Skip to content

Commit

Permalink
Merge pull request SciresM#83 from jakcron/master
Browse files Browse the repository at this point in the history
Implement XCI Encrypted Header parsing
  • Loading branch information
SciresM authored Nov 1, 2019
2 parents 21b84a3 + d7df033 commit 5e2fde4
Show file tree
Hide file tree
Showing 5 changed files with 113 additions and 3 deletions.
3 changes: 2 additions & 1 deletion aes.h
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,8 @@
typedef enum {
AES_MODE_ECB = MBEDTLS_CIPHER_AES_128_ECB,
AES_MODE_CTR = MBEDTLS_CIPHER_AES_128_CTR,
AES_MODE_XTS = MBEDTLS_CIPHER_AES_128_XTS
AES_MODE_XTS = MBEDTLS_CIPHER_AES_128_XTS,
AES_MODE_CBC = MBEDTLS_CIPHER_AES_128_CBC
} aes_mode_t;

typedef enum {
Expand Down
3 changes: 3 additions & 0 deletions extkeys.c
Original file line number Diff line number Diff line change
Expand Up @@ -254,6 +254,9 @@ void extkeys_initialize_settings(hactool_settings_t *settings, FILE *f) {
} else if (strcmp(key, "per_console_key_source") == 0) {
parse_hex_key(keyset->per_console_key_source, value, sizeof(keyset->per_console_key_source));
matched_key = 1;
} else if (strcmp(key, "xci_header_key") == 0) {
parse_hex_key(keyset->xci_header_key, value, sizeof(keyset->xci_header_key));
matched_key = 1;
} else if (strcmp(key, "sd_card_kek_source") == 0) {
parse_hex_key(keyset->sd_card_kek_source, value, sizeof(keyset->sd_card_kek_source));
matched_key = 1;
Expand Down
1 change: 1 addition & 0 deletions settings.h
Original file line number Diff line number Diff line change
Expand Up @@ -54,6 +54,7 @@ typedef struct {
unsigned char header_key[0x20]; /* NCA header key. */
unsigned char titlekeks[0x20][0x10]; /* Title key encryption keys. */
unsigned char key_area_keys[0x20][3][0x10]; /* Key area encryption keys. */
unsigned char xci_header_key[0x10]; /* Key for XCI partially encrypted header. */
unsigned char save_mac_key[0x10]; /* Key used to sign savedata. */
unsigned char sd_card_keys[2][0x20];
unsigned char nca_hdr_fixed_key_modulus[0x100]; /* NCA header fixed key RSA pubk. */
Expand Down
72 changes: 72 additions & 0 deletions xci.c
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
#include <string.h>
#include "rsa.h"
#include "aes.h"
#include "xci.h"

/* This RSA-PKCS1 public key is only accessible to the gamecard controller. */
Expand Down Expand Up @@ -96,6 +97,22 @@ void xci_process(xci_ctx_t *ctx) {
ctx->iv[i] = ctx->header.reversed_iv[0xF-i];
}

// try to decrypt header data
unsigned char null_key[0x10];
memset(null_key, 0x00, 0x10);
// test if the xci header key is set
if (memcmp(ctx->tool_ctx->settings.keyset.xci_header_key, null_key, 0x10) != 0) {
aes_ctx_t *aes_ctx = new_aes_ctx(ctx->tool_ctx->settings.keyset.xci_header_key, 0x10, AES_MODE_CBC);
aes_setiv(aes_ctx, ctx->iv, 0x10);

aes_decrypt(aes_ctx, ctx->decrypted_header, ctx->header.encrypted_data, 0x70);

ctx->has_decrypted_header = 1;
} else {
ctx->has_decrypted_header = 0;
}


if (ctx->tool_ctx->action & ACTION_INFO) {
xci_print(ctx);
}
Expand Down Expand Up @@ -198,6 +215,37 @@ static const char *xci_get_cartridge_type(xci_ctx_t *ctx) {
}
}

static const char *xci_get_firmware_type(xci_gamecard_info_t *gc_info) {
gamecard_firmware_version_t firmware_ver = (gamecard_firmware_version_t)gc_info->firmware_version;
switch (firmware_ver) {
case GC_FIRMWARE_DEVELOPMENT: return "Development";
case GC_FIRMWARE_RETAIL_100: return "Retail (1.0.0+)";
case GC_FIRMWARE_RETAIL_400: return "Retail (4.0.0+)";
default:
return "Unknown";
}
}

static const char *xci_get_access_control_type(xci_gamecard_info_t *gc_info) {
gamecard_access_control_t access_control = (gamecard_access_control_t)gc_info->access_control;
switch (access_control) {
case GC_ACCESS_CONTROL_25MHZ: return "25MHz";
case GC_ACCESS_CONTROL_50MHZ: return "50MHz";
default:
return "Unknown/Invalid";
}
}

static const char *xci_get_region_compatibility_type(xci_gamecard_info_t *gc_info) {
xci_region_compatibility_t compatibility_type = (xci_region_compatibility_t)gc_info->compatibility_type;
switch (compatibility_type) {
case COMPAT_GLOBAL: return "Global";
case COMPAT_CHINA: return "China";
default:
return "Unknown/Invalid";
}
}

static void xci_print_hfs0(hfs0_ctx_t *ctx) {
print_magic(" Magic: ", ctx->header->magic);
printf(" Offset: %012"PRIx64"\n", ctx->offset);
Expand Down Expand Up @@ -233,8 +281,32 @@ void xci_print(xci_ctx_t *ctx) {

printf("Cartridge Type: %s\n", xci_get_cartridge_type(ctx));
printf("Cartridge Size: %012"PRIx64"\n", media_to_real(ctx->header.cart_size + 1));

memdump(stdout, "Header IV: ", ctx->iv, 0x10);
memdump(stdout, "Encrypted Header: ", ctx->header.encrypted_data, 0x70);
if (ctx->has_decrypted_header) {
xci_gamecard_info_t *gc_info = (xci_gamecard_info_t*)(ctx->decrypted_header + 0x10);
printf("Encrypted Header Data:\n");
printf(" Firmware Version: %s\n", xci_get_firmware_type(gc_info)); //%016"PRIx64"\n", gc_info->firmware_version);
printf(" Access Control: %s\n", xci_get_access_control_type(gc_info)); //%08"PRIx32"\n", gc_info->access_control);
printf(" Read Time Wait1: %08"PRIx32"\n", gc_info->read_time_wait_1);
printf(" Read Time Wait2: %08"PRIx32"\n", gc_info->read_time_wait_2);
printf(" Write Time Wait1: %08"PRIx32"\n", gc_info->write_time_wait_1);
printf(" Write Time Wait2: %08"PRIx32"\n", gc_info->write_time_wait_2);
printf(" Firmware Mode: %08"PRIx32"\n", gc_info->firmware_mode);

// decode version
uint32_t ver[4] = {0};
ver[0] = ((gc_info->cup_version >> 26) & 0x3f);
ver[1] = ((gc_info->cup_version >> 20) & 0x3f);
ver[2] = ((gc_info->cup_version >> 16) & 0xf);
ver[3] = (gc_info->cup_version & 0xffff);

printf(" CUP Version v%d.%d.%d-%d\n", ver[0], ver[1], ver[2], ver[3]);
printf(" Compatibility Type %s\n", xci_get_region_compatibility_type(gc_info)); //%02"PRIx8"\n", gc_info->compatibility_type);
memdump(stdout, " Update Hash ", gc_info->update_partition_hash, 8);
printf(" CUP TitleId %016"PRIx64"\n", gc_info->cup_title_id);
}

if (ctx->tool_ctx->action & ACTION_VERIFY) {
printf("Root Partition (%s):\n", GET_VALIDITY_STR(ctx->hfs0_hash_validity));
Expand Down
37 changes: 35 additions & 2 deletions xci.h
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,39 @@ typedef enum {
CARTSIZE_32GB = 0xE2
} cartridge_type_t;

typedef enum {
GC_FIRMWARE_DEVELOPMENT = 0x00,
GC_FIRMWARE_RETAIL_100 = 0x01,
GC_FIRMWARE_RETAIL_400 = 0x02
} gamecard_firmware_version_t;

typedef enum {
GC_ACCESS_CONTROL_25MHZ = 0x00A10011,
GC_ACCESS_CONTROL_50MHZ = 0x00A10010,
} gamecard_access_control_t;

typedef enum {
COMPAT_GLOBAL = 0x00,
COMPAT_CHINA = 0x01
} xci_region_compatibility_t;

typedef struct {
uint64_t firmware_version;
uint32_t access_control;
uint32_t read_time_wait_1;
uint32_t read_time_wait_2;
uint32_t write_time_wait_1;
uint32_t write_time_wait_2;
uint32_t firmware_mode;
uint32_t cup_version;
uint8_t compatibility_type;
uint8_t _0x25;
uint8_t _0x26;
uint8_t _0x27;
unsigned char update_partition_hash[0x8];
uint64_t cup_title_id;
} xci_gamecard_info_t;

typedef struct {
uint8_t header_sig[0x100];
uint32_t magic;
Expand Down Expand Up @@ -53,8 +86,8 @@ typedef struct {
hfs0_ctx_t logo_ctx;
hactool_ctx_t *tool_ctx;
unsigned char iv[0x10];
/* TODO: Header decryption. */
/* unsigned char decrypted_header[0x70]; */
int has_decrypted_header;
unsigned char decrypted_header[0x70];
xci_header_t header;
} xci_ctx_t;

Expand Down

0 comments on commit 5e2fde4

Please sign in to comment.