SceSysmem is a kernel module that acts as the heart of the kernel. It exports multiple libraries for various features. SceSysmem is the first module that is loaded in the kernel load sequence and its libraries are imported by almost all other modules. See Virtual Memory and Physical Memory for more details on the memory subsystem.
Module
This module exists in both non-secure and secure world. The non-secure world SELF can be found in os0:kd/sysmem.skprx
. It also can be found in the Boot Image.
Known NIDs
Version |
Name |
World |
Privilege |
NID
|
1.50 |
SceSysmem |
Non-secure |
Kernel |
0x78D8AA34
|
1.69 |
SceSysmem |
Non-secure |
Kernel |
0xB93950C6
|
3.57 |
SceSysmem |
Non-secure |
Kernel |
0x00CFDC77
|
3.60 |
SceSysmem |
Non-secure |
Kernel |
0x3380B323
|
3.61 |
SceSysmem |
Non-secure |
Kernel |
0x3380B323
|
1.69 |
SceSysmem |
Secure |
Kernel |
0x502BE0E5
|
Libraries
Known NIDs
Types
typedef int threadmgr_core_ctx;
struct tctx_holder
{
int unk0;
int unk4;
int unk8;
int unkC;
int unk10;
int unk14;
int unk18;
int unk1C;
int unk20;
int unk24;
int unk28;
int unk2C;
int unk30;
threadmgr_core_ctx *tctx_34;
};
struct callback_holder1
{
int unk0;
int (*unk4)(void);
int (*unk8)(void);
int (*unkC)(void);
int unk10;
int unk14;
int unk18;
int unk1C;
int (*unk20)(void);
int unk24;
int unk28;
int unk2C;
int unk30;
int unk34;
int unk38;
int (*unk3C)(void);
};
struct callback_holder2
{
int size;
int (__cdecl *unk4)(int result, int *a2);
int (__cdecl *unk8)(SceUID *a1);
int (__cdecl *unkC)(int, int *);
int (__cdecl *sceKernelGetSelfInfoForKernel)(SceUID pid, SceSelfInfo *self_info);
int (__cdecl *sceKernelGetProcessTitleIdForKernel)(SceUID pid, char *titleid, size_t len);
int (__cdecl *unk18)(unsigned int a1);
int (__cdecl *unk1c)(int a1);
};
struct callback_holder3
{
int unk0;
int (*unk4)(void);
int (*unk8)(void);
int (__fastcall *unkC)(int);
int (__fastcall *unk10)(int);
int (*unk14)(void);
};
struct sysbase_t
{
tctx_holder *hldr[6];
char unk[84];
char *sysroot_buffer;
int unk70;
char unk74[616];
char unk2dc[52];
int unk310;
int unk314;
int unk318;
int unk31C;
int unk320;
int unk324;
int unk328;
int unk32C;
int unk330;
int unk334;
int unk338;
int unk33C;
int unk340;
int (__cdecl *GetThreadAccessLevel)();
int unk348;
int (*unk34C_some_callback1)(void);
callback_holder3 *unk350;
int unk354;
callback_holder1 *unk358;
callback_holder2 *unk35C;
int (*unk360)(void);
int (*unk364)(void);
int (__fastcall *unk368)(int, int, int);
char unk36C[20];
int (__cdecl *sceSblLicMgrGetLicenseStatusForDriver)();
int (__cdecl *SceSblPostSsMgrForDriver_22599675)();
int (__cdecl *SceSblPostSsMgrForDriver_9b49c249)();
int (__cdecl *SceSblPostSsMgrForDriver_d8a2d465)(unsigned long long);
int (__cdecl *SceSblPostSsMgrForDriver_abdd68cd)(void *);
int (__cdecl *sceSblUtMgrHasNpTestFlagForDriver)();
int (*SceSblUpdateMgr_smth)(void);
int (*ScePower_smth)(void);
};
typedef int (*SceClassCallback)(void *item);
typedef struct SceClass {
struct SceClass *next;
struct SceClass *root;
struct SceClass *prev;
const char *name;
struct SceClass *uidclass;
unsigned int attributes;
unsigned short itemsize;
unsigned short unk1A;
unsigned int object_type;
SceClassCallback create_cb;
SceClassCallback destroy_cb;
unsigned int magic; /* 0xABCE9DA5 */
} SceClass; /* size = 0x2C */
Memory Block Type
The type
parameter indicates what kind of memory to allocate. Here is a mapping of type
flags to ARM MMU flags. Higher bits are used for other options including where to allocate from. Not all flag values are valid, there is a table of valid types in the kernel. You cannot, for example, allocate RWX memory.
Mask |
Value |
Description
|
0x10000 |
0x10000 |
Global. nG bit NOT set
|
0xFF00 |
0x800 |
B bit set. Sharable device memory.
|
0xFF00 |
0x2000 |
TEX[2] and TEX[0] bit set. Outer cache Write-back, Write-Allocate. Inner cache non-cachable.
|
0xFF00 |
0x4000 |
TEX[2] and B bit set. Outer cache non-cachable. Inner cache Write-back, Write-Allocate
|
0xFF00 |
0x8000 |
TEX[0] bit set. S bit unset. Outer and inner non-cachable. Not sharable.
|
0xFF00 |
0xD000 |
TEX[0] bit set. C,B bits set. Outer and inner Write-back, Write-Allocate.
|
0xFF |
0x4 |
AP[2:0] = 5 , XN=1 . Privileged RO, User NA.
|
0xFF |
0x5 |
AP[2:0] = 5 . Privileged RX, User NA.
|
0xFF |
0x6 |
AP[2:0] = 1 , XN=1 . Privileged RW, User NA.
|
0xFF |
0x7 |
AP[2:0] = 1 . Privileged RWX, User NA. (Never used)
|
0xFF |
0x50 |
AP[2:0] = 7 . Privileged RX, User RX.
|
0xFF |
0x60 |
AP[2:0] = 3 , XN=1 . Privileged RW, User RW.
|
0xFF |
0x40 |
AP[2:0] = 7 , XN=1 . Privileged RO, User RO.
|
Mask |
Value |
Name
|
0x0F000000 |
0x09000000 |
SceKernelUserCdram
|
0x0F000000 |
0x0A000000 |
SceKernelUserShared
|
0x0F000000 |
0x0B000000 |
SceKernelUserIO
|
0x0F000000 |
0x0C000000 |
SceKernelUserMain
|
0x0F000000 |
0x0D000000 |
SceKernelUserUncache
|
0x0F000000 |
0x0E000000 |
SceKernelUserCDialog
|
0x0F000000 |
0x0F000000 |
SceKernelUserCDialogNC
|
SceSysmemForKernel
memcpy_from_paddr
Version |
NID
|
0.990 |
0xF96E3AE2
|
3.60 |
non-secure |
not present
|
// dst must be a vaddr
int memcpy_from_paddr(void *dst, void *paddr, uint32_t size);
sceKernelAllocSystemCallTableForKernel
Version |
NID
|
0.990-3.60 |
0x5FFE4B79
|
// example: SceIntrmgrForKernel_B60ACF4B calls:
// sceKernelAllocSystemCallTableForKernel(0x10009, "SceSyscallTable", 0x1020D006, 4 * a1);
int sceKernelAllocSystemCallTableForKernel(SceUID pid, char *name, uint32_t memblock_type, uint32_t size);
sceKernelUIDEntryHeapGetInfoForKernel
Version |
NID
|
0.990 |
non-secure |
not present
|
3.60 |
0x686AA15C
|
sceKernelNameHeapGetInfoForKernel
Version |
NID
|
0.990 |
non-secure |
not present
|
3.60 |
0xE443253B
|
sceKernelGetFixedHeapInfoByPointerForKernel
Version |
NID
|
0.990-3.60 |
0x219E90FD
|
sceKernelGetHeapInfoByPtrForKernel
Version |
NID
|
0.990 |
non-secure |
not present
|
3.60 |
0x68451777
|
sceKernelGetHeapInfoForKernel
Version |
NID
|
0.990-3.60 |
0x91733EF4
|
sceKernelFreeSimpleMemBlockForKernel
Version |
NID
|
0.990-3.60 |
0xA1FFA2C9
|
sceKernelSysrootAllocForKernel
Version |
NID
|
0.990-3.60 |
0xC0A4D2F3
|
sceGUIDGetObjectWithClassForKernel
Version |
NID
|
0.990-3.60 |
0x7ABFA9A7
|
int sceGUIDGetObjectWithClassForKernel(SceUID uid, SceClass *cls, SceObjectBase **obj);
SceSysmemForKernel_C38D61FC
Version |
NID
|
0.990 |
0xC38D61FC
|
Calls SceSysmemForDriver_89A44858.
sceUIDGetObjectForKernel
Version |
NID
|
0.990 |
0xC4893914
|
SceSysmemForKernel_620E00E7
Version |
NID
|
0.990 |
0x620E00E7
|
SceSysmemForKernel_620E00E7(int a1, int global_id, _DWORD *out);
SceSysmemForKernel_7C797940
Version |
NID
|
0.990 |
0x7C797940
|
Calls SceSysmemForKernel_620E00E7 or SceSysmemForDriver_0F5C84B7.
free
Version |
NID
|
0.990-3.60 |
0xABAB0FAB
|
SceSysmemForKernel_ED221825
Version |
NID
|
0.990-3.60 |
0xED221825
|
Calls sceKernelGUIDGetObjectForDriver.
sceGUIDKernelCreateWithAttrForKernel
Version |
NID
|
0.990-3.60 |
0x53E1FFDE
|
sceGUIDOpenByGUIDForKernel
Version |
NID
|
0.990-3.60 |
0xCF53EEE4
|
sceGUIDGetUIDVectorByClassForKernel
Version |
NID
|
0.990-3.60 |
0xEC7D36EF
|
sceGUIDGetUIDVectorByClass2ForKernel
Version |
NID
|
0.990 |
0xA2F03233
|
3.60 |
non-secure |
not present
|
It is simply a wrapper for sceGUIDGetUIDVectorByClassForKernel.
sceKernelCreateAddressSpaceForKernel
Version |
NID
|
0.990-3.60 |
0x4A3737F0
|
sceKernelDeleteAddressSpaceForKernel
Version |
NID
|
0.990-3.60 |
0xF2D7FE3A
|
sceKernelAddressSpaceFreeAllMemBlockForKernel
Version |
NID
|
0.990-3.60 |
0x89CE1F31
|
sceKernelAddressSpaceSetPhyMemPartForKernel
Version |
NID
|
0.990-3.60 |
0x67955EE9
|
sceKernelAddressSpaceUnmapForKernel
Version |
NID
|
0.990-3.60 |
0xCE72839E
|
sceKernelAddressSpaceVAtoPAForKernel
Version |
NID
|
0.990-3.60 |
0xF2179820
|
sceKernelRxMemcpyKernelToUserForPidForKernel
Version |
NID
|
1.69-3.60 |
0x30931572
|
Unrestricted memcpy to the virtual address space for process pid
. Both dst
and src
must be in the address space of pid
but src
must also be accessible in the address space of the caller. This is normally used for resolving stubs in module loads. Same as write to RO but does a cache flush.
int sceKernelRxMemcpyKernelToUserForPidForKernel(SceUID pid, uintptr_t dst, const void *src, size_t len);
sceKernelFindClassByNameForKernel
Version |
NID
|
3.60 |
0x62989905
|
int sceKernelFindClassByNameForKernel(const char *name, SceClass **class);
sceKernelGetMemBlockTypeForKernel
Version |
NID
|
3.60 |
0x289BE3EC
|
/***
* Gets the memory block type of a memory block
*
* @param[in] uid - SceUID of the memory block
* @param[out] type - Type of the memory block identified by uid
*
* @return 0 on success, < 0 on error.
*/
int sceKernelGetMemBlockTypeForKernel(SceUID uid, unsigned int *type);
sceKernelCreateUidObjForKernel
Version |
NID
|
3.60 |
0xDF0288D7
|
SceUID sceKernelCreateUidObjForKernel(SceClass *class, const char *name, SceCreateUidObjOpt *opt, SceObjectBase **obj);
sceKernelGetUidHeapClassForKernel
Version |
NID
|
3.60 |
0x4CCA935D
|
SceClass *sceKernelGetUidHeapClassForKernel(void);
sceKernelGetUidMemBlockClassForKernel
Version |
NID
|
3.60 |
0xAF729575
|
SceClass *sceKernelGetUidMemBlockClassForKernel(void);
sceKernelGetUidDLinkClassForKernel
Version |
NID
|
3.60 |
0xC105604E
|
SceClass *sceKernelGetUidDLinkClassForKernel(void);
SceSysmemForDriver
Switch TTB For PID
Version |
NID
|
1.69 |
0x6F2ACDAE
|
3.60 |
not present
|
Changes the TTBR to point to the tables for a given PID.
int switch_ttb_for_pid(SceUID pid);
sceKernelRoMemcpyKernelToUserForPidForDriver
Version |
NID
|
1.69 |
0x571D2739
|
3.60 |
not present
|
int sceKernelRoMemcpyKernelToUserForPidForDriver(SceUID pid, void *dst, const void *src, SceSize size);
sceKernelAllocHeapMemoryForDriver
Version |
NID
|
0.990-3.60 |
0x7B4CB60A
|
Temp name was sceKernelMemPoolAlloc.
Calls sceKernelAllocHeapMemoryWithOptionForDriver with a3 = 0.
void* sceKernelAllocHeapMemoryForDriver(SceUID uid, SceSize size);
sceKernelAllocHeapMemoryFromGlobalHeapForDriver
Version |
NID
|
3.60 |
0x7750CEA7
|
Calls sceKernelAllocHeapMemoryForDriver with uid = -1 (global pool uid
).
void* sceKernelAllocHeapMemoryFromGlobalHeapForDriver(SceSize size);
sceKernelAllocHeapMemoryFromGlobalHeapWithOptForDriver
Version |
NID
|
0.990-3.60 |
0x0B4ED16A
|
Calls sceKernelAllocHeapMemoryWithOptionForDriver with uid = -1 (global pool uid
).
typedef struct ctx_49D4DD9B
{
int unk0;
int unk4;
int unk8;
int unkC;
int unk10;
};
void* sceKernelAllocHeapMemoryFromGlobalHeapWithOptForDriver(SceSize size, ctx_49D4DD9B *unk);
sceKernelAllocHeapMemoryWithOpt1ForDriver
Version |
NID
|
3.60 |
0xB415B5A8
|
Same as sceKernelAllocHeapMemoryForDriver
but uses unk2
.
void* sceKernelAllocHeapMemoryWithOpt1ForDriver(SceUID uid, SceSize size, ctx_49D4DD9B *unk2);
sceKernelAllocHeapMemoryWithOptionForDriver
Version |
NID
|
3.60 |
0x49D4DD9B
|
Was named sceKernelAllocHeapMemoryWithOpt2ForDriver.
Same as sceKernelAllocHeapMemoryForDriver
but uses unk2
.
void* sceKernelAllocHeapMemoryWithOpt2ForDriver(SceUID uid, SceSize size, ctx_49D4DD9B *unk2);
sceKernelAllocMemBlockWithInfoForDriver
Version |
NID
|
3.60 |
0xD44F464D
|
Temp name was sceKernelAllocMemBlockExtForDriver. According to logs, maybe it was "sceKernelAllocMemBlockWithInfoForKernel" on FWs pre-0.990.
SceUID sceKernelAllocMemBlockWithInfoForDriver(const char *name, SceKernelMemBlockType type, int size, SceKernelAllocMemBlockKernelOpt *optp, SceKernelPaddrList *out_paddr_list);
sceKernelAllocMemBlockForDriver
Version |
NID
|
1.69-3.60 |
0xC94850C9
|
typedef enum SceKernelAllocMemBlockAttr {
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_PADDR = 0x00000002U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_ALIGNMENT = 0x00000004U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_MIRROR_BLOCKID = 0x00000040U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_PID = 0x00000080U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_PADDR_LIST = 0x00001000U
} SceKernelAllocMemBlockAttr;
struct SceKernelAllocMemKernelBlockOpt_old {
uint32_t size; // 0x34
uint32_t unk;
uint32_t attr;
uint32_t unk2;
uint32_t paddr;
uint32_t align;
uint32_t unk3[3];
uint32_t processid;
uint32_t unk4[3];
};
// specific to 3.60
typedef struct SceKernelAllocMemBlockKernelOpt {
SceSize size; //!< sizeof(SceKernelAllocMemBlockKernelOpt)
SceUInt32 field_4;
SceUInt32 attr; //!< OR of SceKernelAllocMemBlockAttr
SceUInt32 field_C;
SceUInt32 paddr;
SceSize alignment;
SceUInt32 extraLow;
SceUInt32 extraHigh;
SceUInt32 mirror_blockid;
SceUID pid;
SceKernelPaddrList *paddr_list;
SceUInt32 field_2C;
SceUInt32 field_30;
SceUInt32 field_34;
SceUInt32 field_38;
SceUInt32 field_3C;
SceUInt32 field_40;
SceUInt32 field_44;
SceUInt32 field_48;
SceUInt32 field_4C;
SceUInt32 field_50;
SceUInt32 field_54;
} SceKernelAllocMemBlockKernelOpt;
SceUID sceKernelAllocMemBlockForDriver(const char *name, SceKernelMemBlockType type, SceSize size, SceKernelAllocMemBlockKernelOpt *optp);
The interface is the same as the user version of this call, however more types can be specified and more options are in the pOpt argument.
To allocate a kernel RW block of memory, specify type = 0x6020D006
.
To allocate a block of memory with a specific physical address, specify type = 0x20100206
or type = 0x20100806
, pOpt->attr = 2
, and pOpt->paddr = physical address
.
To allocate a block of memory that is kernel executable, specify type = 0x1020D005
.
To allocate a block of memory that is physically contiguous, specify type = 0x30808006
, pOpt->attr = 0x200004
and an alignment to pOpt->alignment
.
To allocate a block of memory inside the CDRAM, specify type = 0x40404006
.
pOpt->attr bitmask
Bitmask
|
Uses
|
0x00000001
|
field_C
|
0x00000002
|
paddr
|
0x00000004
|
alignment
|
0x00000008
|
field_18
|
0x00000010
|
field_1C
|
0x00000020
|
??
|
0x00000040
|
mirror_blockid
|
0x00000080
|
pid
|
0x00001000
|
paddr_list
|
0x00002000
|
field_2C
|
0x00010000
|
field_30
|
sceKernelCreateClassForDriver
Version |
NID
|
3.60 |
0x61317102
|
int sceKernelCreateClassForDriver(SceClass *cls, const char *name, struct SceClass *uid_class, size_t item_size, SceClassCallback create, SceClassCallback destroy);
sceKernelCreateHeapForDriver
Version |
NID
|
1.69-3.60 |
0x9328E0E8
|
struct SceKernelHeapCreateOpt
{
SceSize size; //28
SceUInt32 uselock;
SceUInt32 field_8;
SceUInt32 field_C;
SceUInt32 block_type;
SceUInt32 field_14;
SceUInt32 field_18;
};
int sceKernelCreateHeapForDriver(const char *name, SceSize size, SceKernelHeapCreateOpt *opt); // opt can be NULL
The heap pool is thread safe.
sceKernelCreateUidObjForDriver
Version |
NID
|
3.60 |
0x56A13E90
|
SceUID sceKernelCreateUidObjForDriver(SceClass *cls, const char *name, SceObjectBase **obj);
sceKernelCreateUidObjForUidForDriver
Version |
NID
|
0.990-3.60 |
0x89A44858
|
Calls SceSysmemForKernel_ED221825.
SceUID sceKernelCreateUidObjForUidForDriver(SceClass *cls, const char *name, SceUID uid, SceObjectBase **obj_base);
sceKernelCreateUserUidForClassForDriver
Version |
NID
|
3.60 |
0xCED1547B
|
SceUID sceKernelCreateUserUidForClassForDriver(SceUID pid, SceUID uid, SceClass *cls);
sceKernelCreateUserUidForDriver
Version |
NID
|
3.60 |
0xBF209859
|
SceUID sceKernelCreateUserUidForDriver(SceUID pid, SceUID uid);
sceKernelCreateUserUidForNameForDriver
Version |
NID
|
3.60 |
0x513B9DDD
|
SceUID sceKernelCreateUserUidForNameForDriver(SceUID pid, char *name);
sceKernelCreateUserUidForNameWithClassForDriver
Version |
NID
|
3.60 |
0x8DA0BCA5
|
SceUID sceKernelCreateUserUidForNameWithClassForDriver(SceUID pid, char *name, SceClass *cls);
sceKernelDeleteHeapForDriver
Version |
NID
|
1.69-3.60 |
0xD6437637
|
int sceKernelDeleteHeapForDriver(SceUID pool_uid);
sceKernelDeleteUidForDriver
Version |
NID
|
3.60 |
0x047D32F2
|
sceKernelDeleteUserUidForDriver
Version |
NID
|
3.60 |
0x84A4AF5E
|
int sceKernelDeleteUserUidForDriver(SceUID uid);
sceKernelFindMemBlockByAddrForDefaultSizeForDriver
Version |
NID
|
0.990-3.60 |
0xF3BBE2E1
|
SceUID sceKernelFindMemBlockByAddrForDefaultSizeForDriver(const void *addr);
sceKernelFindMemBlockByAddrForDriver
Version |
NID
|
1.69-3.60 |
0x8A1742F6
|
SceUID sceKernelFindMemBlockByAddrForDriver(const void *addr, SceSize size);
sceKernelFindProcMemBlockByAddrForDriver
Version |
NID
|
0.990-3.60 |
0x857F1D5A
|
Temp name was sceKernelFindMemBlockByAddrForPidForDriver.
SceUID sceKernelFindProcMemBlockByAddrForDriver(SceUID pid, const void *addr, SceSize size);
sceKernelFindMemBlockForDriver
Version |
NID
|
3.57 |
not present, added on 3.60
|
3.60 |
0x9C78064C
|
SceUID sceKernelFindMemBlockForDriver(int flags, void *addr, SceSize size);
sceKernelFindMemBlockForPidForDriver
Version |
NID
|
3.60 |
0x9F6E45E3
|
SceUID sceKernelFindMemBlockForPidForDriver(SceUID pid, int flags, void *base, SceSize size);
sceKernelFirstDifferentBlock32UserForDriver
Version |
NID
|
3.60 |
0xBDA6E42B
|
int sceKernelFirstDifferentBlock32UserForDriver(unsigned int *ptr, int value, int byte_size);
sceKernelFirstDifferentBlock32UserForPidForDriver
Version |
NID
|
1.69-3.60 |
0x8334454F
|
Looks for an integer in userspace.
int sceKernelFirstDifferentBlock32UserForPidForDriver(SceUID pid, unsigned int *ptr, int value, int byte_size);
sceKernelFirstDifferentBlock64UserForDriver
Version |
NID
|
3.60 |
0xBB3B02C2
|
int sceKernelFirstDifferentBlock64UserForDriver(unsigned long long *ptr, int unused, unsigned long long value, int byte_size);
sceKernelFirstDifferentBlock64UserForPidForDriver
Version |
NID
|
3.60 |
0xE83855FD
|
int sceKernelFirstDifferentBlock64UserForPidForDriver(SceUID pid, unsigned long long *ptr, unsigned long long value, int byte_size);
sceKernelFreeHeapMemoryForDriver
Version |
NID
|
0.990-3.60 |
0x3EBCE343
|
Other name sceKernelMemPoolFree.
int sceKernelFreeHeapMemoryForDriver(SceUID pool_uid, void *ptr);
sceKernelFreeHeapMemoryFromGlobalHeapForDriver
Version |
NID
|
3.60 |
0xFB817A59
|
int sceKernelFreeHeapMemoryFromGlobalHeapForDriver(void *ptr);
sceKernelFreeMemBlockForDriver
Version |
NID
|
3.60 |
0x009E1C61
|
int sceKernelFreeMemBlockForDriver(SceUID uid);
sceKernelGetClassForPidForUidForDriver
Version |
NID
|
3.60 |
0xE9728A12
|
int sceKernelGetClassForPidForUidForDriver(SceUID pid, SceUID uid, SceClass **cls);
sceKernelGetClassForUidForDriver
Version |
NID
|
3.60 |
0xC74B0152
|
int sceKernelGetClassForUidForDriver(SceUID uid, SceClass **cls);
sceKernelGetMemBlockPARangeForDriver
Version |
NID
|
0.990-3.60 |
0x98C15666
|
Previous name was sceKernelGetMemBlockAddrPairForUidForDriver
Returns the paddr and size (addrpair) of the memblock if it's physically continuous.
int sceKernelGetMemBlockPARangeForDriver(SceUID uid, SceKernelAddrPair *addrpair);
sceKernelGetMemBlockBaseForDriver
Version |
NID
|
1.69-3.60 |
0xA841EDDA
|
int sceKernelGetMemBlockBaseForDriver(SceUID uid, void **basep);
sceKernelGetMemBlockVBaseForDriver
Version |
NID
|
3.60 |
0xB81CF0A3
|
Wrongly named sceKernelGetMemBlockKernelPageForDriver.
int sceKernelGetMemBlockVBaseForDriver(SceUID uid, void **kernel_page);
sceKernelGetMemBlockMappedBaseForDriver
Version |
NID
|
3.60 |
0x0B1FD5C3
|
int sceKernelGetMemBlockMappedBaseForDriver(SceUID uid, void **basep);
sceKernelGetMemBlockPaddrListForUidForDriver
Version |
NID
|
3.60 |
0x19A51AC7
|
int sceKernelGetMemBlockPaddrListForUidForDriver(SceUID uid, SceKernelPaddrList *list);
sceKernelGetNameForPidByUidForDriver
Version |
NID
|
3.60 |
0x09896EB7
|
int sceKernelGetNameForPidByUidForDriver(SceUID pid, SceUID uid, char **name);
sceKernelGetNameForUid2ForDriver
Version |
NID
|
3.60 |
0xE655852F
|
const char* sceKernelGetNameForUid2ForDriver(SceUID uid);
sceKernelGetNameForUidForDriver
Version |
NID
|
3.60 |
0xA78755EB
|
int sceKernelGetNameForUidForDriver(SceUID uid, char **name);
sceUIDtoObjectForDriver
Version |
NID
|
0.990 |
0xAB7AC3D1
|
Calls SceSysmemForKernel_ED221825.
sceKernelGetObjectForPidForUidForDriver
Version |
NID
|
0.990-3.60 |
0xFE6D7FAE
|
int sceKernelGetObjectForPidForUidForDriver(SceUID pid, SceUID uid, SceObjectBase **obj);
sceKernelGetObjectForUidForAttrForDriver
Version |
NID
|
3.60 |
0xF6DB54BA
|
int sceKernelGetObjectForUidForAttrForDriver(SceUID uid, unsigned int attr, SceObjectBase **obj);
sceGUIDReferObjectWithClassLevelForDriver
Version |
NID
|
0.990-3.60 |
0x77066FD1
|
Temp name was sceKernelGetObjectForUidForClassForAttrForDriver.
int sceGUIDReferObjectWithClassLevelForDriver(SceUID uid, SceClass *cls, unsigned int attr, SceObjectBase **obj);
sceKernelGetObjectForUidForClassForDriver
Version |
NID
|
3.60 |
0x00ED6C14
|
int sceKernelGetObjectForUidForClassForDriver(SceUID uid, SceClass *cls, SceObjectBase **obj);
sceKernelGetObjectForUidForClassTreeForDriver
Version |
NID
|
3.60 |
0x72A98D17
|
int sceKernelGetObjectForUidForClassTreeForDriver(SceUID uid, SceClass *cls, SceObjectBase **obj);
sceKernelGUIDGetObjectForDriver
Version |
NID
|
3.60 |
0x0FC24464
|
Temp name was sceKernelGetObjectForUidForDefaultClassForDriver.
int sceKernelGUIDGetObjectForDriver(SceUID uid, SceObjectBase **obj);
sceKernelGetObjectForUidForDriver
Version |
NID
|
3.60 |
0x0F5C84B7
|
int sceKernelGetObjectForUidForDriver(SceUID uid, SceObjectBase **obj);
sceKernelVAtoPAForDriver
Version |
NID
|
1.69-3.60 |
0x8D160E65
|
Wrongly named sceKernelGetPaddrForDriver.
if (result == 0)
return 0x80020005; // SCE_KERNEL_ERROR_INVALID_FLAGS
return sceKernelCpuGetPaddrWithMaskForKernel(0x33, vaddr, result);
This will write the physical address for a virtual address vaddr
to memory pointed to by result
.
Returns <0 on error, values >=0 indicate success.
int sceKernelVAtoPAForDriver(void *vaddr, void **result);
sceKernelProcModeVAtoPAForDriver
Version |
NID
|
0.990-3.60 |
0x61A67D32
|
Temp name was sceKernelGetPaddrForPidForDriver.
int sceKernelProcModeVAtoPAForDriver(SceUID pid, int maskPAR, void *vaddr, void **paddr);
sceKernelVARangeToPAVectorForDriver
Version |
NID
|
1.69-3.60 |
0xE68BEEBD
|
Temp name was sceKernelGetPaddrListForDriver.
typedef struct SceKernelAddrPair {
uint32_t addr;
uint32_t length;
} SceKernelAddrPair;
typedef struct SceKernelPaddrList {
uint32_t size; // 0x14
uint32_t output_buffer_size;
uint32_t unk;
uint32_t ret_count;
SceKernelAddrPair *output_buffer;
} SceKernelPaddrList;
input.addr = vaddr;
input.length = length;
int sceKernelVARangeToPAVectorForDriver(const SceKernelAddrPair *input, SceKernelPaddrList *list);
This function takes in two parameters: an array of length 2 specifying the virtual address and the size of the block of memory and a request information. The function will write into output_buffer
an array of addr_pair
that encompasses the block of memory specified in the input. req->ret_count
will contain the number of entries written. If output_buffer
is null, it will just write the count.
sceKernelGetPaddrListForLargePageForDriver
Version |
NID
|
3.60 |
0x08A8A7E8
|
int sceKernelGetPaddrListForLargePageForDriver(const SceKernelAddrPair *input, SceKernelPaddrList *list);
sceKernelGetPaddrListForSmallPageForDriver
Version |
NID
|
3.60 |
0x16844CE6
|
int sceKernelGetPaddrListForSmallPageForDriver(const SceKernelAddrPair *input, SceKernelPaddrList *list);
sceKernelGetPaddrPairForDriver
Version |
NID
|
3.60 |
0xAE36C775
|
int sceKernelGetPaddrPairForDriver(SceKernelAddrPair *pair, SceKernelAddrPair *result_pair);
sceKernelGetPaddrPairForLargePageForDriver
Version |
NID
|
3.60 |
0x32257A24
|
int sceKernelGetPaddrPairForLargePageForDriver(SceKernelAddrPair *pair, SceKernelAddrPair *result_pair);
sceKernelGetPaddrPairForSmallPageForDriver
Version |
NID
|
3.60 |
0xB3575090
|
int sceKernelGetPaddrPairForSmallPageForDriver(SceKernelAddrPair *pair, SceKernelAddrPair *result_pair);
sceKernelAddressSpaceVAtoPABySWForDriver
Version |
NID
|
0.990-3.60 |
0x65419BD3
|
Previous name was sceKernelGetPaddrWithSectionTypeCheckForDriver
int sceKernelAddressSpaceVAtoPABySWForDriver(void *vaddr, void **paddr);
sceKernelGetPidContextForDriver
Version |
NID
|
3.60 |
0x2ECF7944
|
struct SceKernelProcessContext
{
SceUInt32 TTBR1;
SceUInt32 DACR;
SceUInt32 CONTEXTIDR;
};
int sceKernelGetPidContextForDriver(SceUID pid, SceKernelProcessContext **ctx);
sceKernelGetUidClassForDriver
Version |
NID
|
3.60 |
0x85336A1C
|
SceClass * sceKernelGetUidClassForDriver();
sceKernelGetUnknownValidPhysAddressSpaceForDriver
Version |
NID
|
3.60 |
0xC9928F5E
|
int sceKernelGetUnknownValidPhysAddressSpaceForDriver(void **start, void **end);
sceKernelIsPaddrWithinSameSectionForUidForDriver
Version |
NID
|
3.60 |
0xF4AD89D8
|
int sceKernelIsPaddrWithinSameSectionForUidForDriver(SceUID pid, int permission_type, void *vaddr, unsigned int len);
sceKernelIsPaddrWithinUnknownValidPhysAddressSpaceForDriver
Version |
NID
|
3.60 |
0xA7C0D1FC
|
int sceKernelIsPaddrWithinUnknownValidPhysAddressSpaceForDriver(void *vaddr);
sceKernelKernelUidForUserUidForClassForDriver
Version |
NID
|
3.60 |
0x184172B1
|
SceUID sceKernelKernelUidForUserUidForClassForDriver(SceUID pid, SceUID user_uid, SceClass *cls);
scePUIDtoGUIDForDriver
Version |
NID
|
3.60 |
0x45D22597
|
Temp name was sceKernelKernelUidForUserUidForDriver.
Process UID to Global UID.
SceUID scePUIDtoGUIDForDriver(SceUID pid, SceUID uid);
sceKernelMapBlockUserVisibleForDriver
Version |
NID
|
3.60 |
0x58D21746
|
int sceKernelMapBlockUserVisibleForDriver(SceUID uid);
sceKernelMapBlockUserVisibleWithFlagForDriver
Version |
NID
|
3.60 |
0x04059C4B
|
int sceKernelMapBlockUserVisibleWithFlagForDriver(SceUID uid, int some_flag);
sceKernelUserMapForDriver
Version |
NID
|
0.990-3.60 |
0x278BC201
|
Wrongly named sceKernelMapUserBlockForDefaultTypeForDriver.
Assigns type 0.
int sceKernelUserMapForDriver(char *name, int permission, void *user_buf, int size, void **kernel_page, int *kernel_size, int *kernel_offset);
sceKernelMapUserBlockForDefaultTypeForPidForDriver
Version |
NID
|
3.60 |
0x0091D74D
|
Assigns type 0.
int sceKernelMapUserBlockForDefaultTypeForPidForDriver(SceUID pid, const char *name, int permission, void *user_buf, int size, void **kernel_page, int *kernel_size, int *kernel_offset);
sceKernelMapUserBlockForDriver
Version |
NID
|
1.69-3.60 |
0x7D4F8B5F
|
Permission is either "1" for read only, no execute or "2"/"3" for read write, no execute. Type is either 0, 1, or 17 and affects the block type. 0 is default. This will allocate kernel memory starting at kernel_page. To get the same memory as the user pointer, add the kernel_offset. kernel_size is how much is allocated.
//this signature is for 1.69
int sceKernelMapUserBlockForDriver(int permission, int type, void *user_buf, int size, void **kernel_page, int *kernel_size, int *kernel_offset);
//this signature is for 3.60 - now allows to give a name
int sceKernelMapUserBlockForDriver(char *name, int permission, int type, void *user_buf, int size, void **kernel_page, int *kernel_size, int *kernel_offset);
sceKernelMemBlockDecRefCounterAndReleaseUidForDriver
Version |
NID
|
3.60 |
0xF50BDC0C
|
int sceKernelMemBlockDecRefCounterAndReleaseUidForDriver(SceUID uid);
sceKernelMemBlockGetInfoExForDriver
Version |
NID
|
3.60 |
0x24A99FFF
|
struct SceKernelMemBlockInfoExDetails
{
SceKernelMemBlockType type;
int unk4;
char *name;
int unkC;
int unk10;
int memblock_some_size;
int extraLow;
int extraHigh;
int unk20;
int unk24;
SceObjectBase *SceUIDPhyMemPartClass_obj;
};
struct SceKernelMemBlockInfoEx
{
int size;
SceKernelMemBlockInfoExDetails details;
int unk30;
int unk34;
int unk38;
int unk3C;
int unk40;
int unk44;
int unk48;
int unk4C;
int unk50;
int unk54;
int unk58;
int unk5C;
int unk60;
int unk64;
int unk68;
int unk6C;
int unk70;
int unk74;
int unk78;
int unk7C;
int unk80;
int unk84;
int unk88;
int unk8C;
int unk90;
int unk94;
int unk98;
int unk9C;
int unkA0;
int unkA4;
int unkA8;
int unkAC;
int unkB0;
int unkB4;
};
int sceKernelMemBlockGetInfoExForDriver(SceUID uid, SceKernelMemBlockInfoEx *info);
sceKernelMemBlockGetInfoExForVisibilityLevelForDriver
Version |
NID
|
3.60 |
0xA73CFFEF
|
int sceKernelMemBlockGetInfoExForVisibilityLevelForDriver(SceUID uid, int vis_level, SceKernelMemBlockInfoEx *opt);
sceKernelMemBlockGetSomeSizeForDriver
Version |
NID
|
3.60 |
0x78337B62
|
int sceKernelMemBlockGetSomeSizeForDriver(SceUID uid, int *some_size);
sceKernelMemBlockIncRefCounterAndReleaseUidForDriver
Version |
NID
|
3.60 |
0xEAF3849B
|
int sceKernelMemBlockIncRefCounterAndReleaseUidForDriver(SceUID uid);
sceKernelMemBlockReleaseForDriver
Version |
NID
|
3.60 |
0x00575B00
|
int sceKernelMemBlockReleaseForDriver(SceUID uid);
sceKernelMemBlockType2MemtypeForDriver
Version |
NID
|
0.990-3.60 |
0x20C811FA
|
int sceKernelMemBlockType2MemtypeForDriver(SceKernelMemBlockType type);
sceKernelMemBlockTypeGetPrivilegesForDriver
Version |
NID
|
3.60 |
0x6A0792A3
|
int sceKernelMemBlockTypeGetPrivilegesForDriver(SceKernelMemBlockType type);
sceKernelMemBlockTypeGetUnknownForDriver
Version |
NID
|
3.60 |
0xCB0F3A33
|
int sceKernelMemBlockTypeGetUnknownForDriver(SceKernelMemBlockType type);
sceKernelMemRangeReleaseForDriver
Version |
NID
|
3.60 |
0x75C70DE0
|
int sceKernelMemRangeReleaseForDriver(void *addr, SceSize size);
sceKernelMemRangeReleaseForPidForDriver
Version |
NID
|
3.60 |
0xA8525B06
|
int sceKernelMemRangeReleaseForPidForDriver(SceUID pid, void *addr, SceSize size);
sceKernelMemRangeReleaseWithPermForDriver
Version |
NID
|
3.60 |
0x22CBE925
|
Decrease references to pages.
int sceKernelMemRangeReleaseWithPermForDriver(SceKernelMemoryRefPerm perm, void *addr, SceSize size);
sceKernelMemRangeRetainForDriver
Version |
NID
|
3.60 |
0x59A4402F
|
int sceKernelMemRangeRetainForDriver(void *addr, SceSize size);
sceKernelMemRangeRetainForPidForDriver
Version |
NID
|
3.60 |
0x659586BF
|
int sceKernelMemRangeRetainForPidForDriver(SceUID pid, void *addr, SceSize size);
sceKernelMemRangeRetainWithPermForDriver
Version |
NID
|
3.60 |
0xBC0A1D60
|
Increase references to pages.
int sceKernelMemRangeRetainWithPermForDriver(SceKernelMemoryRefPerm perm, void *addr, SceSize size);
sceKernelMemcpyKernelToUserForDriver
Version |
NID
|
0.990-3.60 |
0x6D88EF8A
|
Real name might be sceKernelCopyToUserForDriver.
int sceKernelMemcpyKernelToUserForDriver(uintptr_t dst, const void *kern_src, SceSize len);
sceKernelCopyoutProcForDriver
Version |
NID
|
0.990-3.60 |
0x6B825479
|
Temp name was sceKernelMemcpyKernelToUserForPidForDriver.
This will not crash on invalid user pointers, but instead return error.
// src is a kernel address
int sceKernelCopyoutProcForDriver(SceUID pid, void *dst, const void *src, SceSize size);
sceKernelMemcpyKernelToUserForPidUncheckedForDriver
Version |
NID
|
1.69-3.60 |
0xFED82F2D
|
int sceKernelMemcpyKernelToUserForPidUncheckedForDriver(SceUID pid, void *dst, const void *kern_src, SceSize size);
sceKernelMemcpyUserToKernelForDriver
Version |
NID
|
1.69-3.60 |
0xBC996A7A
|
Real name is sceKernelCopyFromUserForDriver.
int sceKernelMemcpyUserToKernelForDriver(void *kern_dst, uintptr_t src, SceSize len);
sceKernelMemcpyUserToKernelForPidForDriver
Version |
NID
|
3.60 |
0x605275F8
|
int sceKernelMemcpyUserToKernelForPidForDriver(SceUID pid, void *kern_dst, uintptr_t src, SceSize len);
Same as sceKernelMemcpyUserToKernelForDriver
, but copies from the specified process.
sceKernelMemcpyUserToUserForDriver
Version |
NID
|
3.60 |
0x1BD44DD5
|
int sceKernelMemcpyUserToUserForDriver(void *dst, const void *src, SceSize size);
sceKernelMemcpyUserToUserForPidForDriver
Version |
NID
|
1.69-3.60 |
0x8E086C33
|
int sceKernelMemcpyUserToUserForPidForDriver(SceUID pid, void *dst, const void *src, SceSize size);
sceKernelOpenUidForNameForDriver
Version |
NID
|
3.60 |
0xD76E7452
|
SceUID sceKernelOpenUidForNameForDriver(char *name);
sceKernelRemapBlockForDriver
Version |
NID
|
1.05 |
0x8D332AE1
|
1.69-3.60 |
0xDFE2C8CB
|
int sceKernelRemapBlockForDriver(SceUID uid, SceKernelMemBlockType type);
This is used to remap RW memory as RX. To do this, first allocate a memory block of type 0x1020D006
. After you are done writing, call this with type
set to 0x1020D005
.
sceKernelSetNameForPidForUidForDriver
Version |
NID
|
3.60 |
0x12624884
|
int sceKernelSetNameForPidForUidForDriver(SceUID pid, SceUID uid, const char *name);
sceKernelSetObjectForUidForDriver
Version |
NID
|
3.60 |
0x4CFA4100
|
int sceKernelSetObjectForUidForDriver(SceUID uid, char *name);
sceKernelStrnlenUserForDriver
Version |
NID
|
1.69-3.60 |
0xB429D419
|
int sceKernelStrnlenUserForDriver(uintptr_t usr_addr, SceSize maxlen);
sceKernelStrnlenUserForPidForDriver
Version |
NID
|
1.69-3.60 |
0x9929EB07
|
int sceKernelStrnlenUserForPidForDriver(SceUID pid, uintptr_t usr_addr, SceSize size);
sceKernelStrncpyKernelToUserForDriver
Version |
NID
|
1.69-3.60 |
0x80BD6FEB
|
int sceKernelStrncpyKernelToUserForDriver(char* usr_dst, const void *kern_src, SceSize maxlen);
sceKernelStrncpyKernelToUserForPidForDriver
Version |
NID
|
1.69-3.60 |
0x75AAF178
|
int sceKernelStrncpyKernelToUserForPidForDriver(SceUID pid, char *usr_dst, const char *kern_src, SceSize size);
sceKernelStrncpyUserToKernelForDriver
Version |
NID
|
1.69-3.60 |
0xDB3EC244
|
int sceKernelStrncpyUserToKernelForDriver(void *kern_dst, uintptr_t usr_src, SceSize maxlen);
sceKernelSwitchPidContextForDriver
Version |
NID
|
3.60 |
0x2D711589
|
int sceKernelSwitchPidContextForDriver(SceKernelProcessContext *new_context, SceKernelProcessContext *prev_context);
sceKernelUidReleaseForDriver
Version |
NID
|
3.60 |
0x149885C4
|
int sceKernelUidReleaseForDriver(SceUID uid);
sceKernelUnmapMemBlockForDriver
Version |
NID
|
3.60 |
0xFFCD9B60
|
int sceKernelUnmapMemBlockForDriver(SceUID uid);
sceKernelGetPhysicalMemoryTypeForDriver
Version |
NID
|
0.990-3.60 |
0x0AAA4FDD
|
Previous name was sceKernelVaddrMaybeGetSectionTypeForDriver
int sceKernelGetPhysicalMemoryTypeForDriver(void *vaddr);
some_memblock_operation
Version |
NID
|
3.60 |
0x13805CA8
|
int some_memblock_operation(SceUID uid, int a2, int a3, int a4);
some_memblock_operation
Version |
NID
|
3.60 |
0x16713BE8
|
Same as above but with different flags.
int some_memblock_operation(SceUID uid, int a2, int a3, int a4);
some_memblock_operation
Version |
NID
|
3.60 |
0x16713BE8
|
Same as above but with different flags.
int some_memblock_operation(SceUID uid, int a2, int a3, int a4);
some_memblock_operation
Version |
NID
|
3.60 |
0x4C584B29
|
Same as above but with different flags.
int some_memblock_operation(SceUID uid, int a2, int a3, int a4);
some_memblock_operation
Version |
NID
|
3.60 |
0x6C76AD89
|
Same as above but with different flags.
int some_memblock_operation(SceUID uid, int a2, int a3, int a4);
some_memblock_operation
Version |
NID
|
3.60 |
0x8C43B052
|
Same as above but with different flags.
int some_memblock_operation(SceUID uid, int a2, int a3, int a4);
memblock_related_operation
Version |
NID
|
3.60 |
0x1EFC96EA
|
int memblock_related_operation(SceUID uid);
memblock_related_operation
Version |
NID
|
3.60 |
0x64DBE472
|
int memblock_related_operation(SceUID uid, int a2);
memblock_related_operation
Version |
NID
|
3.60 |
0x987EE587
|
struct result_987ee587
{
int unk0;
int unk4;
int unk8;
int unkC;
int unk10;
};
int memblock_related_operation(SceUID uid, result_987ee587 *result);
SceSysmemForDriver_856fa2e3
Version |
NID
|
3.60 |
0x856FA2E3
|
int SceSysmemForDriver_856fa2e3(SceUID uid);
SceSysmemForDriver_89475192
Version |
NID
|
3.60 |
0x89475192
|
struct opt_89475192
{
int size;
int unk4;
int unk8;
};
int SceSysmemForDriver_89475192(int a1, opt_89475192 *opt);
SceSysmemForDriver_C50A9C0D
Version |
NID
|
3.60 |
0xC50A9C0D
|
int SceSysmemForDriver_C50A9C0D(SceUID uid, int a2);
SceSysmemForDebugger
This library was removed somewhere between 1.692 and 3.60.
sceKernelIsAccessibleRangeProcForDebugger
Version |
NID
|
0.990-1.50 |
0x01DFC193
|
3.60 |
not present
|
sceKernelIsAccessibleRangeForDebugger
Version |
NID
|
0.990-1.50 |
0xD027761F
|
3.60 |
not present
|
SceSysmem
The SceSysmem library is responsible for both low-level and high-level memory management. There are functions for allocating raw blocks of memory (similar to Linux sbrk
) as well as functions for maintaining a heap-like structure (similar to malloc
) for kernel, however SceLibKernel implements a proper heap and that is used for user code.
sceKernelMapMemBlock
Version |
NID
|
1.69 |
0x7B763A21
|
3.60 |
not present
|
sceKernelRemapMemBlock
Version |
NID
|
1.69 |
0x3B29E0F5
|
3.60 |
not present
|
sceKernelPartialMapMemBlock
Version |
NID
|
1.69 |
0xC0A59868
|
3.60 |
not present
|
sceKernelUnmapMemBlock
Version |
NID
|
1.69 |
0xEE30D976
|
3.60 |
not present
|
sceKernelPartialUnmapMemBlock
Version |
NID
|
1.69 |
0xCA99929B
|
3.60 |
not present
|
sceKernelGetMemBlockInfoByRange
Version |
NID
|
1.69-3.60 |
0x006F3DB4
|
int sceKernelGetMemBlockInfoByRange(void *base, SceSize size, SceKernelMemBlockInfo *info);
sceKernelGetMemBlockInfoByAddr
Version |
NID
|
1.69-3.60 |
0x4010AD65
|
int sceKernelGetMemBlockInfoByAddr(void *base, SceKernelMemBlockInfo *info);
sceKernelGetSubbudgetInfo
Version |
NID
|
1.69-3.60 |
0x832B4A65
|
struct SceSubbudgetInfo
{
int size;
int unk4;
int unk8;
};
int sceKernelGetSubbudgetInfo(int index, SceSubbudgetInfo *info);
sceKernelGetFreeMemorySize
Version |
NID
|
1.69-3.60 |
0x87CC580B
|
int sceKernelGetFreeMemorySize(SceKernelFreeMemorySizeInfo *info);
sceKernelOpenMemBlock
Version |
NID
|
1.69-3.60 |
0x8EB8DFBB
|
SceUID sceKernelOpenMemBlock(const char *name, int flags);
sceKernelFindMemBlockByAddr
Version |
NID
|
1.69-3.60 |
0xA33B99D1
|
SceUID sceKernelFindMemBlockByAddr(const void *addr, SceSize size);
sceKernelFreeMemBlock
Version |
NID
|
0.990-3.60 |
0xA91E15EE
|
int sceKernelFreeMemBlock(SceUID uid);
sceKernelFreeMemBlockForVM
Version |
NID
|
3.60 |
0x4EA13FEA
|
int sceKernelFreeMemBlockForVM(SceUID uid);
sceKernelCloseMemBlock
Version |
NID
|
1.69-3.60 |
0xB680E3A0
|
int sceKernelCloseMemBlock(SceUID uid);
sceKernelGetMemBlockBase
Version |
NID
|
1.69-3.60 |
0xB8EF5818
|
int sceKernelGetMemBlockBase(SceUID uid, void **basep);
sceKernelAllocMemBlock
Version |
NID
|
1.69-3.60 |
0xB9D5EBDE
|
SceUID sceKernelAllocMemBlock(const char *name, SceKernelMemBlockType type, int size, SceKernelAllocMemBlockOpt *optp);
sceKernelAllocUnmapMemBlock
Version |
NID
|
3.60 |
0xEC636BCB
|
int sceKernelAllocUnmapMemBlock(char *name, SceSize size);
sceKernelOpenVMDomain
Version |
NID
|
1.69-3.60 |
0x9CA3EB2B
|
int sceKernelOpenVMDomain();
sceKernelSyncVMDomain
Version |
NID
|
1.69-3.60 |
0x19D2A81A
|
int sceKernelSyncVMDomain(SceUID uid, void *data, SceSize size);
sceKernelCloseVMDomain
Version |
NID
|
1.69-3.60 |
0xD6CA56CA
|
int sceKernelCloseVMDomain();
sceKernelAllocMemBlockForVM
Version |
NID
|
1.69-3.60 |
0xE2D7E137
|
SceUID sceKernelAllocMemBlockForVM(const char *name, SceSize size);
sceKernelCheckModelCapability
Version |
NID
|
3.60 |
0x0144FBD9
|
int sceKernelCheckModelCapability(int bit);
sceKernelGetModelForCDialog
Version |
NID
|
3.60 |
0xA2CB322F
|
int sceKernelGetModelForCDialog();
sceKernelGetModel
Version |
NID
|
3.60 |
0xD0D4F729
|
int sceKernelGetModel();
sceKernelIsPSVitaTV
Version |
NID
|
3.60 |
0x1453A5E5
|
int sceKernelIsPSVitaTV();
SceDipsw
sceKernelCheckDipsw
Version |
NID
|
1.69-3.60 |
0x1C783FB2
|
sceKernelClearDipsw
Version |
NID
|
1.69-3.60 |
0x800EDCC1
|
sceKernelSetDipsw
Version |
NID
|
1.69-3.60 |
0x817053D4
|
SceDipswForDriver
sceKernelCheckDipswForDriver
Version |
NID
|
3.60 |
0xA98FC2FD
|
sceKernelCheckDipswForDriver(int bit);
sceKernelGetDipswInfoForDriver
Version |
NID
|
3.60 |
0xB2AD48BE
|
return *(int *)(dipsw_addr + 4 * info_id);
0 0x40 0x4 DevKit CP timestamp 1
1 0x44 0x2 DevKit CP Version
2 0x46 0x2 DevKit CP Build ID
3 0x48 0x4 DevKit CP timestamp 2 (strangely also set on Retail and TesKit)
int sceKernelGetDipswInfoForDriver(int info_id);
sceKernelClearDipswForDriver
Version |
NID
|
3.60 |
0xF1F3E9FE
|
sceKernelClearDipswForDriver(int bit);
sceKernelSetDipswForDriver
Version |
NID
|
3.60 |
0x82E45FBF
|
sceKernelSetDipswForDriver(int bit);
SceUartForKernel
sceUartWriteForKernel
Version |
NID
|
3.60 |
0x41973874
|
int sceUartWriteForKernel(int device, unsigned char data);
sceUartReadAvailableForKernel
Version |
NID
|
3.60 |
0x38DB7629
|
Returns the number of words available to read from the read FIFO.
int sceUartReadAvailableForKernel(int device);
sceUartReadForKernel
Version |
NID
|
3.60 |
0x9BBF1255
|
int sceUartReadForKernel(int device);
sceUartInitForKernel
Version |
NID
|
3.60 |
0xA9C74212
|
It initializes the clock generator registers for the device
.
The default baud rate is 115200 for devices 0-5 and 250000 for the device 6.
int sceUartInitForKernel(int device);
SceCpu
This library provides wrapper for much ARM CP15 co-processor access as well as low level support of spinlocks and other synchronization primitives.
sceKernelCpuGetCpuId
Version |
NID
|
1.69-3.60 |
0x2704CFEE
|
Return the CPU ID of the current core.
int sceKernelCpuGetCpuId(void);
SceCpuForKernel
sceKernelCpuSaveContextForKernel
Version |
NID
|
0.00 |
0x211B89DA
|
3.60 |
not present
|
sceKernelCpuRestoreContextForKernel
Version |
NID
|
0.00 |
0x0A4F0FB9
|
3.60 |
not present
|
sceKernelCpuGetCONTEXTIDRForKernel
Version |
NID
|
3.60 |
0x5B6B3274
|
The CONTEXTIDR, bits [31:0] contain the process ID number.
return (unsigned __int8)__mrc(15, 0, 13, 0, 1); // Read CONTEXTIDR (Context ID Register)
void sceKernelCpuGetCONTEXTIDRForKernel(void);
sceKernelCpuUpdateSCTLRForKernel
Version |
NID
|
3.60 |
0x04008CF7
|
int result;
result = __mrc(15, 0, 1, 0, 0) | 0x1806; // Read SCTLR (System Control Register)
__mcr(15, 0, result, 1, 0, 0); // Write SCTLR (System Control Register)
return result;
void sceKernelCpuUpdateSCTLRForKernel(void); // SCTLR (System Control Register)
sceKernelCpuBranchPredictorInvalidateAllISForKernel
Version |
NID
|
3.60 |
0x1BB2BB8D
|
void sceKernelCpuBranchPredictorInvalidateAllISForKernel(void); // BPIALLIS, Branch predictor invalidate all (IS)
sceKernelCpuBranchPredictorInvalidateAllForKernel
Version |
NID
|
3.60 |
0x4C4C7D6B
|
void sceKernelCpuBranchPredictorInvalidateAllForKernel(void); // BPIALL, Branch predictor invalidate all
sceKernelCpuDcacheInvalidateMVACForKernel
Version |
NID
|
3.60 |
0x470EAE1E
|
void sceKernelCpuDcacheInvalidateMVACForKernel(int mva); // DCIMVAC, Data cache invalidate by MVA (PoC)
sceKernelCpuDcacheInvalidateMVACRangeForKernel
Version |
NID
|
3.60 |
0x583F30D1
|
void sceKernelCpuDcacheInvalidateMVACRangeForKernel(void *addr, unsigned int size); // DCIMVAC, Data cache invalidate by MVA (PoC)
sceKernelCpuDcacheCleanInvalidateMVACRangeForKernel
Version |
NID
|
3.60 |
0x6BA2E51C
|
void sceKernelCpuDcacheCleanInvalidateMVACRangeForKernel(void *addr, unsigned int size); // DCCIMVAC, Data cache clean and invalidate by MVA (PoC)
sceKernelCpuDcacheInvalidateSWForKernel
Version |
NID
|
3.60 |
0x2F3BF020
|
void sceKernelCpuDcacheInvalidateSWForKernel(void); // DCISW, Data cache invalidate by set/way (all the cache)
sceKernelCpuDcacheCleanSWForKernel
Version |
NID
|
3.60 |
0x73A30DB2
|
void sceKernelCpuDcacheCleanSWForKernel(void); // DCCSW, Data cache clean by set/way (all the cache)
sceKernelCpuDcacheCleanInvalidateSWForKernel
Version |
NID
|
3.60 |
0x76DAB4D0
|
void sceKernelCpuDcacheCleanInvalidateSWForKernel(void); // DCCISW, Data cache clean and invalidate by set/way (all the cache)
sceKernelCpuDcacheCleanMVACForKernel
Version |
NID
|
3.60 |
0xF7159B55
|
void sceKernelCpuDcacheCleanMVACForKernel(int mva); // DCCMVAC, Data cache clean by MVA (PoC)
sceKernelCpuDcacheCleanMVACRangeForKernel
Version |
NID
|
3.60 |
0xC5C1EE4E
|
void sceKernelCpuDcacheCleanMVACRangeForKernel(void *addr, unsigned int size); // DCCMVAC, Data cache clean by MVA (PoC)
sceKernelCpuDcacheCleanInvalidateMVACForKernel
Version |
NID
|
3.60 |
0xC8E8C9E9
|
void sceKernelCpuDcacheCleanInvalidateMVACForKernel(int mva); // DCCIMVAC, Data cache clean and invalidate by MVA (PoC)
sceKernelCpuIcacheInvalidateAllUISForKernel
Version |
NID
|
3.60 |
0x264DA250
|
void sceKernelCpuIcacheInvalidateAllUISForKernel(void); // ICIALLUIS, Instruction cache invalidate all (PoU, IS)
sceKernelCpuIcacheInvalidateAllUForKernel
Version |
NID
|
3.60 |
0xAEE0B489
|
void sceKernelCpuIcacheInvalidateAllUForKernel(void); // ICIALLU, Instruction cache invalidate all (PoU)
sceKernelCpuIcacheInvalidateMVAURangeForKernel
Version |
NID
|
3.60 |
0xF4C7F578
|
void sceKernelCpuIcacheInvalidateMVAURangeForKernel(void *addr, unsigned int size); // ICIMVAU, Instruction cache invalidate by MVA (PoU)
sceKernelCpuIcacheAndL2InvalidateMVAURangeForKernel
Version |
NID
|
3.60 |
0x19F17BD0
|
3.65-3.68 |
0x73E895EA
|
int sceKernelCpuIcacheAndL2InvalidateMVAURangeForKernel(void *addr, unsigned int size);
sceKernelCpuPreloadEngineKill
Version |
NID
|
3.60 |
0xD0D85FF8
|
- NSACR (Non-Secure Access Control Register)
- Test bit NS access to the Preload Engine resources
- [>] PLEFF (Preload Engine FIFO flush operation)
- [>] PLEKC (Preload Engine kill channel operation)
- [<] PLEASR (Preload Engine Activity Status Register)
int sceKernelCpuPreloadEngineKill(void);
sceKernelCpuUnrestrictedMemcpyForKernel
Version |
NID
|
1.69-3.60 |
0x8C683DEC
|
Unrestricted memcpy by first setting the DACR
register to 0xFFFF0000
and then doing a memcpy.
int sceKernelCpuUnrestrictedMemcpyForKernel(void *dst, const void *src, size_t len);
sceKernelMMUVAtoPAWithModeForKernel
Version |
NID
|
3.60 |
0x67343A07
|
Temp name was sceKernelCpuGetPaddrWithMaskForKernel.
maskPAR is usually 0x33, sometimes 2.
int sceKernelMMUVAtoPAWithModeForKernel(int maskPAR, void *vaddr, void **result);
sceKernelCpuGetPaddrForKernel
Version |
NID
|
3.60 |
0x2A46E800
|
Uses maskPAR 0x33.
int sceKernelCpuGetPaddrForKernel(void *vaddr, void **result);
sceKernelCpuForKernel_9B8173F4
Version |
NID
|
3.60 |
0x9B8173F4
|
Might be get_vaddr_memory_type.
Return value can be:
- 2
- 8
- 0x40
- 0x80
- 0xD0
- 0x80022007 (SCE_KERNEL_ERROR_VA2PA_FAULT)
int sceKernelCpuForKernel_9B8173F4(void *vaddr);
SceCpuForKernel_A5C9DBBA
Version |
NID
|
3.60 |
0xA5C9DBBA
|
Uses sceKernelCpuGetCpuIdForDriver, sceKernelCpuAtomicGetAndSub16ForDriver and sceKernelCpuUnlockStoreLRForDriver.
int SceCpuForKernel_A5C9DBBA(void *addr);
SceCpuForKernel_9D72DD1B
Version |
NID
|
3.60 |
0x9D72DD1B
|
Uses sceKernelCpuGetCpuIdForDriver and sceKernelCpuLockStoreLRForDriver.
int SceCpuForKernel_9D72DD1B(void *addr);
SceCpuForKernel_4CD4D921
Version |
NID
|
3.60 |
0x4CD4D921
|
*(uint32_t *)addr = 1;
*((uint16_t *)addr + 2) = 4;
*((uint16_t *)addr + 3) = 4;
return result;
aka write 01 00 00 00 04 00 04 00 at addr.
int SceCpuForKernel_4CD4D921(void *addr);
SceCpuForKernel_43CC6E20
Version |
NID
|
3.60 |
0x43CC6E20
|
Only used by SceKernelThreadmgr.
DACR off
Does some memory copies between the args.
int SceCpuForKernel_43CC6E20(void *addr, int a2, int a3, int a4);
SceCpuUnrestrictedBzeroIntForKernel
Version |
NID
|
3.60 |
0x76EB0DD4
|
Only used by SceKernelThreadmgr.
DACR off
int SceCpuUnrestrictedBzeroIntForKernel(int *addr);
SceCpuForKernel_337473B5
Version |
NID
|
3.60 |
0x337473B5
|
Only used by SceKernelThreadmgr.
DACR off
int SceCpuForKernel_337473B5(volatile void *ptr, unsigned int value);
SceCpuForKernel_37FBFD12
Version |
NID
|
3.60 |
0x37FBFD12
|
Only used by SceKernelThreadmgr.
same as SceCpuForKernel_337473B5 but DACR is not disabled
int SceCpuForKernel_37FBFD12(volatile void *ptr, unsigned int value);
SceCpuForKernel_D37AABE5
Version |
NID
|
3.60 |
0xD37AABE5
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12 but with a3
DACR is not disabled
int SceCpuForKernel_D37AABE5(volatile void *ptr, unsigned int value, int a3);
SceCpuForKernel_4553FBDE
Version |
NID
|
3.60 |
0x4553FBDE
|
Only used by SceKernelThreadmgr.
DACR is not disabled
unsigned __int64 v2;
do
{
v2 = __ldrexd(result);
LODWORD(v2) = a2;
HIDWORD(v2) = a2;
}
while ( __strexd(v2, result) );
return result;
int SceCpuForKernel_4553FBDE(unsigned uint64_t *result, int a2);
SceCpuForKernel_6190A018
Version |
NID
|
3.60 |
0x6190A018
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12
DACR is not disabled
int SceCpuForKernel_6190A018(unsigned __int64 *a1, signed int a2);
SceCpuForKernel_D8A7216C
Version |
NID
|
3.60 |
0xD8A7216C
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12
DACR is not disabled
int SceCpuForKernel_D8A7216C(unsigned __int64 *a1, int a2, int a3);
SceCpuForKernel_7FB4E7AC
Version |
NID
|
3.60 |
0x7FB4E7AC
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12
DACR is not disabled
int SceCpuForKernel_7FB4E7AC(unsigned __int64 *result, int a2);
SceCpuForKernel_8510FA52
Version |
NID
|
3.60 |
0x8510FA52
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12
DACR is not disabled
int SceCpuForKernel_8510FA52(unsigned int *a1);
SceCpuForKernel_5F64E5ED
Version |
NID
|
3.60 |
0x5F64E5ED
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12
DACR is not disabled
int SceCpuForKernel_5F64E5ED(unsigned int *a1);
SceCpuForKernel_98E91C1C
Version |
NID
|
3.60 |
0x98E91C1C
|
Only used by SceKernelThreadmgr.
similar as SceCpuForKernel_37FBFD12
DACR is not disabled
int SceCpuForKernel_98E91C1C(unsigned int *a1, int a2, signed int a3);
SceCpuForKernel_6C7E7B57
Version |
NID
|
3.60 |
0x6C7E7B57
|
a1 = a1 | 0x4A;
return a1;
int SceCpuForKernel_6C7E7B57(int a1);
SceCpuForKernel_9A3281C0
Version |
NID
|
3.60 |
0x9A3281C0
|
*result = 0x810227EC;
*a2 = 0x81022B40;
return result;
int SceCpuForKernel_9A3281C0(int *result_0, int *result_1);
SceCpuForKernel_9CB82EB0
Version |
NID
|
3.60 |
0x9CB82EB0
|
return;
int SceCpuForKernel_9CB82EB0(void);
SceCpuForDriver
sceKernelCpuGetCpuIdForDriver
Version |
NID
|
3.60 |
0x5E4D5DE1
|
Return the CPU ID of the current core.
int sceKernelCpuGetCpuIdForDriver(void);
sceKernelCpuAtomicAddAndGet8ForDriver
Version |
NID
|
3.60 |
0x1E850481
|
unsigned char sceKernelCpuAtomicAddAndGet8ForDriver (unsigned char *addr, unsigned char val);
sceKernelCpuAtomicAddAndGet16ForDriver
Version |
NID
|
3.60 |
0x59F74E94
|
unsigned short sceKernelCpuAtomicAddAndGet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicAddAndGet32ForDriver
Version |
NID
|
3.60 |
0x5F6A8743
|
unsigned int sceKernelCpuAtomicAddAndGet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicAddAndGet64ForDriver
Version |
NID
|
3.60 |
0x4E459A03
|
unsigned long long sceKernelCpuAtomicAddAndGet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicAddUnless8ForDriver
Version |
NID
|
3.60 |
0x5CC62CEC
|
int sceKernelCpuAtomicAddUnless8ForDriver(unsigned char *addr, unsigned char val, unsigned char cmp);
sceKernelCpuAtomicAddUnless16ForDriver
Version |
NID
|
3.60 |
0x0F84AFE9
|
int sceKernelCpuAtomicAddUnless16ForDriver(unsigned short *addr, unsigned short val, unsigned short cmp);
sceKernelCpuAtomicAddUnless32ForDriver
Version |
NID
|
3.60 |
0x1F157DC3
|
int sceKernelCpuAtomicAddUnless32ForDriver(unsigned int *addr, unsigned int val, unsigned int cmp);
sceKernelCpuAtomicAddUnless64ForDriver
Version |
NID
|
3.60 |
0x06CCFA4B
|
int sceKernelCpuAtomicAddUnless64ForDriver(unsigned long long *addr, int unused, unsigned long long val, unsigned long long cmp);
sceKernelCpuAtomicAndAndGet8ForDriver
Version |
NID
|
3.60 |
0x32B62B1A
|
unsigned char sceKernelCpuAtomicAndAndGet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicAndAndGet16ForDriver
Version |
NID
|
3.60 |
0xB281D52A
|
unsigned short sceKernelCpuAtomicAndAndGet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicAndAndGet32ForDriver
Version |
NID
|
3.60 |
0xDF899E4B
|
unsigned int sceKernelCpuAtomicAndAndGet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicAndAndGet64ForDriver
Version |
NID
|
3.60 |
0xD18E7B54
|
unsigned long long sceKernelCpuAtomicAndAndGet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicClearAndGet8ForDriver
Version |
NID
|
3.60 |
0x8E538AB5
|
unsigned char sceKernelCpuAtomicClearAndGet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicClearAndGet16ForDriver
Version |
NID
|
3.60 |
0x6B050D7C
|
unsigned short sceKernelCpuAtomicClearAndGet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicClearAndGet32ForDriver
Version |
NID
|
3.60 |
0x78C1F148
|
unsigned int sceKernelCpuAtomicClearAndGet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicClearAndGet64ForDriver
Version |
NID
|
3.60 |
0x2149CD4C
|
unsigned long long sceKernelCpuAtomicClearAndGet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicClearMask8ForDriver
Version |
NID
|
3.60 |
0x1B3336B0
|
void sceKernelCpuAtomicClearMask8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicClearMask16ForDriver
Version |
NID
|
3.60 |
0x1BE58599
|
void sceKernelCpuAtomicClearMask16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicClearMask32ForDriver
Version |
NID
|
3.60 |
0x4AE1BCC0
|
void sceKernelCpuAtomicClearMask32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicClearMask64ForDriver
Version |
NID
|
3.60 |
0x55760309
|
void sceKernelCpuAtomicClearMask64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicCompareAndSet8ForDriver
Version |
NID
|
3.60 |
0x3627F4E0
|
unsigned char sceKernelCpuAtomicCompareAndSet8ForDriver(unsigned char *addr, unsigned char cmp, unsigned char val);
sceKernelCpuAtomicCompareAndSet16ForDriver
Version |
NID
|
3.60 |
0x6F63F56D
|
unsigned short sceKernelCpuAtomicCompareAndSet16ForDriver(unsigned short *addr, unsigned short cmp, unsigned short val);
sceKernelCpuAtomicCompareAndSet32ForDriver
Version |
NID
|
3.60 |
0xCDA96E81
|
unsigned int sceKernelCpuAtomicCompareAndSet32ForDriver(unsigned int *addr, unsigned int cmp, unsigned int val);
sceKernelCpuAtomicCompareAndSet64ForDriver
Version |
NID
|
3.60 |
0x4B527009
|
unsigned long long sceKernelCpuAtomicCompareAndSet64ForDriver(unsigned long long *addr, int unused, unsigned long long cmp, unsigned long long val);
sceKernelCpuAtomicDecIfPositive8ForDriver
Version |
NID
|
3.60 |
0x45153D4E
|
unsigned char sceKernelCpuAtomicDecIfPositive8ForDriver(unsigned char *addr);
sceKernelCpuAtomicDecIfPositive16ForDriver
Version |
NID
|
3.60 |
0x9A693F5B
|
unsigned short sceKernelCpuAtomicDecIfPositive16ForDriver(unsigned short *addr);
sceKernelCpuAtomicDecIfPositive32ForDriver
Version |
NID
|
3.60 |
0x2A71B03C
|
unsigned int sceKernelCpuAtomicDecIfPositive32ForDriver(unsigned int *addr);
sceKernelCpuAtomicDecIfPositive64ForDriver
Version |
NID
|
3.60 |
0x267D0B33
|
unsigned long long sceKernelCpuAtomicDecIfPositive64ForDriver(unsigned long long *addr);
sceKernelCpuAtomicGetAndAdd8ForDriver
Version |
NID
|
3.60 |
0xFCDCD4DE
|
unsigned char sceKernelCpuAtomicGetAndAdd8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicGetAndAdd16ForDriver
Version |
NID
|
3.60 |
0x225DF91A
|
unsigned short sceKernelCpuAtomicGetAndAdd16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndAdd32ForDriver
Version |
NID
|
3.60 |
0x341B6E81
|
unsigned int sceKernelCpuAtomicGetAndAdd32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndAdd64ForDriver
Version |
NID
|
3.60 |
0x043FD446
|
unsigned long long sceKernelCpuAtomicGetAndAdd64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicGetAndAnd8ForDriver
Version |
NID
|
3.60 |
0xD8E675C0
|
unsigned char sceKernelCpuAtomicGetAndAnd8ForDriver(unsigned char *a1, unsigned char a2);
sceKernelCpuAtomicGetAndAnd16ForDriver
Version |
NID
|
3.60 |
0x4A820BC5
|
unsigned short sceKernelCpuAtomicGetAndAnd16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndAnd32ForDriver
Version |
NID
|
3.60 |
0x10EB35EB
|
unsigned int sceKernelCpuAtomicGetAndAnd32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndAnd64ForDriver
Version |
NID
|
3.60 |
0x18A17E07
|
unsigned long long sceKernelCpuAtomicGetAndAnd64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicGetAndClear8ForDriver
Version |
NID
|
3.60 |
0x382D1466
|
unsigned char sceKernelCpuAtomicGetAndClear8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicGetAndClear16ForDriver
Version |
NID
|
3.60 |
0x8E9C086D
|
unsigned short sceKernelCpuAtomicGetAndClear16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndClear32ForDriver
Version |
NID
|
3.60 |
0xE36F3A46
|
unsigned int sceKernelCpuAtomicGetAndClear32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndClear64ForDriver
Version |
NID
|
3.60 |
0x88BA6002
|
unsigned long long sceKernelCpuAtomicGetAndClear64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicGetAndOr8ForDriver
Version |
NID
|
3.60 |
0xBDF6F8E4
|
unsigned char sceKernelCpuAtomicGetAndOr8ForDriver(unsigned char *var, unsigned char value);
sceKernelCpuAtomicGetAndOr16ForDriver
Version |
NID
|
3.60 |
0x004F09D1
|
unsigned short sceKernelCpuAtomicGetAndOr16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndOr32ForDriver
Version |
NID
|
3.60 |
0x2A40BB93
|
unsigned int sceKernelCpuAtomicGetAndOr32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndOr64ForDriver
Version |
NID
|
3.60 |
0xCB73D6D5
|
unsigned long long sceKernelCpuAtomicGetAndOr64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicGetAndSet8ForDriver
Version |
NID
|
3.60 |
0x29599FC8
|
unsigned char sceKernelCpuAtomicGetAndSet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicGetAndSet16ForDriver
Version |
NID
|
3.60 |
0x085532C8
|
unsigned short sceKernelCpuAtomicGetAndSet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndSet32ForDriver
Version |
NID
|
3.60 |
0x0EE04C03
|
unsigned int sceKernelCpuAtomicGetAndSet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndSet64ForDriver
Version |
NID
|
3.60 |
0xD2DEE625
|
unsigned long long sceKernelCpuAtomicGetAndSet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicGetAndSub8ForDriver
Version |
NID
|
3.60 |
0x7B43D0D7
|
unsigned char sceKernelCpuAtomicGetAndSub8ForDriver (unsigned char *addr, unsigned char val);
sceKernelCpuAtomicGetAndSub16ForDriver
Version |
NID
|
3.60 |
0x3EE9B5B8
|
unsigned short sceKernelCpuAtomicGetAndSub16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndSub32ForDriver
Version |
NID
|
3.60 |
0xF891CF2A
|
unsigned int sceKernelCpuAtomicGetAndSub32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndSub64ForDriver
Version |
NID
|
3.60 |
0xA7585370
|
unsigned long long sceKernelCpuAtomicGetAndSub64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicGetAndXor8ForDriver
Version |
NID
|
3.60 |
0xBAF47F7B
|
unsigned char sceKernelCpuAtomicGetAndXor8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicGetAndXor16ForDriver
Version |
NID
|
3.60 |
0x711801E6
|
unsigned short sceKernelCpuAtomicGetAndXor16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicGetAndXor32ForDriver
Version |
NID
|
3.60 |
0x77E34309
|
unsigned int sceKernelCpuAtomicGetAndXor32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicGetAndXor64ForDriver
Version |
NID
|
3.60 |
0xE212ECAD
|
unsigned long long sceKernelCpuAtomicGetAndXor64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicOrAndGet8ForDriver
Version |
NID
|
3.60 |
0x5D515F1B
|
unsigned char sceKernelCpuAtomicOrAndGet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicOrAndGet16ForDriver
Version |
NID
|
3.60 |
0xADD39B84
|
unsigned short sceKernelCpuAtomicOrAndGet16ForDriver (unsigned short *addr, unsigned short val);
sceKernelCpuAtomicOrAndGet32ForDriver
Version |
NID
|
3.60 |
0xBC248C30
|
unsigned int sceKernelCpuAtomicOrAndGet32ForDriver (unsigned int *addr, unsigned int val);
sceKernelCpuAtomicOrAndGet64ForDriver
Version |
NID
|
3.60 |
0x3E218AF7
|
unsigned long long sceKernelCpuAtomicOrAndGet64ForDriver(unsigned long long *addr, int unused, long long val);
sceKernelCpuAtomicSet8ForDriver
Version |
NID
|
3.60 |
0x0836537E
|
void sceKernelCpuAtomicSet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicSet16ForDriver
Version |
NID
|
3.60 |
0x532CA3E8
|
void sceKernelCpuAtomicSet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicSet32ForDriver
Version |
NID
|
3.60 |
0x3168BC57
|
void sceKernelCpuAtomicSet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicSet64ForDriver
Version |
NID
|
3.60 |
0xC381CE8C
|
void sceKernelCpuAtomicSet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicSetIfGreaterGet8ForDriver
Version |
NID
|
3.60 |
0xC3868071
|
unsigned char sceKernelCpuAtomicSetIfGreaterGet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicSetIfGreaterGet16ForDriver
Version |
NID
|
3.60 |
0x875B094D
|
unsigned short sceKernelCpuAtomicSetIfGreaterGet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicSetIfGreaterGet32ForDriver
Version |
NID
|
3.60 |
0x26F71995
|
unsigned int sceKernelCpuAtomicSetIfGreaterGet32ForDriver(unsigned int *a1, unsigned int val);
sceKernelCpuAtomicSubAndGet8ForDriver
Version |
NID
|
3.60 |
0xEB085370
|
unsigned char sceKernelCpuAtomicSubAndGet8ForDriver(unsigned char *addr, unsigned char val);
sceKernelCpuAtomicSubAndGet16ForDriver
Version |
NID
|
3.60 |
0x515682C9
|
unsigned short sceKernelCpuAtomicSubAndGet16ForDriver(unsigned short *addr, unsigned short val);
sceKernelCpuAtomicSubAndGet32ForDriver
Version |
NID
|
3.60 |
0xA4884C4E
|
unsigned int sceKernelCpuAtomicSubAndGet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicSubAndGet64ForDriver
Version |
NID
|
3.60 |
0xB5F8919C
|
unsigned long long sceKernelCpuAtomicSubAndGet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuAtomicXorAndGet8ForDriver
Version |
NID
|
3.60 |
0x03887992
|
unsigned char sceKernelCpuAtomicXorAndGet8ForDriver (unsigned char *a1, unsigned char a2);
sceKernelCpuAtomicXorAndGet16ForDriver
Version |
NID
|
3.60 |
0x646003D6
|
unsigned short sceKernelCpuAtomicXorAndGet16ForDriver (unsigned short *addr, unsigned short val);
sceKernelCpuAtomicXorAndGet32ForDriver
Version |
NID
|
3.60 |
0x4244BE65
|
unsigned int sceKernelCpuAtomicXorAndGet32ForDriver(unsigned int *addr, unsigned int val);
sceKernelCpuAtomicXorAndGet64ForDriver
Version |
NID
|
3.60 |
0x692C51B3
|
unsigned long long sceKernelCpuAtomicXorAndGet64ForDriver(unsigned long long *addr, int unused, unsigned long long val);
sceKernelCpuDcacheAndL2InvalidateMVACRange_1ForDriver
Version |
NID
|
3.60 |
0x02796361
|
1
int sceKernelCpuDcacheAndL2InvalidateMVACRange_1ForDriver(void *ptr, size_t len);
sceKernelCpuDcacheAndL2InvalidateMVACRange_20ForDriver
Version |
NID
|
3.60 |
0x8B4C26DF
|
0x20
int sceKernelCpuDcacheAndL2InvalidateMVACRange_20ForDriver(void *ptr, size_t len);
sceKernelCpuDcacheAndL2CleanInvalidateMVACRange_1ForDriver
Version |
NID
|
3.60 |
0x364E68A4
|
1
int sceKernelCpuDcacheAndL2CleanInvalidateMVACRange_1ForDriver(void *ptr, size_t len);
sceKernelCpuDcacheAndL2CleanInvalidateMVACRange_20ForDriver
Version |
NID
|
3.60 |
0xE551F99B
|
0x20
int sceKernelCpuDcacheAndL2CleanInvalidateMVACRange_20ForDriver(void *ptr, size_t len);
sceKernelDcacheCleanRangeCoreForDriver
Version |
NID
|
3.60 |
0x103872A5
|
Temp named sceKernelCpuDcacheAndL2CleanMVACRange_1ForDriver.
1
int sceKernelDcacheCleanRangeCoreForDriver(void *ptr, size_t len);
sceKernelCpuDcacheAndL2CleanMVACRange_20ForDriver
Version |
NID
|
3.60-3.68 |
0x9CB9F0CE
|
also called ksceKernelCpuDcacheWritebackRange, flush_dcache.
0x20
int sceKernelCpuDcacheAndL2CleanMVACRange_20ForDriver(void *ptr, size_t len);
SceCpuForDriver_E813EBB2
Version |
NID
|
3.60 |
0xE813EBB2
|
#define SceL2CacheReg 0x1A002000
__dsb();
*(int *)(SceL2CacheReg + 0x730) = 0;
while ( *(int *)(SceL2CacheReg + 0x730) & 1 )
;
__dmb();
int SceCpuForDriver_E813EBB2(void);
sceKernelCpuIsVaddrMappedForDriver
Version |
NID
|
3.60 |
0x337CBDF3
|
res = SceCpuForKernel_9B8173F4(vaddr);
if ( res != 8 )
{
if ( res <= 8 )
{
if ( res != 2 )
return 0;
}
else if ( res != 0x40 && res != 0x80 )
{
return 0;
}
}
return 1;
int sceKernelCpuIsVaddrMappedForDriver(void *vaddr);
These functions implement a simple mutual exclusive access on a resource addr using LDREX/STREX.
sceKernelCpuLockStoreLRForDriver
Version |
NID
|
1.60-3.60 |
0xBF82DEB2
|
void sceKernelCpuLockStoreLRForDriver(unsigned int *addr);
sceKernelCpuTryLockStoreLRForDriver
Version |
NID
|
3.60 |
0x5AC9D394
|
unsigned int sceKernelCpuTryLockStoreLRForDriver(unsigned int *addr);
sceKernelCpuUnlockStoreLRForDriver
Version |
NID
|
1.60-3.60 |
0xD6ED0C46
|
void sceKernelCpuUnlockStoreLRForDriver(unsigned int *addr);
sceKernelCpuLockStoreFlagForDriver
Version |
NID
|
3.60 |
0x3F42B434
|
void sceKernelCpuLockStoreFlagForDriver(unsigned int *result);
sceKernelCpuTryLockStoreFlagForDriver
Version |
NID
|
3.60 |
0x4F7790B4
|
unsigned int sceKernelCpuTryLockStoreFlagForDriver(unsigned int *addr);
sceKernelCpuUnlockStoreFlagForDriver
Version |
NID
|
3.60 |
0xCB8ABDF0
|
void sceKernelCpuUnlockStoreFlagForDriver(unsigned int *addr);
These functions implement a simple mutual exclusive access on a resource addr using LDREX/STREX.
LR is stored as addr value.
While mutex is held, interrupts are disabled.
Used like this:
int prev_state = sceKernelCpuLockSuspendIntrStoreLRForDriver(mutex);
// do work
sceKernelCpuUnlockResumeIntrStoreLRForDriver(mutex, prev_state);
sceKernelCpuLockSuspendIntrStoreLRForDriver
Version |
NID
|
3.35-3.60 |
0xD32ACE9E
|
unsigned int sceKernelCpuLockSuspendIntrStoreLRForDriver(unsigned int *addr);
sceKernelCpuTryLockSuspendIntrStoreLRForDriver
Version |
NID
|
3.60 |
0x27C0B340
|
unsigned int sceKernelCpuTryLockSuspendIntrStoreLRForDriver(int *addr);
sceKernelCpuUnlockResumeIntrStoreLRForDriver
Version |
NID
|
3.35-3.60 |
0x7BB9D5DF
|
void sceKernelCpuUnlockResumeIntrStoreLRForDriver(unsigned int *addr, int prev_state);
These functions implement a simple mutual exclusive access on a resource addr using LDREX/STREX.
0x80000000 is stored as addr value.
While mutex is held, interrupts are disabled.
Used like this:
int prev_state = sceKernelCpuLockSuspendIntrStoreFlagForDriver(mutex);
// do work
sceKernelCpuUnlockResumeIntrStoreFlagForDriver(mutex, prev_state);
sceKernelCpuLockSuspendIntrStoreFlagForDriver
Version |
NID
|
3.35-3.60 |
0x4C38CE4D
|
unsigned int sceKernelCpuLockSuspendIntrStoreFlagForDriver(unsigned int *addr);
sceKernelCpuTryLockSuspendIntrStoreFlagForDriver
Version |
NID
|
3.60 |
0xDE6482C6
|
unsigned int sceKernelCpuTryLockSuspendIntrStoreFlagForDriver(unsigned int *addr);
sceKernelCpuUnlockResumeIntrStoreFlagForDriver
Version |
NID
|
3.35-3.60 |
0x9EC91017
|
void sceKernelCpuUnlockResumeIntrStoreFlagForDriver(unsigned int *addr, unsigned int prev_state);
sceKernelCpuSpinLockStoreLRForDriver
Version |
NID
|
3.60 |
0xCAC9AE80
|
void sceKernelCpuSpinLockStoreLRForDriver(unsigned int *result);
sceKernelCpuTrySpinLockStoreLRForDriver
Version |
NID
|
3.60 |
0x093925BD
|
unsigned int sceKernelCpuTrySpinLockStoreLRForDriver(unsigned int *addr);
sceKernelCpuSpinUnlockStoreLRForDriver
Version |
NID
|
3.60 |
0xF5FD5676
|
void sceKernelCpuSpinUnlockStoreLRForDriver(unsigned int *result);
sceKernelCpuSpinLockSuspendIntrStoreLRForDriver
Version |
NID
|
3.60 |
0xEC53D007
|
unsigned int sceKernelCpuSpinLockSuspendIntrStoreLRForDriver(unsigned int *addr);
sceKernelCpuTrySpinLockSuspendIntrStoreLRForDriver
Version |
NID
|
3.60 |
0xF02467D1
|
unsigned int sceKernelCpuTrySpinLockSuspendIntrStoreLRForDriver(unsigned int *addr);
sceKernelCpuSpinUnlockResumeIntrStoreLRForDriver
Version |
NID
|
3.60 |
0x740A0750
|
void sceKernelCpuSpinUnlockResumeIntrStoreLRForDriver(unsigned int *addr, unsigned int prev_state);
sceKernelCpuDisableInterruptsForDriver
Version |
NID
|
1.60 |
0x821FC0EE
|
3.60 |
0x821FC0EE
|
Disable irq (but not fiq) and returns previous interrupt bit status (so either 0 or 0x80).
unsigned int sceKernelCpuDisableInterruptsForDriver(void);
sceKernelCpuEnableInterruptsForDriver
Version |
NID
|
1.60 |
0xF5BAD43B
|
3.60 |
0xF5BAD43B
|
Restore previous irq state, pass either 0 or 0x80.
unsigned int sceKernelCpuEnableInterruptsForDriver(unsigned int prev_state);
SceSysclibForKernel
Was present on 1.69. Doesn't exist on 3.60.
SceSysclibForKernel_E38E7605
Version |
NID
|
1.50 |
0xE38E7605
|
SceSysclibForKernel_F7E34376
Version |
NID
|
1.50 |
0xF7E34376
|
SceSysclibForKernel_FA746181
Version |
NID
|
1.50 |
0xFA746181
|
SceSysclibForDriver
The C standard library for use in kernel only. (Userland have SceLibKernel, which confusingly is userland only).
Include standard string functions (no insecure variants like strcpy
).
__aeabi_idiv
Version |
NID
|
3.60 |
0x2518CD9E
|
__aeabi_uidiv
Version |
NID
|
1.50-3.60 |
0xA9FF1205
|
__aeabi_uidivmod
Version |
NID
|
1.50-3.60 |
0xA46CB7DE
|
__aeabi_ldivmod
Version |
NID
|
3.60 |
0x7554AB04
|
__memcpy_chk
Version |
NID
|
3.60 |
0x8A0B0815
|
__memmove_chk
Version |
NID
|
3.60 |
0x35DBB110
|
__memset_chk
Version |
NID
|
3.60 |
0x1A30BB28
|
__stack_chk_fail
Version |
NID
|
1.50-3.60 |
0xB997493D
|
__strncat_chk
Version |
NID
|
3.60 |
0x33EE298B
|
__strncpy_chk
Version |
NID
|
3.60 |
0x96268C53
|
look_ctype_table
Version |
NID
|
3.60 |
0xCDF7F155
|
memchr
Version |
NID
|
3.60 |
0x60DAEA30
|
memcmp
Version |
NID
|
3.60 |
0xB5A4D745
|
timing constant memcmp
memcmp2
Version |
NID
|
1.69-3.60 |
0xF939E83D
|
memcpy
Version |
NID
|
1.50-3.60 |
0x40C88316
|
memmove
Version |
NID
|
1.50-3.60 |
0x6CC9C1A1
|
On 1.69, this seems to be implemented incorrectly.
memset
Version |
NID
|
1.60-3.60 |
0x0AB9BF5C
|
memset2
Version |
NID
|
1.50-1.69 |
0x502B000D
|
3.60 |
not present
|
rshift
Version |
NID
|
1.69-3.60 |
0x1D89F6C0
|
snprintf
Version |
NID
|
1.69-3.60 |
0xAE7A8981
|
strchr
Version |
NID
|
1.50-3.60 |
0x38463759
|
strcmp
Version |
NID
|
1.69-3.60 |
0x0B33BC43
|
strlcat
Version |
NID
|
3.60 |
0x12504E09
|
strlcpy
Version |
NID
|
3.60 |
0x7FB4EBEC
|
strlen
Version |
NID
|
1.69-3.60 |
0xCFC6A9AC
|
strncat
Version |
NID
|
1.69-3.60 |
0xA1D1C32C
|
strncmp
Version |
NID
|
1.60-3.60 |
0x12CEE649
|
strncpy
Version |
NID
|
3.60 |
0x6D286146
|
strnlen
Version |
NID
|
1.69-3.60 |
0xCD4BD884
|
strrchr
Version |
NID
|
1.69-3.60 |
0x7F0E0835
|
strstr
Version |
NID
|
1.69-3.60 |
0x1304A69D
|
strtol
Version |
NID
|
1.69-3.60 |
0xAB77C5AA
|
strtoll
Version |
NID
|
3.60 |
0x87AAAFA2
|
strtoul
Version |
NID
|
3.60 |
0x4E5042DA
|
tolower
Version |
NID
|
3.60 |
0x0021DAF9
|
toupper
Version |
NID
|
3.60 |
0xA685DCB1
|
vsnprintf
Version |
NID
|
3.60 |
0x3DDBE2E1
|
SceSysrootForKernel
sceKernelSysrootGetSharedMemoryForKernel
Version |
NID
|
0.990-3.60 |
0xC8C8C321
|
sceKernelSysrootGetPUIDEntryHeapForKernel
Version |
NID
|
0.990-3.60 |
0x88DE85EF
|
sceKernelSysrootGetStatusForKernel
Version |
NID
|
0.990-3.60 |
0x5C426B19
|
sceKernelSysrootIofilemgrStartForKernel
Version |
NID
|
0.990-3.60 |
0xF6A6D205
|
sceKernelSysrootGetCurrentUIDEntryHeapCBForKernel
Version |
NID
|
0.990-3.60 |
0xB4C24588
|
sceKernelSysrootGetCurrentAddressSpaceCBForKernel
Version |
NID
|
0.990-3.60 |
0x63EBB05B
|
sceKernelSysrootAppMgrSpawnProcessForKernel
Version |
NID
|
0.990-3.60 |
0x3ACACD22
|
sceSysrootGetSmSelfInfoForKernel
Version |
NID
|
3.60 |
0xF10AB792
|
typedef struct sm_self_info
{
uint32_t size; // 0x0C
char* sm_self_data;
uint32_t sm_self_size;
} sm_self_info;
int sceSysrootGetSmSelfInfoForKernel(int index, sm_self_info* state);
Index |
SM SELF location
|
0 |
os0:sm/gcauthmgr_sm.self
|
1 |
os0:sm/rmauth_sm.self
|
2 |
os0:sm/encdec_w_portability_sm.self
|
sceSysrootGetSelfAuthInfoForKernel
Version |
NID
|
0.990-3.60 |
0x4F0A4066
|
typedef struct SceSelfAuthInfo // size is 0x90
{
SceUInt64 program_authority_id;
uint8_t padding1[8];
uint8_t capability[0x20];
uint8_t attribute[0x20];
uint8_t padding2[0x10];
uint8_t klicensee[0x10];
uint32_t unk_70;
uint32_t unk_74;
uint32_t unk_78;
uint32_t unk_7C;
uint32_t unk_80; // ex: 0x10
uint32_t unk_84;
uint32_t unk_88;
uint32_t unk_8C;
} SceSelfAuthInfo;
int sceSysrootGetSelfAuthInfoForKernel(SceUID pid, SceSelfInfo *self_info);
sceSysrootGetProcessTitleIdForPidForKernel
Version |
NID
|
3.60 |
0xEC3124A3
|
int sceSysrootGetProcessTitleIdForPidForKernel(SceUID pid, char *titleid, size_t len);
sceSysrootGetNidNameForKernel
Version |
NID
|
3.60 |
0x0B79E220
|
int sceSysrootGetNidNameForKernel(unsigned int nid, const char **name);
sceSysrootGetModuleInfoForPidForKernel
Version |
NID
|
3.60 |
0xFF9F80FF
|
Returns export info at address for pid (contains module, lib and NID and their names).
int sceSysrootGetModuleInfoForPidForKernel(SceUID pid, const void *addr, unsigned int *info); // info[0] = 0x3C
sceKernelSysrootGetVbaseResetVectorForKernel
Version |
NID
|
0.990-3.60 |
0xCC85905B
|
Returns the exception vectors base address. The address of the exception vectors for the CPU i
is: sceKernelSysrootGetVbaseResetVectorForKernel() + 0x40 * i
.
void *sceKernelSysrootGetVbaseResetVectorForKernel(void);
SceSysrootForKernel_377895EB
Version |
NID
|
3.60 |
0x377895EB
|
int SceSysrootForKernel_377895EB(int *a1);
Returns 0 on success, 0xFFFFFFFF on error.
a1 usually takes value 1 after this function is called.
Called by sceSblAuthMgrAuthHeaderForKernel before F00D request.
sceSysrootGetSysbaseForKernel
Version |
NID
|
3.60 |
0x3E455842
|
sysbase_t* sceSysrootGetSysbaseForKernel();
sceKernelSysrootGetKblParamForKernel
Version |
NID
|
3.60 |
0x9DB56D1F
|
Temp name was sceSysrootGetSysrootBufferForKernel.
Returns pointer to Sysroot buffer.
SceBootArgs *sceKernelSysrootGetKblParamForKernel(void);
sceSysrootGetFactorySystemSwVersionForKernel
Version |
NID
|
3.60 |
0xD3872270
|
return (int)(sysroot_buffer->factory_fw_version);
int sceSysrootGetFactorySystemSwVersionForKernel(void);
sceSysrootGetUnkCForKernel
Version |
NID
|
3.60 |
0xFFD6E24D
|
return (int)(sysroot_buffer->unk_C);
int sceSysrootGetUnkCForKernel(void);
sceSysrootGetUnk10ForKernel
Version |
NID
|
3.60 |
0x403B509E
|
return (int)(sysroot_buffer->unk_C + 4);
int sceSysrootGetUnk10ForKernel(void);
sceSysrootGetUnkC0ForKernel
Version |
NID
|
3.60 |
0xAB3CC7D0
|
return sysroot_buffer->unk_C0;
int sceSysrootGetUnkC0ForKernel(void);
sceSysrootGetWakeupFactorForKernel
Version |
NID
|
3.60 |
0x2F97041A
|
return sysroot_buffer->wakeup_factor;
int sceSysrootGetWakeupFactorForKernel(void);
sceSysrootGetHardwareInfoForKernel
Version |
NID
|
3.60 |
0x930B1342
|
return sysroot_buffer->hardware_info;
int sceSysrootGetHardwareInfoForKernel(void);
sceSysrootGetSessionIdForKernel
Version |
NID
|
3.60 |
0x84783B71
|
Writes sysroot_buffer->session_id to buffer.
Buffer size is 0x10.
int sceSysrootGetSessionIdForKernel(char *buffer);
sceSysrootGetHardwareFlagsForKernel
Version |
NID
|
3.60 |
0x46E72428
|
Writes sysroot_buffer->hardware_flags to buffer.
Buffer size is 0x10.
int sceSysrootGetHardwareFlagsForKernel(char *buffer);
sceSysrootIsExternalBootModeForKernel
Version |
NID
|
3.60 |
0x89D19090
|
return *(int *)(sysroot_buffer->boot_type_indicator_1) & 1;
int sceSysrootIsExternalBootModeForKernel(void);
sceKernelIsSomeBootModeForKernel
Version |
NID
|
3.60 |
0x7B7F8171
|
return (*(int *)(sysroot_buffer->boot_type_indicator_1) >> 19) & 1;
int sceSysrootIsSomeBootModeForKernel(void);
sceKernelIsColdBootForKernel
Version |
NID
|
0.990-3.60 |
0xD7198963
|
return (*(int *)(sysroot_buffer) + 0x28) & 10;
int sceKernelIsColdBootForKernel(void);
sceSysrootIsSomeBootMode2ForKernel
Version |
NID
|
3.60 |
0x7918D44E
|
return sysroot_buffer->boot_type_indicator_1[2] & 1;
int sceSysrootIsSomeBootMode2ForKernel(void);
sceSysrootIsSomeModeForKernel
Version |
NID
|
3.60 |
0xAE7A8F1D
|
Returns true if (sysroot->boot_flags[0x1] != 0xFF).
int sceSysrootIsSomeModeForKernel(void);
sceSysrootIsSomeModeForKernel
Version |
NID
|
3.60 |
0xAE7A8F1D
|
Returns true if (sysroot->boot_flags[0x1] != 0xFF).
int sceSysrootIsSomeModeForKernel(void);
sceKernelSysrootIsSafeModeForKernel
Version |
NID
|
0.990-3.60 |
0x834439A7
|
int sceKernelSysrootIsSafeModeForKernel(void);
sceSysrootIsUpdateModeForKernel
Version |
NID
|
3.60 |
0xB0E1FC67
|
int sceSysrootIsUpdateModeForKernel(void);
sceSysrootIsBsodRebootForKernel
Version |
NID
|
3.60 |
0x4373AC96
|
return (*(int *)(sysroot_buffer->wakeup_factor) & 0x7Fu) <= 0x17;
int sceSysrootIsBsodRebootForKernel(void);
sceSysrootIsUsbEnumWakeupForKernel
Version |
NID
|
3.60 |
0x79C9AE10
|
if ( *(int *)(sysroot_buffer->unk_C0) & 0x90000 )
result = 1;
else
result = (*(int *)(sysroot_buffer->wakeup_factor) & 0x7Fu) <= 0xF;
return result;
int sceSysrootIsUsbEnumWakeupForKernel(void);
sceSysrootIsUnknownRebootForKernel
Version |
NID
|
3.60 |
0xE4EA1960
|
return (*(int *)(sysroot_buffer->wakeup_factor) & 0x7Fu) <= 1;
int sceSysrootIsUnknownRebootForKernel(void);
sceSysrootUseExternalStorageForKernel
Version |
NID
|
3.60 |
0x55392965
|
Returns true when Manufacturing Mode flag is set:
return (*(int *)(sysroot_buffer->boot_type_indicator_1) >> 2) & 1;
int sceSysrootUseExternalStorageForKernel(void);
sceSysrootUseInternalStorageForKernel
Version |
NID
|
3.60 |
0x50FE3B4D
|
Returns true when use internal storage flag is not set:
return *(char *)(sysroot_buffer->boot_flags[5]) & 1 ^ 1;
int sceSysrootUseInternalStorageForKernel(void);
sceSysrootRegisterLicMgrGetLicenseStatusForKernel
Version |
NID
|
3.60 |
0x71DB83A2
|
Write value at sysroot_ctx + 0x380.
int sceSysrootRegisterLicMgrGetLicenseStatusForKernel(int (__cdecl *sceSblLicMgrGetLicenseStatusForDriver)());
sceKernelSysrootGetThreadAccessLevelForKernel
Version |
NID
|
3.60 |
0x20009397
|
Calls int (__cdecl *GetThreadAccessLevel)(); // 0x344 on 3.60
int sceKernelSysrootGetThreadAccessLevelForKernel(void);
sceSysrootUtMgrHasNpTestFlagForKernel
Version |
NID
|
3.60 |
0xA43599E9
|
Calls int (__cdecl *sceSblUtMgrHasNpTestFlagForDriver)();
int sceSysrootUtMgrHasNpTestFlagForKernel(void);
sceKernelAllocHeapMemoryForKernel
Version |
NID
|
3.60 |
0xD351EBC8
|
Same as sceKernelAllocHeapMemoryWithOpt1ForDriver
but does set uid
to 0x1000B.
Checks that uid is 0x10013 or 0x10005
void* sceKernelAllocHeapMemoryForKernel(SceUID uid, SceSize size, ctx_49D4DD9B *unk);
sceKernelSysrootGetModulePrivateForKernel
Version |
NID
|
0.990-3.60 |
0x37EC12BB
|
sceKernelSysrootSetSysrootForKernel
Version |
NID
|
0.990-3.60 |
0x36916C30
|
sceKernelSysrootProcessmgrStart2ForKernel
Version |
NID
|
0.990-3.60 |
0x62E8F511
|
sceKernelSysrootDbgpSuspendProcessAndWaitResumeForKernel
Version |
NID
|
0.990-3.60 |
0x256B2394
|
sceKernelSysrootIsUserModeThreadForKernel
Version |
NID
|
0.990-3.60 |
0x7FC7A163
|
SceSysrootForDriver
sceKernelSysrootDbgpSuspendProcessAndWaitResumeForDriver
Version |
NID
|
0.990-3.60 |
0x256B2394
|
sceKernelInvokeInitCallbackForDriver
Version |
NID
|
0.990-3.60 |
0x93CD44CD
|
sceKernelSysrootCoredumpTriggerForDriver
Version |
NID
|
0.990-3.60 |
0xCD8CD242
|
sceKernelSysrootGetShellPidForDriver
Version |
NID
|
0.990-3.60 |
0x05093E7B
|
sceKernelSysrootCheckRemapCodeForUserForDriver
Version |
NID
|
0.990-3.60 |
0xF8769E86
|
sceKernelSysrootAppMgrSpawnProcessForDriver
Version |
NID
|
0.990-3.60 |
0x3ACACD22
|
SceSysrootForDriver_421EFC96
Version |
NID
|
3.60 |
0x421EFC96
|
Patched by HENkaku payload.c and update365 by TheFloW.
sceKernelSysrootSetSystemSwVersionForDriver
Version |
NID
|
3.60 |
0x3276086B
|
Set System Software version as int in SceSysmem memory. For exemple: 0x0365000 on 3.65.
int sceKernelSysrootSetSystemSwVersionForDriver(int sw_version);
sceKernelSysrootGetSystemSwVersionForDriver
Version |
NID
|
3.60 |
0x67AAB627
|
Returns System Software version as int from SceSysmem memory. For exemple: 0x0365000 on 3.65.
int sceKernelSysrootGetSystemSwVersionForDriver(void);
?sceKernelSysrootInitI2cForDriver?
Version |
NID
|
3.60 |
0x930B1342
|
int ?sceKernelSysrootInitI2cForDriver?(void);
sceKernelSysrootIsSafeModeForDriver
Version |
NID
|
0.990-3.60 |
0x834439A7
|
int sceKernelSysrootIsSafeModeForDriver(void);
SceSysrootForDriver_56D85EB0
Version |
NID
|
3.60 |
0x56D85EB0
|
Used by SceSblACMgr.
SceKernelUtilsForDriver
sceAesDecrypt1ForDriver
Decrypt with AES.
Version |
NID
|
0.990-3.60 |
0xD8678061
|
int sceAesDecrypt1ForDriver(void *ctx, const unsigned char* src, unsigned char* dst);
sceAesDecrypt2ForDriver
Version |
NID
|
3.60 |
0xE39CD272
|
int sceAesDecrypt2ForDriver(void *ctx, const unsigned char* src, unsigned char* dst);
sceAesEncrypt1ForDriver
Encrypt with AES. There are two functions that are the same on 1.69.
Version |
NID
|
0.990-3.60 |
0xC2A61770
|
int sceAesEncrypt1ForDriver(void *ctx, const unsigned char* src, unsigned char* dst);
sceAesEncrypt2ForDriver
Encrypt with AES. There are two functions that are the same on 1.69.
Version |
NID
|
1.69 |
0x302947B6
|
3.60 |
0x302947B6
|
int sceAesEncrypt2ForDriver(void *ctx, const unsigned char* src, unsigned char* dst);
sceAesInit1ForDriver
This sets up the AES engine. ctx
is a 960 byte buffer (int 1.69). blocksize
and keysize
is the security in bits. 128/196/256 are supported values.
Version |
NID
|
1.69 |
0xF12B6451
|
3.60 |
0xF12B6451
|
last arg to subroutine is 0
int sceAesInit1ForDriver(void *ctx, int blocksize, int keysize, const unsigned char* key);
sceAesInit2ForDriver
Version |
NID
|
3.60 |
0xEDA97D6D
|
last arg to subroutine is 1
int sceAesInit2ForDriver(void *ctx, int blocksize, int keysize, const unsigned char* key);
sceAesInit3ForDriver
Version |
NID
|
3.60 |
0x72408E29
|
last arg to subroutine is 2
int sceAesInit3ForDriver(void *ctx, int blocksize, int keysize, const unsigned char* key);
sceDeflateDecompressForDriver
Version |
NID
|
3.60 |
0x8AF1FAD4
|
sceDeflateDecompressPartialForDriver
Version |
NID
|
3.60 |
0x3D74CCDF
|
sceGzipDecompressForDriver
Version |
NID
|
3.60 |
0x367EE3DF
|
Version |
NID
|
3.60 |
0xCD3AE08F
|
sceGzipGetCompressedDataForDriver
Version |
NID
|
3.60 |
0x63619124
|
sceGzipGetInfoForDriver
Version |
NID
|
3.60 |
0xFFC6A10F
|
sceGzipGetNameForDriver
Version |
NID
|
3.60 |
0xF901FD3E
|
sceGzipIsValidForDriver
Version |
NID
|
3.60 |
0xD8FAEFD4
|
sceHmacSha1DigestForDriver
Version |
NID
|
3.60 |
0x29A28957
|
int sceHmacSha1DigestForDriver(const unsigned char* key, int key_len, const unsigned char* data, int data_len, unsigned char* digest);
sceHmacSha224DigestForDriver
Version |
NID
|
3.60 |
0x7F2A7B99
|
int sceHmacSha224DigestForDriver(const unsigned char* key, int key_len, const unsigned char* data, int data_len, unsigned char* digest);
sceHmacSha256DigestForDriver
Version |
NID
|
3.60 |
0x83EFA1CC
|
int sceHmacSha256DigestForDriver(const unsigned char* key, int key_len, const unsigned char* data, int data_len, unsigned char* digest);
sceMt19937GlobalInitForDriver
Version |
NID
|
3.60 |
0xD428CC2A
|
sceMt19937GlobalUninitForDriver
Version |
NID
|
3.60 |
0x875B2A1C
|
sceMt19937InitForDriver
Version |
NID
|
3.60 |
0x4C9A5730
|
sceMt19937UIntForDriver
Version |
NID
|
3.60 |
0x92AEDFBC
|
sceSfmt19937FillArray32ForDriver
Version |
NID
|
3.60 |
0x2B30548B
|
sceSfmt19937FillArray64ForDriver
Version |
NID
|
3.60 |
0x49B41540
|
sceSfmt19937GenRand32ForDriver
Version |
NID
|
3.60 |
0xBBE4701A
|
sceSfmt19937GenRand64ForDriver
Version |
NID
|
3.60 |
0x45DEAAD6
|
sceSfmt19937InitByArrayForDriver
Version |
NID
|
3.60 |
0x33AE1203
|
sceSfmt19937InitGenRandForDriver
Version |
NID
|
3.60 |
0xAB48C3CA
|
sceSha1BlockInitForDriver
Version |
NID
|
3.60 |
0xE4390FFA
|
int sceSha1BlockInitForDriver(void* ctx);
sceSha1BlockResultForDriver
Version |
NID
|
3.60 |
0x48F24106
|
int sceSha1BlockResultForDriver(void* ctx, unsigned char* digest);
sceSha1BlockUpdateForDriver
Version |
NID
|
3.60 |
0x478A6F3C
|
int sceSha1BlockUpdateForDriver(void* ctx, const unsigned char* data, int size);
sceSha1DigestForDriver
Version |
NID
|
3.60 |
0x87DC7F2F
|
int sceSha1DigestForDriver(unsigned char *data, int size, unsigned char* digest);
sceSha224BlockInitForDriver
Version |
NID
|
3.60 |
0xC762EA6D
|
int sceSha224BlockInitForDriver(void* ctx);
sceSha224BlockResultForDriver
Version |
NID
|
3.60 |
0xFBF2A442
|
int sceSha224BlockResultForDriver(void* ctx, unsigned char* digest);
sceSha224BlockUpdateForDriver
Version |
NID
|
3.60 |
0x7556E611
|
int sceSha224BlockUpdateForDriver(void* ctx, const unsigned char* data, int size);
sceSha224DigestForDriver
Version |
NID
|
3.60 |
0x9EA9D4DC
|
int sceSha224DigestForDriver(unsigned char *data, int size, unsigned char* digest);
sceSha256BlockInitForDriver
Version |
NID
|
3.60 |
0xD909FA2C
|
int sceSha256BlockInitForDriver(void* ctx);
sceSha256BlockResultForDriver
Version |
NID
|
3.60 |
0x4899CD4B
|
int sceSha256BlockResultForDriver(void* ctx, unsigned char* digest);
sceSha256BlockUpdateForDriver
Version |
NID
|
3.60 |
0x236A9097
|
int sceSha256BlockUpdateForDriver(void* ctx, const unsigned char* data, int size);
sceSha256DigestForDriver
Version |
NID
|
3.60 |
0xA773A6A8
|
int sceSha256DigestForDriver(unsigned char *data, int size, unsigned char* digest);
sceZlibDecompressForDriver
Version |
NID
|
3.60 |
0x900148DB
|
sceZlibGetCompressedDataForDriver
Version |
NID
|
3.60 |
0x01EB6C45
|
sceZlibGetInfoForDriver
Version |
NID
|
3.60 |
0x5B9BCD75
|
SceZlibForDriver
zlib compression library.
Firmware |
zlib version
|
1.60 |
1.2.5
|
3.60 |
??
|
inflate
Version |
NID
|
1.60 |
0xE4F34A68
|
3.60 |
0xE4F34A68
|
deflate
Version |
NID
|
1.60 |
0xE859D60F
|
3.60 |
0xE859D60F
|
deflateReset
Version |
NID
|
1.60 |
0x68CFEA45
|
3.60 |
0x68CFEA45
|
crc32
Version |
NID
|
1.60 |
0xE0CE06C0
|
3.60 |
0xE0CE06C0
|
adler32
Version |
NID
|
1.60 |
0x98619620
|
3.60 |
0x98619620
|
inflateSetDictionary
Version |
NID
|
1.60 |
0x7B16DBD6
|
3.60 |
0x7B16DBD6
|
SceKernelSuspendForDriver
Used to register callbacks for handling suspend/resume related events.
sceKernelRegisterSysEventHandlerForDriver
Version |
NID
|
0.990-3.60 |
0x04C05D10
|
Previous name was sceKernelSuspendRegisterCallbackForDriver
typedef struct {
uint32_t size; // 24
uint32_t unk1;
uint32_t unk2;
uint32_t unk3;
uint32_t unk4;
uint32_t unk5;
} suspend_args_t;
typedef int (suspend_callback_t)(int resume, int event_id, suspend_args_t *args, void *opt);
int sceKernelRegisterSysEventHandlerForDriver(const char *name, suspend_callback_t *callback_func, void *opt);
Registers a function for handling suspend/resume. resume
is 0 if we are currently suspending and 1 if we are currently resuming. opt
is passed from the registration. Registration adds an entry to a linked list and returns the block id for the new entry.
Returns the suspend_callback_id.
sceKernelUnregisterSysEventHandlerForDriver
Version |
NID
|
0.990-3.60 |
0xDD61D621
|
int sceKernelUnregisterSysEventHandlerForDriver(int id);
Call with the id returned from suspend_register_callback
to remove the entry from the linked list and free the memory.
sceKernelSysEventDispatchForDriver
Version |
NID
|
0.990-3.60 |
0xD4622EA8
|
int sceKernelSysEventDispatchForDriver(int resume, int eventid, suspend_args_t *args, int stop_on_error);
This will go through the linked list and call each callback. If stop_on_error
is set, then the first callback that returns a negative value will stop the call chain and return the block id of the callback that broke the chain. Otherwise, this function will invoke each callback and return zero.
sceKernelPowerTickForDriver
Version |
NID
|
0.990-3.60 |
0xE0489831
|
typedef enum SceKernelPowerTickType {
/** Cancel all timers */
SCE_KERNEL_POWER_TICK_DEFAULT = 0,
/** Cancel automatic suspension timer */
SCE_KERNEL_POWER_TICK_DISABLE_AUTO_SUSPEND = 1,
/** Cancel OLED-off timer */
SCE_KERNEL_POWER_TICK_DISABLE_OLED_OFF = 4,
/** Cancel OLED dimming timer */
SCE_KERNEL_POWER_TICK_DISABLE_OLED_DIMMING = 6
} SceKernelPowerTickType;
int sceKernelPowerTickForDriver(int type);
Cancel specified idle timers to prevent entering in power save processing.
Returns 0 on success.
SceQafMgrForDriver
Provides many device permission checks including PSVita model checks, running app privilege checks, debugging enabled checks, and so on.
SceQafMgrForDriver_7B14DC45
Version |
NID
|
3.60 |
0x7B14DC45
|
Used by SceAppMgr.
return ((unsigned int)*(char *)(SceSysrootGetSysrootBufferForKernel() + 0x2D) >> 1) & 1; // = 0x2D + BIT number 30
int SceQafMgrForDriver_7B14DC45(void);
SceQafMgrForDriver_082A4FC2
Version |
NID
|
0.990-3.60 |
0x082A4FC2
|
Used by SceSblFwLoader.
SceQafMgrForDriver_694D1096
Version |
NID
|
3.60 |
0x694D1096
|
Used by SceSblACMgr.
ScePmMgrForDriver
scePmMgrGetProductModeForDriver
Version |
NID
|
3.60 |
0x2AC815A2
|
Returns 0 on success.
Gets sysroot_buffer using sceKernelGetSysrootBufferForDriver.
result = ((int *)(sysroot_buffer->boot_type_indicator_1) >> 2) & 1; // manufacturing mode flag
int scePmMgrGetProductModeForDriver(int* result);
scePmMgrIsExternalBootModeForDriver
Version |
NID
|
3.60 |
0xBD1F193B
|
Gets sysroot_buffer using sceKernelGetSysrootBufferForDriver.
return (int *)(sysroot_buffer->boot_type_indicator_1) & 1;
int scePmMgrIsExternalBootModeForDriver(void);
SceSblAIMgrForDriver
sceSblAIMgrGetSMIForDriver
Version |
NID
|
3.60 |
0x47D9CF13
|
int sceSblAIMgrGetSMIForDriver(int *shipped_fw_version);
sceSblAIMgrGetProductCodeForDriver
Version |
NID
|
3.60 |
0x14345161
|
Product Code = Target Id
int sceSblAIMgrGetProductCodeForDriver(void);
sceSblAIMgrGetProductSubCodeForDriver
Version |
NID
|
3.60 |
0xB33CEC8F
|
Product Sub Code = Model revision
int sceSblAIMgrGetProductSubCodeForDriver(void);
sceSblAIMgrIsTestForDriver
Version |
NID
|
3.60 |
0x3B638885
|
TEST = Internal Test Unit
Returns true if PsCode Product Code <= 0x100.
int sceSblAIMgrIsTestForDriver(void);
sceSblAIMgrIsToolOrTestForDriver
Version |
NID
|
3.60 |
0x274663A0
|
TOOL = DevKit
Returns true if PsCode Product Code <= 0x101.
int sceSblAIMgrIsToolOrTestForDriver(void);
sceSblAIMgrIsNonCEXForDriver
Version |
NID
|
3.60 |
0xF4B98F66
|
Returns true if PsCode Product Code <= 0x102.
int sceSblAIMgrIsNonCEXForDriver(void);
sceSblAIMgrIsCEXForDriver
Version |
NID
|
3.60 |
0xD78B04A2
|
Returns true if PsCode Product Code <= 0x111 AND sceSblAIMgrIsJapaneseFatForDriver returns false.
int sceSblAIMgrIsCEXForDriver(void);
sceSblAIMgrIsVITAForDriver
Version |
NID
|
3.60 |
0x4273B97B
|
Returns sceSblAIMgrIsGenuineVITAForDriver.
int sceSblAIMgrIsVITAForDriver(void);
sceSblAIMgrIsDolceForDriver
Version |
NID
|
3.60 |
0x71608CA3
|
Returns sceSblAIMgrIsGenuineDolceForDriver if returns true else returns sceKernelCheckDipswForDriver(0x98).
int sceSblAIMgrIsDolceForDriver(void);
sceSblAIMgrIsGenuineVITAForDriver
Version |
NID
|
3.60 |
0x963CA644
|
Returns true if:
- PsCode Product Code <= 0x111 AND sceSblAIMgrIsGenuineDolceForDriver returns false
- sceSblAIMgrIsJapaneseFatForDriver returns true AND HardwareInfo != 0x700000 != 0x720000 != 0x510000
int sceSblAIMgrIsGenuineVITAForDriver(void);
sceSblAIMgrIsGenuineDolceForDriver
Version |
NID
|
3.60 |
0xC6E83F34
|
int sceSblAIMgrIsGenuineDolceForDriver(void);
sceSblAIMgrIsJapaneseFatForDriver
Version |
NID
|
3.60 |
0x6D5A3FC9
|
int sceSblAIMgrIsJapaneseFatForDriver(void);
sceSblAIMgrIsToolRev3ForDriver
Version |
NID
|
3.60 |
0xBB9D146B
|
Returns true if PsCode Product Code == 0x101 and PsCode Product Sub Code <= 3.
int sceSblAIMgrIsToolRev3ForDriver(void);
sceSblAIMgrIsToolRev4ForDriver
Version |
NID
|
3.60 |
0x37A79140
|
Returns true if PsCode Product Code == 0x101 and PsCode Product Sub Code <= 4.
int sceSblAIMgrIsToolRev4ForDriver(void);
sceSblAIMgrIsToolRev5ForDriver
Version |
NID
|
3.60 |
0xE5E47FF7
|
Returns true if PsCode Product Code == 0x101 and PsCode Product Sub Code <= 5.
int sceSblAIMgrIsToolRev5ForDriver(void);
sceSblAIMgrIsPrototypeRev2ForDriver
Version |
NID
|
3.60 |
0xFF5784B9
|
Returns true if PsCode Product Code == 0x103 and PsCode Product Sub Code <= 2.
int sceSblAIMgrIsPrototypeRev2ForDriver(void);
sceSblAIMgrIsPrototypeRev7ForDriver
Version |
NID
|
3.60 |
0x05F79D4A
|
Returns true if PsCode Product Code == 0x103 and PsCode Product Sub Code <= 7.
int sceSblAIMgrIsPrototypeRev7ForDriver(void);
SceProcEventForDriver
sceKernelUnregisterProcEventHandlerForDriver
Version |
NID
|
3.60 |
0x3DED57CC
|
Previous name was sceProcEventDeleteUidForDriver.
Wrapper to sceKernelDeleteUidForDriver.
int sceKernelUnregisterProcEventHandlerForDriver(int uid);
sceKernelRegisterProcEventHandlerForDriver
Version |
NID
|
3.60 |
0x2A43912D
|
Previous name was sceProcEventCreateEventForDriver
Uses sceKernelCreateEventForDriver.
Returns uid.
SceUID sceKernelRegisterProcEventHandlerForDriver(const char *name, int *a2, int a3);
sceKernelInvokeProcEventHandlerForDriver
Version |
NID
|
3.60 |
0x414CC813
|
Uses suspend/resume LR.
int sceKernelInvokeProcEventHandlerForDriver(int a1, int a2, int a3, int a4, int *a5, int a6);
SceDebugLed
sceKernelGetGPI
Version |
NID
|
3.60 |
0x14F582CF
|
int sceKernelGetGPI(void);
sceKernelSetGPO
Version |
NID
|
3.60 |
0x78E702D3
|
int sceKernelSetGPO(int value);
get_74
Version |
NID
|
3.60 |
0x2B6EABAD
|
int get_74(void);
get_78
Version |
NID
|
3.60 |
0x0E6B9890
|
int get_78(void);
SceDebugLedForDriver
sceKernelGetGPIForDriver
Version |
NID
|
3.60 |
0x14F582CF
|
Only SceDebugLedForDriver function used by SceCoredump.
int sceKernelGetGPIForDriver(void);
sceKernelSetGPIForDriver
Version |
NID
|
3.60 |
0x51C5325A
|
int sceKernelSetGPIForDriver(int value);
sceKernelGetGPOForDriver
Version |
NID
|
3.60 |
0x3BB289F7
|
int sceKernelGetGPOForDriver(void);
sceKernelSetGPOForDriver
Version |
NID
|
3.60 |
0x78E702D3
|
int sceKernelSetGPOForDriver(int value);
sceKernelSetGPOMaskForDriver
Version |
NID
|
3.60 |
0x098473B0
|
sceKernelSetGPOMaskForDriver(int a1, int a2);
get_74
Version |
NID
|
3.60 |
0x2B6EABAD
|
int get_74(void);
set_74
Version |
NID
|
3.60 |
0x24173819
|
int set_74(int value);
get_78
Version |
NID
|
3.60 |
0x0E6B9890
|
int get_78(void);
set_78
Version |
NID
|
3.60 |
0xF62154E7
|
int set_78(int value);
SceDebugForKernel
sceDebugSetHandlersForKernel
Version |
NID
|
3.60 |
0x10067B7B
|
int sceDebugSetHandlersForKernel(void (*func)(int unk, const char *format, const uint32_t *args), void *args);
sceDebugPutcharForKernel
Version |
NID
|
3.60 |
0x82D2EDCE
|
Print character.
int sceDebugPutcharForKernel(int character);
sceDebugGetPutcharHandlerForKernel
Version |
NID
|
3.60 |
0xE783518C
|
Returns pointer to current debug print char handler.
void *sceDebugGetPutcharHandlerForKernel(void);
sceDebugRegisterPutcharHandlerForKernel
Version |
NID
|
3.60 |
0xE6115A72
|
Set debug print char handler.
int sceDebugRegisterPutcharHandlerForKernel(int (*func)(void *args, char c), void *args);
SceDebugForKernel_082B8D6A
Version |
NID
|
3.60 |
0x082B8D6A
|
Print kernel exception information.
// name can be:
// UNDEF - ?
// PABT - Prefetch Abort
// DABT - Data Abort
// NEST - ?
int SceDebugForKernel_082B8D6A(void *unk, void *ctx, int index, char *name);
sceDebugDisableInfoDumpForKernel
Version |
NID
|
3.60 |
0xF857CDD6
|
// ex: sceDebugDisableInfoDumpForKernel(0); as used in henkaku/payload.c
int sceDebugDisableInfoDumpForKernel(int flag);
SceDebugForDriver
Types
struct kernel_message_ctx
{
int hex_value0_hi;
int hex_value0_lo;
int hex_value1;
char* msg0;
int num;
char* msg1;
};
sceDebugPrintfForDriver
Version |
NID
|
3.60 |
0x391B74B7
|
int sceDebugPrintfForDriver(const char *fmt, ...);
sceDebugPrintf2ForDriver
Version |
NID
|
3.60 |
0x02B04343
|
int sceDebugPrintf2ForDriver(int msg_type_flag, kernel_message_ctx *msg_ctx, const char *fmt, ...);
print_kernel_panic
Version |
NID
|
3.60 |
0x391B5B74
|
int print_kernel_panic(kernel_message_ctx *msg_ctx, void *some_address);
printf_kernel_panic
Version |
NID
|
3.60 |
0x00CCE39C
|
int printf_kernel_panic(kernel_message_ctx *msg_ctx, void *some_address, const char* fmt, ...);
print_kernel_assertion
Version |
NID
|
3.60 |
0x35A35322
|
int print_kernel_assertion(int condition, kernel_message_ctx *msg_ctx, void *some_address);
printf_kernel_assertion
Version |
NID
|
3.60 |
0x821A2D59
|
int printf_kernel_assertion(int unk, int condition, kernel_message_ctx *msg_ctx, int some_address, const char *fmt, ...);
invoke_some_callback
Version |
NID
|
3.60 |
0x411C0733
|
Uses sceKernelCpuLockSuspendIntrStoreLRForDriver and sceKernelCpuLockResumeIntrStoreLRForDriver.
Calls SceSysclibForDriver_E38E7605.
Maybe invoke debug handler.
int invoke_some_callback(char *format, va_list ap);
SceSysmemForTZS
sceKernelAllocMemBlockForTZS
Version |
NID
|
1.69-1.80 |
0x402EB970
|
typedef enum SceKernelAllocMemBlockAttr {
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_PADDR = 0x00000002U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_ALIGNMENT = 0x00000004U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_MIRROR_BLOCKID = 0x00000040U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_PID = 0x00000080U,
SCE_KERNEL_ALLOC_MEMBLOCK_ATTR_HAS_PADDR_LIST = 0x00001000U
} SceKernelAllocMemBlockAttr;
struct SceKernelAllocMemKernelBlockOpt_old {
uint32_t size; // 0x34
uint32_t unk;
uint32_t attr;
uint32_t unk2;
uint32_t paddr;
uint32_t align;
uint32_t unk3[3];
uint32_t processid;
uint32_t unk4[3];
};
// specific to 3.60
typedef struct SceKernelAllocMemBlockKernelOpt {
SceSize size; //!< sizeof(SceKernelAllocMemBlockKernelOpt)
SceUInt32 field_4;
SceUInt32 attr; //!< OR of SceKernelAllocMemBlockAttr
SceUInt32 field_C;
SceUInt32 paddr;
SceSize alignment;
SceUInt32 extraLow;
SceUInt32 extraHigh;
SceUInt32 mirror_blockid;
SceUID pid;
SceKernelPaddrList *paddr_list;
SceUInt32 field_2C;
SceUInt32 field_30;
SceUInt32 field_34;
SceUInt32 field_38;
SceUInt32 field_3C;
SceUInt32 field_40;
SceUInt32 field_44;
SceUInt32 field_48;
SceUInt32 field_4C;
SceUInt32 field_50;
SceUInt32 field_54;
} SceKernelAllocMemBlockKernelOpt;
SceUID sceKernelAllocMemBlockForTZS(const char *name, SceKernelMemBlockType type, SceSize size, SceKernelAllocMemBlockKernelOpt *optp);
The interface is the same as the user version of this call, however more types can be specified and more options are in the pOpt argument.
To allocate a kernel RW block of memory, specify type = 0x6020D006
.
To allocate a block of memory with a specific physical address, specify type = 0x20100206
or type = 0x20100806
, pOpt->attr = 2
, and pOpt->paddr = physical address
.
To allocate a block of memory that is kernel executable, specify type = 0x1020D005
.
To allocate a block of memory that is physically contiguous, specify type = 0x30808006
, pOpt->attr = 0x200004
and an alignment to pOpt->alignment
.
To allocate a block of memory inside the CDRAM, specify type = 0x40404006
.
pOpt->attr bitmask
Bitmask
|
Uses
|
0x00000001
|
field_C
|
0x00000002
|
paddr
|
0x00000004
|
alignment
|
0x00000008
|
field_18
|
0x00000010
|
field_1C
|
0x00000020
|
??
|
0x00000040
|
mirror_blockid
|
0x00000080
|
pid
|
0x00001000
|
paddr_list
|
0x00002000
|
field_2C
|
0x00010000
|
field_30
|
sceKernelAllocMemBlockForPidForTZS
Version |
NID
|
1.69-1.80 |
0x0028E26C
|
int sceKernelAllocMemBlockForPidForTZS(SceUID pid, const char *name, SceKernelMemBlockType type, SceSize size, SceKernelAllocMemBlockKernelOpt *optp);
sceKernelVAtoPAForTZS
Version |
NID
|
1.69-1.80 |
0x1DEADF6C
|
This will write the physical address for a virtual address vaddr
to memory pointed to by result
.
Returns <0 on error, values >=0 indicate success.
int sceKernelVAtoPAForTZS(void *vaddr, void **result);
SceSysrootForTZS
sceKernelSysrootGetKblParamForTZS
Version |
NID
|
1.69-1.80 |
0x29C1049E
|
Returns pointer to Sysroot buffer.
void *sceKernelSysrootGetKblParamForTZS(void);