Hacking Official Corbenik - Another CFW for advanced users (with bytecode patches!)

  • Thread starter Thread starter chaoskagami
  • Start date Start date
  • Views Views 287,572
  • Replies Replies 2,153
  • Likes Likes 60
Corbenik is mainly intended for developers; so if you don't know your way around the 3DS, chances are this isn't for you.
[/spoiler]

A short question: "Why is it important that 3DS games also as GBA games are working correctly?".
As you writ your CFW is more something for dev's and not for the "normal" user.
Or i'am wrong (what wouldn't be the first or the last time :))
 
A short question: "Why is it important that 3DS games also as GBA games are working correctly?".
As you writ your CFW is more something for dev's and not for the "normal" user.
Or i'am wrong (what wouldn't be the first or the last time :))

Because I play GBA romhacks and DS games? I dunno. Is that good enough?

There is actually only one game that I tested and didn't work. Which was Pokemon Quartz, it just gave me a glitchy Gameboy screen.

Like 'Gameboy Advance (C) [garbage]'?

It's a romhack, so maybe the ROM has an invalid header and it's only triggered by booting the bios. There's no logo check patch for AGB_FIRM, as far as I'm aware. I can look into it. http://problemkaputt.de/gbatek.htm#gbacartridgeheader
 
  • Like
Reactions: The Catboy
A short question: "Why is it important that 3DS games also as GBA games are working correctly?".
As you writ your CFW is more something for dev's and not for the "normal" user.
Or i'am wrong (what wouldn't be the first or the last time :))
Just because someone is a dev or poweruser, doesn't mean they should lack popular features. If anything, they will the ones who end up adding it anyways.

--------------------- MERGED ---------------------------

Because I play GBA romhacks and DS games? I dunno. Is that good enough?



Like 'Gameboy Advance (C) [garbage]'?

It's a romhack, so maybe the ROM has an invalid header and it's only triggered by booting the bios. There's no logo check patch for AGB_FIRM, as far as I'm aware. I can look into it. http://problemkaputt.de/gbatek.htm#gbacartridgeheader
it does show the Like 'Gameboy Advance (C) [garbage]'
It is a ROM hack, which I found compiled on that iso site. It does work on other CFW's as well. It's no big deal since I barely play the game, so no hurry ^_^
 
Last edited by The Catboy,
woooo guys !
dont bite my head of it was only a question!
I dont want to make a wave.

Sorry :grog:
 
it does show the Like 'Gameboy Advance (C) [garbage]'
It is a ROM hack, which I found compiled on that iso site. It does work on other CFW's as well. It's no big deal since I barely play the game, so no hurry ^_^

I extracted the ROM from that and tested it in VBA-M with the BIOS. The result was exactly as expected. The logo is corrupted in the ROM. Not my fault. :P

It'll only boot if BIOS screen is off, so I guess I'll split that out to a separate patch (really, it's optional)

6jgXsHbM.png
 
Last edited by chaoskagami,
I extracted the ROM from that and tested it in VBA-M with the BIOS. The result was exactly as expected. The logo is corrupted in the ROM. Not my fault. :P

View attachment 52177
So I quickly booted into CakesFW, because these two projects are similar enough. And now the game is broken. What? I thought I had a working version at one point. :unsure: Either that or I was running it through an emulator :unsure:
Either way, that was my bad, so I am glad this isn't this CFW's fault! ^_^
 
Last edited by The Catboy,
  • Like
Reactions: chaoskagami
My region changed o3DS console works just fine with the SecureInfo_A Signature Fix patch. So that's good.

Now, all I have left is to test Corbenik on my 9.2 sysNAND only console.
 
  • Like
Reactions: chaoskagami
My region changed o3DS console works just fine with the SecureInfo_A Signature Fix patch. So that's good.

Now, all I have left is to test Corbenik on my 9.2 sysNAND only console.

My 9.2 EmuNAND works, so it should work okay.

I have to a9lh my o3DS for testing purposes, I think. It's not easy to test o3DS behavior without an o3DS. Luckily I left it on 9.5. B-)
 
  • Like
Reactions: Temptress Cerise
[QUOTE="chaoskagami, post: 6428089, member: 387087"
The middle of ExeFS decryption is an incredibly strange place to lock up. Check your SD card.[/QUOTE]

I changed the native 11.0 for a decrypted one (also 11.0) that I used in Cakes for a while and it worked!!! Thanks for the help and awesome work!!

One question, what "ARM11 XN Disable" does?
 
I changed the native 11.0 for a decrypted one (also 11.0) that I used in Cakes for a while and it worked!!! Thanks for the help and awesome work!!

One question, what "ARM11 XN Disable" does?

It gives every application a RWX memory map. It's an alternative to svcBackdoor, but it somewhat weakens security (and nobody has started using it)

EDIT: It's in Luma's dev version, as well, for anybody curious.
 
Last edited by chaoskagami,
Because I play GBA romhacks and DS games? I dunno. Is that good enough?



Like 'Gameboy Advance (C) [garbage]'?

It's a romhack, so maybe the ROM has an invalid header and it's only triggered by booting the bios. There's no logo check patch for AGB_FIRM, as far as I'm aware. I can look into it. http://problemkaputt.de/gbatek.htm#gbacartridgeheader
You can't patch the logo check because the BIOS is ROM embedded into the 3DS SoC. The only solution is to fix the header or not pass through the BIOS before going to the game.
 
You can't patch the logo check because the BIOS is ROM embedded into the 3DS SoC. The only solution is to fix the header or not pass through the BIOS before going to the game.

I went and looked into it after posting and found an utter abscence of the bios in AGB, so I figured as much. Thanks for confirming.
 
It gives every application a RWX memory map. It's an alternative to svcBackdoor, but it somewhat weakens security (and nobody has started using it)

EDIT: It's in Luma's dev version, as well, for anybody curious.
Curious, how is it an alternative to svcBackdoor, as it doesn't give you kernel privilege? Wouldn't a better comparison be to svcControlProcessMemory, which allows you to map memory as executable?
 
You can't patch the logo check because the BIOS is ROM embedded into the 3DS SoC. The only solution is to fix the header or not pass through the BIOS before going to the game.
AFAIK the GBA boot ROM is part of AGB_FIRM, not the SoC. (The only ROM embedded in the SoC is the boot ROM.)
 
Curious, how is it an alternative to svcBackdoor, as it doesn't give you kernel privilege? Wouldn't a better comparison be to svcControlProcessMemory, which allows you to map memory as executable?

That would be a better comparison, yes. The most common use of svcBackdoor in a CFW seems to be to use it to remap RWX, though. To be clear, it's another way to do JIT.

AFAIK the GBA boot ROM is part of AGB_FIRM, not the SoC. (The only ROM embedded in the SoC is the boot ROM.)

Are you sure about that? I couldn't find any code matching the GBA bios within AGB_FIRM. Maybe I didn't search hard enough, but quag is usually right.
 
Last edited by chaoskagami,
That would be a better comparison, yes. The most common use of svcBackdoor in a CFW seems to be to use it to remap RWX, though. To be clear, it's another way to do JIT.
Don't see why. svcControlProcessMemory allows the same with less security risk than svcBackdoor. IIRC CitrAGB's dynarec, at least, used the former.
 
  • Like
Reactions: TuxSH and Mrrraou
Don't see why. svcControlProcessMemory allows the same with less security risk than svcBackdoor. IIRC CitrAGB's dynarec, at least, used the former.

I looked it up on 3dbrew, and lo and behold, you're correct. Why the hell does anyone still need backdoor, then? I mean, it's like leaving half your house torn off for something you don't even need.
 
  • Like
Reactions: gnmmarechal

Site & Scene News

Popular threads in this forum