Hacking 10.4.0-29 flying in !!

[Apache Thunder]

Is it safe to update my rxtools to 10.4?

Yes. I updated my o3DS emunand to 10.4 and everything appears to still work. It's mainly Gateway users who will have a few things break like region free and multi-rom menu. n3DS users confirmed that n3DS 10.4 emunand works fine with Reinand (and possibly CakesFW too if that CFW added 10.x emunand support)

 

[Ailuros27]

Would this explain why my N3DS browser on 10.3 emunand crashes every time I try to load a site, regardless of the URL?

 

[daxtsu]

Yes. I updated my o3DS emunand to 10.4 and everything appears to still work. It's mainly Gateway users who will have a few things break like region free and multi-rom menu. n3DS users confirmed that n3DS 10.4 emunand works fine with Reinand (and possibly CakesFW too if that CFW added 10.x emunand support)

Cakes had it added like an hour after Reinand, but who's keeping track?

Slightly off-topic: so you got your 3DS back from the pawn shop then? Nice!

 

[AceEvo55]

Yes. I updated my o3DS emunand to 10.4 and everything appears to still work. It's mainly Gateway users who will have a few things break like region free and multi-rom menu. n3DS users confirmed that n3DS 10.4 emunand works fine with Reinand (and possibly CakesFW too if that CFW added 10.x emunand support)

Rxtools only works on O3DS 10.4, be aware of that when encouraging rxtools users to update. ReiNAND and Cakes both work though, yeah. This thread (https://gbatemp.net/threads/psa-10-4-is-safe-on-reinand-gw-loses-multirom.410962/#post-5991425) is a solid reference of what works on what hardware, and everything is confirmed before being posted.

 

[MattKimura]

Question, since we now have the slot11 keys, does that mean we'll have emunand suppoert for every other firmware past 9.6 now? ex: 10.5, 10.6, 10.7, etc

 

[Apache Thunder]

Cakes had it added like an hour after Reinand, but who's keeping track?

Slightly off-topic: so you got your 3DS back from the pawn shop then? Nice!

Yeah. Got it back a couple weeks ago.

 

[daxtsu]

Question, since we now have the slot11 keys, does that mean we'll have emunand suppoert for every other firmware past 9.6 now? ex: 10.5, 10.6, 10.7, etc

Until they change the keys, yep. And if they change the keys in the same way as they do now, it's just a matter of Reisyukaku or someone else who has the know-how dumping them over again. If they change how they generate the keys completely though, it'd probably be another roadblock (not sure if there's really anywhere else they can hide stuff now, the OTP can be dumped whenever).

 

[AceEvo55]

Question, since we now have the slot11 keys, does that mean we'll have emunand suppoert for every other firmware past 9.6 now? ex: 10.5, 10.6, 10.7, etc

In all likelihood, yes, unless (or until, I suppose) Nintendo puts out another 9.6-esque showstopper that takes months to crack again.
But for the next little bit, it does appear that way!

Edit: ninja'd by a far better answer

 

[driverdis]

I am surprised Nintendo has not force blocked Cubic Ninja by blacklisting it. nowadays, I think Nintendo could easily block the game from running for *security* reasons without risking a lawsuit. the cart is was already pulled from shelves via recall (with no real reason or defect of the actual cart/circuitboard) so who would fight them in court over it.

 

[Apache Thunder]

In all likelihood, yes, unless (or until, I suppose) Nintendo puts out another 9.6-esque showstopper that takes months to crack again.
But for the next little bit, it does appear that way!

Edit: ninja'd by a far better answer

OTP dumping method can't really be patched. (because older firmware is used to obtain OTP and users with exploitable console and a nand mod can do this relatively safely)

There's also an alternate method of getting OTP in 10.3 as well. (but generally downgrading n3DS to 2.0/1.0 FW can also give OTP access. Refer to 3DBrew System Flaws section for info on how gaining access to n3DS secret keystore on 10.3 is done)

So they can keep adding new keys, but those that have obtained OTP hash or OTP dump can just update sysnand to 10.4. Then downgrade back to 1.0/2.0 (or downgrade to 10.3 for alternate method. Assuming 10.4 even patched this attack vector yet. If not, you don't even have to downgrade anything) dump/decrypt OTP again to get new keys and decrypt latest NATIVE_FIRM.

I am not 100% sure, but the 10.2 method of obtaining OTP hash means you don't have to downgrade again to decrypt OTP anytime something changes in OTP.

I don't think they can fix OTP vulnerability with current hardware, so Arm9Loader is compromised for the foreseeable future. n3DS is probably in a situation similar to the o3DS at this point.

 

[RitchieRitchie]

Hi,

Appreciate any advice. I'm using rxtools and the update has downloaded during the night. Is it just like gateway and you go through system settings to update? Sometimes my emunand doesn't have the 'RX' in front of its firmware though - even though it is definitely on emunand - does anyone else have this?

cheers!

 

[driverdis]

Hi,

Appreciate any advice. I'm using rxtools and the update has downloaded during the night. Is it just like gateway and you go through system settings to update? Sometimes my emunand doesn't have the 'RX' in front of its firmware though - even though it is definitely on emunand - does anyone else have this?

cheers!

yep, update using System Settings on EmuNAND. i am not sure about the RX prefix but it is a visual bug only if it is indeed in EmuNAND and you should not worry about it.

 

[RitchieRitchie]

yep, update using System Settings on EmuNAND. i am not sure about the RX prefix but it is a visual bug only if it is indeed in EmuNAND and you should not worry about it.

Thanks for getting back to me.
Apologies if this is a stupid question but I can't see it on the version of rxtools I'm using. It's this one - rxTools_2015-12-05_08.48-a08cfdd - is that 3.0?

cheers!

 

[driverdis]

Thanks for getting back to me.
Apologies if this is a stupid question but I can't see it on the version of rxtools I'm using. It's this one - rxTools_2015-12-05_08.48-a08cfdd - is that 3.0?

cheers!

any of the builds that do not say 2.6 on them are 3.0 beta builds.

 

[RitchieRitchie]

any of the builds that do not say 2.6 on them are 3.0 beta builds.

Thanks.

 

[linuxares]

When I get home later I going to copy my SD Card and update my Emunand! (rxTools, O3DS)

 

[DjoeN]

I must admid, i didn't really read allpages

Just checked Sky3DS page:
News

• * It's confirmed! sky3DS/sky3DS+ can support the newest 3DS V10.4.0-29 (01/19/2016)

So those guys with Sky3DS/sky3DS+ and still want to update to 10.4, go ahead

 

[Melon__Bread]

I wonder why everyone is so eager to update their EmuNAND, it is not like you get any new features =p

 

[DjoeN]

I wonder why everyone is so eager to update their EmuNAND, it is not like you get any new features =p

don't know, mostly (and now to) i wait a few days/week before updating EmuNAND. Why, to access eShop and play my Badge Arcade/pokemon Shuffle games

 

[Urbanshadow]

I'm kinda worried about the unupdated titles not launching... Anyone on 10.4 could try bbm or hans title launching? Could be a quick bypass. (I understand it's only a change in the home menu).

Also, EULA CFA for EUR systems was changed. I wonder what did they put in there.

What's happening with badge users?