Homebrew Homebrew Development

[st4rk]

Arm11 is still pretty much on, anyway arm11 code exec is not the magic promised land ^^

Hmm can you execute code in ARM11 ?

 

[Kane49]

That's why I put 'off' in quotes, since I know it's not physically off (and is probably handling some minor OS stuff like StreetPass). The word I was looking for was idle.

There are still multiple arm11 processes at work doing stuff

 

[st4rk]

There are still multiple arm11 processes at work doing stuff

Then if i wanna execute an ARM 11 code will i need create a new process to execute code ?

 

[kalimero]

Then if i wanna execute an ARM 11 code will i need create a new process to execute code ?

Again, your answer is in that quote:

Gateway uses 0x1FFF4000 which is part of the exception vectors.

 

[st4rk]

Thank you kalimero, i'm thinking an a theory to it, i will study more of documentation of 3DS and ARM9/11..

Maybe if i can create a new process on ARM11 and jump the register to exception vectors and write my code here, it's work(or no haha).

Thanks for all.

Regars, St4rk.

 

[gamesquest1]

i think they are getting at, that you can hijack the existing exception process and build from there......ps i know nothing about coding so that could be complete crap but thats what im getting from it

feel free to poke fun but how I'm imagining it works is the Rop chain loads the ARM9 payload, then the ARM9 payload writes the ARM11 code to an address it knows the 3DS will jump to in ARM11 mode i.e 0x1FFF4000

which i am imagining is the code for when the 3ds crashes and asks you to reset....but it would load your ARM11 code instead

 

[Kane49]

Hmm can you execute code in ARM11 ?

Yes but im failing to relaunch firm without doing a hard reset, but maybe thats enough.
Although gateway doesn't do a hardreset i think Smea does

 

[YoshiInAVoid]

I'm going to leave this here, though I know that most of you probably already know it's here:

http://3dbrew.org/wiki/SVC#System_calls

Kane49 if you do a hard reset, have you been able to execute ARM 11?

 

[st4rk]

I'm going to leave this here, though I know that most of you probably already know it's here:

http://3dbrew.org/wiki/SVC#System_calls

Kane49 if you do a hard reset, have you been able to execute ARM 11?

now i'm working on a library to support a lot of system calls from 3DS SVC.

Here the github: https://github.com/St4rk/3DS-SVC

Regards, St4rk.

 

[nop90]

now i'm working on a library to support a lot of system calls from 3DS SVC.

Here the github: https://github.com/St4rk/3DS-SVC

Regards, St4rk.

You can start from the partially implemented by Smealum.

 

[st4rk]

You can start from the partially implemented by Smealum.

Yeah, i know that, but i'm writing from 0 because i wanna know all of it work

But Smealum is a good base to study :]

 

[Gericom]

Maybe there is an ARM11 interrupt that is frequently called (or maybe you can activate one) and change the address it jumps to. Then when in arm11 mode you'll have to disable the interrupt or change it to an empty function.

 

[Kane49]

Maybe there is an ARM11 interrupt that is frequently called (or maybe you can activate one) and change the address it jumps to. Then when in arm11 mode you'll have to disable the interrupt or change it to an empty function.

There is only one arm9 irq handler and yes you can redirect that one however you want, you can even do whatever you want and keep it running normally, it has been said multiple times in this thread already.

But what to do with arm11? does anyone have a plan just what the next step is?
Any next step whatever it may be depends on reverse engineering deep inside nintendos code, the material has been available for a long time and everyone that is capable of doing that has either already figured it out and isn't sharing (which is fine btw) or has no interest in 3ds hacking.

Or am i wrong and someone here with considerable arm reverse engineering skills is deterred by the lack of arm11 code exec ?

 

[ernilos]

Some new HB~
I just finished coding a little BMP Loader, it loads "image.bmp" from root SD and draw it to screens, that's more prof of concept than a real homebrew, but's nice i think.

Spoiler

In 3DS

How looks like in PC

But I'm using a own BMP format, so I created a simply program to convert files (It's called Convert3MP), just click 2 buttons and the new "image.bmp" gonna be created in program folder, the download links:

• Launcher: https://mega.co.nz/#!RAMwHARI!CNIOeAf5rI7mkNjH_mboe0gx3KF9mVoquqx8ZvoXI8w
• Convert3MP: https://mega.co.nz/#!oIkDVLLJ!FYNLejdtTVlTrzUrMDn9TGg-TYXZPXOF0aXbfONL-sc
• Image sample 1: https://mega.co.nz/#!9YkB0ArI!_n9npWigO1DmukV2Gjf8FPr1UsPZ1dLxhubt-xIcbl8
• Image sample 2: https://mega.co.nz/#!BUtAnLDY!UOCy5mksI_E2yPMjg9PsdQ7fRuzDaCmhEHmhFEjD2WQ
• Image sample 3: https://mega.co.nz/#!cE0ljbDa!a6naaEuwt0ix_d7dyY5OFlvU8EBRpLA6MRzd5Ptplpk

PD: Really thank's to Roxas75 for the way to load files to memory ^-^

 

[YoshiInAVoid]

Roxas75 can I have the code to load SD card files into memory?

 

[Kane49]

Roxas75 can I have the code to load SD card files into memory?

Its not code

 

[YoshiInAVoid]

Its not code

What is it? Just pointers to functions?

 

[st4rk]

What is it? Just pointers to functions?

Maybe a system interrupt to load your file in a location of memory..
Look
https://github.com/smealum/ctrulib/blob/master/libctru/include/ctr/FS.h

 

[jocopoco]

Im working again on my emulator and now I need of all header command. Is there already a list?

 

[st4rk]

Im working again on my emulator and now I need of all header command. Is there already a list?

Use it http://3dbrew.org