Reply to thread
GBAtemp.net - The Independent Video Game Community
Search
Search titles only
By:
Search titles only
By:
Reply to thread
GBAtemp.net - The Independent Video Game Community
Home
Log in
Terms & Rules
Donate
Forums
New posts
Search forums
Groups
Public Events
New
New posts
New resources
New blog entries
New profile posts
New blog entry comments
New threadmarks
Latest activity
Cheats
Cheat Codes Add and Request group
The Legend of Zelda: Tears of the Kingdom cheat codes
Pokémon Legends: Arceus cheat codes
Xenoblade Chronicles 3 cheat codes
Fire Emblem Engage cheat codes
Request a cheat...
Tutorials
Nintendo Switch tutorials
Nintendo 3DS tutorials
Nintendo Wii U tutorials
Reviews
Overview
Official reviews
Downloads
Latest reviews
Search resources
Blogs
New entries
New comments
Blog list
Search blogs
Chat
Top chatters
Search
Search titles only
By:
Search titles only
By:
Log in
Register
New posts
Search forums
Log in
Register
Home
Forums
PC, Console & Handheld Discussions
Nintendo Wii U
Overwriting Wii U title specific executable code?
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="QuarkTheAwesome" data-source="post: 6629551" data-attributes="member: 364754"><p>I don't see why not. Basically, you'd want (in kernel mode) to write to some BAT registers to map the memory to wherever you'd like. There's separate mappings for data and instructions (DBATs and IBATs respectively) so you'll have to keep that in mind; you'd want to set up a DBAT so you can write to the code area as if it were data. You can find the documentation for this <a href="http://www.cebix.net/downloads/bebox/pem32b.pdf" target="_blank">here</a> (7-25 [actual page 290] for the format of the BAT registers, 7-20 [actual 285] for the chapter on BATs) and I wrote a bit of an example <a href="https://github.com/QuarkTheAwesome/URetro/blob/master/src/kernel/bat.S" target="_blank">here</a> (remember, # = comment, GitHub doesn't like that for some reason) which maps 0x14000000 to 0xE0000000 for instructions (making 0xE0000000 executable, basically). I inject that into a syscall and away it goes. I also noted down the DBATs used by HBL <a href="https://github.com/QuarkTheAwesome/NotesAndJunk/blob/master/dBAT.md" target="_blank">here</a> so can get an idea which ones are in use and which ones aren't.</p><p></p><p>Worth noting that there's only meant to be 5 BATs so if you want to use the others you need to use their SPR numbers (listed <a href="http://wiiubrew.org/wiki/SPRs" target="_blank">here</a>).</p></blockquote><p></p>
[QUOTE="QuarkTheAwesome, post: 6629551, member: 364754"] I don't see why not. Basically, you'd want (in kernel mode) to write to some BAT registers to map the memory to wherever you'd like. There's separate mappings for data and instructions (DBATs and IBATs respectively) so you'll have to keep that in mind; you'd want to set up a DBAT so you can write to the code area as if it were data. You can find the documentation for this [URL='http://www.cebix.net/downloads/bebox/pem32b.pdf']here[/URL] (7-25 [actual page 290] for the format of the BAT registers, 7-20 [actual 285] for the chapter on BATs) and I wrote a bit of an example [URL='https://github.com/QuarkTheAwesome/URetro/blob/master/src/kernel/bat.S']here[/URL] (remember, # = comment, GitHub doesn't like that for some reason) which maps 0x14000000 to 0xE0000000 for instructions (making 0xE0000000 executable, basically). I inject that into a syscall and away it goes. I also noted down the DBATs used by HBL [URL='https://github.com/QuarkTheAwesome/NotesAndJunk/blob/master/dBAT.md']here[/URL] so can get an idea which ones are in use and which ones aren't. Worth noting that there's only meant to be 5 BATs so if you want to use the others you need to use their SPR numbers (listed [URL='http://wiiubrew.org/wiki/SPRs']here[/URL]). [/QUOTE]
Insert quotes…
Verification
Post reply
Home
Forums
PC, Console & Handheld Discussions
Nintendo Wii U
Overwriting Wii U title specific executable code?
General chit-chat
Help
Users
Settings
Notifications
Miscellaneous
Inverse message direction
Display editor on top
Enable maximized mode
Display images as links
Hide bot messages
Hide statuses
Hide chatter list
Show messages from ignored users
Temporarily disable chat
Receive mention alerts
Sound notifications
Normal messages
Private messages
Whisper messages
Mention messages
Bot messages
Desktop notifications
Normal messages
Private messages
Whisper messages
Mention messages
Bot messages
Options
Options
View top chatters
The Real Jdbye
Loading…
*is birb*
NinStar
Loading…
Psionic Roshambo
Loading…
a_username_that_isnt_cool
Loading…
Xdqwerty
Loading…
what are you looking at?
BakerMan
Loading…
I rather enjoy a life of taking it easy. I haven't reached that life yet though.
@
SylverReZ
:
@BakerMan
, Maybe
+1
51 minutes ago
@
SylverReZ
:
The animators knew what they were doing.
+1
50 minutes ago
@
AngryCinnabon
:
Dong: EXPANDED
+4
44 minutes ago
@
The Real Jdbye
:
why is the DK show a musical
31 minutes ago
@
The Real Jdbye
:
so weird
31 minutes ago
@
Xdqwerty
:
@The Real Jdbye
, cuz the writers wanted it to
29 minutes ago
@
BakerMan
:
Still a better musical cartoon than Hazbin Hotel fr
27 minutes ago
@
Xdqwerty
:
@BakerMan
, i heard hazbin hotel and helluva boss are shit
27 minutes ago
@
SylverReZ
:
@Xdqwerty
, Just the fanbase is toxic. The pilot was quite good.
25 minutes ago
@
BakerMan
:
@Xdqwerty
my point exactly
25 minutes ago
@
BakerMan
:
nah fr there some bangers in the donkey kong cartoon
23 minutes ago
@
BakerMan
:
22 minutes ago
@
Xdqwerty
:
@SylverReZ
, although im not the main demographic and i heard is quite a lot more obscene and nsfw compared to other adult shows
21 minutes ago
@
BakerMan
:
btw i feel this a good time to remind you guys that sea of thieves was made by rare, who also made DKC1-3 and DK64, alongside banjo kazooie and conker's bad fur day
19 minutes ago
@
Xdqwerty
:
https://www.youtube.com/watch?v=k9FS3ZIO73E
16 minutes ago
@
Xdqwerty
:
good night
16 minutes ago
@
a_username_that_isnt_cool
:
Good morning!
15 minutes ago
@
NinStar
:
https://twitter.com/NintendoAmerica/status/1788375084886892947
9 minutes ago
@
NinStar
:
look, a multibillion dollar company can't pay for twitter API
+1
9 minutes ago
@
NinStar
:
so sad
9 minutes ago
@
Psionic Roshambo
:
Not a huge loss? Lol
7 minutes ago
@
NinStar
:
someone is saying ultimate nes remix didn't had less games, it makes my brain hurts
6 minutes ago
@
The Real Jdbye
:
well it had more games than either of the individual nes remixes
1 minute ago
@
The Real Jdbye
:
and it had all the good ones
1 minute ago
@
The Real Jdbye
:
like who the fuck cares about NES Golf
1 minute ago
Submit
@
The Real Jdbye
:
like who the fuck cares about NES Golf
1 minute ago
Chat
6