Differences between R4ISDHC and R4I-SDHC

moon_rabbit

moon_rabbit

Well-Known Member
OP
Member
Level 3
Joined
May 6, 2022
Messages
153
Trophies
0
Age
34
Location
kor
XP
326
Country
Korea, South
Reference URL
https://kynex.ovh/patching-the-timebomb-in-an-r4-flashcart.html

This only applies to cartridges from 2014 and later.

Firmware
The two are basically the same.
They just have a check key at 0x3000 ~ 0x3083 to prevent other kernels from running.

Due to this check key, R4ISDHC card cannot run 1.85 kernel of R4I-SDHC.
Conversely, r4i-sdhc cards cannot run 4.0 kernel of r4isdhc.

Of course, you can swap firmware or use a timebomb removed kernel.

Kernel
The key difference between the 1.85 and 4.0 kernels is in the map.bin file.
The 4.0 kernel can run Pokemon White 1-2 and Black 1-2, while 1.85 cannot.

Security bypass is related to the map.bin file and is linked to the r4.dat file.

I tried using the reference URL.
4.0 kernel was also able to bypass timebomb and verification, but it fails to drive Pokemon because the map.bin file is not properly linked.

There is no encryption in the kernel itself, but I gave up trying to analyze it due to encryption on the text and its complex structure.
 
Last edited by moon_rabbit,
  • Like
Reactions: SylverReZ, soulpower11 and 4d1xlaan
SylverReZ

SylverReZ

Very sleepy, 24 hours a day
Member
GBAtemp Patron
Level 29
Joined
Sep 13, 2022
Messages
7,674
Trophies
3
Location
The Wired
Website
m4x1mumrez87.neocities.org
XP
21,891
Country
United Kingdom
moon_rabbit said:
Reference URL
https://kynex.ovh/patching-the-timebomb-in-an-r4-flashcart.html

This only applies to cartridges from 2014 and later.

Firmware
The two are basically the same.
They just have a check key at 0x3000 ~ 0x3083 to prevent other kernels from running.

Due to this check key, R4ISDHC card cannot run 1.85 kernel of R4I-SDHC.
Conversely, r4i-sdhc cards cannot run 4.0 kernel of r4isdhc.

Of course, you can swap firmware or use a timebomb removed kernel.

Kernel
The key difference between the 1.85 and 4.0 kernels is in the map.bin file.
The 4.0 kernel can run Pokemon White 1-2 and Black 1-2, while 1.85 cannot.

Security bypass is related to the map.bin file and is linked to the r4.dat file.

I tried using the reference URL.
4.0 kernel was also able to bypass timebomb and verification, but it fails to drive Pokemon because the map.bin file is not properly linked.

There is no encryption in the kernel itself, but I gave up trying to analyze it due to encryption on the text and its complex structure.
Click to expand...
R4ISDHC is different to R4i-SDHC.com. These cards are usually either Ace3DS+ or R4DS Pro, depending on the make and year variant.
 
SylverReZ

SylverReZ

Very sleepy, 24 hours a day
Member
GBAtemp Patron
Level 29
Joined
Sep 13, 2022
Messages
7,674
Trophies
3
Location
The Wired
Website
m4x1mumrez87.neocities.org
XP
21,891
Country
United Kingdom
soulpower11 said:
I think he's talking about r4isdhc.com cards. Anything from them that is 2014+ are demon cards.
Click to expand...
That's what I'm at least trying to explain.
 
  • Like
Reactions: soulpower11
Jayro

Jayro

MediCat USB Dev
Developer
Level 26
Joined
Jul 23, 2012
Messages
13,191
Trophies
4
Location
WA State
Website
ko-fi.com
XP
17,488
Country
United States
moon_rabbit said:
Reference URL
https://kynex.ovh/patching-the-timebomb-in-an-r4-flashcart.html

This only applies to cartridges from 2014 and later.

Firmware
The two are basically the same.
They just have a check key at 0x3000 ~ 0x3083 to prevent other kernels from running.

Due to this check key, R4ISDHC card cannot run 1.85 kernel of R4I-SDHC.
Conversely, r4i-sdhc cards cannot run 4.0 kernel of r4isdhc.

Of course, you can swap firmware or use a timebomb removed kernel.

Kernel
The key difference between the 1.85 and 4.0 kernels is in the map.bin file.
The 4.0 kernel can run Pokemon White 1-2 and Black 1-2, while 1.85 cannot.

Security bypass is related to the map.bin file and is linked to the r4.dat file.

I tried using the reference URL.
4.0 kernel was also able to bypass timebomb and verification, but it fails to drive Pokemon because the map.bin file is not properly linked.

There is no encryption in the kernel itself, but I gave up trying to analyze it due to encryption on the text and its complex structure.
Click to expand...
If we have all this info, is there anything stopping us from modifying a kernel and firmware to run any that we want? Like disabling the key check?
 
moon_rabbit

moon_rabbit

Well-Known Member
OP
Member
Level 3
Joined
May 6, 2022
Messages
153
Trophies
0
Age
34
Location
kor
XP
326
Country
Korea, South
Jayro said:
If we have all this info, is there anything stopping us from modifying a kernel and firmware to run any that we want? Like disabling the key check?
Click to expand...
There are a lot of breakpoints in the kernel and there are almost 10 breakpoints that need to be fixed.
Probably timebomb and key check are at similar points, so it's not too hard.

For the 4.0 kernel, modified kernel runs fine.
Problem lies only in the security bypass.
Modified kernel will not be able to run Pokemon Black and White.

The biggest problem is that encryption applied in the kernel is quite tricky, as you can see from the reference URL.
Considering lack of completeness of the kernel, it's questionable if encryption was even necessary.
I understand key check, but I don't understand why they made timebomb.
Maybe it was a trap to sell another R4 to people who are not used to kernel swapping.
 
Jayro

Jayro

MediCat USB Dev
Developer
Level 26
Joined
Jul 23, 2012
Messages
13,191
Trophies
4
Location
WA State
Website
ko-fi.com
XP
17,488
Country
United States
4d1xlaan said:
In terms of game compatibility, or it is just the ui?
Click to expand...
For me it's the UI. I don't like YSMenu in the slightest. I prefer WoodR4's UI. It's everything you need, and no B.S. Easily skinnable too.
 
  • Like
Reactions: 4d1xlaan and SylverReZ
SylverReZ

SylverReZ

Very sleepy, 24 hours a day
Member
GBAtemp Patron
Level 29
Joined
Sep 13, 2022
Messages
7,674
Trophies
3
Location
The Wired
Website
m4x1mumrez87.neocities.org
XP
21,891
Country
United Kingdom
Jayro said:
For me it's the UI. I don't like YSMenu in the slightest. I prefer WoodR4's UI. It's everything you need, and no B.S. Easily skinnable too.
Click to expand...
Me too. Wood R4's UI is somewhat noob friendly and has more customizable options compared to the latter. Basic UI's arent my cup of tea.
 
4d1xlaan

4d1xlaan

Well-Known Member
Member
Level 4
Joined
Apr 21, 2024
Messages
463
Trophies
0
XP
407
Country
United States
Would it be possible to use twilightmenu on it with the wood r4/akaio theme, using ysmenu as the backend for running games? Then you get compatibility, with the wood ui
 
ebussy_foot

ebussy_foot

Active Member
Newcomer
Level 1
Joined
May 4, 2024
Messages
25
Trophies
0
XP
95
Country
United States
BETA215 said:
Yup, it's already possible to use YSMenu with TWLM++, no matter which TWLM++ skin you choose. Just following the installation guide will do the job.

I wouldn't say YSMenu is hot garbage, in the slightest lol
Click to expand...
Eh. It randomly freezes and locks up trying to create saves on two officially supported cards I have. Then it'll lock up when you scroll over that game until you plug the SD into your PC and delete the corrupt save.
It's pretty meh at best. I'm referring to the RGF releases
 

Site & Scene News

Go to forum More news

Popular threads in this forum

ROM Hack  Cosmetic Paradise 2 - Make no Kiseki

It might be possible to add DSONE to ntrboot_flasher.

Hardware Misc Tutorial  DSi/DSi XL Problem and Solution Master List (In Progress)

Hardware  Visual DSi Diagnostic Guide

So..when is the EZ flash parallel being updated

Hacking Homebrew ROM Hack Homebrew game Translation Project  How can I translate a Nintendo DS rom as simply as possible? This is primarily about pure text changes!

Differences between R4ISDHC and R4I-SDHC

Flash firmware on DS Lite

General chit-chat
Help Users
    Xdqwerty @ Xdqwerty: https://www.youtube.com/watch?v=l1FjuRdha0A