Hacking Misc Updating the certificates on the DS/DSi browsers

Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
So I have a short thought some time ago about a possibility of a ROM hack or something that gives DS/DSi access to modern SSL/TLS websites. I'm curious about it and if it's possible.
 
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
theaxd said:
im working on it. i extracted the dsi browser rom and found that the certificates are located in a folder labeled "ca" and i found that 14 of the certificates are expired so im going to try to find newer ones to replace them. hopefully it works
Click to expand...
What is in the certificates and how could we somehow replace it with better and updated certificates?
 
theaxd

theaxd

Member
Newcomer
Level 1
Joined
Apr 16, 2022
Messages
10
Trophies
0
Age
21
Location
.
XP
99
Country
United States
Beta-Alexis128 said:
What is in the certificates and how could we somehow replace it with better and updated certificates?
Click to expand...
i just looked looked for the name of the expired certificates and downloaded the newest certificate from the company who issued them. but now i have a issue that the certificates from google are in .crt or .pem and the ones from the rom are in .ca
 
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
theaxd said:
i just looked looked for the name of the expired certificates and downloaded the newest certificate from the company who issued them. but now i have a issue that the certificates from google are in .crt or .pem and the ones from the rom are in .ca
Click to expand...
Can you rename it as .ca instead? Does it work?
Also, what tools do you use?
 
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
theaxd said:
i just looked looked for the name of the expired certificates and downloaded the newest certificate from the company who issued them. but now i have a issue that the certificates from google are in .crt or .pem and the ones from the rom are in .ca
Click to expand...
So... I checked the files (Nintendo DS Browser) via Tinke 0.9.2 and I found out that the cert folder actually uses .pem files:
1650703646549.png
 
T

Takokeshi

Well-Known Member
Member
Level 7
Joined
Mar 7, 2022
Messages
532
Trophies
0
Location
-
XP
1,046
Country
Antarctica
It's always possible it might be hardcoded to only use those specific certificate file names and that it might not be able to just dynamically load new ones.
 
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
Takokeshi said:
It's always possible it might be hardcoded to only use those specific certificate file names and that it might not be able to just dynamically load new ones.
Click to expand...
So i tried changing the files with exact filenames. Either it's true that they hardcoded it to the code, which is not my expertise or something... The only thing bothering me is the DSi browser.
 
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
Some updates: I tried modifying the config file and recompile the DSi browser and that didn't do well. I used dslazy for this.
EDIT:
1650921334800.png
 
T

Takokeshi

Well-Known Member
Member
Level 7
Joined
Mar 7, 2022
Messages
532
Trophies
0
Location
-
XP
1,046
Country
Antarctica
There may be a config setting for this but there is no guarantee that they are even implemented in the code in the first place. Higher TLS versions being enabled and implemented wouldn't really matter anyway, because the browser still needs valid (non-expired) certificates for those sites to load.
 
Beta-Alexis128

Beta-Alexis128

Member
OP
Newcomer
Level 1
Joined
Jan 20, 2020
Messages
14
Trophies
0
Age
25
XP
50
Country
Philippines
Takokeshi said:
There may be a config setting for this but there is no guarantee that they are even implemented in the code in the first place. Higher TLS versions being enabled and implemented wouldn't really matter anyway, because the browser still needs valid (non-expired) certificates for those sites to load.
Click to expand...
Pretty sure that was the case, I could recommend using some rendering proxy for this for now.
 
banjo2

banjo2

gamer
Member
Level 15
Joined
May 31, 2016
Messages
2,344
Trophies
1
Location
society
Website
youtube.com
XP
5,126
Country
United States

Site & Scene News

Go to forum More news

Popular threads in this forum

Testing the new EZ-Flash Parallel

ROM Hack  Mario Kart DS - Custom Tracks Grand Prix NITRO (CTGP NITRO) v1.1.0 Release

Emulation  Tomodachi Collection Cheat Codes (For Delta)

Misc  DSiWare in 2024

So what IS the best DS Flashcart?

Hardware Misc Others Project  3D Printing DS cart shells?

Emulation  What are the emulation capability of a DSi? (2024)

EZ-Flash Parallel doesn't works on DSi XL

General chit-chat
Help Users
    Materia_tofu @ Materia_tofu: this is true! i learned how to make soundfont remixes from a friend back in 2021