Nintendo_Switch_Reverse_Engineering icon indicating copy to clipboard operation
Nintendo_Switch_Reverse_Engineering copied to clipboard
verified publisher icon dekuNukem

Firmware injection?

Open ivo708 opened this issue 8 years ago • 4 comments

I dont know much about programing or anything but, if the firmware can be dumped,could be then ijected the firmware(of a lower version), so it works like a downgrade? Or can only be injected on the same console? Thats just my opinion and i dont know if this can be done so... -Thanks

ivo708 avatar Apr 24 '17 14:04 ivo708

Why are you interested in "downgrading" your joycons?

kennylevinsen avatar Apr 25 '17 15:04 kennylevinsen

Docking station firmware dump

The docking station uses a STM32F048 microcontroller. It's actually labeled as STM32P048 because it uses the FASTROM option where ST pre-programs the flash memory inside the factory. It has 32KB flash memory and 6KB RAM, runs at 48MHz.

It uses SWD debugging and programming interface, and interestingly the programming testpoints are on the PCB and clearly labeled. After connecting a ST-Link programmer to it reveals that the chip is not read-protected at all, so a firmware dump was easily made. I'm not going to post it in the repo, but if you want it just ask.

I mean this, isnt talking about the switch firmware?

ivo708 avatar Apr 26 '17 14:04 ivo708

No, that's talking about the firmware of the docking station.

magnusnordlander avatar Apr 26 '17 15:04 magnusnordlander

It's now doable.

CTCaer avatar Sep 20 '17 19:09 CTCaer