Hacking Discussion Unhackable Firmware 6.0 to be released soon

[HideoKojima]

Rumor or truth : I've been reading lately in some forums that Ninty will release fm 6.0 soon. If you are familiar with version numbers, this is a huge update and probably will come to wipe out all the exploits.

Edit: Of course Tegra exploit cannot be fixed since it's a hardware exploit (except if you sent your console for repair as they may patch it) but this might have a huge impact on the ability to play Xci and Nsp in the future.

 

[Ricken]

Rumor or truth : I've been reading lately in some forums that Ninty will release fm 6.0 soon. If you are familiar with version numbers, this is a huge update and probably will come to wipe out all the exploits.

Any sauce behind any of the claims though?

 

[zoogie]

Rumor or truth : I've been reading lately in some forums that Ninty will release fm 6.0 soon. If you are familiar with version numbers, this is a huge update and probably will come to wipe out all the exploits.

The RCM vuln is cooked into the bootrom and there's no way to patch it on existing systems that have it.

 

[huma_dawii]

Maybe will break Homebrew again? But like I said before... they can't patch RCM lol

If they add YouTube, Web Browser and Netflix I would totally install the update if it's stability improvements then no.

 

[HideoKojima]

The RCM vuln is cooked into the bootrom and there's no way to patch it on existing systems that have it.

It seems it's more about paticjinh

Any sauce behind any of the claims though?

Seems that member @garyopa has already talked about this in the BBB Nsp thread, quoting him:
"Ok some more clues, Yes, I been hinting about the upcoming 'firm 6 series' to be rolled out soon publicly, lucky its already in beta for those with devkits, so we have time to find ways around it!

Alot of changes under the hood by big 'N', the top 4 are:

#1: massive file checks on both xci and nsp
#2: massive cdn changes
#3: massive efuses changes
#4: all new keys, and cart3 coming later on!

Top 4 things we will need to do and wait for:

#1: FIRST Don't Update to 6.x!
#2: Work Towards Emunand, and/or improved ways and apps to be able 'upgrading' without changes to 'fuses' similar to the current manual guides.
#3: New hardware might be needed to bypass 6.x checks. (ie. modded Joycons with UARTs added)
#4: Hopefully #2, will help remove the need for #3. (currently, only developers need #3 to find better solutions)"

 

[Ashura66]

The big vulnerability with current systems is a HARDWARE one, not a SOFTWARE one. Meaning that they can't simply patch access to RCM. Now there are some current systems that have been patched against running payloads but it's only a matter of time until that is circumvented. And if a big patch against payloads comes with OFW 6.0, it will be only a matter of time until THAT is circumvented as well

 

[Draxzelex]

It seems it's more about paticjinh

That's not at all what he's referring to. He's talking about the fact that your thread title is actually false since the current exploit CANNOT be patched no matter how many firmware updates Nintendo releases. And even if it does patch out certain hacks and CFWs that we use, devs can just update their work so its compatible with firmware 6.X. A new firmware update is not the end of the world especially with a HARDWARE exploit that gives us complete access to the entire console.

 

[HideoKojima]

I don't

That's not at all what he's referring to. He's talking about the fact that your thread title is actually false since the current exploit CANNOT be patched no matter how many firmware updates Nintendo releases. And even if it does patch out certain hacks and CFWs that we use, devs can just update their work so its compatible with firmware 6.X. A new firmware update is not the end of the world especially with a HARDWARE exploit that gives us complete access to the entire console.

I don't mean the hardware, it seems that this will have effects on the ability to load Xci and nsp files.

 

[chrisrlink]

well remember they implemented a way to shut down free shop by implementing the same checks one shop as the switch in 11.8 I will wait to see what happens if. it's true looks like a CDN BAN ain't so bad after all

 

[Draxzelex]

I don't

I don't mean the hardware, it seems that this will have effects on the ability to load Xci and nsp files.

Reread what I posted (I highlighted it for you)

That's not at all what he's referring to. He's talking about the fact that your thread title is actually false since the current exploit CANNOT be patched no matter how many firmware updates Nintendo releases. And even if it does patch out certain hacks and CFWs that we use, devs can just update their work so its compatible with firmware 6.X. A new firmware update is not the end of the world especially with a HARDWARE exploit that gives us complete access to the entire console.

 

[HideoKojima]

Reread what I posted (I highlighted it for you)

You win, sorry didn't read well

 

[chrisrlink]

maybe their preparing for an auto ban system especially for CDNSP

--------------------- MERGED ---------------------------

or herse a thought what if the new autoban system places a byte on your NSP's downloaded through CDNSP or other non authorized means you install it causing a CDN ban on your switch even if you used a public cert file

 

[bundat]

They can't patch Fusee Gelee/ShofEL2, but I'm thinking they have a few options.
e.g. they can put in massive checks (for nulled cert XCIs, or fake ticket NSPs installed, etc.) and then burn like 100 fuses when they they detect such a thing (can fuse programming even be done from Horizon, or is that a bootloader only thing?)

That means you'll never be able to boot normally again, you will need to use Hekate/CFW/SX OS everytime.

Then they can just detect CFW and ban you for that, OR, they can then detect the "booted from RCM flag", which someone said was supposedly detectable by Horizon OS (although you can avoid being detected if you are follow a procedure like: RCM -> Hekate -> do stuff like backup NAND -> power off and then reboot normally without RCM... basically never boot into HOS if you booted from RCM). And then they can deny all online access when this flag is set (they shouldn't ban just for that, as RCM has actual uses like for repair, but who knows), and show you a dialog asking you to restart normally.

I think that would be a bit far-fetched though. All that will do is catch a few quick updaters, before devs patch out any new fuse burning stuff and RCM flag checks/any other checks.

I think the more realistic scenario is they change how eShop requests work, and after a week or so grace period, "flip the switch", and thus kill CDNSP like they killed Freeshop for the 3DS.

This is all speculation anyway from a rumor.
The ONLY sure things are:

• Fusee Gelee/ShofEL2 will ALWAYS be there and NEVER go away for units that are vulnerable, and
• the CFW/HB devs will eventually find and patch out any new checks they add into Horizon unless SciresM, Raj, Rei, the entire Reswitched team and Ping Long all fall into a cliff before FW 6 is released (and even that is just delaying the inevitable)

 

[HideoKojima]

I think that the risk at the moment besides ban, is not being able to new play Xci or Nsp games that requires a higher fm and not being able to update to this fm due to the risk of ban, I'm sure that solutions can be found in the future but things might take some time (we are still waiting for Atmosphère) hence emunand is more required than ever.

 

[OrGoN3]

They can't patch Fusee Gelee/ShofEL2, but I'm thinking they have a few options.
e.g. they can put in massive checks (for nulled cert XCIs, or fake ticket NSPs installed, etc.) and then burn like 100 fuses when they they detect such a thing (can fuse programming even be done from Horizon, or is that a bootloader only thing?)

That means you'll never be able to boot normally again, you will need to use Hekate/CFW/SX OS everytime.

Then they can just detect CFW and ban you for that, OR, they can then detect the "booted from RCM flag", which someone said was supposedly detectable by Horizon OS (although you can avoid being detected if you are follow a procedure like: RCM -> Hekate -> do stuff like backup NAND -> power off and then reboot normally without RCM... basically never boot into HOS if you booted from RCM). And then they can deny all online access when this flag is set (they shouldn't ban just for that, as RCM has actual uses like for repair, but who knows), and show you a dialog asking you to restart normally.

I think that would be a bit far-fetched though. All that will do is catch a few quick updaters, before devs patch out any new fuse burning stuff and RCM flag checks/any other checks.

I think the more realistic scenario is they change how eShop requests work, and after a week or so grace period, "flip the switch", and thus kill CDNSP like they killed Freeshop for the 3DS.

This is all speculation anyway from a rumor.
The ONLY sure things are:

• Fusee Gelee/ShofEL2 will ALWAYS be there and NEVER go away for units that are vulnerable, and
• the CFW/HB devs will eventually find and patch out any new checks they add into Horizon unless SciresM, Raj, Rei, the entire Reswitched team and Ping Long all fall into a cliff before FW 6 is released (and even that is just delaying the inevitable)

The section I highlighted, I am extremely doubtful Nintendo will ever brick your system intentionally. There are too many legal issues there. For starters, it's only against their online services' TOS to modify your system. Legally, you're allowed to modify it and run custom code. That last statement also depends on which country you live in. So you can discard that as being something they will do.

--------------------- MERGED ---------------------------

I think that the risk at the moment besides ban, is not being able to new play Xci or Nsp games that requires a higher fm and not being able to update to this fm due to the risk of ban, I'm sure that solutions can be found in the future but things might take some time (we are still waiting for Atmosphère) hence emunand is more required than ever.

I don't think that's an actual concern. Anything made can be broken. Devs will patch their software to work with 6.x.x+, and will update their loaders for cart3 compatibility. It will be done. It might take some time, but that's not really an issue on this.

 

[TheZander]

They can't patch Fusee Gelee/ShofEL2, but I'm thinking they have a few options.
e.g. they can put in massive checks (for nulled cert XCIs, or fake ticket NSPs installed, etc.) and then burn like 100 fuses when they they detect such a thing (can fuse programming even be done from Horizon, or is that a bootloader only thing?)

That means you'll never be able to boot normally again, you will need to use Hekate/CFW/SX OS everytime.

Then they can just detect CFW and ban you for that, OR, they can then detect the "booted from RCM flag", which someone said was supposedly detectable by Horizon OS (although you can avoid being detected if you are follow a procedure like: RCM -> Hekate -> do stuff like backup NAND -> power off and then reboot normally without RCM... basically never boot into HOS if you booted from RCM). And then they can deny all online access when this flag is set (they shouldn't ban just for that, as RCM has actual uses like for repair, but who knows), and show you a dialog asking you to restart normally.

I think that would be a bit far-fetched though. All that will do is catch a few quick updaters, before devs patch out any new fuse burning stuff and RCM flag checks/any other checks.

I think the more realistic scenario is they change how eShop requests work, and after a week or so grace period, "flip the switch", and thus kill CDNSP like they killed Freeshop for the 3DS.

This is all speculation anyway from a rumor.
The ONLY sure things are:

• Fusee Gelee/ShofEL2 will ALWAYS be there and NEVER go away for units that are vulnerable, and
• the CFW/HB devs will eventually find and patch out any new checks they add into Horizon unless SciresM, Raj, Rei, the entire Reswitched team and Ping Long all fall into a cliff before FW 6 is released (and even that is just delaying the inevitable)

I doubt nintendo will burn fuses in an attempt to brick them into having to use the RCM method of booting which they already detected them being in, that's a wild theory.

 

[Quantumcat]

Useless thread