Toggle menu
Toggle personal menu
Not logged in
Your IP address will be publicly visible if you make any edits.

RegionFOUR 3DS: Difference between revisions

From GameBrew
(Created page with "{{Infobox 3DS homebrew | title = regionFOUR | image = https://dlhb.gamebrew.org/3dshomebrew/regionFOUR.jpeg|250px | type = Title Launchers | version = | licence = Mixed | aut...")
 
No edit summary
 
(14 intermediate revisions by the same user not shown)
Line 1: Line 1:
{{Infobox 3DS homebrew
{{Infobox 3DS Homebrews
| title = regionFOUR
|title=regionFOUR
| image = https://dlhb.gamebrew.org/3dshomebrew/regionFOUR.jpeg|250px
|image=Regionfour2.png
| type = Title Launchers
|description=Region free cartridge loader for 3DS/3DSXL/2DS/new3DS on firmware versions 9.0-11.3.
| version =  
|author=smealum
| licence = Mixed
|lastupdated=2015/07/27
| author = smealum
|type=Title Launchers
| website = https://github.com/smealum/regionFOUR
|version=2015
| download = https://dlhb.gamebrew.org/3dshomebrew/regionFOUR-master.zip
|license=Mixed
| source = https://dlhb.gamebrew.org/3dshomebrew/regionFOUR-master.zip
|download=https://dlhb.gamebrew.org/3dshomebrews/regionfour.zip
|website=https://github.com/smealum/regionFOUR
|source=https://github.com/smealum/regionFOUR
}}
}}
regionFOUR is a region free loader for New3DS/New3DSXL/3DS/3DSXL/2DS which currently works on firmware versions 9.0 through 9.8. It also allows you to bypass mandatory gamecard firmware updates.
It is a successor to [[regionthree 3DS|regionthree]] made to rely on an exploit game (currently cubic ninja, see below regarding other apps) rather than the web browser, as such it only requires an internet connection the first time it is run, and can then be run offline.
==User guide==
* Go to the get regionFOUR section of [http://smealum.net/regionfour this page] and enter your console's firmware version.
* Hit submit; you should get your very own regionFOUR QR code.
* Make sure your 3DS's wifi connection is enabled and connected to the internet (this is important!).
* Start Cubic Ninja on your console, choose Create > QR code, then Scan QR code.
* Scan the QR Code. This step might take a couple tries; make sure you fill up as much of your 3DS's screen with the QR code. If scanning the QR code returns to menu with an error, try a few more times.
* Follow the on screen instructions. You may choose not to install the exploit to your gamecard's savedata, though doing so is not recommended.
* Once regionFOUR is ready, you will be prompted to insert your out-of-region gamecard. Simply remove the Cubic Ninja gamecard, insert your gamecard and press START.
* (Optional) Once the regionFOUR is installed to your gamecard, just go back to the QR code menu and it'll run automatically.
==Media==
'''regionFOUR : (new) 3DS region free game loader on latest firmware''' ([https://www.youtube.com/watch?v=CwvJqM2rDWg smea]) <br>
<youtube>CwvJqM2rDWg</youtube>
<youtube>CwvJqM2rDWg</youtube>


Source Only!
==Credits==
= regionFOUR =
* All original ROP and code on this repo written by smea.
regionFOUR is a region free loader for New3DS/New3DSXL/3DS/3DSXL/2DS which currently works on on firmware versions 9.0 through 9.8 (including 9.1, 9.2, 9.3, 9.4, 9.5, 9.6 and 9.7). It also allows you to bypass mandatory gamecard firmware updates. It is a successor to regionthree made to rely on an exploit game (currently cubic ninja, see below regarding other apps) rather than the web browser. as such it only requires an internet connection the first time it is run, and can then be run offline.
* ns:s region free booting trick and home menu stack pivot found by yellows8.
=== How to use ===
Please see instructions on how to run regionFOUR on its webpage : [http://smealum.net/regionfour/ http://smealum.net/regionfour/]
=== FAQ ===
* Does this work on the latest firmware version ? Yes, 9.8 is supported.
* Does this let me run homebrew and/or roms ? No, it only lets you run legit physical games from other regions.
* Do I need to connect to the internet every time I want to use this ? No, you only need to connect to the internet the first time. You can then install it to your gamecard's savegame.
* Do I need a flashcart/game/hardware for this ? Yes, regionFOUR currently requires that you own a copy of Cubic Ninja(see below regarding other apps) from your own region to run.
* Will this work on my New 3DS ? Yes, this works on the New 3DS, the New 3DS XL, as well as the 3DS, the 3DS XL and the 2DS.
* I already have an exploit installed on my copy of Cubic Ninja, how do I use regionFOUR ? You can uninstall any Cubic Ninja exploit by holding L + R + X + Y in Cubic Ninja's main menu.
* Will this break or brick my 3DS ? No. There's virtually 0 chance of that happening, all this runs is run of the mill usermode code, nothing dangerous. Nothing unusual is written to your NAND, nothing permanent is done. With that in mind, use at your own risk, I won't take responsibility if something weird does happen.
* Will every game work ? No. Unfortunately, though most will, some games will not work properly with regionFOUR. One prominent such example is The Legend of Zelda - Majora's Mask.
* Do you take donations ? No, I do not.
* How does it work ? See below.
=== Technical stuff ===
Basically I reuse some ninjhax stuff to get code exec under an application (cubic ninja). From there I use the gspwn exploit to takeover home menu by overwriting a target object located on its linear heap with specially crafted data. With a fake vtable and a nice stack pivot I'm able to get ROP under home menu, and from there I ROP my way into calling NSS:Reboot to bypass the region check. For more detail on the cubic-ninja part of regionFOUR and the GPU DMA exploit (gspwn), visit [http://smealum.net/?p=517 http://smealum.net/?p=517] To build the ROP, use Kingcom's armips assembler [https://github.com/Kingcom/armips https://github.com/Kingcom/armips]
You will also need the processed blowfish key data for qr code crypto(not needed when building with --enableotherapp). It can be extracted from a ramdump or generated from exefs data : scripts/blowfish_processed.bin That done, building is very easy. Open a terminal, cd to the ninjhax directory, and :
* To build ninjhax for a single specific firmware version, use (replace &quot;N9.2.0-22J&quot; with firmware version; the N is for New 3DS/XL, just remove it to compile for old) : <code>python scripts/buildVersion.py &quot;N9.2.0-22J&quot;</code>
* To build all versions : <code>python scripts/buildAll.py</code> To build with ropbin-loading enabled, use this: <code>python scripts/buildAll.py --enableloadropbin</code> or <code>python scripts/buildVersion.py &quot;{version}&quot; --enableloadropbin</code>. With this, the initial homemenu ROP will just stack-pivot to the ROP-chain from menu_ropbin.bin(see &quot;firm_constants/&quot; for the ropbin address). This comes from &quot;menu_payload/menu_ropbin_{version}''{old/new}3ds.bin&quot;. This is embedded in cn_seconary_payload. Since this is intended for easily running general homemenu ROP(not just region-free), &quot;menu_payload/menu_ropbin''{version}''{old/new}3ds.bin&quot; will not be built from anything by these Makefiles. Hence, when using this option the ropbins at &quot;menu_payload/menu_ropbin''{version}_{old/new}3ds.bin&quot; for each version must already exist before building. To build cn_secondary_payload binaries which can then be run under non-cubicninja apps, pass the --enableotherapp option to either of the above build scripts. The built binaries are only new3ds/old3ds + system-version specific, region is not relevant for the built payload. QR code building and cn_save_initial_loader building are skipped with this option. See cn_secondary_payload/otherapp.ld for the binary base address. The payload ''must'' be called with r0 set to an address for a paramblk structure, see cn_secondary_payload or oot3dhax for the format of that structure. This allows the payload to be used under any app where the exploit which loaded the payload setup a paramblk struct correctly, including OoT3D: [https://github.com/yellows8/oot3dhax https://github.com/yellows8/oot3dhax]
=== Credits ===
* All original ROP and code on this repo written by smea
* ns:s region free booting trick and home menu stack pivot found by yellows8
* yellows8 and Myria for helping with testing.
* yellows8 and Myria for helping with testing.
* plutoo &lt;3
* plutoo.
* yellows8 for loadropbin functionality and non-cubicninja support in the payload.
* yellows8 for loadropbin functionality and non-cubicninja support in the payload.
==External links==
* Author's Tweet - https://twitter.com/smealum/status/594786348109733888
* GitHub - https://github.com/smealum/regionFOUR

Latest revision as of 10:55, 8 September 2024

regionFOUR
Regionfour2.png
General
Authorsmealum
TypeTitle Launchers
Version2015
LicenseMixed
Last Updated2015/07/27
Links
Download
Website
Source

regionFOUR is a region free loader for New3DS/New3DSXL/3DS/3DSXL/2DS which currently works on firmware versions 9.0 through 9.8. It also allows you to bypass mandatory gamecard firmware updates.

It is a successor to regionthree made to rely on an exploit game (currently cubic ninja, see below regarding other apps) rather than the web browser, as such it only requires an internet connection the first time it is run, and can then be run offline.

User guide

  • Go to the get regionFOUR section of this page and enter your console's firmware version.
  • Hit submit; you should get your very own regionFOUR QR code.
  • Make sure your 3DS's wifi connection is enabled and connected to the internet (this is important!).
  • Start Cubic Ninja on your console, choose Create > QR code, then Scan QR code.
  • Scan the QR Code. This step might take a couple tries; make sure you fill up as much of your 3DS's screen with the QR code. If scanning the QR code returns to menu with an error, try a few more times.
  • Follow the on screen instructions. You may choose not to install the exploit to your gamecard's savedata, though doing so is not recommended.
  • Once regionFOUR is ready, you will be prompted to insert your out-of-region gamecard. Simply remove the Cubic Ninja gamecard, insert your gamecard and press START.
  • (Optional) Once the regionFOUR is installed to your gamecard, just go back to the QR code menu and it'll run automatically.

Media

regionFOUR : (new) 3DS region free game loader on latest firmware (smea)

Credits

  • All original ROP and code on this repo written by smea.
  • ns:s region free booting trick and home menu stack pivot found by yellows8.
  • yellows8 and Myria for helping with testing.
  • plutoo.
  • yellows8 for loadropbin functionality and non-cubicninja support in the payload.

External links

Advertising: