Homebrew Another, kinda-dumb firmware glitch that may downgrade

TheCyberQuake

Certified Geek
Member
Joined
Dec 2, 2014
Messages
5,012
Trophies
1
Age
28
Location
Las Vegas, Nevada
XP
4,407
Country
United States
Hey, I actually thought this one out, and this has a chance, if you think more into it
You didn't think it out, you didn't fully do your research and not it has virtually no chance to work.
iirc there were ways to update to a specific firmware by hosting your own update server, but that was UPDATING, not downgrading. And the "backup" you are talking about isn't even really a thing. It's just something called safe_firm, which is the safe mode that only runs, once again, a firmware update.
I said it several times now: If it were that easy we would already be doing that.
Plus you can boot safe mode without needing to corrupt anything.

I have heard there may be exploits in safe_firm, but not the one you are thinking of.
 

Urbanshadow

Well-Known Member
Member
Joined
Oct 16, 2015
Messages
1,578
Trophies
0
Age
32
XP
1,712
Country
Technically, if there was a way (probably not) to deliberately (and temporally) corrupt firm0 from *hax, you were stuck in 11.X and your firm0 somehow, is a sane, checksum correct 10.4/5/6/7 firm (10.4 firm). The system perhaps could fail to boot with firm0, then boot with firm1 which is a lower version, but all your titles are still 11.X.

SvcBackdoor would be back, and the min version list for system titles would be gone. Exactly like downgrading the firm via dsiwarehax or hardmod. A regular downgrade to 9.2 from *hax should work then.
And then you OTPLess install a9lh to that 9.2 (only n3ds) for kek purposes.
 
Last edited by Urbanshadow,

Halvorsen

Well-Known Member
Member
Joined
Aug 12, 2015
Messages
2,060
Trophies
0
Website
halcove.com
XP
1,889
Country
United States
Technically, if there was a way (probably not) to deliberately (and temporally) corrupt firm0 from *hax, you were stuck in 11.X and your firm0 somehow, is a sane, checksum correct 10.4/5/6/7 firm (10.4 firm). The system perhaps could fail to boot with firm0, then boot with firm1 which is a lower version, but all your titles are still 11.X.

SvcBackdoor would be back, and the min version list for system titles would be gone. Exactly like downgrading the firm via dsiwarehax or hardmod. A regular downgrade to 9.2 from *hax should work then.
And then you OTPLess install a9lh to that 9.2 (only n3ds) for kek purposes.
First of all, FIRM doesn't determine system version, it's basically just a loader, not a system backup. I think you're getting the firm partitions mixed up with native_firm.

Secondly, firm0 and firm1 are identical.
 
Last edited by Halvorsen,

Gaming796

Gaming since 4
Member
Joined
Aug 24, 2016
Messages
561
Trophies
0
Location
Your head
Website
gbatemp.net
XP
462
Country
United States
OMG.... One of these threads.... (even though I did the same before, I've realised my mistake). Why doesn't OP wait till the 3DS EoL? 'Cause an Arm9 Exploit will be released by then, and that's because Nintendo wouldn't bother to fix up things about 3DS Hacking after 3DS reaches EoL.

See, I'm stuck on 11.0.0-33 too... Just wait.... It's a matter of time... Arm9 will be exploited! I'm waiting tooo!!! It will definetly be released SOON™!!!

And PERSONALLY, Nintendo is improving in Security and I must admit, the 3DS is a really well-secured system, which is almost impossible to hack. Nintendo can fix downgrading through Hardmod / DSiWareHax easily: all they need to do is put a checklist in the Arm9 so that any NATIVE_FIRM with a FW Version less than 11.X.0-XX will be rejected by Arm9 and system won't boot. We're just lucky they didn't do that... They might do it by the time 3DS reaches EoL. And then, we'd be dead... NO PIRACY. They can even prevent Arm11 Userland access in the future by only allowing certain SIGNED Apps to access it, not unsigned Homebrew content... You see, Nintendo can LITERALLY DO ANYTHING, and 11.0 is just the beginning - watch as the entire 11.x line screws up Homebrew and causes a major 'QUAKE in 3DS Hacking and PIRACY. If they patch the Arm9 so that Gamecard launcher cannot unsigned games, even Flashcards MAY be BLOCKED PERMANENTLY!!! Only legit 3DS ROMs would POSSIBLY be able to be run, but even that can be patched if they MAYBE do somthin' with the Arm9...

So if you see, 11.0 can be downgraded, and the exploit will be released in future. Just think you're blessed that Nintendo didn't do all that stuff with the Arm9 which would make Hacking IMPOSSIBLE!

In conclusion, any 3DS Modding / Hacking can be completely ruined by patching the Arm9. It's like taking over the brain (Arm9) of the 3DS if you want to hack it. And if Nintendo make it impossible to get into the BRAIN, the HACKING is IMPOSSIBLE!!!

Correct me, Advanced 3DS Hackers, if any of the content I posted in this reply is wrong, 'cause I want to know more stuff 'bout this (3DS Hacking) too!
 

SomeGamer

Well-Known Member
Member
Joined
Dec 19, 2014
Messages
6,827
Trophies
1
XP
4,902
Country
Hungary
OMG.... One of these threads.... (even though I did the same before, I've realised my mistake). Why doesn't OP wait till the 3DS EoL? 'Cause an Arm9 Exploit will be released by then, and that's because Nintendo wouldn't bother to fix up things about 3DS Hacking after 3DS reaches EoL.

See, I'm stuck on 11.0.0-33 too... Just wait.... It's a matter of time... Arm9 will be exploited! I'm waiting tooo!!! It will definetly be released SOON™!!!

And PERSONALLY, Nintendo is improving in Security and I must admit, the 3DS is a really well-secured system, which is almost impossible to hack. Nintendo can fix downgrading through Hardmod / DSiWareHax easily: all they need to do is put a checklist in the Arm9 so that any NATIVE_FIRM with a FW Version less than 11.X.0-XX will be rejected by Arm9 and system won't boot. We're just lucky they didn't do that... They might do it by the time 3DS reaches EoL. And then, we'd be dead... NO PIRACY. They can even prevent Arm11 Userland access in the future by only allowing certain SIGNED Apps to access it, not unsigned Homebrew content... You see, Nintendo can LITERALLY DO ANYTHING, and 11.0 is just the beginning - watch as the entire 11.x line screws up Homebrew and causes a major 'QUAKE in 3DS Hacking and PIRACY. If they patch the Arm9 so that Gamecard launcher cannot unsigned games, even Flashcards MAY be BLOCKED PERMANENTLY!!! Only legit 3DS ROMs would POSSIBLY be able to be run, but even that can be patched if they MAYBE do somthin' with the Arm9...

So if you see, 11.0 can be downgraded, and the exploit will be released in future. Just think you're blessed that Nintendo didn't do all that stuff with the Arm9 which would make Hacking IMPOSSIBLE!

In conclusion, any 3DS Modding / Hacking can be completely ruined by patching the Arm9. It's like taking over the brain (Arm9) of the 3DS if you want to hack it. And if Nintendo make it impossible to get into the BRAIN, the HACKING is IMPOSSIBLE!!!

Correct me, Advanced 3DS Hackers, if any of the content I posted in this reply is wrong, 'cause I want to know more stuff 'bout this (3DS Hacking) too!
Uh, they're already only allowing signed apps to run, but it was exploited.
 

Urbanshadow

Well-Known Member
Member
Joined
Oct 16, 2015
Messages
1,578
Trophies
0
Age
32
XP
1,712
Country
All they need to do is put a checklist in the Arm9 so that any NATIVE_FIRM with a FW Version less than 11.X.0-XX will be rejected by Arm9 and system won't boot.

They can even prevent Arm11 Userland access in the future by only allowing certain SIGNED Apps to access it, not unsigned Homebrew content...

If they patch the Arm9 so that Gamecard launcher cannot unsigned games, even Flashcards MAY be BLOCKED PERMANENTLY!!!

Only legit 3DS ROMs would POSSIBLY be able to be run, but even that can be patched if they MAYBE do somthin' with the Arm9...

You just went full. Never go full.

Let's for a second step on your own landmine. You put a checklist in the arm9. So arm9 is a processor. Perhaps you meant what controls the arm9 processor. You put a checklist in process9 to reject a NATIVE_FIRM FW Version less than top version. But Process9 is in NATIVE_FIRM? (Correct me!) But NATIVE_FIRM is a system title. N is already checking system title versions. And the list is in protected memory. Yeah.
(Aftermatch: Downgrade NATIVE_FIRM, protection is gone. Sounds familiar... )

As said above, if N allowed unsigned software no even a single exploit would be needed for nothing free access would be allowed. Signatures have been disabled on every cfw. *hax bypasses that by exploiting signed software.

As a matter of fact: Some cheap DS Flashcards for 3DS identify as signed games! I have one that the system says is SpongeBob: Atlantis Somewhat. Yeah.
 
Last edited by Urbanshadow,
  • Like
Reactions: ADS3500

Urbanshadow

Well-Known Member
Member
Joined
Oct 16, 2015
Messages
1,578
Trophies
0
Age
32
XP
1,712
Country
I wonder how could they sign it since the flashcart contains a different executable.

I think they don't? I do think the game is actually there, but somehow is using some kind of soft or hardware exploit to deviate the execution to the card's firmware.
 

Gaming796

Gaming since 4
Member
Joined
Aug 24, 2016
Messages
561
Trophies
0
Location
Your head
Website
gbatemp.net
XP
462
Country
United States
I think they don't? I do think the game is actually there, but somehow is using some kind of soft or hardware exploit to deviate the execution to the card's firmware.
See, maybe the flashcard might have a SIGNED ROM (literally dumped / extracted with signatures provided by Nintendo). Therefore, 3DS will show it as a Signed Software. And if Nintendo patches *hax someway, then Userland hacking is gone forever...
 

Gaming796

Gaming since 4
Member
Joined
Aug 24, 2016
Messages
561
Trophies
0
Location
Your head
Website
gbatemp.net
XP
462
Country
United States
All I could think of is a hacked save being preinstalled.
Maybe, that too, if it fools Arm9, then it's really something that Nintendo doesn't know about....

--------------------- MERGED ---------------------------

But let's just put this post aside. We know what's gonna happen and what not. Consider this to be EoF'd!

Leave this post alone, even OP is uninterested in this post it seems...
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
    BigOnYa @ BigOnYa: I feel like I spent the night with Ancientboi +1