Hacking Discussion is deja vu dead (on new units)?

leo60228

Well-Known Member
OP
Member
Joined
Aug 30, 2015
Messages
124
Trophies
0
XP
184
Country
United States
Correct Title (mods pls fix): deja vu is dead (on new units)

welp

EDIT: technical explanation
EDIT2: oh boy
EDIT3: only vaguely relevant but sleepmode on downgraded switches is enabled in fusee master

EXPLANATION:
Deja Vu was an exploit that enabled full code execution on 4.1.0, including on post-July Switches, and was expected to work on Mariko (the Switch hardware revision). Details were intentionally scarce. A relative newcomer committed to Hekate a commit that would "optimize dram configs." Research showed that this commit was the backbone for the downgraded sleepmode in Hekate 4.6. It was quickly discovered that Deja Vu relied on a (still-unpatched) bootrom exploit, and that exploit was in the DRAM configs. Now that it is public, Deja Vu can be fixed in the same way Fusee Gelee was.
 
Last edited by leo60228,

OkazakiTheOtaku

no thanks, I don't want a custom title
Member
Joined
Jul 20, 2016
Messages
1,461
Trophies
1
Location
127.0.0.1
XP
3,104
Country
Japan
I'm not sure I understand the implication of the above screenshot. Is it implying that the Hekate commit is using a Deja Vu strategy, therefore revealing how it works?
 

TotalInsanity4

GBAtemp Supreme Overlord
Member
Joined
Dec 1, 2014
Messages
10,800
Trophies
0
Location
Under a rock
XP
9,813
Country
United States
I'm not sure I understand the implication of the above screenshot. Is it implying that the Hekate commit is using a Deja Vu strategy, therefore revealing how it works?
Yeah I'm trying to figure that out too. It seems like that was a response to something else, not a declaration that Deja Vu wasn't viable anymore
 

leo60228

Well-Known Member
OP
Member
Joined
Aug 30, 2015
Messages
124
Trophies
0
XP
184
Country
United States
It does work on patched Switches. That was the entire point of Deja Vu. Should I clarify this in the post (EDIT: done)? I thought that was already common knowledge.
 
Last edited by leo60228,

alexj9626

Well-Known Member
Member
Joined
Oct 2, 2016
Messages
788
Trophies
0
Age
34
XP
1,512
Country
Panama
Ok so what you are saying is that Deja Vu is now "public" (?) and because of that it would probably be pached in the Mariko units?
 

leo60228

Well-Known Member
OP
Member
Joined
Aug 30, 2015
Messages
124
Trophies
0
XP
184
Country
United States
The full exploit only worked on 4.1.0, but it's primary vector is a hardware bug like Fusee Gelee.

--------------------- MERGED ---------------------------

Ok so what you are saying is that Deja Vu is now "public" (?) and because of that it would probably be pached in the Mariko units?
Yes.
 
  • Like
Reactions: TunaKetchup

guicrith

Well-Known Member
Newcomer
Joined
Apr 29, 2013
Messages
72
Trophies
0
Age
44
XP
638
Country
United States
I looked at that commit, its just some values that where changes in some uint8_t buffers?
How is this an exploit leak?
 

leo60228

Well-Known Member
OP
Member
Joined
Aug 30, 2015
Messages
124
Trophies
0
XP
184
Country
United States
I looked at that commit, its just some values that where changes in some uint8_t buffers?
How is this an exploit leak?
It's obfuscated, but the bug was in the parser for that buffer (which is in the bootrom). See the technical details.
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • No one is chatting at the moment.
    K3Nv2 @ K3Nv2: Sorry for accidentally bending over