Hacking BootNTR New Version Research

jesus.cocano

Member
Newcomer
Joined
Jan 28, 2016
Messages
7
Trophies
0
Age
36
XP
75
Country
Mexico
It left me stuck on the "patching svc check" on the astronautlevel2 CIA's and Naquitas selector throws me after the principlal menu to reset the console, I'm using NTR3.4 and OS 11.2
 

Nanquitas

Well-Known Member
Member
Joined
Sep 29, 2015
Messages
2,345
Trophies
0
Age
30
Location
South of France :)
XP
3,336
Country
France
It may be because those cache addresses changed:
Code:
dbgKernelCacheInterface cacheInterface_Old111 =
{
    //for old 3ds 11.1
    (void*)0xFFF255A8,
    (void*)0xFFF1D7D4,
    (void*)0xFFF1D56C,
    (void*)0xFFF1FCCC
};

dbgKernelCacheInterface cacheInterface_NEW111 =
{
    //for new 3ds 11.1
    (void*)0xFFF261F0,
    (void*)0xFFF1DF6C,
    (void*)0xFFF1DC14,
    (void*)0xFFF202A8
};

Maybe @Aurora Wright & @TuxSH can tell us how they found it the last time so we'll be able to do it too ?

I don't mind searching, but I've no idea on what I need to search or what these addresses are supposed to represent...:blush:

--------------------- MERGED ---------------------------

In FBI, it says BootNTR is version 2048... Is that the latest BootNTR? I do have a N3DS and the BootNTR I have installed does seem to work on FW 11.2...
This version is set in the rsf and never updated.

Look for the number in the app, mine will show it on the left top edge of the top screen.

Last being 2.2 but is broken...
 

jesus.cocano

Member
Newcomer
Joined
Jan 28, 2016
Messages
7
Trophies
0
Age
36
XP
75
Country
Mexico
In FBI, it says BootNTR is version 2048... Is that the latest BootNTR? I do have a N3DS and the BootNTR I have installed does seem to work on FW 11.2...
I have BootNTR version 2048 and BootNTRSelector Version 2048

--------------------- MERGED ---------------------------

I have Version 2.2 of BootNTRSelector by Naquitas
 

Skeet1983

Well-Known Member
Member
Joined
Apr 22, 2012
Messages
3,586
Trophies
1
Age
41
Location
Somewhere, out there...
XP
3,177
Country
United States
It may be because those cache addresses changed:
Code:
dbgKernelCacheInterface cacheInterface_Old111 =
{
    //for old 3ds 11.1
    (void*)0xFFF255A8,
    (void*)0xFFF1D7D4,
    (void*)0xFFF1D56C,
    (void*)0xFFF1FCCC
};
 
dbgKernelCacheInterface cacheInterface_NEW111 =
{
    //for new 3ds 11.1
    (void*)0xFFF261F0,
    (void*)0xFFF1DF6C,
    (void*)0xFFF1DC14,
    (void*)0xFFF202A8
};

Maybe @Aurora Wright & @TuxSH can tell us how they found it the last time so we'll be able to do it too ?

I don't mind searching, but I've no idea on what I need to search or what these addresses are supposed to represent...:blush:

--------------------- MERGED ---------------------------


This version is set in the rsf and never updated.

Look for the number in the app, mine will show it on the left top edge of the top screen.

Last being 2.2 but is broken...

How is BootNTR broken, as in it doesn't boot at all? I have FW 11.2 and it seems to boot ok, but I have not tested game cheat plugin or anything yet...
 

Canadian_l3acon

Member
Newcomer
Joined
Oct 6, 2016
Messages
12
Trophies
0
Age
34
XP
62
Country
United States
Okay this one shouldn't auto downgrade.

@ih8ih8sn0w: Are you saying that it's working fine on a 11.2 firmware ?

So just to be clear, are most of us waiting on an updated NTR? I have tried every new release in this thread and none of them have allowed me to stream to my PC. The closest thing to success for me was the quote above. I am on a n3ds xl 11.2, Luma v6.3.1 with the patch SVC option disabled.
 

Favna

#PCMasterRace
Member
Joined
Sep 12, 2009
Messages
864
Trophies
1
Website
twitter.com
XP
822
Country
Netherlands
It's possible downgrade to 11.1, to use NTR?
If you made a 11.1 backup (which.. you should've tbh) then you can

  1. Backup 11.2
  2. restore 11.1
  3. Dump your own NFirm
  4. rename it to firmware.bin and dump it in /luma
  5. restore 11.2
  6. enable "loading of external firmware" in luma
(dumping, backing up and restoring all supported by Decrypt9)
 

Noroxus

Margen67 Supporter
Member
Joined
Jul 7, 2013
Messages
442
Trophies
1
Location
Glorious Nippon
XP
849
Country
Germany
If you made a 11.1 backup (which.. you should've tbh) then you can

  1. Backup 11.2
  2. restore 11.1
  3. Dump your own NFirm
  4. rename it to firmware.bin and dump it in /luma
  5. restore 11.2
  6. enable "loading of external firmware" in luma
(dumping, backing up and restoring all supported by Decrypt9)
Can't he just use someones dumped 11.1 NFirm its not like they are console unique
 

Favna

#PCMasterRace
Member
Joined
Sep 12, 2009
Messages
864
Trophies
1
Website
twitter.com
XP
822
Country
Netherlands
Can't he just use someones dumped 11.1 NFirm its not like they are console unique
They are not indeed but afaik sharing NFirm's is 'illegal' and at least not allowed in GBATemp's set of rules - otherwise I would drop the by me dumped 11.0 Nfirm without second thought here for people to use TBH.
 

Favna

#PCMasterRace
Member
Joined
Sep 12, 2009
Messages
864
Trophies
1
Website
twitter.com
XP
822
Country
Netherlands
weirdly, BootNTR freezes on the svccheck on my 11.2.0 EUR N3DS
Because it needs updating for N3DS. Read back a few pages and you'll learn it is being worked on. Currently you can get a 11.0 or 11.1 NFirm from where ever or dump it yourself by restoring your 11.0 / 11.1 backup. Rename it to "firmware.bin", drop it in /luma and enable loading external FIRMs in Luma config.
 

jesus.cocano

Member
Newcomer
Joined
Jan 28, 2016
Messages
7
Trophies
0
Age
36
XP
75
Country
Mexico
Because it needs updating for N3DS. Read back a few pages and you'll learn it is being worked on. Currently you can get a 11.0 or 11.1 NFirm from where ever or dump it yourself by restoring your 11.0 / 11.1 backup. Rename it to "firmware.bin", drop it in /luma and enable loading external FIRMs in Luma config.

If I dont have backup on my system 11.1, how can i get the NFirm?
 

Localhorst86

Robert'); DROP TABLE members;--
Member
Joined
Jul 17, 2014
Messages
2,732
Trophies
1
Location
Nintendo works for my dad
XP
5,297
Country
Germany
Because it needs updating for N3DS. Read back a few pages and you'll learn it is being worked on. Currently you can get a 11.0 or 11.1 NFirm from where ever or dump it yourself by restoring your 11.0 / 11.1 backup. Rename it to "firmware.bin", drop it in /luma and enable loading external FIRMs in Luma config.

ah, must have missed that. i was skimming the last few pages and havent seen that. Not too keen on externaly loading the firmware.bin, i do like the "only patch what needs patching" approach of luma. gonna wait for proper 11.2 support.
 

jesus.cocano

Member
Newcomer
Joined
Jan 28, 2016
Messages
7
Trophies
0
Age
36
XP
75
Country
Mexico
look at corbeniks readme on github, it has links for them (which are still working afaik)
I downdload the nativ firmware and rename it, I have the same inssue (Patching svc check)
 

Attachments

  • tmp.jpg
    tmp.jpg
    24.5 KB · Views: 134

Apache Thunder

I have cameras in your head!
Member
Joined
Oct 7, 2007
Messages
4,402
Trophies
3
Age
36
Location
Levelland, Texas
Website
www.mariopc.co.nr
XP
6,744
Country
United States
The loader module was changed in the new update (so I wasn't completely correct on Arm11 not being changed in 11.2. it was). This change means PASLR will be enabled for all future games using the 11.x SDK.

But CFW replaces the loader entirely and disables PASLR stuff entirely as a result, so this effectively means no change at all if you are using a CFW like Luma 3DS.
 
Last edited by Apache Thunder,
  • Like
Reactions: ih8ih8sn0w

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
    Veho @ Veho: Mkay.