Advertising (This ad goes away for registered users. You can Login or Register)

Crash

Forum rules
Forum rule Nº 15 is strictly enforced in this subforum.
stavrosomo
Posts: 109
Joined: Sun May 29, 2011 10:36 am

Re: Crash

Post by stavrosomo »

thank you Ibocan for your message. This crash maybe useful but the problem is that i do not know how to continue from now on!
This is the reason why i am asking help in this thread from people who are more experienced from me!
Advertising
noname120
Developer
Posts: 777
Joined: Thu Oct 07, 2010 4:29 pm

Re: Crash

Post by noname120 »

Before you crash the game, please do

Code: Select all

bpset 0x088B5E54
Then please run your stuff and then type

Code: Select all

hwprint
step
hwprint
But there is not much hope :/
Advertising
Funny stuff
<yifanlu> I enjoy being loud and obnoxious
<yifanlu> rooting an android is like getting a hooker pregnant
<xerpi> I sometimes think I should leave all this stressing **** and be a farmer instead
stavrosomo
Posts: 109
Joined: Sun May 29, 2011 10:36 am

Re: Crash

Post by stavrosomo »

i tried once but i got this message when i got into memory card to run the game.

Code: Select all

host0:/> bpset 0x088B5E54
host0:/> 0x088B5E54: 0x0000000D '....' - break      0x0

But after i tried again by reseting vsh and then write again bpset 0x088B5E54.
this time it did not crash on the menu but it crashed on the game as it was normally doing.
then i typed the rest of the commands you told me and here are the results i got.

Code: Select all

host0:/> host0:/> bpset 0x088B5E54
host0:/> host0:/> Loading all modules ... Ready
Exception - Address load/inst fetch
Thread ID - 
Th Name   - 
Module ID - 
Mod Name  - 
EPC       - 0x088B5EB8
Cause     - 0x10000010
BadVAddr  - 0x61616159
Status    - 0x60088613
zr:0x00000000 at:0x09FFFB00 v0:0x089AE05F v1:0xFFFFFFFF
a0:0x089AE060 a1:0x61616161 a2:0x61616159 a3:0x089AE05F
t0:0x00000001 t1:0x040C7515 t2:0x00000000 t3:0x00000000
t4:0x01010101 t5:0x0004A871 t6:0x09C01EE8 t7:0x088B54A8
s0:0x089AE058 s1:0x089AE000 s2:0x089AE060 s3:0x61616161
s4:0x089AE058 s5:0x089AE038 s6:0x00000001 s7:0x61616161
t8:0x0002EB80 t9:0x00005D70 k0:0x09FFFB00 k1:0x00000000
gp:0x00000000 sp:0x09FFF170 fp:0x09C01EE0 ra:0x088B54D4
0x088B5EB8: 0x8CA3FFF8 '....' - lw         $v1, -8($a1)
hwprint
<HW Debug Registers>
DRCNTL: 0x0043C104
IBC   : 0x00000010
DBC   : 0x00000010
IBA   : 0x00000000
IBAM  : 0x00000000
DBA   : 0x00000000
DBAM  : 0x00000000
DBD   : 0x00000000
DBDM  : 0x00000000
host0:/> step
host0:/> Exception - Address load/inst fetch
Thread ID - 
Th Name   - 
Module ID - 
Mod Name  - 
EPC       - 0x088B5EB8
Cause     - 0x10000010
BadVAddr  - 0x61616159
Status    - 0x60088613
zr:0x00000000 at:0x09FFFB00 v0:0x089AE05F v1:0xFFFFFFFF
a0:0x089AE060 a1:0x61616161 a2:0x61616159 a3:0x089AE05F
t0:0x00000001 t1:0x040C7515 t2:0x00000000 t3:0x00000000
t4:0x01010101 t5:0x0004A871 t6:0x09C01EE8 t7:0x088B54A8
s0:0x089AE058 s1:0x089AE000 s2:0x089AE060 s3:0x61616161
s4:0x089AE058 s5:0x089AE038 s6:0x00000001 s7:0x61616161
t8:0x0002EB80 t9:0x00005D70 k0:0x09FFFB00 k1:0x00000000
gp:0x00000000 sp:0x09FFF170 fp:0x09C01EE0 ra:0x088B54D4
0x088B5EB8: 0x8CA3FFF8 '....' - lw         $v1, -8($a1)
hwprint
<HW Debug Registers>
DRCNTL: 0x0043C104
IBC   : 0x00000010
DBC   : 0x00000010
IBA   : 0x00000000
IBAM  : 0x00000000
DBA   : 0x00000000
DBAM  : 0x00000000
DBD   : 0x00000000
DBDM  : 0x00000000
frostegater
Guru
Posts: 426
Joined: Mon Jan 24, 2011 1:54 pm
Location: Russia

Re: Crash

Post by frostegater »

To make "step" you should delete breakpoint.
Our hearts will beating on 333MHz 'till we die
stavrosomo
Posts: 109
Joined: Sun May 29, 2011 10:36 am

Re: Crash

Post by stavrosomo »

you mean that i should first write this before i run the game

Code: Select all

bpset 0x088B5E54
then i should write "hwprint" after the crash happens
and then i should restart my psp and then do "step" and then again hwprint?

sorry i am asking fool questions
stavrosomo
Posts: 109
Joined: Sun May 29, 2011 10:36 am

Re: Crash

Post by stavrosomo »

frostegater or anybody else, can you please help me continue? Tell me if there is somebody who can help as i am still waiting for so long for just a simple answer. If i knew what i am going to do then i was going to ask.
noname120
Developer
Posts: 777
Joined: Thu Oct 07, 2010 4:29 pm

Re: Crash

Post by noname120 »

My instructions were not complete:

Before you crash the game, please do

Code: Select all

bpset 0x088B5E54

Then please run your stuff and then type

Code: Select all

bpdel 0x088B5E54
hwprint
step
hwprint
Again, your exploit is most likely not expoitable.
Funny stuff
<yifanlu> I enjoy being loud and obnoxious
<yifanlu> rooting an android is like getting a hooker pregnant
<xerpi> I sometimes think I should leave all this stressing **** and be a farmer instead
stavrosomo
Posts: 109
Joined: Sun May 29, 2011 10:36 am

Re: Crash

Post by stavrosomo »

Here is what i got:

Code: Select all

host0:/> bpset 0x088B5E54
host0:/> host0:/> Loading all modules ... Ready
Exception - Address load/inst fetch
Thread ID - 
Th Name   - 
Module ID - 
Mod Name  - 
EPC       - 0x088B5EB8
Cause     - 0x10000010
BadVAddr  - 0x61616159
Status    - 0x60088613
zr:0x00000000 at:0x09FFFB00 v0:0x089AE05F v1:0xFFFFFFFF
a0:0x089AE060 a1:0x61616161 a2:0x61616159 a3:0x089AE05F
t0:0x00000001 t1:0x040CF115 t2:0x00000000 t3:0x00000000
t4:0x01010101 t5:0x0004A871 t6:0x09C01EE8 t7:0x088B54A8
s0:0x089AE058 s1:0x089AE000 s2:0x089AE060 s3:0x61616161
s4:0x089AE058 s5:0x089AE038 s6:0x00000001 s7:0x61616161
t8:0x0002EB80 t9:0x00005D70 k0:0x09FFFB00 k1:0x00000000
gp:0x00000000 sp:0x09FFF170 fp:0x09C01EE0 ra:0x088B54D4
0x088B5EB8: 0x8CA3FFF8 '....' - lw         $v1, -8($a1)
bpdel 0x088B5E54
host0:/> hwprint
<HW Debug Registers>
DRCNTL: 0x0043C104
IBC   : 0x00000010
DBC   : 0x00000010
IBA   : 0x00000000
IBAM  : 0x00000000
DBA   : 0x00000000
DBAM  : 0x00000000
DBD   : 0x00000000
DBDM  : 0x00000000
host0:/> step
host0:/> Exception - Address load/inst fetch
Thread ID - 
Th Name   - 
Module ID - 
Mod Name  - 
EPC       - 0x088B5EB8
Cause     - 0x10000010
BadVAddr  - 0x61616159
Status    - 0x60088613
zr:0x00000000 at:0x09FFFB00 v0:0x089AE05F v1:0xFFFFFFFF
a0:0x089AE060 a1:0x61616161 a2:0x61616159 a3:0x089AE05F
t0:0x00000001 t1:0x040CF115 t2:0x00000000 t3:0x00000000
t4:0x01010101 t5:0x0004A871 t6:0x09C01EE8 t7:0x088B54A8
s0:0x089AE058 s1:0x089AE000 s2:0x089AE060 s3:0x61616161
s4:0x089AE058 s5:0x089AE038 s6:0x00000001 s7:0x61616161
t8:0x0002EB80 t9:0x00005D70 k0:0x09FFFB00 k1:0x00000000
gp:0x00000000 sp:0x09FFF170 fp:0x09C01EE0 ra:0x088B54D4
0x088B5EB8: 0x8CA3FFF8 '....' - lw         $v1, -8($a1)
hwprint
<HW Debug Registers>
DRCNTL: 0x0043C104
IBC   : 0x00000010
DBC   : 0x00000010
IBA   : 0x00000000
IBAM  : 0x00000000
DBA   : 0x00000000
DBAM  : 0x00000000
DBD   : 0x00000000
DBDM  : 0x00000000
stavrosomo
Posts: 109
Joined: Sun May 29, 2011 10:36 am

Re: Crash

Post by stavrosomo »

anybody tell me if there is anything useful in this crash???...............still waiting some many days for answer......
noname120
Developer
Posts: 777
Joined: Thu Oct 07, 2010 4:29 pm

Re: Crash

Post by noname120 »

I told you to display registers with hwprint but it actually doesn't display the registers we need.

I don't remember what is the instruction to display gp registers...
Funny stuff
<yifanlu> I enjoy being loud and obnoxious
<yifanlu> rooting an android is like getting a hooker pregnant
<xerpi> I sometimes think I should leave all this stressing **** and be a farmer instead
Locked

Return to “Programming and Security”