Hacking N3ds 10.3 EMUNAND testing

  • Thread starter Thread starter Toiry921
  • Start date Start date
  • Views Views 27,932
  • Replies Replies 242
  • Likes Likes 3
I assume RXTools works the same as Gateway and the splash screen appears only when you hold the "L" button.

About the e-Shop, I don't think he mentioned yet whether he can download games or not.

Crossing fingers.

I can assure you he cannot download 9.6+ games. It's not possible as the encryption is part of one of the things we can't update. Also you are confusing a splash screen and a menu. Both rxtools and gateway show their splash screen on EVERY boot. For Gateway is is the red dragon, for rxTools its the blue circuit board with the dude.

--------------------- MERGED ---------------------------

No, this is achieved by simply installing the firmware 10.3 in emunand with sysupdate, everything is installed, removing modules and home applications, eShop, settings, internet, Miiverse and nnid.

He has done nothing beyond what I did, at least to my knowledge. Behold my signature.
eshop can definitely be updated, i can confirm that. Home menu cannot, and definitely something else since i got a black screen.
 
HOLY SHIT! This works. I did the exact same steps he did and have 10.3 emuNAND on my N3DS. I can also confirm that you don't need a magic kitty to do this, it works with magic dogs aswell!
 
I can assure you he cannot download 9.6+ games. It's not possible as the encryption is part of one of the things we can't update. Also you are confusing a splash screen and a menu. Both rxtools and gateway show their splash screen on EVERY boot. For Gateway is is the red dragon, for rxTools its the blue circuit board with the dude.

--------------------- MERGED ---------------------------


eshop can definitely be updated, i can confirm that. Home menu cannot, and definitely something else since i got a black screen.

I can assure you that I know what the encryption is supposed to do, but he managed to bypass it somehow which is why he can launch emuNAND in the first place.
 
HOLY SHIT! This works. I did the exact same steps he did and have 10.3 emuNAND on my N3DS. I can also confirm that you don't need a magic kitty to do this, it works with magic dogs aswell!

sigh please do not troll or free the trolls. There are FAR too many noobs about who wont be able to tell you are being sarcastic.
 
I can assure you that I know what the encryption is supposed to do, but he managed to bypass it somehow which is why he can launch emuNAND in the first place.

No, you don't

Sigh

The "encryption" is only applied to downloaded demos, games and apps from the eshop. Retail carts do not have any additional encryption beyond what has been present since 6.0. What they have is a firmware update on the cart that checks against CVer to determine if an update is needed, and a kernel check as part of the exheader that will cause the game to hang on the 3ds logo when launched if the kernel is lower than the one expected by the exheader.

What he bypassed was the update check and the exheader one. Both of which are useful, but neither will allow you to decrypt and install titles from the eshop that released after 9.6

--------------------- MERGED ---------------------------

eshop only can be updated with gw emunand, but, hbl emunand you can,t update eshop.

a good test would be charged rxtool, enters the eshop alone and download a demo

It can be updated without bricking the emunand. Granted it don't actually run without GW as far as I know, but it can be installed.
 
  • Like
Reactions: peteruk
I can assure you that I know what the encryption is supposed to do, but he managed to bypass it somehow which is why he can launch emuNAND in the first place.

It occurs to me that I misread/understood your post. I apologize.

If you go back and look at the post exchange between myself and @Suiginou you will get an idea for how emunand is loaded, but the reason we get a blackscreen when we update via system settings is some of the updated titles are unable to communicate properly with the older native_firm/kernel that we are loading from firmware.bin. This causes the home menu and a few other essential apps to fail to load and results in a blackscreen. Since he is reaching emunand he apparently does not have these titles installed, but he definately has SOME 9.6+ titles present since he is able to launch the game without it hanging on the 3ds logo.

He definately does not have a full 10.3 fw installed though, and since the seed file needed to decrypt newer eshop titles is included with one of the titles we cannot update it is a very safe bet that he will be unable to download those.

--------------------- MERGED ---------------------------

can be installed, but not is funtional

I use to enter a combination of FMP and eshop from hbl

anyway I'll thank you to tell me how you have installed the 10.3-shop to try on my semiemunand

I mean you just download the title and install it. My experience has been that it hangs on the 3ds logo unless you use GW Mode though.

Btw, are you able to load and run newer retail carts with your semi-updated emunand? Ones that shipped with 9.6+?
 
  • Like
Reactions: peteruk
impossible, without the seed you can not load any ap game, that's for sure, this only serves to make the games do not ask update, and climbed a video that taught it.

--------------------- MERGED ---------------------------

I mean you just download the title and install it. My experience has been that it hangs on the 3ds logo unless you use GW Mode though.

Btw, are you able to load and run newer retail carts with your semi-updated emunand? Ones that shipped with 9.6+?

with my semi emunand I can load games downloaded from eShop, unless they have ap
 
impossible, without the seed you can not load any ap game, that's for sure, this only serves to make the games do not ask update, and climbed a video that taught it.

Yeah that's not how it works at all.

The AP is a physical thing in the cart that was intended to break the sky3ds, it has nothing to do with encryption or seeds.

The missing seed only stops us from decrypting new (9.6+) titles downloaded from the eshop. Full games that also released on retail carts can still be played from the cart without need of this seed file.

--------------------- MERGED ---------------------------

impossible, without the seed you can not load any ap game, that's for sure, this only serves to make the games do not ask update, and climbed a video that taught it.

--------------------- MERGED ---------------------------



with my semi emunand I can load games downloaded from eShop, unless they have ap

yes, but can you take a new retail cart (say Tri Force Heroes) and pop it in and play it without problems?
 
Could we get a tutorial on this? So is this a frankenstein 10.3 or full? Please tell me what you did my friend.

There is nothing of note here. The OP managed some weird shit with a funky downgrade and it is not able to be replicated.

The thing we are discussing for the last two pages was me investigating something that turned out to be a bust so yeah.
 
There is nothing of note here. The OP managed some weird shit with a funky downgrade and it is not able to be replicated.

The thing we are discussing for the last two pages was me investigating something that turned out to be a bust so yeah.

You say it's turned into a bust, have you had no success trying all the 10.3 files minus the home menu one ?
 
but the newest games downloaded from eshop always remains in the logo of 3DS, I think it's the same.

Installed the same titles as you and yeah, TFH hangs on the 3ds logo. Sounds like the exheader checks against whats loaded in memory (i.e. what we load from firmware.bin) rather than the installed titles (the native_firm you updated).

Oh well, back to square one.

--------------------- MERGED ---------------------------

You say it's turned into a bust, have you had no success trying all the 10.3 files minus the home menu one ?

Yeah that was a bust. There are several other titles that need to be left out, far too many to make it worthwhile to track them down. Plus it looks like since the kernel that is loaded in the memory comes from firmware.bin rather than the installed native_firm, even if we COULD update everything except the homemenu the end result would be no different than if we had just installed CVer and NVer. It bypasses the cartridge update check and the NNID one but titles would still hang on the loading screen, making the exercise futile.
 
  • Like
Reactions: peteruk
Installed the same titles as you and yeah, TFH hangs on the 3ds logo. Sounds like the exheader checks against whats loaded in memory (i.e. what we load from firmware.bin) rather than the installed titles (the native_firm you updated).

Oh well, back to square one.

--------------------- MERGED ---------------------------



Yeah that was a bust. There are several other titles that need to be left out, far too many to make it worthwhile to track them down. Plus it looks like since the kernel that is loaded in the memory comes from firmware.bin rather than the installed native_firm, even if we COULD update everything except the homemenu the end result would be no different than if we had just installed CVer and NVer. It bypasses the cartridge update check and the NNID one but titles would still hang on the loading screen, making the exercise futile.

Thanks for trying anyway, it is good to see that people do care about 9.5+ for us N3DS owners, maybe one day :)
 
Thanks for trying anyway, it is good to see that people do care about 9.5+ for us N3DS owners, maybe one day :)

Well, I know a bit more now than I did before so that is a plus.

I already gathered that GW was somehow spoofing the kernel version to bypass the exheader checks, but I was unsure where one would need to start for porting something to rxtools or other cfws. Knowing that the kernel that is being checked is the one loaded to memory by firmware.bin on emunand launch rather than the native_firm installed to the emunand itself gives a starting point. If someone with some coding experience wanted to look into it, I suspect if we could somehow spoof the contents of firmware.bin to report a higher kernel version it might bypass that check.

--------------------- MERGED ---------------------------

I'm confused, I thought emuNAND can only be made 9.5 and not higher?

Yes. Despite fancy screenshots with RX 10.3 or the like, you cannot have an effective emunand above 9.5. At best you can update a bunch of useless titles that have no real impact (sorry @Ninoh-FOX )
 
  • Like
Reactions: peteruk

Site & Scene News

Popular threads in this forum