Hacking Official [Source Release] ReiNand CFW

[Aroth]

Thanks for this, i wanted to do a deep exploration like this but didn't had the time yet. I'll take a closer look to update "safesysupdater".

Please keep in mind that this is only a USA region system. I have no idea if EUR or JPN (or KOR/CHN/TWN) have any other additional titles beyond what I found here. If someone with a factory 9.0 sysnand was willing to dump and decrypt their sysnand and send it to me, I could compare the titles and see if there are any others for those regions, but unfortunately I would be unable to verify the expected versions as I used FBI on my own sysnand to do that.

--------------------- MERGED ---------------------------

So can I still install em on both nands just to be sure?

If your emunand is already on 10.3 then I would not install them because it might break something (since you are effectively downgrading them at that point)

 

[cpasjuste]

Please keep in mind that this is only a USA region system. I have no idea if EUR or JPN (or KOR/CHN/TWN) have any other additional titles beyond what I found here. If someone with a factory 9.0 sysnand was willing to dump and decrypt their sysnand and send it to me, I could compare the titles and see if there are any others for those regions, but unfortunately I would be unable to verify the expected versions as I used FBI on my own sysnand to do that.

--------------------- MERGED ---------------------------



If your emunand is already on 10.3 then I would not install them because it might break something (since you are effectively downgrading them at that point)

Yes this is the problem, we need a complete title list from some stock 9.2 devices and downgraded one (ideally?). I'll write an app to dump this i think could be a good idea ?

 

[night_hawk]

I can't speak for the others, but the Pokemon one is weird since it shouldn't have needed anything 9.6+ in the first place.

Yeah i know, story of seasons is even older, while fantasy life is a bit newer, but alway an old game

Wonder if this has anything to do with the version string code patching anything with a "Ve". Might be patching more than just strings.

I don't think so, because they worked fine on rx-tools emunand 9.5, which has the string code too

 

[Aroth]

Yes this is the problem, we need a complete title list from some 9.2 devices (ideally?). I'll write an app to dump this i think could be a good idea ?

Going from 9.0 to 9.2 is not hard. The only two titles changed (and this holds true for all regions) were CVer and Home Menu. The CVer is common to O3DS and N3DS, but region specific, and Home Menu is unique for both O3DS and N3DS, as well as each region.

 

[cpasjuste]

Going from 9.0 to 9.2 is not hard. The only two titles changed (and this holds true for all regions) were CVer and Home Menu. The CVer is common to O3DS and N3DS, but region specific, and Home Menu is unique for both O3DS and N3DS, as well as each region.

Fine !

 

[Aroth]

Yeah i know, story of seasons is even older, while fantasy life is a bit newer, but alway an old game


I don't think so, because they worked fine on rx-tools emunand 9.5, which has the string code too

rxTools handles the string replacement differently. Its a much more complicated code, that is at the same time much more efficient and has no chance of affecting anything outside of the system version. Reinand uses a much simpler piece of code that at the same time has the potential to overwrite ANY string in the memory. The code itself was also slightly bugged and instead of looking for "Ver." it was looking for "Ve" and then replacing "VeXX" with the "Rei" string. This meant it was altering things like region names and game titles, as well as apparently plain text strings in memory loaded by games.

 

[zoogie]

I don't think so, because they worked fine on rx-tools emunand 9.5, which has the string code too

"the string code"

https://github.com/Reisyukaku/ReiNa...6dce65c2866e9c2aab/thread/source/thread.c#L71
!=
https://github.com/roxas75/rxTools/..._firm/source/payload/arm9/thread/thread.c#L56

 

[Aroth]

I have a problem.

The Badge Arcade... is SO addicting...

But I don't want to spend money...

But I can't cheat to get free plays because neither GW nor NTR support this yet...

*pulls hair*

 

[Reisyukaku]

Oh man, Special Edition F-zero Max - Reicity!

Bwahaha

I found out why this happens.

-snip-
@Reisyukaku There you go

Thanks! =)

 

[Aroth]

Bwahaha


Thanks! =)

Submitted a bug report and pull request with a potential fix. Seems to also resolve some random crashes in certain games.

 

[urherenow]

I have a problem.

The Badge Arcade... is SO addicting...

But I don't want to spend money...

But I can't cheat to get free plays because neither GW nor NTR support this yet...

*pulls hair*

didn't you backup your emunand before playing with this? I did. Takes about 4 minutes to swap back to 9.5 and use GW

 

[night_hawk]

rxTools handles the string replacement differently. Its a much more complicated code, that is at the same time much more efficient and has no chance of affecting anything outside of the system version. Reinand uses a much simpler piece of code that at the same time has the potential to overwrite ANY string in the memory. The code itself was also slightly bugged and instead of looking for "Ver." it was looking for "Ve" and then replacing "VeXX" with the "Rei" string. This meant it was altering things like region names and game titles, as well as apparently plain text strings in memory loaded by games.

"the string code"

https://github.com/Reisyukaku/ReiNa...6dce65c2866e9c2aab/thread/source/thread.c#L71
!=
https://github.com/roxas75/rxTools/..._firm/source/payload/arm9/thread/thread.c#L56

Yep, seen now in the source code. I'll test them again when Rei will fix it

 

[Aroth]

didn't you backup your emunand before playing with this? I did. Takes about 4 minutes to swap back to 9.5 and use GW

I did, but I am also 99% sure the Badge Arcade won't work if I revert .

And we only call it a Whitelist because that's what it's referred to as by Nintendo.

edit:

Totally gonna try it though xD

--------------------- MERGED ---------------------------

Yep, seen now in the source code. I'll test them again when Rei will fix it

The arm9.bin file I uploaded incorporates the fix that was suggested. If you wouldn't mind testing it since you seemed to find the most problems?

 

[WallK]

So I still can install em on both nands just to be sure?

Please keep in mind that this is only a USA region system. I have no idea if EUR or JPN (or KOR/CHN/TWN) have any other additional titles beyond what I found here. If someone with a factory 9.0 sysnand was willing to dump and decrypt their sysnand and send it to me, I could compare the titles and see if there are any others for those regions, but unfortunately I would be unable to verify the expected versions as I used FBI on my own sysnand to do that.

--------------------- MERGED ---------------------------



If your emunand is already on 10.3 then I would not install them because it might break something (since you are effectively downgrading them at that point)

Nope, mine still on 9.5. What about sysnand tho?

 

[Aroth]

Nope, mine still on 9.5. What about sysnand tho?

Personally, if you have already downgraded and aren't experiencing any problems then I would leave it alone. Why tempt fate?

As for your Emunand, one of the two titles in question was updated with 9.5. Check the thread I linked for specifics.

 

[insidexdeath]

I know this is a bit off-topic to the current progress, but I was wondering if Rei/or anyone else achieved autobooting CFW without HBL's debug screen? If not, is full implementation of Menuhax on the to-do list?

 

[Aroth]

I know this is a bit off-topic to the current progress, but I was wondering if Rei/or anyone else achieved autobooting CFW without HBL's debug screen? If not, is full implementation of Menuhax on the to-do list?

Not sure what you mean by full implementation of Menuhax, but I don't think anyone has managed booting *hax without the debug screen appearing.

 

[insidexdeath]

Not sure what you mean by full implementation of Menuhax, but I don't think anyone has managed booting *hax without the debug screen appearing.

Because autobooting CFW, still relies on HBL, so it's not exactly fully implemented like MSET, or Spider.

 

[Aroth]

Because autobooting CFW, still relies on HBL, so it's not exactly fully implemented like MSET, or Spider.

Well considering menuhax is a *hax.... yeah its not gonna be like MSET where it just goes in with a minor graphical glitch.

 

[Phantom64]

How can i remove "press start to boot" on splash screen? V:, except this everything works perfect!