Hacking [Release] rxTools - Roxas75 3DS Toolkit [fw 2.0 - 9.2]

[sarkwalvein]

My USA console is on 9.2. Bottom screen transitions to white during the initial Spider payload that cleans up the bottom screen static during the exploit. Screen remains white after that. It could be FW specific even. Very odd you have it remain black while mine remains white.

I know of another user on USA fw that has his bottom screen remain white I believe.

Sorry, I just checked again and the screen in my 3DS stays white. I just remembered it wrong.

 

[Apache Thunder]

@WhoAmI? Boot into rxTools from Web browser. See if you still get black bottom screen. Perhaps you also remembered wrong?

Booting from CN or MSET doesn't count. Payloads for those do different things with the bottom screen and I suspect it's already black if you boot from MSET/CN.

 

[DarkMatterCore]

You may not have MinGW in your path. Make sure your path looks like this:

C:\MinGW\bin;c:\devkitPro\msys\bin;C:\devkitPro\devkitARM\bin\;C:\devkitPro\devkitARM\arm-none-eabi\bin\;C:\Python27\;

(you find this in System Settings - > Advanced System Settings - > Environment Veriables. It's the system PATH you need to change. Not the user path. )

As a matter of fact, I do, since I need that to compile my own PC applications. GCC keeps complaining about the 'off_t' and 'off64_t' typedefs, though.

Spoiler

A bit of googling is leading me to believe this is some kind of bug in MinGW. Did you build it from the sources instead of using the precompiled binaries from SourceForge?

 

[WhoAmI?]

@WhoAmI? Boot into rxTools from Web browser. See if you still get black bottom screen. Perhaps you also remembered wrong?

Booting from CN or MSET doesn't count. Payloads for those do different things with the bottom screen and I suspect it's already black if you boot from MSET/CN.

I'll go check. Hang on.

Edit: Yeah! You're right! It's white, via the web exploit.

 

[hmp22]

Is there a way to boot directly into rxTools from Gateway emuNAND? The browser exploit doesn't seem to work when launched from Gateway mode (obviously, since I have it updated to 9.8)

 

[zoogie]

Which version of MinGW are you using under Windows? I can get the payload to compile, but not the PC tools.

Thread model: posix
gcc version 4.8.1 (tdm-2)

I can compile it too.

 

[DarkMatterCore]

Thread model: posix
gcc version 4.8.1 (tdm-2)

I can compile it too.

Thanks. I'll see what's wrong with my MinGW environment and fix it ASAP.

 

[Apache Thunder]

Is there a way to boot directly into rxTools from Gateway emuNAND? The browser exploit doesn't seem to work when launched from Gateway mode (obviously, since I have it updated to 9.8)

Gateway uses firmlaunchhax to boot 9.6 native firm. This breaks exploits CFW like rxTools uses to boot. Unless new exploits for that version of native firm are found, you'll never be able to boot it from Gateway mode. (and by that point, you'd be able to boot it on a 9.6+ sysnand if that was the case)

 

[hmp22]

Gateway uses firmlaunchhax to boot 9.6 native firm. This breaks exploits CFW like rxTools uses to boot. Unless new exploits for that version of native firm are found, you'll never be able to boot it from Gateway mode. (and by that point, you'd be able to boot it on a 9.6+ sysnand if that was the case)

Okay, that makes sense. It's not too difficult to just use the browser exploit from sysNAND, but I figured I might as well ask. Thanks.

 

[marcoz9999]

can somebody help me out to set up the devkitpro enviroment properly please i dont know what im doing wrong thanks in advance

 

[zoogie]

can somebody help me out to set up the devkitpro enviroment properly please i dont know what im doing wrong thanks in advance

We have no idea what you're doing.

windows: run the updater exe
http://sourceforge.net/projects/devkitpro/files/Automated Installer/

linux
http://3dbrew.org/wiki/Setting_up_Development_Environment#Linux

 

[marcoz9999]

Sorry i did not stated that im working on windows 7 64bit and yes i managed to install devkitpro i run the hello_world test and its fine but im lost on where to put the mingw and the armips thanks un advance

 

[DarkMatterCore]

Thread model: posix
gcc version 4.8.1 (tdm-2)

I can compile it too.

That did the trick. Thanks again, zoogie. Here's the compiled rxTools.dat binary with the latest fixes I pushed to my fork in GitHub: https://mega.co.nz/#!UBZgEQgR!MY1mTtJ2yPtssvONWtUPTSwJgi6d2aF15jgevKxGtsM. It works fine in my O3DS (SysNAND 4.2, EmuNAND 9.2), and it should be compatible with more regions.

Remember that this new code also depends on the presence of the "fbi_inject.tmd" file. The files generated by the CIA NAND Inject Generator that Riku created are valid for this purpose, though currently you need to already have a copy of the original H&S TMD for your region/version and use it with the program. This is expected to change.

@Roxas75 I didn't change much of the MSET downgrading code because I see that it uses a hash for each region, but I did adapt it to the new CheckRegion() function. Let me know what you think.

EDIT: the "fbi_inject.tmd" and "fbi_inject.app" files for each regional version of the Health & Safety application are now available at GitHub (https://github.com/DarkMatterCore/rxTools/tree/master/release). Instructions were added, too.

 

[Ricardo Toddy]

Guys i need some help..

I have one japanese 3ds , with RXtools , i really apreciated this update for region free but, how i can play Retail card from other region? This Region Free only works to Cias? , i wish to play my retail card for English Pokemon Alpha Sapphire but i cant play.. shows a region lock message and other english retail games dont appear... =/ thanks for help my question..

And sorry for my poor english.. i'm brazilian

 

[urherenow]

cdn_firm.exe keeps giving me a 4k firmware.bin now, and I get an error about a corrupted firmware file! This is on o3DS 4.5 with a Gateway 9.8 emunand. I did replace the firmware.bin file on the root of the SD card with the 4kb one that was generated (actually, 3.60kb, taking 4kb of disk space) and using the rxtools 2.5 files..

 

[Suiginou]

@Roxas75 , I know you can do a better rxTools.......
think about it
logging out..............................

Dude, I just don't know what your problem is. SOON is 93 megabytes worth of fail -- render the banner or icon in the exefs instead of carrying that many auxiliary files around. And now you have the audacity to shitpost here instead of just porting your changes of rxTools mod into the repository and letting everyone benefit from a unified upstream.

Seriously, give me the address of your dealer, he's clearly selling pretty good shit.

 

[zoogie]

cdn_firm.exe keeps giving me a 4k firmware.bin now, and I get an error about a corrupted firmware file! This is on o3DS 4.5 with a Gateway 9.8 emunand. I did replace the firmware.bin file on the root of the SD card with the 4kb one that was generated (actually, 3.60kb, taking 4kb of disk space) and using the rxtools 2.5 files..

Try this
https://gbatemp.net/threads/release...olkit-fw-2-0-9-2.382782/page-191#post-5539145

 

[urherenow]

Try this
https://gbatemp.net/threads/release...olkit-fw-2-0-9-2.382782/page-191#post-5539145

Thanks, but that generates the same firmware.bin with the same CRC/SHA1. Is your firmware.bin 3.60kb? Perhaps my ISP is at fault? Or is my problem my Gateway 9.8 emunand?

 

[zoogie]

Thanks, but that generates the same firmware.bin with the same CRC/SHA1. Is your firmware.bin 3.60kb? Perhaps my ISP is at fault? Or is my problem my Gateway 9.8 emunand?

I don't see why gateway 9.8 would have anything to do with it. Maybe try downloading it with 3dnus. The best solution probably is to look for it at that certain other site.

 

[Chaz.]

Gotta say I'm well impressed with the work done here, such a shame my 2DS is on 9.6 otherwise I'd have tried this, keep up the fantastic work and hopefully I can have a play if 9.6 is cracked!!