This topic is for the purpose of discussing #4611: TheAxeMan, Inzult & Gyre's NES Final Fantasy "stairs glitch" in 06:58.24

It took a while, but FF1 has finally joined the elite inner circle of games that are truly broken.

I am very happy to see this done.

Console verify please that would be amazing lol. Edit: Oh, and I thought the site didn't used "glitched" any more. It's technically not a "game end glitch" either since you do fight the boss, sorta, so what do?

What a stunning discovery.Yes voted of course.

Temp encode needed? Temp encode needed. Creating a temp encode. Supercut needed? Supercut needed. Also creating a supercut encode. Normal: Link to video Supercut: Link to video There. I saved your "holding down TAB button extravaganza" for you.

Why was the J version used? Does the glitch only work on this version?

Why was the J version used? Does the glitch only work on this version?

From the submission text:

The Japanese version has a larger character set than the English version even though it only supports the phonetic Hiragana alphabet and a few other characters. Turns out that some of the character codes not available in English are needed to execute some of the more interesting glitches.

They're injecting arbitrary code via the player names. The Japanese (hiragana) character set includes a character ("ko", I believe) that corresponds to hexadecimal $4C, the invaluable JMP command in the 6502 processor. I played around with the US version but the only characters that affect the program counter correspond to BCC and BCS (branch on carry clear and branch on carry set), which can only send the program counter somewhere in the VRAM, if I remember correctly. Believe me, I'd like to see the American version of the game broken, but it's not going to happen any time soon barring a major breakthrough. I may toy with it some more at a later date.

My vote is Meh. Just watching something that is better than Die Hard (stairs) for a quite a long time, doing something then continuing doing the stairs, I really don't find entertaining.

Oh men, I really want to watch the GBA version next time. Amazing glitch. Yes vote for Vault.

Four guys walk up and down stairs for 6 minutes: The game.

Yes for vault! Voted no.

Arbitrary code execution runs are the best runs, so easy Yes vote for me! Sure it's a bit boring to watch the screen transition for 3 minutes twice, but it helps building the suspense and the payoff is so worth it! By the way, considering the stairs overflow glitch was already known for Final Fantasy IV for a while now, I'm surprised that it took so long to find the same glitch in the original Final Fantasy. I wouldn't be surprised if the same glitch also exists in other games in the series.

The problem with certain stairs in FF1 have been known for many years. Until recently it was believed that it could only be used to crash the game. Although both FF1 and FF4 have large glitches related to stairs the two bugs are actually very different.

10/10 would stair again RIP Final Fantasy Yes vote, but I think this might be more or less vault material

Voting yes, sadly due to the long wait of the stairs I could see a problem with the whole "entertainment" value to keep it out of the vault. Perhaps the abridged version linked above if it were an issue could help out with that somehow.

Some more technical details for people that like to geek out. The game uses memory from $0300-$033F for constructing many of the menus. Walking up and down stairs repeatedly corrupts a list of return locations used to remember what floor you came from past a reasonable number of entries the programmer expected to need. Because of that, opening the menu afterwards causes the instruction pointer to jump to "code" at $030A which is actually data. This runs through some garbage instructions for a while until reaching the name of our second player. In the first trip the second player name corresponds to the instructions: LDA $A356 BCS xxxx The load instruction puts the value $66 into the accumulator. The address we're pulling from is just an arbitrary ROM location that has the right value and can be constructed using our limited alphabet of names. The branch instruction will be taken. We don't control where the branch goes because character names are only 4 bytes long but the next byte happens to be a value that sends us to $032C which is a little before the fourth player name. This again runs through some garbage instructions for a while until reaching the fourth player name corresponding to the instructions: TAX JMP $9385 The tax instruction copies the value $66 from the accumulator to the X register. We then jump into the middle of a routine that's normally used for updating character data. This stores the value of the accumulator at an offset specified by the X register so we write $66 to address $6166 in memory. That memory address is the level of our second character who the game now thinks is level 103. In the second trip our second and fourth character names correspond to the instructions: LDA $83AA BCS xxxx --- JMP $90A0 The load instruction puts the value $1A into the accumulator. The jump instruction then takes us into another copy routine that's normally used for updating map data. We haven't set the X register but it will be $10 based on the menu code run previously. The result is that we write $1A to the address $6F10. $6F10 controls the NPC dialog for the guard standing next to the staircase and $1A is the ID for Garland's final message before you fight Chaos. That message is programmed to automatically start the Chaos fight. When Chaos takes his turn, like any enemy he first checks whether to run from battle. This uses a morale calculation: 80 + 2 * [Party Level] - Random[0..50] > [Enemy morale] As a boss, Chaos has 255 morale which is normally impossible to overcome. In TheAxeMan's previous TAS he showed off making Chaos run by reducing his morale using multiple critical hits with the FEAR spell. Here, we instead use our level 103 party leader and a lucky roll through RNG manipulation to cause the same effect. And so Chaos runs away and the world is saved.

Very happy to see this as a TAS Been watching Gyre_ streams with a lot of interest Sweet sweet sweet

Even at the risk of sounding like a broken record and a contrarian, I got sick of ACE like a year ago, and this didn't change my mind. But as long as this doesn't replace the actual game completion TAS, it's ok.

Yes vote, a very good effort to publish alongside the existing runs. The "plot" is great - the Light Warriors go up and down the stairs until they are really buff, and it turns out that a nearby guard was Chaos all along. He freaks out at how tough the party is, and runs so far away (maybe he hits the planet's escape velocity?) that his sway over the world vanishes entirely.

Great job. Not very entertaining, but still cool to see. Voting for the vault.

Oh man, it's Anubis II all over again... and by that, I mean it's only entertaining if you watch the supercut. Aside from that, I believe the names of the first and third heroes were romanised incorrectly in the submission: they are 'Akakaki' and 'Yayuyayu'. If it were possible to use the naming script to change them to Akasai and Waiwai without affecting sync, I think it would be worth making that change - it would satisfy all the hiragana-knowing easter egg hunters :)

So...has anyone addressed how to branch the TAS and the current published movie? Or just going back to using "glitched" (which is rather odd considering the current published TAS has the "Heavy glitch abuse" tag lol)

If we're giving it a branch it has to be "Die Hard"