Reverse engineer WiiKeyU for Homebrew?

Discussion in 'Wii U - Hacking & Backup Loaders' started by Ryanrocks462, Jul 29, 2014.

  1. Ryanrocks462
    OP

    Ryanrocks462 Wii U/3DS Hacker.. Will test anything, A Pirate

    Banned
    566
    221
    Jun 18, 2014
    United States
    California
    would it be possible to reverse engineer wiikeyu for establishing code execution for running homebrew on WiiU?
     
  2. Rinnux

    Rinnux GBAtemp Advanced Fan

    Member
    655
    313
    Aug 3, 2010
    United States
    No. The WiiKeyU is only a drive emulator. Nothing more, nothing less.
     
    migles and Marionumber1 like this.
  3. TeamScriptKiddies

    TeamScriptKiddies Licensed Nintendo (indie) Game Developer

    Member
    1,905
    1,321
    Apr 3, 2014
    United States
    Planet Earth :P

    Hold that thought! Out of the box, no, as emokid stated above, its simply a drive emulator. However, we "could" theoretically utilize it for launching homebrew, once we are able to fakesign isos. Of course, we're a long way off from that, but if we can fakesign isos homebrew apps could be released as disc images for use with ODE's. Of course, this could easily be stamped out by an update, but just throwing it out there :P.
     
  4. Ryanrocks462
    OP

    Ryanrocks462 Wii U/3DS Hacker.. Will test anything, A Pirate

    Banned
    566
    221
    Jun 18, 2014
    United States
    California
    but coundbt we figure out how it gets iosu access and see what code it uses?
     
  5. TeamScriptKiddies

    TeamScriptKiddies Licensed Nintendo (indie) Game Developer

    Member
    1,905
    1,321
    Apr 3, 2014
    United States
    Planet Earth :P
    Even then, it wouldn't be much help. Fakesigning disc images (that are actually homebrew apps) seems like the only plausible way to do it with a drive emulator. Again, Nintendo could easily stamp out running fakesigned isos with an update. Remember the trucha bug scenario for the wii? Although you could restore the trucha bug on later system menus, but without a full blown exploit for Wii U mode, we wouldn't be able to restore such a bug
     
  6. Ryanrocks462
    OP

    Ryanrocks462 Wii U/3DS Hacker.. Will test anything, A Pirate

    Banned
    566
    221
    Jun 18, 2014
    United States
    California
    would it possible to create a home-brew based UDE and then start developing a launcher inside that UDE ?
     
  7. TeamScriptKiddies

    TeamScriptKiddies Licensed Nintendo (indie) Game Developer

    Member
    1,905
    1,321
    Apr 3, 2014
    United States
    Planet Earth :P
    maybe but even then, fakesigning would need to play a role in this. As far as the console is concerned, it sees the drive emulator as a completely unmodified original disc drive, technically leaving all security still intact. The ODE has to compensate for the security still being there, so it has to emulate all the necessary authentication steps (one of them being to make sure the "disc" encrypted properly). An ODE launching method, isn't impossible, just impractical, but it might be a good solution for some who refuse to tamper with their Wii U firmware (which we will be able to do eventually). Again though, if you go this route, don't plan on updating your console ever again, at least until a full blown Wii U exploit is out in the open. Because if you need to re-enable running fakesigned "discs" (isos) down the road, its not going to be possible without said exploit.
     
  8. Bladexdsl

    Bladexdsl ZOMG my posts...it's over 9000!!!

    Member
    16,235
    3,885
    Nov 17, 2008
    Australia
    Queensland
    for now we'll have to be content on using it for dirty bastard pirating only. now if only the wiiu had some games to pirate... :P
     
  9. Ryanrocks462
    OP

    Ryanrocks462 Wii U/3DS Hacker.. Will test anything, A Pirate

    Banned
    566
    221
    Jun 18, 2014
    United States
    California
    lol xD
     
  10. phanteon

    phanteon GBAtemp Fan

    Member
    457
    154
    Nov 4, 2013
    United States
    is that even for sale? cobra announced an ODE but nothing else....
    i believe they are waiting for more games to come out, so it would make any sense to pirate it.

    i mean, i got gw bc there's a looot of great games, but on wiiu? i have WW and pikmin collecting dust for months
     
  11. headpie

    headpie Member

    Newcomer
    21
    15
    Jul 7, 2014
    United States
    SLiV3R likes this.
  12. Bladexdsl

    Bladexdsl ZOMG my posts...it's over 9000!!!

    Member
    16,235
    3,885
    Nov 17, 2008
    Australia
    Queensland
    the wiikey u is on pre-order on several sites
     
  13. PhyChris

    PhyChris GBAtemp Regular

    Member
    205
    108
    May 6, 2009
    Canada
    you cant run unsigned code on the console through the wiiu disc drive. simple. i think isos are signed as well so if you modify the iso you break the signature.
     
    Marionumber1 likes this.
  14. Relys

    Relys Master of Computer Science

    Member
    863
    788
    Jan 5, 2007
    United States
    The WiiUKey
    Remember when Nintendo completed ****** up RSA implementation on the Wii? XD
     
  15. Ryanrocks462
    OP

    Ryanrocks462 Wii U/3DS Hacker.. Will test anything, A Pirate

    Banned
    566
    221
    Jun 18, 2014
    United States
    California
    lol who doesn't remember xD
     
  16. Relys

    Relys Master of Computer Science

    Member
    863
    788
    Jan 5, 2007
    United States

    Sony's ECDSA "random number" implementation was funnier though. haha

    If anyone who's interested in history of poorly implemented cryptography algorithms on game consoles you should check out:

    Writeup on Trucha Signing Bug

    KaKaRoTo's Blog on Sony ECDSA algorithm

    Also, if you enjoyed the Trucha Signing bug write up you should look at how previous consoles without signature checks were hacked through game ROMs/ISOs. For example: You could softmod the Sony Placestation 2 by injecting your own .elf into a game which has 2 elf files by editing and burning a new ISO and then use swap disk method.

    Console developers have gotten better at implementing cryptography, but we find other ways in, for example through web browser. ;)
     
  17. iNFiNiTY

    iNFiNiTY GBAtemp Advanced Fan

    Member
    709
    158
    Apr 18, 2004
    Sony were just really bad when it came to disc swapping for some reason... even Saturn was secure years before... and PSP had a memory stick swap method very early on! I bet if you could mod a PSP to have a different UMD loader and we could actually burn them you could probably swap them too.. poorly encrypted isn't even the word for simply having the decrypted executable right in the directory with the encrypted one... wtf was that?