3
edits
Changes
m
→iQue strncmp: Replaced Discord server invite with decompilation project permalink and added note about ramifications.
Line 71:
Line 71:
+
== iQue strncmp ==
== iQue strncmp ==
−Interestingly, the iQue version of libc implements strncmp the way memcmp is meant to be implemented.{{ref|https://discord.com/channels/269333940928512010/420029476634886144/891424985409814558 (server invite: https://discord.gg/ZdqEhed)}} While the hash checking itself used memcmp, this suggests that Nintendo had legitimate confusion over the difference between strncmp and memcmp even before the Wii was released.
+Interestingly, the iQue version of libc implements strncmp the way memcmp is meant to be implemented.{{ref|https://github.com/decompals/iQuePlayer-SecureKernel/blob/4a505b9a2c6913402090661b0c7a7dfaaf94998e/src/9FC031D0.c#L262}} While the hash checking itself used memcmp, this suggests that Nintendo had legitimate confusion over the difference between strncmp and memcmp even before the Wii was released.
+Irritatingly, this prevents exploitation of the iQue Player's own signing bug, psychic paper,{{ref|http://www.iquebrew.org/index.php?title=IQue_Player_System_Flaws#Secure_Kernel}} due to the kernel's memory layout.
== References ==
== References ==