| kikeadsl |
01-29-2013 05:36 AM |
CFW 4.31 OtherOS++ real no spoof, qaflag, bd emu and more...
The developer MiralaTijera has released the FIRST FULL 4.31 CFW
Quote:
hi, basically I stand in the community giving what I made in the dark slowly ..
This is my FULL 4.31 4.31 cfw spoof's nothing, it's all ported to the 4.31, and ...
I give to my multitool also called "core" which is nothing more than a self that load at startup console
if this is available in the right usb of your console "/ dev_usb000 /" which among other things
dumpea flash console, you enable qa flags (yes in 4.31 directly) and gets you out and gets you the
factory mode ... I put the specs:
CoreOS lv1 hash downgradeadas deactivated for consoles
lv1 183/182 undocummented (LV1 peek / poke)
lv1 OtherOS + +
VSH: nas_plugin (all pkgs installable game_ext explore_plugin and plugin to show install package and
eliminate epilepsy warning message (though the latter with qa flag leaves only) and for patched vsh rif / rap fakesign)
(This last with qa flag leaves only)
default.spp: added extra memory for otheros GameOS
lv2 peek / poke, syscall 6/7,
lv1 lv2 peek / poke (optional syscall 8/9 via core)
Hermes Payload with 36 ported sc
APPLDR: lv2 memory hashing disabled from appldr (no need to have it at lv1 parcheeis) dev_flash whitelist disabled (load any keyset from dev_flash) and ECDSA Off
ISOLDR: ECDSA Off
SPP_VERIFIER: ECDSA Off
spu_utoken_processor: ECDSA off (qa flag)
payload here to include in your C fixes and managers with the hook
pastie.org/private/cxg8xvohjbh99q45jw (payloadwith SC36)
pastie.org/private/rbmvhgepnwlisvqm1zvchq (lv2 lv1 calls)
Now the core ...
is an all-in-one, this cfw to start looking at the dev_usb000 if a and a file called cellftp.self and
another called copy_script.txt, enable disable search whoever can do it simply by putting the original sys_init_osd.self 4.31 in dev_flash folder / sys / internal / here and no longer seek more ...
then developed a homebrew called core which makes everything a little
the self has to go along with pendrive root folder copy_script.txt and flags with flags (functions)
as you want to within
when starting the console will look and run, leave a log of what was done in the root called core.log
aré mention the most important and tomorrow I explain a little more
BD emu flag is for if you have not and do not controller works if you activate this flag npdrm console will behave as if tubieraís reader
enableqa, enable you qa flag directly in 4.31 ..
nand dump
nor dump
lv2 dump
full ram dump
etc. ..
the changelog here .. =
Code: Select all
,
dM
MMr
4MMML.
MMMMM. xf
. M6MMM. MM-
Mh .. + MM5MMM. MMMM
. MMM. . MMMMML. Mmmmmh
) Hmmm. MMMMMMM MM5MMM
3MMMMx. MMM3MMf xnMMMMMM
* MMMMM MMMMMM. nMMMMMMP
* MMMMMx MMMM5M. MMMMMMM =
* Mmmmmh NMMMMM JMMMMMMP
MMMMMM IMMMMM. dMMMMMM.
MMMMMM MMMM. MMMMMM. NnMP
.. * MMMMx dMMMM MMM. NnMMMMM *
MMn ... 'MMMMr' MM MMM. NMMMMMMM *
4MMMMnn .. * MM MMM MMP. DMMMMMMM
^ MMMMMMMMx. * ML M. M *. MMMMMM **
* PMMMMMMhn. * X> M. MMMM **
MMMMhx ** / .h /. = *
3 P ...
nP * MMnx
core 2.6.5
2.6.5 changelog:
Added flag toggle_recovery MAKES A WIPE OF FAT darling!
fixeadas 6 flags
removed epilepsy warning
core 2.6.0
2.6.0 changelog:
Added flag to clean debris from otheros's flag (used in cases of trouble entering recovery)
2.5.0 changelog:
Added otheros (minituto end)
dumpnandflash fixeado dumpea bootloader flag now also have a full backup of critical data from the console.
flags:
toggle_recovery = MAKES A WIPE OF FAT
clear_bootparam = clean debris flag's use of otheros
custom_boot_nor = boot at dev_usb consoles customboot.self from North
custom_boot_nand = boot at customboot.self from nand consoles dev_usb
boot_otheros = boot at otheros
install_otheros = dtbImage.ps3.bin installed in cell_os_ext_area
prepares setup_flash_for_otheros = nand / nor to be installed otheros
enterfactory = gets you into factory ... xD
load = payload from payloaderdev dev_usb000/payloads/431cex.bin
load = payload Payloader from core to use Multiman new
active = qa flags enableqa
removeqa = qa flags off
fullramdump = full ram dump xD
activated bdemu = bd emulator to use the console without controller
dumpdevflash = dumpea dev_flash partitions in the raw
dumplv2 = dumpea lv2
nordump = dumpea the NOR Flash
exitfactory leaves the factory mode =
dumpnandflash = nand flash dumpea fat consoles (including bootloader)
tutorial otheros boot:
start with only core setup_flash_for_otheros flag,
to hear a double beep is that everything went well,
if you do not hear looking log,
Put this after the dtbImage.ps3.bin that corresponds to your console type dtbImage.ps3.bin.nand
dtbImage.ps3.bin.nor is for nand and nor it is for renombrais to dtbImage.ps3.bin
and you put it in root of pendrive as appropriate in your case and you put the flag install_otheros,
same start and soon will hear 2 beeps sound if you look at the log to and that something is wrong,
Once done turn off the console and put the flag boot_otheros, when you start your petitboot will see on the screen:
hermes thanks, I used your cosunpkg and cospkg for CoreOS and payload lined with SC36 and more ... :-)
link all this:
pastie.org/5913506
mirror thanks to "Palestinian" ul.to/0mp1pmbl
function bd emu's I have also built in a 3.55 cfw I'm uploading it is always useful to dump your key root
to make your cfw patcher Open delta, in original file Appoint the OFW 4.31 from here:
in xdelta patch, the patch obviously apply and give the option to check and keep the original file checksum enabled, you will create another file called * NEW.pup being * the name that you do them to ofw
hashes the pup should be good:
Code: Select all
CRC32: 203E06EC
MD5: AD09B0CB3C09CFCCAB578E4E85969830
SHA-1: 7258E1BB84ED6E8AB0F6325A0199B65F82C7ADEF
ofcourse not brickea any console, hidden takes time and has been tested on all systems that can be installed :-)
I give the core src polish it once, honestly I'm embarrassed both comment on the code xD
you enjoy it, just as I will update the post in these 3 days with what I forget, that sure is a lot to this fw has had his job for ..
Now comes Rogero and copy xDDDDDDD
|
|
