A little over two weeks ago
@Fullmetal5 had announced to the scene that he found
the first software exploit that could run on a Wii Mini. Progress has been made quickly since then, as just a few days later he had already been able to boot HackMii Installer and launch the Homebrew Channel successfully on his console. Several other milestones followed, such as obtaining a full decrypted dump of the NAND's contents and confirming that getting online on the Mini is indeed possible via softmods & a LAN adapter... and all these efforts bring us to today, Bluebomb's release day. Yes, you heard that right: get your USB drives and tiny square-shaped Wii ready, as you can finally hack it to your heart's contents!
As mentioned in the previous article, Bluebomb (previously referred to as bluehax) requires you to own a computer running Linux, a Bluetooth interface connected to said computer, a Wii console and a FAT32-formatted USB drive (to store the HackMii Installer and any other homebrew you wish to run). One thing worth mentioning is that, while the exploit is notable for being the only one capable of running correctly on a Wii Mini to date,
it can work on other models too: a payload for regular NTSC Wii consoles running System Menu 4.3 has also been included and other ones are said to be in the works as well.
Here is the guide included in the official ReadMe file if you want to try it yourself:
Bluebomb guide said:
You will need a Linux computer to do this! Download the pre-built binaries from the releases page and follow these instructions.
- Download BlueZ from here, you just need the user space package.
- Extract it and run build it with ./configure --enable-deprecated && make (If you are using Ubuntu, you might need to install some needed packages with sudo apt install libglib2.0-dev libdbus-1-dev libudev-dev libical-dev libreadline-dev before this works)
- Enter the tools directory and run sudo systemctl disable --now bluetooth
- Run sudo ./btmgmt
- Run the following commands in the managment prompt select 0 info If you get an error about Invalid index then Linux can't find a Bluetooth device on your computer, if one real hardware make sure you have firmware for your bluetooth adapater, if in a VM make sure you have passed through the device. Assuming the above does not happen then you can continue. power on connectable on bondable on discov on info You should now look at the info results and check the current settings line for the following: powered connectable discoverable bondable br/edr If you don't have one of the above settings in your list, make sure you executed all the above commands. You can now exit out of the managment prompt.
- Run sudo ./hciconfig hci0 iac liac
- Run bluebomb with the arguments to the app-specific payload and the stage1 you would like to run. Ex. sudo ./bluebomb ./stage0/MINI_SM_NTSC.bin stage1.bin for a NTSC Wii Mini's System Menu. You can also specify which hci device to use with bluebomb by adding before the stage0 and stage1 arguments. Ex. sudo ./bluebomb 1 ./stage0/MINI_SM_NTSC.bin stage1.bin to use HCI1.
- Start you Wii and navigate to the app that you are exploiting, for the System Menu you only need to turn on the Wii, you can leave it sitting on the Health and Safety screen.
- Turn OFF your wiimote at this point, do not let anything be connected to the console via bluetooth.
- Make sure you console is close to your bluetooth adapater, you may have to move it closer to get it in range, this will depend on your adapater.
- Click the SYNC button on your console, you may have to click is several times in a row before it sees the computer. You will know it is connected when bluebomb prints "Got connection handle: #" Stop pushing the SYNC button and wait for bluebomb to run, what happens will depend on what stage1.bin you are using. The one from this repo will load boot.elf off the root of a FAT32 formatted usb drive and run it. You can use the HackMii Installer's boot.elf from here to get the Homebrew Channel.
IMPORTANT: The steps above will have disabled the bluetooth service on your machine to run the exploit. To enable the bluetooth service again run sudo systemctl enable --now bluetooth.
However, here is a word of advice: be
very mindful when running applications that make permanent modifications to your NAND on a Wii Mini. Many of them were made with the previous models in mind and thus are completely untested on it, so it would be better to wait until you're given the all-clear either from the devs or by other trustworthy sources. If something goes wrong, you may be left with a full, permanent brick!
Stay safe!
Source
Official GBAtemp thread
