Hacking Atmosphere-NX - Custom Firmware in development by SciresM

[BelmontSlayer]

I’m on v5.0.2. How long do I need to wait for a softmod hack since I don’t like doing hardmods?

SOON™

 

[souler92]

i do hope you put in a pokemon easter egg somewhere atleast..

great work!

 

[andijames]

Just 3d print one of the jigs. Sounds like one of the best non permanent solutions to me at the moment.

 

[Draxzelex]

The disclosure agreement that Kate has with NVidia sounds like it restricts her to releasing methods either after a certain date or after the same method has been released by someone else. The only one that's leaked so far is the tethered "hardmod", so we gotta wait a bit on software

Honestly, that would make sense...if there was a sign of that within the document. The whole thing talks about how the exploit works and how to load it, but there's only one part that talks about the setup.

"Set bit 2 of PMC scratch register zero. One modern firmwares, this requires EL3 or pre-sleep BPMP execution".

Unless I missed something, this is the only mention of a software version of running the exploit. She definitely doesn't detail the software method in the slightest. The only other explanation I can think of is that she submitted a separate disclosure notice just for the software exploits usable on firmwares 3.0 and below that probably has the same date as the one for Fusée Gelée (i.e. June 15th).

 

[TotalInsanity4]

Honestly, that would make sense...if there was a sign of that within the document. The whole thing talks about how the exploit works and how to load it, but there's only one part that talks about the setup.

"Set bit 2 of PMC scratch register zero. One modern firmwares, this requires EL3 or pre-sleep BPMP execution".

Unless I missed something, this is the only mention of a software version of running the exploit. She definitely doesn't detail the software method in the slightest. The only other explanation I can think of is that she submitted a separate disclosure notice just for the software exploits usable on firmwares 3.0 and below that probably has the same date as the one for Fusée Gelée (i.e. June 15th).

I could see her trying to cut mention of the software version from the write-up until release. She may have missed that bit, actually

 

[souler92]

me when i finally get inside switch's RCM

 

[ScarletDreamz]

I’m on v5.0.2. How long do I need to wait for a softmod hack since I don’t like doing hardmods?

If you updated to play online, please dont ask question like, when its going to be ready for your version.

You should stayed on lower firmware, this has been posted since always.

 

[souler92]

who cares for softmod, eppreciate you have a way in. i cried i updated accidently to 5.x , now i cry again because ITS IS COMING SOON™!!!!

 

[scoobydude51]

If you updated to play online, please dont ask question like, when its going to be ready for your version.

You should stayed on lower firmware, this has been posted since always.

Ik that, yet I was already on v5.0.0 by the time I first heard news of the bootrom exploit, so it was too late anyways.

 

[aerios169]

If you updated to play online, please dont ask question like, when its going to be ready for your version.

You should stayed on lower firmware, this has been posted since always.

i would like to say the same but i fuck it off for error now i am on 5.0.1 =/ without online

 

[Rune]

I could see her trying to cut mention of the software version from the write-up until release. She may have missed that bit, actually

But then again, wasnt that disclosure sent to Nvidia? So any firmware related software exploit is no concern to them. That's Nintendo's problem. The issue for Kate was that the exploit affected Nvidia Tegra chips and not just the one in the Nintendo Switch. If there's a software exploit that works on Switch's below 3.0, then Kate doesn't have to bother with disclosing that info because firstly, it only affects the Switch. And secondly, its something Nintendo can patch with a firmware update.

 

[Draxzelex]

I could see her trying to cut mention of the software version from the write-up until release. She may have missed that bit, actually

If she edited the PDF to omit that type of information, I think it would be fairly obvious. Each section flows into the next so I don't believe it was cut out from the body of the document. This only leaves it being at the end of it which wouldn't make sense because at this point, the flow wouldn't make sense. That would mean she would be building off a point she mentioned a whole page previously. Why not have just gone directly into the details of the software exploit first than go into mitigation issues which gives more of a sense that you're done detailing everything you need to do regarding the exploit?

But then again, wasnt that disclosure sent to Nvidia? So any firmware related software exploit is no concern to them. That's Nintendo's problem. The issue for Kate was that the exploit affected Nvidia Tegra chips and not just the one in the Nintendo Switch. If there's a software exploit that works on Switch's below 3.0, then Kate doesn't have to bother with disclosing that info because firstly, it only affects the Switch. And secondly, its something Nintendo can patch with a firmware update.

That's why I think there's a second disclosure notice that she has not yet revealed yet which probably shares the same date as the one for Fusee Gelee.

 

[TotalInsanity4]

If she edited the PDF to omit that type of information, I think it would be fairly obvious. Each section flows into the next so I don't believe it was cut out from the body of the document. This only leaves it being at the end of it which wouldn't make sense because at this point, the flow wouldn't make sense. That would mean she would be building off a point she mentioned a whole page previously. Why not have just gone directly into the details of the software exploit first than go into mitigation issues which gives more of a sense that you're done detailing everything you need to do regarding the exploit?

That's why I think there's a second disclosure notice that she has not yet revealed yet which probably shares the same date as the one for Fusee Gelee.

While I see your point, she did say on Twitter that she was finishing up the write-up before she released the exploit after it was leaked. That would've given her time to rewrite sections

I mean I obviously don't know what did or didn't happen, I'm just throwing out suggestions for what COULD have

 

[MachRc]

I’m on v5.0.2. How long do I need to wait for a softmod hack since I don’t like doing hardmods?

At the rate this hard-mod is taking off, it might not even be worth trying to find a way into 5.x by software means..

 

[Draxzelex]

While I see your point, she did say on Twitter that she was finishing up the write-up before she released the exploit after it was leaked. That would've given her time to rewrite sections

I mean I obviously don't know what did or didn't happen, I'm just throwing out suggestions for what COULD have

Oh no, I totally get that. Honestly, your suggestions make sense with what little information we're working with. I know it doesn't even change the fact of when we're getting them but considering we've been telling everyone to stay on as low a firmware as possible to make their lives easier and now subsequently leading everyone else to doing 'tiny soldering', the irony is showing itself in strides.

 

[scoobydude51]

At the rate this hard-mod is taking off, it might not even be worth trying to find a way into 5.x by software means..

So basically I just screwed myself by updating?

 

[Rune]

That's why I think there's a second disclosure notice that she has not yet revealed yet which probably shares the same date as the one for Fusee Gelee.

My point is, there probably isnt a second disclosure notice because there doesn't need to be one.
Kate's concerns were with the Tegra chip and the use of the exploits in non-Switch devices like Tesla cars. A software exploit (especially one that only works on certain firmwares) is an exploit exclusive to the Switch. Kate wouldn't need to care about that as it can be patched by Nintendo (and has been on 3.0+), and also because it doesnt affect Tesla cars or anything else with a Tegra chip.

I think the only reason the software solution hasnt been revealed already is because they want to release Atmosphere to as many people as possible, and at the same time rather than a staggered release for different firmwares.
And also, the fact that the work on Atmosphere isn't complete means that we need to wait anyway,

 

[Draxzelex]

My point is, there probably isnt a second disclosure notice because there doesn't need to be one.
Kate's concerns were with the Tegra chip and the use of the exploits in non-Switch devices like Tesla cars. A software exploit (especially one that only works on certain firmwares) is an exploit exclusive to the Switch. Kate wouldn't need to care about that as it can be patched by Nintendo (and has been on 3.0+), and also because it doesnt affect Tesla cars or anything else with a Tegra chip.

I think the only reason the software solution hasnt been revealed already is because they want to release Atmosphere to as many people as possible, and at the same time rather than a staggered release for different firmwares.
And also, the fact that the work on Atmosphere isn't complete means that we need to wait anyway,

That actually makes a lot of sense. The disclosure notice "drama" only began because this exploit had potential for other devices. The supposed software solution wouldn't. True, Atmosphere is their coup de grâce and certainly doesn't mark the end of their development. Fusee Gelee is useless to everyone except those interested in making homebrew for the rest of us.

The problem is this hardmod method of loading Fusee Gelee already promotes the broadest implementation of the future CFW. The software method has already been patched out evidenced by the fact they stated there is no working method for firmwares above 4.1 which is basically all of 5.x And the general rule of thumb in the hacking scene has always been to release exploits that have been patched out since they were being held back due to the fear of being patched out in the first place. So I'm just curious what other possible reason she has for not releasing the software exploit.

I mean she only gave us a release window not a date, even though she had a date, to prevent hype from building up around that date. Yes it may sound like trying not to live up to a promise, but at the very least, its an odd way of phrasing the former statement.

 

[Rune]

That actually makes a lot of sense. The disclosure notice "drama" only began because this exploit had potential for other devices. The supposed software solution wouldn't. True, Atmosphere is their coup de grâce and certainly doesn't mark the end of their development. Fusee Gelee is useless to everyone except those interested in making homebrew for the rest of us. The problem is this hardmod method of loading Fusee Gelee already promotes the broadest implementation of the future CFW. The software method has already been patched out evidenced by the fact they stated there is no working method for firmwares above 4.1 which is basically all of 5.x And the general rule of thumb in the hacking scene has always been to release exploits that have been patched out since they were being held back due to the fear of being patched out in the first place. So I'm just curious what other possible reason she has for not releasing the software exploit.

I mean she only gave us a release window not a date, even though she had a date, to prevent hype from building up around that date. Yes it may sound like trying not to live up to a promise, but at the very least, its an odd way of phrasing the former statement.

I dont think she needs to "release" a software solution if the solution itself is Pegaswitch. She said herself that people on 3.0 will have a software only option but might choose to do the hard mod anyway.
This makes perfect sense if the hardmod allows you to jump straight into Atmosphere while 3.0 and below have to use Pegaswitch to load the CFW.

 

[MachRc]

So basically I just screwed myself by updating?

No, we just dont know yet.

Ive stayed on 3.0.0, I may have screwed myself by NOT updating to play some newer games.
Some people bought two MFing swithces, they may have screwed themselves(nah more is better)

to get to the biggest enduser base, these "hardmods" or 3d printed switches will probably be the most popular entry point and will get the most development time (RIP HBL thanks cpasjustice for all your hard work) for now....

In two months things can totally change. SciccorsEm got his thing going, things can mix, the scene could be hit with another major discovery.,,

who would have thunk two pins.....