Hacking Pasta CFW - A CFW that allows unsigned CIA to be installed on Old and New 3DS! (required ninjhax)

[Sohakes]

that i not how it works, pasta as of now will force sysnand.

Oh, that's sad. I thought I was doing something wrong, but Pasta doesn't even boot from rxtool emunand. Hoping for a pasta emunand soon then

 

[motezazer]

i assumed gateway to boot into emunand when running higher firmware

You can boot in sysNAND as well with Gateway.

 

[AtlanticBit]

so i'd just take the 9.3 cia for my nfc module on n3ds from nus, install it and after firmlaunch i have muh amiibos?

 

[hairyfairy]

You can boot in sysNAND as well with Gateway.

i find that's a really risky thing to do (just my opinion).

 

[motezazer]

Does anyone know why I obtain 0xF8C007F4 when trying to call svcDebugActiveProcess?

 

[ShadowOne333]

If you guys ever enter the emuNAND territory, what would your emuNAND be based off?
Would it be like rxTools and its ability to boot into Gateway mode that doesn't use TWL to boot?
Or will you guys use your own emuNAND for such accomplishment?

I would love it if I could keep my GW emuNAND, but if you guys end up doing another emuNAND, I think I might completely switch.

 

[hairyfairy]

Does anyone know why I obtain 0xF8C007F4 when trying to call svcDebugActiveProcess?

yes, you need to set a certain debug flag before you may call this syscall

edit: i've seen example code on github doing this, dunno the project name anymore, sorry

 

[DJPlayer]

so i'd just take the 9.3 cia for my nfc module on n3ds from nus, install it and after firmlaunch i have muh amiibos?

not sure about it.
Do you have a NAND Backup and a NAND mod?
If yes, just try it.
But I think you should do it like this
- Start FBI (before FIRMLAUNCH) and install the cia to NAND
- If there's already a version installed, delete it and install yours
- Run PastaCFW + FIRMLAUNCH

 

[AtlanticBit]

i don't have a nand mod(i'm so cheap)

 

[DJPlayer]

i don't have a nand mod(i'm so cheap)

that sucks :/
I'm not sure if the cia will brick your N3DS if you install it and it does not work or if it will be like AGB_Firm (just doesn't boot the app when you're not in PastaMode

 

[motezazer]

yes, you need to set a certain debug flag before you may call this syscall

edit: i've seen example code on github doing this, dunno the project name anymore, sorry

I have the Force Debug flag enabled!

 

[hairyfairy]

I have the Force Debug flag enabled!

not sure what the error code you're getting means but maybe you can find the working example code on github.

 

[Suiginou]

Does anyone know why I obtain 0xF8C007F4 when trying to call svcDebugActiveProcess?

Definitely the error you get when you're missing debug privs. See https://github.com/yuriks/bootstrap/tree/debug-flag (in particular: https://github.com/yuriks/bootstrap/commit/649193afa7e8484ec7865fe71a9064ae8f0d81f5) and https://github.com/SciresM/memdump for an example for a working svcDebugActiveProcess.

 

[hairyfairy]

Definitely the error you get when you're missing debug privs. See https://github.com/yuriks/bootstrap/tree/debug-flag (in particular: https://github.com/yuriks/bootstrap/commit/649193afa7e8484ec7865fe71a9064ae8f0d81f5) and https://github.com/SciresM/memdump for an example for a working svcDebugActiveProcess.

yeah the first one was the project i meant! thanks!

I have the Force Debug flag enabled!

the offset of the debug flag varies per firmware if i'm not mistaken. check the kprocess(?) structure on 3dbrew

edit: alternatively, disassemble the syscall yourself, its code checks whether the debug flag is set near the function's prologue

 

[motezazer]

Definitely the error you get when you're missing debug privs. See https://github.com/yuriks/bootstrap/tree/debug-flag (in particular: https://github.com/yuriks/bootstrap/commit/649193afa7e8484ec7865fe71a9064ae8f0d81f5) and https://github.com/SciresM/memdump for an example for a working svcDebugActiveProcess.

The force debug flag IS set! I don't understand!

--------------------- MERGED ---------------------------

yeah the first one was the project i meant! thanks!

--------------------- MERGED ---------------------------



the offset of the debug flag varies per firmware if i'm not mistaken. check the kprocess(?) structure on 3dbrew

I enabled it in the exheader.

 

[Suiginou]

The force debug flag IS set! I don't understand!

Both? The one at a mysterious offset (0xFFF2D00A in memdump; yuriks's debug-flag branch has offsets for lower firmwares) and the one in the exheader for the current process (exheader_flags)?

 

[LinkmstrYT]

that sucks :/
I'm not sure if the cia will brick your N3DS if you install it and it does not work or if it will be like AGB_Firm (just doesn't boot the app when you're not in PastaMode

If only there was someone who could try it.

 

[motezazer]

Both? The one at a mysterious offset (0xFFF2D00A in memdump; yuriks's debug-flag branch has offsets for lower firmwares) and the one in the exheader for the current process (exheader_flags)?

Yes, I forgot to active the global kernel debug flag.

 

[JJTapia19]

I just tried out the puzzles & dragons demo downloaded straight from the eshop with the latest pasta update and firmwarelaunch enabled and I can comfirm it does not works. The eshop fix for newer crypto games doesn't work cause it only works for emunand 9.6+ and pasta still on sysnand 9.0 - 9.2 smash latest update works with firmwarelaunch beacuse it didn't had the 9.6+ encryption. I know this because I could play the game with the latest update on 9.0 gateway mode. As the devs first said it works for 9.5 encrypted games for new 3ds but 9.6+ still need to be cryptofixed for us to play them. Just like on gateway mode on 9.5 firmware.

 

[Suiginou]

Yes, I forgot to active the global kernel debug flag.

If you can find out why setting it sometimes just freezes the 3DS with double red screens, that'd be great. Been ruining my mem dumping experience lately.