Jump to content


Question About Firmware For 360 Gpu

  • Please log in to reply
No replies to this topic

#1 signal-to-noise-ratio


    X-S Senior Member

  • Members
  • PipPip
  • 165 posts
  • Xbox Version:v1.6
  • 360 version:v1 (xenon)

Posted 09 December 2009 - 10:50 PM

I figure this would be right place to post this as it is strictly speculation and possibly junk. I was reading a description of jtag exploit process and something was bothering me.

GPU JTAG was reverse-engineered until a point where arbitrary PCI writes are
possible, up to a certain point. So that makes it possible to talk to each
PCI device in the system, including the NAND controller. So we can simply
use THAT instead of the SMC to start the DMA?


Well, not quite. The problem is that the "VM code", the code which does a
lot of system initialization, like the memory (that code is also responsible
for generating the 01xx "RROD"-Errors), sets a certain bit in some GPU
register, which disables the JTAG interface. The VM code is executed way
before the kernel is active. So this is fail, too.

I have a nvidia geforce 9600. There have been tools to modify firmware fan speeds gpu speeds etc.

I was wondering if the cpu or VM code checks the gpu firmware with a hash?
If not couldn't one patch it to overlook "VM code" to disable jtag?
Or is jtag only access available to get to gpu and gpu firmware without software? What about J5C2?

Edited by signal-to-noise-ratio, 09 December 2009 - 10:56 PM.

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users