Difference between revisions of "YouTube"
(→Webkit) |
|||
| Line 7: | Line 7: | ||
! Browser version | ! Browser version | ||
! USA/EUR CDN Title-version | ! USA/EUR CDN Title-version | ||
| + | ! Release date | ||
! Notes | ! Notes | ||
|- | |- | ||
| 1.7498 | | 1.7498 | ||
| v16 and v0 | | v16 and v0 | ||
| + | | | ||
| Initial app version. | | Initial app version. | ||
|- | |- | ||
| 1.7498 | | 1.7498 | ||
| v1056 and v1040 | | v1056 and v1040 | ||
| + | | | ||
| First app update. This build uses the [[7.0.0-13|v7.0]] [[NCCH]] encryption for the main CXI, this was the first retail title to use this. | | First app update. This build uses the [[7.0.0-13|v7.0]] [[NCCH]] encryption for the main CXI, this was the first retail title to use this. | ||
| + | |- | ||
| + | | ? | ||
| + | | v2096 and v2080 | ||
| + | | October 15, 2015 | ||
| + | | This update fixed the vuln used for tubehax. Note that this update is forced, since the app itself checks for a newer version of the title(how exactly it does this is unknown: the main codebin for latest/older versions don't contain the NIM service string). | ||
| + | * Plaintext HTTP is still used. | ||
| + | * The RomFS is empty, and accessinfo is still 0x0. It's unknown what happened to the CROs(see below). | ||
| + | * This version was built with the latest CTRSDK, so NATIVE_FIRM [[9.6.0-25|9.6.0-X]] is now required. | ||
|} | |} | ||
Revision as of 15:29, 15 October 2015
The YouTube application available from the eShop is a web-browser. Like the main browser this uses WebKit. All data is downloaded with plaintext HTTP.
User-Agent and Browser Versions
The user-agent format is almost identical to the main browser: "Mozilla/5.0 (Nintendo 3DS; U; ; Factory Media Production) Version/<version>.<region>". <lang> is "en", "fr", etc. <region> is "US", "EU", etc. See below for <version>.
| Browser version | USA/EUR CDN Title-version | Release date | Notes |
|---|---|---|---|
| 1.7498 | v16 and v0 | Initial app version. | |
| 1.7498 | v1056 and v1040 | First app update. This build uses the v7.0 NCCH encryption for the main CXI, this was the first retail title to use this. | |
| ? | v2096 and v2080 | October 15, 2015 | This update fixed the vuln used for tubehax. Note that this update is forced, since the app itself checks for a newer version of the title(how exactly it does this is unknown: the main codebin for latest/older versions don't contain the NIM service string).
|
RomFS
The RomFS only contains CROs("/cro/") and the CRR("/.crr/static.crr"), the following is the "/cro/" contents:
- JavaScriptCore_CTR.cro
- WebCore_CTR.cro
- WebkitMediaPlayer_CTR.cro
- WebKit_CTR.cro
- static.crs
Webkit
Looks like the YouTube application uses a newer version of Webkit than the Internet Browser applet. It has the ability to construct Blobs, of course the HTML5 video element, and possibly the Audio element (Visible, but untested). It also supports the localStorage API. Here a list of exposed apis: [1].
embedded.ctr
Inside the YouTube app, there is a pseudo-webserver running that links to a structure inside ExeFS. This structure provides a list of urls under the domain "http://embeded.ctr/".