fusee-launcher icon indicating copy to clipboard operation
fusee-launcher copied to clipboard
verified publisher icon jevinskie

Use IPATCH hardware to patch out signature checks and resume normal RCM loading routine after exploitation

Open jevinskie opened this issue 7 years ago • 1 comments

Why? I dunno.

Idea: Limited number of IPATCH locations can be extended via updating the current IPATCH set as each IPATCH is triggered.

jevinskie avatar Oct 10 '18 21:10 jevinskie

i have your n7 branch as a submodule in my repo (thanks btw).

https://github.com/tofurky/tegra30_debrick/blob/master/payload/uart_payload.c does patch out the sig checks. the offset seems to work on both ouya and n7.

edit: sorry, not sig checks. it patches out the IROM fuse checks. one of the patched bootloaders (ouya) actually disables the 'fastboot flash bootloader' sig check.

tofurky avatar Oct 08 '20 20:10 tofurky