Invalid Hash?

BigOnYa

BigOnYa

Has A Very Big
OP
Member
Level 18
Joined
Jan 11, 2021
Messages
3,190
Trophies
1
Age
50
XP
7,543
Country
United States
So I have a question of why NSZ files show invalid hash in NXviewer, and why I also have issues installing them correctly with awoo. I can convert these NSZ to NSP, using SAK and then they show valid hash in NXviewer and install with no problems using awoo, after converting them. I don't mind having to do this, I was just wondering if I'm missing something. Thanks for any info!
NSZ.png
NSP.png
 
Last edited by BigOnYa,
grimson

grimson

Member
Newcomer
Level 5
Joined
May 31, 2010
Messages
21
Trophies
1
XP
667
Country
Netherlands
Well, bumping this question because I was wandering the same thing. What does it mean when the signature is valid but the hash isn't. I think DBI regards Signature Invalid, Hash Valid a converted XCI to NSP when installing but trying to determine the status of Signature Valid, Hash Invalid like the screenshots.
 
impeeza

impeeza

¡Kabito!
Member
Level 27
Joined
Apr 5, 2011
Messages
6,361
Trophies
3
Age
46
Location
At my chair.
XP
18,717
Country
Colombia
grimson said:
Well, bumping this question because I was wandering the same thing. What does it mean when the signature is valid but the hash isn't. I think DBI regards Signature Invalid, Hash Valid a converted XCI to NSP when installing but trying to determine the status of Signature Valid, Hash Invalid like the screenshots.
Click to expand...
Signature is the certificate which validate the executable file hash is the checksum for the whole package

So you can have a valid certificate for the executable inside a moded package so is the package was modded the hash will be invalid

A good installer takes care of the package modification and ignores hashes
 
  • Like
Reactions: grimson and BigOnYa
grimson

grimson

Member
Newcomer
Level 5
Joined
May 31, 2010
Messages
21
Trophies
1
XP
667
Country
Netherlands
impeeza said:
Signature is the certificate which validate the executable file hash is the checksum for the whole package

So you can have a valid certificate for the executable inside a moded package so is the package was modded the hash will be invalid

A good installer takes care of the package modification and ignores hashes
Click to expand...
Thanks! .. I settled on DBI and occasionally I see invalid signatures passing by mostly the likes a 'SIGNATURE: XCI➡NSP' so there's a comfort knowing it was a converted XCI to NSP.
Just like to weed out my collection to dedup and keep the 'best' dump possible.
 
RedColoredStars

RedColoredStars

Well-Known Member
Member
Level 8
Joined
Aug 14, 2022
Messages
935
Trophies
0
Location
Vancouver
XP
1,255
Country
Canada
As stated, it usually means it was converted from xci to nsp but there's a chance it could have also been tampered with in other ways. Personally just use nsps that pass both checks. Plenty of places have good/clean nsps that pass both. I always say why risk it when I can easily get a file that passes both.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

mig switch not working/updating??

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Rumor  April Nintendo Direct Leak + New Ubisoft IP?

April Nintendo Direct Leak

Can you trade in a banned switch for an unbanned one?

General chit-chat
Help Users
    Sonic Angel Knight @ Sonic Angel Knight: Hey boi, keep your nuts out of chat. Unless you want them to get roasted. :ninja: