Any ideas on installing CIAs using ARM9 + ARM11 exploits?

Discussion in '3DS - Flashcards & Custom Firmwares' started by AtlanticBit, Jan 25, 2015.

  1. AtlanticBit
    OP

    AtlanticBit Yeh, fuck this

    Member
    365
    189
    Jan 15, 2015
    Poland
    DEEP IN SPACE
    Title self explanatory(i guess ;) Post your ideas here. I'd rather for emuNAND than sysNand but anything will do.
     
  2. ken28

    ken28 GBAtemp Advanced Fan

    Member
    727
    188
    Oct 21, 2010
    Germany
    but you can install cia on 6.x without gateway, or can yo?
     
  3. MemoryController

    MemoryController Member

    Newcomer
    19
    12
    Sep 7, 2014
    Greece
    ThessalonĂ­ki
    Patch service access control with ARM11 access and use ns service, no?
     
  4. mathieulh

    mathieulh GBAtemp Fan

    Member
    335
    394
    Feb 28, 2008
    France
    You need a process9 exploit to remove the signature checks.
     
    cearp likes this.
  5. cearp

    cearp the ticket master

    Member
    7,510
    4,744
    May 26, 2008
    Tuvalu
    so we could still install cias that are signed correctly? :) cool
     
  6. mathieulh

    mathieulh GBAtemp Fan

    Member
    335
    394
    Feb 28, 2008
    France
    Hum... I would guess so, assuming you do have a .cia file signed for retail systems that doesn't need any specific tmd to run (does that even exist ?)
     
  7. MemoryController

    MemoryController Member

    Newcomer
    19
    12
    Sep 7, 2014
    Greece
    ThessalonĂ­ki
    The system CIAs come to mind. Surely they are meant to be installed on every 3ds without activation, right?
     
  8. mathieulh

    mathieulh GBAtemp Fan

    Member
    335
    394
    Feb 28, 2008
    France
    Oh! I forgot about these. Keep in mind though that a version check is enforced upon installation (if the version is lower than the current installed version, the content will not install) and has to be patched.
    (that's if you had any hope of downgrading that is)
     
    cearp likes this.
  9. cearp

    cearp the ticket master

    Member
    7,510
    4,744
    May 26, 2008
    Tuvalu
    bundled apps/games work on any 3ds without 'patches' :) system ones too, sure
    specific tmd to run? well, you need a tmd to build the cia/the cia contains a tmd... right?

    do you know what the version is checked again? i assume the tmd for the title, as the ticket doesn't always have the correct version.
     
  10. MemoryController

    MemoryController Member

    Newcomer
    19
    12
    Sep 7, 2014
    Greece
    ThessalonĂ­ki
    No but for upgrading say from 4.x<VER<9.2.0 to 9.2.0 this would come in handy.
     
  11. sanni

    sanni GBAtemp Regular

    Member
    133
    172
    Nov 7, 2003
    United States
    About that DS profile exploit on 6.x, it sounds like I maybe should not update my 6.2.0 2DS?
    Because I would prefer launching homebrew via profile exploit instead of the browser exploit or ninjahax.
     
  12. mathieulh

    mathieulh GBAtemp Fan

    Member
    335
    394
    Feb 28, 2008
    France

    Yes, the version is checked against the one from the tmd (the .cia contains the tmd as you just mentioned)
     
  13. cearp

    cearp the ticket master

    Member
    7,510
    4,744
    May 26, 2008
    Tuvalu
    does an app still work if we delete the tmd? (easy to test) - or, what if we delete the tmd/delete and copy a low version tmd back, then we can update to whatever version of the app we want right?
    i could do this easy with a launcher.dat, although i can't think of many reason it could be useful.
     
  14. mathieulh

    mathieulh GBAtemp Fan

    Member
    335
    394
    Feb 28, 2008
    France
    I don't think it would, but to be honest I've never tested this scenario so I can't tell for sure.