back

Console Hacking 2016

PS4: PC Master Race

If you suspend your transcription on amara.org, please add a timestamp below to indicate how far you progressed! This will help others to resume your work!

Please do not press “publish” on amara.org to save your progress, use “save draft” instead. Only press “publish” when you're done with quality control.

Video duration
00:53:43
Language
English
Abstract
Last year, we demonstrated Linux running on the PS4 in a lightning talk - presented on the PS4 itself. But how did we do it? In a departure from previous Console Hacking talks focusing on security, this year we're going to focus on the PS4 hardware, what makes it different from a PC, and how we reverse engineered it enough to get a full-blown Linux distro running on it, complete with 3D acceleration.

So you have an exploit. You have code execution. Great! But what do you do now?

In the past, console homebrew usually focused on bringing up a development environment similar to the one used for commercial games. However, with the increasing complexity of console hardware, it's becoming impractical for a small team of hackers to create a full blown development SDK. Using leaked official SDKs is illegal. What can we do? Well, there's Linux.

The PS4 is particularly great for Linux, because it is based on a modified x86 platform and a modified Radeon GPU. That means that once the basic OS port is complete, it can run existing games - even Steam games and other commercial software. But just how similar is the PS4 to a PC? Can you just throw GRUB on it and boot an Ubuntu kernel? Not quite.

In this talk we'll cover the PS4 hardware and part of its software environment, and how we reverse engineered enough of it to write Linux drivers and kernel patches. We'll go over how we went from basic code execution to building a 'kexec' function that can boot into Linux from the PS4's FreeBSD-based kernel. We'll reverse engineer the PS4's special hardware, from special PCI interrupt management to the HDMI encoder. We'll dive deep into the Radeon-based GPU architecture, and we'll share some previously unreleased research and tools of interest to AMD Radeon driver developers and hackers.

If you're interested in the strange world of x86 hardware that isn't quite a PC, then this talk is for you.

Talk ID
7946
Event:
33c3
Day
1
Room
Saal 1
Start
11 p.m.
Duration
01:00:00
Track
Security
Type of
lecture
Speaker
marcan
Talk Slug & media link
33c3-7946-console_hacking_2016

Talk & Speaker speed statistics

Very rough underestimation:
177.8 wpm
958.6 spm
181.4 wpm
985.3 spm
100.0% Checking done100.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
0.0% Nothing done yet0.0%
  

Work on this video on Amara!

Talk & Speaker speed statistics with word clouds

Whole talk:
177.8 wpm
958.6 spm
writelinuxgpups4workthingworksstuffpccodememorydeviceamdpciethingsapplauseregistersouthbridgebitfreebsdcpugoodquestionkernelusbexploitdrivermarcanreadbasicallyinterruptsinterruptaddressgreatserialtimedevicesx86driversfinecommandsheyspaceaeoliaringsony1hdmicontrollerbuffer
marcan:
181.4 wpm
985.3 spm
writegpulinuxps4workworksthingmemorypcpciecodedeviceregisterstuffsouthbridgeamdbitapplausethingscpureadaddressinterruptsfreebsdgreatserialinterruptusbdevicesgoodaeoliadriverspaceringcontrollercommandsbasicallyfineheyhdmisystem1timebusdriverskerneliommubufferrunsx86