leonardoliveira & Idc's clean decrypted roms
- Shou
- Posts: 758
- Joined: August 25th, 2009, 4:45 am
- Location: Central Tokyo, Japan, Asia, Earth, Solar System, Milky Way
- Initials: SHO
Re: leonardoliveira & Idc's clean decrypted roms
Also to note, Leo fixed Vampire Savior 970519 JP as it did not work.
Ones that I have found not to work are SF Zero 3 980904 JP and Battle Circuit JP.
Super Street Fighter II X 940223 JP seems to be based off of another region's build as certain bugs that exist in the Japanese build do not work in the decrypted set.
Ones that I have found not to work are SF Zero 3 980904 JP and Battle Circuit JP.
Super Street Fighter II X 940223 JP seems to be based off of another region's build as certain bugs that exist in the Japanese build do not work in the decrypted set.
- Asayuki
- Please Continue...
- Posts: 431
- Joined: August 29th, 2015, 10:16 pm
- Location: Remuria, Germany
Re: leonardoliveira & Idc's clean decrypted roms
I had a talk with Leonard on IRC lately, and we went down into the nitty gritty of CPS2 security. It was a very interesting talk, and I think the work you guys are doing there is awesome. Keep it up dudes!
My 15kHz cabinet Peplos will never power up, with any item, and I am quite proud of that.
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
Just mentioning, I am going through a process of (slowly) revisit all the existing decrypts at the site. This time I am documenting each decrypt and keeping track of decryption masks for each ROM.
Those decryption masks are actually more important than they look like as they can be used to encrypt the ROM to a different region. (hint hint)
Those decryption masks are actually more important than they look like as they can be used to encrypt the ROM to a different region. (hint hint)
- Bonky
- Please Continue...
- Posts: 13
- Joined: March 27th, 2015, 3:50 pm
- Location: France
Re: leonardoliveira & Idc's clean decrypted roms
Wow ^^
Thanks for your effort, so rapidly
I Test them this week on hardware
Thanks for your effort, so rapidly
I Test them this week on hardware
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
New games I just added:
ssf2tbj - Super Street Fighter II: The Tournament Battle (Japan 931005) / Thanks Shou
ssf2tbjr1 - Super Street Fighter II: The Tournament Battle (Japan 930911)
ssf2tbj - Super Street Fighter II: The Tournament Battle (Japan 931005) / Thanks Shou
ssf2tbjr1 - Super Street Fighter II: The Tournament Battle (Japan 930911)
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
Updated:
qndream - Quiz Nanairo dreams: Nijiirochou no kiseki (JAPAN 960826) - Decryption errors
Edit, also updated at the site:
smbomb SUPER MUSCLE BOMBER (JAPAN 940831) - Decryption errors, too...
qndream - Quiz Nanairo dreams: Nijiirochou no kiseki (JAPAN 960826) - Decryption errors
Edit, also updated at the site:
smbomb SUPER MUSCLE BOMBER (JAPAN 940831) - Decryption errors, too...
- Shou
- Posts: 758
- Joined: August 25th, 2009, 4:45 am
- Location: Central Tokyo, Japan, Asia, Earth, Solar System, Milky Way
- Initials: SHO
Re: leonardoliveira & Idc's clean decrypted roms
Rockman 2 960708 JP fix appears to have quite a few issues:
- the game boots but has severe AI problems even with difficulty on the highest setting (enemies are just dumb and do very little)
- in the Save Roll mode, the game sometimes says you saved Roll after you only have beat 2 stages
- in the Save Roll mode, the game will crash before the Yellow Devil/Rock Monster fight and goes to some kind of debug emulator screen
- the game boots but has severe AI problems even with difficulty on the highest setting (enemies are just dumb and do very little)
- in the Save Roll mode, the game sometimes says you saved Roll after you only have beat 2 stages
- in the Save Roll mode, the game will crash before the Yellow Devil/Rock Monster fight and goes to some kind of debug emulator screen
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
New games I just added to the site:
dstlkur1dl - Darkstalkers: The Night Warriors (USA 940705)
vampjdl - Vampire: The Night Warriors (JAPAN 940705)
vampjr1dl - Vampire: The Night Warriors (JAPAN 940630)
Keep in mind that Vampire (940630) have a "odd behavior" regarding the kick harness and the pin 25 of the jamma header. Some people like to wire one of the kick inputs together with the pin 25 of the jamma connector for compatibility with the NEO GEO. if the harness is wired that way, the kick button which is connected to the pin 25 will not function properly. Version 940705 had that issue solved.
Rockman 2 960708 issues solved and file updated at the site. Megaman 2 games also required the same repair which was done.
dstlkur1dl - Darkstalkers: The Night Warriors (USA 940705)
vampjdl - Vampire: The Night Warriors (JAPAN 940705)
vampjr1dl - Vampire: The Night Warriors (JAPAN 940630)
Keep in mind that Vampire (940630) have a "odd behavior" regarding the kick harness and the pin 25 of the jamma header. Some people like to wire one of the kick inputs together with the pin 25 of the jamma connector for compatibility with the NEO GEO. if the harness is wired that way, the kick button which is connected to the pin 25 will not function properly. Version 940705 had that issue solved.
Rockman 2 960708 issues solved and file updated at the site. Megaman 2 games also required the same repair which was done.
- xodaraP
- Please Continue...
- Posts: 29
- Joined: September 12th, 2015, 4:18 pm
- Location: Cairns, Queensland, Australia
- eBay: xodarap21
Re: leonardoliveira & Idc's clean decrypted roms
I think this is the version of Darkstalkers I have here, nice I can get it going again
Thanks guys for your work on this
Thanks guys for your work on this
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
A big shout for Shoutime for pointing problems with Choko and Quiz Nanairo Dreams: Nijiirochou no kiseki.
The sets were updated at the site.
The sets were updated at the site.
- xodaraP
- Please Continue...
- Posts: 29
- Joined: September 12th, 2015, 4:18 pm
- Location: Cairns, Queensland, Australia
- eBay: xodarap21
Re: leonardoliveira & Idc's clean decrypted roms
I assume the way it's verified is someone plays the game through in it's entirety without bugs.... the reason they're there in the first place? leo and idc probably don't have the time to 100% each game they decrypt...
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
Decryption is done by hand by manually analyzing code in IDA. Sometimes I am sleepy or tired and I deem data as code or code as data by mistake or miss a offset by a word or two. I'm human, not a machine and "IDA" means "Interactive Dis-Assembler" which implies it requires my input to know what/where to analyze.xodaraP wrote:I assume the way it's verified is someone plays the game through in it's entirety without bugs.... the reason they're there in the first place? leo and idc probably don't have the time to 100% each game they decrypt...
So because the errors are of a totally random nature and cannot be easily traced back without a crash reference to begin with, I rely on user input to repair problems.
The very same reason why Razoola's fixes had a crash/exception handler program of it's own and it told users to report any problems to him so he could fix the mistakes on decryption.
The only difference here is that I actually enable Capcom's exception handler (using a flag toggle in the game) and use reports from it, Razoola uses his own, which he made and put on the phoenix menu code.
This particular bug was caused by a wrong word at offset 0x00059BA4 which was loading the long value 0x0012EA47 instead of 0x00128646 at the register A0.
That was causing a word read at a odd address which was causing a address error exception, resetting the game when Gallon/J.Talbain move Beast Cannon was used in the dive direction (as shown on the crash picture).
MC68000 have no A0 pin so it can't read words or longs at odd addresses, for that it has a special instruction and two dedicated pins to indicate odd/even access at byte level. That's why it has a "address error" exception.
Offset 0 1 2 3 4 5 6 7 8 9 A B C D E F
00059B80 68 16 00 12 68 B6 00 12 74 72 00 12 75 12 00 12 h...h¶..tr..u...
00059B90 75 B2 00 12 76 52 00 12 84 66 00 12 85 06 00 12 u²..vR..„f..…...
00059BA0 85 A6 00 12 86 46 10 2E 00 05 32 3B 00 12 4E BB …¦..†F....2;..N»
00059BB0 10 0E 4E B9 00 00 52 F6 4E F9 00 00 55 B6 00 06 ..N¹..RöNù..U¶..
00059BC0 00 C8 00 F2 3D 6C 00 0C 00 0C 61 00 00 F0 66 00 .È.ò=l....a..ðf.
(blue is code/supposedly encrypted)
I actually hit "c" on the value "EA47" (EA47 is the value for that address under the encryption algorithm) and IDA interpreted it as a valid instruction, botching the tail of a address table. Decrypt a game is basically the act of discerning what should be considered encrypted and not encrypted. I misjudged that word as it being a encrypted word and it wasn't.
Hope that post is informative.
And FYI, the fixed ROM was uploaded to the avalaunch site.
You do not have the required permissions to view the files attached to this post.
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
New games added to the Avalaunch site:
Dungeons and Dragons: Shadow Over Mystara (JAPAN 960619)
Dungeons and Dragons: Shadow Over Mystara (USA 960619)
Only a year late as they have been rotting on my harddrive (forgotten) for that long, might as well put them up.
Dungeons and Dragons: Shadow Over Mystara (JAPAN 960619)
Dungeons and Dragons: Shadow Over Mystara (USA 960619)
Only a year late as they have been rotting on my harddrive (forgotten) for that long, might as well put them up.
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
Released:
Dungeons and Dragons: Shadow Over Mystara (Brazil 960223)
Revised:
Dungeons and Dragons: Shadow Over Mystara (EURO 960619)
A couple of wrong bytes and a few mangled instructions after I am fairly confident this is final.
Dungeons and Dragons: Shadow Over Mystara (Brazil 960223)
Revised:
Dungeons and Dragons: Shadow Over Mystara (EURO 960619)
A couple of wrong bytes and a few mangled instructions after I am fairly confident this is final.
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
Hyper Street Fighter 2 (JAPAN 031222)
P.S.: The 040202 set had the filenames inside the zip renamed to match MAME naming scheme. Because the file names I used were from 031222 set. File contents are absolutely the same as before.
P.S.: The 040202 set had the filenames inside the zip renamed to match MAME naming scheme. Because the file names I used were from 031222 set. File contents are absolutely the same as before.
-
- Posts: 505
- Joined: November 8th, 2008, 11:40 pm
- Location: Wales, UK
- eBay: realflight
Re: leonardoliveira & Idc's clean decrypted roms
Wonderful work, you're on a roll.
Arcade game board repairer
- Asayuki
- Please Continue...
- Posts: 431
- Joined: August 29th, 2015, 10:16 pm
- Location: Remuria, Germany
Re: leonardoliveira & Idc's clean decrypted roms
Don't forget to eat properly and to sleep, Leonard!
My 15kHz cabinet Peplos will never power up, with any item, and I am quite proud of that.
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
Has anyone noticed that Hyper Street Fighter 2 AI is dumber on MAME than it is on the real board?
- leonardoliveira
- Please Continue...
- Posts: 692
- Joined: August 30th, 2012, 5:53 am
- Location: Brazil
- Initials: leo
Re: leonardoliveira & Idc's clean decrypted roms
New games at the Avalaunch site !
Vampire Hunter: Darkstalkers Revenge JAPAN 950307 and 950316.
Vampire Hunter: Darkstalkers Revenge JAPAN 950307 and 950316.
-
- Please Continue...
- Posts: 40
- Joined: January 13th, 2014, 9:18 am
- Location: New Zealand
Re: leonardoliveira & Idc's clean decrypted roms
Awesome work Leo