Nintendo Switch: Fail0verflow release ShofEL2 (Nvidia Tegra exploit) along with Linux on the Switch
“If your Switch catches fire or turns into an Ouya, it’s not our fault.” –Fail0verflow, 2018
An insane flow of releases happened over the past 24h on the Nintendo Switch scene, following the leak of the Tegra bootrom by an unknown hacking group yesterday.
A few minutes ago, team fail0verflow have released their own implementation of the hack, along with a port of Linux for the Nintendo Switch. The hack is compatible with all Nintendo Switch devices independently of their firmware (unless we’re mistaken, the necessary hardware revision to fix the bug has started to hit the stores only very recently).
Fail0verflow were actually intending to release their whole work on April 25th, in compliance with their disclosure window of the Tegra vulnerability. The leak from yesterday has accelerated their release by a couple days.
Fail0verflow’s Tegra exploit relies on the Tegra’s USB Recovery Mode (RCM), and it appears to be the same vulnerability vector as Kate Temkin‘s Fusee Gelee (ktemkin has disclosed her exploit a few hours ago too, technically beating Fail0verflow to the punch, and we will be writing about that as well as we catch up on the news).
The release, as it is right now, is not really end-user friendly, but fail0verflow say hackers should have no difficulty setting things up.
In practice, you will have to boot the Nintendo Switch in recovery mode (according to Fail0verflow, this can be done by holding the Volume Up, Home, and Power buttons at the same time on the console itself) while having it connected via USB to a computer ready to serve the exploit. We’ve seen more complex ways to launch hacks than this one, in particular in such early days.
Download ShofEL2 and Linux patches for Nintendo Switch
Fail0verflow’s release can be fetched from their various github repositories below. You will have to build the stuff yourself.
- https://github.com/fail0verflow/shofel2
- https://github.com/fail0verflow/switch-arm-trusted-firmware
- https://github.com/fail0verflow/switch-coreboot
- https://github.com/fail0verflow/switch-u-boot
- https://github.com/fail0verflow/switch-linux
Source: Fail0verflow
First
Bahahahaha, can this day get any better? 4/23, the day Nintendo got completely pwned.
It’s more nvidia that got pwnded
Can’t wait, linux on switch is dope, gives me even more reason to hack. Maybe I wouldn’t hack if Nintendo wasn’t braindead and offered save backups after all these useless updates.
I now understand you are TouhouLulu. lol so patetic
install linux on your laptop. you can do it… oh wait you probably don’t care unless it’s on your video game.
Fail0verflow Owns all handhelds!
locked and loaded
is it worth?
did not take too long. i wonder now how long before ninty releases the hw fixed version of their console. it may already be in production or soon to be.
Seems likely its in production with them already launching firmware support it.
Perfect! now… someone knows how can we do it? i see the links but it is so complicated understand the first step of compilation…. now waiting for a easily way to do.
First coment. I hope homebrew comes to 4.1.0 soon
Homebrew will come to any version by booting Linux, its piracy that may be firmware dependant.
this is it, i am first.
Yeah except you kinda left out the part about having to short out pins on the switch or right joycon to get to RCM so it’s not as easy as a few button presses…
Yup, I misread the “home” button part, where the “home” button actually is a minor hardware mod. It looks very simple, though, as demonstrated by hackers, it’s really just a tiny wire to connect.
First?
So, is now the time to run to the next store and buy a Nintendo Switch? Should I be afraid that vulerable Switches will be out of stock and only new revision Switches will be available if I wait a little bit longer?
Hey now I need a switch!!!! Is the Mariko hardware something to beware of while purchasing or will it be released in the future. Planning to buy from Amazon USA
All I want is to multiboot into the nVidia Shield firmware, so my Switch can serve as a multipurpose system.
I’d also take an nVidia Shield loading Switch firmware.
Hi I made the hardmod wire , I don’t have Linux or Mac OS to try to launch Fusée Exploit :/
If you can’t install Linux, you’re not ready. Sorry, kid. Wait until late June for the full CFW release and watch a YouTube video.
Cant wait for work to end today so I can start compiling at home… Going to try getting Linux and Qemu running so I can play some Starcraft and Diablo on the go.
Thanks for the release and all the hard work you guys have done for us!
Moonlight-switch a fact?
Hurrah, that’s what I was exploring for, what a information! present here at this webpage, thanks admin of this
web site.
Superb blog you have here but I was wondering if you knew of any message boards that cover the same topics talked about here?
I’d really love to be a part of online community where I can get opinions from other experienced
individuals that share the same interest. If you have any recommendations, please let me know.
Appreciate it!
I am really enjoying the theme/design of your blog. Do you ever run into
any internet browser compatibility issues?
A few of my blog audience have complained about my blog not working correctly in Explorer but looks great in Chrome.
Do you have any advice to help fix this issue?