PATCHED IPLS By Mathieulh
Those are 1.00 and 1.50 patched IPLs, they will load plain (decrypted) modules and config.txt
the ones in the "Dumps 0xbfc00000 to 0x883f0000 and supports plain modules" folder will also copy 0xbfc00000 to 0x883f0000
whereas the ones in "Plain Support with 0xbfc00000 dump and TA082 clockgen fix" add the TA-082 clockgen fix (though this is only relevant for
retail systems, as I only own development units, I tested this patch on a DTP-T1000 system)
The 0x883f0000 address is overwritten on development units and cannot be used to retrieve relevant data (so is 0xBFC00000),
you may however modify the addresses and rebuild the sources and IPL to your liking.
The plain text patch uses the patched payload from https://github.com/mathieulh/150IPL_PLAINMODULES
"Lib-PSP iplloader" contains Special kbooti that only run on development kits, which allow to run/bootstrap decrypted Lib-PSP iplloader code
This follows the project here: https://github.com/mathieulh/Lib-PSP-iplloader-Bootstraper-for-DTP-T1000
Lib-PSP iplloader0.9.0_bfe03000.bin : patched iplloader0.9.0 (used in 0.9.0 to 2.5.0 SDKs to run IPL from 0xBFE03000 (0x3000 in the file)
Tachyon0x00140000i.bin: Tachyon 0x00140000 (TA-079 to TA-081 pre-ipl) patched to run on Development kit.
Tachyon0x00140000i_CS_Mode.bin: Tachyon 0x00140000 (TA-079 to TA-081 pre-ipl) patched to run on Development kit with forced service mode
Tachyon0x00400000i.bin: Tachyon 0x00400000 (TA-082 to TA-088 pre-ipl) patched to run on Development kit with forced service mode
Tachyon0x00400000i_CS_Mode.bin: Tachyon 0x00400000 (TA-082 to TA-088 pre-ipl) patched to run on Development kit with forced service mode
DOWNLOAD LINK:
UPDATE: Added patched loadcore for 1.0.2 and 1.0.3 firmware.
UPDATE2: I updated the 1.00 IPLs to use a patched 1.00 payload instead of the a mix between 1.00 main.bin and 1.50 payload as this seems to may have caused incompatibilities on retail systems (it worked on devkit though), this is cleaner either way,(albeit more work for me) since those are full 1.00 IPLs now
UPDATE3: Added IPLs that dump to 0x883e0000 for testing purposes
UPDATE4: Added patched test (DTP-H1500) 1.50 modules.
UPDATE5: Added 1.0.3 patched modules in encrypted form as well as the 1.0.3 patched vsh
Those are 1.00 and 1.50 patched IPLs, they will load plain (decrypted) modules and config.txt
the ones in the "Dumps 0xbfc00000 to 0x883f0000 and supports plain modules" folder will also copy 0xbfc00000 to 0x883f0000
whereas the ones in "Plain Support with 0xbfc00000 dump and TA082 clockgen fix" add the TA-082 clockgen fix (though this is only relevant for
retail systems, as I only own development units, I tested this patch on a DTP-T1000 system)
The 0x883f0000 address is overwritten on development units and cannot be used to retrieve relevant data (so is 0xBFC00000),
you may however modify the addresses and rebuild the sources and IPL to your liking.
The plain text patch uses the patched payload from https://github.com/mathieulh/150IPL_PLAINMODULES
"Lib-PSP iplloader" contains Special kbooti that only run on development kits, which allow to run/bootstrap decrypted Lib-PSP iplloader code
This follows the project here: https://github.com/mathieulh/Lib-PSP-iplloader-Bootstraper-for-DTP-T1000
Lib-PSP iplloader0.9.0_bfe03000.bin : patched iplloader0.9.0 (used in 0.9.0 to 2.5.0 SDKs to run IPL from 0xBFE03000 (0x3000 in the file)
Tachyon0x00140000i.bin: Tachyon 0x00140000 (TA-079 to TA-081 pre-ipl) patched to run on Development kit.
Tachyon0x00140000i_CS_Mode.bin: Tachyon 0x00140000 (TA-079 to TA-081 pre-ipl) patched to run on Development kit with forced service mode
Tachyon0x00400000i.bin: Tachyon 0x00400000 (TA-082 to TA-088 pre-ipl) patched to run on Development kit with forced service mode
Tachyon0x00400000i_CS_Mode.bin: Tachyon 0x00400000 (TA-082 to TA-088 pre-ipl) patched to run on Development kit with forced service mode
DOWNLOAD LINK:
5.08 MB file on MEGA
mega.nz
UPDATE: Added patched loadcore for 1.0.2 and 1.0.3 firmware.
UPDATE2: I updated the 1.00 IPLs to use a patched 1.00 payload instead of the a mix between 1.00 main.bin and 1.50 payload as this seems to may have caused incompatibilities on retail systems (it worked on devkit though), this is cleaner either way,(albeit more work for me) since those are full 1.00 IPLs now
UPDATE3: Added IPLs that dump to 0x883e0000 for testing purposes
UPDATE4: Added patched test (DTP-H1500) 1.50 modules.
UPDATE5: Added 1.0.3 patched modules in encrypted form as well as the 1.0.3 patched vsh
Last edited: