Hacking Just to know, is it possible to downgrade the System-Settings to re-enable MSET-Exploit?

[ChrisX930]

Hey guys,

I just want to know if it possible to re-enable the MSET-Exploit on higher Firmwares than 4.5 by downgrading SystemSettings?
Or is there another way to do it?
I don't own a Flashcard for the 3DS, I'm just able to install cia's on CFW.
I guess it could be possible to overwrite the SysNAND with a modified RedNAND.

Any Ideas?

 

[cearp]

possible to undub rf4?

 

[ChrisX930]

possible to undub rf4?

I've other priorities. Sure, it would be possible, but I don't have time for this yet.
If you want to do it, do it yourself

 

[cearp]

I've other priorities. Sure, it would be possible, but I don't have time for this yet.
If you want to do it, do it yourself

on saturday i'll make a guide

 

[ChrisX930]

on saturday i'll make a guide

*ignored*

anyone else who could help me with this?

 

[motezazer]

Why do you want to do that?
For now, it's useless.

 

[JustPingo]

well... System-Settings seems very linked to the firmware itself, so I don't think so. And you would have to install it on sysNAND, so perfect signature needed.

Why do you want to do that?

For now, it's useless.

DS Profile Exploit is always easier to use than OoT, CN or spider.

 

[motezazer]

well... System-Settings seems very linked to the firmware itself, so I don't think so. And you would have to install it on sysNAND, so perfect signature needed.

You can downgrade it pretty easily.
Just uninstall the new one then install the old one.
And it's a common ticket for system titles, so it will work.
But for now it's useless to downgrade MSET.

 

[JustPingo]

You can downgrade it pretty easily.
Just uninstall the new one then install the old one.
And it's a common ticket for system titles, so it will work.
But for now it's useless to downgrade MSET.

Yes maybe, but won't you break everything in the process?

 

[ChrisX930]

well... System-Settings seems very linked to the firmware itself, so I don't think so. And you would have to install it on sysNAND, so perfect signature needed.

yea, that's true. But is it not possible to create a "clean cia" of 4.5-System Setting with something like FunkyCIA or something like this?

DS Profile Exploit is always easier to use than OoT, CN or spider.

exactly

Right now, I've a downgraded 4.5 SysNAND but I want to update it to a newer Version because I'm unable to play some retail Games with my "old" savegames.
If I try to start the game on EmuNAND 9.7 (rxTools), the game says that the Savegame is corrupted.
If I use it on a Real 9.7 SysNAND (other 3DS), it works without problems

 

[motezazer]

yea, that's true. But is it not possible to create a "clean cia" of 4.5-System Setting with something like FunkyCIA or something like this?


exactly

For now there is no launcher using MSET that work on 5.0+
So it's useless

 

[JustPingo]

yea, that's true. But is it not possible to create a "clean cia" of 4.5-System Setting with something like FunkyCIA or something like this?

As motezazer said, I didn't know that system titles were universal, so that's not even a problem.
What I'm worried about is broken functionalities, etc.

For now there is no launcher using MSET that work on 5.0+

So it's useless

That's the point. He wanted to try something, to end up with an opened door to MSET on 5.0+

 

[ChrisX930]

Fyi, I've a NAND-Mod, so if there's a way, I could try it.

Right now, I've a downgraded 4.5 SysNAND but I want to update it to a newer Version because I'm unable to play some retail Games with my "old" savegames.
If I try to start the game on EmuNAND 9.7 (rxTools), the game says that the Savegame is corrupted.
If I use it on a Real 9.7 SysNAND (other 3DS), it works without problems

 

[motezazer]

As motezazer said, I didn't know that system titles were universal, so that's not even a problem.
What I'm worried about is broken functionalities, etc.

No, no broken functionnalities. It will work perfectly.
Yes, you can't access NNID settings, but if you set it up before downgrading, it will work fine.

 

[ChrisX930]

So is there a way to do it?
if yes, could someone "describe" how to do it?
Would I be able to run Palantine CFW or NTR with it on a newer Firmware than 4.5?

 

[JustPingo]

So is there a way to do it?
if yes, could someone "describe" how to do it?
Would I be able to run Palantine CFW or NTR with it on a newer Firmware than 4.5?

No, as the offsets (I guess, but that's the same idea anyway) used in 4.5 MSET exploits are different than the one used in 5.0+. That wouldn't be too hard to correct however I guess if someone with the knowledge tried it. (to at least run Gateway or something)

 

[motezazer]

No, as the offsets (I guess, but that's the same idea anyway) used in 4.5 MSET exploits are different than the one used in 5.0+. That wouldn't be too hard to correct however I guess if someone with the knowledge tried it.

No, it's just that the launchers using MSET use the old exploit (you know, the one that was fixed on 5.0...)

 

[JustPingo]

No, it's just that the launchers using MSET use the old exploit (you know, the one that was fixed on 5.0...)

Ok, so they would only need to port it to memchunkhax and gspwn. Why hasn't someone already tried? lol

 

[motezazer]

Ok, so they would only need to port it to memchunkhax. Why hasn't someone already tried? lol

KARL devs, Roxas...

 

[WulfyStylez]

Yes, you can downgrade mset on exploitable systems. Yes, it can be used as an entrypoint for existing hax. Heck, I'm in the middle of a big revision on our mset bootstrap code right now.
As a matter of fact, you don't even need to write your own ROP and bootstrap like we and Roxas (separately) did. Roxas has publicized a version of his own mset firmlaunch-hax code on his github. Keep in mind this will only work with the 4.x version of mset, and I belieeeve only up to 8.0. I'd have to check my ROP to be sure on that second part. Linear memory mapping screwed with some stuff. Also N3DS is a whole different deal and will take a fair bit of revision regardless.
No pre-existing code will run on downgraded mset, however. This comes down to exploits which have been patched long ago.

If you're a developer wanting a faster entrypoint for arm9 code than cubicnin, mset downgrading is your best bet. If you're a regular user, mset downgrading hax are useless to you and will continue to be for a while.