[REAL!] Play all tracks in MKDS online!

Discussion in 'NDS - ROM Hacking and Translations' started by raypou, Dec 12, 2005.

Dec 12, 2005
  1. raypou
    OP

    Member raypou Advanced Member

    Joined:
    Jul 3, 2003
    Messages:
    84
    Featured Posts:
    0
    Location:
    CA
    Country:
    United States
    Guess no one else has cared to post this yet, but over at GSCentral, Parasyte has found how to select any track for MKDS online mode

    description of how he did it: http://gscentral.org/bb/viewtopic.php?p=9944#9944

    When I have time, I'm going to look into doing this for myself...
     


  2. Squiffy

    Member Squiffy GBATemp's Little Embarrassment

    Joined:
    Oct 30, 2002
    Messages:
    1,192
    Featured Posts:
    0
    Location:
    Northern Ireland
    Country:
    Ireland
    Nice, I like the part about playing different tracks to your opponents.
    I'm guessing all your opponents have to have the hack for this to work properly.
     
  3. raypou
    OP

    Member raypou Advanced Member

    Joined:
    Jul 3, 2003
    Messages:
    84
    Featured Posts:
    0
    Location:
    CA
    Country:
    United States
    actually, i believe that is not the case, as all the carts already have the tracks on them, its more a matter of in the track selection, you pick one that isn't in the list, and if it randomly chooses that one, all the carts know to. That's at least what I gather from what i've read...
     
  4. Squiffy

    Member Squiffy GBATemp's Little Embarrassment

    Joined:
    Oct 30, 2002
    Messages:
    1,192
    Featured Posts:
    0
    Location:
    Northern Ireland
    Country:
    Ireland
    Nope, don't think so:

     
  5. 754boy

    Banned 754boy :D

    Joined:
    Oct 24, 2002
    Messages:
    3,469
    Featured Posts:
    0
    Location:
    Mississippi
    Country:
    United States
    Read that....looks like we're gonna get a surge of wi-fi hackers who are gonna do this to pad their stats. If u racing on a track alone and at the same time ur opponents are on a totally seperate track, you automatically win on the track you selected and one of them wins on the other track.

    Next thing we'll probably see is an aimbot for the all the items (not including the red shells and blue shell of course).....imagina a banana peel landing directly on top an opponent everytime.... lol
     
  6. memyselfandi

    Member memyselfandi GBAtemp Advanced Fan

    Joined:
    Aug 10, 2005
    Messages:
    736
    Featured Posts:
    0
    Country:
    United States
    cool, but i cant do it myself...
     
  7. raypou
    OP

    Member raypou Advanced Member

    Joined:
    Jul 3, 2003
    Messages:
    84
    Featured Posts:
    0
    Location:
    CA
    Country:
    United States
    That quote is from the beginning of the discovery process, not when he actually just changed the track selection in the screen. There, he changed the whole track he was racing on, while the others loaded the chosen track. the other way, if he picks it in the list and it is randomly chosen, everyone loads the same track. He was playing the past few days hosting tracks for people with unmodified games, and it was working...
     
  8. Eruonen

    Member Eruonen GBAtemp Advanced Fan

    Joined:
    Feb 9, 2005
    Messages:
    869
    Featured Posts:
    0
    Location:
    -
    Country:
    Netherlands
    In the tournement this is conciderd as cheating right? [​IMG]
     
  9. IxthusTiger

    Member IxthusTiger Cruddy's Buddy

    Joined:
    Mar 1, 2003
    Messages:
    1,610
    Featured Posts:
    0
    Country:
    United States
    Code:
      .section  ".init" 
     .global   _start 
    Â Â
    Â @.align 
    Â @.arm 
     .code  32 
    Â Â
    @--------------------------------------------------------------------------------- 
    _start: 
    @--------------------------------------------------------------------------------- 
     b  rom_header_end 
    
     .fill  156,1,0         Â@ Nintendo Logo Character Data (8000004h) 
     .fill  16,1,0         Â@ Game Title 
     .byte  0x30,0x31        @ Maker Code (80000B0h) 
     .byte  0x96         Â@ Fixed Value (80000B2h) 
     .byte  0x00         Â@ Main Unit Code (80000B3h) 
     .byte  0x00         Â@ Device Type (80000B4h) 
     .fill  7,1,0         Â@ unused 
     .byte  0x00         Â@ Software Version No (80000BCh) 
     .byte  0xf0         Â@ Complement Check (80000BDh) 
     .byte  0x00,0x00          @ Checksum (80000BEh) 
    
    @--------------------------------------------------------------------------------- 
    rom_header_end: 
    @--------------------------------------------------------------------------------- 
    
    
    
    
    #define ARM9_ENTRY_ORIGINAL Â Â Â Â Â Â0x02000800 
    #define  ARM7_ENTRY_ORIGINAL      Â0x02380000 
    
    @  bl  DisableInterrupts 
    Â Â
    Â Â
    Â @ Boot ARM9 with: *(volatile unsigned int *)0x027FFE24 = 0x02004000; 
     ldr  r2, =ARM9_ENTRY_ORIGINAL 
     ldr  r4, =ARM7_ENTRY_ORIGINAL 
     ldr  r3, =0x027FFE24 
     str  r2, [r3]     @ redirect ARM9 
    Â Â
     ldr  r0, =0x400000 
    delayLoop: 
    Â nop 
     subs  r0, r0, #1 
     bgt  delayLoop 
    Â Â
    Â Â
    Â @ New Courses on WFC 
     ldr  r0, =0x02153A4C 
     adr  r1, CourseList 
     mov  r2, #12 
    listLoop: 
     ldrb  r3, [r1],#1 
     str  r3, [r0],#4 
     subs  r2, r2, #1 
     bgt  listLoop 
    Â Â
    Â Â
      Âmov  pc, r4     @ redirect ARM7 
    Â Â
    infin: 
     b  infin 
    Â Â
    Â Â.pool 
    Â
    CourseList: 
    Â .byte 0x0C, 0x0F, 0x11, 0x13, 0x17, 0x18, 0x1A, 0x20, 0x21, 0x23, 0x25, 0x26 
    Â .align 2 Â Â
    Â Â
    
    
    ////////////////////////////////////////////////////////////////////////////// 
    // DisableInterrupts 
    ////////////////////////////////////////////////////////////////////////////// 
    
    DisableInterrupts: 
    Â // disable IRQ/FIQ interrupts 
     mrs   Âr0, CPSR 
     orr   Âr0, r0, #0xC0 
     msr   ÂCPSR_fsxc, r0 
     mov   Âpc, lr 
    
    
    
    Â .align 
    Â .pool 
    Â .end
    Based on this code, what bytes of the ROM should I patch?

    For people with a PassMe, www natrium42 com/downloads/mktest.ds.gba
    Run that from a flashcart with MK in the PassMe and you can pick the non-wifi tracks.
     
  10. Renegade_R

    Member Renegade_R Audio/Video Expert

    Joined:
    Apr 21, 2004
    Messages:
    1,654
    Featured Posts:
    0
    Location:
    Toronto, Ontario
    Country:
    Canada
    Great...now this is gonna lead to a surge of online cheaters which will also lead to more Online ROM protection on Nintendo WFC. When hackers begin to take advantage of the online experience, it will hurt Nintendo financially as people no longer want to play online. And because of that, Nintendo will then improve the protection on ROMs.

    It may be a breaking discovery for many.

    To me its a very very sad day.
     
  11. cruddybuddy

    Banned cruddybuddy Group: Banned!

    Joined:
    Aug 27, 2003
    Messages:
    2,864
    Featured Posts:
    0
    Location:
    California
    Country:
    United States
    Agreed. This is very bad news.
     
  12. Heran Bago

    Member Heran Bago Where do puyo come from?

    Joined:
    Nov 6, 2005
    Messages:
    2,813
    Featured Posts:
    0
    Location:
    Foggy California
    Country:
    United States
    I would guess this part...
    But thosre are the courses Parasyte specifically said do not work. Hmm.

    How would I dissasemble the ARM9 executable? Is there a program or easy way?
     
  13. Hitto

    Member Hitto MKDS Tournament Winner

    Joined:
    Nov 29, 2005
    Messages:
    1,450
    Featured Posts:
    0
    Location:
    Nice, France
    Country:
    France
    Don't fret over this. You won't meet that many hackers, and sooner or later, big N will silence them.
     
  14. Heran Bago

    Member Heran Bago Where do puyo come from?

    Joined:
    Nov 6, 2005
    Messages:
    2,813
    Featured Posts:
    0
    Location:
    Foggy California
    Country:
    United States
    This doesn't make sense though. The guy claims the table is at $02153A4C in the ROM, but the ROM ends at $02000000. I can't find a tool to decompress the ARM9 executable either.
     
  15. raypou
    OP

    Member raypou Advanced Member

    Joined:
    Jul 3, 2003
    Messages:
    84
    Featured Posts:
    0
    Location:
    CA
    Country:
    United States
    that's the same problem I had, I don't think there is yet a program to decompress the arm9. Also, I believe that address could be a virtual address, modified in RAM, but I can't confirm that yet, just a suspicion.

    I don't think online cheaters will be much of an issue, but I could be dead wrong. At least parasyte won't himself release any tools for this.
     
  16. IxthusTiger

    Member IxthusTiger Cruddy's Buddy

    Joined:
    Mar 1, 2003
    Messages:
    1,610
    Featured Posts:
    0
    Country:
    United States
    I'm not too worried about cheaters. Parasyte said he won't release anything that will allow cheating, and natrium (who wrote the code above) is also an upstanding sort. The way people would cheat is by setting a short course for themselves while eveyone else races a long course. Hopefully this is what is kept under wraps. Even so, cheaters can be combatted by dropping out. Not by turning off your DS, but by disrupting your wifi connection, for example unplugging your dongle.

    I just wanna race on the non-wifi courses [​IMG] It doesn't put anyone at an advantage or disadvantage, it's just cool.
     
  17. Heran Bago

    Member Heran Bago Where do puyo come from?

    Joined:
    Nov 6, 2005
    Messages:
    2,813
    Featured Posts:
    0
    Location:
    Foggy California
    Country:
    United States
    Memory Map

    Yea, He's probably reffering to a location in the RAM. But you need to either be able to dissasemble ARM9, or make a ROM loader to proform this, or any similar hack.
     
  18. raypou
    OP

    Member raypou Advanced Member

    Joined:
    Jul 3, 2003
    Messages:
    84
    Featured Posts:
    0
    Location:
    CA
    Country:
    United States
    whoa, this definately works, just played with 2 other guys on shroom ridge with all the cars and such, no lag at all, about to play a few more gamew with friends
     
  19. shaunj66

    Administrator shaunj66 Administrator

    Joined:
    Oct 24, 2002
    Messages:
    9,806
    Featured Posts:
    0
    Location:
    South England
    Country:
    United Kingdom
    ** USE THIS COMPLETELY AT YOUR OWN RISK - I/WE WILL NOT TAKE ANY RESPONSIBILITY FOR DAMAGES OR ISSUES CAUSED BY USING IT! **

    It's been released!!!

    I'll post info for everyones information:

    A compiled version has been released, I've tested it; and it works a charm! [​IMG] Just finished playing Airship Fortress and Shroom Ridge with Luse.

    Wasn't buggy at all, except one red shell seemed to disapear as soon as I fired it. The rest was flawless.

    Equipment you need:
    • Mario Kart DS (legit cart)
    • Any kind of PassMe (FlashMe and WiFiMe DO NOT WORK)
    • A GBA flash cart capable of .nds.gba files.
    ** USE THIS COMPLETELY AT YOUR OWN RISK - I/WE WILL NOT TAKE ANY RESPONSIBILITY FOR DAMAGES OR ISSUES CAUSED BY USING IT! **

    Download this small .nds.gba file: http://gbatemp.net/shaunj66/mktest.ds.zip
    And flash it to your GBA cart in GBA mode. (No NDS loaders required!).

    Insert a copy of MK:DS into your PassMe device, and insert both the PassMe and the GBA flash cart in your DS.

    Boot your DS and wait for the PassMe to load from the flash cart. You'll see two white screens that will last for 2-3 seconds, then it will boot just like normal into MK:DS. Now in WFC mode, you'll be able to select from any course! [​IMG]

    ** USE THIS COMPLETELY AT YOUR OWN RISK - I/WE WILL NOT TAKE ANY RESPONSIBILITY FOR DAMAGES OR ISSUES CAUSED BY USING IT! **
     
  20. Luse

    Banned Luse Now with more MOOSE!!!

    Joined:
    Nov 5, 2002
    Messages:
    3,773
    Featured Posts:
    0
    Location:
    Scotland
    Country:
    It's brillant, and while we only got to play two of the tracks, it worked just as fine as any other, except for the one off glitch with the red shell shaun mentioned, everything else was fine.. All the bats/bullets and crazy stuff on Airship Fortress was there, and all the cars in Shroom Ridge were there...

    Calling this fucking awesome is an understatement...
     

Share This Page

Loading...