What's the challenge with the XCI loader?

Discussion in 'Switch - Backup Loaders & Modchips' started by Khar00f, Oct 8, 2018.

  1. bundat

    bundat ¿

    Member
    4
    Jul 25, 2018
    Antarctica
    Signing up to that was actually easier than I thought :wtf:
    Now I have full access to that doc :wtf:
    a.
     
  2. Draxzelex

    Draxzelex GBAtemp Legend

    Member
    18
    Aug 6, 2017
    United States
    New York City
    Yes, but there is another tool by the name of dOPUS which performs the same functions as the tool you're thinking about.
    Not load NSP files through USB but just install them without having to take out your SD card and put them on there. I'm not sure if the latest public build of Tinfoil has USB installation or if you have to use one of the semi-private builds that Adubbz distributed, but its possible. You also have to use the python script found under Tools on the GitHub page.


    .NSP files do not use certificates; they use tickets. However you can build an .NSP file without a ticket and then install/launch it without one installed.
     
  3. _hexkyz_

    _hexkyz_ Member

    Newcomer
    3
    Oct 4, 2018
    United States
    Moral standpoints aside, no one will be able to replicate SX's XCI loading and distribute it as free open source software.
    Not because of any technical hurdles or anything, but because it's flat out illegal.

    TX reversed most of the gamecard protocol from the FS sysmodule and re-implemented it in their Loader KIP, hidden away inside a MIPS VM and a few layers of obfuscation. However, to achieve this, TX included sectors dumped from a real gamecard and the gamecard controller's certificate (which can be obtained by FS using a specific command). You can find these binaries by unpacking SX OS and searching inside the Loader KIP (simple hex editor will do) for "CERT" and "LOTUS".
    Basically, any form of XCI loading requires heavily patching the FS sysmodule which can be quite a task if you want to support all firmware versions and what not. To avoid this, TX instead applies a single patch to FS which redirects gamecard commands to their MIPS VM. Then, code in their VM replies to the gamecard commands issued by FS with signed data ripped from a real gamecard.
    After the authentication process has been forged, the VM is free to read data from the SD card and send it back to FS each time FS sends the gamecard sector reading command.

    There are a few more details which I'm saving up for the writeup (SOON™), but that's the gist of it. A free solution will never be able to take this path for obvious reasons (instant takedown and lawsuits galore!), so a more complex approach will be necessary.
     
  4. synce

    synce だいこんちゃんのだいふぁん

    Member
    4
    Nov 5, 2009
    Comoros
    I don't think morality or legality is the issue since it's not that hard to release stuff anonymously if you know what you're doing. More than likely it's an issue of skill and ego. Either no one has the skill, or they don't want to work on something they won't get credit for.
     
  5. Khar00f
    OP

    Khar00f GBAtemp Regular

    Member
    5
    Mar 12, 2006
    Canada
    Interesting, thanks for shedding some info on the topic
     
  6. Krenogin

    Krenogin Member

    Newcomer
    4
    Jul 17, 2018
    United States
    TX has teleported into the future and stolen the xci loaders code from someone else!!!!

    Ps yes you can update xci files. If you couldn’t how would you update a cart normally???
     
  7. Philourer

    Philourer Advanced Member

    Newcomer
    2
    Jun 17, 2016
    United States
    You don't update a cart, if you did, then why do you need to update it again when used on a second console? Carts are read-only. If a game has an update, new carts could be made that have the updated files, but any old carts will forever need a downloaded update.

    Edit: Ok, had my morning caffeine. The Switch sees an xci as a cart, so the process of updating is the same. I read it as saying you can update the xci itself, same as a cart, which is not correct (you don't update a cart, you install an update for the cart, that's the difference). I'll leave my original response for posterity (of my inept reading comprehension).
     
    Last edited by Philourer, Oct 9, 2018
  8. Krenogin

    Krenogin Member

    Newcomer
    4
    Jul 17, 2018
    United States
    Yes, you download and update just like a NSP, runs the update files from the SD or NAND.
     
  9. Philourer

    Philourer Advanced Member

    Newcomer
    2
    Jun 17, 2016
    United States
    Right. I was reading the post as stating you could update the xci file directly. Like slipstreaming updates in a windows install disc. My response was technically accurate, but I was arguing against a point no one made.
     
  10. SonyUSA
    This message by SonyUSA has been removed from public view by SonyUSA, Nov 20, 2018, Reason: oops old thread.
    Nov 20, 2018
  11. AnalogMan

    AnalogMan ultraSuMoFramework Dev

    Member
    12
    Apr 20, 2007
    United States
    Could that solution be used if paired with the requirement that the user needs to dump their own sector data from a game card? Like, include everything up to the game card sectors? It would obviously need to come with a homebrew capable of doing that or does the type of dumping needed require specialized hardware or tools?
     
  12. InvisibleH8

    InvisibleH8 Member

    Newcomer
    1
    Aug 15, 2018
    Canada
    XCI's can be built to include all DLC and Updates. This makes having very large amounts of games easier, especially with a large EXT HDD and multiple switch's. You don't need to install anything to the system or SDMC whatsoever, one file, everything included.

    You can pack multiple games into a single file, it will also downgrade firmware requirements.

    NINTENDO SWITCH CLEANER AND BUILDER
    https://gbatemp.net/threads/nsc_bui...lder-game-updates-dlc-in-a-single-xci.522486/
     
    KhenemetHeru likes this.
  13. iCEQB

    iCEQB GBAtemp Advanced Fan

    Member
    7
    Nov 2, 2013
    United States
    Is there any way to check if I have a clean NAND dump? I have one, but i don't remember if I first installed a NSP file to see how all the jazz works - or if I was smarty enough to create backup first and THEN install a NSP file.

    There has to be some sort of record that the Switch keeps correct?
     
    AkdM likes this.
  14. Draxzelex

    Draxzelex GBAtemp Legend

    Member
    18
    Aug 6, 2017
    United States
    New York City
    Well if you installed a .NSP file before you backed up the NAND, when you restore the NAND and see that .NSP file installed on the home menu, you know the NAND is tainted. But otherwise the only other way to tell if a NAND is not clean is by restoring it and checking if you're banned. The console doesn't know the difference between a clean and dirty NAND.
     
  15. huma_dawii

    huma_dawii GBAtemp Psycho!

    Member
    10
    Apr 3, 2014
    United States
    Planet Earth
    Piracy hypocrisy. Sad honestly.
     
    KhenemetHeru likes this.
  16. Clydefrosch

    Clydefrosch GBAtemp Guru

    Member
    12
    Jan 2, 2009
    Germany
    Man... that's seriously deep.
    Do you have a livejournal I can follow?
     
    bostonBC likes this.
  17. huma_dawii

    huma_dawii GBAtemp Psycho!

    Member
    10
    Apr 3, 2014
    United States
    Planet Earth
    lol
     
    Clydefrosch likes this.
  18. iCEQB

    iCEQB GBAtemp Advanced Fan

    Member
    7
    Nov 2, 2013
    United States
    As far as I know there was something like a database on the 3DS where the console kept track ob every cia ever installed or something like that. Even when you uninstalled the cia or did a factory restore on the 3DS, this specific database was never flushed.
    Maybe someone knows what I'm talking about and can confirm this.

    Should this be true what I'm saying, I'd be surprised if Nintendo wouldn't do the same on the Switch.
     
    Last edited by iCEQB, Dec 20, 2018
  19. Draxzelex

    Draxzelex GBAtemp Legend

    Member
    18
    Aug 6, 2017
    United States
    New York City
    Well the 3DS isn't the Switch so making assumptions based on previous consoles is already a bad idea. But each .NSP file you install into the console gets its own ticket which you can check with the homebrew application Tinfoil.
     
  20. Absintu

    Absintu GBAtemp Regular

    Member
    5
    Feb 2, 2018
    Portugal
    This
     
  21. Khar00f
    OP

    Khar00f GBAtemp Regular

    Member
    5
    Mar 12, 2006
    Canada
    there is what is called Telemetry data on the console itself, that keeps track of pretty much everything that you do on your switch. if you factory reset that report remains, there are ways to wipe but calls for almost an instant ban as you break the natural sequence if it and it flags nintendo when they check it.

    That's why the only way to really be safe is to have a clean NAND and restore before doing online activity. An NAND restore everything from the point of the backup, including the telemetry report.
     
Quick Reply
Draft saved Draft deleted
Loading...