ClCertA (a CFA with titleid 0004001b00010002 all regions) contains ctr-common-1-{cert,key}.bin. ClCertA is mounted as a filesystem by the ssl module (a CXI with titleid 0004013000002f02 all regions and no RomFS).
ctr-common-1-{cert,key}.bin are both encrypted/decrypted -- in addition to the crypto inherent to CFA/NCCH -- with keyslot 0x0d as per 3dbrew: The keyslot keyX and keyY (yielding the normal-key together) is initialized somewhere during boot.
How would I go about finding out which cipher mode of operation (CBC, CTR, unlikely but possible ECB, GCM or CCM) for AES to use and which IV/CTR to work with to decrypt those two files?
ctr-common-1-{cert,key}.bin are both encrypted/decrypted -- in addition to the crypto inherent to CFA/NCCH -- with keyslot 0x0d as per 3dbrew: The keyslot keyX and keyY (yielding the normal-key together) is initialized somewhere during boot.
How would I go about finding out which cipher mode of operation (CBC, CTR, unlikely but possible ECB, GCM or CCM) for AES to use and which IV/CTR to work with to decrypt those two files?