Print Page - No Enemy for FF4 After Years Pal

Title: No Enemy for FF4 After Years Pal
Post by: Patedj on May 13, 2011, 04:01:17 PM

Siren item
Registers
[spoiler] CR:42000888 XER:20000000 CTR:80062BE4 DSIS:02400000
DAR:804F37A8 SRR0:8003B258 SRR1:0000A032 LR:80062C28
r0:0000005C r1:802BA6D0 r2:802B2020 r3:804D8060
r4:000000DE r5:FFFFFFFF r6:804F83D8 r7:0000005B
r8:0000005B r9:00000156 r10:80000000 r11:80000280
r12:00000000 r13:802B0C80 r14:00020000 r15:802A9570
r16:00000280 r17:000001C8 r18:00000000 r19:0000000C
r20:801FAF80 r21:00000000 r22:801FE200 r23:00010000
r24:801FE1C0 r25:801B9330 r26:00000001 r27:801FB36C
r28:00000000 r29:8055A5C0 r30:000000DE r31:91A86060

f0:00000000 f1:00000000 f2:00000000 f3:00000000
f4:00000000 f5:00000000 f6:00000000 f7:00000000
f8:00000000 f9:00000000 f10:00000000 f11:00000000
f12:00000000 f13:00000000 f14:00000000 f15:00000000
f16:00000000 f17:00000000 f18:00000000 f19:00000000
f20:00000000 f21:00000000 f22:00000000 f23:00000000
f24:00000000 f25:00000000 f26:00000000 f27:00000000
f28:00000000 f29:00000000 f30:00000000 f31:00000000[/spoiler]

Function
[spoiler]
8003B204: 3CC30002   addis   r6,r3,2
8003B208: 5480103A   rlwinm   r0,r4,2,0,29
8003B20C: 8106D5D4   lwz   r8,-10796(r6)
8003B210: 1CE40350   mulli   r7,r4,848
8003B214: 7CC60214   add   r6,r6,r0
8003B218: 8006B3D0   lwz   r0,-19504(r6)
8003B21C: 7CE83A14   add   r7,r8,r7
8003B220: 88E700B0   lbz   r7,176(r7)
8003B224: 2C070018   cmpwi   r7,24
8003B228: 4082000C   bne-   0x8003b234
8003B22C: 7CA32B78   mr   r3,r5
8003B230: 4E800020   blr
8003B234: 7CE50214   add   r7,r5,r0
8003B238: 39000063   li   r8,99
8003B23C: 2C070063   cmpwi   r7,99
8003B240: 40800008   bge-   0x8003b248
8003B244: 7CE83B78   mr   r8,r7
8003B248: 7CE800D0   neg   r7,r8
8003B24C: 7CE74078   andc   r7,r7,r8
8003B250: 7CE7FE70   srawi   r7,r7,31
8003B254: 7D073839   and.   r7,r8,r7
8003B258: 90E6B3D0   stw   r7,-19504(r6) srr0
8003B25C: 4082004C   bne-   0x8003b2a8
8003B260: 38E00200   li   r7,512
8003B264: 7C681B78   mr   r8,r3
8003B268: 39200000   li   r9,0
8003B26C: 7CE903A6   mtctr   r7
8003B270: 3CE80002   addis   r7,r8,2
8003B274: 80E7BBD0   lwz   r7,-17456(r7)
8003B278: 7C043800   cmpw   r4,r7
8003B27C: 4082001C   bne-   0x8003b298
8003B280: 3C830002   addis   r4,r3,2
8003B284: 5523103A   rlwinm   r3,r9,2,0,29
8003B288: 7C641A14   add   r3,r4,r3
8003B28C: 38800000   li   r4,0
8003B290: 9083BBD0   stw   r4,-17456(r3)
8003B294: 4800005C   b   0x8003b2f0
8003B298: 39080004   addi   r8,r8,4
8003B29C: 39290001   addi   r9,r9,1
8003B2A0: 4200FFD0   bdnz+   0x8003b270
8003B2A4: 4800004C   b   0x8003b2f0
8003B2A8: 2C000000   cmpwi   r0,0
8003B2AC: 40820044   bne-   0x8003b2f0
8003B2B0: 38E00200   li   r7,512
8003B2B4: 7C681B78   mr   r8,r3
8003B2B8: 39200000   li   r9,0
8003B2BC: 7CE903A6   mtctr   r7
8003B2C0: 3CE80002   addis   r7,r8,2
8003B2C4: 80E7BBD0   lwz   r7,-17456(r7)
8003B2C8: 2C070000   cmpwi   r7,0
8003B2CC: 40820018   bne-   0x8003b2e4
8003B2D0: 3CE30002   addis   r7,r3,2
8003B2D4: 5523103A   rlwinm   r3,r9,2,0,29
8003B2D8: 7C671A14   add   r3,r7,r3
8003B2DC: 9083BBD0   stw   r4,-17456(r3)
8003B2E0: 48000010   b   0x8003b2f0
8003B2E4: 39080004   addi   r8,r8,4
8003B2E8: 39290001   addi   r9,r9,1
8003B2EC: 4200FFD4   bdnz+   0x8003b2c0
8003B2F0: 8066B3D0   lwz   r3,-19504(r6)
8003B2F4: 7C001850   sub   r0,r3,r0
8003B2F8: 7C602850   sub   r3,r5,r0
8003B2FC: 4E800020   blr
[/spoiler]

Caller
[spoiler]800628E8: 9421FFE0   stwu   r1,-32(r1)
800628EC: 7C0802A6   mflr   r0
800628F0: 90010024   stw   r0,36(r1)
800628F4: 5480103A   rlwinm   r0,r4,2,0,29
800628F8: BF61000C   stmw   r27,12(r1)
800628FC: 7C7D1B78   mr   r29,r3
80062900: 80A30000   lwz   r5,0(r3)
80062904: 3C650002   addis   r3,r5,2
80062908: 7C830214   add   r4,r3,r0
8006290C: 83C4BBD0   lwz   r30,-17456(r4)
80062910: 2C1E0000   cmpwi   r30,0
80062914: 41810018   bgt-   0x8006292c
80062918: 3880007D   li   r4,125
8006291C: 3863DE08   subi   r3,r3,8696
80062920: 48004169   bl   0x80066a88
80062924: 38600000   li   r3,0
80062928: 48000408   b   0x80062d30
8006292C: 7CA32B78   mr   r3,r5
80062930: 7FC4F378   mr   r4,r30
80062934: 4BFDAF89   bl   0x8003d8bc
80062938: A88300B8   lha   r4,184(r3)
8006293C: 7C7F1B78   mr   r31,r3
80062940: 548007FF   rlwinm.   r0,r4,0,31,31
80062944: 40820020   bne-   0x80062964
80062948: 5480077B   rlwinm.   r0,r4,0,29,29
8006294C: 418203CC   beq-   0x80062d18
80062950: 7FA3EB78   mr   r3,r29
80062954: 38800009   li   r4,9
80062958: 4BFFBEF5   bl   0x8005e84c
8006295C: 2C030000   cmpwi   r3,0
80062960: 418203B8   beq-   0x80062d18
80062964: 807D0000   lwz   r3,0(r29)
80062968: 38800000   li   r4,0
8006296C: 3C630002   addis   r3,r3,2
80062970: 3863DE08   subi   r3,r3,8696
80062974: 48004115   bl   0x80066a88
80062978: 881F00BA   lbz   r0,186(r31)
8006297C: 7C000774   extsb   r0,r0
80062980: 2C000009   cmpwi   r0,9
80062984: 40800044   bge-   0x800629c8
80062988: 2C000004   cmpwi   r0,4
8006298C: 40820010   bne-   0x8006299c
80062990: 38000001   li   r0,1
80062994: 901D0058   stw   r0,88(r29)
80062998: 4800000C   b   0x800629a4
8006299C: 38000000   li   r0,0
800629A0: 901D0058   stw   r0,88(r29)
800629A4: 807D0000   lwz   r3,0(r29)
800629A8: 38800000   li   r4,0
800629AC: 38A00001   li   r5,1
800629B0: 4BFD8DF9   bl   0x8003b7a8
800629B4: 907D0018   stw   r3,24(r29)
800629B8: 38000005   li   r0,5
800629BC: 38600000   li   r3,0
800629C0: 901D001C   stw   r0,28(r29)
800629C4: 4800036C   b   0x80062d30
800629C8: 28000010   cmplwi   r0,16
800629CC: 41810330   bgt-   0x80062cfc
800629D0: 3C60801D   lis   r3,-32739
800629D4: 5400103A   rlwinm   r0,r0,2,0,29
800629D8: 3863C4AC   subi   r3,r3,15188
800629DC: 7C63002E   lwzx   r3,r3,r0
800629E0: 7C6903A6   mtctr   r3
800629E4: 4E800420   bctr
800629E8: 38600000   li   r3,0
800629EC: 48000344   b   0x80062d30
800629F0: 807D0000   lwz   r3,0(r29)
800629F4: 3C630007   addis   r3,r3,7
800629F8: 3863A880   subi   r3,r3,22400
800629FC: 4800A2A5   bl   0x8006cca0
80062A00: 2C030000   cmpwi   r3,0
80062A04: 41820020   beq-   0x80062a24
80062A08: 807D0000   lwz   r3,0(r29)
80062A0C: 3880007D   li   r4,125
80062A10: 3C630002   addis   r3,r3,2
80062A14: 3863DE08   subi   r3,r3,8696
80062A18: 48004071   bl   0x80066a88
80062A1C: 38600000   li   r3,0
80062A20: 48000310   b   0x80062d30
80062A24: 3B600000   li   r27,0
80062A28: 3B800000   li   r28,0
80062A2C: 801D0000   lwz   r0,0(r29)
80062A30: 7C60E214   add   r3,r0,r28
80062A34: 3CA30002   addis   r5,r3,2
80062A38: 8005B2EC   lwz   r0,-19732(r5)
80062A3C: 2C00FFFF   cmpwi   r0,-1
80062A40: 41820044   beq-   0x80062a84
80062A44: 8085B2E8   lwz   r4,-19736(r5)
80062A48: 3C7C0002   addis   r3,r28,2
80062A4C: 3803B2E8   subi   r0,r3,19736
80062A50: 54830030   rlwinm   r3,r4,0,0,24
80062A54: 9065B2E8   stw   r3,-19736(r5)
80062A58: 807D0000   lwz   r3,0(r29)
80062A5C: 7C03002E   lwzx   r0,r3,r0
80062A60: 54000631   rlwinm.   r0,r0,0,24,24
80062A64: 40820020   bne-   0x80062a84
80062A68: 7F64DB78   mr   r4,r27
80062A6C: 38A003E8   li   r5,1000
80062A70: 4BFD8B59   bl   0x8003b5c8
80062A74: 807D0000   lwz   r3,0(r29)
80062A78: 7F64DB78   mr   r4,r27
80062A7C: 38A00064   li   r5,100
80062A80: 4BFD8B99   bl   0x8003b618
80062A84: 3B7B0001   addi   r27,r27,1
80062A88: 3B9C0030   addi   r28,r28,48
80062A8C: 2C1B0005   cmpwi   r27,5
80062A90: 4180FF9C   blt+   0x80062a2c
80062A94: 807D0000   lwz   r3,0(r29)
80062A98: 7FC4F378   mr   r4,r30
80062A9C: 38A0FFFF   li   r5,-1
80062AA0: 4BFD8765   bl   0x8003b204
80062AA4: 48000258   b   0x80062cfc
80062AA8: 807D0000   lwz   r3,0(r29)
80062AAC: 3C630007   addis   r3,r3,7
80062AB0: 3863A880   subi   r3,r3,22400
80062AB4: 4800A1ED   bl   0x8006cca0
80062AB8: 2C030000   cmpwi   r3,0
80062ABC: 41820020   beq-   0x80062adc
80062AC0: 807D0000   lwz   r3,0(r29)
80062AC4: 3880007D   li   r4,125
80062AC8: 3C630002   addis   r3,r3,2
80062ACC: 3863DE08   subi   r3,r3,8696
80062AD0: 48003FB9   bl   0x80066a88
80062AD4: 38600000   li   r3,0
80062AD8: 48000258   b   0x80062d30
80062ADC: 3B600000   li   r27,0
80062AE0: 3B800000   li   r28,0
80062AE4: 801D0000   lwz   r0,0(r29)
80062AE8: 7C60E214   add   r3,r0,r28
80062AEC: 3C630002   addis   r3,r3,2
80062AF0: 8003B2EC   lwz   r0,-19732(r3)
80062AF4: 2C00FFFF   cmpwi   r0,-1
80062AF8: 41820030   beq-   0x80062b28
80062AFC: 8003B2E8   lwz   r0,-19736(r3)
80062B00: 7F64DB78   mr   r4,r27
80062B04: 38A0270F   li   r5,9999
80062B08: 5400002E   rlwinm   r0,r0,0,0,23
80062B0C: 9003B2E8   stw   r0,-19736(r3)
80062B10: 807D0000   lwz   r3,0(r29)
80062B14: 4BFD8AB5   bl   0x8003b5c8
80062B18: 807D0000   lwz   r3,0(r29)
80062B1C: 7F64DB78   mr   r4,r27
80062B20: 38A003E7   li   r5,999
80062B24: 4BFD8AF5   bl   0x8003b618
80062B28: 3B7B0001   addi   r27,r27,1
80062B2C: 3B9C0030   addi   r28,r28,48
80062B30: 2C1B0005   cmpwi   r27,5
80062B34: 4180FFB0   blt+   0x80062ae4
80062B38: 807D0000   lwz   r3,0(r29)
80062B3C: 7FC4F378   mr   r4,r30
80062B40: 38A0FFFF   li   r5,-1
80062B44: 4BFD86C1   bl   0x8003b204
80062B48: 480001B4   b   0x80062cfc
80062B4C: 807D0000   lwz   r3,0(r29)
80062B50: 38800003   li   r4,3
80062B54: 4BFD4A15   bl   0x80037568
80062B58: 2C030000   cmpwi   r3,0
80062B5C: 40820020   bne-   0x80062b7c
80062B60: 807D0000   lwz   r3,0(r29)
80062B64: 3880007D   li   r4,125
80062B68: 3C630002   addis   r3,r3,2
80062B6C: 3863DE08   subi   r3,r3,8696
80062B70: 48003F19   bl   0x80066a88
80062B74: 38600000   li   r3,0
80062B78: 480001B8   b   0x80062d30
80062B7C: 807D0000   lwz   r3,0(r29)
80062B80: 7FC4F378   mr   r4,r30
80062B84: 38A0FFFF   li   r5,-1
80062B88: 4BFD867D   bl   0x8003b204
80062B8C: 48000170   b   0x80062cfc
80062B90: 807D0000   lwz   r3,0(r29)
80062B94: 38800003   li   r4,3
80062B98: 4BFD49D1   bl   0x80037568
80062B9C: 2C030000   cmpwi   r3,0
80062BA0: 41820018   beq-   0x80062bb8
80062BA4: 807D0000   lwz   r3,0(r29)
80062BA8: 3C830007   addis   r4,r3,7
80062BAC: 8004CC44   lwz   r0,-13244(r4)
80062BB0: 540005AD   rlwinm.   r0,r0,0,22,22
80062BB4: 40820020   bne-   0x80062bd4
80062BB8: 807D0000   lwz   r3,0(r29)
80062BBC: 3880007D   li   r4,125
80062BC0: 3C630002   addis   r3,r3,2
80062BC4: 3863DE08   subi   r3,r3,8696
80062BC8: 48003EC1   bl   0x80066a88
80062BCC: 38600000   li   r3,0
80062BD0: 48000160   b   0x80062d30
80062BD4: 7FC4F378   mr   r4,r30
80062BD8: 38A0FFFF   li   r5,-1
80062BDC: 4BFD8629   bl   0x8003b204
80062BE0: 4800011C   b   0x80062cfc
80062BE4: 807D0000   lwz   r3,0(r29)
80062BE8: 3C630007   addis   r3,r3,7
80062BEC: 3863A880   subi   r3,r3,22400
80062BF0: 4800A0B1   bl   0x8006cca0
80062BF4: 2C030000   cmpwi   r3,0
80062BF8: 41820020   beq-   0x80062c18
80062BFC: 807D0000   lwz   r3,0(r29)
80062C00: 3880007D   li   r4,125
80062C04: 3C630002   addis   r3,r3,2
80062C08: 3863DE08   subi   r3,r3,8696
80062C0C: 48003E7D   bl   0x80066a88
80062C10: 38600000   li   r3,0
80062C14: 4800011C   b   0x80062d30
80062C18: 807D0000   lwz   r3,0(r29)
80062C1C: 7FC4F378   mr   r4,r30
80062C20: 38A0FFFF   li   r5,-1
80062C24: 4BFD85E1   bl   0x8003b204 caller
80062C28: 480000D4   b   0x80062cfc
80062C2C: 807D0000   lwz   r3,0(r29)
80062C30: 38800002   li   r4,2
80062C34: 4BFD4935   bl   0x80037568
80062C38: 2C030000   cmpwi   r3,0
80062C3C: 40820020   bne-   0x80062c5c
80062C40: 807D0000   lwz   r3,0(r29)
80062C44: 3880007D   li   r4,125
80062C48: 3C630002   addis   r3,r3,2
80062C4C: 3863DE08   subi   r3,r3,8696
80062C50: 48003E39   bl   0x80066a88
80062C54: 38600000   li   r3,0
80062C58: 480000D8   b   0x80062d30
80062C5C: 807D0000   lwz   r3,0(r29)
80062C60: 7FC4F378   mr   r4,r30
80062C64: 38A0FFFF   li   r5,-1
80062C68: 4BFD859D   bl   0x8003b204
80062C6C: 48000090   b   0x80062cfc
80062C70: 807D0000   lwz   r3,0(r29)
80062C74: 38800003   li   r4,3
80062C78: 4BFE105D   bl   0x80043cd4
80062C7C: 2C03FFFF   cmpwi   r3,-1
80062C80: 4082001C   bne-   0x80062c9c
80062C84: 807D0000   lwz   r3,0(r29)
80062C88: 3880007D   li   r4,125
80062C8C: 3C630002   addis   r3,r3,2
80062C90: 3863DE08   subi   r3,r3,8696
80062C94: 48003DF5   bl   0x80066a88
80062C98: 48000064   b   0x80062cfc
80062C9C: 807D0000   lwz   r3,0(r29)
80062CA0: 38800003   li   r4,3
80062CA4: A8BF00CA   lha   r5,202(r31)
80062CA8: 38C00001   li   r6,1
80062CAC: 3C630007   addis   r3,r3,7
80062CB0: 3863C994   subi   r3,r3,13932
80062CB4: 4BFCB761   bl   0x8002e414
80062CB8: 2C030000   cmpwi   r3,0
80062CBC: 4082001C   bne-   0x80062cd8
80062CC0: 807D0000   lwz   r3,0(r29)
80062CC4: 3880007D   li   r4,125
80062CC8: 3C630002   addis   r3,r3,2
80062CCC: 3863DE08   subi   r3,r3,8696
80062CD0: 48003DB9   bl   0x80066a88
80062CD4: 48000028   b   0x80062cfc
80062CD8: 807D0000   lwz   r3,0(r29)
80062CDC: 3880001A   li   r4,26
80062CE0: 3C630002   addis   r3,r3,2
80062CE4: 3863DE08   subi   r3,r3,8696
80062CE8: 48003DA1   bl   0x80066a88
80062CEC: 807D0000   lwz   r3,0(r29)
80062CF0: 7FC4F378   mr   r4,r30
80062CF4: 38A0FFFF   li   r5,-1
80062CF8: 4BFD850D   bl   0x8003b204
80062CFC: 881F00BA   lbz   r0,186(r31)
80062D00: 7C000774   extsb   r0,r0
80062D04: 2C000009   cmpwi   r0,9
80062D08: 41820024   beq-   0x80062d2c
80062D0C: 901D0028   stw   r0,40(r29)
80062D10: 38600001   li   r3,1
80062D14: 4800001C   b   0x80062d30
80062D18: 807D0000   lwz   r3,0(r29)
80062D1C: 3880007D   li   r4,125
80062D20: 3C630002   addis   r3,r3,2
80062D24: 3863DE08   subi   r3,r3,8696
80062D28: 48003D61   bl   0x80066a88
80062D2C: 38600000   li   r3,0
80062D30: BB61000C   lmw   r27,12(r1)
80062D34: 80010024   lwz   r0,36(r1)
80062D38: 7C0803A6   mtlr   r0
80062D3C: 38210020   addi   r1,r1,32
80062D40: 4E800020   blr
[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 13, 2011, 04:04:13 PM

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 13, 2011, 04:20:54 PM

Stepping log short
[spoiler]

8003B258: 90E6B3D0   stw   r7,-19504(r6)   r7 = 00000052   r6 = 804F83D8   [804F37A8] = 00000053QTY of Item
8003B25C: 4082004C   bne-   0x8003b2a8
   ...   ...   ...   ...
8003B2A8: 2C000000   cmpwi   r0,0     r0 = 00000053
8003B2AC: 40820044   bne-   0x8003b2f0
   ...   ...   ...   ...
8003B2F0: 8066B3D0   lwz   r3,-19504(r6)   r3 = 804D8060   r6 = 804F83D8   [804F37A8] = 00000052
8003B2F4: 7C001850   sub   r0,r3,r0   r0 = 00000053   r3 = 00000052   r0 = 00000053
8003B2F8: 7C602850   sub   r3,r5,r0   r3 = 00000052   r5 = FFFFFFFF   r0 = FFFFFFFF
8003B2FC: 4E800020   blr        LR = 80062C28
80062C28: 480000D4   b   0x80062cfc
   ...   ...   ...   ...
80062CFC: 881F00BA   lbz   r0,186(r31)   r0 = FFFFFFFF   r31 = 91A86060   [91A8611A] = 00010F00
80062D00: 7C000774   extsb   r0,r0    r0 = 0000000F   r0 = 0000000F
80062D04: 2C000009   cmpwi   r0,9     r0 = 0000000F
80062D08: 41820024   beq-   0x80062d2c
80062D0C: 901D0028   stw   r0,40(r29)   r0 = 0000000F   r29 = 8055A5C0   [8055A5E8] = FFFFFFFF
80062D10: 38600001   li   r3,1     r3 = 00000000
80062D14: 4800001C   b   0x80062d30
   ...   ...   ...   ...
80062D30: BB61000C   lmw   r27,12(r1)   r27 = 801FB36C   r1 = 802BA6D0   [802BA6DC] = 801FB36C
80062D34: 80010024   lwz   r0,36(r1)   r0 = 0000000F   r1 = 802BA6D0   [802BA6F4] = 8004D328
80062D38: 7C0803A6   mtlr   r0     LR = 80062C28   r0 = 8004D328
80062D3C: 38210020   addi   r1,r1,32   r1 = 802BA6D0   r1 = 802BA6D0
80062D40: 4E800020   blr        LR = 8004D328
8004D328: 7C7F1B78   mr   r31,r3     r31 = 00000000   r3 = 00000001
8004D32C: 48000314   b   0x8004d640
   ...   ...   ...   ...
8004D640: 2C1F0000   cmpwi   r31,0    r31 = 00000001
8004D644: 408201F0   bne-   0x8004d834
   ...   ...   ...   ...
8004D834: 7FE3FB78   mr   r3,r31     r3 = 00000001   r31 = 00000001
8004D838: 83E1001C   lwz   r31,28(r1)   r31 = 00000001   r1 = 802BA6F0   [802BA70C] = 00000000
8004D83C: 83C10018   lwz   r30,24(r1)   r30 = 8055A5C0   r1 = 802BA6F0   [802BA708] = 8055A5C0
8004D840: 83A10014   lwz   r29,20(r1)   r29 = 8055A5C0   r1 = 802BA6F0   [802BA704] = 00000000
8004D844: 83810010   lwz   r28,16(r1)   r28 = 00000000   r1 = 802BA6F0   [802BA700] = 805449F4
8004D848: 80010024   lwz   r0,36(r1)   r0 = 8004D328   r1 = 802BA6F0   [802BA714] = 8004C9BC
8004D84C: 7C0803A6   mtlr   r0     LR = 8004D328   r0 = 8004C9BC
8004D850: 38210020   addi   r1,r1,32   r1 = 802BA6F0   r1 = 802BA6F0
8004D854: 4E800020   blr        LR = 8004C9BC
8004C9BC: 7C7F1B78   mr   r31,r3     r31 = 00000000   r3 = 00000001
8004C9C0: 480000C8   b   0x8004ca88
   ...   ...   ...   ...
8004CA88: 7FE3FB78   mr   r3,r31     r3 = 00000001   r31 = 00000001
8004CA8C: 83E1000C   lwz   r31,12(r1)   r31 = 00000001   r1 = 802BA710   [802BA71C] = 00000004
8004CA90: 83C10008   lwz   r30,8(r1)   r30 = 8055A5C0   r1 = 802BA710   [802BA718] = 00000001
8004CA94: 80010014   lwz   r0,20(r1)   r0 = 8004C9BC   r1 = 802BA710   [802BA724] = 8001F788
8004CA98: 7C0803A6   mtlr   r0     LR = 8004C9BC   r0 = 8001F788
8004CA9C: 38210010   addi   r1,r1,16   r1 = 802BA710   r1 = 802BA710
8004CAA0: 4E800020   blr        LR = 8001F788
8001F788: 2C030000   cmpwi   r3,0     r3 = 00000001
8001F78C: 41820370   beq-   0x8001fafc
8001F790: 807C0000   lwz   r3,0(r28)   r3 = 00000001   r28 = 805449F4   [805449F4] = 804D8060
8001F794: 3C630008   addis   r3,r3,8    r3 = 804D8060   r3 = 804D8060
8001F798: 80032564   lwz   r0,9572(r3)   r0 = 8001F788   r3 = 80558060   [8055A5C4] = 00000001
8001F79C: 2C00000E   cmpwi   r0,14    r0 = 00000001
8001F7A0: 4082022C   bne-   0x8001f9cc
   ...   ...   ...   ...
8001F9CC: 38000002   li   r0,2     r0 = 00000001
8001F9D0: 901C0270   stw   r0,624(r28)   r0 = 00000002   r28 = 805449F4   [80544C64] = 00000001when poked triggers the action to be done but staying in the item page
8001F9D4: 48000128   b   0x8001fafc
   ...   ...   ...   ...
8001FAFC: 7F83E378   mr   r3,r28     r3 = 80558060   r28 = 805449F4
8001FB00: 4800BAC9   bl   0x8002b5c8
| 8002B5C8: 9421FFE0   stwu   r1,-32(r1)   r1 = 802BA720   r1 = 802BA720   [802BA700] = 80000000
| 8002B5CC: 7C0802A6   mflr   r0     LR = 8001FB04   r0 = 00000002
| 8002B5D0: 90010024   stw   r0,36(r1)   r0 = 8001FB04   r1 = 802BA700   [802BA724] = 80001C3C
| 8002B5D4: 93E1001C   stw   r31,28(r1)   r31 = 00000004   r1 = 802BA700   [802BA71C] = 8001FB04
| 8002B5D8: 93C10018   stw   r30,24(r1)   r30 = 00000001   r1 = 802BA700   [802BA718] = 802BA720
| 8002B5DC: 3BC00000   li   r30,0    r30 = 00000001
| 8002B5E0: 93A10014   stw   r29,20(r1)   r29 = 00000000   r1 = 802BA700   [802BA714] = 00000004
| 8002B5E4: 3BA00000   li   r29,0    r29 = 00000000
| 8002B5E8: 93810010   stw   r28,16(r1)   r28 = 805449F4   r1 = 802BA700   [802BA710] = 00000001
| 8002B5EC: 7C7C1B78   mr   r28,r3     r28 = 805449F4   r3 = 805449F4
| 8002B5F0: 80E332BC   lwz   r7,12988(r3)   r7 = 00000052   r3 = 805449F4   [80547CB0] = FFFFFFFF
| 8002B5F4: 2C07FFFF   cmpwi   r7,-1    r7 = FFFFFFFF
| 8002B5F8: 4182041C   beq-   0x8002ba14
|     ...   ...   ...   ...
| 8002BA14: 80010024   lwz   r0,36(r1)   r0 = 8001FB04   r1 = 802BA700   [802BA724] = 8001FB04
| 8002BA18: 83E1001C   lwz   r31,28(r1)   r31 = 00000004   r1 = 802BA700   [802BA71C] = 00000004
| 8002BA1C: 83C10018   lwz   r30,24(r1)   r30 = 00000000   r1 = 802BA700   [802BA718] = 00000001
| 8002BA20: 83A10014   lwz   r29,20(r1)   r29 = 00000000   r1 = 802BA700   [802BA714] = 00000000
| 8002BA24: 83810010   lwz   r28,16(r1)   r28 = 805449F4   r1 = 802BA700   [802BA710] = 805449F4
| 8002BA28: 7C0803A6   mtlr   r0     LR = 8001FB04   r0 = 8001FB04
| 8002BA2C: 38210020   addi   r1,r1,32   r1 = 802BA700   r1 = 802BA700
| 8002BA30: 4E800020   blr        LR = 8001FB04
8001FB04: 801C3224   lwz   r0,12836(r28)   r0 = 8001FB04   r28 = 805449F4   [80547C18] = 00000004
8001FB08: 3B600000   li   r27,0    r27 = 801FB36C
8001FB0C: 7C000034   cntlzw   r0,r0    r0 = 00000004   r0 = 00000004
8001FB10: 541DD97E   rlwinm   r29,r0,27,5,31   r29 = 00000000   r0 = 0000001D
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 805449F4   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = FFFFFFFF   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 000000DE   r27 = 00000000
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000000   r27 = 00000000
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000001
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 0000002C   r27 = 00000001
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000001   r27 = 00000001
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000002
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 0000002D   r27 = 00000002
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000002   r27 = 00000002
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000003
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 0000002E   r27 = 00000003
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000003   r27 = 00000003
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000004
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 0000002F   r27 = 00000004
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000004   r27 = 00000004
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000005
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000030   r27 = 00000005
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000005   r27 = 00000005
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000006
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000031   r27 = 00000006
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000006   r27 = 00000006
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000007
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000032   r27 = 00000007
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000007   r27 = 00000007
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000008
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000033   r27 = 00000008
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000008   r27 = 00000008
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 00000009
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000034   r27 = 00000009
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 00000009   r27 = 00000009
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 0000000A
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000035   r27 = 0000000A
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 0000000A   r27 = 0000000A
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 0000000B
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000036   r27 = 0000000B
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 0000000B   r27 = 0000000B
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 0000000C
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000037   r27 = 0000000C
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 0000000C   r27 = 0000000C
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 0000000D
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000038   r27 = 0000000D
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 0000000D   r27 = 0000000D
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 0000000E
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 00000039   r27 = 0000000E
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
8001FB24: 3B7B0001   addi   r27,r27,1   r27 = 0000000E   r27 = 0000000E
8001FB28: 2C1B0020   cmpwi   r27,32     r27 = 0000000F
8001FB2C: 4180FFE8   blt+   0x8001fb14
   ...   ...   ...   ...
8001FB14: 807C0000   lwz   r3,0(r28)   r3 = 804D8060   r28 = 805449F4   [805449F4] = 804D8060
8001FB18: 7FA5EB78   mr   r5,r29     r5 = 00000000   r29 = 00000000
8001FB1C: 389B002C   addi   r4,r27,44   r4 = 0000003A   r27 = 0000000F
8001FB20: 4BFF8D45   bl   0x80018864
| 80018864: 4E800020   blr        LR = 8001FB24
[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: dcx2 on May 13, 2011, 04:48:18 PM

Your first function was cut short. Look at the caller. I bolded the actual instruction that calls the current function.

80062C24: 4BFD85E1 bl 0x8003b204

If you look at the address, it doesn't match the first address in the Copy Function. My bet is a conditional blr screwed it up.

8003B234: 7CE50214 add r7,r5,r0

There are 12 instructions missing. Those are probably what sets r6.

I'm curious, though, what's with the WBP? What you want to do is use RBPs to see who is reading the equipped item. One of the folks reading the equipped item will be testing to see if you have the Siren on.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 13, 2011, 05:08:52 PM

Siren Item
http://www.mediafire.com/?8rg6dcgto6e7nmv
trigger
http://www.mediafire.com/?paq9quxu8lfjvgw
trigger log attached
[spoiler] 800B8E14: 5464045E rlwinm r4,r3,0,17,15 r4 = 80FA92C0 r3 = 00008432 will continue on it's loop forever. Could this be what we are looking for?[/spoiler]

It's not an item that you can equip.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 14, 2011, 03:45:52 AM

New search, ~~found something maybe.~~ Encounter(SafeRoom)/Encounter(Encounter)

All Frames attached

whenever the avatar is in a save room it stores 3 to 800272CC: 90190368   stw   r0,872(r25) and 9 when the avatar may encounter enemies.

800272C8: 88030035   lbz   r0,53(r3) ---> li r0,3 = black screen when entering the encounter room.

8001EE30: 48007CA1   bl   0x80026ad0 ----> bl   0x80027F70= encounter still happens and 800272CC: 90190368   stw   r0,872(r25)= freezes at 80031510 with registers:[spoiler]CR:42000488 XER:00000000 CTR:8005E8FC DSIS:04000000
DAR:00000004 SRR0:80031510 SRR1:00008032 LR:8005E924
r0:00000006 r1:802BA5E0 r2:802B2020 r3:0000024C
r4:00000004 r5:00000001 r6:805449F4 r7:00000000
r8:65000000 r9:00000047 r10:00000004 r11:00000004
r12:00000004 r13:802B0C80 r14:00020000 r15:802A9570
r16:00000280 r17:000001C8 r18:00000000 r19:0000000C
r20:801FAF80 r21:80810000 r22:00000016 r23:000001C2
r24:00000009 r25:00000112 r26:802BA63C r27:8055A5C0
r28:00000000 r29:0000019C r30:8055A5C0 r31:00000000

f0:FFC00000 f1:3F800000 f2:00000000 f3:4F800000
f4:4F000000 f5:00000000 f6:00000000 f7:00000000
f8:00000000 f9:3F800000 f10:00000000 f11:3F800000
f12:00000000 f13:00000000 f14:00000000 f15:00000000
f16:00000000 f17:00000000 f18:00000000 f19:00000000
f20:00000000 f21:00000000 f22:00000000 f23:00000000
f24:00000000 f25:00000000 f26:3FAF286C f27:3F800000
f28:3F99999A f29:59800000 f30:3F000000 f31:59800004[/spoiler] and function[spoiler]800314EC: 1C040070   mulli   r0,r4,112
800314F0: 8083028C   lwz   r4,652(r3)
800314F4: 80E30378   lwz   r7,888(r3)
800314F8: 7CC30214   add   r6,r3,r0
800314FC: 80060514   lwz   r0,1300(r6)
80031500: 80A6050C   lwz   r5,1292(r6)
80031504: 7C6401D6   mullw   r3,r4,r0
80031508: 80060510   lwz   r0,1296(r6)
8003150C: 54A4103A   rlwinm   r4,r5,2,0,29
80031510: 7C87202E   lwzx   r4,r7,r4 srr0
80031514: 7C040214   add   r0,r4,r0
80031518: 7C6300AE   lbzx   r3,r3,r0
8003151C: 4E800020   blr
[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 15, 2011, 06:05:11 AM

I'm stumped, I can't seem to figure out the enemy approach process.
Methods:
1
A unknown value in town
B no moving equal
C moving equal
D out of town unequal
E no moving equal
F moving unequal
back to A

2
A out of town unknown
B Moving less than
C after battle unknown

what would work?

I just thought about the chocobos. They make it so there's no possibility to have an encounter.

Title: Re: No Enemy for FF4 After Years Pal
Post by: dcx2 on May 15, 2011, 07:16:22 PM

Figure out where the "I'm riding a chocobo" value is. Then set a RBP on it and see who asks "are you riding a chocobo?" when you're moving on the world map.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 16, 2011, 03:39:12 AM

Sounds do-able.

I brought it down to 52 possibilities with only one change. = (chocobo equal)x10+ and 1x(not equal to chocobo) + 1x(equal to not chocobo).

There's a few things here.
I could get into a battle and equal again/try the steps again.

I could change character and 1.equal to get what possibly be the enemy allow address
2. not equal and maybe get the character addresses

I could load another save and do the steps else where.

I could go into another scenario/town/mountain and 1.equal to get an enemy encounter address
2. not equal to get an enemy encounter.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 17, 2011, 04:39:12 PM

I finally went with loading another save and doing the steps again.
I end up with one address which changes the character. Unfortunately it does not make the enemy encounters.

80077A30: 7E46202E lwzx r18,r6,r4 this changes to the chocobo if li r18,29

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 17, 2011, 04:52:35 PM

here's the read with chocobo not equiped

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 17, 2011, 04:57:50 PM

there's the read with chocobo equiped

edit: there's multiple reads.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 17, 2011, 05:08:11 PM

here's the second read

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 17, 2011, 05:11:08 PM

r0 and r4 loads the value.

80067138: 8018F000 lwz r0,-4096(r24)
.....
80067178: 8098F000 lwz r4,-4096(r24)

the log has finished at 1300k

http://www.mediafire.com/?nac3fqr78j7823d

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 18, 2011, 06:40:59 AM

I'm stumped again. I can't find the right cmpw to initiate the no enemy. Shouldn't it be straight away, or at least in the first 100?? I can find differences in rooms/town/map but nothing when chocobo equipped vs not equipped.

have a look at this
[spoiler]80067494: 2C18FFFF   cmpwi   r24,-1    r24 = 00000001
80067498: 4082F9BC   bne+   0x80066e54
   ...   ...   ...   ...
80066E54: 5700103A   rlwinm   r0,r24,2,0,29   r0 = 800673A8   r24 = 00000001
80066E58: 7EFE0214   add   r23,r30,r0   r23 = 80519DDC   r30 = 80519DD4   r0 = 00000004
80066E5C: 84170008   lwzu   r0,8(r23)   r0 = 00000004   r23 = 80519DD8   [80519DE0] = 00000003
80066E60: 28000016   cmplwi   r0,22     r0 = 00000003
80066E64: 41810628   bgt-   0x8006748c
80066E68: 387BC860   subi   r3,r27,14240   r3 = 80529DDC   r27 = 801D0000
80066E6C: 5400103A   rlwinm   r0,r0,2,0,29   r0 = 00000003   r0 = 00000003
80066E70: 7C63002E   lwzx   r3,r3,r0   r3 = 801CC860   r3 = 801CC860   r0 = 0000000C
80066E74: 7C6903A6   mtctr   r3    r3 = 80067134
80066E78: 4E800420   bctr
80067134: 3F170001   addis   r24,r23,1   r24 = 00000001   r23 = 80519DE0

80067138: 8018F000   lwz   r0,-4096(r24)   r0 = 0000000C   r24 = 80529DE0   [80528DE0] = 0000001D

8006713C: 5400103A   rlwinm   r0,r0,2,0,29   r0 = 0000001D   r0 = 0000001D
80067140: 7C1F002E   lwzx   r0,r31,r0   r0 = 00000074   r31 = 804F5668   r0 = 00000074
80067144: 2C000000   cmpwi   r0,0    r0 = 80577AC0
80067148: 41820344   beq-   0x8006748c
8006714C: 80980800   lwz   r4,2048(r24)   r4 = 00000061   r24 = 80529DE0   [8052A5E0] = 00000001
80067150: 7EA3AB78   mr   r3,r21    r3 = 80067134   r21 = 804D8060
80067154: 4BFAD959   bl   0x80014aac
| 80014AAC: 90830018   stw   r4,24(r3)   r4 = 00000001   r3 = 804D8060   [804D8078] = 00000000
| 80014AB0: 4E800020   blr        LR = 80067158
80067158: 80B82000   lwz   r5,8192(r24)   r5 = 000001C9   r24 = 80529DE0   [8052BDE0] = 000000FF
8006715C: 7F14C378   mr   r20,r24    r20 = 801FAF80   r24 = 80529DE0
80067160: 2C0500FF   cmpwi   r5,255    r5 = 000000FF
80067164: 41820010   beq-   0x80067174
   ...   ...   ...   ...
80067174: 3D570001   addis   r10,r23,1   r10 = 80000000   r23 = 80519DE0

80067178: 8098F000   lwz   r4,-4096(r24)   r4 = 00000001   r24 = 80529DE0   [80528DE0] = 0000001D

8006717C: 812A9000   lwz   r9,-28672(r10)   r9 = 000001F6   r10 = 80529DE0   [80522DE0] = 00000010
80067180: 7EA3AB78   mr   r3,r21    r3 = 804D8060   r21 = 804D8060
80067184: 80B71800   lwz   r5,6144(r23)   r5 = 000000FF   r23 = 80519DE0   [8051B5E0] = 000000A0
80067188: 80D73000   lwz   r6,12288(r23)   r6 = 212051C9   r23 = 80519DE0   [8051CDE0] = 00000066
8006718C: 80F74800   lwz   r7,18432(r23)   r7 = CC010000   r23 = 80519DE0   [8051E5E0] = 00000000
80067190: 81176000   lwz   r8,24576(r23)   r8 = 80273588   r23 = 80519DE0   [8051FDE0] = 00000030
80067194: 814AA800   lwz   r10,-22528(r10)   r10 = 80529DE0   r10 = 80529DE0   [805245E0] = 00000018
80067198: 4BFAE3A9   bl   0x80015540
| 80015540: 9421FFE0   stwu   r1,-32(r1)   r1 = 802BA640   r1 = 802BA640   [802BA620] = 80000000
| 80015544: 7C0802A6   mflr   r0    LR = 8006719C   r0 = 80577AC0
| 80015548: 3D630002   addis   r11,r3,2   r11 = 80000150   r3 = 804D8060
| 8001554C: 7CEC3B78   mr   r12,r7    r12 = 00000000   r7 = 00000000
| 80015550: 90010024   stw   r0,36(r1)   r0 = 8006719C   r1 = 802BA620   [802BA644] = 80001C54
| 80015554: 5480103A   rlwinm   r0,r4,2,0,29   r0 = 8006719C   r4 = 0000001D
| 80015558: 7C8B0214   add   r4,r11,r0   r4 = 0000001D   r11 = 804F8060   r0 = 00000074
| 8001555C: 7D0B4378   mr   r11,r8    r11 = 804F8060   r8 = 00000030
| 80015560: 8084D608   lwz   r4,-10744(r4)   r4 = 804F80D4   r4 = 804F80D4   [804F56DC] = 80577AC0
| 80015564: 2C040000   cmpwi   r4,0    r4 = 80577AC0
| 80015568: 41820028   beq-   0x80015590
| 8001556C: 91210008   stw   r9,8(r1)   r9 = 00000010   r1 = 802BA620   [802BA628] = 3F000000
| 80015570: 7D274B78   mr   r7,r9     r7 = 00000000   r9 = 00000010
| 80015574: 38000001   li   r0,1    r0 = 00000074
| 80015578: 7D485378   mr   r8,r10    r8 = 00000030   r10 = 00000018
| 8001557C: 9141000C   stw   r10,12(r1)   r10 = 00000018   r1 = 802BA620   [802BA62C] = B60B0000
| 80015580: 7D896378   mr   r9,r12    r9 = 00000010   r12 = 00000000
| 80015584: 7D6A5B78   mr   r10,r11    r10 = 00000018   r11 = 00000030
| 80015588: 90010010   stw   r0,16(r1)   r0 = 00000001   r1 = 802BA620   [802BA630] = 80519DD4
| 8001558C: 4BFFFC1D   bl   0x800151a8[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 18, 2011, 07:35:07 AM

I decided to simply nop the callers bl and what happens is the avatar disappears. I've got the graphics' address.

edit:
This is the map's function
[spoiler]80069200: 9421FF50   stwu   r1,-176(r1)
| | | | | | 80069204: 7C0802A6   mflr   r0
| | | | | | 80069208: 900100B4   stw   r0,180(r1)
| | | | | | 8006920C: BF210094   stmw   r25,148(r1)
| | | | | | 80069210: 7C7F1B78   mr   r31,r3
| | | | | | 80069214: 48001FB1   bl   0x8006b1c4
| | | | | | 80069218: 801F0E80   lwz   r0,3712(r31)
| | | | | | 8006921C: 2C000001   cmpwi   r0,1
| | | | | | 80069220: 41820010   beq-   0x80069230
| | | | | | 80069224: 2C000003   cmpwi   r0,3
| | | | | | 80069228: 41820014   beq-   0x8006923c
| | | | | | 8006922C: 4800012C   b   0x80069358
| | | | | | 80069230: 7FE3FB78   mr   r3,r31
| | | | | | 80069234: 4800A6E1   bl   0x80073914 nopping this will stop the map from staying on. When the avatar comes out of a town/chocobo's home the map will appear but not stay on (turns black after a sec).[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 18, 2011, 07:41:13 AM

[spoiler]80069200: 9421FF50   stwu   r1,-176(r1)
| | | | | | 80069204: 7C0802A6   mflr   r0
| | | | | | 80069208: 900100B4   stw   r0,180(r1)
| | | | | | 8006920C: BF210094   stmw   r25,148(r1)
| | | | | | 80069210: 7C7F1B78   mr   r31,r3
| | | | | | 80069214: 48001FB1   bl   0x8006b1c4
| | | | | | 80069218: 801F0E80   lwz   r0,3712(r31)
| | | | | | 8006921C: 2C000001   cmpwi   r0,1
| | | | | | 80069220: 41820010   beq-   0x80069230
| | | | | | 80069224: 2C000003   cmpwi   r0,3
| | | | | | 80069228: 41820014   beq-   0x8006923c
| | | | | | 8006922C: 4800012C   b   0x80069358
| | | | | | 80069230: 7FE3FB78   mr   r3,r31
| | | | | | 80069234: 4800A6E1   bl   0x80073914[/spoiler]

80069214: 48001FB1   bl   0x8006b1c4 nopping this will stop directions (but still allow the map to appear).

80069234: 4800A6E1   bl   0x80073914 nopping this will stop the map from appearing and any directions to be noticed.

Further on

| | | | | | | | 80067154: 4BFAD959   bl   0x80014aac nopping this will stop the character from looking right.

80073B8C: 4BFA1E2D   bl   0x800159b8 nopping this will stop full screening the game

80073B90: 4BFA579D   bl   0x8001932c nopping this will default screening

| | | | | | 80069238: 48000120   b   0x80069358 nopping this will execute "sight" (this will automatically take you into the menu section and show you the whole map) neat! I'll do a button activation for this!

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 18, 2011, 09:32:43 AM

Sight(map) On/Off
281FB3DA 00000C00
04069238 60000000
CC000000 00000000
04069238 48000120
E0000000 80008000
It'll bring you to the menu. Exit the menu and you'll see the map instead of your avatar.
Button condition can be changed to whatever you like. It's now set as a+b.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 18, 2011, 02:32:49 PM

I decided that my search wasn't good enough so I did another search. This time when I poke it it equips the chocobo and the song and all (after I re-enter the map) Yay!.

Code to have chocobo on maps. [spoiler]I'm still working on having no monsters in dungeons.[/spoiler]
281FB3DA 00000C00
0406CC24 38000001
CC000000 00000000
0406CC24 38000000
E0000000 80008000

v2. Works better. Every time you exit a town/dungeon/etc. you will have chocobo equipped.
281FB3DA 00000C00
045442A8 00000001
CC000000 00000000
045442A8 00000000
E0000000 80008000

these codes don't seem to work all the time

I'm starting to think that this is not the chocobo's address again and more the map function.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 12:17:35 AM

here's all frames

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 12:19:53 AM

I made a log of the initial break (start to end function) but unfortunately, it loops on one of the addresses for ever. I left it run all night and it repeated the line over and over....

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 01:25:26 PM

Woh!! I don't know how I did it but there's a way to have the flying ship equipped after exiting a town.

either this
8006BDBC: 2C000006   cmpwi   r0,6
8006BDC0: 41820038   beq-   0x8006bdf8

or this

8006BE50: 546307FF   rlwinm.   r3,r3,0,31,31
8006BE54: 41820324   beq-   0x8006c178
it's this one.

Flying ship at exit
281FB3DA 00000C00
0406BDAC 38000001
0406BDB8 38000006
0406BE54 60000000
CC000000 00000000
0406BDAC 38000000
0406BDB8 38000000
0406BE54 41820324
E0000000 80008000
Do not re-embark

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 02:47:37 PM

I was able to do a log from the read to the end of the function, with and without the chocobo equipped.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 03:52:11 PM

8006C224: 90760F08 stw r3,3848(r22) r3 = 000014B5 r22 = 805428E0 [805437E8] = 000014B5
vs
8006C224: 90760F08 stw r3,3848(r22) r3 = 000003E8 r22 = 805428E0 [805437E8] = 000014B5
Allows for the avatar to enter towns and such. No effect on the chocobo.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 04:07:57 PM

beginning logs for the blr, it crashed for both.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 04:15:30 PM

8006B628: 807F0F00 lwz r3,3840(r31) r3 = 804D8060 r31 = 805428E0 [805437E0] = 00000004
or this one. They offer different music.
8006B68C: 801F0E90 lwz r0,3728(r31) r0 = 00000000 r31 = 805428E0 [80543770] = 00000000
This is the music selector. Let's test it out.

I'm thinking of doing this to it but it crashes...

[spoiler]stwu r1,-16(r1)
stw r14,8(r1)
mr r17,r3
lis r15, 0x801F
ori r15,r15,0xB3DA
li r16, 1024
cmpw r15,r16
beq COMPARE
bl END

COMPARE:
cmpw r17,3
bgt ZERO
b ADD

ZERO:
li r17,0
b END

ADD:
li r14,1
add r17,r17,r14
mr r3,r17

END:
lwz r14,8(r1)
addi r1,r1,16
[/spoiler]

I've changed it to this but still no luck
[spoiler]stwu r1,-16(r1)
stw r14,8(r1)
lwz r17,0(r0)
lis r15,-32737
ori r15,r15,46042
li r16,1024
cmpw r15,r16
beq- 0x08
bl 0x24
cmpw r17,r0
bgt- 0x08
b 0x0C
li r17,0
b 0x10
li r14,1
add r17,r17,r14
lwz r0,0(r17)
lwz r14,8(r1)
addi r1,r1,16
[/spoiler]

I really am getting down on not being able to do a music roller...
anyways.
you can simply choose your favorite song and stick to it if you'd like

0406B628 38600004
0=normal
1=Flying ship
2=Whale
3=Flying ship
4=chocobo
+=same things again

0406B68C 3800000x
0=normal map exploration
1=moon walk
2=underground walk
3=ceremonial
+=ceremonial

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 19, 2011, 05:17:37 PM

~~This stops the music from changing between towns/map/fights~~ no it doesn't..
0406B688 60000000

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 20, 2011, 09:56:13 AM

walk on top of grass
C2076CD8 00000002
38800000 90830078
60000000 00000000

Title: Re: No Enemy for FF4 After Years Pal
Post by: James0x57 on May 20, 2011, 02:13:25 PM

You need a code to walk on grass? o.O

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 20, 2011, 02:15:50 PM

Your tripping! [spoiler]instead of only seeing the head walk when you enter a forest you see the whole body as if it was walking on soil. So it looks like you are walking on grass[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: James0x57 on May 20, 2011, 02:35:48 PM

ohh haha

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 20, 2011, 03:28:11 PM

I'm going to do another search, I'm going tocompare the towns options vs the dungeons. I'm thinking that this will allow me to control the enounter()

Exit town/dungeon as flying sea ship can land only land on land. in Palom's quest it appears as a black hole which can land anywhere. My hypothesis is that the contraption type is contingent to the quest. Nonetheless it works. Do not reembark it though...
040746BC 40810008

Quote from: James0x57 on May 20, 2011, 02:35:48 PM
ohh haha

O0

Edit: Button conditioned
281FB3DA 00000C00
040746BC 40810008
CC000000 00000000
040746BC 40800008
E0000000 80008000

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 20, 2011, 04:15:56 PM

I did it!! I think anyone testing my codes??

no enemy encounters!!
04544C9C 00000000

what a journey...

Edit: Button Conditioned
281FB3DA yyyyxxxx
04544C9C 00000000
CC000000 00000000
04544C9C 00000008
E0000000 80008000

Title: Re: No Enemy for FF4 After Years Pal
Post by: James0x57 on May 20, 2011, 04:38:06 PM

Nice work man! ^^

Title: Re: No Enemy for FF4 After Years Pal
Post by: dcx2 on May 20, 2011, 05:14:39 PM

I'm glad you got your no encounters code. Sometimes it just takes some stumbling around. One thing you should be cautious of is trying to make a step log or all frames based on the wrong read or write breakpoint. Don't just settle for the *first* hit on a read or write breakpoint; always check for additional hits. Especially in RPGs, the same value can be read in three or four different places, and you might want that third hit instead of the first.

----

Quote from: Patedj on May 19, 2011, 04:15:30 PM
8006B628: 807F0F00 lwz r3,3840(r31) r3 = 804D8060 r31 = 805428E0 [805437E0] = 00000004
or this one. They offer different music.
8006B68C: 801F0E90 lwz r0,3728(r31) r0 = 00000000 r31 = 805428E0 [80543770] = 00000000
This is the music selector. Let's test it out.

I'm thinking of doing this to it but it crashes...

[spoiler]stwu r1,-16(r1)
stw r14,8(r1)
mr r17,r3
lis r15, 0x801F
ori r15,r15,0xB3DA
li r16, 1024
cmpw r15,r16
beq COMPARE
bl END

COMPARE:
cmpw r17,3
bgt ZERO
b ADD

ZERO:
li r17,0
b END

ADD:
li r14,1
add r17,r17,r14
mr r3,r17

END:
lwz r14,8(r1)
addi r1,r1,16
[/spoiler]
0406B628 38600004
0=normal
1=Flying ship
2=Whale
3=Flying ship
4=chocobo
+=same things again

0406B68C 3800000x
0=normal map exploration
1=moon walk
2=underground walk
3=ceremonial
+=ceremonial

Wow, I'm not even sure where to start. I'll give you credit for the attempted roller. Here are notes on what needs fixed.

[spoiler]stwu r1,-16(r1) # this only allocates 16 bytes, you need 80
stw r14,8(r1) # this should be stmw, otherwise this won't store r14-r31, but just r14
mr r17,r3 # r3 has not been loaded yet
lis r15, 0x801F
ori r15,r15,0xB3DA # where is the lhz that loads the current buttons?
li r16, 1024 # you should use hex notation; 0x400 means more than 1024
cmpw r15,r16 # this should be "cmpwi r15,0x400"; cmpw is two regs, cmpwi is reg and immediate
beq COMPARE
bl END # should be b, not bl!! could easily cause a crash

COMPARE:
cmpw r17,3 # should be cmpwi. this will be interpreted as cmpw r17,r3
bgt ZERO
b ADD

ZERO:
li r17,0
b END # will skip over mr r3,r17

ADD:
li r14,1
add r17,r17,r14 # can use addi instead
mr r3,r17

END:
lwz r14,8(r1) # should be lmw
addi r1,r1,16 # should be 80

# where is your original instruction?!
[/spoiler]

I've modified your code a bit. This assumes the hook 8006B628: 807F0F00 lwz r3,3840(r31). It also assumes that you found the "real" buttons, which have "button deltas" just after them.

[spoiler]
lwz r3,3840(r31) # run original instruction BEFORE the code
stwu r1,-80(r1) # create a stack frame
stmw r14,8(r1) # push r14-r31 onto the stack
lis r15, 0x801F # load r15 with button activator address
ori r15,r15,0xB3DA

# we only want to roll once per button press.
# however if we use 0(r15), we will roll once per frame while the button is held
# if 801FB3DA is the *real* buttons, then 801FB3DE is the deltas.
# deltas are only 1 for a single frame immediately after a button is pressed

lhz r15,4(r15) # get button delta values
cmpwi r15,0x400 # was B pressed? (you might want to make this 2 or more buttons to activate)
bne- _END # if B and only B is not pressed, do nothing

addi r3,r3,1 # increment current music
cmpwi r3,4 # are we <= 4?
ble- _STORE # if yes, go to store
li r3,0 # prevent "falling off the right"

_STORE:
stw r3,3840(r31) # update the currently selected music.

_END:
lmw r14,8(r1) # pop r14-r31 off the stack
addi r1,r1,80 # destroy the stack frame
[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 20, 2011, 07:43:33 PM

Thanks James, thanks dcx2.
wow that coding was full of errors lol. That'll teach me for doing coding late at night/early in the morning lol.

For some reason it's not working right... I'll figure it out when it's not 442 in the morning... micro sleep .. ok awesome!

Title: Re: No Enemy for FF4 After Years Pal
Post by: dcx2 on May 20, 2011, 07:49:12 PM

I can see a few instances where it might not work right, depending on how the code executes. Can you explain what's not working?

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 02:10:30 AM

It's not adding anything when the condition is on.

Edit:
I've done more tries and found that it simply doesn't change. It resets itself to 0. I can trigger it if I
lis r15, 0x801F
ori r15,r15,0xB3DA
lhz r15,0(r15)
but it'll reset itself right away.

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 02:37:19 AM

I think that's why I skipped the lwz in my attempt. I just wanted the register to transfer instead of loading.

The register is already loaded so I'm thinking I should find what stores 805437E0 and change that.

Here it is
8006BE20: 38000000   li   r0,0
8006BE24: 90160F00   stw   r0,3840(r22)

I'm thinking I can simply inject here. 8006BE20: 38000000   li   r0,0

With

stwu r1,-80(r1)
stmw r14,8(r1)
lis r15, 0x801F
ori r15,r15,0xB3DA
lhz r15,0(r15)
cmpwi r15,0x400
bne- _END
addi r0,r0,1
cmpwi r0,4
ble- _END
li r0,0

_END:

lmw r14,8(r1)
addi r1,r1,80

Edit: The same thing happens... I'm now thinking that a combination of the two will work. So something like...

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 02:51:51 AM

stwu r1,-80(r1)
stmw r14,8(r1)
lis r15, 0x801F
ori r15,r15,0xB3DA
lhz r15,0(r15)
cmpwi r15,0x400
bne- _END
addi r0,r0,1
cmpwi r0,4
ble- _STORE
li r0,0

_STORE:
stw r0,0(r3)
lis r16,0x8006
ori r16,r16,0xB628
stw r3,0(r16)
#I'm not sure how to do this... I'm thinking of changing the addresses command as li r3,0(r0) or something in the like so that the r3 that is loaded at 8006B628 is = to the r0.

_END:

lmw r14,8(r1)
addi r1,r1,80

But this crashed the game at

[spoiler]80001E40: 7D4802A6   mflr   r10
80001E44: 7C6903A6   mtctr   r3
80001E48: 39C00000   li   r14,0
80001E4C: 7C6C70AE   lbzx   r3,r12,r14
80001E50: 4800001D   bl   0x80001e6c
80001E54: 4182FFF8   beq+   0x80001e4c
80001E58: 39CE0001   addi   r14,r14,1
80001E5C: 4200FFF0   bdnz+   0x80001e4c
80001E60: 7D4803A6   mtlr   r10
80001E64: 4E800020   blr
[/spoiler] Which I think is a stage loader...

my conclusion... I'm working backwards... I'll write the code at 8006B628 instead and lwz r3 first then right r3 to r0 t0 8006BE20 and that'll do it for sure!

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 03:26:30 AM

lwz r3,3840(r31)
stwu r1,-80(r1)
stmw r14,8(r1)
lis r15, 0x801F
ori r15,r15,0xB3DA
lhz r15,0(r15)
cmpwi r15,0x400
bne- _END
addi r3,r3,1
cmpwi r3,4
ble- _STORE
li r3,0

_STORE:
stw r3,3840(r31)
lis r16,0x8006
ori r16,r16,0xBE20
b r16 #does this work?
lwz r0,0(r3)
_END:

lmw r14,8(r1)
addi r1,r1,80

It crashes here[spoiler]800B4CC0: 90830198   stw   r4,408(r3)
800B4CC4: 90A30004   stw   r5,4(r3)
800B4CC8: 39600000   li   r11,0
800B4CCC: 616B9032   ori   r11,r11,36914
800B4CD0: 9163019C   stw   r11,412(r3)
800B4CD4: 38000000   li   r0,0
800B4CD8: 90030080   stw   r0,128(r3)
800B4CDC: 9003008C   stw   r0,140(r3)
800B4CE0: 90430008   stw   r2,8(r3)
800B4CE4: 91A30034   stw   r13,52(r3)
800B4CE8: 9003000C   stw   r0,12(r3)
800B4CEC: 90030010   stw   r0,16(r3)
800B4CF0: 90030014   stw   r0,20(r3)
800B4CF4: 90030018   stw   r0,24(r3)
800B4CF8: 9003001C   stw   r0,28(r3)
800B4CFC: 90030020   stw   r0,32(r3)
800B4D00: 90030024   stw   r0,36(r3)
800B4D04: 90030028   stw   r0,40(r3)
800B4D08: 9003002C   stw   r0,44(r3)
800B4D0C: 90030030   stw   r0,48(r3)
800B4D10: 90030038   stw   r0,56(r3)
800B4D14: 9003003C   stw   r0,60(r3)
800B4D18: 90030040   stw   r0,64(r3)
800B4D1C: 90030044   stw   r0,68(r3)
800B4D20: 90030048   stw   r0,72(r3)
800B4D24: 9003004C   stw   r0,76(r3)
800B4D28: 90030050   stw   r0,80(r3)
800B4D2C: 90030054   stw   r0,84(r3)
800B4D30: 90030058   stw   r0,88(r3)
800B4D34: 9003005C   stw   r0,92(r3)
800B4D38: 90030060   stw   r0,96(r3)
800B4D3C: 90030064   stw   r0,100(r3)
800B4D40: 90030068   stw   r0,104(r3)
800B4D44: 9003006C   stw   r0,108(r3)
800B4D48: 90030070   stw   r0,112(r3)
800B4D4C: 90030074   stw   r0,116(r3)
800B4D50: 90030078   stw   r0,120(r3)
800B4D54: 9003007C   stw   r0,124(r3)
800B4D58: 900301A4   stw   r0,420(r3)
800B4D5C: 900301A8   stw   r0,424(r3)
800B4D60: 900301AC   stw   r0,428(r3)
800B4D64: 900301B0   stw   r0,432(r3)
800B4D68: 900301B4   stw   r0,436(r3)
800B4D6C: 900301B8   stw   r0,440(r3)
800B4D70: 900301BC   stw   r0,444(r3)
800B4D74: 900301C0   stw   r0,448(r3)
800B4D78: 4BFFFF24   b   0x800b4c9c
800B4D7C: 9421FD10   stwu   r1,-752(r1)
800B4D80: 7C0802A6   mflr   r0
800B4D84: 900102F4   stw   r0,756(r1)
800B4D88: 396102F0   addi   r11,r1,752
800B4D8C: 4801FBF1   bl   0x800d497c
800B4D90: 3F80801D   lis   r28,-32739
800B4D94: 7C7E1B78   mr   r30,r3
800B4D98: 3B9CD590   subi   r28,r28,10864
800B4D9C: 7FC4F378   mr   r4,r30
800B4DA0: 387C0000   addi   r3,r28,0
800B4DA4: 4CC63182   crclr   6,6
800B4DA8: 48000301   bl   0x800b50a8
800B4DAC: 7FDAF378   mr   r26,r30
800B4DB0: 3B200000   li   r25,0
800B4DB4: 811A0040   lwz   r8,64(r26)
800B4DB8: 7F24CB78   mr   r4,r25
800B4DBC: 80BA0000   lwz   r5,0(r26)
800B4DC0: 387C0048   addi   r3,r28,72
800B4DC4: 7D094378   mr   r9,r8
800B4DC8: 38F90010   addi   r7,r25,16
800B4DCC: 7CA62B78   mr   r6,r5
800B4DD0: 4CC63182   crclr   6,6
800B4DD4: 480002D5   bl   0x800b50a8
800B4DD8: 3B390001   addi   r25,r25,1
800B4DDC: 3B5A0004   addi   r26,r26,4
800B4DE0: 28190010   cmplwi   r25,16
800B4DE4: 4180FFD0   blt+   0x800b4db4
800B4DE8: 809E0084   lwz   r4,132(r30)
800B4DEC: 387C0078   addi   r3,r28,120
800B4DF0: 80BE0080   lwz   r5,128(r30)
800B4DF4: 4CC63182   crclr   6,6
800B4DF8: 480002B1   bl   0x800b50a8
800B4DFC: 809E0198   lwz   r4,408(r30)
800B4E00: 387C00A8   addi   r3,r28,168
800B4E04: 80BE019C   lwz   r5,412(r30)
800B4E08: 4CC63182   crclr   6,6
800B4E0C: 4800029D   bl   0x800b50a8
800B4E10: 387C00D8   addi   r3,r28,216
800B4E14: 4CC63182   crclr   6,6
800B4E18: 48000291   bl   0x800b50a8
800B4E1C: 7FDAF378   mr   r26,r30
800B4E20: 3B200000   li   r25,0
800B4E24: 80BA01A4   lwz   r5,420(r26)
800B4E28: 7F24CB78   mr   r4,r25
800B4E2C: 80FA01B4   lwz   r7,436(r26)
800B4E30: 387C00EC   addi   r3,r28,236
800B4E34: 38D90004   addi   r6,r25,4
800B4E38: 4CC63182   crclr   6,6
800B4E3C: 4800026D   bl   0x800b50a8
800B4E40: 3B390001   addi   r25,r25,1
800B4E44: 3B5A0004   addi   r26,r26,4
800B4E48: 28190004   cmplwi   r25,4
800B4E4C: 4180FFD8   blt+   0x800b4e24
800B4E50: A01E01A2   lhz   r0,418(r30)
800B4E54: 540007FF   rlwinm.   r0,r0,0,31,31
800B4E58: 41820118   beq-   0x800b4f70
800B4E5C: 48003FB5   bl   0x800b8e10
800B4E60: 3CC08000   lis   r6,-32768
800B4E64: 38A00000   li   r5,0
800B4E68: 836600D4   lwz   r27,212(r6)
800B4E6C: 38810008   addi   r4,r1,8
800B4E70: 7C7F1B78   mr   r31,r3
800B4E74: B0A101A8   sth   r5,424(r1)
800B4E78: B0A101AA   sth   r5,426(r1)
800B4E7C: 800600D8   lwz   r0,216(r6)
800B4E80: 7C040040   cmplw   r4,r0
800B4E84: 40820008   bne-   0x800b4e8c
800B4E88: 90A600D8   stw   r5,216(r6)
800B4E8C: 38610008   addi   r3,r1,8
800B4E90: 4BFFFBE5   bl   0x800b4a74
800B4E94: 387C0110   addi   r3,r28,272
800B4E98: 4CC63182   crclr   6,6
800B4E9C: 4800020D   bl   0x800b50a8
800B4EA0: 7FDAF378   mr   r26,r30
800B4EA4: 3B200000   li   r25,0
800B4EA8: C83A0098   lfd   f1,152(r26)
800B4EAC: 4801F9B1   bl   0x800d485c
800B4EB0: C83A0090   lfd   f1,144(r26)
800B4EB4: 7C7D1B78   mr   r29,r3
800B4EB8: 4801F9A5   bl   0x800d485c
800B4EBC: 7C651B78   mr   r5,r3
800B4EC0: 7F24CB78   mr   r4,r25
800B4EC4: 7FA7EB78   mr   r7,r29
800B4EC8: 387C0124   addi   r3,r28,292
800B4ECC: 38D90001   addi   r6,r25,1
800B4ED0: 4CC63182   crclr   6,6
800B4ED4: 480001D5   bl   0x800b50a8
800B4ED8: 3B390002   addi   r25,r25,2
800B4EDC: 3B5A0010   addi   r26,r26,16
800B4EE0: 28190020   cmplwi   r25,32
800B4EE4: 4180FFC4   blt+   0x800b4ea8
800B4EE8: 387C0140   addi   r3,r28,320
800B4EEC: 4CC63182   crclr   6,6
800B4EF0: 480001B9   bl   0x800b50a8
800B4EF4: 7FDAF378   mr   r26,r30
800B4EF8: 3B200000   li   r25,0
800B4EFC: C83A01D0   lfd   f1,464(r26)
800B4F00: 4801F95D   bl   0x800d485c
800B4F04: C83A01C8   lfd   f1,456(r26)
800B4F08: 7C7D1B78   mr   r29,r3
800B4F0C: 4801F951   bl   0x800d485c
800B4F10: 7C651B78   mr   r5,r3
800B4F14: 7F24CB78   mr   r4,r25
800B4F18: 7FA7EB78   mr   r7,r29
800B4F1C: 387C0154   addi   r3,r28,340
800B4F20: 38D90001   addi   r6,r25,1
800B4F24: 4CC63182   crclr   6,6
800B4F28: 48000181   bl   0x800b50a8
800B4F2C: 3B390002   addi   r25,r25,2
800B4F30: 3B5A0010   addi   r26,r26,16
800B4F34: 28190020   cmplwi   r25,32
800B4F38: 4180FFC4   blt+   0x800b4efc
800B4F3C: 38A00000   li   r5,0
800B4F40: 3C608000   lis   r3,-32768
800B4F44: B0A101A8   sth   r5,424(r1)
800B4F48: 38810008   addi   r4,r1,8
800B4F4C: B0A101AA   sth   r5,426(r1)
800B4F50: 800300D8   lwz   r0,216(r3)
800B4F54: 7C040040   cmplw   r4,r0
800B4F58: 40820008   bne-   0x800b4f60
800B4F5C: 90A300D8   stw   r5,216(r3)
800B4F60: 7F63DB78   mr   r3,r27
800B4F64: 4BFFFB11   bl   0x800b4a74
800B4F68: 7FE3FB78   mr   r3,r31
800B4F6C: 48003ECD   bl   0x800b8e38
800B4F70: 387C0174   addi   r3,r28,372
800B4F74: 4CC63182   crclr   6,6
800B4F78: 48000131   bl   0x800b50a8
800B4F7C: 833E0004   lwz   r25,4(r30)
800B4F80: 3B400000   li   r26,0
800B4F84: 48000020   b   0x800b4fa4
800B4F88: 80B90000   lwz   r5,0(r25)
800B4F8C: 7F24CB78   mr   r4,r25
800B4F90: 80D90004   lwz   r6,4(r25)
800B4F94: 387C019C   addi   r3,r28,412
800B4F98: 4CC63182   crclr   6,6
800B4F9C: 4800010D   bl   0x800b50a8
800B4FA0: 83390000   lwz   r25,0(r25)
800B4FA4: 2C190000   cmpwi   r25,0
800B4FA8: 4182001C   beq-   0x800b4fc4
800B4FAC: 3C190001   addis   r0,r25,1
800B4FB0: 2800FFFF   cmplwi   r0,65535
800B4FB4: 41820010   beq-   0x800b4fc4
800B4FB8: 281A0010   cmplwi   r26,16
800B4FBC: 3B5A0001   addi   r26,r26,1
800B4FC0: 4180FFC8   blt+   0x800b4f88
800B4FC4: 396102F0   addi   r11,r1,752
800B4FC8: 4801FA01   bl   0x800d49c8
800B4FCC: 800102F4   lwz   r0,756(r1)
800B4FD0: 7C0803A6   mtlr   r0
800B4FD4: 382102F0   addi   r1,r1,752
800B4FD8: 4E800020   blr
[/spoiler]
with these registers [spoiler] CR:84000488 XER:20000000 CTR:800DBE34 DSIS:04000000
DAR:7C651B78 SRR0:800B4F88 SRR1:00000032 LR:800B4FA0
r0:7C661B78 r1:802BA388 r2:802B2020 r3:FFFFFFFF
r4:FFFFFFFF r5:12900000 r6:801E09B0 r7:00000000
r8:0000000C r9:0000000C r10:00000000 r11:802BA390
r12:800DBE34 r13:802B0C80 r14:00020000 r15:00000400
r16:8006BE20 r17:000001C8 r18:00000000 r19:0000000C
r20:801FAF80 r21:00000000 r22:801FE200 r23:0000000C
r24:8020E7B0 r25:7C651B78 r26:00000005 r27:8020EB58
r28:801CD590 r29:FFFFFFFF r30:8020EB58 r31:00000000

f0:00000000 f1:38000001 f2:FFC00000 f3:4F800000
f4:4F000000 f5:00000000 f6:00000000 f7:59800004
f8:00000000 f9:00000000 f10:BF7FFFFE f11:3B888889
f12:3B4CCCCD f13:00000000 f14:00000000 f15:00000000
f16:00000000 f17:00000000 f18:00000000 f19:00000000
f20:00000000 f21:00000000 f22:00000000 f23:00000000
f24:00000000 f25:00000000 f26:3FAF286C f27:3F800000
f28:3F99999A f29:59800000 f30:3F000000 f31:59800004[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: dcx2 on May 21, 2011, 03:28:40 AM

That's the code handler's transmit function that you crashed in.

b r16 will not work. Only the CTR register can be an operand for a branch.

I think I understand why your roller isn't working. That breakpoint is probably only executed when music changes. I was under the impression it's always being changed.

You can try a normal WiiRD code type roller.

4E000004 00000000 # put address of hack into po
0406B628 38600000 # the hack
281FB3DA 00000400 # if button activator
A8000000 00000001 # if counter == 1 (makes it change once per press)
90010005 00000000 # gr5 = po
86010005 00000001 # [gr5] = [gr5] + 1
38000002 00000005 # if [po+2] == 5 (the immediate part of 38600000)
12000002 00000000 # [po+2] = 0
E0000000 80008000 # terminate 28, A8, and 38 if codes; reset po

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 03:31:05 AM

I was just about to thanks!

Works like a charm!

Music changes to ships version.
4E000004 00000000
0406B628 38600000
281FB3DA 00000400
A8000000 00000001
90010005 00000000
86010005 00000001
38000002 00000005
12000002 00000000
E0000000 80008000

And

Music Changes to other walking versions ie:ceremonial, underground,etc
4E000004 00000000
0406B68C 38000000
281FB3DA 00000400
A8000000 00000001
90010005 00000000
86010005 00000001
38000002 00000005
12000002 00000000
E0000000 80008000

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 03:50:52 AM

The r4 seems to be directly linked to the choice of music hear and it even triggers in town.

[spoiler]80066AB0: 38040001   addi   r0,r4,1
80066AB4: 28000042   cmplwi   r0,66
80066AB8: 4D810020   bgtlr-
[/spoiler]

LR 8006B6AC

[spoiler]8006B4A8: 9421FFE0   stwu   r1,-32(r1)
8006B4AC: 7C0802A6   mflr   r0
8006B4B0: 90010024   stw   r0,36(r1)
8006B4B4: 93E1001C   stw   r31,28(r1)
8006B4B8: 7C7F1B78   mr   r31,r3
8006B4BC: 93C10018   stw   r30,24(r1)
8006B4C0: 80030F54   lwz   r0,3924(r3)
8006B4C4: 2C000000   cmpwi   r0,0
8006B4C8: 4182023C   beq-   0x8006b704
8006B4CC: 48000389   bl   0x8006b854
8006B4D0: 2C030000   cmpwi   r3,0
8006B4D4: 4082000C   bne-   0x8006b4e0
8006B4D8: 38600000   li   r3,0
8006B4DC: 4800022C   b   0x8006b708
8006B4E0: 801F0E84   lwz   r0,3716(r31)
8006B4E4: 3BC00000   li   r30,0
8006B4E8: 93DF14C0   stw   r30,5312(r31)
8006B4EC: 540001CF   rlwinm.   r0,r0,0,7,7
8006B4F0: 41820110   beq-   0x8006b600
8006B4F4: 809F0E90   lwz   r4,3728(r31)
8006B4F8: 7FE3FB78   mr   r3,r31
8006B4FC: 4800AA65   bl   0x80075f60
8006B500: 93C10008   stw   r30,8(r1)
8006B504: 7FE3FB78   mr   r3,r31
8006B508: 38800001   li   r4,1
8006B50C: 38E00014   li   r7,20
8006B510: A8BF0FF4   lha   r5,4084(r31)
8006B514: 39000000   li   r8,0
8006B518: A8DF0FF6   lha   r6,4086(r31)
8006B51C: 39200000   li   r9,0
8006B520: 39400000   li   r10,0
8006B524: 48008FF9   bl   0x8007451c
8006B528: 7FE3FB78   mr   r3,r31
8006B52C: 38800014   li   r4,20
8006B530: 4BFFEC25   bl   0x8006a154
8006B534: 2C030000   cmpwi   r3,0
8006B538: 4082000C   bne-   0x8006b544
8006B53C: 38600000   li   r3,0
8006B540: 480001C8   b   0x8006b708
8006B544: A81F0FFE   lha   r0,4094(r31)
8006B548: 38600001   li   r3,1
8006B54C: 907F128C   stw   r3,4748(r31)
8006B550: 2C000001   cmpwi   r0,1
8006B554: 4082000C   bne-   0x8006b560
8006B558: 60600002   ori   r0,r3,2
8006B55C: 901F128C   stw   r0,4748(r31)
8006B560: 80DF0000   lwz   r6,0(r31)
8006B564: 7FE3FB78   mr   r3,r31
8006B568: 38800001   li   r4,1
8006B56C: 3CA60002   addis   r5,r6,2
8006B570: 8005B2C0   lwz   r0,-19776(r5)
8006B574: 1C000030   mulli   r0,r0,48
8006B578: 7CA50214   add   r5,r5,r0
8006B57C: 8005B2EC   lwz   r0,-19732(r5)
8006B580: 1C00026C   mulli   r0,r0,620
8006B584: 7CC60214   add   r6,r6,r0
8006B588: 80A61A98   lwz   r5,6808(r6)
8006B58C: 80C61A9C   lwz   r6,6812(r6)
8006B590: 4800865D   bl   0x80073bec
8006B594: A89F0FFE   lha   r4,4094(r31)
8006B598: 7FE3FB78   mr   r3,r31
8006B59C: A8BF0FF4   lha   r5,4084(r31)
8006B5A0: A8DF0FF6   lha   r6,4086(r31)
8006B5A4: A8FF0FF8   lha   r7,4088(r31)
8006B5A8: A91F0FFA   lha   r8,4090(r31)
8006B5AC: A93F0FFC   lha   r9,4092(r31)
8006B5B0: 480090A9   bl   0x80074658
8006B5B4: A89F0FF4   lha   r4,4084(r31)
8006B5B8: 7FE3FB78   mr   r3,r31
8006B5BC: A81F0FF6   lha   r0,4086(r31)
8006B5C0: 909F1234   stw   r4,4660(r31)
8006B5C4: 809F0E90   lwz   r4,3728(r31)
8006B5C8: 901F1238   stw   r0,4664(r31)
8006B5CC: 4BFFF669   bl   0x8006ac34
8006B5D0: 807F0E84   lwz   r3,3716(r31)
8006B5D4: 38A00000   li   r5,0
8006B5D8: 801F0E8C   lwz   r0,3724(r31)
8006B5DC: 5464020C   rlwinm   r4,r3,0,8,6
8006B5E0: 807F0000   lwz   r3,0(r31)
8006B5E4: 60001000   ori   r0,r0,4096
8006B5E8: 909F0E84   stw   r4,3716(r31)
8006B5EC: 901F0E8C   stw   r0,3724(r31)
8006B5F0: 808304BC   lwz   r4,1212(r3)
8006B5F4: 38840005   addi   r4,r4,5
8006B5F8: 4BFDA5D5   bl   0x80045bcc
8006B5FC: 480000DC   b   0x8006b6d8
8006B600: 7FE3FB78   mr   r3,r31
8006B604: 48000605   bl   0x8006bc08
8006B608: 801F0E8C   lwz   r0,3724(r31)
8006B60C: 38A00000   li   r5,0
8006B610: 807F0000   lwz   r3,0(r31)
8006B614: 54000146   rlwinm   r0,r0,0,5,3
8006B618: 901F0E8C   stw   r0,3724(r31)
8006B61C: 808304BC   lwz   r4,1212(r3)
8006B620: 38840005   addi   r4,r4,5
8006B624: 4BFDA5A9   bl   0x80045bcc
8006B628: 807F0F00   lwz   r3,3840(r31)
8006B62C: 546007FF   rlwinm.   r0,r3,0,31,31
8006B630: 4182001C   beq-   0x8006b64c
8006B634: 807F0000   lwz   r3,0(r31)
8006B638: 3880001D   li   r4,29
8006B63C: 3C630002   addis   r3,r3,2
8006B640: 3863DE08   subi   r3,r3,8696
8006B644: 4BFFB46D   bl   0x80066ab0
8006B648: 48000064   b   0x8006b6ac
8006B64C: 546007BD   rlwinm.   r0,r3,0,30,30
8006B650: 4182001C   beq-   0x8006b66c
8006B654: 807F0000   lwz   r3,0(r31)
8006B658: 38800028   li   r4,40
8006B65C: 3C630002   addis   r3,r3,2
8006B660: 3863DE08   subi   r3,r3,8696
8006B664: 4BFFB44D   bl   0x80066ab0
8006B668: 48000044   b   0x8006b6ac
8006B66C: 5460077B   rlwinm.   r0,r3,0,29,29
8006B670: 4182001C   beq-   0x8006b68c
8006B674: 807F0000   lwz   r3,0(r31)
8006B678: 3880000A   li   r4,10
8006B67C: 3C630002   addis   r3,r3,2
8006B680: 3863DE08   subi   r3,r3,8696
8006B684: 4BFFB42D   bl   0x80066ab0
8006B688: 48000024   b   0x8006b6ac
8006B68C: 38000001   li   r0,1
8006B690: 80BF0000   lwz   r5,0(r31)
8006B694: 7C7F0214   add   r3,r31,r0
8006B698: 888319DC   lbz   r4,6620(r3)
8006B69C: 3C650002   addis   r3,r5,2
8006B6A0: 3863DE08   subi   r3,r3,8696
8006B6A4: 7C840774   extsb   r4,r4
8006B6A8: 4BFFB409   bl   0x80066ab0
8006B6AC: 801F0EF0   lwz   r0,3824(r31)
8006B6B0: 38600000   li   r3,0
8006B6B4: 907F0F00   stw   r3,3840(r31)
8006B6B8: 540006B5   rlwinm.   r0,r0,0,26,26
8006B6BC: 4182001C   beq-   0x8006b6d8
8006B6C0: 801F0EA4   lwz   r0,3748(r31)
8006B6C4: 1C000060   mulli   r0,r0,96
8006B6C8: 7C7F0214   add   r3,r31,r0
8006B6CC: 8003122C   lwz   r0,4652(r3)
8006B6D0: 540007FA   rlwinm   r0,r0,0,31,29
8006B6D4: 9003122C   stw   r0,4652(r3)
8006B6D8: 801F0E8C   lwz   r0,3724(r31)
8006B6DC: 7FE3FB78   mr   r3,r31
8006B6E0: 54000354   rlwinm   r0,r0,0,13,10
8006B6E4: 901F0E8C   stw   r0,3724(r31)
8006B6E8: 4BFFE4DD   bl   0x80069bc4
8006B6EC: 38600000   li   r3,0
8006B6F0: 38000001   li   r0,1
8006B6F4: 907F0F54   stw   r3,3924(r31)
8006B6F8: 38600000   li   r3,0
8006B6FC: 901F0E80   stw   r0,3712(r31)
8006B700: 48000008   b   0x8006b708
8006B704: 38600001   li   r3,1
8006B708: 80010024   lwz   r0,36(r1)
8006B70C: 83E1001C   lwz   r31,28(r1)
8006B710: 83C10018   lwz   r30,24(r1)
8006B714: 7C0803A6   mtlr   r0
8006B718: 38210020   addi   r1,r1,32
8006B71C: 4E800020   blr
[/spoiler]

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 04:02:28 AM

I'm thinking to stop 8006B698: 888319DC   lbz   r4,6620(r3) ( it doesn't load in towns)
and changing it to

lbz   r4,6620(r3)
stwu r1,-80(r1)
stmw r14,8(r1)
lis r15, 0x801F
ori r15,r15,0xB3DA

lhz r15,4(r15)
cmpwi r15,0x400
bne- _END

addi r4,r4,1
cmpwi r4,66
ble- _STORE
li r4,0

_STORE:
stb   r4,6620(r3)

_END:
lmw r14,8(r1)
addi r1,r1,80

but in normal wiird code type

Title: Re: No Enemy for FF4 After Years Pal
Post by: Patedj on May 21, 2011, 04:07:24 AM

Yay!
Music roller + (b+u(when remote is held horizontally so technically it's right)
4E000004 00000000
0406B698 00000000
281FB3DA 00000402
A8000000 00000001
90010005 00000000
86010005 00000001
38000002 00000042
12000002 00000000
E0000000 80008000

it seems that when the register grows bigger than 66 it stops the music from reloading (except if you come into a town). So, the town's music determines the map's music. I think a neg. code will resolve the problem...

not sure how to do it... I've tried a few things like E2000000 00000000 but I I'm thinking it's not working right for the negative part... I remember doing something like this in the past but don't remember where.. Couldn't find it..

Basically I'd like to figure out how to implement the first part with a second part which would calculate the button activator =401 and add FFFFFFFF instead of 00000001. So add -1 instead of +1.

Edit: I figure that the compare is not right so I edited it

WiiRd forum

Wii & Gamecube Hacking => Wii Game hacking help => Topic started by: Patedj on May 13, 2011, 04:01:17 PM