Toggle sidebar

Hacking Can we write a new boot2?

  • Thread starter Thread starter Keylogger
  • Start date Start date
  • Views Views 2,484
  • Replies Replies 8
Status
Not open for further replies.
K

Keylogger

Well-Known Member
Member
Level 18
Joined
May 3, 2006
Messages
2,751
Reaction score
665
Trophies
3
Age
36
Website
Visit site
XP
7,659
Country
France
Hi,
Sorry for my bad english

I can't install bootmii on my Wii. I have an incompatible boot2.

I saw the file "boot2-64-v2.wad" in some ISO
If I install this file using wad Manager, will it brick my wii or does it will write a new boot2 compatible with bootmii?

Thanks
 
Sorry, but it's boot1 that loads boot2. And BootMii is installed as boot2.

boot1 is fixed in all new Wiis, and boot1 is on a read-only part of the nand. After the Wii is produced, the boot1 can never ever be changed again. This means, nintendo can't update boot1 to block BootMii with future updates, but this also means, that already patched Wiis can never install BootMii as boot2.
 
WiiPower said:
Sorry, but it's boot1 that loads boot2. And BootMii is installed as boot2.

boot1 is fixed in all new Wiis, and boot1 is on a read-only part of the nand. After the Wii is produced, the boot1 can never ever be changed again. This means, nintendo can't update boot1 to block BootMii with future updates, but this also means, that already patched Wiis can never install BootMii as boot2.
Click to expand...

to be correct, the boot1 is not read only but the hash for boot1 is. Its to tell the system that boot1 is valid. This hash is stored in a one time programable area at manufacture.

So
Boot0 -> one time programed at manufacture
Boot1 -> reprogram possible BUT the hash is stored permaned, so no reprogramming possible at last.
Boot2 -> reprogram possible. But valid only with bugged Boot1 due to a compare bug of the validation of Boot2. This Bug let the Boot1 think the Boot2 is valid.
 
WiiPower said:
Sorry, but it's boot1 that loads boot2. And BootMii is installed as boot2.

boot1 is fixed in all new Wiis, and boot1 is on a read-only part of the nand. After the Wii is produced, the boot1 can never ever be changed again. This means, nintendo can't update boot1 to block BootMii with future updates, but this also means, that already patched Wiis can never install BootMii as boot2.
Click to expand...
not completely correct. boot1 is writable too but it's sha1 hash is stored in a unwritable rom in starlet.

€dit: maybe i shouldn't leave my taps open for an hour.
 
actually BOOT2.etc.etc.WAD *is* the boot2, isn't it? How can i disassemble and analyzse those boot files (and how to get them?) in IDA?
 
Keylogger - do not try to overwrite your boot2 with wad manager. It won't help you at all.

I'll close this thread so it doesnt go off the rails.
 
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking  Wii Preloader stuck

Hacking Emulation  What is the best way to recover my Wii Shop purchases?

Wii doesn't show image on TV after replacing DVD drive

Wii Brickers

Gaming Hardware  What can I do to increase the lifespan of my wii?

Issues with an Updated Jailbreak

Rare games N64 port

Hacking Homebrew  wiicalib: calibrate your Classic Controller (Pro)