Toggle sidebar

Homebrew ARM9Loader -- Technical Details and Discussion

  • Thread starter Thread starter Selver
  • Start date Start date
  • Views Views 571,324
  • Replies Replies 4,025
  • Likes Likes 42
Sylthos said:
Is it required to update to 4.5 (or whatever fw) after otp dump, re-gaining *hax and updating to 9.2?
Wouldn't it be sufficient downgrading -> dump otp -> restore sysNAND with hardmod ?

Just asking because some guides are doing it the first way.
Click to expand...
Of course it would be sufficient. The other method is for people who are attempting to do it without a hardmod.
 
A_Bricked_Guy said:
If you get your otp dumped, with it can you create a whole nand for your 3DS? I mean, does it store all the unique data every console has?
Click to expand...
Well, you can't rebuild NAND but if you can get the OTP then you can unbrick... Basically get OTP, manually install a9lh and then if you have a good NAND backup we can just install that using an a9lh payload (I'm working on a NAND restorer for it) o3ds is much harder but probably still possible to do (since we can't bruteforce the OTP, we have to bruteforce the data it ends up using to jump to the payload which is going to take a LOT of tries) but unbricking both should easily be possible... A payload that gets the CTRNAND XORpad would be pretty useful too so I might add some button options for the payload
 
Sylthos said:
Is it required to update to 4.5 (or whatever fw) after otp dump, re-gaining *hax and updating to 9.2?
Wouldn't it be sufficient downgrading -> dump otp -> restore sysNAND with hardmod ?

Just asking because some guides are doing it the first way.
Click to expand...
Restoring with a hardmod is totally fine.

EDIT: Ninja'd
 
  • Like
Reactions: daxtsu
It'll be pretty cool once that works. Seems like after that, the downgrade process will be the only real risky part of the ordeal.
 
FenrirWolf said:
It'll be pretty cool once that works. Seems like after that, the downgrade process will be the only real risky part of the ordeal.
Click to expand...

It'd be great if we saw a mod of Cakes or something that could boot 1.x/2.x, if one doesn't already exist. Then we could test our downgrade safely before flashing it to sysNAND.
 
  • Like
Reactions: klear and mungry
FenrirWolf said:
Of course it would be sufficient. The other method is for people who are attempting to do it without a hardmod.
Click to expand...


IMO, you'd have to be stark raving mad (or have enough money to fry on a new system that you really don't care about frying a 100+ dollar console) to even attempt this without a hardmod, especially this early on...
 
dubbz82 said:
IMO, you'd have to be stark raving mad (or have enough money to fry on a new system that you really don't care about frying a 100+ dollar console) to even attempt this without a hardmod, especially this early on...
Click to expand...
Which is why I'm just hanging around on the sidelines for now. No need to dive in headfirst until I see how many other people crack their heads first <_<

Though I might just end up trying it out on my O3DS XL that I no longer use for the sheer hell of it. (Smash 4 killed its circle pad and I upgraded to an N3DS anyway).

daxtsu said:
It'd be great if we saw a mod of Cakes or something that could boot 1.x/2.x, if one doesn't already exist. Then we could test our downgrade safely before flashing it to sysNAND.
Click to expand...
Hmm. That seems like it would be a useful sort of thing to have. Wonder what it would take to make it work?
 
Last edited by FenrirWolf,
FenrirWolf said:
Which is why I'm just hanging around on the sidelines for now. No need to dive in headfirst until I see how many other people crack their heads first <_<

Though I might just end up trying it out on my O3DS XL that I no longer use for the sheer hell of it. (Smash 4 killed its circle pad and I upgraded to an N3DS anyway).

--------------------- MERGED ---------------------------


Hmm. That seems like it would be a useful sort of thing to have. Wonder what it would take to make it work?
Click to expand...


I'll probably do it with my o3ds first, once there's actually a practical use for the keys other than just having them for the sake of having them, as I've got an n3ds now, so the o3ds is basically a throwaway system...that being said, I'm not crazy enough to test it until it's at least reasonably well tested, and any potential hangups that might have workarounds have been ironed out.
 
FenrirWolf said:
Hmm. That seems like it would be a useful sort of thing to have. Wonder what it would take to make it work?
Click to expand...

I would guess it's as simple as finding/obtaining the firmware.bin for it, maybe from the 2.x NATIVE_FIRM CIA (just so we can be sure it matches the emuNAND, but I guess this might not be entirely necessary since FIRM doesn't always have to match; I'll let someone more knowledgeable speak on it) and then modifying the code to use the proper offsets, so emuNAND would boot (not to mention all the other crazy stuff you have to do on N3DS).
 
  • Like
Reactions: klear and FenrirWolf
I'm going to start the super risky process of downgrading my o3DS XL to 2.x for OTP dump. I started from a factory reset 9.2 emunand (manually removed system save data and movable.sed) launched via CakesFW with survive reboots patch disabled. Then installed CIA version of latest sysupter and downgraded it to 2.x. It went off without a hitch. Though I did have to do it a second time since it errors out once it gets to the TWL titles. sysupdater doesn't handle isntalling TWL titles correctly so remove them from the updates folder prior to downgrading!

I did confirm that the FIRM partitions downgraded correctly. (compared them with FIRM extracted from native_firm cxi) I haven't attempted to boot it from sysnand yet. My nand mod isn't working right now and I need a way to get back to 9.2 after I get OTP. I do not have Cubic Ninja or an official game with a 4.x update. So I'll have to rely entirely on spiderhax to restore a nand backup once done.

So for now I've put the process on hold until a working spiderhax payload that restores a nand backup is available. As far as I can tell Gateway's launcher does not work on 2.x. Someone tested that for me and confirmed that gateway's llauncher won't load on a 2.x system.
 
What do you guys think about adding something between arm9loaderhax and the payload. I think about something like an updatable bootloader, that would be loaded to a different address, and create the brahma like setup. After we got something like screen initialisation working, it would be easier to update this binary, than reinstalling the full arm9loaderhax.
If we fix everthing firm needs to launch inside this bootloader, the cfws would not need to be modified to work with arm9loaderhax.
 
  • Like
Reactions: peteruk, Shadowtrance and 4gionz
RednaxelaNnamtra said:
What do you guys think about adding something between arm9loaderhax and the payload. I think about something like an updatable bootloader, that would be loaded to a different address, and create the brahma like setup. After we got something like screen initialisation working, it would be easier to update this binary, than reinstalling the full arm9loaderhax.
If we fix everthing firm needs to launch inside this bootloader, the cfws would not need to be modified to work with arm9loaderhax.
Click to expand...
There is...look at stage0x5C000.
 
  • Like
Reactions: DigitalJosee

Site & Scene News

Go to forum More news

Popular threads in this forum

Help on 3DS prices...

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Hardware  2 Broken 3DSes, need help

Website for finding alternative games for 3DS

Homebrew  My Secret World DS: is there a way to bypass the password lock?

Homebrew Homebrew app  [Release] GridLauncher Rosalina

please help, wont boot

Hardware  I Have 2 THQ Dev Kit 3DSes (Panda), Need Help On Preserving What’s Inside