Hacking Wii U Hacking & Homebrew Discussion

[davetheshrew]

true, but lots of people will be disappointed. Maybe other hackers will continue his work, or he will somehow block things. I don`t know I`m just a n00b.

I heavily doubt things will be blocked like you say, just that he wont take part in any piracy, which in all honesty is a GOOD thing, however, thats all speculation, wait, we will have the files soon and then we all know.

 

[MRJPGames]

They will. It's like smeas 3ds exploit. He is anti piracy as well but that didn't stop anything.

Well, his exploit was not meant to block piracy in anyway it just didn't allow for it out of the box. Essentially any piracy that happens through ninjhax/*hax is using a secondary exploit that the homebrew runs (which has nothing to do with smea's exploit). In this case IOSU to my understanding is like ARM9 on 3DS in a way it can already allow for piracy on it's own no secondary exploit needed... (pls correct me if I am wrong but that's my understanding from lurking here...)

 

[oPolo]

Even IF this is a real quote, what's there to hinder? Loadiine has already achieved almost perfect compatibility. Obfuscating the exploit likely won't get in the way of enabling downgrades, so anyone who wants to pirate simply has to downgrade to 5.4, and use Loadiine through the current kernel exploit for backup loading.

How would you downgrade with IOSU? This statement is as annoying as people saying that we will get emuNAND and can update our FW indefinitely.
We do not have access to boot1, which is needed for downgrading (and for emuNAND updating too).
...And why would we want to downgrade anyway, if we get boot1 access, as the system is pretty much broken open then <_<?

 

[MRJPGames]

How would you downgrade with IOSU? This statement is as annoying as people saying that we will get emuNAND and can update our FW indefinitely.
We do not have access to boot1, which is needed for downgrading (and for emuNAND updating too).
...And why would we want to downgrade anyway, if we get boot1 access, as the system is pretty much broken open then <_<?

EDIT: nvm

 

[gamer4lif3]

I suppose we will see when he release this thing.

 

[OriginalHamster]

I don't know either... Obfuscation doesn't really work that way, if a homebrew has access to the proper services any kind of obfuscation is not going to help against using the correct service to just launch a title from USB without checking sigs, but if Hykem really said so I guess in this case it does?

Really wanted to get on #WiiUDev IRC, but get this message everytime
"#WiiUDev Cannot join channel (+b)"
On EFNET which I believe is the correct one so IDK why I'm getting this...
EDIT: I was using browser, apparently you need to use proper IRC client...

Maybe usb access still only available for Wii U formated storage devices, meaning that you can't just copy/paste games to your device. I don't know...
The word 'hinder' was used, not 'prevention'

 

[JohnathanMonkey]

Well, his exploit was not meant to block piracy in anyway it just didn't allow for it out of the box. Essentially any piracy that happens through ninjhax/*hax is using a secondary exploit that the homebrew runs (which has nothing to do with smea's exploit). In this case IOSU to my understanding is like ARM9 on 3DS in a way it can already allow for piracy on it's own no secondary exploit needed... (pls correct me if I am wrong but that's my understanding from lurking here...)

That's very true. He himself didn't release anything that could allow piracy is what I should've said.

 

[Deleted User]

hykem is an awesome guy, I wouldnt post fake shit about him, he wants to help the scene and thats exactly what he is doing

There you go dude, corroboration

 

[davetheshrew]

There you go dude, corroboration

thank you very much

 

[oPolo]

Updates are signed in such a way they work on any and all Wii U's so downgrading should be possible because there's no fuse like PS3 and such... Probably like 3DS remove updated and reinstall old version to downgrade. (speculation at this point ofc.)

There might not be efuses like on the xbox, but boot0 (which is the ARM bootROM - there's little chance of ever getting that) compares the version numbers of the boot1 header and the one stored in the eeprom. If they do not match up, then there's no luck to find there - boot0 will not execute boot1, which initialises the ARM OS (IOSU) in return.

 

[MRJPGames]

There might not be efuses like on the xbox, but boot0 (which is the ARM bootROM - there's little chance of ever getting that) compares the version numbers of the boot1 header and the one stored in the eeprom. If they do not match up, then there's no luck to find there - boot0 will not execute boot1, which initialises the ARM OS (IOSU) in return.

Then downgrade the OS not boot1 XD

 

[oPolo]

Then downgrade the OS not boot1 XD

Hah That might work, but since boot1 is editable by Ninty (whereas boot0 is not, as its stored physically inside the CPU die), they could always do as Sony did, when the metldr on the ps3 was breached. Sony moved everything one step higher up in their bootchain (to the bootldr, which we did not have access to at that time).

Since boot1 is editable, Ninty could likewise move stuff up into the bootldr or change the bootloader in some way, so we are out in the cold again :/ Well, in terms of downgrading and emuNAND, atleast.
The charm of IOSU is mostly, that it gives us access to everything we could ever need for homebrew on the current FW (and later FWs until the vulnerability is patched).

 

[codychaosx]

Very interesting. So instead of just not supporting or endorsing piracy, he's going go so far as to "hinder" it. Well what's the point of his exploit then? Only good homebrew are emulators or backup loaders. All of which enable piracy.

Starting to feel maybe like I should make the hour drive to pick up the last splatoon/smash bundle at target

 

[MRJPGames]

Hah That might work, but since boot1 is editable by Ninty (whereas boot0 is not, as its stored physically inside the CPU die), they could always do as Sony did, when the metldr on the ps3 was breached. Sony moved everything one step higher up in their bootchain (to the bootldr, which we did not have access to at that time).

Since boot1 is editable, Ninty could likewise move stuff up into the bootldr or change the bootloader in some way, so we are out in the cold again :/ Well, in terms of downgrading and emuNAND, atleast.
The charm of IOSU is mostly, that it gives us access to everything we could ever need for homebrew on the current FW (and later FWs until the vulnerability is patched).

But the boot chain would only be updated if you were stupid enough to update your FW in the first place, so as long as you don't do that it seems to me that there would be no problem XD

 

[davetheshrew]

But the boot chain would only be updated if you were stupid enough to update your FW in the first place, so as long as you don't do that it seems to me that there would be no problem XD

no updating, spoof, you're golden.

 

[MRJPGames]

Very interesting. So instead of just not supporting or endorsing piracy, he's going go so far as to "hinder" it. Well what's the point of his exploit then? Only good homebrew are emulators or backup loaders. All of which enable piracy.

Starting to feel maybe like I should make the hour drive to pick up the last splatoon/smash bundle at target

Emulators will still work as they are homebrew (only the roms are not but those can't really be blocked XD) and piracy might be hindered but I am pretty confident we will see a piracy launcher at some point, this might just make it take longer before we get there.
Also there is other good homebrew than just Piracy loaders and emulators LMFAO

--------------------- MERGED ---------------------------

no updating, spoof, you're golden.

Wouldn't emuNAND be better than a spoof?

 

[davetheshrew]

Wouldn't emuNAND be better than a spoof?

yes but I believe we are all a long ways off this.

 

[codychaosx]

Also there is other good homebrew than just Piracy loaders and emulators LMFAO

You're probably right, but in my opinion most homebrew games are not worth playing. Now there are some useful apps however, like media players and file browsers. Media player to play pirated content and a file browser to make sure my pirated content is in the correct folders for other piracy enabling homebrew.

I did forget about Wagic. Wagic was an amazing homebrew. (kind of like piracy in a way though. I mean using "copies" of magic cards lol.)

Aside from doom,hexen and the like (which most people pirate the wads for lol) what else would you suggest?

 

[oPolo]

But the boot chain would only be updated if you were stupid enough to update your FW in the first place, so as long as you don't do that it seems to me that there would be no problem XD

If Nintendo does any sanity checks inside boot1 on the OS it is about to load (which it definitely should), then it wouldn't work.
Imagine, when you install a new firmware (or in the firmware that the WII U came with) that there is a version number in the boot1 and ARM OS, which must match. Updating only one of them, would make it not pass its comparison check and thus fail.
That's the issue with the boot1 being writable for Ninty - they are free to do this.

AFAIK emuNAND goes: boot0 is hardcoded in the physical CPU and read-only, so we will not be able to change, where it looks for boot1. So I see emuNAND highly unlikely, as the emuNAND should contain boot1 as well, since it probably needs to match the current firmware on the machine.
Then we should hope for finding a vulnerability in boot1, which we can utilize to make it pass its signature-check, although it should not, but -- as said, boot1 is writable, and thus Nintendo is free to change it and fix vulnerabilities as they please.

EDIT: A dream of a day, where some application such as Showtime for PS3 finds it way to the homebrew scene of the Wii U. In case you wondered about useful homebrew.

 

[davetheshrew]

You're probably right, but in my opinion most homebrew games are worth playing. Now there are some useful apps however, like media players and file browsers. Media player to play pirated content and a file browser to make sure my pirated content is in the correct folders for other piracy enabling homebrew.

I did forget about Wagic. Wagic was an amazing homebrew. (kind of like piracy in a way though. I mean using "copies" of magic cards lol.)

Aside from doom,hexen and the like (which most people pirate the wads for lol) what else would you suggest?

i want blu ray codecs and blu ray disk compatibility, not piracy but will make sony bat shit mad