Toggle sidebar

Hacking Hardware Picofly - a HWFLY switch modchip

  • Thread starter Thread starter mathew77
  • Start date Start date
  • Views Views 3,658,728
  • Replies Replies 17,050
  • Likes Likes 15
How about with this chip how to install it
I want to but I can't find a tutorial
 

Attachments

  • Screenshot_20230619-052459_Chrome.png
    Screenshot_20230619-052459_Chrome.png
    1.1 MB · Views: 81
kronicd said:
I've got a v2 switch here that I'm fixing for a customer, after a failed install the switch no longer boots, it looks like they toasted the D0 line.

I *think* that via is still ok, but if it isn't is there another point I run a wire from that trace to?

View attachment 378768
Click to expand...
Hi jump here to here.. it should boot if thats the only issue.

1687156562850.png
 
  • Like
Reactions: superxoi and Danook28
Tried 2.74 but it goes directly to OFW(like turning on button and Nintendo logo immediately) and split second later the success or yellow blink. Cant go to hekate anymore. Need help, i want to roll back.
 
abal1000x said:
Actually no. The terms undervoltage means before glitching decrease the voltage the power ic supplied. This is done by sending some instruction via i2c to the power ic (cmiiw).

I am confused with your sentences. :wacko:
You might search 'Fault Injection' to understand the idea of voltage glitching.
In simplicity, you 'stole' the power that goes to the cpu.

And its done by splitting the current to our beloved mosfet.
The mosfet itself used as a switch (connect/disconnect). When the D and S connected, then the major current will goes to our beloved mosfet straight to GND, and small current goes to the cpu. When its disconnected, the cpu got the power intact.

If you measure the cap resistance is around 10-30 Ohms. That is why the Rds(on) logically speaking must <10ohms, so we could 'steal' the current to our beloved mosfet.

I am not sure what is your issue actually. The timeout glitch?
To understand fully you could read the source code (Thx for rehius to share the code). Its better reading his code than spacecraft-nx, which is more cryptic.

If you have flex cable, its more than enough. I use it twice (given by someone) and its working, the quality is best. I recommend it for someone whose less experience with microsoldering.

Reading your history message, i recommend you use flex, and avoiding using the mosfet directly. It will become very2 dificult to solder it.
Click to expand...
I'm using a flex and the error I'm getting is === according to the error codes it's 'cannot glitch.'

Unfortunately I don't know which file to begin looking into for the source. I gave up coding years ago :D I'm guessing it's this code:

while(!time_reached(tio_full)) {
if (time_reached(tio_cmd1))
{
if (reset_attempts > 4)
{
halt_with_error(0, 3);
}
reset_attempts++;
reset_cpu();
tio_cmd1 = tio_full;
}
 

Attachments

  • IMG_20230618_003638.jpg
    IMG_20230618_003638.jpg
    1 MB · Views: 75
Last edited by Uberfish,
abal1000x said:
2.74 more reliable.
Post automatically merged:


I have once get that error code === solve it by shift the dat0 adapter little bit to right (away from dat1). I can't recommend this to someone who doesn't know the thing about it, since it really2 dangerous and risky. But thats how it is.

In my measurement Dat0 adapter will glitch perfectly when the diode value around 600. (I don't know why different, people says 700, but it is what it is). When the error === shows, i checked the diode value is less than 600 around 590. I shift it again, so its back 600. And 600-620 is the highest value i could get, whenever i shift it left and right. The black probe to gnd and the red probe to the dat0 check point.
Click to expand...
i got 2 oled, one with dat0 resistor around 600 and it boot within a sec, another one with black adapter and much higher 800 ohm i guess. This second one struggle with data0 error, after some reflow, the resistor drop a bit but still way slower than the first one
 
  • Like
Reactions: QuiTim and abal1000x
frozenboy said:
i got 2 oled, one with dat0 resistor around 600 and it boot within a sec, another one with black adapter and much higher 800 ohm i guess. This second one struggle with data0 error, after some reflow, the resistor drop a bit but still way slower than the first one
Click to expand...
the resistance is different on different emmc just so u know
what did u reflow? emmc?
ifso why would u reflow it if u didnt take it of?
doesnt make sense

if u have dat0 error then it is because ur dat0 adapter isnt set properly what adaptors are u using?
maybe ur shorting with another pin, and if u reflowed the emmc the adapter is most likley solder to eather on or to balls if it was shorting.

if u havent set a permanent dat0 adaptor or did not take of the emmc there is no reason for reflowing the emmc
 
kronicd said:
I've got a v2 switch here that I'm fixing for a customer, after a failed install the switch no longer boots, it looks like they toasted the D0 line.

I *think* that via is still ok, but if it isn't is there another point I run a wire from that trace to?

View attachment 378768
Click to expand...
Safe way about rip pad you must use solder paste little bit and heat from 200 to 250 c 300 350 c. Soldring mask. Microscope. Very thin iron tip. Dont press to much on pad teak your time. The wiers must be same size to pads no more short or long time heat. Very good flux and use magnate copper wier 0.2 mm cmd clk rst dat0 /and 30 gw wires 3v3 GND. You can see in pic the size for good soldring tip.
 

Attachments

  • -1288525289394421003.jpg
    -1288525289394421003.jpg
    80.4 KB · Views: 66
Last edited by Danook28,
Danook28 said:
Safe way about rip pad you must use solder paste little bit and heat from 200 to 250 c 300 350 c. Soldring mask. Microscope. Very thin iron tip. Dont press to much on pad teak your time. The wiers must be same size to pads no more short or long time heat. Very good flux and use magnate copper wier 0.2 mm cmd clk rst dat0 /and 30 gw wires 3v3 GND. You can see in pic the size for good soldring tip.
Click to expand...
I saw a guy on reddit once who did the whole install of every wire with solder paste and a heat gun but with NO iron lol. Pretty sure it was an OLED and his first every soldering related attempt. Obviously all his joints looked cold because he had no iron to touch them up but I just thought it was kind of funny and I was surprised that it fired up without any issues.
 
frozenboy said:
i got 2 oled, one with dat0 resistor around 600 and it boot within a sec, another one with black adapter and much higher 800 ohm i guess. This second one struggle with data0 error, after some reflow, the resistor drop a bit but still way slower than the first one
Click to expand...
What emmc do you have on your switches? I have a samsung on mine, so if yours is also samsung with 600 it would I do indeed have an issue with the dat0. I honestly wouldn't be surprised since I had to use a OATO dat0 adaptor. Ordered 2 from two different suppliers who said it was the good quality one and they send me crap. Many people here have made the OATO work, though. I guess I should order again and try get the quality DAT0 adaptor to test the theroy. I've actually trimmed back the 'claw' that contacts the dat0 pin to try prevent shorting too since the shape is more like Ω than U (closed at the end).
 

Attachments

  • oato.jpg
    oato.jpg
    117.2 KB · Views: 70
abal1000x said:
2.74 more reliable.
Post automatically merged:


I have once get that error code === solve it by shift the dat0 adapter little bit to right (away from dat1). I can't recommend this to someone who doesn't know the thing about it, since it really2 dangerous and risky. But thats how it is.

In my measurement Dat0 adapter will glitch perfectly when the diode value around 600. (I don't know why different, people says 700, but it is what it is). When the error === shows, i checked the diode value is less than 600 around 590. I shift it again, so its back 600. And 600-620 is the highest value i could get, whenever i shift it left and right. The black probe to gnd and the red probe to the dat0 check point.
Click to expand...
2.67 more reliable been using for months and i have issues on day 2 on 2.74
 
abal1000x said:
What is your reason of updating to 2.74?
And what issues ?
Click to expand...
Of course its normal to think that far far latest update would be better. So thats my reason.

Problem is, it would immediately boot to OFW. Rather than glitch glitch sucees then START. When you press on, the switch turns on and shows nintendo logo(OFW) while simultaneously glitching(of course glitch is already late)
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Dusk for switch (TLoZ Twilight Princess port)

Homebrew  New Homebrew "Foil Server"?

Homebrew  Full List of N64 Recompilation Switch ports

Hacking  WiFi chip failing and can't boot. is it possible to enable Airplane Mode by editing system save files directly?

Homebrew Tutorial Translation Project  CS2SX — Write Nintendo Switch Homebrew in C#

Is it fixable

Homebrew  Sonic Unleashed Recompiled (Homebrew Port)

Hacking Emulation  Switch Prod Keys downloading from sites okay?