Homebrew DS(i) Mode hacking progress thread

[dubbz82]

Yes buy a $15 ds flashcart and have it already

You're really kinda missing the point then. As someone who already has a ds flash cart, I don't really have much of a specific vested interest in having this up and running (outside of it'd be cool to only have to deal with one SD card as opposed to one for the system and a second one for ds stuff), but it'd be cool to have it up and running basically "because we can", which is really kinda the purpose of the entire thread. I'd agree with you, that if someone wants to, getting ahold of a ds mode flash cart is the practical solution for now, but I don't see anything wrong with pulling people away from companies that exist for more or less the sole purpose of profiteering from piracy, if it's eventually viable. Also, if anything else can still be manged to be hammered out in the dsi mode that can make it better than what they give you right out of the box, that's an added bonus.

 

[Shadow#1]

You're really kinda missing the point then. As someone who already has a ds flash cart, I don't really have much of a specific vested interest in having this up and running (outside of it'd be cool to only have to deal with one SD card as opposed to one for the system and a second one for ds stuff), but it'd be cool to have it up and running basically "because we can", which is really kinda the purpose of the entire thread. I'd agree with you, that if someone wants to, getting ahold of a ds mode flash cart is the practical solution for now, but I don't see anything wrong with pulling people away from companies that exist for more or less the sole purpose of profiteering from piracy, if it's eventually viable. Also, if anything else can still be manged to be hammered out in the dsi mode that can make it better than what they give you right out of the box, that's an added bonus.

Sure DSi mode fetures would nice to have im referring to the n00bs and morons that wants ds roms in this when @TuxSH said it is not viable selution and with DS Flashcarts companies arnt there to just make money off piracy if u feel that way go buy used games at gamestop where ther soal purpus is to make money and not the origial companies of the games

 

[Billy Acuña]

im referring to the n00bs and morons

So mature, haha

 

[Apache Thunder]

Turns out it was just the RSA sig at offset F80 that causes dev apps to fail. That's because there's an encryption related check on the RSA sig that TWL_FIRM does. This is separate from the verification check and hasn't been patched yet by rxTools/CIA. Dev sigs don't decrypt the same way on retail consoles, so this obviously fails.

The patch for this has already been found and documented. I'm sure it will make it's way into rxTools/CIA soon enough. Now dev apps really only need modcrypt fix. (which is simple, just de-modcrypt, change offset 1BF to 01 and have it re-modcrypted to retail modcrypt. Or you can just disable modcrypt entirely via offset 0x0C if you like)

Aside from dev apps, the main consequence is that you'd have to use a sig taken from an existing retail app to get past that check. So if any custom homebrew SRLs come out, they can't just zero it out or fill it with null bytes. But the check has been patched and will be public soon, so we won't have to worry about that thankfully.

Also, I have no idea why this check didn't block my TWL Slot-1 Launcher SRL. I used null bytes for the sig for that one and TWL_FIRM didn't seem to care. It does check the sig though because original TWL_FIRM won't boot it.....So I don't know why my SRL evades that check.

 

[froggestspirit]

Don't put your faith in @Normmatt, I highly doubt he'll contribute that much to the DS(i) mode hacking.

He may not decide to contribute to this, but I'm sure his knowledge is indispensable

 

[Wuigi]

Now that TWLNandFiler boots, is it possible to dump and restore GBA VC save files easier?
Sorry if this assumption is completely wrong, but agbsave9 doesn't work on emuNAND and it's such a hassle to relink the sysNAND with emuNAND and also too dangerous as my clk pin is not working anymore on my O3DS...
I just want to move my ambassador Wario Ware game save from my emuNAND to sysNAND, I need pyoro...and pyoro 2

 

[Mrrraou]

Also, I have no idea why this check didn't block my TWL Slot-1 Launcher SRL. I used null bytes for the sig for that one and TWL_FIRM didn't seem to care. It does check the sig though because original TWL_FIRM won't boot it.....So I don't know why my SRL evades that check.

Because your SRL isn't booted

 

[the assaf]

Now that TWLNandFiler boots, is it possible to dump and restore GBA VC save files easier?
Sorry if this assumption is completely wrong, but agbsave9 doesn't work on emuNAND and it's such a hassle to relink the sysNAND with emuNAND and also too dangerous as my clk pin is not working anymore on my O3DS...
I just want to move my ambassador Wario Ware game save from my emuNAND to sysNAND, I need pyoro...and pyoro 2

No, it is entire different nand partitions. And agbsav9 can backup/restore saves and effect emunand. Just do every thing in sysNAND, it'll work, because launching a gba vc boots into sysNAND.

 

[Roboman]

Why can't we make it blindly accept any header like og Ds?
If I understand correctly we have it accepting any of the original unsigned retail headers, but why not skip the header check entirely?

 

[Adrien835]

Just nop evrything

 

[Zidapi]

Guess what I managed to get working finally!
TWL dev apps!

I show TWLNandFiler and TWLNMenu working on my retail console! TWLNandFiler is the equilievent to SaveDataFiler. TWLNMenu is the equilivent to the DevMenu but for the DSi. It was part of the DSi SDK. Since 3DS keeps tickets on CTR_NAND, DSi TWLNMenu was made obsolete by the use of DevMenu and title install being managed solely by CTR mode. Still fun to see what it does on a 3DS though.

Awesome, I love messing around with this stuff. If someone were to want to check this stuff out themselves, would you suggest keeping an eye on Aurora Wright's TWL_FIRM thread on "that" site?

 

[zoogie]

Because it's kind of a PITA to go through FBI anytime you want to launch twlnandfiler, I made a quick cia to launch it right away.
It's really simple and it's just a slight change to the devkitpro applaunch example.

Directions: install twlnandfiler.cia (the iso site), and then install this cia.
Just launch it from home menu like any 3dsmode app.

 

[pdapanda]

I think I can‘t install TWLNAND.cia on my console?

 

[sniper_x002]

Because it's kind of a PITA to go through FBI anytime you want to launch twlnandfiler, I made a quick cia to launch it right away.
It's really simple and it's just a slight change to the devkitpro applaunch example.

Directions: install twlnandfiler.cia (the iso site), and then install this cia.
Just launch it from home menu like any 3dsmode app.

Sorry if this comes off as pretty stupid but what is that for? Is it something I should have in emuNAND?

 

[Slattz]

Because it's kind of a PITA to go through FBI anytime you want to launch twlnandfiler, I made a quick cia to launch it right away.
It's really simple and it's just a slight change to the devkitpro applaunch example.

Directions: install twlnandfiler.cia (the iso site), and then install this cia.
Just launch it from home menu like any 3dsmode app.

Thanks for this! I was looking a the code, I'm wondering why there is LL after the title ID? And could this work for stuff like pictochat and dsi camera? Thanks!

 

[Billy Acuña]

Because it's kind of a PITA to go through FBI anytime you want to launch twlnandfiler, I made a quick cia to launch it right away.
It's really simple and it's just a slight change to the devkitpro applaunch example.

Directions: install twlnandfiler.cia (the iso site), and then install this cia.
Just launch it from home menu like any 3dsmode app.

"applaunch" works with TWL and AGB titles?
I tried and got error (black screen freeze)

 

[zoogie]

Thanks for this! I was looking a the code, I'm wondering why there is LL after the title ID? And could this work for stuff like pictochat and dsi camera? Thanks!

The LL signifies a u64 type I think. As far as other 'unseen' apps like camera, I'm not sure. Just change the title id in the source and compile to find out I guess.

For those getting black screen errors, you have to install the actual twlnandfiler DSi mode app first of course. That's not included because it's dev sdk warez. My app is just the launcher for it.

 

[Slattz]

nvm, got it working,ignore peasant Slattz plz

 

[Apache Thunder]

"applaunch" works with TWL and AGB titles?
I tried and got error (black screen freeze)

It works for me. Your issue is perhaps you aren't running patched TWL_FIRM or a CFW that patches it. Also, this launches TWLNandFiler. It's not itself TWLNandFiler. You need to still install TWLNandFiler first, THEN you can run this launcher! Otherwise if you try to have it launch something that doesn't exist, it will freeze after the initial 3ds logo sequence.

EDIT:

I've recompiled this with a 3D Banner and the same banner sound you hear when selecting real DSiWare:

TWLNandFiler_Launcher.rar

I included the assets I used to build the 3D banner. It's easy to replace the Icon on the banner. Simply modify the source to launch your TWL title of choice. Then export the icon from the SRL using a DS rom editor. Use that as the icon (resize it to 48x48 first since DS/DSi icons were 32x32). There is a texture used on the model itself that also has the icon. Simply take the 48x48 icon and paste it over the existing icon in the texture. (as long as it's centered, it's the correct size for the texture).

Note you'll need to prebuild the icon.bin file. Use the batch file I included to build the CIA with the 3D Banner and prebuilt icon. Be sure you do this AFTER you had compiled it, so that the elf file it needs is present.

I edited the RSF file and gave it a custom product code as well.

Enjoy!

 

[Deleted User]

Does this mean that dsi pictochat could work on 3ds?