I have a bit of an odd situation here. I've successfully modded 7 consoles before this, but none of them were a V1 so far. I normally use the V6S chip which has worked great, but I had no V1 CPU flex cables on hand so I decided to try to modify the V2 flex to work (first mistake?). Here's what I came up with after some research:
I soldered it to the top of the appropriate SP1/SP2 caps (and source points to the shield) and tested multiple times with a multimeter to make sure everything checked out before proceeding. I then did the rest of the mod as usual. After connecting everything, I got an error code flashing from the modchip indicating an issue with the CPU flex, and the console booted into OFW. I touched up the points on the caps a bit, re-seated the CPU flex connection to the chip, and booted again. The modchip LED then pulsed purple like it was trying to glitch but then blinked orange 3-4x quickly and kept doing this in a loop, which didn't match any of the LED codes I could find for the V6S.
After a while of waiting, I interrupted it by holding the power button (mistake #2?), disconnected the battery, disconnected all connections to the modchip and tried to boot to OFW. No sign of life, nothing on the display, etc. I removed the CPU flex completely, same issue. I removed everything else (emmc flex cable & modchip), same issue. Can't find any shorts on the board or anything.
The weird thing is, when I plug it into my computer, it gets recognized and even shows up as "RCM OK" in TegraRcmGUI. And of course if I try to inject a payload, I get the "Smashed the stack with a 0x0000 byte SETUP request!" message indicating it's patched. Every time I unplug the battery or hold power and restart the switch, it seems to get recognized by TegraRcmGUI as in RCM mode on boot. Does this mean the CPU is fine, or not necessarily?
I managed to get a NAND backup by putting the NAND in my V2 and dumping it with Hekate (I'm assuming this means the NAND is at least fine). If it's not possible to get the console working, I at least want to try to extract the game save data from the NAND dump for my friend so I can import them to my V2 switch and give it to him. Unfortunately, I can't decrypt the NAND via HacDiskMount unless I have the correct bis_key_3 which I'm unable to dump from the dead board
Lots of lessons learned for me on this one haha. My next move is I ordered some proper V1 CPU flex cables, and I'll use an RP2040 to see if I can at least dump the BIS keys.
Anyone have any other ideas? Any input at all is much appreciated!
I soldered it to the top of the appropriate SP1/SP2 caps (and source points to the shield) and tested multiple times with a multimeter to make sure everything checked out before proceeding. I then did the rest of the mod as usual. After connecting everything, I got an error code flashing from the modchip indicating an issue with the CPU flex, and the console booted into OFW. I touched up the points on the caps a bit, re-seated the CPU flex connection to the chip, and booted again. The modchip LED then pulsed purple like it was trying to glitch but then blinked orange 3-4x quickly and kept doing this in a loop, which didn't match any of the LED codes I could find for the V6S.
After a while of waiting, I interrupted it by holding the power button (mistake #2?), disconnected the battery, disconnected all connections to the modchip and tried to boot to OFW. No sign of life, nothing on the display, etc. I removed the CPU flex completely, same issue. I removed everything else (emmc flex cable & modchip), same issue. Can't find any shorts on the board or anything.
The weird thing is, when I plug it into my computer, it gets recognized and even shows up as "RCM OK" in TegraRcmGUI. And of course if I try to inject a payload, I get the "Smashed the stack with a 0x0000 byte SETUP request!" message indicating it's patched. Every time I unplug the battery or hold power and restart the switch, it seems to get recognized by TegraRcmGUI as in RCM mode on boot. Does this mean the CPU is fine, or not necessarily?
I managed to get a NAND backup by putting the NAND in my V2 and dumping it with Hekate (I'm assuming this means the NAND is at least fine). If it's not possible to get the console working, I at least want to try to extract the game save data from the NAND dump for my friend so I can import them to my V2 switch and give it to him. Unfortunately, I can't decrypt the NAND via HacDiskMount unless I have the correct bis_key_3 which I'm unable to dump from the dead board
Lots of lessons learned for me on this one haha. My next move is I ordered some proper V1 CPU flex cables, and I'll use an RP2040 to see if I can at least dump the BIS keys.
Anyone have any other ideas? Any input at all is much appreciated!
