Category PS Vita CFW and Hacks       Thread starter PSXHAX       Start date Dec 23, 2018 at 5:30 PM       7,359       6            
While most are awaiting the 35c3 Talk on Exploiting PS4 Video Apps for ALL Firmware this December 28th, there will also be a Viva la Vita Vida (Live Stream - Relive) PlayStation Vita hacking lecture by Yifanlu and Davee at the Chaos Communication Congress on December 29th, 2018.

Until then, those who still own a PS Vita may want to check out xerpi's PlayStation Vita Linux Loader Kernel Plugin for PS Vita with details below! :cool:

Download: / GIT / / GIT

From the to quote: PlayStation Vita Linux Loader

What's this?

This is a kernel plugin that lets you run Linux in ARMv7 non-secure System mode.

How does it work?

At first, the plugin allocates a couple of physically contiguous buffers where it loads the Linux kernel image and the Device Tree Blob.

Then it triggers a power standby request and when PSVita OS is about to send the Syscon command to actually perform the standby, it changes the request type into a soft-reset and the resume routine address to a custom one (resume.s).

Once the PSVita wakes from the soft-reset, the custom resume routine executes and identity maps the scratchpad (address 0x1F000000) using a 1MiB section. Afterwards, the Linux bootstrap code (linux_bootstrap.s) is copied to the scratchpad where it proceeds and jumps to (passing some parameters such as the Linux and DTB physical addresses).

Since the Linux bootstrap code is now in an identity-mapped location, it can proceed to disable the MMU (and the caches) and finally jump to the Linux kernel.


You will need a compiled Linux kernel image (placed at ux0:/linux/zImage) and the corresponding DTB file (placed at ux0:/linux/vita.dtb).


This Linux loader will print debug info over UART0. Check UART Console for the location of the pins.


Thanks to everybody who has helped me, specially the Team Molecule (formed by Davee, Proxima, xyz, and YifanLu), TheFloW, motoharu, and everybody at the HENkaku Discord channel.

Download: Injecting_Software_Vulnerabilities_with_Voltage_Glitching.pdf (212 KB)
PlayStation Vita Linux Loader Kernel Plugin for PS Vita by Xerpi.jpg



Senior Member
nice great work by xerpi tho did anyone catch hostboot or htif being fully supported across 2 systems?

seems ppl love to run linux on own hardware. why not get a hifive unleashed
  • Microsemi HiFive Unleashed Expansion board
    • Again, this is the only expansion board available with multiple I/O Support
    • However, only PCIe, SATA, M.2 SSD connectors are enabled right now.
  • Radeon HD 6450 GPU card
    • Any Caicos-based card should be OK, but the kernel config instructs specific firmware to be used. It is recommended to use the above specific GPU as it is verified. In case you want to use any other GPU, load the appropriate firmware accordingly.
    • The GPU uses x16 PCI Express card connector.
  • PCIe to USB card (I have used this)
    • x1 PCI Express card connector can be used to provide USB ports for mouse/keyboard.
  • SATA Drive(HDD/SSD) or NVMe SSD. This is where the Fedora image will be copied. It is not recommended to use an image from a micro SD card.

    FYI: NVMe SSD should be connected via the NVMe M.2 connector present at the bottom of the expansion card. The board layout is available here:

cross compile from x86 then mnt to first disk partition

Recent Articles
Red Dead Redemption 2 PS4 Models and Textures Tool by ID-Daemon
Following his Spider-Man PS4 Skeletal Models & Textures Tool release and the recent RDR2 PS4 Modding Demos data miner @iddaemon (aka ID-Daemon) shared details on his Red Dead Redemption 2 PS4...
3D Renders of Rumored PS5 / PlayStation 5 Development Kit Patent Design
Proceeding the rumored PS5 / PlayStation 5 DevKit Patent that surfaced earlier this week, today some artist renditions based on the Sony patent have surfaced for those seeking a closer look at the...
Latest PlayStation 4 Game Trailer Videos from Gamescom 2019
Earlier this week we saw a Call of Duty: Modern Warfare 2v2 Alpha PS4 trailer video from Gamescom 2019, and below is some more fresh PlayStation 4 video game footage from this year's Gamescom...
Chiaki: Free and Open Source PS4 Remote Play Client by Thestr4ng3r!
Last month we reported on a PS4 Remote Play open source client in development by thestr4ng3r, and today he released Chiaki... the first free and open source PS4 Remote Play client software for...