Hacking Decompiling waninkoko's softmod

[SanGor]

lol, looking at the asm of that tool is more helpfull than that decom ...

 

[waninkoko]

How Backup-Creator works:

1. Extract ticket and TMD from game partition.
2. Write ticket to "partition.iso" aligned to 64 bytes.
3. Write TMD to "partition.iso" aligned to 64 bytes.
4. Decrypt game partition.
5. Write decrypted partition to "partition.iso" at offset 0x800 (sector 1).

That's all. No patching is done.

 

[Arm the Homeless]

Speaking of that, could we have a linux backup maker?

 

[waninkoko]

I have a linux version here (the app was coded mainly for linux) but I have no intentions in release it.

 

[Arm the Homeless]

Aw.

Well, Wine it is.

 

[plushing]

Basically, the AES decryption of the game partition should have been done on the fly when the custom IOS module reads a block.

Waninkoko took the easy way out and decrypts the game partition off-side, so that IOS doesn't need to do it anymore.

 

[WiiCrazy]

Basically, the AES decryption of the game partition should have been done on the fly when the custom IOS module reads a block.

Waninkoko took the easy way out and decrypts the game partition off-side, so that IOS doesn't need to do it anymore.

Well if you were to change the iso in one way or another anyway, it seems as optimization to do it off-side... (provided that speed matters between two)

 

[bailli]

Basically, the AES decryption of the game partition should have been done on the fly when the custom IOS module reads a block.

Waninkoko took the easy way out and decrypts the game partition off-side, so that IOS doesn't need to do it anymore.

Well if you were to change the iso in one way or another anyway, it seems as optimization to do it off-side...

If you decrypted on the fly you might be able to write a loader without modifying the ISO.
Speed should not be an issue since the Wii was designed to decrypt on the fly... (it is even done in hardware not software if I remember correctly)

I really like to know who hides behind "plushing". - He/She/It

knows way too much to be new to the scene...

 

[paul1991]

You should dump the cios 5 and open it in idapro. I can not right now, but I will id your cant/wont.

I posted this on wiinewz yesterday.



I found all of this plain text in the .dol loader. This should help for some reverse engineering. I am going to IDAPro the CIOS 5 tomorrow.






Wii Backup Loader v0.1 - developed by Waninkoko.....
[+] ERROR: Could not open disc subsystem! (ret = %d)....
[+] Please insert a Wii game disc.......
OK!....
[+] Resetting drive.....
ERROR! (ret = %d)..
OK!....[+]
Title identification.....
Press any button to restart the Wii....
Restarting................./dev/do.
[DEBUG]: Apploader entry....
[DEBUG]: Apploader init.....
[DEBUG]: Apploader main.....
[DEBUG]: Address: 0x%08X - Length: %d...
[DEBUG]: Apploader returns entry point......
[DEBUG]: Enabling audio stream......
[DEBUG]: Reading apploader header.......
[DEBUG]: Reading apploader code.....
[DEBUG]: Shutting down IOS......
[+] ERROR: Could not read disc ID! (ret = %d)...
[+] ERROR: Could not read game info! (ret = %d).....
[+] Game Name : %s..
Game ID : %c%c%c%c....
Press A button to boot this game, otherwise press B button......
[+] Booting game disc, please wait.......

: Could not boot the game disc! (ret = %d)...
Press any button to continue.......
/dev/di.
/dev/do.....................
/sys/cert.sys...................
/dev/di.

No IR sensitivity setting selected......

Unknown event, can not handle it [Code 0x%x]......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessageasync: Could not allocate memory for request...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessageasync: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessage: Could not allocate memory for request....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessage: Could not allocate memory for pbuf...
Wii.bdaddr: %02x:%02x:%02x:%02x:%02x:%02x...
cod: %02x%02x%02x....
psrm: %02x....
psm: %02x.....
co: %04x..
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_host_num_comp_packets: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_hc_to_h_fc: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_current_lap: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_cod: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_stored_link_key: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_reject_connection_request: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_disconnect: Connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_disconnect: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_pin_code_request_neg_reply: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_vendor_specific_patch: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_inquiry_mode: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_local_name: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_event_mask: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_exit_periodic_inquiry: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_write_page_timeout: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_event_filter: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_local_features: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_local_version: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_bd_addr: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_buffer_size: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_reset: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_acl_write: ACL connection does not exist...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_acl_write: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_pin_code_request_reply: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_inquiry: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_stored_link_keys: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_init: Could not allocate memory for hci_dev...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_inquriy_result_evt: Could not allocate memory for inquiry result......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_conn_complete_evt: Could not allocate memory for link. Disconnect.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_conn_request_evt: Could not allocate memory for link. Disconnect......
lap = 00%02x%02x%02x....
HCI_MODE_CHANGE.
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_return_link_key_evt: Could not allocate memory for link key result....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_connect_req: Could not allocate memory for link....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_connect_req: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_write_flush_timeout: ACL connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_write_flush_timeout: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_host_buffer_size: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_link_policy_settings: ACL connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_link_policy_settings: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_sniff_mode: ACL connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_sniff_mode: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_remote_name: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_periodic_inquiry: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_connect_ind: Could not allocate memory for lpcb...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_new: Could not allocate memory for pcb....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_signal: could not allocate memory for l2cap_sig...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_signal: could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_disconnect_req: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_config_req: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_config_req: state = L2CAP_?. Invalid state....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Could not allocate buffer for fragmented packet......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_connect_rsp: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Configuration of MTU failed......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Unsupported service type.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: lp_connect_cfm: No resources available......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: lp_connect_cfm: Connection falied...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_datawrite: State != L2CAP_OPEN. Dropping data.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_datawrite: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_connect_req: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btmemr.c:%i: memr_realloc: illegal memory.......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: bad pbuf layer.......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btbtpbuf_alloc: couldn't allocate pbuf(p) from pool....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: couldn't allocate pbuf(q) from pool......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: couldn't allocate pbuf from ram......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: couldn't allocate pbuf from rom/ref......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: bad flag value.......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/physbusif.c:%i: __readintrdataCB: Could not allocate memory for pbuf....oh0.oh1.
[BTERR] /home/waninkoko/Wii/libogc/lwbt/physbusif.c:%i: __readbulkdataCB: Could not allocate memory for pbuf....
stdout....
Exception (%s) occurred!..GPR00 %08X GPR08 %08X GPR16 %08X GPR24 %08X.....
GPR01 %08X GPR09 %08X GPR17 %08X GPR25 %08X.....
GPR02 %08X GPR10 %08X GPR18 %08X GPR26 %08X.....
GPR03 %08X GPR11 %08X GPR19 %08X GPR27 %08X.....
GPR04 %08X GPR12 %08X GPR20 %08X GPR28 %08X.....
GPR05 %08X GPR13 %08X GPR21 %08X GPR29 %08X.....GPR06 %08X GPR14 %08X GPR22 %08X GPR30 %08X.....GPR07 %08X GPR15 %08X GPR23 %08X GPR31 %08X.....LR %08X SRR0 %08x SRR1 %08x MSR %08x....DAR %08X DSISR %08X.....--> ....-->.....%p....CODE DUMP:....%p: %08X %08X %08X %08X....Reset...System Reset....Machine Check...DSI.ISI.Interrupt...Alignment...Program.Fl oating Point..Decrementer.System Call.Trace...Performance.IABR....Reserved....Therm al.€£#.€£#,€£#<€£#@€£#D€£#P€£#\€£#d€£#t€£#€€£#Œ€£# ”€£#*€£#¨€£#´.......@ø..........€..0.... .ÿŒ.......@.....ÿÿÿÿÿþàxÿþà„ÿþàÔÿþàÄÿþàhÿþà”ÿþà<ÿþ à<ÿþà´ÿþà¤ÿþà<ÿþà<ÿþà<ÿþà<ÿþà<ÿþà<ÿþàhÿþà”ÿþà<ÿþà< ÿþàxÿþà„...ð.......................*@Gi¢.uz..œ...ð .......................*@Gi¢.uz..œ.....#.$........ .k.j.i.l.q.°@Kj¬.|…..¤.....!.!.........k.m.k.m.p.° @Kj¬.|…..¤...ð.......................*@Np¢.uz..œ.. .ð.......................*@Np¢.uz..œ...à.0.0...... .............*@Gi¢.uz..œ...à.,.,.................. .*@Gi¨.{z..œ...ñ.......................*@GiŸ.rz..œ ...à.0.0...................*@Gi´.‡z..œ€¢2(ÿÿ.¤Œlib OGC Release 1.6.0....Aug 28 2008.
<%d load/stores / %d miss cycles / %d cycles / %d instructions>.....
GetNumTicketViews too many views: %u...
hT0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ....
0123456789abcdefghijklmnopqrstuvwxyz....
<NULL>.. iosAlloc titles failed...
:i..<img src="style_emoticons/<#EMO_DIR#>/biggrin.gif" style="vertical-align:middle" emoid="" border="0" alt="biggrin.gif" />..d:dd....idd:dd..q:..i:..qdi:....iii:....i: d.id:.qi:.dddi:...d:..ddd:....qi:d....q:i.di:d.... d:i.q:d.:q..es..
dddd:id.es:.ID..bb:bd.../dev/usb/%s/%x/%x...
/shared2/sys/SYSCONF....
IPL.SADR....
NET.WCFG....
IPL.PC..IPL.EULA....
IPL.AR..IPL.NIK.BT.DINF.IPL.DH..IPL.SSV.IPL.CB..
IPL.LNG.IPL.SND.BT.MOT..BT.SPKV.BT.BAR..BT.SENS.IP L.E60.IPL.PGS.IPL.IDL.VIDEO...NTSC....
PAL.MPAL....
AREA....
JPN.USA.EUR.AUS.BRA.TWN.ROC.KOR.HKG.ASI.LTN.SAF.GA ME....
JP..US..EU..SCv0........................
/title/00000001/00000002/data/setting.txt...............
Abort called....stdnull.
0123456789abcdef....inf.NAN.nan.(null)..0123456789 ABCDEF....
bug in vfprintf: bad base...0...C-UTF-8.C-SJIS..C-EUCJP.C-JIS...
Infinity....NaN.C-ISO-8859-1....ISO-8859-1..UTF-8...JIS.EUCJP...SJIS

-Flaming removed-

 

[WiiCrazy]

Basically, the AES decryption of the game partition should have been done on the fly when the custom IOS module reads a block.

Waninkoko took the easy way out and decrypts the game partition off-side, so that IOS doesn't need to do it anymore.

Well if you were to change the iso in one way or another anyway, it seems as optimization to do it off-side...

If you decrypted on the fly you might be able to write a loader without modifying the ISO.
Speed should not be an issue since the Wii was designed to decrypt on the fly... (it is even done in hardware not software if I remember correctly)

I really like to know who hides behind "plushing". - He/She/It

knows way too much to be new to the scene...

Well the bug that is exploited is about the dvd's.... hence the different key... hence the different layout of the dvd... hence the speed cap...
It seems that the iso should be modified anyway....well just an estimation actually

 

[bailli]

Well the bug that is exploited is about the dvd's.... hence the different key... hence the different layout of the dvd... hence the speed cap...
It seems that the iso should be modified anyway....well just an estimation actually

What different key?!

 

[linuxares]

Use the Trucha Bug then?

 

[zidane_genome]

I have a linux version here (the app was coded mainly for linux) but I have no intentions in release it.

Once we start caring, you wang monkey, we'll drop you an email.

Wow... decompiling the guys work, and he makes a post about a Linux version, and you diss the guy... yea... way to get on his good side... douche...

If it weren't for him, you wouldn't have this piece of software!

 

[alex]

I have a linux version here (the app was coded mainly for linux) but I have no intentions in release it.

-Quote removed-

This is the reason he doesn't work. It's so sad how it got leaked, but you can't stop it now, there is no way to tell the internet to stop.

I didn't mind waiting. I hope waninkoko makes an open source or continues.

And the common-key that comes with it can be used for other stuff right? :S

I hope somehow this gets continued. It's EPIC!

 

[MolotovC]

Normal gbatempers can stop this... the 'REPORT BUTTON' use it


looking at, quote "Once we start caring, you wang monkey, we'll drop you an email."

 

[atomikramp]

Use the Trucha Bug then?

i dunno, i think that the trucha key is used to sign the modified iso so that it can be accepted by the wii.

have someone tried to take the iso, burn it, and with firmware 3.2 (wich is vulnerable to trucha exploit) tried to run it via the disc channel?

 

[linkinworm]

<!--quoteo(post=1412036:date=Sep 20 2008, 10:47 PM:name=paul1991)--><div class='quotetop'>QUOTE(paul1991 @ Sep 20 2008, 10:47 PM) <a href="index.php?act=findpost&pid=1412036"><{POST_SNAPBACK}></a></div><div class='quotemain'><!--quotec-->You should dump the cios 5 and open it in idapro. I can not right now, but I will id your cant/wont.

I posted this on wiinewz yesterday.



I found all of this plain text in the .dol loader. This should help for some reverse engineering. I am going to IDAPro the CIOS 5 tomorrow.






Wii Backup Loader v0.1 - developed by Waninkoko.....
[+] ERROR: Could not open disc subsystem! (ret = %d)....
[+] Please insert a Wii game disc.......
OK!....
[+] Resetting drive.....
ERROR! (ret = %d)..
OK!....[+]
Title identification.....
Press any button to restart the Wii....
Restarting................./dev/do.
[DEBUG]: Apploader entry....
[DEBUG]: Apploader init.....
[DEBUG]: Apploader main.....
[DEBUG]: Address: 0x%08X - Length: %d...
[DEBUG]: Apploader returns entry point......
[DEBUG]: Enabling audio stream......
[DEBUG]: Reading apploader header.......
[DEBUG]: Reading apploader code.....
[DEBUG]: Shutting down IOS......
[+] ERROR: Could not read disc ID! (ret = %d)...
[+] ERROR: Could not read game info! (ret = %d).....
[+] Game Name : %s..
Game ID : %c%c%c%c....
Press A button to boot this game, otherwise press B button......
[+] Booting game disc, please wait.......

: Could not boot the game disc! (ret = %d)...
Press any button to continue.......
/dev/di.
/dev/do.....................
/sys/cert.sys...................
/dev/di.

No IR sensitivity setting selected......

Unknown event, can not handle it [Code 0x%x]......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessageasync: Could not allocate memory for request...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessageasync: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessage: Could not allocate memory for request....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/bte.c:%i: bte_sendmessage: Could not allocate memory for pbuf...
Wii.bdaddr: %02x:%02x:%02x:%02x:%02x:%02x...
cod: %02x%02x%02x....
psrm: %02x....
psm: %02x.....
co: %04x..
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_host_num_comp_packets: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_hc_to_h_fc: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_current_lap: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_cod: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_stored_link_key: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_reject_connection_request: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_disconnect: Connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_disconnect: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_pin_code_request_neg_reply: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_vendor_specific_patch: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_inquiry_mode: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_local_name: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_event_mask: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_exit_periodic_inquiry: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_write_page_timeout: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_set_event_filter: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_local_features: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_local_version: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_bd_addr: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_buffer_size: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_reset: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_acl_write: ACL connection does not exist...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_acl_write: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_pin_code_request_reply: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_inquiry: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_stored_link_keys: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_init: Could not allocate memory for hci_dev...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_inquriy_result_evt: Could not allocate memory for inquiry result......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_conn_complete_evt: Could not allocate memory for link. Disconnect.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_conn_request_evt: Could not allocate memory for link. Disconnect......
lap = 00%02x%02x%02x....
HCI_MODE_CHANGE.
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_return_link_key_evt: Could not allocate memory for link key result....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_connect_req: Could not allocate memory for link....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_connect_req: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_write_flush_timeout: ACL connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: lp_write_flush_timeout: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_host_buffer_size: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_link_policy_settings: ACL connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_write_link_policy_settings: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_sniff_mode: ACL connection does not exist.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_sniff_mode: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_read_remote_name: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/hci.c:%i: hci_periodic_inquiry: Could not allocate memory for pbuf......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_connect_ind: Could not allocate memory for lpcb...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_new: Could not allocate memory for pcb....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_signal: could not allocate memory for l2cap_sig...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_signal: could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_disconnect_req: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_config_req: Could not allocate memory for pbuf....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_config_req: state = L2CAP_?. Invalid state....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Could not allocate buffer for fragmented packet......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_connect_rsp: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Configuration of MTU failed......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_process_sig: Unsupported service type.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: lp_connect_cfm: No resources available......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: lp_connect_cfm: Connection falied...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_datawrite: State != L2CAP_OPEN. Dropping data.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_datawrite: Could not allocate memory for pbuf.....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/l2cap.c:%i: l2cap_connect_req: Could not allocate memory for pbuf...
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btmemr.c:%i: memr_realloc: illegal memory.......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: bad pbuf layer.......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btbtpbuf_alloc: couldn't allocate pbuf(p) from pool....
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: couldn't allocate pbuf(q) from pool......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: couldn't allocate pbuf from ram......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: couldn't allocate pbuf from rom/ref......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/btpbuf.c:%i: btpbuf_alloc: bad flag value.......
[BTERR] /home/waninkoko/Wii/libogc/lwbt/physbusif.c:%i: __readintrdataCB: Could not allocate memory for pbuf....oh0.oh1.
[BTERR] /home/waninkoko/Wii/libogc/lwbt/physbusif.c:%i: __readbulkdataCB: Could not allocate memory for pbuf....
stdout....
Exception (%s) occurred!..GPR00 %08X GPR08 %08X GPR16 %08X GPR24 %08X.....
GPR01 %08X GPR09 %08X GPR17 %08X GPR25 %08X.....
GPR02 %08X GPR10 %08X GPR18 %08X GPR26 %08X.....
GPR03 %08X GPR11 %08X GPR19 %08X GPR27 %08X.....
GPR04 %08X GPR12 %08X GPR20 %08X GPR28 %08X.....
GPR05 %08X GPR13 %08X GPR21 %08X GPR29 %08X.....GPR06 %08X GPR14 %08X GPR22 %08X GPR30 %08X.....GPR07 %08X GPR15 %08X GPR23 %08X GPR31 %08X.....LR %08X SRR0 %08x SRR1 %08x MSR %08x....DAR %08X DSISR %08X.....--> ....-->.....%p....CODE DUMP:....%p: %08X %08X %08X %08X....Reset...System Reset....Machine Check...DSI.ISI.Interrupt...Alignment...Program.Fl oating Point..Decrementer.System Call.Trace...Performance.IABR....Reserved....Therm al.€£#.€£#,€£#<€£#@€£#D€£#P€£#\€£#d€£#t€£#€€£#Œ€£# ”€£#*€£#¨€£#´.......@ø..........€..0.... .ÿŒ.......@.....ÿÿÿÿÿþàxÿþà„ÿþàÔÿþàÄÿþàhÿþà”ÿþà<ÿþ à<ÿþà´ÿþà¤ÿþà<ÿþà<ÿþà<ÿþà<ÿþà<ÿþà<ÿþàhÿþà”ÿþà<ÿþà< ÿþàxÿþà„...ð.......................*@Gi¢.uz..œ...ð .......................*@Gi¢.uz..œ.....#.$........ .k.j.i.l.q.°@Kj¬.|…..¤.....!.!.........k.m.k.m.p.° @Kj¬.|…..¤...ð.......................*@Np¢.uz..œ.. .ð.......................*@Np¢.uz..œ...à.0.0...... .............*@Gi¢.uz..œ...à.,.,.................. .*@Gi¨.{z..œ...ñ.......................*@GiŸ.rz..œ ...à.0.0...................*@Gi´.‡z..œ€¢2(ÿÿ.¤Œlib OGC Release 1.6.0....Aug 28 2008.
<%d load/stores / %d miss cycles / %d cycles / %d instructions>.....
GetNumTicketViews too many views: %u...
hT0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ....
0123456789abcdefghijklmnopqrstuvwxyz....
<NULL>.. iosAlloc titles failed...
:i..<img src="style_emoticons/<#EMO_DIR#>/biggrin.gif" style="vertical-align:middle" emoid="" border="0" alt="biggrin.gif" />..d:dd....idd:dd..q:..i:..qdi:....iii:....i: d.id:.qi:.dddi:...d:..ddd:....qi:d....q:i.di:d.... d:i.q:d.:q..es..
dddd:id.es:.ID..bb:bd.../dev/usb/%s/%x/%x...
/shared2/sys/SYSCONF....
IPL.SADR....
NET.WCFG....
IPL.PC..IPL.EULA....
IPL.AR..IPL.NIK.BT.DINF.IPL.DH..IPL.SSV.IPL.CB..
IPL.LNG.IPL.SND.BT.MOT..BT.SPKV.BT.BAR..BT.SENS.IP L.E60.IPL.PGS.IPL.IDL.VIDEO...NTSC....
PAL.MPAL....
AREA....
JPN.USA.EUR.AUS.BRA.TWN.ROC.KOR.HKG.ASI.LTN.SAF.GA ME....
JP..US..EU..SCv0........................
/title/00000001/00000002/data/setting.txt...............
Abort called....stdnull.
0123456789abcdef....inf.NAN.nan.(null)..0123456789 ABCDEF....
bug in vfprintf: bad base...0...C-UTF-8.C-SJIS..C-EUCJP.C-JIS...
Infinity....NaN.C-ISO-8859-1....ISO-8859-1..UTF-8...JIS.EUCJP...SJIS

<hr><b><!--sizeo:1--><span style="font-size:8pt;line-height:100%"><!--/sizeo-->Posts merged<!--sizec--></span><!--/sizec--></b>

<!--quoteo(post=1411998:date=Sep 20 2008, 10:18 PM:name=waninkoko)--><div class='quotetop'>QUOTE(waninkoko @ Sep 20 2008, 10:18 PM) <a href="index.php?act=findpost&pid=1411998"><{POST_SNAPBACK}></a></div><div class='quotemain'><!--quotec-->I have a linux version here (the app was coded mainly for linux) but I have no intentions in release it.<!--QuoteEnd--></div><!--QuoteEEnd-->
-Quote removed-
<!--QuoteEnd--></div><!--QuoteEEnd-->
lol i can get all that from HEX, nice try.

 

[Arm the Homeless]

Yeah. He got it from hex. He was saying there was plain text in the DOL.

 

[Miles]

I'm almost 100% sure I made a post in this thread before, but I guess not.

Either way Waninkoko said he was releasing the source code.

http://gbatemp.net/index.php?s=&showto...t&p=1410017

The driver is not finished, nor the source code (needs to be cleaned, commented, remove shitty code, etc.). I was going to release the source (as it is licensed under the GPL) with the backup-loader binary but now I'll have to release it when I have it completely finished (except you want a very shitty source).

Also, it's not my fault that the guy who leaked it didn't release the source too.


EDIT: If I have free time tomorrow, I'll release the first version of the source (I don't like to violate the GPL).

Also

You should dump the cios 5 and open it in idapro. I can not right now, but I will id your cant/wont.
I posted this on wiinewz yesterday.
I found all of this plain text in the .dol loader. This should help for some reverse engineering. I am going to IDAPro the CIOS 5 tomorrow.

I have a linux version here (the app was coded mainly for linux) but I have no intentions in release it.

-Quote removed-

That information doesn't seem to be all that useful, just the messages that appear on screen and some stuff left over from when he was compiling.

Also stop being such a snob about this.
This wani hate is getting really annoying.
It's like you want him to not even help you reverse engineer his ISO Loader.
Isn't that a bit redundant and making the work you guys are trying to do even harder?
Are people really that stupid?

 

[plushing]

The apploader is nothing special, just a normal launcher, you won't find anything of interest in there.

The juicy parts have already been revealed (notably the IOS module and the "patcher").
And Waninkoko has released the source to his custom DIP module on his website, what a sucker.