The N900 Marries PSJailbreak. Produces PSFreedom.

Success! Breakthrough with successful payload delivery, code execution and exploitation has happened. Both a Palm Pre and an N900 have been used, by completely separate developers, to "jailbreak" the Playstation 3.

Using a modified kernel driver, KaKaRoTo has been able to successfully emulate multiple USB devices to deliver his payload for the psgroove vulnerability, giving you the ability to run unsigned code and opens doors for developers, hackers and homebrew'ers. PSFreedom.

He has said source and all will be released shortly, but has provided the kernel driver, compiled against the stock OMAP1 kernel for the N900. It's literally plug and play.

Meanwhile, Hector Martin has been working with his OMAP3 beagleboard, and has received word from a fellow tester that he was able to tinker with gadget and sysfs enough on his Palm Pre, to deliver the code to a PS3 sporting 3.41 firmware.

I prefer the userspace approach, however once KaKaRoTo releases his source, I'll be compiling it for my kernel and giving it a shot!

Ain't this device just the best?

10 comments:

Anonymous said...

could this also working on a nokia n73 ?

Anonymous said...

OR how about any nokia smarkphone? I myself have a nokia 5800. If its working on one nokia phone, would it be easy or hard to port to another nokia?

Anonymous said...

lol, no won't work on the Nokia Symbian phones.

Anonymous said...

Video or it didn't happen.

Anonymous said...

Any chances this will work with an older N800 (collecting dust).

Anonymous said...

Found my own answer...

Info from Kakarotos site:


Update on PSJailbreak linux kernel (for N900 devices)

Hi all,

For all those who kept bugging me on IRC about “what’s your status” and “when will you release it”, etc.. I’d like to give you a quick status update on my project :

First, this is NOT and I repeat, it’s NOT a port of PSGroove for the N900.. I started my project long before PSGroove was released, and my code has absolutely nothing to do with theirs and we don’t share any code in common. It is NOT a port, it’s a different implementation of the same exploit!
Secondly, it’s going pretty well so far, I finished writing it, all the code is there, and I’m testing it but I’m still getting some issues, for some reason the PS3 isn’t accepting the JIG, I hope I can get this fixed soon, so please, everyone just be patient, I will release it when it’s ready! But the good news is that it’s doable apparently!

For those who read my previous post, here’s an update :

- The kernel OOPS I was getting on linux was because my ‘hub’ was a high speed one, and when a device gets connected, the reply to GetPortStatus ommitted the ‘high speed’ flag in the response.. apparently, a high speed hub can only have high speed devices plugged into it, you can’t plug full speed or low speed devices in a hub, otherwise, your linux kernel crashes! It’s a use case the kernel developers didn’t think of (or didn’t find a way to test it). I will also soon release the code to reproduce that oops so people can look into it.

- I was able to get and set the address on the controller, but I had to add two new functions to the usb-gadget API. This means that you will eventually need to flash your device’s kernel to get advantage of the new functions.

- I figured out how to send a NAK in response to a IN interrupt.. you simply don’t queue anything, the controller apparently takes care of that automatically for you! and I had to read almost all of the controller’s code to figure that one out!

By writing this exploit as a standard linux driver, this means that my module can be used on any other linux-enabled devices.. this means not only the N900, but also the 770, N800, N810, Android phones and future Meego devices. It might need a little porting for some devices though, but it should still work…

That’s it, I’ll keep you informed on how it goes. Hopefully, we’ll soon be able to run homebrew on our PS3 simply by plugging our N900 to it, what a wonderful device it is

Anonymous said...

Found my own answer...

Info from Kakarotos site:


Update on PSJailbreak linux kernel (for N900 devices)

Hi all,

For all those who kept bugging me on IRC about “what’s your status” and “when will you release it”, etc.. I’d like to give you a quick status update on my project :

First, this is NOT and I repeat, it’s NOT a port of PSGroove for the N900.. I started my project long before PSGroove was released, and my code has absolutely nothing to do with theirs and we don’t share any code in common. It is NOT a port, it’s a different implementation of the same exploit!
Secondly, it’s going pretty well so far, I finished writing it, all the code is there, and I’m testing it but I’m still getting some issues, for some reason the PS3 isn’t accepting the JIG, I hope I can get this fixed soon, so please, everyone just be patient, I will release it when it’s ready! But the good news is that it’s doable apparently!

For those who read my previous post, here’s an update :

- The kernel OOPS I was getting on linux was because my ‘hub’ was a high speed one, and when a device gets connected, the reply to GetPortStatus ommitted the ‘high speed’ flag in the response.. apparently, a high speed hub can only have high speed devices plugged into it, you can’t plug full speed or low speed devices in a hub, otherwise, your linux kernel crashes! It’s a use case the kernel developers didn’t think of (or didn’t find a way to test it). I will also soon release the code to reproduce that oops so people can look into it.

- I was able to get and set the address on the controller, but I had to add two new functions to the usb-gadget API. This means that you will eventually need to flash your device’s kernel to get advantage of the new functions.

- I figured out how to send a NAK in response to a IN interrupt.. you simply don’t queue anything, the controller apparently takes care of that automatically for you! and I had to read almost all of the controller’s code to figure that one out!

By writing this exploit as a standard linux driver, this means that my module can be used on any other linux-enabled devices.. this means not only the N900, but also the 770, N800, N810, Android phones and future Meego devices. It might need a little porting for some devices though, but it should still work…

That’s it, I’ll keep you informed on how it goes. Hopefully, we’ll soon be able to run homebrew on our PS3 simply by plugging our N900 to it, what a wonderful device it is

Anonymous said...

This plan must have an understanding off the facility and an understanding of the products because can best be utilized.
Before you buy one, decide on which specific place getting into the heater to
be or located.

Also visit my homepage ... infrared heaters reviews consumer reports

Anonymous said...

All wants to spin with slow pace in their health and so,
there are taken every single possible decisions to make life quickly and comfortable.
Which the form than goes thru verification and approved.


Feel free to surf to my web-site - pikavippivertailu

Anonymous said...

And it is the eligible person biggest reason why SEO Companies
still make a successful presence vis--vis return generation.
They will a wide regarding options per services, suiting your
web-site needs as properly as your inner compartment!


Look into my weblog; quick seo service

Post a Comment