Homebrew [Request] CTRAging (3ds debug app) research.

[MassExplosion213]

If the ExeFS hashes match according to ctrtool, then you've already decrypted it. All hashes in an NCCH refer to the plaintext, not the ciphertext.
Also, what ctrtool calls "ExeFS Hash" is just the hash of the superblock. This matching does not mean jack shit; individual subsections can still be corrupted. Report back when the hash of the ExeFS:/.code matches.

Lastly, the keyX can't be missing. Either you have a CTRAging from a retail console and then you can use Decrypt9 as usual to decrypt it, or you have a CTRAging from a dev console and then you can use whatever people use on dev consoles to decrypt it.
If you're saying the keyY, taken from the signature, is corrupted, then congratulations, you have contributed absolutely nothing with your post because you stated that issue in the OP already. Besides, brute forcing 128 bits is still computationally infeasible.

Well, one thing, there is no dev specific or retail specific factory app. All units get the EXACT SAME factory apps.

 

[Dracari]

i gave it a Shot as my SysNand was rarely touched after moving to EmuNand (then A9LH) and even aftre examining the oldest NAND backup i had, Nothing. :/ (O3DS A Link between Worlds Special Edition unit)

 

[PaiiNSteven]

Does NAND minimum sized work? I'd love to try, I dont write to my nand alot (only to install two twl apps, or maybe thats not how it works and im an idiot).

EDIT: I also have another 3DS that (i dont think) has ever updated. Ill try that too.

 

[PabloMK7]

Does NAND minimum sized work? I'd love to try, I dont write to my nand alot (only to install two twl apps, or maybe thats not how it works and im an idiot).

EDIT: I also have another 3DS that (i dont think) has ever updated. Ill try that too.

I think you'll have more probabilities with a full dump.

 

[PaiiNSteven]

I think you'll have more probabilities with a full dump.

Made two full dumps of both 3DS's; nothing. I think my friend has an old 3DS he hasn't used since 2011, ill look there once i get it.

 

[PaiiNSteven]

Sorry for double post, but the firmware is past 9.2. Is there a way to dump nand? I dont want to write to it at all, might ruin my chances.

 

[piratesephiroth]

Sorry for double post, but the firmware is past 9.2. Is there a way to dump nand? I dont want to write to it at all, might ruin my chances.

Only with a hardmod. Next you have to downgrade to get the xorpads to decrypt the dumped NAND.

 

[PabloMK7]

It seems the problem of CTRAging crashing in New3DS is not because missing sysmodules (dmnt for example). Here are the dependences. It also explains why it crashes on O3DS (using New3DS sysmodules)

02 24 00 00 30 01 04 00 02 15 00 00 30 01 04 00
02 34 00 00 30 01 04 00 02 16 00 00 30 01 04 00
02 26 00 00 30 01 04 00 02 17 00 00 30 01 04 00
02 18 00 00 30 01 04 00 02 27 00 00 30 01 04 00
02 28 00 00 30 01 04 00 02 1A 00 00 30 01 04 00
02 32 00 00 30 01 04 00 02 1B 00 00 30 01 04 00
02 1C 00 00 30 01 04 00 02 1D 00 00 30 01 04 00
02 29 00 00 30 01 04 00 02 1E 00 00 30 01 04 00
02 33 00 00 30 01 04 00 02 1F 00 00 30 01 04 00
02 20 00 00 30 01 04 00 02 2A 00 00 30 01 04 00
02 41 00 20 30 01 04 00 02 2B 00 00 30 01 04 00
02 40 00 20 30 01 04 00 02 2C 00 00 30 01 04 00
02 2D 00 00 30 01 04 00 02 21 00 00 30 01 04 00
02 31 00 00 30 01 04 00 02 22 00 00 30 01 04 00
02 42 00 20 30 01 04 00 02 2E 00 00 30 01 04 00
02 23 00 00 30 01 04 00 02 2F 00 00 30 01 04 00

 

[Februarysn0w]

I found this at my New3DS nand. so....Is this the app?

 

[PabloMK7]

I found this at my New3DS nand. so....Is this the app?

It has been overwritten.
Anyway the app is working!!!! Only on N3DS. First post updated.

 

[NekoMichi]

Does this still reset the date at the end of the test, like the DS version?

 

[PabloMK7]

Does this still reset the date at the end of the test, like the DS version?

It seems to be an endless loop, there might be a menu if you press a button, since there are more images in the romfs than the shown in the video. Maybe there are options there to system format or something, after it passes the tests.

@d0k3 @Reisyukaku Do you think it is possible to make ctraging work on O3DS by removing N3DS dependences?

 

[Metab]

Love these little discoveries great job!

 

[PabloMK7]

@d0k3 @Reisyukaku Do you think it is possible to make ctraging work on O3DS by removing N3DS dependences?

Nope, is it even possible to run New3ds titles on o3ds? I've heard of that before.

 

[mashers]

Just out of curiosity, what does this allow us to do? Or is it just an interesting find?

 

[zoogie]

Nope, is it even possible to run New3ds titles on o3ds? I've heard of that before.

What happens when you try to run it? Endless logo loop or "can't be played on old 3ds" type of error?
If it's the former, there's hope.

I hope you share this on some other site. : ) please

 

[PabloMK7]

Just out of curiosity, what does this allow us to do? Or is it just an interesting find?

For now, just an interesting find. Since some consoles have its ticket installed from factory, it will launch without signature patches (afaik?) Maybe there are interesting options.

What happens when you try to run it? Endless logo loop or "can't be played on old 3ds" type of error?
If it's the former, there's hope.

I hope you share this on some other site. : ) please

Endless 3ds logo. I may do it soon.

 

[NekoMichi]

Just out of curiosity, what does this allow us to do? Or is it just an interesting find?

It allows us to test the hardware of the 3DS for defects, much like how they test it in the factory before shipping. At the moment it is only useful for people with knowledge of hardware repairs for diagnosing a possibly damaged 3DS. For everyone else, it's just an interesting find because even if we manage to identify a hardware defect, we can't exactly send it back for a refund or replacement because installing CTRAging involves voiding the warranty.

 

[zoogie]

For now, just an interesting find. Since some consoles have its ticket installed from factory, it will launch without signature patches (afaik?) Maybe there are interesting options.


Endless 3ds logo. I may do it soon.

What firmware are you running it on with the old3ds? 9.6 or higher might fix it.

It allows us to test the hardware of the 3DS for defects, much like how they test it in the factory before shipping. At the moment it is only useful for people with knowledge of hardware repairs for diagnosing a possibly damaged 3DS. For everyone else, it's just an interesting find because even if we manage to identify a hardware defect, we can't exactly send it back for a refund or replacement because installing CTRAging involves voiding the warranty.

Running any unauthorized software voids the warranty (if they find out).

 

[PabloMK7]

11.0 Luma3DS a9lh. The guy who tested it uses the same setup.