Would you like to get all the newest Gaming News from
QJ.NET in your email each day?
Want to learn more about the team who brings you the QJ news?
Read about them now!
This is a discussion on Possible 2.6 glitch by IEUA within the PSP Homebrew and Hacks Discussion forums, part of the PSP Development, Hacks, and Homebrew category; sorry :icon_mad:...
this is interesting
This appears to happen due to corrupt compressed image data in the PNG resulting in the image appearing corrupt.
The corrupt image however is obviously randomly modified as you wrote a lot of ascii such as "IEUA HACK TEAM", "hahahaha", "ms0:\1.bin" and more all over the png... rather check libpng sources and target concretely.
Unlike as the photo browser, the GAME browser which is loading eboots on the psp seems to discard error informations when reading the PNG and "blindly" continue reading it.
EDIT: Actually the png library stops reading it and returns an error, however the eboot menu does not react to the error and shows the allocated image memory space (which has not been written too and contains memory garbage).
Your next step would be to go through the libpng sources and understand what is happening with your corrupt image step by step and/or find the exact point that triggers the freeze. You can not create anything usable out of "randomness".
This freezes on 2.0 and 2.5 FW aswell. (Does not restart, brightness mode change strill works)
The corrupt image on both FWs is different wheras on both FWs the displayed corrupt data contains strips of what you saw in the photo browser before triggering this freeze.
Btw, you can remove the "EBOOT" file without extension as it does not have any impact.
Sidenote: Unfortunately some people are completly offtopic.
Last edited by PSP250; 12-15-2005 at 03:21 AM.
On 2.60 for this "Glitch/POSSIBLE exploit" it shows parts of all the pictures i view, when i access this. Strange, but still kinda kool.
Ok, i have run some tests and i can state that the images have nothing to do with this and the corrupt image effect can be discarded as the image data was just simply modified putting some acii in it.
The freeze is triggered by the corrupt PMF video file and to dissapoint such stuff was reported a long time ago a few times already (if i remember right even with the exact PMF file you have in your eboot).
Excellent analysis, PSP250.
[size=-2][center][b][color=purple]Nintendo DS WFC codes[/b][/color][/center][/size][size=-2][center][b][color=green]Mario Kart DS: 180448 583615 (I-Ball)[/color]
[color=blue]Animal Crossing: Town of Sampson 4853-9284-6519 (I-Ball)[/color]
[color=red]Metroid Prime Hunters: 5025 8054 3555[/size][/center][/color][size=-2][center]-----------------[/center][center][color=blue]Homebrew authors! If your software is based upon GPL code then you MUST release the modified source code you created the same time you release the binaries![/b][/size][/color][/center]
[size=-2][center][b]Supercard mini-SD w/2GB 150x Mini-SD card, SuperPass II, FlashMe v7 and an EFA Linker II GBA flashcart[/b][/center][/size][/spoiler]
But why does it display part of what images you viewed in the photo viewer. Also, the PMF sometimes plays perfectly fine, meaning that it isnt corrupt.
It always crashes on my tests on 2.0 & 2.5 FW removing the PMF makes it not freeze at all.
The reason why you see image strips you viewed earlier is:
- The "viewer" allocates space for the eboot PNG image data somewhere around the memory location where it allocates memory space for all image files you view.
- Since the PNG compressed data is corrupted it skips reading (and thus writing to pixels to the allocated memory space) and shows the contents of the allocated space as if it would have read all pixels (which contains garbage and left over data from earlier allocations or other modifications).
- Since the image is 500x500 pixels you see quite some memory.
However no memory is overwritten here and no buffer overflow happens. It shows allocated but not "zeroed" out memory. It does not add to the main topic of this freeze, which is the PMF, not the images.
This PMF was used in some "omg its an exploit" eboots around the web months ago. ;)
It would need further investigation into the PMF format since the freeze happens there.
How long does it take for your PMF to freeze?
It immediately freezes (can still change brightness mode!) at the end (didnt watch it on PC yet). Just see the state of the video on the pics posted in the topic. "Exiting" it before this does not make it crash.
Mine doesn't freeze it runs perfect, the background is screwed and i can just back out
I see nothing wrong with the PMF.
same. mine will freeze about 25-33% of the time though, but the rest of the time i can view it perfectly
Originally Posted by PSP250
The eboot.pbp cloned itself for some reason. We didn't put that in there.
ok i do have a few things i would like to say...
PSP250: is right about most of his discoverys...
BUT there is no way to tell if this is or is not doing as a exploit does...
yes the stuff you look at before opening the eboot shows up. but have you tried video and music? you should... because every thing you do changes the way this eboot acts.
and another thing ... if you do take out the pmf file it does NOT change the way the psp freezes... lets just say its an additional timer to freeze the psp.
since this eboot acts different in so many ways on every different psp. there is no way we can say it doesnt work a certain way on another persons psp.
so with all the results that you are seeing and hearing about this eboot. just believe it.
it has shut off my 2.60 psp, it has froze my psp when i just opened the game folder. it has even froze my psp when i went to photos folder.
oh and here is one thing that amazed me the most... my battery life was at 96% before i went to the game folder on the psp. i opened the eboot to view it. it froze my psp. i let my psp sit there for maybe 10 or 15 minutes and i came back and my right green light was flashing... idk why it was doing that but it was.
with that said im telling you this eboot acts different everytime you do something on your psp
words from the creator
interesting. ya the pmf doesnt crash it. i put it into a gamesave and it never crashes.
TeamOverload do you have msn?
Thats really.....nice. Luckily I have no need for a downgrader, otherwise I'd be pissed at you. Plus if there was a downgrader we'd all know about it.
who said this was a downgrader?Originally Posted by yeaitspootie
you make no sense at all.
he edited his post, it's gone... he mentioned a downgrader link
that was honestly stupid of him to do. im sure he wouldnt like some one to call his work a downgrader.. if which it wouldnt be...
this eboot.pbp is so many things in one... it does know what you last looked at or it wouldnt show ;)...
that doesnt mean this is a downgrader... so you would have to be "retarded to think this is a downgrader"...
plus what is it with people and downgraders... heck the goal is to always get homebrew first...
and why would you need a downgrader if you can just use homebrew?
Agree, i have stated this point many times, but no one ever seems to learn
people need to know that... every psp site needs to post... "there is no need of a downgrader if you have homebrew"
oh crap i need to get to work... hey team overload add me to your msn messenger list ill talk to you later.
I am still wondering what you guys are trying to accomplish with this. I saw there was some weird text in the file, and somethings trying to link to a bin. I dont kno if it was coded successfully in however. Have you guys managed to get a bin to run? Please give more info.
thats a pretty weird looking glitch, sorta reminds me of the 2.0 overflow, nice find
supa_sick, PM me your MSN or AIM, i want to talk to you, i am from PSP3-D
+1Originally Posted by supa_sick
We want homebrew on new versions. Not go back to an older one.
thats so true....
now the bin file code i put in the eboot... IS a bin of which i have in the root of my psp memorystick... and it does act different then the release...
my psp shuts off + flashes the power light + my psp freezes just going the the photo folder... thats counting just going over the game folder with out opening it...
i dont want to give the bin file out because this is just something i think is a add on but might be the reason why my psp is screwing up different then what your peoples results are.
Last edited by supa_sick; 12-14-2005 at 04:26 PM.
has anyone found any more ideas with my file?
i havent messed with this eboot for a while so im just wondering if any of you have?