96
edits
Changes
Jump to navigation
Jump to search
mLine 1:
Line 1: − + − + − − An sample (developer) CIA can be downloaded [https://dl.dropbox.com/u/60710927/CTR/Sample/CIA.7z here] Credit: [[User:Jl12|Jl12]]. It includes a .cia file, with everything is decrypted/extracted. It also includes some screenshots, as well as a copy of the directory where the title was installed. Line 45:
Line 43: − + Line 60:
Line 58: − + − + − |- − | 0x21 − | 0x1FFF − | Magic? Must be Zero Filled Line 72:
Line 66: − + − + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Line 92:
Line 119: − + − + + + + + + + + + Line 105:
Line 140: + + + +
→CIA Header
[[Category:File formats]]
[[Category:File formats]]
== Overview ==
== Overview ==
CIA stands for '''C'''TR '''I'''mportable '''A'''rchive. This format allows the installation titles to the 3DS. CIA files and titles on [[Title list|Nintendo's CDN]] contain identical data. As a consiquence, valid CIA files can be generated from CDN content. This also means CIA files can contain anything, titles on Nintendo's CDN can contain.
CIA stands for '''C'''TR '''I'''mportable '''A'''rchive. This format allows the installation titles to the 3DS. CIA files and titles on [[Title list|Nintendo's CDN]] contain identical data. As a consequence, valid CIA files can be generated from CDN content. This also means CIA files can contain anything that titles on Nintendo's CDN can contain.
Under normal circumstances CIA files are used where downloading a title is impracticle or not possible. Such as distributing a [[Download Play]] child, or installing forced Gamecard updates. Those CIA(s) are stored by the titles in question, in an auxiliary [[NCCH#CFA|CFA]] file.
Under normal circumstances CIA files are used where downloading a title is impractical or not possible. Such as distributing a [[Download Play]] child, or installing forced Gamecard updates. Those CIA(s) are stored by the titles in question, in an auxiliary [[NCCH#CFA|CFA]] file.
Development Units, are capable of manually installing CIA files via the [[3DS Development Unit Software#Dev Menu|Dev Menu]].
Development Units, are capable of manually installing CIA files via the [[3DS Development Unit Software#Dev Menu|Dev Menu]].
== Format ==
== Format ==
| 0x0C
| 0x0C
| 0x04
| 0x04
| [[CommonETicket|Ticket]] size
| [[Ticket]] size
|-
|-
| 0x10
| 0x10
|-
|-
| 0x20
| 0x20
| 0x01
| 0x2000
| Magic? Must be = 0x80
| Content Index
|}
|}
* Ticket
* Ticket
* TMD file data
* TMD file data
* APP file data
* Content file data
* Meta file data (Not a necessary component)
* Meta file data (Not a necessary component)
The APP data (NCCH/SRL) is encrypted, using 128-bit AES-CBC. The encryption uses the decrypted titlekey of the ticket, and the titleid padded with zeros as the IV. To get the decrypted titlekey, the titlekey stored in the ticket must be decrypted using 128-bit AES-CBC with the 3DS common key, and the same IV as mentioned previously.
The contents (NCCH/SRL) are encrypted using 128-bit AES-CBC. The encryption uses the decrypted titlekey from the [[Ticket#Structure|ticket]], and the content index from the TMD padded with zeros as the IV.
=== Certificate Chain ===
There are three [[Certificates|certificates]] in this chain:
{| class="wikitable" border="1"
|-
! CERTIFICATE
! SIGNATURE TYPE
! RETAIL CERT NAME
! DEBUG CERT NAME
! DESCRIPTION
|-
| CA
| RSA-4096
| CA00000003
| CA00000004
| Used to verify the Ticket/TMD Certificates
|-
| Ticket
| RSA-2048
| XS0000000c
| XS00000009
| Used to verify the Ticket signature
|-
| TMD
| RSA-2048
| CP0000000b
| CP0000000a
| Used to verify the TMD signature
|}
The CA certificate is issued by 'Root', the public key for which is stored in NATIVE_FIRM.
=== Meta ===
=== Meta ===
|-
|-
| 0x180
| 0x180
| 0x280
| 0x180
| Reserved/Unused
| Reserved
|-
| 0x300
| 0x4
| Core Version
|-
| 0x304
| 0xFC
| Reserved
|-
|-
| 0x400
| 0x400
* [https://github.com/3dshax/ctr/tree/master/ctrtool ctrtool] - Reading/Extraction of CIA files. This can only decrypt the title-key for development CIAs, since retail CIAs use the [[AES]] hardware key-scrambler for the common-key keyslot.
* [https://github.com/3dshax/ctr/tree/master/ctrtool ctrtool] - Reading/Extraction of CIA files. This can only decrypt the title-key for development CIAs, since retail CIAs use the [[AES]] hardware key-scrambler for the common-key keyslot.
* [https://github.com/ctrdev/ctrsdk/tree/master/tools/make_cia make_cia] - Generating CIA files. Requires CommonKey and ticket/TMD RSA-2048 private exponents.
* [https://github.com/ctrdev/ctrsdk/tree/master/tools/make_cdn_cia make_cdn_cia] - (CMD)(Windows/Linux) Generates CIA files from CDN Content
== Title Key Encryption ==
== Title Key Encryption ==