Homebrew [INFO] SNShax, what it is and how it works

[Xenon Hacks]

In the recent talk by Smea, Derrek and Plutoo we learned about a new hack called SNShax

Tl;Dr
SNS means Safe Nintendo Shell, and the hax possible with it can be used to downgrade from 9.3-10.1 down to 9.2, and it is currently only possible on a new3ds, though Smea has said it may be possible on old3ds with a workaround. It was patched in system version 10.2

Vuln
SNShax is a small oversight by Nintendo, usually the NS service (possibly meaning Nintendo Shell, though that is speculation) is in an area inaccessible to the GPU, meaning gspwn isn't useful for using it. However the new3ds safemode version of NS can be launched and, since the original NS service is still in use, it has to be allocated in an area accessible by gspwn (provided the memory is set up properly) and access can be gained, with ROP, to the services it uses (am:u and others) which, in turn, can be used to downgrade. It is not possible on the o3ds (yet) as the Safe Nintendo Shell version the o3ds uses is prevented from launching while the standard version is still running. This wouldn't be a problem if NS wasn't required to start any version of itself up.

Uses
As stated above it is possible to use this to downgrade any system title, in turn allowing full system version downgrades. This makes it possible to downgrade to any system version which we have legit CIAs for.

This is exactly why we tell people not to update but no they don't listen, update, and shell out for SKY3DS's.

 

[The Minish LAN]

can you brick a 3ds on purpose with this might be useful to get revnge on some one who broke your stuff or stole it

that's fucked up

 

[Deleted User]

-nvm.

 

[hacksn5s4]

maybe smea should make homebrew kernal mode when this comes out so homebrew can run better

 

[Exavold]

can you brick a 3ds on purpose with this might be useful to get revnge on some one who broke your stuff or stole it

Of all the things you could do ... this ? seriously ?

 

[The Minish LAN]

This is exactly why we tell people not to update but no they don't listen, update, and shell out for SKY3DS's.

Xenon, you can do this with 10.2-10.3 with memchunkhax2 when it releases too.

 

[Deleted User]

So this is just research then? Are they currently working on SNSHax as we speak?

 

[The Minish LAN]

So this is just research then? Are they currently working on SNSHax as we speak?

Yes.
Well, unless they're sleeping, of course.

 

[hacksn5s4]

it won't take very long then cause they know how to kernal exploit it but you would have to have a hacking skill level as smea to make it

 

[Deleted User]

it won't take very long then cause they know how to kernal exploit it but you would have to have a hacking skill level as smea to make it

And his hacking skills are enormous!

 

[WiiUBricker]

I'm a bit lazy. Where can I watch the whole 3DS conference?

 

[Xenon Hacks]

I'm a bit lazy. Where can I watch the whole 3DS conference?

https://streaming.media.ccc.de/32c3/relive/7240/

 

[The Minish LAN]

I'm a bit lazy. Where can I watch the whole 3DS conference?

 

[ketal]

Downgrading would allow not to have to do everything again. Like, support for 10.3 in rxTools ? Lolnope, just downgrade to 9.2 since you can. So basically just one guy working on the downgrade and everything works, instead of everyone updating their things and not even being sure it works correctly.

after some recent changes to devkitpro and some issues with libhax, maybe updating everything is not a bad idea...

 

[GalladeGuy]

Downgrading and CFW on > 9.3? This will go great for Nintendo!

 

[Deleted User]

Downgrading and CFW on > 9.3? This will go great for Nintendo!

IMO I think Nintendo will patch this with no sweat..
It looks as if it's something which could be easily patched, but it's only a theory at the end of the day.

So on that note, inb4 pointless numerical value 10.4!

 

[wurstpistole]

Well glad to see they didn't find arm9 access in 10.x but only showed how to downgrade, that means my tutorial on setting up cfw on 9.2 which I just wrote doesn't get obsolete

 

[GalladeGuy]

IMO I think Nintendo will patch this with no sweat..
It looks as if it's something which could be easily patched, but it's only a theory at the end of the day.

So on that note, inb4 pointless numerical value 10.4!

I always wonder what all the people who don't know about hacking think of the patch notes.

 

[Viri]

My red 9.9 3DS XL with themehax is ready and waiting!

So on that note, inb4 pointless numerical value 10.4!

[Stability Intensifies]

 

[Deleted User]

My red 9.9 3DS XL with themehax is ready and waiting!



[Stability Intensifies]

System Version 10.4
Fixes an issue where you were able to downgrade to 9.2 and perform piracy, which is definitely something we shouldn't be promoting you to do! ( ͡° ͜ʖ ͡°)