Search found 10 matches

by zoogie
Thu Feb 27, 2020 3:05 pm
Forum: Other Retro Dev
Topic: 3DS reverse engineering
Replies: 271
Views: 151993

Re: 3DS reverse engineering

3. Certain titles may have 0x25, 0x1b, 0x18, or 0x2c -- it really doesn't seem to follow any logical pattern. It does appear that new3ds mcu module changed from 0x2c -> 0x1b at some point (probably the new2xl update version 9216, or firm 11.4/11.5). Old3ds has always been 0x2c. Good to know. Hmmm, ...
by zoogie
Tue Feb 25, 2020 9:30 pm
Forum: Other Retro Dev
Topic: 3DS reverse engineering
Replies: 271
Views: 151993

Re: 3DS reverse engineering

I have finally brewed up some code for loading/decrypting/decompressing .code files from eMMC, the current purpose would be loading the original MCU firmware before patching. It's working okay, but I could imagine a few possible problems: 1) I am ignoring the .tmd/.cmd files, and just load "ncsd:\t...
by zoogie
Mon Jun 24, 2019 2:24 pm
Forum: Other Retro Dev
Topic: DSi unlaunch (bootcode exploit)
Replies: 225
Views: 187618

Re: DSi unlaunch (bootcode exploit)

Here's a little problem that I and a few others have noticed on 1.9.
You can see the placeholder squares in the image below (top screen). This happens after a hotkey is changed in the options menu.

Image
by zoogie
Thu Jun 13, 2019 3:40 pm
Forum: Other Retro Dev
Topic: DSi unlaunch (bootcode exploit)
Replies: 225
Views: 187618

Re: DSi unlaunch (bootcode exploit)

Cool. Then, that seems to be working for all retail regions/versions now? Seems so, not a single report of a failed firmware/region combo so far. Even dev units have been reported working. I hope the official memory pit will support that, too, or are you modifications already part of the offcial me...
by zoogie
Sat Jun 08, 2019 10:28 pm
Forum: Other Retro Dev
Topic: DSi unlaunch (bootcode exploit)
Replies: 225
Views: 187618

Re: DSi unlaunch (bootcode exploit)

Nocash, I've made some modifications to Memory Pit and have had a good bit of success getting it to run on other regions (KOR and CHN) and lower firms (1.4 - 1.4.5 All regions). Update: users now reporting 1.0j, 1.2e, and 1.4j working. I regards to Unlaunch, an iQue (China) DSi owner has successfull...
by zoogie
Mon May 27, 2019 12:17 pm
Forum: Other Retro Dev
Topic: DSi unlaunch (bootcode exploit)
Replies: 225
Views: 187618

Re: DSi unlaunch (bootcode exploit)

Hey @nocash , Just want to let you know that many more people are now going to install Unlaunch due to a major new DSi exploit being released. It's called Memory Pit and it exploits the DSi Camera's pit.bin file. It works on every DSi, every region. (Edit 6-14-19: yes I regret making this previously...
by zoogie
Mon May 13, 2019 9:46 pm
Forum: Other Retro Dev
Topic: 3DS reverse engineering
Replies: 271
Views: 151993

Re: 3DS reverse engineering

PSI wrote: ...
As far as I know, this is the furthest anyone has ever gotten with an LLE 3DS emulator.
Well, there's this
https://github.com/archshift/llama
The fact that it's coded in Rust is a bit of a killjoy, but at least it's in a pretty advanced stage.
by zoogie
Fri Apr 05, 2019 12:40 am
Forum: Other Retro Dev
Topic: 3DS reverse engineering
Replies: 271
Views: 151993

Re: 3DS reverse engineering

I think that has the same small glitch in there. These three opcodes in ARM9 bootrom, FFFF9446 movs r0,10h FFFF94CC movs r0,24h FFFF9550 movs r0,38h are executed in loops (with r4=0..3), and they are apparently supposed to set normal key 10h..13h, 24h..27h, 38h..3Bh. But, with the "mov r0,imm" (ins...
by zoogie
Wed Apr 03, 2019 8:28 pm
Forum: Other Retro Dev
Topic: 3DS reverse engineering
Replies: 271
Views: 151993

Re: 3DS reverse engineering

The spreadsheet is nice for verifying that my key generator has put the keys into correct keyslots. Though there seem to be a few bugs in the spreadsheet (I think the normal key in keyslot 38h should be in keyslot 38h only, not also in keyslot 3Ah. And the DSi keyX in keyslot 03h should be console ...
by zoogie
Tue Mar 26, 2019 6:38 pm
Forum: Other Retro Dev
Topic: 3DS reverse engineering
Replies: 271
Views: 151993

Re: 3DS reverse engineering

Hmmmm, the 3DS project seems to have died before I got started with it : / After disassemblid the New 3DS XL a bunch of times, one of the pins in one of the three top-screen-unit connectors got bent inside of the connector, making it impossible to fully insert the FFC cable. The connector has 31 pi...