Hacking Firmware status

[KuDesNik_aka_VipeR]

Patience is a virtue. Also, this is something that these people do as a hobby, for free, in their own spare time. Life just gets in the way sometimes.

I understand this perfectly and appreciate their work. It's just that usually there is a calm before the storm. So I decided to ask...

 

[DaveC1964]

How do you know if you have a Mariko unit or not? If I buy a Switch now how would I know if it is Mariko or not if it has a 5.x firmware on it?

 

[the_randomizer]

Why does the OP say "TBD" for 5.x.x softmods? I was told such a thing was impossible or unlikely, so, shouldn't the OP be changed to "impossible"?

 

[Draxzelex]

How do you know if you have a Mariko unit or not? If I buy a Switch now how would I know if it is Mariko or not if it has a 5.x firmware on it?

Mariko units have not appeared yet so we do not know how to identify them. At the very least, they need a 5.X firmware or higher.

Why does the OP say "TBD" for 5.x.x softmods? I was told such a thing was impossible or unlikely, so, shouldn't the OP be changed to "impossible"?

Deja Vu, the softmod that works up to 4.1, has not been released yet so there is reason to believe Nintendo has not patched it out in 5.X. However, the developers have not tested this nor any other softmods on 5.X so we cannot say for certain there are no softmods that can work for 5.X.

 

[the_randomizer]

Mariko units have not appeared yet so we do not know how to identify them. At the very least, they need a 5.X firmware.
Deja Vu, the softmod that works up to 4.1, has not been released yet so there is reason to believe Nintendo has not patched it out in 5.X. However, the developers have not tested this nor any other softmods on 5.X so we cannot say for certain there are no softmods that can work for 5.X.

Well, 4.x.x softmods haven't been released yet, and no one on the Switch hacking teams likely even have 5.x.x consoles, so I'm not even gonna bother holding my breath for that one. I don't see it being a thing for years IMO.

 

[Ian095]

I'm on 4.1.0 seems like the last FW supported for a softmod (lucky me).
Not even sure if I should stay on it or update it seems to be suggested it's best to not update especially since I care little for online.
The wait and quietness of Atmosphere is leaving me sitting doing nothing rn wish there was a predicted release date.
What gets me is I definitely don't want to miss out on Pokemon Eevee/Pikachu and Smash Bros and from what I've heard there is currently no bypass to play these without updating to the respective firmware they require and I have 0 experience in how to avoid burning fuses and how to downgrade back to a lower firmware.

Hoping for a release in the next 4 months.

 

[guaycuru]

I've been silently following this forum for some 4 months now, and I need to say thank you @Draxzelex very much, you've answered most of my questions with two incredibly useful posts!

Now there's one question that still remains, and I'm not sure whether you or someone else here could answer. Here in Brazil I basically rely on buying games from the eShop (changing my Nintendo account region every now and then) because buying physical cartridges is impractical and way too expensive (they are not officially imported nor available), and I'm currently on 4.1.0.

Would it make sense to wait for Déjà Vu to be released so I can have an untethered exploit to use EmuNAND to access the eShop, or is it most likely that EmuNAND will not have access to the eShop and I'm waiting around, not being able to play some new games for nothing?

Just to be clear: I'm not interested in piracy ("backup loading"), but I do want to be able to run homebrew, etc, while also being able to buy new games via the eShop. I know I can update to the latest firmware and use fusee gelee, but that's not very practical.

Thank you very much to whoever is able to answer me.

 

[Draxzelex]

I've been silently following this forum for some 4 months now, and I need to say thank you @Draxzelex very much, you've answered most of my questions with two incredibly useful posts!

Now there's one question that still remains, and I'm not sure whether you or someone else here could answer. Here in Brazil I basically rely on buying games from the eShop (changing my Nintendo account region every now and then) because buying physical cartridges is impractical and way too expensive (they are not officially imported nor available), and I'm currently on 4.1.0.

Would it make sense to wait for Déjà Vu to be released so I can have an untethered exploit to use EmuNAND to access the eShop, or is it most likely that EmuNAND will not have access to the eShop and I'm waiting around, not being able to play some new games for nothing?

Just to be clear: I'm not interested in piracy ("backup loading"), but I do want to be able to run homebrew, etc, while also being able to buy new games via the eShop. I know I can update to the latest firmware and use fusee gelee, but that's not very practical.

Thank you very much to whoever is able to answer me.

Weird that I didn't get a notif for someone tagging me, but I keep a good eye on the threads I watch. So there was a little bit of an update for users who have not updated but want to enjoy the features of being on the latest firmware. There is a way to update your firmware without burning fuses which is what prevents downgrading. You can find a complete tutorial here: https://gbatemp.net/threads/how-to-...nofficially-without-burning-any-fuses.507461/

To properly explain this, fuses are built into your Switch as an anti-downgrade mechanism. Every few system updates or so, fuses are burnt (decided by Nintendo). When the Switch turns on, it checks the number of fuses burnt with the current firmware. If the number of fuses burnt are less than expected of the current firmware, the Switch (more appropriately, the bootloader aka the Switch's turning on family of functions) burns fuses to match the firmware. The Switch will never boot up if the number of fuses do not match the firmware. That is where Hekate comes into play. It is a payload that doubles as a substitute bootloader. Not only does it prevent fuses from being burnt, but it also bypasses the fuse check entirely. This guide uses Hekate to allow you to safely update. Here is the catch: using this method means you must turn your Switch on through Hekate only as booting up through the Switch's bootloader will burn the fuses. That is where AutoRCM comes into play which will prevent the Switch's bootloader from ever taking over. AutoRCM acts more like a fail-safe this way, but if you have a 100% reliable way of inducing RCM that you would risk your fuses over, you can use that as well. One thing to mention is that AutoRCM is removed during a system update so there's another tool in that tutorial that deals with that issue specifically.

Anyways, to answer your question, EmuNAND can let you access the eShop once it is implemented so long as it is on the latest firmware. You can also access the eShop using the above tutorial if you don't want to wait. The one reason I would not recommend the tutorial I linked is because it you cannot hide any hacks/homebrew you use on your Switch as opposed to using a hack-free EmuNAND with a hack-full SysNAND.

 

[The Real Jdbye]

I've been silently following this forum for some 4 months now, and I need to say thank you @Draxzelex very much, you've answered most of my questions with two incredibly useful posts!

Now there's one question that still remains, and I'm not sure whether you or someone else here could answer. Here in Brazil I basically rely on buying games from the eShop (changing my Nintendo account region every now and then) because buying physical cartridges is impractical and way too expensive (they are not officially imported nor available), and I'm currently on 4.1.0.

Would it make sense to wait for Déjà Vu to be released so I can have an untethered exploit to use EmuNAND to access the eShop, or is it most likely that EmuNAND will not have access to the eShop and I'm waiting around, not being able to play some new games for nothing?

Just to be clear: I'm not interested in piracy ("backup loading"), but I do want to be able to run homebrew, etc, while also being able to buy new games via the eShop. I know I can update to the latest firmware and use fusee gelee, but that's not very practical.

Thank you very much to whoever is able to answer me.

As Draxzelex said you can update your system without burning the eFuses and Hekate bypasses the fuse checks so you can run an updated system and be able to go back any time if you have a NAND backup. That's currently the recommended way to update (as long as you're not an SX OS user since they haven't patched out the fuse checks), but keep in mind errors from homebrew will be logged and sent to Nintendo and they can use that as a means to find out that you're running homebrew and ban you.

 

[TotalInsanity4]

Sorry to be "that guy," but I've been taking time off from the scene for a while. I assume that the status of Atmosphere is about the same as when I left it (which is to say, unreleased)

 

[Draxzelex]

Sorry to be "that guy," but I've been taking time off from the scene for a while. I assume that the status of Atmosphere is about the same as when I left it (which is to say, unreleased)

You got it. Actually, we've got one notable development. LayeredFS was recently added which allows users to mod games although when it was first released, people used it to swap game files to load backups known as LayeredFS Backup Launching. The newer version of LayeredFS has patched this out. But yeah, Atmosphere is still to yet to be officially completed.

 

[lotus12201]

I have read through this Thread and tried to search the Forum, but i couldnt find an clear answer.
Is there any Difference between having 3.0.2 or 4.1 Firmware for Possible future homebrew ?
meaning should i update or wait ?

 

[Ian095]

You got it. Actually, we've got one notable development. LayeredFS was recently added which allows users to mod games although when it was first released, people used it to swap game files to load backups known as LayeredFS Backup Launching. The newer version of LayeredFS has patched this out. But yeah, Atmosphere is still to yet to be officially completed.

I never knew it was patched out (to be fair never used it to begin with too complicated to bother) but why does this annoy me? Like people claim to be saints who would never pirate a game yet for some reason pirating old games from 15 or more years ago seems to be acceptable? Not to mention all that work for a custom firmware for the 3DS I'm not sure who developed Luma3DS which is what I used but that thing was straight out pirate enabling software. If someone was truly said saint they'd go to their local game reseller and buy the original game and hardware.

I'm sure for other than mods nobody would use LayeredFS besides for the one thing they patched out. I guess when you're making grey area software it's probably best to pretend they're a Nintendo saint? It seems like LayeredFS being able to run backups probably wasn't a mistake anyways if anything I always thought that was a feature. Let's be honest as soon as Atmosphère is out officially people are going to be looking for the guy brave enough to create a literal piratebay app. (Something which is a mimic of SX OS).

This isn't directed at you either just, in general, the masking this community has which I'm sure for most people is in good reason is just ridiculous when you have someone straight up denying they'd ever do such a thing in the threads on here but they feel like playing the original Super Mario Bros. so they're going to use homebrew to play it...

 

[tiliarou]

I never knew it was patched out (to be fair never used it to begin with too complicated to bother) but why does this annoy me? Like people claim to be saints who would never pirate a game yet for some reason pirating old games from 15 or more years ago seems to be acceptable? Not to mention all that work for a custom firmware for the 3DS I'm not sure who developed Luma3DS which is what I used but that thing was straight out pirate enabling software. If someone was truly said saint they'd go to their local game reseller and buy the original game and hardware.

I'm sure for other than mods nobody would use LayeredFS besides for the one thing they patched out. I guess when you're making grey area software it's probably best to pretend they're a Nintendo saint? It seems like LayeredFS being able to run backups probably wasn't a mistake anyways if anything I always thought that was a feature. Let's be honest as soon as Atmosphère is out officially people are going to be looking for the guy brave enough to create a literal piratebay app. (Something which is a mimic of SX OS).

This isn't directed at you either just, in general, the masking this community has which I'm sure for most people is in good reason is just ridiculous when you have someone straight up denying they'd ever do such a thing in the threads on here but they feel like playing the original Super Mario Bros. so they're going to use homebrew to play it...

I would not think in that way actually, people have different ethics and we shall respect that.
Yes, at first glance your points are valid but if you look into the details, allowing modding and "liberating" bootloaders to run any code is totally different "in essence" than pirating games (backup loading).
The only statement that is valid for me is thanking those devs for releasing all code on github for anyone to have a look and modify it as needed. The rest is an ethical debate which is quite complicated and deep IMHO.

 

[Ian095]

I would not think in that way actually, people have different ethics and we shall respect that.
Yes, at first glance your points are valid but if you look into the details, allowing modding and "liberating" bootloaders to run any code is totally different "in essence" than pirating games (backup loading).
The only statement that is valid for me is thanking those devs for releasing all code on github for anyone to have a look and modify it as needed. The rest is an ethical debate which is quite complicated and deep IMHO.

Yeah, you definitely aren't wrong. Running code behind Nintendo's back in itself is unethical in a sense though I do appreciate the hard work put into all of this over the years of each consoles life cycle. I'm not saying the devs are in-denial pirates either they usually have passion driving them to make open source software for games consoles, etc. I definitely understand why someone would want to backup saves though when Nintendo failed to provide a way of doing so, but then they have announced their paid service would do that... It's just the minority with backward logic that gets me plus the whole idea that the majority of the community aren't after saving money and giving Nintendo's devs the finger.

 

[Isaac_ssbm]

as long as you're not an SX OS user since they haven't patched out the fuse checks)

Didn’t they address that in their latest update?

 

[The Real Jdbye]

Didn’t they address that in their latest update?

No, they patched the fuse burning (if you're referring to 1.2) but according to someone on here you can't actually boot newer versions without also patching the checks. It just stops SX OS from burning every fuse even if you're on a older firmware.

 

[Draxzelex]

Didn’t they address that in their latest update?

No, they patched the fuse burning (if you're referring to 1.2) but according to someone on here you can't actually boot newer versions without also patching the checks. It just stops SX OS from burning every fuse even if you're on a older firmware.

SX OS v1.1 prevents fuses from being burnt while v1.2 bypasses the fuse check. So you can boot newer firmwares but only with SX OS v1.2.

Source: https://www.maxconsole.com/threads/team-xecuter-releases-sx-os-v1-2.46981/

 

[The Real Jdbye]

SX OS v1.1 prevents fuses from being burnt while v1.2 bypasses the fuse check. So you can boot newer firmwares but only with SX OS v1.2.

Source: https://www.maxconsole.com/threads/team-xecuter-releases-sx-os-v1-2.46981/

Ah okay, didn't know that.

 

[TAUSENN]

I never knew it was patched out (to be fair never used it to begin with too complicated to bother) but why does this annoy me? Like people claim to be saints who would never pirate a game yet for some reason pirating old games from 15 or more years ago seems to be acceptable? Not to mention all that work for a custom firmware for the 3DS I'm not sure who developed Luma3DS which is what I used but that thing was straight out pirate enabling software. If someone was truly said saint they'd go to their local game reseller and buy the original game and hardware.

I'm sure for other than mods nobody would use LayeredFS besides for the one thing they patched out. I guess when you're making grey area software it's probably best to pretend they're a Nintendo saint? It seems like LayeredFS being able to run backups probably wasn't a mistake anyways if anything I always thought that was a feature. Let's be honest as soon as Atmosphère is out officially people are going to be looking for the guy brave enough to create a literal piratebay app. (Something which is a mimic of SX OS).

This isn't directed at you either just, in general, the masking this community has which I'm sure for most people is in good reason is just ridiculous when you have someone straight up denying they'd ever do such a thing in the threads on here but they feel like playing the original Super Mario Bros. so they're going to use homebrew to play it...

Do not expect much consistency from a project that will always be in a grey area.