Added support for 3.02E & 3.02C

Author: MFDGaming

compile.sh

@@ -8,6 +8,12 @@ if [[ "$1" == "3.00j" || "$1" == "3.00J" ]]; then
 elif [[ "$1" == "3.00u" || "$1" == "3.00U" ]]; then
     echo "Building for DVD Player v3.00U"
     dvd_ver="300U"
+elif [[ "$1" == "3.02e" || "$1" == "3.02E" ]]; then
+    echo "Building for DVD Player v3.02E"
+    dvd_ver="302E"
+elif [[ "$1" == "3.02c" || "$1" == "3.02C" ]]; then
+    echo "Building for DVD Player v3.02C"
+    dvd_ver="302C"
 else
     echo "Building for DVD Player v3.00E/A"
 fi
@@ -17,9 +23,17 @@ mkdir build
 rm -f fs/VIDEO_TS/VTS_01_0.IFO
 rm -f fs/VIDEO_TS/VTS_02_0.BUP
 rm -f fs/VIDEO_TS/VTS_02_0.IFO
+rm -f fs/VIDEO_TS/VTS_03_0.BUP
+rm -f fs/VIDEO_TS/VTS_03_0.IFO
+rm -f fs/VIDEO_TS/VTS_04_0.BUP
+rm -f fs/VIDEO_TS/VTS_04_0.IFO
 cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_01_0.IFO
 cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_02_0.BUP
 cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_02_0.IFO
+cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_03_0.BUP
+cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_03_0.IFO
+cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_04_0.BUP
+cp fs/VIDEO_TS/VTS_01_0.BUP fs/VIDEO_TS/VTS_04_0.IFO
 
 mipsel-none-elf-gcc \
     -T src/ld/code.ld \
@@ -79,11 +93,17 @@ cp --recursive fs build/
 
 ./build/injector.elf
 
-truncate -s 6144 build/code.bin
+truncate -s 8192 build/code.bin
 cp build/code.bin build/fs/VIDEO_TS/VIDEO_TS.BUP
 cp build/fs/VIDEO_TS/VTS_01_1.VOB build/fs/VIDEO_TS/VTS_02_1.VOB
+cp build/fs/VIDEO_TS/VTS_01_1.VOB build/fs/VIDEO_TS/VTS_03_1.VOB
+cp build/fs/VIDEO_TS/VTS_01_1.VOB build/fs/VIDEO_TS/VTS_04_1.VOB
 
 genisoimage -dvd-video -V "" -o build/exploit.iso build/fs/
 rm fs/VIDEO_TS/VTS_01_0.IFO
 rm fs/VIDEO_TS/VTS_02_0.BUP
 rm fs/VIDEO_TS/VTS_02_0.IFO
+rm fs/VIDEO_TS/VTS_03_0.BUP
+rm fs/VIDEO_TS/VTS_03_0.IFO
+rm fs/VIDEO_TS/VTS_04_0.BUP
+rm fs/VIDEO_TS/VTS_04_0.IFO

fs/BOOT.ELF

@@ -4,37 +4,124 @@
 #include "ps2cstd.h"
 #include "ps2iop.h"
 #include "ps2rpc.h"
+#include "ps2cdvd.h"
 
-typedef int (*readBufferInternal_t)(char *, int, int, void *, int, int);
-readBufferInternal_t readBufferInternal;
+int no_reset = 0;
 
 static void setup_pointers() {
     u32 *video_ts_ifo_300e = (u32 *)0x009091a0;
     u32 *video_ts_ifo_300u = (u32 *)0x009090a0;
     u32 *video_ts_ifo_300j = (u32 *)0x00684920;
+    u32 *video_ts_ifo_302e = (u32 *)0x0090c310;
+    u32 *video_ts_ifo_302c = (u32 *)0x006ee290;
     if (video_ts_ifo_300e[0] == 0x45444956) {
-        readBufferInternal = (readBufferInternal_t)0x00244438;
         sceSifSyncIop = (sceSifSyncIop_t)0x00283460;
         sceSifResetIop = (sceSifResetIop_t)0x002832f8;
         sceSifInitRpc = (sceSifInitRpc_t)0x00207c60;
         sceSifExitRpc = (sceSifExitRpc_t)0x00207e00;
+        sceSifCallRpc = (sceSifCallRpc_t)0x002084a0;
+        sceSifWriteBackDCache = (sceSifWriteBackDCache_t)0x00209fc0;
+        sceCdNCmdDiskReady = (sceCdNCmdDiskReady_t)0x00268a58;
+        _sceCd_ncmd_prechk = (_sceCd_ncmd_prechk_t)0x002688e8;
+        _sceCd_cd_read_intr = (_sceCd_cd_read_intr_t)0x002682ac;
+        sceCdSync = (sceCdSync_t)0x00268af0;
+        sceCdDiskReady = (sceCdDiskReady_t)0x00268ff0;
+        sceCdCbfunc_num = (int *)0x008c9114;
+        _sceCd_c_cb_sem = (int *)0x008c90f0;
+        _sceCd_cd_ncmd = (void *)0x008ca290;
+        _sceCd_ncmd_semid = (int *)0x008c90e8;
     } else if (video_ts_ifo_300u[0] == 0x45444956) {
-        readBufferInternal = (readBufferInternal_t)0x00244378;
         sceSifSyncIop = (sceSifSyncIop_t)0x00283340;
         sceSifResetIop = (sceSifResetIop_t)0x002831d8;
         sceSifInitRpc = (sceSifInitRpc_t)0x00207c60;
         sceSifExitRpc = (sceSifExitRpc_t)0x00207e00;
+        sceSifCallRpc = (sceSifCallRpc_t)0x002084a0;
+        sceSifWriteBackDCache = (sceSifWriteBackDCache_t)0x00209fc0;
+        sceCdNCmdDiskReady = (sceCdNCmdDiskReady_t)0x00268938;
+        _sceCd_ncmd_prechk = (_sceCd_ncmd_prechk_t)0x002687c8;
+        _sceCd_cd_read_intr = (_sceCd_cd_read_intr_t)0x00268190;
+        sceCdSync = (sceCdSync_t)0x002689d0;
+        sceCdDiskReady = (sceCdDiskReady_t)0x00268ed0;
+        sceCdCbfunc_num = (int *)0x008c9014;
+        _sceCd_c_cb_sem = (int *)0x008c8ff0;
+        _sceCd_cd_ncmd = (void *)0x008ca190;
+        _sceCd_ncmd_semid = (int *)0x008c8fe8;
+        no_reset = 1; // For some reason 3.00U breaks if the IOP is reset
     } else if (video_ts_ifo_300j[0] == 0x45444956) {
-        readBufferInternal = (readBufferInternal_t)0x00244018;
         sceSifSyncIop = (sceSifSyncIop_t)0x002834f0;
         sceSifResetIop = (sceSifResetIop_t)0x00283388;
         sceSifInitRpc = (sceSifInitRpc_t)0x00207c60;
         sceSifExitRpc = (sceSifExitRpc_t)0x00207e00;
+        sceSifCallRpc = (sceSifCallRpc_t)0x002084a0;
+        sceSifWriteBackDCache = (sceSifWriteBackDCache_t)0x00209fc0;
+        sceCdNCmdDiskReady = (sceCdNCmdDiskReady_t)0x00268ae0;
+        _sceCd_ncmd_prechk = (_sceCd_ncmd_prechk_t)0x00268970;
+        _sceCd_cd_read_intr = (_sceCd_cd_read_intr_t)0x00268338;
+        sceCdSync = (sceCdSync_t)0x00268b78;
+        sceCdDiskReady = (sceCdDiskReady_t)0x00269078;
+        sceCdCbfunc_num = (int *)0x00644894;
+        _sceCd_c_cb_sem = (int *)0x00644870;
+        _sceCd_cd_ncmd = (void *)0x00645a10;
+        _sceCd_ncmd_semid = (int *)0x00644868;
+    } else if (video_ts_ifo_302e[0] == 0x45444956) {
+        sceSifSyncIop = (sceSifSyncIop_t)0x00284d00;
+        sceSifResetIop = (sceSifResetIop_t)0x00284b98;
+        sceSifInitRpc = (sceSifInitRpc_t)0x00207ce0;
+        sceSifExitRpc = (sceSifExitRpc_t)0x00207e80;
+        sceSifCallRpc = (sceSifCallRpc_t)0x00208520;
+        sceSifWriteBackDCache = (sceSifWriteBackDCache_t)0x0020a040;
+        sceCdNCmdDiskReady = (sceCdNCmdDiskReady_t)0x00258b00;
+        _sceCd_ncmd_prechk = (_sceCd_ncmd_prechk_t)0x00258990;
+        _sceCd_cd_read_intr = (_sceCd_cd_read_intr_t)0x00258358;
+        sceCdSync = (sceCdSync_t)0x00258b98;
+        sceCdDiskReady = (sceCdDiskReady_t)0x00259098;
+        sceCdCbfunc_num = (int *)0x004d4254;
+        _sceCd_c_cb_sem = (int *)0x004d4230;
+        _sceCd_cd_ncmd = (void *)0x004d53d0;
+        _sceCd_ncmd_semid = (int *)0x004d4228;
+    } else if (video_ts_ifo_302c[0] == 0x45444956) {
+        sceSifSyncIop = (sceSifSyncIop_t)0x00284f30;
+        sceSifResetIop = (sceSifResetIop_t)0x00284dc8;
+        sceSifInitRpc = (sceSifInitRpc_t)0x00207ce0;
+        sceSifExitRpc = (sceSifExitRpc_t)0x00207e80;
+        sceSifCallRpc = (sceSifCallRpc_t)0x00208520;
+        sceSifWriteBackDCache = (sceSifWriteBackDCache_t)0x0020a040;
+        sceCdNCmdDiskReady = (sceCdNCmdDiskReady_t)0x00258ae0;
+        _sceCd_ncmd_prechk = (_sceCd_ncmd_prechk_t)0x00258970;
+        _sceCd_cd_read_intr = (_sceCd_cd_read_intr_t)0x00258338;
+        sceCdSync = (sceCdSync_t)0x00258b78;
+        sceCdDiskReady = (sceCdDiskReady_t)0x00259078;
+        sceCdCbfunc_num = (int *)0x004d4454;
+        _sceCd_c_cb_sem = (int *)0x004d4430;
+        _sceCd_cd_ncmd = (void *)0x004d55d0;
+        _sceCd_ncmd_semid = (int *)0x004d4428;
     }
 }
 
+int readSector(int n, u8 *s) {
+    const int max_tries = 30;
+    int tries = 0;
+    sceCdRMode rm;
+    rm.spindlctrl = SCECdSpinNom;
+    rm.datapattern = SCECdSecS2048;
+    rm.trycount = max_tries;
+
+    while (tries < max_tries) {
+		sceCdDiskReady(0);
+		if (sceCdReadDVDV(n, 1, s, &rm)) {
+			break;
+		}
+		++tries;
+	}
+    if (tries == max_tries) {
+		return -1;
+	}
+    sceCdSync(0);
+    return 0;
+}
+
 static void readDiscData(int off, u8 *dest, int len) {
-    u8 tmp[0x800];
+    u8 tmp[2064];
     if (len <= 0) {
         return;
     }
@@ -44,27 +131,28 @@ static void readDiscData(int off, u8 *dest, int len) {
     if (skip) {
         int first = 0x800 - skip;
         if (first > len) first = len;
-        readBufferInternal("", 0, s++, tmp, 1, 0);
-        memcpy(dest, &tmp[skip], first);
+        readSector(s++, tmp);
+        memcpy(dest, &tmp[12+skip], first);
         dest += first;
         len -= first;
     }
     int sc = len >> 11;
     for (int i = 0; i < sc; ++i) {
-        readBufferInternal("", 0, s++, tmp, 1, 0);
-        memcpy(dest, tmp, 0x800);
+        readSector(s++, tmp);
+        memcpy(dest, &tmp[12], 0x800);
         dest += 0x800;
     }
     int rem = len - (sc << 11);
     if (rem > 0) {
-        readBufferInternal("", 0, s, tmp, 1, 0);
-        memcpy(dest, tmp, rem);
+        readSector(s, tmp);
+        memcpy(dest, &tmp[12], rem);
     }
 }
 
 void main() {
-    int off = (396 - 278) << 11;
+    int off = 516 << 11;
     Elf32_Ehdr ehdr;
+
     readDiscData(off, (u8 *)&ehdr, sizeof(Elf32_Ehdr));
 
     // Validate ELF header
@@ -89,10 +177,12 @@ void main() {
     }
     FlushCache(0);
     FlushCache(2);
-    /*sceSifResetIop("rom0:UDNL rom0:EELOADCNF", 0);
-    while(!sceSifSyncIop());*/
     sceSifInitRpc(0);
     sceSifExitRpc();
+    if (!no_reset) {
+        sceSifResetIop("rom0:UDNL rom0:EELOADCNF", 0);
+        while(!sceSifSyncIop());
+    }
     ExecPS2((void *)(unsigned long)ehdr.e_entry, 0, 0, NULL);
 }
 

fs/VIDEO_TS/VIDEO_TS.IFO

@@ -0,0 +1,48 @@
+#include "ps2cdvd.h"
+#include "ps2rpc.h"
+#include "ps2cstd.h"
+#include "ps2syscalls.h"
+
+sceCdNCmdDiskReady_t sceCdNCmdDiskReady;
+_sceCd_ncmd_prechk_t _sceCd_ncmd_prechk;
+_sceCd_cd_read_intr_t _sceCd_cd_read_intr;
+sceCdSync_t sceCdSync;
+sceCdDiskReady_t sceCdDiskReady;
+
+int *sceCdCbfunc_num;
+int *_sceCd_c_cb_sem;
+void *_sceCd_cd_ncmd;
+int *_sceCd_ncmd_semid;
+
+static u32 readData[6] __attribute__((aligned(64)));
+static u32 _sceCd_rd_intr_data[64] __attribute__((aligned(64)));
+static u32 _sceCd_Read_cur_pos __attribute__((aligned(64)));
+
+int sceCdReadDVDV(u32 lbn, u32 nsectors, void *buf, sceCdRMode *rm) {
+    if (sceCdNCmdDiskReady() == SCECdNotReady) {
+        return 0;
+    }
+    if (_sceCd_ncmd_prechk(CD_NCMD_DVDREAD) == 0) {
+        return 0;
+    }
+
+    readData[0] = lbn;
+    readData[1] = nsectors;
+    readData[2] = (u32)(unsigned long)buf;
+    readData[3] = (rm->trycount) | (rm->spindlctrl << 8) | (rm->datapattern << 16);
+    readData[4] = (u32)(unsigned long)_sceCd_rd_intr_data;
+
+    sceSifWriteBackDCache(buf, nsectors * 2064);
+
+    *sceCdCbfunc_num = CD_NCMD_DVDREAD;
+    *_sceCd_c_cb_sem = 1;
+
+    if (sceSifCallRpc(_sceCd_cd_ncmd, CD_NCMD_DVDREAD, 1, readData, 24, NULL, 0, _sceCd_cd_read_intr, _sceCd_rd_intr_data) < 0) {
+        *sceCdCbfunc_num = 0;
+        *_sceCd_c_cb_sem = 0;
+        SignalSema(*_sceCd_ncmd_semid);
+        return 0;
+    }
+
+    return 1;
+}

src/code/code.c

@@ -0,0 +1,94 @@
+#ifndef YADE_CDVD
+#define YADE_CDVD
+
+#include "ps2int.h"
+
+enum CD_NCMD_CMDS {
+    CD_NCMD_READ = 0x01,
+    CD_NCMD_CDDAREAD,
+    CD_NCMD_DVDREAD,
+    CD_NCMD_GETTOC,
+    CD_NCMD_SEEK,
+    CD_NCMD_STANDBY,
+    CD_NCMD_STOP,
+    CD_NCMD_PAUSE,
+    CD_NCMD_STREAM,
+    CD_NCMD_CDDASTREAM,
+    CD_NCMD_READ_KEY,
+    CD_NCMD_NCMD,
+    CD_NCMD_READIOPMEM,
+    CD_NCMD_DISKREADY,
+    CD_NCMD_READCHAIN
+};
+
+enum SCECdvdSectorType {
+    SCECdSecS2048 = 0,
+    SCECdSecS2328,
+    SCECdSecS2340,
+    SCECdSecS2352 = 0,
+    SCECdSecS2368,
+    SCECdSecS2448,
+};
+
+enum SCECdvdSpinValue {
+    SCECdSpinMax = 0,
+    SCECdSpinStm = 0,
+    SCECdSpinDvdDL0 = 0,
+    SCECdSpinNom = 1,
+    SCECdSpinX1,
+    SCECdSpinX2,
+    SCECdSpinX4,
+    SCECdSpinX12,
+    SCECdSpinNm2 = 10,
+    SCECdSpin1p6,
+    SCECdSpinMx = 20,
+};
+
+enum SCECdvdMModeMediaType {
+    SCECdMmodeCd = 1,
+    SCECdMmodeDvd
+};
+
+enum SCECdvdInitMode {
+    SCECdINIT = 0x00,
+    SCECdINoD,
+    SCECdEXIT = 0x05
+};
+
+enum SCECdvdInterruptCode {
+    CdlNoIntr = 0x00,
+    CdlDataReady,
+    SCECdComplete,
+    CdlAcknowledge,
+    CdlDataEnd,
+    CdlDiskError,
+    SCECdNotReady
+};
+
+typedef struct {
+    u8 trycount;
+    u8 spindlctrl;
+    u8 datapattern;
+    u8 pad;
+} sceCdRMode;
+
+typedef int (*sceCdNCmdDiskReady_t)(void);
+typedef int (*_sceCd_ncmd_prechk_t)(int);
+typedef void (*_sceCd_cd_read_intr_t)(void *);
+typedef int (*sceCdSync_t)(int);
+typedef int (*sceCdDiskReady_t)(int);
+
+extern sceCdNCmdDiskReady_t sceCdNCmdDiskReady;
+extern _sceCd_ncmd_prechk_t _sceCd_ncmd_prechk;
+extern _sceCd_cd_read_intr_t _sceCd_cd_read_intr;
+extern sceCdSync_t sceCdSync;
+extern sceCdDiskReady_t sceCdDiskReady;
+
+extern int *sceCdCbfunc_num;
+extern int *_sceCd_c_cb_sem;
+extern void *_sceCd_cd_ncmd;
+extern int *_sceCd_ncmd_semid;
+
+int sceCdReadDVDV(u32 lbn, u32 nsectors, void *buf, sceCdRMode *rm);
+
+#endif

src/code/ps2cdvd.c

@@ -2,3 +2,5 @@
 
 sceSifInitRpc_t sceSifInitRpc;
 sceSifExitRpc_t sceSifExitRpc;
+sceSifCallRpc_t sceSifCallRpc;
+sceSifWriteBackDCache_t sceSifWriteBackDCache;

src/code/ps2cdvd.h

@@ -3,8 +3,12 @@
 
 typedef void (*sceSifInitRpc_t)(int);
 typedef void (*sceSifExitRpc_t)(void);
+typedef int (*sceSifCallRpc_t)(void *, int, int, void *, int, void *, int, void (*)(void *), void *);
+typedef void (*sceSifWriteBackDCache_t)(void *, int); 
 
 extern sceSifInitRpc_t sceSifInitRpc;
 extern sceSifExitRpc_t sceSifExitRpc;
+extern sceSifCallRpc_t sceSifCallRpc;
+extern sceSifWriteBackDCache_t sceSifWriteBackDCache;
 
 #endif