Mario Kart Wii Flat code(again but with ASM)

[dcx2]

Okay, the picture is a little more clear now.  Look at all (r29)'s in the disassembly.  Lots of load words, compares, branches, load immediates, writes.  This means it's making a lot of decisions.  In fact, you can see a couple li r0's that have 2 and 3.  So I would bet you're on the right track.

When you look at this address in Memory Viewer with auto-update, what happens to it while you're doing all kinds of stuff not related to getting flat?  If you poke this address from one value to the other, what happens in the game?

---

Here's the reference I usually use for ASM.  The gold standard would be the PowerPC datasheet from IBM, but we're mostly interested in just one appendix of that datasheet and this link covers pretty much just the stuff we're really interested in.

http://pds.twi.tudelft.nl/vakken/in101/labcourse/instruction-set/

[toonlink444]

Sorry about the long break I was busy. I'll get right back to you.

[toonlink444]

I don't think this is it. When I poked it nothing happened. And the address changed but the values stayed the same. And look at the registers.
[spoiler] CR:28000088  XER:20000000  CTR:00000000 DSIS:00400000
DAR:80E7FF08 SRR0:80708468 SRR1:0000B032   LR:80708468
  r0:00000000   r1:80394CC8   r2:8038AC20   r3:00000000
  r4:80EA9404   r5:80E7FD78   r6:00000002   r7:80394744
  r8:00000000   r9:00000000  r10:00000000  r11:80394CC8
r12:800A8CC0  r13:80388880  r14:00000000  r15:00000000
r16:00000000  r17:00000000  r18:00000000  r19:00000000
r20:00000000  r21:8029FD00  r22:00000000  r23:808C0000
r24:00000000  r25:808C0000  r26:808C0000  r27:808C0000
r28:809C0000  r29:80E7FEF8  r30:00000000  r31:00000000

  f0:00000000   f1:00000000   f2:3F800000   f3:00000000
  f4:00000000   f5:3F800000   f6:00000000   f7:00000000
  f8:22A648A4   f9:BDE087EC  f10:BDE087EC  f11:2FA59E22
f12:40400000  f13:00000000  f14:00000000  f15:00000000
f16:00000000  f17:00000000  f18:00000000  f19:00000000
f20:00000000  f21:00000000  f22:00000000  f23:00000000
f24:00000000  f25:00000000  f26:00000000  f27:00000000
f28:00000000  f29:00000000  f30:00000000  f31:00000000[/spoiler]
DAR and r29 changed. Maybe more

[toonlink444]

New find. Address: 80E92EB4 value when big 42240000 value when flat 00000000. The registers and floats and ASM are exactly the same as the first.

[Patedj]

DAR = the address you're breaking at.
Srr0= the the op it's breaking at.
And r29 (for amateur eyes... Me... seems that it could be used to locate the DAR)

[Bully@Wiiplaza]

lol I tried it by myself and found the adress to make you flat.
As I wrote the assembly, it froze when sending an ASM code a second time, the adress moved, I forgot to remember how I got it... it was pretty random aswell and the assembly also didn´t work ::) Damn.

[toonlink444]

That's my problem. When ever I seam to have the address it changes. So I keep looking for a address that remains the same.
Edit: The ASM is also hard. But I have had some success.
Edit 2: Are you trying to make me feel bad Bully. Have you looked at the offtopic post I made.