Homebrew What a boot ROM dump would mean

Myria

Myria

Well-Known Member
OP
Member
Level 6
Joined
Jul 24, 2014
Messages
464
Trophies
0
Age
42
XP
851
Country
United States
Since there are a lot of misconceptions, I wanted to explain what exactly we would get with a boot ROM dump.

What a boot ROM dump itself means:
  • It makes SigHax possible (see second list). Even after a boot ROM dump, it will take a few days to a few months before SigHax becomes usable, so these latter points come into play before SigHax.
  • It would mean that decrypting NCCH files, cartridge images, and similar things could be done entirely on a PC, without needing a 3DS tool like Decrypt9.
  • It would also allow decrypting SD card files and NAND dumps, if you have an OTP dump from that system.
  • It would mean that A9LH could be installed without the ctrtransfer step. However, it would not help you dump the OTP. It's basically a 100%-reliable OTPless method.
  • It would mean that most information required to emulate a 3DS would be known.
  • It would make possible almost perfectly impersonating another 3DS, even development systems. (CTRNAND would still need to be re-encrypted, because the NAND CID is used to generate the key.) Because the private key for movable.sed on development systems is known, you could change the serial number to a fake one.

What SigHax would mean:
  • Nintendo would never be able to block the use of a hard mod to hack a system, no matter what they do in a firmware update. (Currently, it's not possible to directly install A9LH with a hard mod unless you already have an OTP dump, so Nintendo could fix the FIRM downgrade hardmod attack.)
  • Installing SigHax would also not require a 2.1.0 ctrtransfer downgrade, but SigHax would additionally be able to dump the OTP of systems it is installed on without downgrading to 2.1.0.
  • SigHax means that DSiWare attacks could directly install SigHax.
  • SigHax might make it possible to boot from SPI Flash instead of NAND. The usefulness of this is unknown, but DS mode has access to SPI.
 
  • Like
Reactions: GazingShimmers, CaptainSwag101, kiwiis and 16 others
M

metroid maniac

An idiot with an opinion
Member
Level 11
Joined
May 16, 2009
Messages
2,088
Trophies
2
XP
2,640
Country
Very good breakdown.

Myria said:
  • SigHax might make it possible to boot from SPI Flash instead of NAND. The usefulness of this is unknown, but DS mode has access to SPI.
Click to expand...

Might be worth noting that this is full R/W access. It might be possible that all you need to install Sighax is a DS flashcard. We won't know until the bootrom is dumped.
 
MadMageKefka

MadMageKefka

Well-Known Member
Member
Level 9
Joined
Apr 28, 2016
Messages
1,672
Trophies
0
Age
36
Location
World of ruin
XP
1,915
Country
United States
Darksphere92 said:
is there a thing coming out that allows users to by pass the 300 title limit? maybe i just got this confused by something else.
Click to expand...
This would require a CFW to add / patch that feature. The bootrom exploit could boot said firmware, but by itself it doesn't do anything for the 300 icon limit. This will likely never happen for 2 reasons:
1) 300 is a fairly large number
2) You can already install more than 300 titles, the limit on the 3ds is the ICONS, not the titles themselves. They will install, just not show up on the home screen. You can launch those games from FBI.
 
  • Like
Reactions: Subtle Demise and Deleted User
D

Darksphere92

Well-Known Member
Member
Level 2
Joined
Aug 8, 2014
Messages
318
Trophies
0
Age
32
XP
240
Country
United States
MadMageKefka said:
This would require a CFW to add / patch that feature. The bootrom exploit could boot said firmware, but by itself it doesn't do anything for the 300 icon limit. This will likely never happen for 2 reasons:
1) 300 is a fairly large number
2) You can already install more than 300 titles, the limit on the 3ds is the ICONS, not the titles themselves. They will install, just not show up on the home screen. You can launch those games from FBI.
Click to expand...
welp bye SNES VC injects, you're moving to an emulator.
 
Sketchy1

Sketchy1

gbatemp's shadiest warez dealer
Member
Level 5
Joined
Aug 9, 2016
Messages
1,553
Trophies
0
Age
25
XP
651
Country
United States
thx for that much-needed clear up. hoping others will see this instead of creating threads asking similar
 
TimX24968B

TimX24968B

"That guy"
Member
Level 4
Joined
Oct 28, 2015
Messages
1,403
Trophies
0
Location
Nowhere
XP
399
Country
United States
MadMageKefka said:
This would require a CFW to add / patch that feature. The bootrom exploit could boot said firmware, but by itself it doesn't do anything for the 300 icon limit. This will likely never happen for 2 reasons:
1) 300 is a fairly large number
2) You can already install more than 300 titles, the limit on the 3ds is the ICONS, not the titles themselves. They will install, just not show up on the home screen. You can launch those games from FBI.
Click to expand...
depending on the titles, SD card space might be the first issue you run into before you hit the 300 title limit. (again, depending on the titles...)
 
D

Darksphere92

Well-Known Member
Member
Level 2
Joined
Aug 8, 2014
Messages
318
Trophies
0
Age
32
XP
240
Country
United States
TimX24968B said:
depending on the titles, SD card space might be the first issue you run into before you hit the 300 title limit. (again, depending on the titles...)
Click to expand...
ive hit the 300 title limit, but whatever i'll just remove the VC injects, and download the roms of them and an emulator.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Is it possible...?

Hacking Hardware  New Nintendo 3DS XL Louvre

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

Hardware  Why does my 3DS take so long to turn off?

Translation Project  DQM2SP translation

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

What's the best 3DS emulator (especially after Citra's shutdown)?

General chit-chat
Help Users
  • BakerMan @ BakerMan:
    as to you
  • K3Nv2 @ K3Nv2:
    How do you know if the night will be good when you're asleep
  • BakerMan @ BakerMan:
    because i didn't say i was asleep
  • BakerMan @ BakerMan:
    i said i was sleeping...
  • BakerMan @ BakerMan:
    sleeping with uremum
  • K3Nv2 @ K3Nv2:
    Even my mum slept on that uremum
  • TwoSpikedHands @ TwoSpikedHands:
    yall im torn... ive been hacking away at tales of phantasia GBA (the USA version) and have so many documents of reverse engineering i've done
  • TwoSpikedHands @ TwoSpikedHands:
    I just found out that the EU version is better in literally every way, better sound quality, better lighting, and there's even a patch someone made to make the text look nicer
  • TwoSpikedHands @ TwoSpikedHands:
    Do I restart now using what i've learned on the EU version since it's a better overall experience? or do I continue with the US version since that is what ive been using, and if someone decides to play my hack, it would most likely be that version?
  • Sicklyboy @ Sicklyboy:
    @TwoSpikedHands, I'll preface this with the fact that I know nothing about the game, but, I think it depends on what your goals are. Are you trying to make a definitive version of the game? You may want to refocus your efforts on the EU version then. Or, are you trying to make a better US version? In which case, the only way to make a better US version is to keep on plugging away at that one ;)
  • Sicklyboy @ Sicklyboy:
    I'm not familiar with the technicalities of the differences between the two versions, but I'm wondering if at least some of those differences are things that you could port over to the US version in your patch without having to include copyrighted assets from the EU version
  • TwoSpikedHands @ TwoSpikedHands:
    @Sicklyboy I am wanting to fully change the game and bend it to my will lol. I would like to eventually have the ability to add more characters, enemies, even have a completely different story if i wanted. I already have the ability to change the tilemaps in the US version, so I can basically make my own map and warp to it in game - so I'm pretty far into it!
  • TwoSpikedHands @ TwoSpikedHands:
    I really would like to make a hack that I would enjoy playing, and maybe other people would too. swapping to the EU version would also mean my US friends could not legally play it
  • TwoSpikedHands @ TwoSpikedHands:
    I am definitely considering porting over some of the EU features without using the actual ROM itself, tbh that would probably be the best way to go about it... but i'm sad that the voice acting is so.... not good on the US version. May not be a way around that though
  • TwoSpikedHands @ TwoSpikedHands:
    I appreciate the insight!
  • The Real Jdbye @ The Real Jdbye:
    @TwoSpikedHands just switch, all the knowledge you learned still applies and most of the code and assets should be the same anyway
  • The Real Jdbye @ The Real Jdbye:
    and realistically they wouldn't

    be able to play it legally anyway since they need a ROM and they probably don't have the means to dump it themselves
  • The Real Jdbye @ The Real Jdbye:
    why the shit does the shitbox randomly insert newlines in my messages
  • Veho @ Veho:
    It does that when I edit a post.
  • Veho @ Veho:
    It inserts a newline in a random spot.
  • The Real Jdbye @ The Real Jdbye:
    never had that i don't think
  • Karma177 @ Karma177:
    do y'all think having an sd card that has a write speed of 700kb/s is a bad idea?
    trying to restore emunand rn but it's taking ages... (also when I finished the first time hekate decided to delete all my fucking files :wacko:)
  • The Real Jdbye @ The Real Jdbye:
    @Karma177 that sd card is 100% faulty so yes, its a bad idea
  • The Real Jdbye @ The Real Jdbye:
    even the slowest non-sdhc sd cards are a few MB/s
  • Psionic Roshambo @ Psionic Roshambo:
    https://www.youtube.com/watch?v=SjCivnt5t50
    Psionic Roshambo @ Psionic Roshambo: https://www.youtube.com/watch?v=SjCivnt5t50