Text only | Text with Images

WiiRd forum

Wii & Gamecube Hacking => Wii Game hacking help => Topic started by: Bully@Wiiplaza on June 08, 2012, 12:44:56 PM

Title: Modifying in-game function correctly (?) still freezes
Post by: Bully@Wiiplaza on June 08, 2012, 12:44:56 PM
I was hacking a bit PBR and noticed some weird problem with a code I wanted to make:

I set out rocks on my enemys field, he can spin them away. Therefore I tried to "nop" the instruction that "clears out" the rocks and it froze the game on execution of a lhz when the enemy planned to spin. I got sure that my hook only executes once and only for clearing the rocks, it does...
No other codes enabled.

Function #1
[spoiler]
 CR:44000000  XER:00000000  CTR:803D1C3C DSIS:02400000
DAR:9253B000 SRR0:803D1DB8 SRR1:00009032   LR:803D1C58
 r0:000001BE   r1:80F6FD28   r2:80648600   r3:00000000 # "Clear Rocks"
 r4:9253AE44   r5:00000001   r6:9253AE40   r7:46494D47
 r8:9253AE48   r9:91C8D890  r10:91C8E1D4  r11:80F6FDA8
r12:803D1C3C  r13:806452C0  r14:00000008  r15:00000002
r16:00000001  r17:00000004  r18:00000000  r19:00000004
r20:0000F100  r21:00000010  r22:00000003  r23:00010000
r24:918E7EE0  r25:00000000  r26:8048CDB4  r27:92538920
r28:00000004  r29:918E7EF4  r30:92538920  r31:9253AE40

803D1C3C:  9421FFF0   stwu   r1,-16(r1)
803D1C40:  7C0802A6   mflr   r0
803D1C44:  90010014   stw   r0,20(r1)
803D1C48:  93E1000C   stw   r31,12(r1)
803D1C4C:  7C9F2378   mr   r31,r4
803D1C50:  80840064   lwz   r4,100(r4)
803D1C54:  4BFDB091   bl   0x803acce4
803D1C58:  801F0064   lwz   r0,100(r31)
803D1C5C:  5465063E   rlwinm   r5,r3,0,24,31
803D1C60:  1C0000C0   mulli   r0,r0,192
803D1C64:  7C9F0214   add   r4,r31,r0
803D1C68:  80642DB0   lwz   r3,11696(r4)
803D1C6C:  54600425   rlwinm.   r0,r3,0,16,18
803D1C70:  41820044   beq-   0x803d1cb4
803D1C74:  546004DE   rlwinm   r0,r3,0,19,15
803D1C78:  7FE3FB78   mr   r3,r31
803D1C7C:  90042DB0   stw   r0,11696(r4)
803D1C80:  38800002   li   r4,2
803D1C84:  38A00074   li   r5,116
803D1C88:  801F0064   lwz   r0,100(r31)
803D1C8C:  1C0000C0   mulli   r0,r0,192
803D1C90:  7CDF0214   add   r6,r31,r0
803D1C94:  80062DCC   lwz   r0,11724(r6)
803D1C98:  540047BE   rlwinm   r0,r0,8,30,31
803D1C9C:  901F0118   stw   r0,280(r31)
803D1CA0:  A0062DEA   lhz   r0,11754(r6)
803D1CA4:  901F0124   stw   r0,292(r31)
803D1CA8:  4BFE8D45   bl   0x803ba9ec
803D1CAC:  38600000   li   r3,0
803D1CB0:  48000138   b   0x803d1de8
803D1CB4:  80642DC0   lwz   r3,11712(r4)
803D1CB8:  5460077B   rlwinm.   r0,r3,0,29,29
803D1CBC:  41820044   beq-   0x803d1d00
803D1CC0:  546307B8   rlwinm   r3,r3,0,30,28
803D1CC4:  38000049   li   r0,73
803D1CC8:  90642DC0   stw   r3,11712(r4)
803D1CCC:  7FE3FB78   mr   r3,r31
803D1CD0:  38800002   li   r4,2
803D1CD4:  38A00075   li   r5,117
803D1CD8:  80DF0064   lwz   r6,100(r31)
803D1CDC:  1CC600C0   mulli   r6,r6,192
803D1CE0:  7CFF3214   add   r7,r31,r6
803D1CE4:  80C72DC0   lwz   r6,11712(r7)
803D1CE8:  54C6003A   rlwinm   r6,r6,0,0,29
803D1CEC:  90C72DC0   stw   r6,11712(r7)
803D1CF0:  901F0124   stw   r0,292(r31)
803D1CF4:  4BFE8CF9   bl   0x803ba9ec
803D1CF8:  38600000   li   r3,0
803D1CFC:  480000EC   b   0x803d1de8
803D1D00:  54A01838   rlwinm   r0,r5,3,0,28
803D1D04:  7D1F0214   add   r8,r31,r0
803D1D08:  806801C8   lwz   r3,456(r8)
803D1D0C:  546017BF   rlwinm.   r0,r3,2,30,31
803D1D10:  41820044   beq-   0x803d1d54
803D1D14:  54A3103A   rlwinm   r3,r5,2,0,29
803D1D18:  380000BF   li   r0,191
803D1D1C:  7CFF1A14   add   r7,r31,r3
803D1D20:  38800002   li   r4,2
803D1D24:  80C701BC   lwz   r6,444(r7)
803D1D28:  7FE3FB78   mr   r3,r31
803D1D2C:  38A00075   li   r5,117
803D1D30:  54C607B8   rlwinm   r6,r6,0,30,28
803D1D34:  90C701BC   stw   r6,444(r7)
803D1D38:  80C801C8   lwz   r6,456(r8)
803D1D3C:  54C600BE   rlwinm   r6,r6,0,2,31
803D1D40:  90C801C8   stw   r6,456(r8)
803D1D44:  901F0124   stw   r0,292(r31)
803D1D48:  4BFE8CA5   bl   0x803ba9ec
803D1D4C:  38600000   li   r3,0
803D1D50:  48000098   b   0x803d1de8
803D1D54:  546027BF   rlwinm.   r0,r3,4,30,31
803D1D58:  41820044   beq-   0x803d1d9c
803D1D5C:  54A3103A   rlwinm   r3,r5,2,0,29
803D1D60:  38000186   li   r0,390
803D1D64:  7CFF1A14   add   r7,r31,r3
803D1D68:  38800002   li   r4,2
803D1D6C:  80C701BC   lwz   r6,444(r7)
803D1D70:  7FE3FB78   mr   r3,r31
803D1D74:  38A00075   li   r5,117
803D1D78:  54C605A8   rlwinm   r6,r6,0,22,20
803D1D7C:  90C701BC   stw   r6,444(r7)
803D1D80:  80C801C8   lwz   r6,456(r8)
803D1D84:  54C60102   rlwinm   r6,r6,0,4,1
803D1D88:  90C801C8   stw   r6,456(r8)
803D1D8C:  901F0124   stw   r0,292(r31)
803D1D90:  4BFE8C5D   bl   0x803ba9ec
803D1D94:  38600000   li   r3,0
803D1D98:  48000050   b   0x803d1de8
803D1D9C:  54A0103A   rlwinm   r0,r5,2,0,29
803D1DA0:  7C9F0214   add   r4,r31,r0
803D1DA4:  806401BC   lwz   r3,444(r4)
803D1DA8:  54600631   rlwinm.   r0,r3,0,24,24
803D1DAC:  4182002C   beq-   0x803d1dd8
803D1DB0:  5463066E   rlwinm   r3,r3,0,25,23 # sets up new value
803D1DB4:  380001BE   li   r0,446
803D1DB8:  906401BC   stw   r3,444(r4) # nop
803D1DBC:  7FE3FB78   mr   r3,r31
803D1DC0:  38800002   li   r4,2
803D1DC4:  38A00075   li   r5,117
803D1DC8:  901F0124   stw   r0,292(r31)
803D1DCC:  4BFE8C21   bl   0x803ba9ec
803D1DD0:  38600000   li   r3,0
803D1DD4:  48000014   b   0x803d1de8
803D1DD8:  809F00B4   lwz   r4,180(r31)
803D1DDC:  38600000   li   r3,0
803D1DE0:  38040001   addi   r0,r4,1
803D1DE4:  901F00B4   stw   r0,180(r31)
803D1DE8:  80010014   lwz   r0,20(r1)
803D1DEC:  83E1000C   lwz   r31,12(r1)
803D1DF0:  7C0803A6   mtlr   r0
803D1DF4:  38210010   addi   r1,r1,16
803D1DF8:  4E800020   blr   
[/spoiler]Function #2
[spoiler]
 CR:84000000  XER:20000000  CTR:00000007 DSIS:04000000
DAR:9E4C8C79 SRR0:803E023C SRR1:00009032   LR:803DFEFC
 r0:803DFEE0   r1:80F6FCA8   r2:80648600   r3:9E4C8C79
 r4:000000FF   r5:80497FF0   r6:00000002   r7:00000BD9
 r8:00000001   r9:00000000  r10:925EF060  r11:80F6FCD8
r12:925452EC  r13:806452C0  r14:00000008  r15:00000002
r16:00000001  r17:00000004  r18:00000000  r19:00000004
r20:0000F100  r21:00000010  r22:00000003  r23:00010000
r24:918E7EE0  r25:00000000  r26:00000001  r27:92538920
r28:92544A40  r29:00000005  r30:80F6FCC4  r31:80F6FCC0

803E023C:  A0A30000   lhz   r5,0(r3) # Crash
803E0240:  38C00000   li   r6,0
803E0244:  7C8903A6   mtctr   r4
803E0248:  28040000   cmplwi   r4,0
803E024C:  40810060   ble-   0x803e02ac
803E0250:  2C060000   cmpwi   r6,0
803E0254:  41820034   beq-   0x803e0288
803E0258:  2805FFFF   cmplwi   r5,65535
803E025C:  41820010   beq-   0x803e026c
803E0260:  A0030000   lhz   r0,0(r3)
803E0264:  2C000000   cmpwi   r0,0
803E0268:  41820018   beq-   0x803e0280
803E026C:  2805FFFF   cmplwi   r5,65535
803E0270:  4082002C   bne-   0x803e029c
803E0274:  A0030000   lhz   r0,0(r3)
803E0278:  2800FFFF   cmplwi   r0,65535
803E027C:  40820020   bne-   0x803e029c
803E0280:  7CC33378   mr   r3,r6
803E0284:  4E800020   blr   [/spoiler]
What could it be?
Title: Re: Modifying in-game function correctly (?) still freezes
Post by: dcx2 on June 08, 2012, 04:31:46 PM
The value stored in r3 must be important somehow, and your crash is probably trying to read whatever was supposed to be over-written (perhaps an address of some sort?).  The surrounding code must "activate" something which causes the stored value to be re-used later.

There are two options.

1) XBP on 803D1DB8, then RBP on 444(r4).  In other words, "who is reading this stored value later?"

2) The only path to this section of code is via 803D1D58:  41820044   beq-   0x803d1d9c.

2a) You could either try to nop this (uncertain of what the consequences are; XBP on 803D1D5C and play around until you hit a BP to see what this path does)

2b) Or you could try to replace it with b 0x803d1de8.  This takes it to the end of the function, as shown by other code paths.  However, it looks like this wants to return a value, as well, so perhaps you should b 0x803d1dd0 instead, which will set a return value and branch to the function epilogue for you.
Title: Re: Modifying in-game function correctly (?) still freezes
Post by: Bully@Wiiplaza on June 08, 2012, 06:38:53 PM
1) There are two instructions that read from "444 (r3)" after the XBP:

Function #1
[spoiler]803D1C3C:  9421FFF0   stwu   r1,-16(r1)
803D1C40:  7C0802A6   mflr   r0
803D1C44:  90010014   stw   r0,20(r1)
803D1C48:  93E1000C   stw   r31,12(r1)
803D1C4C:  7C9F2378   mr   r31,r4
803D1C50:  80840064   lwz   r4,100(r4)
803D1C54:  4BFDB091   bl   0x803acce4
803D1C58:  801F0064   lwz   r0,100(r31)
803D1C5C:  5465063E   rlwinm   r5,r3,0,24,31
803D1C60:  1C0000C0   mulli   r0,r0,192
803D1C64:  7C9F0214   add   r4,r31,r0
803D1C68:  80642DB0   lwz   r3,11696(r4)
803D1C6C:  54600425   rlwinm.   r0,r3,0,16,18
803D1C70:  41820044   beq-   0x803d1cb4
803D1C74:  546004DE   rlwinm   r0,r3,0,19,15
803D1C78:  7FE3FB78   mr   r3,r31
803D1C7C:  90042DB0   stw   r0,11696(r4)
803D1C80:  38800002   li   r4,2
803D1C84:  38A00074   li   r5,116
803D1C88:  801F0064   lwz   r0,100(r31)
803D1C8C:  1C0000C0   mulli   r0,r0,192
803D1C90:  7CDF0214   add   r6,r31,r0
803D1C94:  80062DCC   lwz   r0,11724(r6)
803D1C98:  540047BE   rlwinm   r0,r0,8,30,31
803D1C9C:  901F0118   stw   r0,280(r31)
803D1CA0:  A0062DEA   lhz   r0,11754(r6)
803D1CA4:  901F0124   stw   r0,292(r31)
803D1CA8:  4BFE8D45   bl   0x803ba9ec
803D1CAC:  38600000   li   r3,0
803D1CB0:  48000138   b   0x803d1de8
803D1CB4:  80642DC0   lwz   r3,11712(r4)
803D1CB8:  5460077B   rlwinm.   r0,r3,0,29,29
803D1CBC:  41820044   beq-   0x803d1d00
803D1CC0:  546307B8   rlwinm   r3,r3,0,30,28
803D1CC4:  38000049   li   r0,73
803D1CC8:  90642DC0   stw   r3,11712(r4)
803D1CCC:  7FE3FB78   mr   r3,r31
803D1CD0:  38800002   li   r4,2
803D1CD4:  38A00075   li   r5,117
803D1CD8:  80DF0064   lwz   r6,100(r31)
803D1CDC:  1CC600C0   mulli   r6,r6,192
803D1CE0:  7CFF3214   add   r7,r31,r6
803D1CE4:  80C72DC0   lwz   r6,11712(r7)
803D1CE8:  54C6003A   rlwinm   r6,r6,0,0,29
803D1CEC:  90C72DC0   stw   r6,11712(r7)
803D1CF0:  901F0124   stw   r0,292(r31)
803D1CF4:  4BFE8CF9   bl   0x803ba9ec
803D1CF8:  38600000   li   r3,0
803D1CFC:  480000EC   b   0x803d1de8
803D1D00:  54A01838   rlwinm   r0,r5,3,0,28
803D1D04:  7D1F0214   add   r8,r31,r0
803D1D08:  806801C8   lwz   r3,456(r8)
803D1D0C:  546017BF   rlwinm.   r0,r3,2,30,31
803D1D10:  41820044   beq-   0x803d1d54
803D1D14:  54A3103A   rlwinm   r3,r5,2,0,29
803D1D18:  380000BF   li   r0,191
803D1D1C:  7CFF1A14   add   r7,r31,r3
803D1D20:  38800002   li   r4,2
803D1D24:  80C701BC   lwz   r6,444(r7)
803D1D28:  7FE3FB78   mr   r3,r31
803D1D2C:  38A00075   li   r5,117
803D1D30:  54C607B8   rlwinm   r6,r6,0,30,28
803D1D34:  90C701BC   stw   r6,444(r7)
803D1D38:  80C801C8   lwz   r6,456(r8)
803D1D3C:  54C600BE   rlwinm   r6,r6,0,2,31
803D1D40:  90C801C8   stw   r6,456(r8)
803D1D44:  901F0124   stw   r0,292(r31)
803D1D48:  4BFE8CA5   bl   0x803ba9ec
803D1D4C:  38600000   li   r3,0
803D1D50:  48000098   b   0x803d1de8
803D1D54:  546027BF   rlwinm.   r0,r3,4,30,31
803D1D58:  41820044   beq-   0x803d1d9c
803D1D5C:  54A3103A   rlwinm   r3,r5,2,0,29
803D1D60:  38000186   li   r0,390
803D1D64:  7CFF1A14   add   r7,r31,r3
803D1D68:  38800002   li   r4,2
803D1D6C:  80C701BC   lwz   r6,444(r7)
803D1D70:  7FE3FB78   mr   r3,r31
803D1D74:  38A00075   li   r5,117
803D1D78:  54C605A8   rlwinm   r6,r6,0,22,20
803D1D7C:  90C701BC   stw   r6,444(r7)
803D1D80:  80C801C8   lwz   r6,456(r8)
803D1D84:  54C60102   rlwinm   r6,r6,0,4,1
803D1D88:  90C801C8   stw   r6,456(r8)
803D1D8C:  901F0124   stw   r0,292(r31)
803D1D90:  4BFE8C5D   bl   0x803ba9ec
803D1D94:  38600000   li   r3,0
803D1D98:  48000050   b   0x803d1de8
803D1D9C:  54A0103A   rlwinm   r0,r5,2,0,29
803D1DA0:  7C9F0214   add   r4,r31,r0
803D1DA4:  806401BC   lwz   r3,444(r4) # Break 1
803D1DA8:  54600631   rlwinm.   r0,r3,0,24,24
803D1DAC:  4182002C   beq-   0x803d1dd8
803D1DB0:  5463066E   rlwinm   r3,r3,0,25,23
803D1DB4:  380001BE   li   r0,446
803D1DB8:  906401BC   stw   r3,444(r4)
803D1DBC:  7FE3FB78   mr   r3,r31
803D1DC0:  38800002   li   r4,2
803D1DC4:  38A00075   li   r5,117
803D1DC8:  901F0124   stw   r0,292(r31)
803D1DCC:  4BFE8C21   bl   0x803ba9ec
803D1DD0:  38600000   li   r3,0
803D1DD4:  48000014   b   0x803d1de8
803D1DD8:  809F00B4   lwz   r4,180(r31)
803D1DDC:  38600000   li   r3,0
803D1DE0:  38040001   addi   r0,r4,1
803D1DE4:  901F00B4   stw   r0,180(r31)
803D1DE8:  80010014   lwz   r0,20(r1)
803D1DEC:  83E1000C   lwz   r31,12(r1)
803D1DF0:  7C0803A6   mtlr   r0
803D1DF4:  38210010   addi   r1,r1,16
803D1DF8:  4E800020   blr[/spoiler]Function #2[spoiler]803BBB80:  9421FF90   stwu   r1,-112(r1)
803BBB84:  7C0802A6   mflr   r0
803BBB88:  90010074   stw   r0,116(r1)
803BBB8C:  39610070   addi   r11,r1,112
803BBB90:  4BE0B565   bl   0x801c70f4
803BBB94:  1FE500C0   mulli   r31,r5,192
803BBB98:  7C6F1B78   mr   r15,r3
803BBB9C:  38000000   li   r0,0
803BBBA0:  90E10008   stw   r7,8(r1)
803BBBA4:  7CB12B78   mr   r17,r5
803BBBA8:  7C64FA14   add   r3,r4,r31
803BBBAC:  80A32D8C   lwz   r5,11660(r3)
803BBBB0:  7C902378   mr   r16,r4
803BBBB4:  B0010012   sth   r0,18(r1)
803BBBB8:  38000000   li   r0,0
803BBBBC:  2C050000   cmpwi   r5,0
803BBBC0:  7CD23378   mr   r18,r6
803BBBC4:  B0010010   sth   r0,16(r1)
803BBBC8:  38000000   li   r0,0
803BBBCC:  3BA00000   li   r29,0
803BBBD0:  3B000000   li   r24,0
803BBBD4:  9801000D   stb   r0,13(r1)
803BBBD8:  38000000   li   r0,0
803BBBDC:  3AE00000   li   r23,0
803BBBE0:  3AC00000   li   r22,0
803BBBE4:  9801000C   stb   r0,12(r1)
803BBBE8:  3AA00000   li   r21,0
803BBBEC:  40820020   bne-   0x803bbc0c
803BBBF0:  1C0600C0   mulli   r0,r6,192
803BBBF4:  7C640214   add   r3,r4,r0
803BBBF8:  80032D8C   lwz   r0,11660(r3)
803BBBFC:  2C000000   cmpwi   r0,0
803BBC00:  4182000C   beq-   0x803bbc0c
803BBC04:  38600001   li   r3,1
803BBC08:  48000830   b   0x803bc438
803BBC0C:  2C050000   cmpwi   r5,0
803BBC10:  41820020   beq-   0x803bbc30
803BBC14:  1C0600C0   mulli   r0,r6,192
803BBC18:  7C640214   add   r3,r4,r0
803BBC1C:  80032D8C   lwz   r0,11660(r3)
803BBC20:  2C000000   cmpwi   r0,0
803BBC24:  4082000C   bne-   0x803bbc30
803BBC28:  38600000   li   r3,0
803BBC2C:  4800080C   b   0x803bc438
803BBC30:  7E038378   mr   r3,r16
803BBC34:  7E248B78   mr   r4,r17
803BBC38:  48003EE1   bl   0x803bfb18
803BBC3C:  5474063E   rlwinm   r20,r3,0,24,31
803BBC40:  7E038378   mr   r3,r16
803BBC44:  7E449378   mr   r4,r18
803BBC48:  48003ED1   bl   0x803bfb18
803BBC4C:  5473063E   rlwinm   r19,r3,0,24,31
803BBC50:  7E038378   mr   r3,r16
803BBC54:  7E248B78   mr   r4,r17
803BBC58:  48008115   bl   0x803c3d6c
803BBC5C:  7C601B78   mr   r0,r3
803BBC60:  80702120   lwz   r3,8480(r16)
803BBC64:  5404043E   rlwinm   r4,r0,0,16,31
803BBC68:  4801DB05   bl   0x803d976c
803BBC6C:  38800001   li   r4,1
803BBC70:  4801D5BD   bl   0x803d922c
803BBC74:  547A063E   rlwinm   r26,r3,0,24,31
803BBC78:  7E038378   mr   r3,r16
803BBC7C:  7E248B78   mr   r4,r17
803BBC80:  38A00000   li   r5,0
803BBC84:  4800847D   bl   0x803c4100
803BBC88:  5460063E   rlwinm   r0,r3,0,24,31
803BBC8C:  7E038378   mr   r3,r16
803BBC90:  9801000F   stb   r0,15(r1)
803BBC94:  7E449378   mr   r4,r18
803BBC98:  480080D5   bl   0x803c3d6c
803BBC9C:  7C601B78   mr   r0,r3
803BBCA0:  80702120   lwz   r3,8480(r16)
803BBCA4:  5404043E   rlwinm   r4,r0,0,16,31
803BBCA8:  4801DAC5   bl   0x803d976c
803BBCAC:  38800001   li   r4,1
803BBCB0:  4801D57D   bl   0x803d922c
803BBCB4:  5479063E   rlwinm   r25,r3,0,24,31
803BBCB8:  7E038378   mr   r3,r16
803BBCBC:  7E449378   mr   r4,r18
803BBCC0:  38A00000   li   r5,0
803BBCC4:  4800843D   bl   0x803c4100
803BBCC8:  1FD200C0   mulli   r30,r18,192
803BBCCC:  5460063E   rlwinm   r0,r3,0,24,31
803BBCD0:  7C90FA14   add   r4,r16,r31
803BBCD4:  9801000E   stb   r0,14(r1)
803BBCD8:  89C42D5B   lbz   r14,11611(r4)
803BBCDC:  7E038378   mr   r3,r16
803BBCE0:  7C90F214   add   r4,r16,r30
803BBCE4:  7DCE0774   extsb   r14,r14
803BBCE8:  8B642D5B   lbz   r27,11611(r4)
803BBCEC:  7E248B78   mr   r4,r17
803BBCF0:  7F7B0774   extsb   r27,r27
803BBCF4:  48003E25   bl   0x803bfb18
803BBCF8:  5460063E   rlwinm   r0,r3,0,24,31
803BBCFC:  28000056   cmplwi   r0,86
803BBD00:  40820028   bne-   0x803bbd28
803BBD04:  380EFFFA   subi   r0,r14,6
803BBD08:  5403083C   rlwinm   r3,r0,1,0,30
803BBD0C:  39C30006   addi   r14,r3,6
803BBD10:  2C0E000C   cmpwi   r14,12
803BBD14:  40810008   ble-   0x803bbd1c
803BBD18:  39C0000C   li   r14,12
803BBD1C:  2C0E0000   cmpwi   r14,0
803BBD20:  40800008   bge-   0x803bbd28
803BBD24:  39C00000   li   r14,0
803BBD28:  7E038378   mr   r3,r16
803BBD2C:  7E449378   mr   r4,r18
803BBD30:  48003DE9   bl   0x803bfb18
803BBD34:  5460063E   rlwinm   r0,r3,0,24,31
803BBD38:  28000056   cmplwi   r0,86
803BBD3C:  40820028   bne-   0x803bbd64
803BBD40:  381BFFFA   subi   r0,r27,6
803BBD44:  5403083C   rlwinm   r3,r0,1,0,30
803BBD48:  3B630006   addi   r27,r3,6
803BBD4C:  2C1B000C   cmpwi   r27,12
803BBD50:  40810008   ble-   0x803bbd58
803BBD54:  3B60000C   li   r27,12
803BBD58:  2C1B0000   cmpwi   r27,0
803BBD5C:  40800008   bge-   0x803bbd64
803BBD60:  3B600000   li   r27,0
803BBD64:  3CC08040   lis   r6,-32704
803BBD68:  7C90FA14   add   r4,r16,r31
803BBD6C:  7C70F214   add   r3,r16,r30
803BBD70:  55C0083C   rlwinm   r0,r14,1,0,30
803BBD74:  A1032D46   lhz   r8,11590(r3)
803BBD78:  38C65402   addi   r6,r6,21506
803BBD7C:  5767083C   rlwinm   r7,r27,1,0,30
803BBD80:  A1242D46   lhz   r9,11590(r4)
803BBD84:  7C860214   add   r4,r6,r0
803BBD88:  7C0600AE   lbzx   r0,r6,r0
803BBD8C:  7CA63A14   add   r5,r6,r7
803BBD90:  7CE638AE   lbzx   r7,r6,r7
803BBD94:  7D4901D6   mullw   r10,r9,r0
803BBD98:  89240001   lbz   r9,1(r4)
803BBD9C:  88050001   lbz   r0,1(r5)
803BBDA0:  7DE37B78   mr   r3,r15
803BBDA4:  7E048378   mr   r4,r16
803BBDA8:  38A00008   li   r5,8
803BBDAC:  7D0839D6   mullw   r8,r8,r7
803BBDB0:  38C00000   li   r6,0
803BBDB4:  38E0000D   li   r7,13
803BBDB8:  7F8A4BD6   divw   r28,r10,r9
803BBDBC:  7F6803D6   divw   r27,r8,r0
803BBDC0:  480035C1   bl   0x803bf380
803BBDC4:  2C030000   cmpwi   r3,0
803BBDC8:  4082007C   bne-   0x803bbe44
803BBDCC:  7DE37B78   mr   r3,r15
803BBDD0:  7E048378   mr   r4,r16
803BBDD4:  38A00008   li   r5,8[/spoiler]
Title: Re: Modifying in-game function correctly (?) still freezes
Post by: Bully@Wiiplaza on June 08, 2012, 06:40:04 PM
Limit exceeded <.<
[spoiler]803BBDD8:  38C00000   li   r6,0
803BBDDC:  38E0004C   li   r7,76
803BBDE0:  480035A1   bl   0x803bf380
803BBDE4:  2C030000   cmpwi   r3,0
803BBDE8:  4082005C   bne-   0x803bbe44
803BBDEC:  2C140021   cmpwi   r20,33
803BBDF0:  40820010   bne-   0x803bbe00
803BBDF4:  80100180   lwz   r0,384(r16)
803BBDF8:  540007BF   rlwinm.   r0,r0,0,30,31
803BBDFC:  40820018   bne-   0x803bbe14
803BBE00:  2C140022   cmpwi   r20,34
803BBE04:  40820014   bne-   0x803bbe18
803BBE08:  80100180   lwz   r0,384(r16)
803BBE0C:  540006B7   rlwinm.   r0,r0,0,26,27
803BBE10:  41820008   beq-   0x803bbe18
803BBE14:  579C083C   rlwinm   r28,r28,1,0,30
803BBE18:  2C130021   cmpwi   r19,33
803BBE1C:  40820010   bne-   0x803bbe2c
803BBE20:  80100180   lwz   r0,384(r16)
803BBE24:  540007BF   rlwinm.   r0,r0,0,30,31
803BBE28:  40820018   bne-   0x803bbe40
803BBE2C:  2C130022   cmpwi   r19,34
803BBE30:  40820014   bne-   0x803bbe44
803BBE34:  80100180   lwz   r0,384(r16)
803BBE38:  540006B7   rlwinm.   r0,r0,0,26,27
803BBE3C:  41820008   beq-   0x803bbe44
803BBE40:  577B083C   rlwinm   r27,r27,1,0,30
803BBE44:  3802A9E8   subi   r0,r2,22040
803BBE48:  39C00000   li   r14,0
803BBE4C:  90010018   stw   r0,24(r1)
803BBE50:  7C10FA14   add   r0,r16,r31
803BBE54:  90010014   stw   r0,20(r1)
803BBE58:  80810014   lwz   r4,20(r1)
803BBE5C:  80702120   lwz   r3,8480(r16)
803BBE60:  A0842DB8   lhz   r4,11704(r4)
803BBE64:  4801D909   bl   0x803d976c
803BBE68:  38800001   li   r4,1
803BBE6C:  4801D3C1   bl   0x803d922c
803BBE70:  80810018   lwz   r4,24(r1)
803BBE74:  88040000   lbz   r0,0(r4)
803BBE78:  7C001800   cmpw   r0,r3
803BBE7C:  4082000C   bne-   0x803bbe88
803BBE80:  579CF87E   rlwinm   r28,r28,31,1,31
803BBE84:  4800001C   b   0x803bbea0
803BBE88:  39CE0001   addi   r14,r14,1
803BBE8C:  7C832378   mr   r3,r4
803BBE90:  38630001   addi   r3,r3,1
803BBE94:  280E0008   cmplwi   r14,8
803BBE98:  90610018   stw   r3,24(r1)
803BBE9C:  4180FFBC   blt+   0x803bbe58
803BBEA0:  281A0072   cmplwi   r26,114
803BBEA4:  40820010   bne-   0x803bbeb4
803BBEA8:  1C7C000F   mulli   r3,r28,15
803BBEAC:  3800000A   li   r0,10
803BBEB0:  7F830396   divwu   r28,r3,r0
803BBEB4:  281A0065   cmplwi   r26,101
803BBEB8:  40820018   bne-   0x803bbed0
803BBEBC:  7C70FA14   add   r3,r16,r31
803BBEC0:  A0032D40   lhz   r0,11584(r3)
803BBEC4:  28000084   cmplwi   r0,132
803BBEC8:  40820008   bne-   0x803bbed0
803BBECC:  579C083C   rlwinm   r28,r28,1,0,30
803BBED0:  2C14005F   cmpwi   r20,95
803BBED4:  40820024   bne-   0x803bbef8
803BBED8:  7C70FA14   add   r3,r16,r31
803BBEDC:  80032DAC   lwz   r0,11692(r3)
803BBEE0:  5400063F   rlwinm.   r0,r0,0,24,31
803BBEE4:  41820014   beq-   0x803bbef8
803BBEE8:  1C7C000F   mulli   r3,r28,15
803BBEEC:  3800000A   li   r0,10
803BBEF0:  7F830396   divwu   r28,r3,r0
803BBEF4:  48000018   b   0x803bbf0c
803BBEF8:  7C70FA14   add   r3,r16,r31
803BBEFC:  80032DAC   lwz   r0,11692(r3)
803BBF00:  54000673   rlwinm.   r0,r0,0,25,25
803BBF04:  41820008   beq-   0x803bbf0c
803BBF08:  579CF0BE   rlwinm   r28,r28,30,2,31
803BBF0C:  2C140070   cmpwi   r20,112
803BBF10:  40820020   bne-   0x803bbf30
803BBF14:  7C70FA14   add   r3,r16,r31
803BBF18:  80100150   lwz   r0,336(r16)
803BBF1C:  80632DD8   lwz   r3,11736(r3)
803BBF20:  7C030050   sub   r0,r0,r3
803BBF24:  2C000005   cmpwi   r0,5
803BBF28:  40800008   bge-   0x803bbf30
803BBF2C:  579CF87E   rlwinm   r28,r28,31,1,31
803BBF30:  2C140054   cmpwi   r20,84
803BBF34:  40820024   bne-   0x803bbf58
803BBF38:  7C70FA14   add   r3,r16,r31
803BBF3C:  80032DCC   lwz   r0,11724(r3)
803BBF40:  5400BFFF   rlwinm.   r0,r0,23,31,31
803BBF44:  41820014   beq-   0x803bbf58
803BBF48:  A0032DB8   lhz   r0,11704(r3)
803BBF4C:  2C000000   cmpwi   r0,0
803BBF50:  40820008   bne-   0x803bbf58
803BBF54:  579C083C   rlwinm   r28,r28,1,0,30
803BBF58:  7DE37B78   mr   r3,r15
803BBF5C:  7E248B78   mr   r4,r17
803BBF60:  4BFF0D85   bl   0x803acce4
803BBF64:  546015BA   rlwinm   r0,r3,2,22,29
803BBF68:  7C700214   add   r3,r16,r0
803BBF6C:  800301BC   lwz   r0,444(r3)
803BBF70:  540005AF   rlwinm.   r0,r0,0,22,23
803BBF74:  41820008   beq-   0x803bbf7c
803BBF78:  579C083C   rlwinm   r28,r28,1,0,30
803BBF7C:  281A0033   cmplwi   r26,51
803BBF80:  4082004C   bne-   0x803bbfcc
803BBF84:  8801000F   lbz   r0,15(r1)
803BBF88:  38600064   li   r3,100
803BBF8C:  5624083C   rlwinm   r4,r17,1,0,30
803BBF90:  7C6303D6   divw   r3,r3,r0
803BBF94:  7C902214   add   r4,r16,r4
803BBF98:  A084310C   lhz   r4,12556(r4)
803BBF9C:  7C041BD6   divw   r0,r4,r3
803BBFA0:  7C0019D6   mullw   r0,r0,r3
803BBFA4:  7C002051   sub.   r0,r4,r0
803BBFA8:  40820024   bne-   0x803bbfcc
803BBFAC:  80010008   lwz   r0,8(r1)
803BBFB0:  3B000001   li   r24,1
803BBFB4:  2C000000   cmpwi   r0,0
803BBFB8:  40820014   bne-   0x803bbfcc
803BBFBC:  7C70FA14   add   r3,r16,r31
803BBFC0:  80032DCC   lwz   r0,11724(r3)
803BBFC4:  60000004   ori   r0,r0,4
803BBFC8:  90032DCC   stw   r0,11724(r3)
803BBFCC:  7C70FA14   add   r3,r16,r31
803BBFD0:  80032DCC   lwz   r0,11724(r3)
803BBFD4:  5400EFFF   rlwinm.   r0,r0,29,31,31
803BBFD8:  41820008   beq-   0x803bbfe0
803BBFDC:  3B000001   li   r24,1
803BBFE0:  281A006A   cmplwi   r26,106
803BBFE4:  40820008   bne-   0x803bbfec
803BBFE8:  3AC00001   li   r22,1
803BBFEC:  39C2A9E8   subi   r14,r2,22040
803BBFF0:  7FF0F214   add   r31,r16,r30
803BBFF4:  3B400000   li   r26,0
803BBFF8:  80702120   lwz   r3,8480(r16)
803BBFFC:  A09F2DB8   lhz   r4,11704(r31)
803BC000:  4801D76D   bl   0x803d976c
803BC004:  38800001   li   r4,1
803BC008:  4801D225   bl   0x803d922c
803BC00C:  880E0000   lbz   r0,0(r14)
803BC010:  7C001800   cmpw   r0,r3
803BC014:  4082000C   bne-   0x803bc020
803BC018:  577BF87E   rlwinm   r27,r27,31,1,31
803BC01C:  48000014   b   0x803bc030
803BC020:  3B5A0001   addi   r26,r26,1
803BC024:  39CE0001   addi   r14,r14,1
803BC028:  281A0008   cmplwi   r26,8
803BC02C:  4180FFCC   blt+   0x803bbff8
803BC030:  28190072   cmplwi   r25,114
803BC034:  40820010   bne-   0x803bc044
803BC038:  1C7B000F   mulli   r3,r27,15
803BC03C:  3800000A   li   r0,10
803BC040:  7F630396   divwu   r27,r3,r0
803BC044:  28190065   cmplwi   r25,101
803BC048:  40820018   bne-   0x803bc060
803BC04C:  7C70F214   add   r3,r16,r30
803BC050:  A0032D40   lhz   r0,11584(r3)
803BC054:  28000084   cmplwi   r0,132
803BC058:  40820008   bne-   0x803bc060
803BC05C:  577B083C   rlwinm   r27,r27,1,0,30
803BC060:  2C13005F   cmpwi   r19,95
803BC064:  40820024   bne-   0x803bc088
803BC068:  7C70F214   add   r3,r16,r30
803BC06C:  80032DAC   lwz   r0,11692(r3)
803BC070:  5400063F   rlwinm.   r0,r0,0,24,31
803BC074:  41820014   beq-   0x803bc088
803BC078:  1C7B000F   mulli   r3,r27,15
803BC07C:  3800000A   li   r0,10
803BC080:  7F630396   divwu   r27,r3,r0
803BC084:  48000018   b   0x803bc09c
803BC088:  7C70F214   add   r3,r16,r30
803BC08C:  80032DAC   lwz   r0,11692(r3)
803BC090:  54000673   rlwinm.   r0,r0,0,25,25
803BC094:  41820008   beq-   0x803bc09c
803BC098:  577BF0BE   rlwinm   r27,r27,30,2,31
803BC09C:  2C130070   cmpwi   r19,112
803BC0A0:  40820020   bne-   0x803bc0c0
803BC0A4:  7C70F214   add   r3,r16,r30
803BC0A8:  80100150   lwz   r0,336(r16)
803BC0AC:  80632DD8   lwz   r3,11736(r3)
803BC0B0:  7C030050   sub   r0,r0,r3
803BC0B4:  2C000005   cmpwi   r0,5
803BC0B8:  40800008   bge-   0x803bc0c0
803BC0BC:  577BF87E   rlwinm   r27,r27,31,1,31
803BC0C0:  2C130054   cmpwi   r19,84
803BC0C4:  40820024   bne-   0x803bc0e8
803BC0C8:  7C70F214   add   r3,r16,r30
803BC0CC:  80032DCC   lwz   r0,11724(r3)
803BC0D0:  5400BFFF   rlwinm.   r0,r0,23,31,31
803BC0D4:  41820014   beq-   0x803bc0e8
803BC0D8:  A0032DB8   lhz   r0,11704(r3)
803BC0DC:  2C000000   cmpwi   r0,0
803BC0E0:  40820008   bne-   0x803bc0e8
803BC0E4:  577B083C   rlwinm   r27,r27,1,0,30
803BC0E8:  7DE37B78   mr   r3,r15
803BC0EC:  7E449378   mr   r4,r18
803BC0F0:  4BFF0BF5   bl   0x803acce4
803BC0F4:  546015BA   rlwinm   r0,r3,2,22,29
803BC0F8:  7C700214   add   r3,r16,r0
803BC0FC:  800301BC   lwz   r0,444(r3) # Break 2
803BC100:  540005AF   rlwinm.   r0,r0,0,22,23
803BC104:  41820008   beq-   0x803bc10c
803BC108:  577B083C   rlwinm   r27,r27,1,0,30
803BC10C:  28190033   cmplwi   r25,51
803BC110:  4082004C   bne-   0x803bc15c
803BC114:  8801000E   lbz   r0,14(r1)
803BC118:  38600064   li   r3,100
803BC11C:  5644083C   rlwinm   r4,r18,1,0,30
803BC120:  7C6303D6   divw   r3,r3,r0
803BC124:  7C902214   add   r4,r16,r4
803BC128:  A084310C   lhz   r4,12556(r4)
803BC12C:  7C041BD6   divw   r0,r4,r3
803BC130:  7C0019D6   mullw   r0,r0,r3
803BC134:  7C002051   sub.   r0,r4,r0
803BC138:  40820024   bne-   0x803bc15c
803BC13C:  80010008   lwz   r0,8(r1)
803BC140:  3AE00001   li   r23,1
803BC144:  2C000000   cmpwi   r0,0
803BC148:  40820014   bne-   0x803bc15c
803BC14C:  7C70F214   add   r3,r16,r30
803BC150:  80032DCC   lwz   r0,11724(r3)
803BC154:  60000004   ori   r0,r0,4
803BC158:  90032DCC   stw   r0,11724(r3)
803BC15C:  7C70F214   add   r3,r16,r30
803BC160:  80032DCC   lwz   r0,11724(r3)
803BC164:  5400EFFF   rlwinm.   r0,r0,29,31,31
803BC168:  41820008   beq-   0x803bc170
803BC16C:  3AE00001   li   r23,1
803BC170:  2819006A   cmplwi   r25,106
803BC174:  40820008   bne-   0x803bc17c
803BC178:  3AA00001   li   r21,1
803BC17C:  5620103A   rlwinm   r0,r17,2,0,29
803BC180:  5643103A   rlwinm   r3,r18,2,0,29
803BC184:  7C900214   add   r4,r16,r0
803BC188:  80010008   lwz   r0,8(r1)
803BC18C:  938421F0   stw   r28,8688(r4)
803BC190:  7C701A14   add   r3,r16,r3
803BC194:  2C000000   cmpwi   r0,0
803BC198:  936321F0   stw   r27,8688(r3)
803BC19C:  408200E4   bne-   0x803bc280
803BC1A0:  56202036   rlwinm   r0,r17,4,0,27
803BC1A4:  56452036   rlwinm   r5,r18,4,0,27
803BC1A8:  7C700214   add   r3,r16,r0
803BC1AC:  5624083C   rlwinm   r4,r17,1,0,30
803BC1B0:  800321B4   lwz   r0,8628(r3)
803BC1B4:  5643083C   rlwinm   r3,r18,1,0,30
803BC1B8:  7CB02A14   add   r5,r16,r5
803BC1BC:  7C902214   add   r4,r16,r4
803BC1C0:  7C701A14   add   r3,r16,r3
803BC1C4:  2C000001   cmpwi   r0,1
803BC1C8:  81C521B4   lwz   r14,8628(r5)
803BC1CC:  A0A430BC   lhz   r5,12476(r4)
803BC1D0:  A1E330BC   lhz   r15,12476(r3)
803BC1D4:  40820040   bne-   0x803bc214
803BC1D8:  56203032   rlwinm   r0,r17,6,0,25
803BC1DC:  7C700214   add   r3,r16,r0
803BC1E0:  800301D4   lwz   r0,468(r3)
803BC1E4:  54000FFF   rlwinm.   r0,r0,1,31,31
803BC1E8:  41820010   beq-   0x803bc1f8
803BC1EC:  380000A5   li   r0,165
803BC1F0:  B0010012   sth   r0,18(r1)
803BC1F4:  48000020   b   0x803bc214
803BC1F8:  7E038378   mr   r3,r16
803BC1FC:  7E248B78   mr   r4,r17
803BC200:  38A50006   addi   r5,r5,6
803BC204:  38C00000   li   r6,0
803BC208:  4BFFEA9D   bl   0x803baca4
803BC20C:  5460043E   rlwinm   r0,r3,0,16,31
803BC210:  B0010012   sth   r0,18(r1)
803BC214:  2C0E0001   cmpwi   r14,1
803BC218:  40820040   bne-   0x803bc258
803BC21C:  56403032   rlwinm   r0,r18,6,0,25
803BC220:  7C700214   add   r3,r16,r0
803BC224:  800301D4   lwz   r0,468(r3)
803BC228:  54000FFF   rlwinm.   r0,r0,1,31,31
803BC22C:  41820010   beq-   0x803bc23c
803BC230:  380000A5   li   r0,165
803BC234:  B0010010   sth   r0,16(r1)
803BC238:  48000020   b   0x803bc258
803BC23C:  7E038378   mr   r3,r16
803BC240:  7E449378   mr   r4,r18
803BC244:  38AF0006   addi   r5,r15,6
803BC248:  38C00000   li   r6,0
803BC24C:  4BFFEA59   bl   0x803baca4
803BC250:  5460043E   rlwinm   r0,r3,0,16,31
803BC254:  B0010010   sth   r0,16(r1)
803BC258:  A0010012   lhz   r0,18(r1)
803BC25C:  54032336   rlwinm   r3,r0,4,12,27
803BC260:  A0010010   lhz   r0,16(r1)
803BC264:  7C901A14   add   r4,r16,r3
803BC268:  54002336   rlwinm   r0,r0,4,12,27
803BC26C:  7C700214   add   r3,r16,r0
803BC270:  880403E8   lbz   r0,1000(r4)
803BC274:  9801000D   stb   r0,13(r1)
803BC278:  880303E8   lbz   r0,1000(r3)
803BC27C:  9801000C   stb   r0,12(r1)
803BC280:  8801000D   lbz   r0,13(r1)
803BC284:  7C030774   extsb   r3,r0
803BC288:  8801000C   lbz   r0,12(r1)
803BC28C:  7C000774   extsb   r0,r0
803BC290:  7C030000   cmpw   r3,r0
803BC294:  40820198   bne-   0x803bc42c
803BC298:  2C180000   cmpwi   r24,0
803BC29C:  41820034   beq-   0x803bc2d0
803BC2A0:  2C170000   cmpwi   r23,0
803BC2A4:  4182002C   beq-   0x803bc2d0
803BC2A8:  7C1CD840   cmplw   r28,r27
803BC2AC:  4080000C   bge-   0x803bc2b8
803BC2B0:  3BA00001   li   r29,1
803BC2B4:  48000180   b   0x803bc434
803BC2B8:  4082017C   bne-   0x803bc434
803BC2BC:  4801D4FD   bl   0x803d97b8
803BC2C0:  546007FF   rlwinm.   r0,r3,0,31,31
803BC2C4:  41820170   beq-   0x803bc434
803BC2C8:  3BA00002   li   r29,2
803BC2CC:  48000168   b   0x803bc434
803BC2D0:  2C180000   cmpwi   r24,0
803BC2D4:  40820014   bne-   0x803bc2e8
803BC2D8:  2C170000   cmpwi   r23,0
803BC2DC:  4182000C   beq-   0x803bc2e8
803BC2E0:  3BA00001   li   r29,1
803BC2E4:  48000150   b   0x803bc434
803BC2E8:  2C180000   cmpwi   r24,0
803BC2EC:  41820014   beq-   0x803bc300
803BC2F0:  2C170000   cmpwi   r23,0
803BC2F4:  4082000C   bne-   0x803bc300
803BC2F8:  3BA00000   li   r29,0
803BC2FC:  48000138   b   0x803bc434
803BC300:  2C160000   cmpwi   r22,0
803BC304:  41820034   beq-   0x803bc338
803BC308:  2C150000   cmpwi   r21,0
803BC30C:  4182002C   beq-   0x803bc338
803BC310:  7C1CD840   cmplw   r28,r27
803BC314:  4081000C   ble-   0x803bc320
803BC318:  3BA00001   li   r29,1
803BC31C:  48000118   b   0x803bc434
803BC320:  40820114   bne-   0x803bc434
803BC324:  4801D495   bl   0x803d97b8
803BC328:  546007FF   rlwinm.   r0,r3,0,31,31
803BC32C:  41820108   beq-   0x803bc434
803BC330:  3BA00002   li   r29,2
803BC334:  48000100   b   0x803bc434
803BC338:  2C160000   cmpwi   r22,0
803BC33C:  41820014   beq-   0x803bc350
803BC340:  2C150000   cmpwi   r21,0
803BC344:  4082000C   bne-   0x803bc350
803BC348:  3BA00001   li   r29,1
803BC34C:  480000E8   b   0x803bc434
803BC350:  2C160000   cmpwi   r22,0
803BC354:  40820014   bne-   0x803bc368
803BC358:  2C150000   cmpwi   r21,0
803BC35C:  4182000C   beq-   0x803bc368
803BC360:  3BA00000   li   r29,0
803BC364:  480000D0   b   0x803bc434
803BC368:  2C140064   cmpwi   r20,100
803BC36C:  40820034   bne-   0x803bc3a0
803BC370:  2C130064   cmpwi   r19,100
803BC374:  4082002C   bne-   0x803bc3a0
803BC378:  7C1CD840   cmplw   r28,r27
803BC37C:  4081000C   ble-   0x803bc388
803BC380:  3BA00001   li   r29,1
803BC384:  480000B0   b   0x803bc434
803BC388:  408200AC   bne-   0x803bc434
803BC38C:  4801D42D   bl   0x803d97b8
803BC390:  546007FF   rlwinm.   r0,r3,0,31,31
803BC394:  418200A0   beq-   0x803bc434
803BC398:  3BA00002   li   r29,2
803BC39C:  48000098   b   0x803bc434
803BC3A0:  2C140064   cmpwi   r20,100
803BC3A4:  40820014   bne-   0x803bc3b8
803BC3A8:  2C130064   cmpwi   r19,100
803BC3AC:  4182000C   beq-   0x803bc3b8
803BC3B0:  3BA00001   li   r29,1
803BC3B4:  48000080   b   0x803bc434
803BC3B8:  2C140064   cmpwi   r20,100
803BC3BC:  41820014   beq-   0x803bc3d0
803BC3C0:  2C130064   cmpwi   r19,100
803BC3C4:  4082000C   bne-   0x803bc3d0
803BC3C8:  3BA00000   li   r29,0
803BC3CC:  48000068   b   0x803bc434
803BC3D0:  80100180   lwz   r0,384(r16)
803BC3D4:  5400035F   rlwinm.   r0,r0,0,13,15
803BC3D8:  4182002C   beq-   0x803bc404
803BC3DC:  7C1CD840   cmplw   r28,r27
803BC3E0:  40810008   ble-   0x803bc3e8
803BC3E4:  3BA00001   li   r29,1
803BC3E8:  7C1CD840   cmplw   r28,r27
803BC3EC:  40820048   bne-   0x803bc434
803BC3F0:  4801D3C9   bl   0x803d97b8
803BC3F4:  546007FF   rlwinm.   r0,r3,0,31,31
803BC3F8:  4182003C   beq-   0x803bc434
803BC3FC:  3BA00002   li   r29,2
803BC400:  48000034   b   0x803bc434
803BC404:  7C1CD840   cmplw   r28,r27
803BC408:  40800008   bge-   0x803bc410
803BC40C:  3BA00001   li   r29,1
803BC410:  7C1CD840   cmplw   r28,r27
803BC414:  40820020   bne-   0x803bc434
803BC418:  4801D3A1   bl   0x803d97b8
803BC41C:  546007FF   rlwinm.   r0,r3,0,31,31
803BC420:  41820014   beq-   0x803bc434
803BC424:  3BA00002   li   r29,2
803BC428:  4800000C   b   0x803bc434
803BC42C:  40800008   bge-   0x803bc434
803BC430:  3BA00001   li   r29,1
803BC434:  7FA3EB78   mr   r3,r29
803BC438:  39610070   addi   r11,r1,112
803BC43C:  4BE0AD05   bl   0x801c7140
803BC440:  80010074   lwz   r0,116(r1)
803BC444:  7C0803A6   mtlr   r0
803BC448:  38210070   addi   r1,r1,112
803BC44C:  4E800020   blr   [/spoiler]2a)
Nop´ing causes a crash.
[spoiler]  CR:84000000  XER:00000000  CTR:00000000 DSIS:04000000
DAR:4652000C SRR0:80296D64 SRR1:00009032   LR:80297260
 r0:9251402C   r1:80F9ED08   r2:80648600   r3:9155083C
 r4:80F9ED20   r5:9251402C   r6:46520000   r7:00000004
 r8:46520000   r9:00000000  r10:925BDDE0  r11:80F9ED28
r12:803AB0C0  r13:806452C0  r14:00000008  r15:00000002
r16:00000001  r17:00000004  r18:00000000  r19:00000004
r20:0000F100  r21:00000010  r22:00000003  r23:00010000
r24:00000001  r25:00000000  r26:8048CDB4  r27:FFFFFDFD
r28:00000004  r29:91550800  r30:92514030  r31:9155083C

80296CE0:  9421FFF0   stwu   r1,-16(r1)
80296CE4:  39000000   li   r8,0
80296CE8:  80A40000   lwz   r5,0(r4)
80296CEC:  80040004   lwz   r0,4(r4)
80296CF0:  90A10008   stw   r5,8(r1)
80296CF4:  80C30000   lwz   r6,0(r3)
80296CF8:  9001000C   stw   r0,12(r1)
80296CFC:  4800006C   b   0x80296d68
80296D00:  80040000   lwz   r0,0(r4)
80296D04:  7C060040   cmplw   r6,r0
80296D08:  4080000C   bge-   0x80296d14
80296D0C:  7CC83378   mr   r8,r6
80296D10:  48000054   b   0x80296d64
80296D14:  80040004   lwz   r0,4(r4)
80296D18:  7C060040   cmplw   r6,r0
80296D1C:  40820054   bne-   0x80296d70
80296D20:  80060004   lwz   r0,4(r6)
80296D24:  80E60008   lwz   r7,8(r6)
80296D28:  7CA60214   add   r5,r6,r0
80296D2C:  80C6000C   lwz   r6,12(r6)
80296D30:  38050010   addi   r0,r5,16
80296D34:  2C070000   cmpwi   r7,0
80296D38:  9001000C   stw   r0,12(r1)
80296D3C:  4182000C   beq-   0x80296d48
80296D40:  90C7000C   stw   r6,12(r7)
80296D44:  48000008   b   0x80296d4c
80296D48:  90C30000   stw   r6,0(r3)
80296D4C:  2C060000   cmpwi   r6,0
80296D50:  4182000C   beq-   0x80296d5c
80296D54:  90E60008   stw   r7,8(r6)
80296D58:  48000018   b   0x80296d70
80296D5C:  90E30004   stw   r7,4(r3)
80296D60:  48000010   b   0x80296d70
80296D64:  80C6000C   lwz   r6,12(r6)
80296D68:  2C060000   cmpwi   r6,0
80296D6C:  4082FF94   bne+   0x80296d00
80296D70:  2C080000   cmpwi   r8,0
80296D74:  41820054   beq-   0x80296dc8
80296D78:  80A80004   lwz   r5,4(r8)
80296D7C:  80040000   lwz   r0,0(r4)
80296D80:  7C882A14   add   r4,r8,r5
80296D84:  38840010   addi   r4,r4,16
80296D88:  7C040040   cmplw   r4,r0
80296D8C:  4082003C   bne-   0x80296dc8
80296D90:  80A80008   lwz   r5,8(r8)
80296D94:  91010008   stw   r8,8(r1)
80296D98:  2C050000   cmpwi   r5,0
80296D9C:  8088000C   lwz   r4,12(r8)
80296DA0:  4182000C   beq-   0x80296dac
80296DA4:  9085000C   stw   r4,12(r5)
80296DA8:  48000008   b   0x80296db0
80296DAC:  90830000   stw   r4,0(r3)
80296DB0:  2C040000   cmpwi   r4,0
80296DB4:  4182000C   beq-   0x80296dc0
80296DB8:  90A40008   stw   r5,8(r4)
80296DBC:  48000008   b   0x80296dc4
80296DC0:  90A30004   stw   r5,4(r3)
80296DC4:  7CA82B78   mr   r8,r5
80296DC8:  80C1000C   lwz   r6,12(r1)
80296DCC:  80A10008   lwz   r5,8(r1)
80296DD0:  7C053050   sub   r0,r6,r5
80296DD4:  28000010   cmplwi   r0,16
80296DD8:  4080000C   bge-   0x80296de4
80296DDC:  38600000   li   r3,0
80296DE0:  48000060   b   0x80296e40
80296DE4:  38804652   li   r4,18002
80296DE8:  38050010   addi   r0,r5,16
80296DEC:  B0850000   sth   r4,0(r5)
80296DF0:  38800000   li   r4,0
80296DF4:  7C003050   sub   r0,r6,r0
80296DF8:  2C080000   cmpwi   r8,0
80296DFC:  B0850002   sth   r4,2(r5)
80296E00:  90050004   stw   r0,4(r5)
80296E04:  9085000C   stw   r4,12(r5)
80296E08:  91050008   stw   r8,8(r5)
80296E0C:  41820010   beq-   0x80296e1c
80296E10:  8088000C   lwz   r4,12(r8)
80296E14:  90A8000C   stw   r5,12(r8)
80296E18:  4800000C   b   0x80296e24
80296E1C:  80830000   lwz   r4,0(r3)
80296E20:  90A30000   stw   r5,0(r3)
80296E24:  2C040000   cmpwi   r4,0
80296E28:  9085000C   stw   r4,12(r5)
80296E2C:  4182000C   beq-   0x80296e38
80296E30:  90A40008   stw   r5,8(r4)
80296E34:  48000008   b   0x80296e3c
80296E38:  90A30004   stw   r5,4(r3)
80296E3C:  38600001   li   r3,1
80296E40:  38210010   addi   r1,r1,16
80296E44:  4E800020   blr   
[/spoiler]803D1D5C:  54A3103A   rlwinm   r3,r5,2,0,29 # doesn´t ever execute

2b)
803D1D58:  41820044   beq-   0x803d1d9c # b 0x803d1dd0 deadloop
803D1D58:  41820044   beq-   0x803d1d9c # b 0x803d1de8 also deadloop

hmm... :eek:
Text only | Text with Images