2011-02-02 03:14:14 +01:00
|
|
|
# Copyright 2008-2009 Segher Boessenkool <segher@kernel.crashing.org>
|
|
|
|
# Copyright 2011 roto <roto@mozy.org>
|
|
|
|
# Copyright 2011 Bernhard Urban <lewurm@gmail.com>
|
|
|
|
# This code is licensed to you under the terms of the GNU GPL, version 2;
|
|
|
|
# see file COPYING or http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt
|
|
|
|
|
|
|
|
bptr = 0x91178ea0
|
|
|
|
save = 0x91177f40
|
|
|
|
main = 0x90000020
|
|
|
|
|
|
|
|
audio_stop_usa = 0x8038ce9c
|
|
|
|
video_stop_usa = 0x8039971c
|
|
|
|
|
2011-02-08 00:42:48 +01:00
|
|
|
audio_stop_jpn = 0x803a0d4c
|
|
|
|
video_stop_jpn = 0x803ad748
|
|
|
|
|
2011-02-02 03:14:14 +01:00
|
|
|
audio_stop_eur = 0x8038cfec
|
|
|
|
video_stop_eur = 0x80399708
|
|
|
|
|
|
|
|
audio_stop_data = 0x9421fff0 # stwu 1,-16(1)
|
|
|
|
video_stop_data = 0x9421ffe0 # stwu 1,-32(1)
|
|
|
|
|
|
|
|
# Set up a stack frame.
|
|
|
|
lis 1,0x8080 ; li 0,0 ; stwu 0,-64(1)
|
|
|
|
|
|
|
|
# Stop audio.
|
|
|
|
lis 10,audio_stop_data@h ; ori 10,10,audio_stop_data@l
|
|
|
|
lis 3,audio_stop_usa@h ; ori 3,3,audio_stop_usa@l; lwz 5,0(3)
|
|
|
|
cmpw 5,10 ; beq execa
|
2011-02-08 00:42:48 +01:00
|
|
|
lis 3,audio_stop_jpn@h ; ori 3,3,audio_stop_jpn@l; lwz 5,0(3)
|
|
|
|
cmpw 5,10 ; beq execa
|
2011-02-02 03:14:14 +01:00
|
|
|
lis 3,audio_stop_eur@h ; ori 3,3,audio_stop_eur@l
|
|
|
|
execa:
|
|
|
|
mtctr 3 ; bctrl
|
|
|
|
|
|
|
|
# Stop video.
|
|
|
|
lis 10,video_stop_data@h ; ori 10,10,video_stop_data@l
|
|
|
|
lis 3,video_stop_usa@h ; ori 3,3,video_stop_usa@l; lwz 5,0(3)
|
|
|
|
cmpw 5,10 ; beq execv
|
2011-02-08 00:42:48 +01:00
|
|
|
lis 3,video_stop_jpn@h ; ori 3,3,video_stop_jpn@l; lwz 5,0(3)
|
|
|
|
cmpw 5,10 ; beq execv
|
2011-02-02 03:14:14 +01:00
|
|
|
lis 3,video_stop_eur@h ; ori 3,3,video_stop_eur@l
|
|
|
|
execv:
|
|
|
|
mtctr 3 ; bctrl
|
|
|
|
|
|
|
|
# Move code into place; a generous 32kB, starting at 64kB in
|
|
|
|
# the save file.
|
|
|
|
lis 3,main@h ; ori 3,3,main@l ; addi 5,3,-4
|
|
|
|
lis 4,save@h ; ori 4,4,save@l ; addi 4,4,-4
|
|
|
|
|
|
|
|
addis 4,4,1 ; addi 4,4,exploitlen # offset for exploit.bin
|
|
|
|
|
|
|
|
li 0,0x2000 ; mtctr 0
|
|
|
|
loop1:
|
|
|
|
lwzu 0,4(4) ; stwu 0,4(5) ; bdnz loop1
|
|
|
|
|
|
|
|
# Sync caches on it.
|
|
|
|
li 0,0x0400 ; mtctr 0 ; mr 5,3
|
|
|
|
loop2:
|
|
|
|
dcbst 0,5 ; sync ; icbi 0,5 ; addi 5,5,0x20 ; bdnz loop2
|
|
|
|
sync ; isync
|
|
|
|
|
|
|
|
# Go for it!
|
|
|
|
mtctr 3 ; bctr
|