IOSU / Kernel exploit

Discussion in 'Wii U - Hacking & Backup Loaders' started by OptimusDark, Dec 18, 2014.

  1. OptimusDark
    OP

    OptimusDark Member

    Newcomer
    12
    1
    Jan 18, 2014
    France
    Hello,

    Sorry if my question is redundant, I tried to search an explanation of the differences between a kernel and IOSU exploit. But didn't find a clear answer.
    IOSU refers to wii U firmware ?
    Kernel exploit is not supposed to be the best exploit level reachable ? from it everything can be modified ?

    Thanks for shedding theses lights
     
    GotKrypto67 likes this.


  2. Vappy

    Vappy GBAtemp Advanced Maniac

    Member
    1,507
    1,154
    May 23, 2012
    Kernel access would give you full memory control and decryption access, but security (on the Starbuck) is handled by IOSU and beyond reach of the kernel
     
    Margen67 likes this.
  3. yuyuyup

    yuyuyup GBAtemp Psycho!

    Member
    3,336
    773
    Apr 30, 2006
    United States
    USA MTN timezone
    great topic
     
  4. Bug_Checker_

    Bug_Checker_ GBAtemp Advanced Fan

    Member
    950
    444
    Jun 10, 2006
    United States

    In the Wii U terminology, kernel exploit means (usually) related to full control of the PowerPC/ppc/espresso(3 cores) by escalating privileges in kernel/CafeOS which controls mainly everything but security.

    An IOSU exploit is for the ARM/Starbuck which mainly handles security of Wii U's hardware and software.
     
  5. OptimusDark
    OP

    OptimusDark Member

    Newcomer
    12
    1
    Jan 18, 2014
    France
    Hello,

    Thx for the precisions. It's more clear to me now.
    In the meantime I searched google and found https://fail0verflow.com/blog/2014/console-hacking-2013-omake.html : the video, is very interesting, though very long.
    I'm beginning to understand what's coming in terms of exploit (see the "hacking wii u" topics).
    It seems that failoverflow found the common decryption keys and the per console file system encryption key that will allow to add/remove wii u apps. But, since there is no IOSU exploit (security checker) yet, I don't think that we will have the ability to run homebrews. At best, what's should be easy to produce is a backup transfer apps that will allow to sign an iso with the per console key (the wii u game ares already signed for launch time check).
    Any way, hacking the wii u in only one month is very impressive.
     
  6. night_hawk

    night_hawk GBAtemp Fan

    Member
    489
    186
    Dec 3, 2014
    Italy
    Well comex completed the IOSU exploit in 1 month. So a IOSU exploit did exist, but not public
     
    TeamScriptKiddies likes this.
  7. NWPlayer123

    NWPlayer123 GBAtemp Addict

    Member
    2,629
    6,226
    Feb 17, 2012
    United States
    The Everfree Forest
    Plus it's been patched since then.
     
  8. night_hawk

    night_hawk GBAtemp Fan

    Member
    489
    186
    Dec 3, 2014
    Italy
    Yes, I just did want to point out that an IOSU exploit was found
     
  9. Ray Lewis

    Ray Lewis Banned

    Banned
    1,518
    386
    Dec 30, 2012
    United States
    A birdy told me Nintendo was tipped off for some $. Anything really permanent cannot occur without an IOSU exploit and anything else can and will be patched. So essentially f0f did it, showed "proof" and cashed in. Birdies can always chirp lies but that is what I heard.
     
    Margen67 likes this.
  10. Tomobobo

    Tomobobo Champion.

    Member
    999
    86
    Nov 26, 2005
    United States
    It seems like the days of free hacks are limited, a lot of these guys who have the ability to do all this stuff feel like they deserve to make money one way or another.

    Not saying they don't deserve to make money with their skills, just that that's a lot of the reasons many hacks aren't made public. They're either looking for a way to market it, or looking for a buck from the companies for scratching their backs.

    Like with my HTC one M8, the dudes behind the exploits that lead to removing all security from HTC devices got together and started charging for the "service". I've seen it in modchips and hardware tools for consoles, but I'm sure many more paid hacks will see the light of day soon.
     
    GotKrypto67, Margen67 and Kargaroc like this.
  11. Ray Lewis

    Ray Lewis Banned

    Banned
    1,518
    386
    Dec 30, 2012
    United States
    I recall "Root bounties" where people would donate but then the work would still be released for everyone.
     
  12. Kargaroc

    Kargaroc GBAtemp Regular

    Member
    176
    83
    Nov 29, 2013
    United States
    That is the defacto standard for releasing content over at a$$emblergames.
     
  13. FPSRussi4

    FPSRussi4 Clean up your act and cut the crap.

    Member
    670
    419
    Dec 1, 2013
    Laos
    Well in Fail's case, they were just worried about piracy.
     
  14. naxil

    naxil GBAtemp Advanced Fan

    Member
    740
    96
    Oct 26, 2011
    Italy
    how u know that?
     
  15. FPSRussi4

    FPSRussi4 Clean up your act and cut the crap.

    Member
    670
    419
    Dec 1, 2013
    Laos
    Wild guess, but I think it's because he's one of the lead devs in this exploit and knows what he's talking about?

    EDIT: I might have a little brown on my nose.
     
    Ray Lewis and NWPlayer123 like this.
  16. night_hawk

    night_hawk GBAtemp Fan

    Member
    489
    186
    Dec 3, 2014
    Italy
    Simply fof team (the people who made the exploit) said that
     
  17. TeamScriptKiddies

    TeamScriptKiddies Licensed Nintendo (indie) Game Developer

    Member
    1,900
    1,317
    Apr 3, 2014
    United States
    Planet Earth :P
    Open source 4 lyfe :P. Freedom and "free beer"
     
    GotKrypto67 and Margen67 like this.
  18. Onion_Knight

    Onion_Knight GBAtemp Advanced Fan

    Member
    878
    832
    Feb 6, 2014
    kernel exploit will win you the world martial arts tournament, but for IOS you gotta go super saiyan
     
  19. Ray Lewis

    Ray Lewis Banned

    Banned
    1,518
    386
    Dec 30, 2012
    United States
    I thought I read one of them say that. I wonder what update patched it. If someone has a Wii U with a version that is vulnerable then maybe Come would be cool and give it to Marionumber1 or others? Anyone consider this? Or get it to analyze at the very least.
     
    Margen67 likes this.
  20. keven3477

    keven3477 Fresh Prince of Lemonade

    Member
    866
    1,296
    Jul 12, 2012
    United States
    Somwhere you can never find.
    nice explanation and now I get it
     
    TeamScriptKiddies likes this.