happily for 5.50 psar dumper at this point let alone fully resolved stubs... while 5.51 is already out)phobox wrote:but why not updatng the pspsdk with the feature to resolve the nid at compile time? specifying the fw version in the makefile...
Consider: in a couple weeks time with multiple people contributing in a thread here only a percentage of the NIDs that m33 resolves were done and not in any real usable form... I think it would be more work than required to add all that to the SDK. There was an abandoned pc program that did something similar to what the resolver does.
Finding the correct NID "by hand" and resolving it yourself in your program per version, possibly requesting it be added to the resolver for the future. Not big limits, really, just time consuming. Thank m33 for not exposing more asm illiterates to that painfully slow process.Dariusc123456 wrote:If sony randomize the nids, what limit us using those commands?
Torch wrote:Of the imports? They've on SilverSpring's site.
From 4.05/5.00/5.01
I'm guessing the InterruptManagerForKernel ones are the same <3.5x functions, just randomized.
0x668A0FF9 InterruptManagerForKernel_668A0FF9
0xCFFA1857 InterruptManagerForKernel_CFFA1857
Theres an additional unknown import from sceSyscon_driver. Guessing the other two are the same <3.5x ones.
0x42E443D6 sceSyscon_driver_42E443D6
0x4B8F3502 sceSyscon_driver_4B8F3502
0x8A65C819 sceSyscon_driver_8A65C819
Are these unresolved?
InterruptManagerForKernel_668A0FF9 = resolved (0x8A389411)
InterruptManagerForKernel_CFFA1857 = resolved (0xCA04A2B9)
sceSyscon_driver_42E443D6 = resolved (0xEC37C549)
sceSyscon_driver_4B8F3502 = resolved (0x8EDF1AD7)
sceSyscon_driver_8A65C819 = resolved (0xE00BFC9E)
Davee wrote:Perhaps loaded before nid resolver is active? I dunno.Torch wrote:Whats wrong with his code then?
He hasn't mentioned what he's doing with it. Maybe hes fully rewritten it and replaced the original one in flash0 :S
After which point is the resolver active?
How does the resolver work BTW, is it manually entered for each firmware or is it dynamically built based on analyzing the code?
During the systemctrl is loading. I cannot remember when led.prx is loaded as it hasn't been really much of a "core" module.Torch wrote:Davee wrote:Perhaps loaded before nid resolver is active? I dunno.Torch wrote:Whats wrong with his code then?
He hasn't mentioned what he's doing with it. Maybe hes fully rewritten it and replaced the original one in flash0 :S
After which point is the resolver active?
How does the resolver work BTW, is it manually entered for each firmware or is it dynamically built based on analyzing the code?
It hooks the import linking and basically searches through an onboard structure for nid matches and resolves to the 3.52 nid (or oldest).
- 
				Dariusc123456
- Posts: 388
- Joined: Tue Aug 12, 2008 12:46 am
... Thats exactly what it does in memory when the PRX is loaded.Dariusc123456 wrote:Is it possible to patch the prx nid table with the current nids they should be and not use the nid resolver? Or are they both the same?
What I wanted to know is whether this structure/table is manually updated with the new nids for each firmware or the nidsresolver builds the table at boot by comparing the code to identify the functions, or whether moonlight just uses an automated tool once to build the table first and puts that table in the nidsresolver for that firmware.Davee wrote:It hooks the import linking and basically searches through an onboard structure for nid matches and resolves to the 3.52 nid (or oldest).
					Last edited by Torch on Tue Jun 30, 2009 6:26 pm, edited 1 time in total.
									
			
									
						- 
				Dariusc123456
- Posts: 388
- Joined: Tue Aug 12, 2008 12:46 am
But if the nids are just "randomize", then how come everyone having problems loading the prx modules?Torch wrote:... Thats exactly what it does in memory when the PRX is loaded.Dariusc123456 wrote:Is it possible to patch the prx nid table with the current nids they should be and not use the nid resolver? Or are they both the same?
What I wanted to know is whether this structure/table is manually updated with the new nids for each firmware or the nidsresolver builds the table at boot by comparing the code to identify the functions, or whether moonlight just uses an automated tool once to build the table first and puts that table in the nidsresolver for that firmware.Dariusc123456 wrote:It hooks the import linking and basically searches through an onboard structure for nid matches and resolves to the 3.52 nid (or oldest).
Torch, look at what you put. When did I say "It hooks the import linking and basically searches through an onboard structure for nid matches and resolves to the 3.52 nid (or oldest)."?
PSHN - Playstation Hacking Network
PSX/PS1 - HACK - Game Shark
PS2 - HACK - Swap
PSP - HACK - Pandora
PS3 - ?
						PSX/PS1 - HACK - Game Shark
PS2 - HACK - Swap
PSP - HACK - Pandora
PS3 - ?
Because in the flash0: modules there are many functions and when the NIDs are randomized we don't know which function is the same old function from 3.52 unless we manually compare all the functions to check if its the same. If its the same, then we know that the new NID is a randomized version of the corresponding 3.52 NID.Dariusc123456 wrote:But if the nids are just "randomize", then how come everyone having problems loading the prx modules?
- 
				Dariusc123456
- Posts: 388
- Joined: Tue Aug 12, 2008 12:46 am
Sorry, I've seen the post now...
This is the nid's (of 4.01 ):
			
			
									
									This is the nid's (of 4.01 ):
Code: Select all
sceSyscon_driver_363EF26A
sceSyscon_driver_2B476F99
InterruptManagerForKernel_B940A5BF
InterruptManagerForKernel_169FC5A3Get Xplora!
						Yes that would be your problem. Use the 3.52 nids ;)ne0h wrote:Sorry, I've seen the post now...
This is the nid's (of 4.01 ):Code: Select all
sceSyscon_driver_363EF26A sceSyscon_driver_2B476F99 InterruptManagerForKernel_B940A5BF InterruptManagerForKernel_169FC5A3
prxtool has some of what is needed to resolve many NIDs, as the user exports (used by 'legacy' built UMD games) aren't ever going to be randomized but still correspond to the randomized kernel exports linked to the same binary function. Doesn't cover them all, but it would hit a good many of those in the sdk.
It is also a good argument to try to stick to usermode homebrew, as I said, these NID randomizations shouldn't break those.
			
			
									
									
						Well, it's pretty simple to set up a function pointer, use sceGetVersion and then resolve function address onto the pointer using the correct NID for the version you are using rather than rely solely on internal stub resolution. Still requires updating on each new randomization if it's not added to the resolver, but at least we aren't also updating every single randomized NID that is used.Torch wrote:You can edit the file and put the new NIDs. But your app will work ONLY on that firmware version. See cory's post.
It is also a good argument to try to stick to usermode homebrew, as I said, these NID randomizations shouldn't break those.
I've already resolved, and the problem is that I've used 3.52 nid's on 4.01 then to resolve I've used the 4.01 nid's!Davee wrote:Yes that would be your problem. Use the 3.52 nids ;)ne0h wrote:Sorry, I've seen the post now...
This is the nid's (of 4.01 ):Code: Select all
sceSyscon_driver_363EF26A sceSyscon_driver_2B476F99 InterruptManagerForKernel_B940A5BF InterruptManagerForKernel_169FC5A3
Anyway thanks!!
Get Xplora!
						