Hacking 11.8.0 probably intends to break a certain pirate shop

bluhacks

Well-Known Member
Newcomer
Joined
Feb 8, 2018
Messages
62
Trophies
0
XP
277
Country
United States
Since 11.8 has a backported feature of the cia installation check through CND I'm assuming that staying on 11.7 most stuff continues to work fine besides the update nag and no online play.
 

WaluigiMan

Well-Known Member
Member
Joined
Mar 23, 2018
Messages
142
Trophies
0
Age
21
Location
at ur moms place
XP
408
Country
Germany
Since 11.8 has a backported feature of the cia installation check through CND I'm assuming that staying on 11.7 most stuff continues to work fine besides the update nag and no online play.
yes thats right but if you really want to play online you can update to 11.8 just dont use freeshop anymore and install your cias with fbi from now on
 

Quantumcat

Dead and alive
Member
Joined
Nov 23, 2014
Messages
15,144
Trophies
0
Location
Canberra, Australia
Website
boot9strap.com
XP
11,094
Country
Australia
Since 11.8 has a backported feature of the cia installation check through CND I'm assuming that staying on 11.7 most stuff continues to work fine besides the update nag and no online play.
When 11.8 becomes mandatory 11.7 probably won't be able to download from CDN anymore because it won't send the right message to the servers.
 

Pokemon Fan

Well-Known Member
Member
Joined
Sep 14, 2009
Messages
123
Trophies
0
XP
256
Country
Brazil
lol that was unnecessary. For the 100th time: The ticket check happens at INSTALL time (from the CDN, NOT from CIA!). NOT at launch time, NOT while connecting to online servers.

So, do you think it's perfectly safe to go online in 11.8 with an already downloaded freeshop game? How does tickets worked with freeshop anyway?
 

will1987

Well-Known Member
Newcomer
Joined
May 20, 2011
Messages
62
Trophies
0
Age
36
Location
Tangamandapio
XP
210
Country
Brazil
Hey guys, I'm on firmware 11.7 + b9st + luma 9.1, and soon I'll start playing Monster Hunter XX, Is it safe to download all the free DLCs directly from the game? Last week Capcom released a new update "1.3.0", I dont know if it is safe to continue after this last nintendo update.:(

Can someone please help me?
 

donut32

Well-Known Member
Newcomer
Joined
Oct 21, 2016
Messages
48
Trophies
0
XP
936
Country
Hong Kong
Hey guys, I'm on firmware 11.7 + b9st + luma 9.1, and soon I'll start playing Monster Hunter XX, Is it safe to download all the free DLCs directly from the game? Last week Capcom released a new update "1.3.0", I dont know if it is safe to continue after this last nintendo update.:(

Can someone please help me?

Not 100% sure, but don’t in-game updates just take you to the eShop to update?
 

Searinox

"Dances" with Dragons
Member
Joined
Dec 16, 2007
Messages
2,073
Trophies
1
Age
36
Location
Bucharest
XP
2,184
Country
Romania
Since a PC app is able to download these titles just fine I assume there is no ability to link a CDN download with a specific console.

I understand pirate CDN download can be made impossible(outside maybe legit CIAs) to do this by the new ticket sending, if it becomes enforced, since we don't have validly signed tickets for those titles.

But do they also make any effort to link a CDN download to a specific console or just ticket checking? If not then the most this update can do is just break Freeshop + PC counterparts and cannot ban consoles.
 
Last edited by Searinox,

SkyDX

Anime Signature Creator, PM me if you want one! :)
Member
Joined
Nov 2, 2007
Messages
614
Trophies
1
XP
1,744
Country
Germany
Is it still save to download update-data for self-dumped .cias through the Home Menu?
 

astronautlevel

Well-Known Member
Member
Joined
Jan 26, 2016
Messages
4,128
Trophies
2
Location
Maryland
Website
ataber.pw
XP
4,998
Country
United States
Lots of misinformation in this thread about what you can/can't do in 11.8, so I'm going to (try) to set the record straight.

The change that's being discussed is a change in the NIM module on the 3DS. NIM is the service which is responsible for downloading applications through the Nintendo CDN; it's the service which is used by the eShop to download and install games. Before 11.8, NIM only sent the titlekey to the CDN in order to verify that the download was allowed. Think of titlekeys as a sort of password for the CDN - if you had the right titlekey, you could always download the game. This is also why you could download games on a computer - there was no console specific information sent and thus the CDN didn't check what was downloading. As long as you sent the titlekey, the CDN sent the game.

Before we talk about the change, let's make sure we all understand what a ticket is. A ticket is a piece of data that's stored on your 3DS that is used by the 3DS OS to determine which games you own. The ticket consists of three main parts - the signature data, console specific data, and the titlekey. The entire ticket is signed by Nintendo, so it's impossible to replicate these tickets. If they're changed, or if someone tries to make their own ticket, the changed/new ticket will have an invalid signature. This means the ticket is what we call an invalid ticket. Before 11.8, only the 3DS console checked the signature of the ticket. This is why you need CFW to install CIAs - the ticket's signature is invalid, and the CFW patches out the signature check the 3DS would otherwise do. Up until 11.8, this solution worked fine, as there were no server side checks of the ticket.

This changed in 11.8, as NIM was updated to send two new headers whenever a download request is made to the Nintendo CDN. These two new headers are X-authentication-key and X-authentication-data. X-authentication data is the ticket installed on the console (encrypted), and X-authentication-key is the AES key used to encrypt the X-authentication-data field. The CDN then decrypts the data field and checks the signature of the ticket. Since the ticket was made by freeshop rather than by Nintendo, it fails the signature check and the CDN refuses to send the file. A brave member on the Nintendo Homebrew discord installed one of these invalid tickets and attempted to download from the eShop, which would've worked fine on 11.7, and confirmed that it broke on 11.8 and that Nintendo was now verifying tickets:
unknown.png


As of right now, CDN downloaders on computers and piracy apps like freeShop still work (with the exception of sleep mode downloads). This is because these downloaders don't send anything in the X-authentication-data and X-authentication-key fields. Currently, the CDN only refuses the download if the data in those fields is invalid. However, Nintendo frequently waits a week or two to impose new restrictions on the server. Once they require these two fields, all CDN downloaders will break permanently, as they are unable to supply proper X-authentication-key and X-authentication-data fields.

Nintendo can't stop CIAs that are dumped or downloaded from other sources than the CDN (yet), but 11.8 shows they do still care about piracy on the 3DS and are taking strides to stop it.

As for updates, they have their own tickets, and the eShop will happily provide valid tickets as long as the console has the title installed, so nothing in 11.8 will stop you from updating pirated applications.
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • No one is chatting at the moment.
    LeoTCK @ LeoTCK: yes for nearly a month i was officially a wanted fugitive, until yesterday when it ended