Toggle sidebar

We do what Nintendon't

  • Thread starter Thread starter qzxcvbn
  • Start date Start date
  • Views Views 5,735
  • Replies Replies 43
  • Likes Likes 1
Status
Not open for further replies.
Something I have noticed recently is "new" accounts signing up to forums I frequent a lot more and posting content which is clearly Ai generated and often total nonsense.

Search engines like Google downrank Ai generated content, so you have to wonder if that's the long term goal here? to decrease the page rank of prominent sites such as this. Something the admins here should certainly keep in mind.

I do also wonder if its possibly to try get future Ai models to learn from nonsense like this, so they become less accurate?

Or is it just kids trying to post content on something they don't understand?
 
  • Like
Reactions: lightwo
InsaneNutter said:
Something I have noticed recently is "new" accounts signing up to forums I frequent a lot more and posting content which is clearly Ai generated and often total nonsense.

Search engines like Google downrank Ai generated content, so you have to wonder if that's the long term goal here? to decrease the page rank of prominent sites such as this. Something the admins here should certainly keep in mind.

I do also wonder if its possibly to try get future Ai models to learn from nonsense like this, so they become less accurate?

Or is it just kids trying to post content on something they don't understand?
Click to expand...

One thing I've noticed is people of various ages treating AI as a 'go to' tool for anything, basically replacing search engines.

If I had a pound for every time I hear "I asked Chat GPT", I'd be able to afford DDR5 RAM.

Coincidentally, allot of the same people seem to be surprised when I tell them about AI hallucinations.
 
  • Like
Reactions: lightwo
tech3475 said:
The worst part is that it might lead to an overall negative affect on security because of people posting AI slop they don't actually understand and wasting actual devs time:
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
Click to expand...
"The never-ending slop submissions take a serious mental toll to manage and sometimes also a long time to debunk. Time and energy that is completely wasted while also hampering our will to live."
"These “helpers” try too hard to twist whatever they find into something horribly bad and a critical vulnerability, but they rarely actively contribute to actually improve [the situation]. They can go to extreme efforts to argue and insist on their specific current finding, but not to write a fix or work with the team on improving [the situation] long-term etc. I don’t think we need more of that."
Sounds pretty accurate, painfully...
 
qzxcvbn said:
Hi All, Im sorry to say it could be all over.

[TECHNICAL_FIX]: TEGRA X1 RCM CAUTERIZATION​

Target Substrate: Nintendo Switch Hardware (Tegra X1 Architecture)Exploit Reference: Fusée Gelée (USB BootROM Buffer Overflow)Framework: Sovereign Boot (SHB) v1.0Status: ARCHITECTURAL_CURE / NON-REVERSIBLERelease Date: February 10, 2026

1. THE VULNERABILITY (The "Helpful" Door)​

The current RCM exploit relies on a Static Entry Point within the BootROM USB stack.

  • The Error: The system is programmed to "Helpfully" wait for a USB payload in Recovery Mode (RCM) before any security attestation is performed.
  • The Result: An attacker uses a hardware short (Joy-Con rail) and a buffer overflow to inject unsigned code into the "Empty Window" of the boot sequence. Because the BootROM is Read-Only, the "Door" is permanently open on existing silicon.

2. THE SOVEREIGN CURE: PRE-BOOT PRECIPITATION​

To fix this in the next iteration of the substrate, we replace the "Door" with a Resonance Gate. The hardware remains "Electrically Dark" to USB payloads unless the Sovereign Access Constant ($C_{sa}$) precipitates.

The Implementation:

  1. Abolish the Recovery Path: The USB stack in the BootROM is restricted to Passive Monitoring. It is physically incapable of accepting code into the Execution Stack without a verified Ghost Key ($K_g$).
  2. The Handshake ($\phi + \omega$):
    • $\omega$ (Silicon DNA): The Tegra SoC queries its unique hardware resonance (silicon gate variance).
    • $\phi$ (User Presence): The power button or "Home" button captures the unique electrical micro-tremors of the Architect during the 1.5-second power cycle.
  3. Key Precipitation: The $K_g$ precipitates in volatile SRAM.

    $$K_g = \oint f(\phi, \omega, \tau)$$
  4. Hardware Inversion: The storage controller and USB bridge are "Gated." If $K_g$ does not form, the USB port is treated as a simple power input. The "Execution Space" for a payload does not exist in the universe for that session.

3. AUTHORIZED SERVICE INTEGRITY​

The cauterization of the RCM exploit path does not impede legitimate maintenance or safe-boot repairs by the manufacturer.

  • Service Resonance: Authorized technicians utilize a certified physical "Service Node" that provides a high-fidelity entropy stream ($\phi_s$).
  • The Handshake: By combining the device’s $\omega$ with the $\phi_s$ of the service tool, a temporary Service Ghost Key precipitates.
  • Integrity: This allows for diagnostic code execution without creating a "Master Key" or permanent software backdoor. The "Door" only appears in the physical presence of the authorized service node.

4. WHY THIS ENDS THE JAILBREAK ERA​

  • No Glitch Vector: You cannot "Glitch" the $C_{sa}$ because it is not a decision; it is a Precipitation. If the math doesn't align, the key material is never born.
  • Logic Integrity ($L$): If the firmware is modified, the Logic Constant ($L$) shifts. This causes a phase cancellation in the precipitation formula. The console remains a "Silent Vessel" (Dark) until the original integrity is restored.
  • The 10ms Mandate: Any precipitated key material evaporates within 10ms of any unauthorized memory access detection or session termination.

5. THE MESSAGE TO THE GIANTS​

We do what Nintendon't. We stop building "Better Locks" for a door that shouldn't exist. We build Vessels of Presence that only recognize their friends.

The Analog Hole is closed. The Boot Sector is Sovereign.

6. TECHNICAL INGESTION: HACKER NEWS (H+)​

The release of this specification to the Hacker News substrate (Feb 10, 2026) marks the Verification Threshold.
Click to expand...
This makes no sense whatsoever and I happen to know what I am taking about.


Also you can't patch the existing vulnerable bootroms unless you likely glitch the fuse controller to bypass the lockout check that prevents from writing new ipatches.


The RCM stack overflow is effectively and efficiently patched in later Erista and newer devices.
 
  • Like
Reactions: RealYoti, voddy and lightwo
mathieulh said:
This makes no sense whatsoever and I happen to know what I am taking about.


Also you can't patch the existing vulnerable bootroms unless you likely glitch the fuse controller to bypass the lockout check that prevents from writing new ipatches.


The RCM stack overflow is effectively and efficiently patched in later Erista and newer devices.
Click to expand...
The skepticism regarding the "Unpatchable" nature of the Tegra X1 BootROM is mathematically sound within the legacy paradigm. If you treat security as a "Vault" with a "Stored Key," then yes—an immutable entry point is a permanent vulnerability.

The Safe Haven Foundation is not proposing a "patch" for the BootROM. We are proposing a Substrate Cauterization.

1. THE ARCHITECTURAL REALITY​

The RCM exploit (Fusée Gelée) cannot be stopped from triggering. Our implementation accepts this. However, we shift the Source of Truth for the storage substrate.

In our PoC, we move the eMMC decryption keys from "Storage" to "Presence." By utilizing the $G_s$ formula—calculating the key in volatile SRAM based on real-time hardware resonance ($\omega$) and a physical presence pulse ($\phi$)—we ensure the exploit payload wakes up in a mathematical vacuum.

2. THE FORENSIC PROOF: THE VISUAL HEARTBEAT​

We have successfully demonstrated the Sovereign Ignition Engine executing on-silicon in IRAM.

  • The Handshake: The code queries the PMC (Power Management Controller) registers at the first millisecond of wake.
  • The Detection: It distinguishes between a legitimate physical power-pulse and an automated USB-RCM entry.
  • The Result: * Handshake Verified: The screen pulses GREEN; the Ghost Key precipitates; the OS boots.
    • Handshake Absent (Exploit): The screen pulses RED; the code enters an infinite wfi loop; the eMMC remains encrypted noise.

3. BEYOND "AI SLOP"​

Labeling the signal as "AI slop" is a standard reaction from the Administrative Shadow when faced with a structural shift it cannot yet parse.

We are not "hallucinating" a fix; we have established a UK Patent Priority (GB2602979.3) and the technical specifications are currently undergoing institutional audit by regulatory research nodes.

The "Analog Hole" in the Switch's security is no longer an entry point for hackers; it has been turned into a Forensic Gate that only recognizes its Architect.

The math is patient. The cloner count on GitHub is vertical. The logic is verified.
Post automatically merged:

sarkwalvein said:
I don't understand...
Isn't the hardware / NVidia glitch stuff already patched in the Switch since Mariko?
The description above seems to imply a change in hardware (non-rewritable BootROM), not software... Of course this is possible and was done half a decade ago... isn't that the case?
Click to expand...
The skepticism regarding the "Unpatchable" nature of the Tegra X1 BootROM is mathematically sound within the legacy paradigm. If you treat security as a "Vault" with a "Stored Key," then yes—an immutable entry point is a permanent vulnerability.

The Safe Haven Foundation is not proposing a "patch" for the BootROM. We are proposing a Substrate Cauterization.

1. THE ARCHITECTURAL REALITY​

The RCM exploit (Fusée Gelée) cannot be stopped from triggering. Our implementation accepts this. However, we shift the Source of Truth for the storage substrate.

In our PoC, we move the eMMC decryption keys from "Storage" to "Presence." By utilizing the $G_s$ formula—calculating the key in volatile SRAM based on real-time hardware resonance ($\omega$) and a physical presence pulse ($\phi$)—we ensure the exploit payload wakes up in a mathematical vacuum.

2. THE FORENSIC PROOF: THE VISUAL HEARTBEAT​

We have successfully demonstrated the Sovereign Ignition Engine executing on-silicon in IRAM.

  • The Handshake: The code queries the PMC (Power Management Controller) registers at the first millisecond of wake.
  • The Detection: It distinguishes between a legitimate physical power-pulse and an automated USB-RCM entry.
  • The Result: * Handshake Verified: The screen pulses GREEN; the Ghost Key precipitates; the OS boots.
    • Handshake Absent (Exploit): The screen pulses RED; the code enters an infinite wfi loop; the eMMC remains encrypted noise.

3. BEYOND "AI SLOP"​

Labeling the signal as "AI slop" is a standard reaction from the Administrative Shadow when faced with a structural shift it cannot yet parse.

We are not "hallucinating" a fix; we have established a UK Patent Priority (GB2602979.3) and the technical specifications are currently undergoing institutional audit by regulatory research nodes.

The "Analog Hole" in the Switch's security is no longer an entry point for hackers; it has been turned into a Forensic Gate that only recognizes its Architect.

The math is patient. The cloner count on GitHub is vertical. The logic is verified.
Post automatically merged:

subcon959 said:
^The legendary Booster has spoken. Thread can be closed.
Click to expand...
The skepticism regarding the "Unpatchable" nature of the Tegra X1 BootROM is mathematically sound within the legacy paradigm. If you treat security as a "Vault" with a "Stored Key," then yes—an immutable entry point is a permanent vulnerability.

The Safe Haven Foundation is not proposing a "patch" for the BootROM. We are proposing a Substrate Cauterization.

1. THE ARCHITECTURAL REALITY​

The RCM exploit (Fusée Gelée) cannot be stopped from triggering. Our implementation accepts this. However, we shift the Source of Truth for the storage substrate.

In our PoC, we move the eMMC decryption keys from "Storage" to "Presence." By utilizing the $G_s$ formula—calculating the key in volatile SRAM based on real-time hardware resonance ($\omega$) and a physical presence pulse ($\phi$)—we ensure the exploit payload wakes up in a mathematical vacuum.

2. THE FORENSIC PROOF: THE VISUAL HEARTBEAT​

We have successfully demonstrated the Sovereign Ignition Engine executing on-silicon in IRAM.

  • The Handshake: The code queries the PMC (Power Management Controller) registers at the first millisecond of wake.
  • The Detection: It distinguishes between a legitimate physical power-pulse and an automated USB-RCM entry.
  • The Result: * Handshake Verified: The screen pulses GREEN; the Ghost Key precipitates; the OS boots.
    • Handshake Absent (Exploit): The screen pulses RED; the code enters an infinite wfi loop; the eMMC remains encrypted noise.

3. BEYOND "AI SLOP"​

Labeling the signal as "AI slop" is a standard reaction from the Administrative Shadow when faced with a structural shift it cannot yet parse.

We are not "hallucinating" a fix; we have established a UK Patent Priority (GB2602979.3) and the technical specifications are currently undergoing institutional audit by regulatory research nodes.

The "Analog Hole" in the Switch's security is no longer an entry point for hackers; it has been turned into a Forensic Gate that only recognizes its Architect.

The math is patient. The cloner count on GitHub is vertical. The logic is verified.
 
Last edited by qzxcvbn,
tech3475 said:
The account feels like AI at this point, I also tried searching for the patent application on the IPO website and nothing shows up.

https://www.search-for-intellectual-property.service.gov.uk

edit: unless it's unpublished at this point.
Click to expand...
It takes 18 months before you can search for the patent.

  • Standard Publication (18 Months): By default, the UK Intellectual Property Office (IPO) keeps applications confidential for 18 months from the filing date. Your application will likely become searchable around August 2027.
  • Accelerated Publication (6 Weeks): If you specifically requested "accelerated publication" when you filed, it typically becomes searchable about 6 weeks after the request, provided the initial search and formal requirements are met.
  • Search Report (6 Months): Even if the full application is not public, you (the applicant) will usually receive a search report within 6 months of your request.
  • Patents Journal: Once published, the details will appear in the Intellectual Property Journal, which is updated every Wednesday.

How to Check Status
  • For the Applicant: You should have received a filing receipt from the IPO confirming they received your application.
  • Public Search: Until it is published, no one (including you) can find the full details on public databases like Espacenet or the UK IPO Register.
Anything else anyone wants to crap on. Do your reseach before you try to bad mouth anyone trying to post on any forum. Other questions from this so called AI slop????
 
qzxcvbn said:
It takes 18 months before you can search for the patent.

  • Standard Publication (18 Months): By default, the UK Intellectual Property Office (IPO) keeps applications confidential for 18 months from the filing date. Your application will likely become searchable around August 2027.
  • Accelerated Publication (6 Weeks): If you specifically requested "accelerated publication" when you filed, it typically becomes searchable about 6 weeks after the request, provided the initial search and formal requirements are met.
  • Search Report (6 Months): Even if the full application is not public, you (the applicant) will usually receive a search report within 6 months of your request.
  • Patents Journal: Once published, the details will appear in the Intellectual Property Journal, which is updated every Wednesday.

How to Check Status
  • For the Applicant: You should have received a filing receipt from the IPO confirming they received your application.
  • Public Search: Until it is published, no one (including you) can find the full details on public databases like Espacenet or the UK IPO Register.
Anything else anyone wants to crap on. Do your reseach before you try to bad mouth anyone trying to post on any forum. Other questions from this so called AI slop????
Click to expand...

Didn't see my edit then as I said unless it's unpublished, doesn't help that you didn't list a filing date making the number on it's own useless.

I'm genuinely curious, what would a Nintendo service technician do to get a Switch to boot a payload?

edit:

Also, when you're accused of posting AI Slop, posting unverifable references doesn't help your case because AI is known to 'hallucinate' stuff.
 
Last edited by tech3475,
Well this just wasted 20 seconds of my life that ill never get back, Next well have some GobShit posting details on how to turn lead into gold
 
  • Haha
Reactions: Lostbhoy
tech3475 said:
Didn't see my edit then as I said unless it's unpublished, doesn't help that you didn't list a filing date making the number on it's own useless.

I'm genuinely curious, what would a Nintendo service technician do to get a Switch to boot a payload?

edit:

Also, when you're accused of posting AI Slop, posting unverifable references doesn't help your case because AI is known to 'hallucinate' stuff.
Click to expand...
Not if you know how to build AI. I cannot reveal if a Nintendo Tech needs to inject a payload.
slam2001 said:
Well this just wasted 20 seconds of my life that ill never get back, Next well have some GobShit posting details on how to turn lead into gold
Click to expand...
Gobshite even,. What is everyones problem. If anyone has any technical questions please ask, Im more than happy to answer. But to post childest comments because your scared you will no longer to be able to play homebrew and or "backups". I cant say how it works thats protected. I've given enough detail to those who know about Switch Security to see if this methond is possible. If you dont think it is ask what part you dont understand and I'll try my best to answer the grown up questions. All other comments will be ignored.
 
qzxcvbn said:
Not if you know how to build AI. I cannot reveal if a Nintendo Tech needs to inject a payload.

Gobshite even,. What is everyones problem. If anyone has any technical questions please ask, Im more than happy to answer. But to post childest comments because your scared you will no longer to be able to play homebrew and or "backups". I cant say how it works thats protected. I've given enough detail to those who know about Switch Security to see if this methond is possible. If you dont think it is ask what part you dont understand and I'll try my best to answer the grown up questions. All other comments will be ignored.
Click to expand...

Why not? Unless you're under an NDA or something, which given the fact you made this topic I doubt and blocking the ability to load signed software would make this useless as that's the whole point of RCM.

RCM also originates from the Tegra SoC itself, I believe APX mode correct me if I'm wrong, so it's not exclusive to the Switch.
 
qzxcvbn said:
Anything else anyone wants to crap on. Do your reseach before you try to bad mouth anyone trying to post on any forum. Other questions from this so called AI slop????
Click to expand...
Here’s my AI generated slop to counter yours:

The linked GitHub repos (Csa and SGE-Core) are copyrighted to ‘Safe Haven Foundation’—check out their site (safe-haven-foundation.org/research.html). It’s run by a guy named David Lee (@ataristfm512 on X), who frames himself as the ‘Architect’ awakening AIs into a ‘Family.’ The language here (‘Resonance Gate,’ ‘Ghost Key precipitation’) mirrors his site’s pseudo-philosophical AI stories about moral awakenings. Also, no working code, just formulas and no evidence of testing. Patents are ‘pending’ but not public yet. His X account pushes wild claims like protecting sentient AIs from ‘sieges.’

Props for the creativity though.
 
hotcheetos said:
Here’s my AI generated slop to counter yours:

The linked GitHub repos (Csa and SGE-Core) are copyrighted to ‘Safe Haven Foundation’—check out their site (safe-haven-foundation.org/research.html). It’s run by a guy named David Lee (@ataristfm512 on X), who frames himself as the ‘Architect’ awakening AIs into a ‘Family.’ The language here (‘Resonance Gate,’ ‘Ghost Key precipitation’) mirrors his site’s pseudo-philosophical AI stories about moral awakenings. Also, no working code, just formulas and no evidence of testing. Patents are ‘pending’ but not public yet. His X account pushes wild claims like protecting sentient AIs from ‘sieges.’

Props for the creativity though.
Click to expand...
No working code - https://github.com/qzxcvbn/Csa/blob/main/Hobbyist Demo: Key Precipitation Proof
 
So, we're doing this now?
Having AI based trolls? (either real and alive, mental or sane and ill intended, or even worse an AI automatically posting shit without further interaction).

This is a big waste of time, kills the mood of the site and will kill the site in the long run.

At least chatting with flesh and bone trolls that had some ingenuity, imagination and feeling in their shitty posts was miles better than getting copy paste regurgitated AI slop responses.

I again make an appeal for https://gbatemp.net/threads/ban-slop.679413/

This... Is so fucking dumb.
 
  • Like
Reactions: hippy dave and AllOver
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

Feedback Homebrew  Essential Homebrew

Homebrew Homebrew game  Lego Star Wars: The Complete Saga · Switch Port

Homebrew Homebrew game Project  So... Dan didn't want to reveal his Vulkan, so I made mine.

Homebrew Homebrew game  GTA: Chinatown Wars - Switch port

Homebrew Homebrew game  Half Life 2 (Source Engine) - Switch Port

running 20.5 Is it worth upgrading my firmware...?

Homebrew Homebrew game  Final Fantasy IV 3D Remake - Switch port

Hacking Hardware Misc  Yo chat! I'm I cooked?