Hacking Wii U Hacking & Homebrew Discussion

[wj44]

what is an OS?

https://en.wikipedia.org/wiki/Operating_system

 

[mariogamer]

thank you.

 

[Dantarion]

Hallelujah! Is there any domain that I can go to to see the in-developement tool and explore the interface?

Nope! It runs locally on the computer that is on the same network with the WiiU.

I did actually code it to support a "FakeGecko" interface that I use for testing when I can't get to my WiiU, but im not ready to publish it yet.
In fact, it can't even be used by other people that have the exploit right now. Heres basically why its not "out" yet in any form.

1. It requires the kexploit. This means that only a few people can use it in the first place
2. It uses a modified version of the codehandler and the installer for the codehandler, and since I didn't write the originals, I need to do some checking before I publish it anywhere.
3. It relies on an old version of NWPlayer123's pygecko lib, and I need to update my code to match the newest code, since it's been improved a bit
4. This is my first AJAX based webapp, and I need to refactor the code a bit. I don't code in JS much so its really messy.

 

[mariogamer]

The 5.3.2 and 5.4.0 browser exploits are very different. Their kernel exploits are identical due to sharing the same OS.

and why,if it is the same kexploit,it is unstable on 5.4.0?

 

[BullyWiiPlaza]

and why,if it is the same kexploit,it is unstable on 5.4.0?

There are two different webkit exploits and the newer one is unstable. The kernel one is unaffected.

 

[nastys]

and why,if it is the same kexploit,it is unstable on 5.4.0?

The WebKit exploit is unstable, not the kernel one...

 

[mariogamer]

thank

another question,what is the difference:

kernel exploit - webkit exploit - IOSU exploit? and can you give me explanation for all?

I know that for the IOSU that it is an OS who can exploit diver thing,for example,the IOS 249 of the wii can lunch game on usb,but for other,I don't know a lot...

 

[CosmoCortney]

thank

another question,what is the difference:

kernel exploit - webkit exploit - IOSU exploit? and can you give me explanation for all?

I know that for the IOSU that it is an OS who can exploit diver thing,for example,the IOS 249 of the wii can lunch game on usb,but for other,I don't know a lot...

A webkit exploit is an exploit that abuses a bug in a webkit based browser such as like as the one of the wii u. It allows you to run custom code that can exploit a bug in the kernel (operating system). and though this you can exploit the IOSU (integrated operating system U(?)) which is mainly responsible for the console's savety i think

(...) Right now it just does an exact match, 4 byte, aligned search, but eventually I want it to be able to do more complex search types.

Would you mind adding 8Byte and 12Byte searches? A 12Byte search would make it much easier to find size modifiers

 

[mariogamer]

IOSU: Inpout-Outpout system U( for the wii u) ( special operating system)
exploit diver thing(IOS 249 of the wii can lunch game on usb for exemple) not necessarily of console savety.

 

[VinsCool]

IOSU: Inpout-Outpout system U( for the wii u) ( special operating system)
exploit diver thing(IOS 249 of the wii can lunch game on usb for exemple) not necessarily of console savety.

This might help you understanding.

http://wiiubrew.org/wiki/IOSU

 

[NWPlayer123]

Would you mind adding 8Byte and 12Byte searches? A 12Byte search would make it much easier to find size modifiers

Good idea, should also add in float conversion since editing Ink Colors in Splatoon is a pain right now, they store RGBA in 4 floats, so I have to do manual conversion

 

[CosmoCortney]

Good idea, should also add in float conversion since editing Ink Colors in Splatoon is a pain right now, they store RGBA in 4 floats, so I have to do manual conversion

That would be great
In GeckoDotNet you can write any decimal float into the search and poke textBoxes and convert it by to hex by right click. Same for text strings and vice versa. I'd be really happy to see this feature back

IOSU: Inpout-Outpout system U( for the wii u) ( special operating system)
exploit diver thing(IOS 249 of the wii can lunch game on usb for exemple) not necessarily of console savety.

Ok, thanks for the clarification

 

[Marionumber1]

the IOSU (integrated operating system U(?)) which is mainly responsible for the console's savety i think

As explained in the WiiUBrew article, IOSU runs on the secondary ARM processor, and serves two purposes: title security and hardware access. It is the Wii U rewrite of the Wii's IOS, which probably stood for Input/Output System. Title security involves making sure that all title data is signed by Nintendo: you can't change a single bit of it. Hardware access means that IOSU will implement device drivers for several things (storage, network, USB, Gamepad communication) and prevent the PPC from directly touching that hardware. Both title security and hardware access are accessed from the PPC through an IPC interface.

 

[Cyan]

@mariogamer:
I explained with simple words (for newbie) what a user exploit and kernel exploit are here, using very easy explanation
https://gbatemp.net/threads/wiiu-homebrew-development.391050/page-6#post-5612452

it's more complicated than that, but if you are new to hacking it's a nice explanation to understand other people's conversation.

I didn't talk about IOS though.
IOS are responsible for communicating between the console and the hardware (wiimote, USB, NAND, wifi, etc.). I think it can also be used to bus and memory protection, right?
an IOS exploit is needed if you want to access files on SD or USB, etc.
everything that the IOS is responsible for requires a vulnerability/exploit if you want to access it.

 

[ldeveraux]

and why,if it is the same kexploit,it is unstable on 5.4.0?

Alright, give it a rest already. If you have to ask what an OS is, you need more research than these users can provide.

 

[jammybudga777]

can i ask how comes there isnt a release off anything yet? i no everybody says "nintendo will patch it" but from what i see is alot of game modding goin on already amongst some other things. but surely weather its released now or in a few months its goin to get blocked regardless. which means more work on future firmwares will need approaching either way. the reason i ask is because i thought it would be better to release sooner "if most of it is working" then at least other people can start with thier own game mods and maybe start digging around deeper in the console instead of a minority doing it all? p.s im not moaning or trying to annoy or push anyone

 

[anon123857438]

I think the people that want to work on modifications already have the tools to do so without the exploit being released, and the exploit will only get patched once released because Nintendo doesn't know what is being exploited, one of the devs stated earlier that there's no point in releasing it now because no one is really using the exploit for anything worth while

 

[Marionumber1]

IOS are responsible for communicating between the console and the hardware (wiimote, USB, NAND, wifi, etc.). I think it can also be used to bus and memory protection, right?
an IOS exploit is needed if you want to access files on SD or USB, etc.
everything that the IOS is responsible for requires a vulnerability/exploit if you want to access it.

That's a mostly accurate description of IOSU. Just a few corrections:
-It also does title security, and handles permissions for running apps, including FS permissions
-SD access can only be done through allowed apps (Mii Maker and Smash come to mind), but USB may be possible to use from userspace
-The Bluetooth module seems to be handled by IOSU, but the Wii Remote library runs on the PPC and uses Bluetooth

And yes, it protects Latte registers (through HW_AHBPROT/HW_MEMIRR) and memory regions (through a new thing called MEM block).

 

[Dioxid]

There is still no mod chip or something similar to it for the Wii U ??

 

[Selim873]

Is there a way to test the blocked IP's to prevent any updates? I had to use a method to grab the IP's from the URLs and I put said IP's into my router's firewall. I went into the settings to check for an update and it said I was the latest version, and the eShop works (Is it not supposed to?)