3dbrew

3DS System Flaws: Difference between revisions

← Older editNewer edit →
No edit summary
Line 28: Line 28:
|-
|-
| No clearing on RAM on reboots
| No clearing on RAM on reboots
| On soft reboots all RAM including FCRAM/ARM9 memory/AXIWRAM keeps its contents.
| On an MCU-triggered reboot all RAM including FCRAM/ARM9 memory/AXIWRAM keeps its contents.
| ?
| ?
| derrek?
| derrek?
Line 54: Line 54:
|-
|-
| Missing verification-block for the 9.6 keys
| Missing verification-block for the 9.6 keys
| Starting with [[9.6.0-24|9.6.0-X]] a new set of NAND-based keys were introduced. However, they forgot to add a verification block to verify that the new key read from NAND is correct. This was an issue from the very [[8.1.0-0_New3DS|beginning]] with the original sector+0 keydata, however the below is only possible with the sector+0x10 keydata.
| Starting with [[9.6.0-24|9.6.0-X]] a new set of NAND-based keys were introduced. However, they forgot to add a verification block to verify that the new key read from NAND is correct.


Thus, by writing an incorrect key to NAND you can make arm9loader decrypt ARM9 kernel as garbage and then jump to it.
Thus, by writing an incorrect key to NAND you can make arm9loader decrypt ARM9 kernel as garbage and then jump to it.
Retrieved from "https://www.3dbrew.org/wiki/3DS_System_Flaws"