Flashing NAND on 11.0 - read OP first

Discussion in '3DS - Flashcards & Custom Firmwares' started by lisreal2401, Jun 9, 2016.

  1. lisreal2401
    OP

    lisreal2401 GBAtemp Fan

    Member
    437
    183
    Jun 4, 2013
    United States
    So, I messed up downgrading a friends 3DS to 2.1.0 and now it's stuck at 11.0. I can get into HBL through oothax if I try a bunch. I've been told already that the NAND can't be written to without escalated permissions but I have evidence to counter this thought. I was able to dump and flash my NAND on 9.2 without any kernel access back in 2015 using Gateway's launcher tool. I'm not trying to downgrade the system by reinstalling titles, but trying to straight restore a NAND dump - which I've read can be done in DSi mode under the right circumstances. I suppose I'm asking, is it possible to restore it in userland or is the TWL mode for standard DS have access to NAND writing and would that work with a flashcart? I don't want to hardmod the system (or pay for it) and neither does he. I'm just trying to get a solid answer on whether or not this is feasible at all right now in some way now.
     
    Last edited by lisreal2401, Jun 9, 2016


  2. Davidosky99

    Davidosky99 Eevee :3

    Banned
    2,582
    1,570
    Jun 7, 2015
    Porto
    no, as in 11.0 there's no arm9 acess, so there's no way of doing such operation without a hardmod.
    previously you managed to do it, because in 9.2 it existed arm9 acess(nothing to do with gateway) but again, on 11.0 there's no arm9 acess, no way of downgrading and NO WAY of restoring a NAND backup without downgrading the native firm, which is possible via a hardmod
     
  3. lisreal2401
    OP

    lisreal2401 GBAtemp Fan

    Member
    437
    183
    Jun 4, 2013
    United States
    But arm9 access shouldn't be needed to restore a NAND backup - if you can downgrade system modules with ARM11 access why is it a NAND restore is only writable with arm9 permissions, and why is it writable within DSi mode?
     
  4. Davidosky99

    Davidosky99 Eevee :3

    Banned
    2,582
    1,570
    Jun 7, 2015
    Porto
    a nand restore and a title downgrade are completely different things. And it's only writtable in 9.2 which is the fw that has arm9 acess.
    also, 11.0 implemented a title downgrade limit, so you can't really get out of this one without a hardmod
     
  5. GothicIII

    GothicIII GBAtemp Fan

    Member
    488
    134
    Jan 4, 2015
    Gambia, The
    You can't write NAND directly without arm9 kernel access. Its as simple as that.

    Read this what you can and what you can't do (Just remember that you can't downgrade on fw11.0 due to new mechanisms):
    http://wiki.gbatemp.net/wiki/3DS_Homebrew
     
    Last edited by GothicIII, Jun 9, 2016
  6. lisreal2401
    OP

    lisreal2401 GBAtemp Fan

    Member
    437
    183
    Jun 4, 2013
    United States
    Well, damn. Guess I'll hold out and see if something comes up - no big deal.
     
  7. Temarile

    Temarile (ノ◕ヮ◕)ノ*:・゚✧ A9LH ✧゚・: *ヽ(◕ヮ◕ヽ)

    Member
    1,132
    421
    Jan 7, 2016
    Netherlands
    You may be waiting a looong time. The last time there was a 1,5 year gap before another kernel exploit was found.
     
  8. astronautlevel

    astronautlevel But he's a guy

    Member
    3,927
    4,626
    Jan 26, 2016
    United States
    That Nightly Site™
    Or until September at the pace we're going ;)
     
  9. Temarile

    Temarile (ノ◕ヮ◕)ノ*:・゚✧ A9LH ✧゚・: *ヽ(◕ヮ◕ヽ)

    Member
    1,132
    421
    Jan 7, 2016
    Netherlands
    Just warning the OP for a possible SOON.

    But you're right, at the current rate of development I wouldn't be surprised if we had downgrades on any firmware, the boot rooms and DS emulation (:ph34r:) before the end of 2016 :)
     
  10. Ramzh

    Ramzh I am a living meme

    Member
    328
    89
    Nov 29, 2014
    31 32 37 2E 30 2E 30 2E 31
    Deleted
     
    Last edited by Ramzh, Jun 10, 2016 - Reason: OT
  11. einhuman197

    einhuman197 GBAtemp Advanced Fan

    Member
    938
    353
    Aug 17, 2015
    Germany
    Inside your bootloader (´◉◞౪◟◉)
    Last edited by einhuman197, Jun 10, 2016
    satelman and QuickQuestion like this.
  12. Davidosky99

    Davidosky99 Eevee :3

    Banned
    2,582
    1,570
    Jun 7, 2015
    Porto
    Not without arm9 access! (No fw version>9.2 !)
     
    Last edited by Davidosky99, Jun 10, 2016
  13. zoogie

    zoogie simple pimp tool

    Member
    6,158
    7,776
    Nov 30, 2014
    United States
    You're quite mistaken there.
     
    einhuman197 likes this.
  14. Davidosky99

    Davidosky99 Eevee :3

    Banned
    2,582
    1,570
    Jun 7, 2015
    Porto
    Enlighten me how I'm mistaken please
     
  15. zoogie

    zoogie simple pimp tool

    Member
    6,158
    7,776
    Nov 30, 2014
    United States
    Say if you injected sudokuhax into a dsi system app on firm <=9.2. You could still run it, on sysnand, if you accidently update. You would then have the ability to restore your nand with the above twl hombrew tool.
     
    Quantumcat and einhuman197 like this.
  16. Davidosky99

    Davidosky99 Eevee :3

    Banned
    2,582
    1,570
    Jun 7, 2015
    Porto
    But OP is on 11.0, there is no way for him to inject now/at this moment right?
     
  17. zoogie

    zoogie simple pimp tool

    Member
    6,158
    7,776
    Nov 30, 2014
    United States
    If there was a second arm9 hacked 3ds around, sure. It would be able to donate a hacked dsiware game via system transfer. I doubt injected twl sysnand titles would transfer though. Would have to be a totally legit title with a hacked save file to go through.
     
    einhuman197 likes this.
  18. Marko76

    Marko76 GBAtemp Psycho!

    Member
    3,473
    1,944
    Aug 19, 2015
    United Kingdom
    Clydebank
    astronautlevel do you know something we don't lol I have seen you post in a few various threads little hints that you may know of something incoming.
     
  19. einhuman197

    einhuman197 GBAtemp Advanced Fan

    Member
    938
    353
    Aug 17, 2015
    Germany
    Inside your bootloader (´◉◞౪◟◉)
    @zoogie, do you think it's possible to inject sudoku and the save in a normal dsiware cia?

    Then it would be possible to transfer sudoku with the save and boom, nand access.
    But we need a sudoku cia, I didn't found one yet.

    Gesendet von meinem LG G5 mit Tapatalk
     
  20. Davidosky99

    Davidosky99 Eevee :3

    Banned
    2,582
    1,570
    Jun 7, 2015
    Porto
    einhuman197 likes this.