Toggle sidebar

Hacking Official [Release] CakesFW

  • Thread starter Thread starter mid-kid
  • Start date Start date
  • Views Views 841,880
  • Replies Replies 3,542
  • Likes Likes 73
hairyfairy said:
here's a hint:
jump_table.s (cake)
arm11.s (pasta)
Click to expand...

The jump table is a frankenstein made of Brahma's jump table, roxas75's jump table, and bootstrap's.
I literally had the three files open, copy/pasted and compared what I though was best.
Still no pasta here.
 
mid-kid said:
The jump table is a frankenstein made of Brahma's jump table, roxas75's jump table, and bootstrap's.
I literally had the three files open, copy/pasted and compared what I though was best.
Still no pasta here.
Click to expand...

oh alright, I thought it was pasta code. sorry for having called you a liar!
 
  • Like
Reactions: TidusWulf, Syphurith and Ambassador
Ok tested this thing when I woke up. In sysnand mode, eshop spoof app doesn't work. I'm assuming because it boots 9.6 patched native firm. I would suggest you find a way of live patching 9.2 for sysnand mode at some point. Some folks might want to use eShop. That and the ability to boot into another CFW while in the Cakes would be convenient. :P

For me I guess it doesn't matter. I have an early test build that boots sysnand using 9.2 firm. It's not in a user friendly form though and I patched 9.2 firm myself. :P

I sent him 9.2 patched firm awhile back when I first made it. I'm sure he'll find a way of incorperating it. (hint look at Pasta code. It doesn't use firmlaunch to launch new native firm yet. ;))

Pasta is open source. There's no harm in using some of it to get sysnand mode working correctly.

EDIT: Just tested and just like with rxMode, DSiWare/GBA VC will work from emunand provided you also have a copy installed to sysnand. ;)
 
Last edited by Apache Thunder,
Apache Thunder said:
Ok tested this thing when I woke up. In sysnand mode, eshop spoof app doesn't work. I'm assuming because it boots 9.6 patched native firm. I would suggest you find a way of live patching 9.2 for sysnand mode at some point. Some folks might want to use eShop. That and the ability to boot into another CFW while in the Cakes would be convenient. :P
Click to expand...
Well, theoretically, if you don't need emuNAND, it should be as easy as changing the signature patch to http://pastebin.com/wdSUNt1a and replace 00000049 with 00000038 NATIVE_FIRM.
 
Apache Thunder said:
Ok tested this thing when I woke up. In sysnand mode, eshop spoof app doesn't work. I'm assuming because it boots 9.6 patched native firm. I would suggest you find a way of live patching 9.2 for sysnand mode at some point. Some folks might want to use eShop. That and the ability to boot into another CFW while in the Cakes would be convenient. :P

For me I guess it doesn't matter. I have an early test build that boots sysnand using 9.2 firm. It's not in a user friendly form though and I patched 9.2 firm myself. :P

I sent him 9.2 patched firm awhile back when I first made it. I'm sure he'll find a way of incorperating it. (hint look at Pasta code. It doesn't use firmlaunch to launch new native firm yet. ;))

Pasta is open source. There's no harm in using some of it to get sysnand mode working correctly.
Click to expand...

The problem with that is that the signature patching location differs per firmware. I don't want to have different signature patches for every possible FIRM.
I've also tried to implement the brahma stuff, to continue booting the current FIRM, and it mostly requires changes to the jump_table, but it breaks booting it from the SD card. Though, admittedly, I didn't look much.
I hope the eShop spoofing can be implemented in any other way.
 
Well one way is simply having users download a firmware.bin from CDN that is of the 9.2 version and adding extra code to use that with the specific patches for it. ;)

Of coarse that firmware.bin will have a different name. Like firmware2.bin or something. (and that one could be placed in cakes folder instead since rxTools wouldn't use it)
 
mid-kid said:
The problem with that is that the signature patching location differs per firmware. I don't want to have different signature patches for every possible FIRM.
I've also tried to implement the brahma stuff, to continue booting the current FIRM, and it mostly requires changes to the jump_table, but it breaks booting it from the SD card. Though, admittedly, I didn't look much.
I hope the eShop spoofing can be implemented in any other way.
Click to expand...

Well someone else could take up the mantle to support another collection of cakes for 9.2 firm. I can give the rest of the offsets for 9.2 firms for emunand.
 
;)

lie3.png
 
  • Like
Reactions: mid-kid
CIA installation via network?
BTW how to you exactly achieve that, it's a feature on your CFW but nothing is said about that on the first page.
 
Easier method for obtaining firmkey.bin.
Start rxTools, under Decryption Options choose Decrypt Title Keys.
Open rxTools\decTitleKeys.bin under rxTools in a hex editor, copy the 16 bytes after 0004013800000002 to a new file, save it as firmkey.bin
Example with the keys censored, in this case it'd be the line "BBBB...."
b830498e77.png
 
  • Like
Reactions: ground, sarkwalvein and b1l1s

Site & Scene News

Go to forum More news

Popular threads in this forum

Why did the price of 3ds shoot up ?

Hacking Homebrew Project  BlazerTube - a YouTube 3DS revival using the REAL app!

Problems getting Homebrew to appear outside of the Homebrew Launcher (homebrew won't appear on the HOME menu)

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Website for finding alternative games for 3DS

Gaming  any good rpgs on 3ds?

Hardware  2 Broken 3DSes, need help

Hacking  Modding Reassurance