Search results

Jump to navigation Jump to search

Page title matches

  • Kernel Boot Loader
    ...ARM [[TrustZone]] (ARM Secure kernel) through [[SKBL]] and ARM Non-secure kernel through [[NSKBL]]. Kernel Boot Loader ELF consists of 4 segments: SKBL reset vector, SKBL segment 0, SKBL segment
    6 KB (918 words) - 04:43, 1 May 2023

Page text matches

  • SceSblPcbcBin
    ...P <b>C</b>ompatibility <b>B</b>oot <b>C</b>ode i.e. PSPEmu Initial Program Loader. | 3.60 || Non-secure || Kernel
    387 bytes (56 words) - 05:24, 18 January 2024
  • Security
    The root is Cmep's bootrom (First Loader). This is where root keys are seeded and wiped from memory. second_loader.e ...ta directly into the shared DRAM. After clearing the cache, the non-secure kernel has access to the data. Cmep will not decrypt if anything fails in its chec
    6 KB (1,004 words) - 08:27, 4 August 2023
  • Secure Modules
    ...s called by the [[Second Loader]], the [[Kernel Boot Loader]] or the ARM [[Kernel]], and unloaded after the call.
    3 KB (398 words) - 19:17, 20 September 2023
  • Kernel Boot Loader
    ...ARM [[TrustZone]] (ARM Secure kernel) through [[SKBL]] and ARM Non-secure kernel through [[NSKBL]]. Kernel Boot Loader ELF consists of 4 segments: SKBL reset vector, SKBL segment 0, SKBL segment
    6 KB (918 words) - 04:43, 1 May 2023
  • SceSblFwLoader
    ...charge of loading specific firmware images such as PSPEmu Initial Program Loader contained in [[SceSblPcbcBin]] (PSP Compatibility Boot Code), PSPEmu Flash | 0.990.000-1.692.000 || Non-secure || Kernel
    3 KB (340 words) - 22:18, 17 January 2024
  • Communication Processor Update Package
    == Kernel Boot Loader logs == The Kernel Boot Loader and Non-Secure Kernel Boot Loader respectively reference the current CP version in their bootlogs (the versio
    8 KB (1,333 words) - 13:19, 7 January 2023
  • SceDeci4pLoadp
    ds4 pairing/package installer spawn/cui_setupper loader for Devkit. | 3.60-3.65 || Non-secure || Kernel
    2 KB (195 words) - 13:44, 7 October 2023
  • Boot Sequence
    === First Loader === ...r than the ARM processor. The cmep processor's boot ROM, nicknamed [[First Loader]], is the first known code running on PS Vita start. Once it starts, it lik
    12 KB (1,757 words) - 08:24, 9 August 2023
  • Cmep
    ...ware behavior and the vector base remapping might be done when the [[First Loader]] is unmapped. ...B memory from <code>0x00800000</code> to <code>0x00820000</code>. [[Secure Kernel]] is loaded to <code>0x00800000</code>. [[Secure Modules]] are typically lo
    7 KB (1,020 words) - 23:43, 16 July 2023
  • Partitions
    | loader_start. Second Loader (second_loader.enp) offset in blocks | loader_count. Second Loader (second_loader.enp) size in blocks
    5 KB (746 words) - 11:49, 1 August 2023
  • Suspend
    ...cessor is turned off. The main DRAM state is preserved so upon resume, the kernel does not have to be reloaded. ...the same until the point where the [[SKBL]] would jump into the non-secure kernel bootloader at <code>0x51000000</code>. Instead, it [[Suspend#suspendinfo_ad
    12 KB (1,871 words) - 04:36, 19 June 2022
  • Molecule
    ...its in it. They found on 30/08/2019 their last and ultimate exploit: First Loader SLSK buffer overflow on some PS Vita prototypes. In August 2019, Yifan Lu e [[Secure Kernel]] was dumped in 02/2017 through the Octopus exploit. [[First_Loader|Boot RO
    5 KB (815 words) - 23:37, 16 July 2023
  • TrustZone
    ...sion 2.10, kernel process exceptions invoke a TrustZone call to initiate a kernel memory snapshot and encrypt it for use in a coredump. ...ng is that Tzs libraries exports are only accessible to Tzs, so non-secure kernel modules cannot import them. For that reason, Tzs [[SceExcpmgr]] registers [
    6 KB (860 words) - 00:18, 19 January 2024
  • Bugs
    ...ers|SceTimerForUsleep]] timer (Word Timer 7) is reserved for the TrustZone kernel. However, this timer's MMIO range is not blacklisted from access by ARM cor == [[Kernel]] ==
    23 KB (3,419 words) - 11:41, 8 February 2024
  • NSKBL
    ...the role of initializing the Non-Secure state environment and loading the kernel from storage. NSKBL is made of stripped down versions of some Non-Secure kernel modules along with code using all these functions to prepare the non-secure
    25 KB (3,006 words) - 17:42, 30 March 2024
  • Vulnerabilities
    ...lacklisted in PS Vita OS (at cmep level). This can be bypassed only with a kernel exploit and ref00d/0syscall6 plugin. == Kernel ==
    59 KB (8,666 words) - 18:39, 13 October 2023
  • Cmep registers
    ...ion between ARM [[TrustZone]] and [[Cmep]] ([[Second Loader]] and [[Secure Kernel]]), and with the debugger. Communication seems to go through some sort of F bit0 (& 1): Not available -> [[Second Loader]] throws error.
    18 KB (2,382 words) - 02:14, 27 October 2023
  • KBL Param
    ...he Secure and Non-Secure Kernel BootLoaders, and finally to the non-secure kernel. It is used in many functions to check for features that are enabled for th | 0xA8 || 0x4 || second_loader || __stack_chk_guard. Set by Second Loader to a pseudo random number. Exported by SceSysmem as __stack_chk_guard.
    33 KB (4,849 words) - 19:57, 30 March 2024
  • Grover
    uint8_t kern_sel; //<! Kernel selection #define KERN_SEL_RECOVERY 0x01 //<! Recovery kernel
    12 KB (1,872 words) - 18:32, 8 January 2024
Retrieved from "http://wiki.henkaku.xyz/vita/Special:Search"