This memory page is mapped as “shared device” (it is thus uncached) and read-only for ARM11 processes. This memory and the kernel code for it only exists under NATIVE_FIRM/SAFE_MODE_FIRM.

The FIRM_* fields are by default identical to the KERNEL_* fields. However, the FIRM_* fields can be overridden via FIRM-launch parameters, see here.

Besides mem-region related fields, the data written here by the old 3DS/new 3DS kernels is identical.

This memory page is normally read-only for ARM11 processes, write-access is determined by the process exheader kernel “shared page writing” flag. It is mapped as “shared device” (it is thus uncached) in both cases.

This memory only exists under NATIVE_FIRM/SAFE_MODE_FIRM.

Unknown, this is normally value 0.

This is the version-revision for the currently running FIRM.

This is the version-minor from ((title-version & 0x3FF) >> 4), for the currently running FIRM. The values from KERNEL_VERSIONMINOR and KERNEL_VERSIONMAJOR can be stored in applications’ CXI exheader.

This is the same as KERNEL_VERSIONMINOR. After AM:InstallNATIVEFIRM checks FIRM_SYSCOREVER, AM:InstallNATIVEFIRM then compares FIRM_VERSIONMINOR with the NATIVE_FIRM ((title-version & 0x3FF) >> 4), when the latter is larger than FIRM_VERSIONMINOR AM:InstallNATIVEFIRM will trigger a FIRM install.

This is the version-major for the currently running FIRM.

The kernel initializes KERNEL_VERSIONMAJOR and SYSCOREVER with the same constant value.

Normally this flag is zero. When the ARM11 kernel is booting on non-factory FIRM it will set this flag to 1, when bit0 from the data which field 0x1FF80016 is loaded from is clear, if the following PAD buttons are pressed: L, R, A, Up. When this flag is set, NS will launch the System Updater title instead of Home Menu.

This field contains the titleID of the first title to launch from CTR-NAND after the FIRM system processes are loaded. The PM module launches this title. If this field titleID is all-zero, the system will not attempt to launch the title. The regular ARM11 kernel sets this to the regular NS titleID, while the SAFE_MODE ARM11 kernel sets this to the SAFE_MODE NS titleID. The factory FIRM ARM11-kernel sets this to the NS TID from here.

This field is initialized by the ARM11 kernel, this is the programID-low of the running FIRM. When launching CXIs, the value stored here must match the core version field stored in the CXI exheader. If they do not match, the PM module will refuse to launch the ARM11 process.

With factory NATIVE_FIRM, this is set to 0x0, even though the FIRM programID-low is 0x2. However, the factory system-titles have core-version set to 0x2. Hence, this config-mem SYSCOREVER field might not be used by factory system processes?

Normally this is the same as SYSCOREVER. This used by AM:InstallNATIVEFIRM for comparing with the NATIVE_FIRM titleID-low. When the low u8 from the NATIVE_FIRM titleID-low is larger than FIRMSYSCOREVER, AM:InstallNATIVEFIRM will trigger FIRM installing. When that u8 is not larger than FIRM_SYSCOREVER, and these two values don’t match, AM:InstallNATIVEFIRM will return an error.

Bit1 in this field is set by the ARM11 kernel when ARM debug CP14 DSCR bit14 is set (halting debug-mode enabled). NS loads the menu TID from MENUTID when bits 1-7 of this field are clear. ErrDisp will display development error info when bit0 is clear.

The ARM11 loads the value of CFG_UNITINFO from 0x1FFFFFF0+1 during startup, which is written by the ARM9 during ARM9<>ARM11 kernel sync.

When this field is zero, bit0 for ENVINFO is set for retail. When this field is non-zero, bit0 for ENVINFO is clear for dev/debug units, and an ARM11 kernel state flag which enables debugging is set. JTAG is only enabled for debugger and “firm” modes (bit1).

The ARM11 loads this value from 0x1FFFFFF0+2 during startup, which is written by the ARM9 during ARM9<>ARM11 kernel sync.

This originates from the low 8-bits of register 0x10010000. When bit0 is set, the ARM11 kernel will not set the UPDATEFLAG to value 1.

This is the CTR-SDK version which was used to build the currently running FIRM.

The value of this field determines the size for APPMEMALLOC. The retail type(value0) is used when the type is not values 2-5. See Memory_layout for the table of values for this and the mem-region sizes.

This contains the total size of the memory that can be allocated with the APPLICATION memory-region, see here.

Same as APPMEMALLOC except for the SYSTEM mem-region, see here.

Same as APPMEMALLOC except for the BASE mem-region, see here.

Converted from MCU_HW_INFO (names extracted from TestMenu) by PTM, depending on whether or not the system is a N3DS/N2DS or not:

Converted to RUNNING_HW by PTM.

This is the WiFi MAC address for the 3DS. This is initialized by the NWM module and is loaded from the WiFi card’s EEPROM.

This float contains the state of the 3D slider. The range of this float is value 0.0f for “off”, and 1.0f for max.

This is written/updated by HID module.

When non-zero, the 3D LED is disabled. See GSPGPU:SetLedForceOff.

Bit[0] is set when the adapter is connected. Bit[1] is set when the battery is charging. Bit[2:4] is the value of battery level. If the connection bit is set but the charging bit is clear, it means the battery is already fully charged but still with adapter connected.

Unknown, contains the menu TID (used by NS)

This contains the titleID of the currently running menu launched by NS.

See FIRM.