Difference between revisions of "ClCertA"

From 3dbrew
Jump to navigation Jump to search
(Start listing servers that require ClCertA)
(Document certificate file format)
Line 1: Line 1:
 
This [[NCCH#CFA|CFA]] contains the following [[PSPXI:EncryptDecryptAes|encrypted]] files in the RomFS:
 
This [[NCCH#CFA|CFA]] contains the following [[PSPXI:EncryptDecryptAes|encrypted]] files in the RomFS:
* "ctr-common-1-cert.bin", this is the default SSL client cert used by the SSL module.
+
* "ctr-common-1-cert.bin", this is the default SSL client cert used by the SSL module in DER format.
* "ctr-common-1-key.bin", this is the default SSL client private key used by the SSL module.
+
* "ctr-common-1-key.bin", this is the default SSL client private key used by the SSL module in DER format.
  
 
For retail this is the "CTR Common Prod 1" cert.
 
For retail this is the "CTR Common Prod 1" cert.

Revision as of 10:28, 31 August 2015

This CFA contains the following encrypted files in the RomFS:

  • "ctr-common-1-cert.bin", this is the default SSL client cert used by the SSL module in DER format.
  • "ctr-common-1-key.bin", this is the default SSL client private key used by the SSL module in DER format.

For retail this is the "CTR Common Prod 1" cert.

Each file is encrypted in CBC mode. The first 16 bytes of each file are the IV for decrypting the rest of the file.

The following servers require usage of ClCertA to connect: