forked from Mirror/SafeB9SInstaller
107675e006
* Fix date parsing in Makefile * crt0: clear more interrupts and registers After boot9strap 1.4 update, without these SDMMC dies. Also inadvertently fixes a screen init issue that happens from the aforementioned boot9strap update. Co-authored-by: profi200 <fd3194@gmx.de> * Add memcpy reimplementation * Change link to guide Plailect restrctured the domains a few years ago; 3ds.guide is now 3ds.hacks.guide, and devkit guide is panda.hacks.guide. --------- Co-authored-by: profi200 <fd3194@gmx.de> Co-authored-by: luigoalma <luigoalma@hotmail.com>
188 lines
4.8 KiB
ArmAsm
188 lines
4.8 KiB
ArmAsm
.section .text.start
|
|
.global _start
|
|
.align 4
|
|
.arm
|
|
|
|
@ if the binary is booted from Brahma/CakeHax/k9lh
|
|
@ the entrypoint is <start + 0x0>
|
|
@ framebuffers are already set
|
|
_start:
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop
|
|
nop @ dummy
|
|
b _skip_gw
|
|
|
|
@ if the binary is booted from the GW exploit
|
|
@ the entrypoint is <start + 0x30>
|
|
_start_gw:
|
|
|
|
@@wait for the arm11 kernel threads to be ready
|
|
mov r1, #0x10000
|
|
waitLoop9:
|
|
sub r1, #1
|
|
cmp r1, #0
|
|
bgt waitLoop9
|
|
|
|
mov r1, #0x10000
|
|
waitLoop92:
|
|
sub r1, #1
|
|
cmp r1, #0
|
|
bgt waitLoop92
|
|
|
|
|
|
@ copy the payload to the standard entrypoint (0x23F00000)
|
|
adr r0, _start
|
|
add r1, r0, #0x100000
|
|
ldr r2, .entry
|
|
.copy_binary_fcram:
|
|
cmp r0, r1
|
|
ldrlt r3, [r0], #4
|
|
strlt r3, [r2], #4
|
|
blt .copy_binary_fcram
|
|
|
|
@ setup framebuffers to look like Brahma/etc
|
|
|
|
ldr r0, .gw_fba
|
|
ldr r1, [r0, #0x18]
|
|
and r1, #1
|
|
ldr r1, [r0, r1, lsl #2] @ r1 := top framebuffer loc
|
|
mov r2, r1 @ r2 := top framebuffer loc
|
|
|
|
ldr r0, .gw_fbb
|
|
ldr r3, [r0, #0xC]
|
|
and r3, #1
|
|
ldr r3, [r0, r3, lsl #2] @ r3 := bottom framebuffer loc
|
|
|
|
ldr r0, .cakehax
|
|
stmia r0, {r1,r2,r3}
|
|
@ framebuffers properly set
|
|
|
|
ldr r3, =0xFFFF0830 @ flush (clean & invalidate) entire dcache b9 func
|
|
blx r3
|
|
|
|
mov r3, #0
|
|
mcr p15, 0, r3, c7, c5, 0 @ invalidate I-cache
|
|
|
|
mov r2, #0
|
|
ldr r3, .entry
|
|
bx r3
|
|
|
|
.gw_fba: .word 0x080FFFC0
|
|
.gw_fbb: .word 0x080FFFD0
|
|
.cakehax: .word 0x23FFFE00
|
|
.entry: .word 0x23F00000
|
|
|
|
_skip_gw:
|
|
mov r9, r0 @ argc
|
|
mov r10, r1 @ argv
|
|
|
|
ldr r4, =0xBEEF
|
|
lsl r2, #16
|
|
lsr r2, #16
|
|
cmp r2, r4 @ magic word
|
|
movne r9, #0
|
|
|
|
@ Disable caches / mpu
|
|
mrc p15, 0, r4, c1, c0, 0 @ read control register
|
|
bic r4, #(1<<16) @ - dtcm disable (mandated by the docs, before you change the dtcm's address)
|
|
bic r4, #(1<<12) @ - instruction cache disable
|
|
bic r4, #(1<<2) @ - data cache disable
|
|
bic r4, #(1<<0) @ - mpu disable
|
|
mcr p15, 0, r4, c1, c0, 0 @ write control register
|
|
|
|
@ Disable FIQs and IRQs
|
|
msr cpsr_cxsf, #0xD3 @ PSR_SVC_MODE | PSR_I | PSR_F
|
|
|
|
@ Disable and acknowledge interrupts
|
|
mov r2, #0x10000000
|
|
add r2, r2, #0x1000
|
|
mov r0, #0
|
|
mvn r1, #0 @ 0xFFFFFFFF
|
|
strd r0, r1, [r2] @ REG_IE/IF
|
|
|
|
@ Clear NDMA registers
|
|
add r2, r2, #0x1000 @ NDMA_GLOBAL_CNT, 0x10002000 = 0x10001000 + 0x1000
|
|
add r1, r2, #0xFC
|
|
add r2, r2, #0x1C
|
|
dma_clear_loop:
|
|
str r0, [r2], #0x1C
|
|
cmp r1, r2
|
|
bne dma_clear_loop
|
|
|
|
@ Clear bss
|
|
ldr r0, =__bss_start
|
|
ldr r1, =__bss_end
|
|
mov r2, #0
|
|
|
|
.bss_clr:
|
|
cmp r0, r1
|
|
strlt r2, [r0], #4
|
|
blt .bss_clr
|
|
|
|
@ Invalidate caches
|
|
mov r5, #0
|
|
mcr p15, 0, r5, c7, c5, 0 @ invalidate I-cache
|
|
mcr p15, 0, r5, c7, c6, 0 @ invalidate D-cache
|
|
mcr p15, 0, r5, c7, c10, 4 @ drain write buffer
|
|
|
|
@ Give read/write access to all the memory regions
|
|
ldr r5, =0x33333333
|
|
mcr p15, 0, r5, c5, c0, 2 @ write data access
|
|
mcr p15, 0, r5, c5, c0, 3 @ write instruction access
|
|
|
|
@ Sets MPU permissions and cache settings
|
|
ldr r0, =0xFFFF001F @ ffff0000 64k | bootrom (unprotected / protected)
|
|
ldr r1, =0x3000801B @ 30000000 16k | dtcm
|
|
ldr r2, =0x01FF801D @ 01ff8000 32k | itcm
|
|
ldr r3, =0x08000029 @ 08000000 2M | arm9 mem (O3DS / N3DS)
|
|
ldr r4, =0x10000029 @ 10000000 2M | io mem (ARM9 / first 2MB)
|
|
ldr r5, =0x20000037 @ 20000000 256M | fcram (O3DS / N3DS)
|
|
ldr r6, =0x1FF00027 @ 1FF00000 1M | dsp / axi wram
|
|
ldr r7, =0x1800002D @ 18000000 8M | vram (+ 2MB)
|
|
mov r8, #0x2D
|
|
mcr p15, 0, r0, c6, c0, 0
|
|
mcr p15, 0, r1, c6, c1, 0
|
|
mcr p15, 0, r2, c6, c2, 0
|
|
mcr p15, 0, r3, c6, c3, 0
|
|
mcr p15, 0, r4, c6, c4, 0
|
|
mcr p15, 0, r5, c6, c5, 0
|
|
mcr p15, 0, r6, c6, c6, 0
|
|
mcr p15, 0, r7, c6, c7, 0
|
|
mcr p15, 0, r8, c3, c0, 0 @ Write bufferable 0, 2, 5
|
|
mcr p15, 0, r8, c2, c0, 0 @ Data cacheable 0, 2, 5
|
|
mcr p15, 0, r8, c2, c0, 1 @ Inst cacheable 0, 2, 5
|
|
|
|
@ Enable dctm
|
|
ldr r1, =0x3000800A @ set dtcm
|
|
mcr p15, 0, r1, c9, c1, 0 @ set the dtcm Region Register
|
|
|
|
@ Enable caches
|
|
mrc p15, 0, r4, c1, c0, 0 @ read control register
|
|
orr r4, r4, #(1<<18) @ - itcm enable
|
|
orr r4, r4, #(1<<16) @ - dtcm enable
|
|
orr r4, r4, #(1<<12) @ - instruction cache enable
|
|
orr r4, r4, #(1<<2) @ - data cache enable
|
|
orr r4, r4, #(1<<0) @ - mpu enable
|
|
mcr p15, 0, r4, c1, c0, 0 @ write control register
|
|
|
|
@ Fixes mounting of SDMC
|
|
ldr r0, =0x10000020
|
|
mov r1, #0x340
|
|
str r1, [r0]
|
|
|
|
ldr sp, =0x23F00000
|
|
|
|
mov r0, r9
|
|
mov r1, r10
|
|
b main
|
|
|
|
.pool
|