#54725 - pepsiman - Wed Sep 21, 2005 11:00 pm
The 32MB of RAM in the G6 can be made writable by writing 0xaa55 to 0x09fffffe.
As with VRAM, 8bit writes do not work correctly.
The RAM in the M3 can probably be made writable in the same way, but this has not been tested.
#54727 - El Hobito - Wed Sep 21, 2005 11:30 pm
sounds good, i have an m3 if needs any help with testing it.
off topic, how goes linux cf reading if you dont mind me asking?
#54759 - El Hobito - Thu Sep 22, 2005 11:36 am
it doesnt work im afraid (as far as i can tell)
08000000 = -369098706
writing 10 to 08000000
08000000 = -369098706
writing aa55 to 09fffffe
08000000 = -369098706
#54763 - El Hobito - Thu Sep 22, 2005 12:44 pm
yup thats got it
08000000 is successfully written to
#54772 - El Hobito - Thu Sep 22, 2005 2:42 pm
know a good disassembler pepsiman? i tried disassembling moonshell but it doesnt like it at all and gets stuck in an infinite loop
================ Header info ================
Game Title : .
Game Code : =??
Maker Code : ??
Unit Code : 09
Device Code : ad
Card Size : 11 = 131072MBit
Card Info : $????!?R?
Flags : 19
ARM9_source : 20ce0993
ARM9_execute address : 4a4a4610
ARM9_copy to address : ec3127f8
ARM9_binary size : 33e8c758
ARM7_source : bfcee382
ARM7_execute address : 94dff485
ARM7_copy to address : c1094bce
ARM7_binary size : c08a5694
Filename table offset : fca77213
Filename table size : 734d849f
FAT offset : 619acaa3
FAT size : 27a39758
ARM9 overlay src : 769803fc
ARM9 overlay size : 61c71d23
ARM7 overlay src : 56ae0403
ARM7 overlay size : 008438bf
Unknown2a : fd0ea740
Unknown2a : 03fe52ff
Icon+Titles : f130956f
SecureCRC16[4000-7FFF] : fb97
ROM timeout : 85c0
ARM9 unk addr : 2580d660
ARM7 unk addr : 03be63a9
Unknown3c : N8???4??>Dx
ROM size : 44033ebb
header size : cb900078
Logo CRC16[0C0-15B] : 203c
Header CRC16[000-15D] : e59b
================ File Allocation Table info ================
ADDRESS SIZE(HEX/DEC) PATH
================ ARM9(Main CPU) code ================
:EC3127F8 0013FF00 andeqs r15,r3,r0,lsl#0 ; r15=0(0x0)
:EC3127FC 0013FF00 andeqs r15,r3,r0,lsl#0 ; r15=0(0x0)
:EC312800 0013FF00 andeqs r15,r3,r0,lsl#0 ; r15=0(0x0)
:EC312804 0013FF00 andeqs r15,r3,r0,lsl#0 ; r15=0(0x0)
:EC312808 0013FF00 andeqs r15,r3,r0,lsl#0 ; r15=0(0x0)
:EC31280C 0013FF00 andeqs r15,r3,r0,lsl#0 ; r15=0(0x0)