Hacking POKEMON ORAS BASEHAX

[Kalabit_Betlog]

So I dediced to use basehax as an entrypoint for homebrew, this is what happened.

Since I need homebrew access to inject basehax on my pokemon omega ruby, I went to my friend that can still launch homebrew.

I installed the basehax and it was successful. After that I went home to play my save file since that game doesn't have base yet. After finally getting secret power from Aarune I am now able to make secret bases.

The base name is "???????????" and that is normal. I then tried to change the base name as per instructions on the video I watched. It's supposed to enter homebrew but instead it proceeds with changing your base name.

What is wrong and why doesn't it work? Does this hax only work on the console it was installed to? My pokemon or game is a physical copy both my friend's and my n3ds are running 11.1.0-33U only that my friend's unit has a9lh installed. Thanks

 

[TechyTurtle]

I think base has only works for 11.0.3

 

[sora10pls]

This should answer your question

 

[Apache Thunder]

The 11.1 update added Pokemom ORAS to their PASLR stuff. You'll either need CFW to run homebrew or wait for the payload to be updated. if you don't have a spare primary entry point you won't be able to update it I believe.

 

[Clector]

There"s an updated installer: https://twitter.com/MrNbaYoh/status/777583876743061504
But you need a console in 11.0.0-X or lower, or one with CFW to install it.

 

[Kalabit_Betlog]

Sorry guys that was a spelling error. My friend's 3ds and mine are both 11.0.33U

UPDATE: So I finally installed the hax properly and it works as expected on my friend's n3ds which has arm9lh. According to a lot of people, I should be able to use my pokemon omega ruby cartridge to launch basehax on any device as long as it is also N3DS 11.0.0-33U. Knowing this, I inserted my pokemon or cartridge into my n3ds but when I try to change the name of the base, it turns to black screen, exits the pokemon game, says there was an error, then restarts the console. What am I missing guys, please help thanks

 

[Wojton]

So I dediced to use basehax as an entrypoint for homebrew, this is what happened.
The base name is "???????????" and that is normal. I then tried to change the base name as per instructions on the video I watched. It's supposed to enter homebrew but instead it proceeds with changing your base name.

I have a feeling that I know exactly which video was that And yes, you're correct, basehaxx should work just fine on multiple systems, as long as they're the same type of 3DS and are running the same firmware - which are both true in your case. Does your friend have a different Pokemon OR/AS installed on his 3DS (like, an eShop version or .cia hack version of Pokemon OR/AS)? That could cause the installer not to recognize the right version of the game that is on your cartridge - although if thats the case, I don't know why it works for him. Try temporarily removing OR/AS updates using Settings/Data Management/Add-on content on both his and your 3DS and installing basehaxx for version 1.0 of the game. Also, put the latest Homebrew Launcher executable on the root of your SD Card: https://smealum.github.io/ninjhax2/boot.3dsx

 

[Kalabit_Betlog]

I have a feeling that I know exactly which video was that And yes, you're correct, basehaxx should work just fine on multiple systems, as long as they're the same type of 3DS and are running the same firmware - which are both true in your case. Does your friend have a different Pokemon OR/AS installed on his 3DS (like, an eShop version or .cia hack version of Pokemon OR/AS)? That could cause the installer not to recognize the right version of the game that is on your cartridge - although if thats the case, I don't know why it works for him. Try temporarily removing OR/AS updates using Settings/Data Management/Add-on content on both his and your 3DS and installing basehaxx for version 1.0 of the game. Also, put the latest Homebrew Launcher executable on the root of your SD Card: https://smealum.github.io/ninjhax2/boot.3dsx

Thanks for replying here. I read somewhere that I need to have a team first to be able to HAVE THE ABILITY TO RENAME TEAM since it is a requirement according to the basehax website. I downloaded a new homebrew starter kit from smealum and I suppose it is the latest starter kit. I don't know what else I am missing. Maybe I'll try installing the hax on ver. 1.0 of the game. Thanks

 

[Wojton]

No you don't need the ability to rename team, I've never had it and basehaxx works just fine for me. MrNbaYoh has released an updated steelhax installer, which makes basehaxx work on 11.1 firmware (still has to be installed on 11.0 though). I suggest you try it, it might just do the trick.

 

[Kalabit_Betlog]

No you don't need the ability to rename team, I've never had it and basehaxx works just fine for me. MrNbaYoh has released an updated steelhax installer, which makes basehaxx work on 11.1 firmware (still has to be installed on 11.0 though). I suggest you try it, it might just do the trick.

UPDATE: It finally worked! Thanks for helping! I think the problem was the version of the game. I installed the haxx on 1.0 omega ruby while my n3ds have the version 1.4. I may now be able to downgrade my unit to install arm9lh, right? Again thank you everyone

 

[Wojton]

If you've installed basehaxx for version 1.0 and your game is version 1.4 then its obviously what caused the problem.

And no, basehaxx only gives you homebrew access, which on isnt sufficient to downgrade your firmware. The only way you can do that is either by hardmodding your 3DS or borrowing your friends 3DS, purchasing fieldunners/legends of exidia on it and performing DSiWare Downgrade.

 

[KazoWAR]

The 11.1 update added Pokemom ORAS to their PASLR stuff. You'll either need CFW to run homebrew or wait for the payload to be updated. if you don't have a spare primary entry point you won't be able to update it I believe.

where can i read up on what PASLR is.

 

[Wojton]

PASLR=Codebin physical memory randomization

[...]

• L_14002670: New function used for mapping the codebin. When the insp0 flag is zero, this does the normal memory-mapping, otherwise a special memory-mapping codepath is used. This codepath still uses the same memregion specified in the exheader.

The special memory-mapping codepath is basically a method of mapping the codebin with svcControlMemory using up to 8 chunks, each with a random size. Each chunk is done in a random order. Since the allocation order is random, this also means the order of each .text chunk in physmem is random too. When the total size of the randomized page-count is less than the required amount, an 8th chunk is used to pad the total size to the exact required size. It appears the total combined size used with svcControlMemory is always exactly the same as what's required for the codebin.

Regarding chunk size calculation:

• s32 maxval = (codebin_totalrequiredpages - pagepos) >> 4;
• The above maxval field is set to 15 if it's >=15.
• pagecount = L_14001730(maxval);
• pagecount = (pagecount+1) << 4;
• chunksize = pagecount << 12;

This is an attempt at randomizing the layout of physmem .text, due to gspwn.

SOURCE