Homebrew ARM9Loader -- Technical Details and Discussion

peteruk

peteruk

Well-Known Member
Member
Level 18
Joined
Jun 26, 2015
Messages
3,005
Trophies
2
XP
7,372
Country
United Kingdom
Mrrraou said:
Summed up: Decrypted partition => readable and "modifiable", has to be reencypted to reinject
Encrypted partition => not modifiable, but can be dumped anyway and reinjected

--------------------- MERGED ---------------------------


The arm9loaderhax.bin is your CFW.
There is a payload on NAND too. This one will need to be updated. Updaters will be given for this. You won't need to compile them if you already have a9lhax installed.
Click to expand...

thanks for explaining this, appreciate it :)
 
Supster131

Supster131

(づ。◕‿‿◕。)づ *:・゚✧
Member
Level 11
Joined
Jan 19, 2016
Messages
3,315
Trophies
1
Location
My Computer
XP
2,758
Country
United States
Mrrraou said:
Summed up: Decrypted partition => readable and "modifiable", has to be reencypted to reinject
Encrypted partition => not modifiable, but can be dumped anyway and reinjected
Click to expand...
That's great to know! I'll be updating then, that way I can delete my emuNAND and regain 2GB on my SD card. :D
 
RednaxelaNnamtra

RednaxelaNnamtra

Well-Known Member
Member
Level 13
Joined
Dec 8, 2011
Messages
1,212
Trophies
1
XP
3,378
Country
Germany
dkabot said:
Last I heard, screen init was going to be a patch for A9LH itself, with screen deinit handled by payloads before firmlaunching.
Click to expand...
Yes I know, but my bootloader is included in a arm9loaderhax fork, and I also some people may be afraid to update their nand payload, these people could use the bootloader loader together with added screen init.
 
3

3xkrazy

Well-Known Member
Member
Level 3
Joined
Jun 2, 2013
Messages
299
Trophies
0
XP
279
Country
United States
dkabot said:
Last I heard, screen init was going to be a patch for A9LH itself, with screen deinit handled by payloads before firmlaunching.
Click to expand...

Could you clarify this? So screen init will be built into A9LH itself... will current payloads (D9, EmuNAND9, Uncart, CFW, etc.) be usable in it's current state, or will some of them need to be modified to start at offset 0x12000?

I was hoping one of the devs would be able to patch the brahma menu into A9LH itself, so that we could select the payload we want to run during boot.
 
C

ChaosRipple

Well-Known Member
Member
Level 2
Joined
Oct 1, 2015
Messages
272
Trophies
0
Age
29
XP
183
Country
United States
3xkrazy said:
Could you clarify this? So screen init will be built into A9LH itself... will current payloads (D9, EmuNAND9, Uncart, CFW, etc.) be usable in it's current state, or will some of them need to be modified to start at offset 0x12000?

I was hoping one of the devs would be able to patch the brahma menu into A9LH itself, so that we could select the payload we want to run during boot.
Click to expand...

IIRC, everything before the offset 0x12000 is ROP code. That's why you need to trim that part off of the CFW for A9LH. So my guess is that you will still need to trim those byes out for a CFW to work unless someone creates a Arm9Loader.bin that will read the CFW starting at 0x12000.
 
M

mariogamer

Well-Known Member
Member
Level 6
Joined
Aug 12, 2015
Messages
1,256
Trophies
0
Age
28
XP
790
Country
Canada
Mrrraou said:
Summed up: Decrypted partition => readable and "modifiable", has to be reencypted to reinject
Encrypted partition => not modifiable, but can be dumped anyway and reinjected

--------------------- MERGED ---------------------------


The arm9loaderhax.bin is your CFW.
There is a payload on NAND too. This one will need to be updated. Updaters will be given for this. You won't need to compile them if you already have a9lhax installed.
Click to expand...
CFW? How? Renaming the main cfw file (like cake.dat,for cake) to arm9loaderhax.bin?
 
3

3xkrazy

Well-Known Member
Member
Level 3
Joined
Jun 2, 2013
Messages
299
Trophies
0
XP
279
Country
United States
mariogamer said:
CFW? How? Renaming the main cfw file (like cake.dat,for cake) to arm9loaderhax.bin?
Click to expand...

rename build/main.bin to arm9loaderhax.bin for Cakes and ReiNand. I don't think the offical Cakes support A9HL right now, but I might be wrong according to it's updated github. I'll check that out later.
 
Supster131

Supster131

(づ。◕‿‿◕。)づ *:・゚✧
Member
Level 11
Joined
Jan 19, 2016
Messages
3,315
Trophies
1
Location
My Computer
XP
2,758
Country
United States
Potato hoarder said:
Can someone explain this in words everyone can understand?
Click to expand...
How Arm9LoaderHax works?

I'm probably not the best person to answer this, but I'll try my best. Arm9LoaderHax loads the hax/payload about a millisecond after you press the power button, even before the 3DS home menu boots. Unlike menuhax which boots after most things from sysNAND have loaded (one of the important things being theme data). This means you have control over Arm9 before boot, which means way faster boot times and a 100% boot rate, plus more.

Any feel free to correct me or add on to what I said.
 
  • Like
Reactions: Potato hoarder
M

mariogamer

Well-Known Member
Member
Level 6
Joined
Aug 12, 2015
Messages
1,256
Trophies
0
Age
28
XP
790
Country
Canada
Potato hoarder said:
Can someone explain this in words everyone can understand?
Click to expand...
Everyone can understand,just have to do some efforts...

Like me :P I was a noob but always try to understand,so now I can explain lot of thing on 3ds scene...

--------------------- MERGED ---------------------------

Supster131 said:
How Arm9LoaderHax works?

I'm probably not the best person to answer this, but I'll try my best. Arm9LoaderHax loads the hax/payload about a millisecond after you press the power button, even before the 3DS home menu boots. Unlike menuhax which boots after most things from sysNAND have loaded (one of the important things being theme data). This means you have control over Arm9 before boot, which means way faster boot times and a 100% boot rate, plus more.

Any feel free to correct me or add on to what I said.
Click to expand...
Pretty sure it's good.
 
  • Like
Reactions: Potato hoarder
Potato hoarder

Potato hoarder

Hoarder of Potatoes
Member
Level 3
Joined
Feb 2, 2016
Messages
388
Trophies
0
Location
Toronto, Ontario, Canada
XP
255
Country
Canada
mariogamer said:
Everyone can understand,just have to do some efforts...

Like me :P I was a noob but always try to understand,so now I can explain lot of thing on 3ds scene...

--------------------- MERGED ---------------------------


Pretty sure it's good.
Click to expand...
If you can explain lots on the 3ds scene, could you start with how arm9loader hax works? :P
 
RednaxelaNnamtra

RednaxelaNnamtra

Well-Known Member
Member
Level 13
Joined
Dec 8, 2011
Messages
1,212
Trophies
1
XP
3,378
Country
Germany
ChaosRipple said:
IIRC, everything before the offset 0x12000 is ROP code. That's why you need to trim that part off of the CFW for A9LH. So my guess is that you will still need to trim those byes out for a CFW to work unless someone creates a Arm9Loader.bin that will read the CFW starting at 0x12000.
Click to expand...
That's something my bootloader already does(on the devices it works).


Maybe I will try to port ctrbootmanager, after my bootctr like bootmanager is working, and nobody did it already till then. While Bootctr is more simple, ctrbootmanager has a nice ui, so especially with screen init it would be an interessting project :)
 
Supster131

Supster131

(づ。◕‿‿◕。)づ *:・゚✧
Member
Level 11
Joined
Jan 19, 2016
Messages
3,315
Trophies
1
Location
My Computer
XP
2,758
Country
United States
Potato hoarder said:
How it works and what you can do with it
Click to expand...
Mrrraou said:
Well, it's in the OP...
Click to expand...
Supster131 said:
How Arm9LoaderHax works?

I'm probably not the best person to answer this, but I'll try my best. Arm9LoaderHax loads the hax/payload about a millisecond after you press the power button, even before the 3DS home menu boots. Unlike menuhax which boots after most things from sysNAND have loaded (one of the important things being theme data). This means you have control over Arm9 before boot, which means way faster boot times and a 100% boot rate, plus more.

Any feel free to correct me or add on to what I said.
Click to expand...

As for what you can do with it, load CFW essentially. Once you install A9LH you cannot boot your 3DS without a payload. So you'll need to be using something like (Au)ReiNAND or Cakes.

Currently AuReiNAND allows you to boot into emuNAND and sysNAND.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

I will Make you a 3DS custom theme if you don't know how!

Hacking Homebrew  Animal Crossing New Leaf (ACNL) help: data corrupt??

So what's the current state of hacking and freeshop?

Hacking  Can you install a legit cia and keep the game? + Question about 3ds modding

Pokemon Ultra Sun/Moon from piracy site doesn't work

Citra AES Keys

Hacking Homebrew  3DS System Transfer Questions

Black icon Mii Plaza + Streetpass isn't working properly

General chit-chat
Help Users
    Bunjolio @ Bunjolio: bleh