Hacking [RCM Payload] Hekate - CTCaer mod

  • Thread starter CTCaer
  • Start date
  • Views 1,088,012
  • Replies 3,311
  • Likes 128
D

Deleted_444986

Guest
CTCaer said:
When I iron out some bugs. And also multitest the recovery options.

RCM-les? no.. It doesn't work like this
Click to expand...
ok i understand autoboot is like sx os boot immediately if no button pressed .
what's the recovery option ?
 
coned_miro

coned_miro

Well-Known Member
Newcomer
Level 2
Joined
Nov 28, 2016
Messages
47
Trophies
0
Age
35
XP
211
Country
United States
CTCaer said:
When I iron out some bugs. And also multitest the recovery options.

RCM-les? no.. It doesn't work like this
Click to expand...

Would it be advisable to use the hacky method of getting exFAT support on the lower firmwares [3.0.2 in my case] to do proper NAND / etc dumps to 32GB+ microSD cards in preparation for Atmosphere? I tried the 2-GB piece-meal method but for some reason am weary of the results...

Is there a way to verify I got proper dumps??
 
BelmontSlayer

BelmontSlayer

Pokémon Master
Member
Level 8
Joined
May 11, 2006
Messages
306
Trophies
1
Age
34
Location
Memememe Island
XP
1,280
Country
Thailand
coned_miro said:
Would it be advisable to use the hacky method of getting exFAT support on the lower firmwares [3.0.2 in my case] to do proper NAND / etc dumps to 32GB+ microSD cards in preparation for Atmosphere? I tried the 2-GB piece-meal method but for some reason am weary of the results...

Is there a way to verify I got proper dumps??
Click to expand...
If you're using CTCaer's hekate it will verify the dumps with a green progress bar. You can also dump your bis keys and use HacDiskMount to verify your dump.
 
  • Like
Reactions: coned_miro
CTCaer

CTCaer

Developer
OP
Developer
Level 11
Joined
Mar 22, 2008
Messages
1,154
Trophies
0
XP
3,009
Country
Greece
coned_miro said:
Would it be advisable to use the hacky method of getting exFAT support on the lower firmwares [3.0.2 in my case] to do proper NAND / etc dumps to 32GB+ microSD cards in preparation for Atmosphere? I tried the 2-GB piece-meal method but for some reason am weary of the results...

Is there a way to verify I got proper dumps??
Click to expand...
Hekate has built-in exFAT support. You don't need the exFAT micro update for this. The micro update is needed only in Horizon.
So format your sd card to exfat, make the backup in hekate and reformat to fat32.


BelmontSlayer said:
If you're using CTCaer's hekate it will verify the dumps with a green progress bar. You can also dump your bis keys and use HacDiskMount to verify your dump.
Click to expand...
Unfortunately, yesterday when I was fixing some more bugs around, I found out that the verification is not working.
Not only that, but with working verification, the process of backing up rawnand.bin, takes 4.5hours more. And this is fixed time, so sd card speed does not matter.
(Check comment here)

I'm trying to find a way though.
 
Last edited by CTCaer,
  • Like
Reactions: coned_miro, zeldaism, Connorsdad and 3 others
CTCaer

CTCaer

Developer
OP
Developer
Level 11
Joined
Mar 22, 2008
Messages
1,154
Trophies
0
XP
3,009
Country
Greece
tecfreak said:
@CTCaer
So the memcmp is the slowing down part.
Maybe using a hashing algorithm like xxhash would be faster?
Click to expand...
It was broken though. But if you had mostly empty eMMC it would continue to check because of the 00s.

I don't think that any hashing algo is faster than an arch optimized memcmp without hardware acceleration support.
Don't forget that BPMP is ARM7 (armv4t instuction set) with no special acceleration.

But I'll try this hash algo and update my comment in the fix commit I linked.
(I've also made a sparse memcmp that checks 4bytes every 128Bytes blocks. But I'll probably change it to a 512byte blocks because if something goes wrong, it will probably happen at a diskio 512B block level.)
 
tecfreak

tecfreak

Well-Known Member
Member
Level 4
Joined
Apr 24, 2018
Messages
186
Trophies
0
Location
Berlin
XP
439
Country
Germany
@CTCaer
So probably the fastest and most reliable way for vrification would be to utilize the CCPLEX for this task instead of the BPMP. But the CCPLEX is out of reach with the current state of hekate, right?
 
CTCaer

CTCaer

Developer
OP
Developer
Level 11
Joined
Mar 22, 2008
Messages
1,154
Trophies
0
XP
3,009
Country
Greece
tecfreak said:
@CTCaer
So probably the fastest and most reliable way for vrification would be to utilize the CCPLEX for this task instead of the BPMP. But the CCPLEX is out of reach with the current state of hekate, right?
Click to expand...
It's not out of reach. It's how you launch HOS actually. You enable CCPLEX and let it run secmon and then you give control to it with the FLOW register.

But this will imply a secondary payload that runs this code and then gives control to BPMP again and then you must trigger a CCPLEX power down also.
 
tecfreak

tecfreak

Well-Known Member
Member
Level 4
Joined
Apr 24, 2018
Messages
186
Trophies
0
Location
Berlin
XP
439
Country
Germany
CTCaer

CTCaer

Developer
OP
Developer
Level 11
Joined
Mar 22, 2008
Messages
1,154
Trophies
0
XP
3,009
Country
Greece
arnoldcoolful/aKMTR said:
Hey
So after a while of using hekate
I decided to launch another switch game and it instead crashed my entire switch.
Any reason why that happens?
Click to expand...
Care to explain your configuration?
I never had any problems.

masamune19 said:
Could you make the payload to autoclean logs before start any firmware? (cfw, layered compatibily or ofw)
Click to expand...
It does not work like this.
If you want this, just add the nx-dreport kip configuration key to your every boot entry.

riyyi said:
Ah, I thought he must have found it somewhere. An user with 1 post isn't gonna release something of that complexity.
Click to expand...
His work is independent. Because I only told to my test group, that this is a possible solution, but I never gave them the source code.
Also the datasheets are online for anyone that wants to research:
http://www.ti.com/lit/ds/symlink/bq24193.pdf
 
  • Like
Reactions: Rizzorules
CTCaer

CTCaer

Developer
OP
Developer
Level 11
Joined
Mar 22, 2008
Messages
1,154
Trophies
0
XP
3,009
Country
Greece
tecfreak said:
Nope, it looks like his very own solution/workaround and has nothing to do with CTCaer's his code.
Click to expand...
This ^



Btw, @tecfreak I've added a memcmp sparse derivative.
This checks 4 bytes every 128 byte blocks.

It's a alternative, because normally problems happen at diskio and fatfs level. And the blocks are 512 bytes and clusters are 32KB+
So this can catch most corruption problems. The default will probably be this. With the added options to disable it completely or have a full check that can take 4.5 hours.

I also tried to "overclock" (not exactly overclock, bc it was inside nvidia's operation limits) the BPMP, but it did almost nothing to the performance..
 
  • Like
Reactions: tecfreak
CTCaer

CTCaer

Developer
OP
Developer
Level 11
Joined
Mar 22, 2008
Messages
1,154
Trophies
0
XP
3,009
Country
Greece
tecfreak said:
I'm not sure, but maybe xxhash would be faster in generating the two hash values needed for comparison than a memcmp on these two 4MiB buffers.
Click to expand...
nwert told me that SE will probably be extremely fast because it seems to run on ram's clocks.
I'll try and implement it.
 
  • Like
Reactions: tecfreak

Site & Scene News

Go to forum More news

Popular threads in this forum

Paper Mario TTYD 60fps patch?

Paper Mario Thousand Year Door got leaked

Emulation Hardware  Shin Megami Tensei V: Vengeance. romfs 60FPS + 1080p Mod

Tutorial  How to play Pokerogue on Nintendo Switch

Emulation Gaming Hardware Emulator  SHIN MEGAMI TENSEI V: Vengeance | FPS Mods (Mainly made for Switch Emulators)

TTYD patch for AMD black screen sewer issue?

Is there any point upgrading to 18.0?

Paper Mario: The Thousand Year Door (Switch) save editor request

General chit-chat
Help Users
  • No one is chatting at the moment.
    ModernSithLord @ ModernSithLord: @BigOnYa https://www.youtube.com/watch?v=kQWXoQZWlMw