// Copyright 2015 Citra Emulator Project // Licensed under GPLv2 or any later version // Refer to the license.txt file included. #include #include #include "common/archives.h" #include "common/common_paths.h" #include "common/file_util.h" #include "common/logging/log.h" #include "common/settings.h" #include "core/core.h" #include "core/file_sys/archive_ncch.h" #include "core/file_sys/file_backend.h" #include "core/hle/applets/applet.h" #include "core/hle/kernel/mutex.h" #include "core/hle/kernel/shared_memory.h" #include "core/hle/romfs.h" #include "core/hle/service/am/am.h" #include "core/hle/service/apt/applet_manager.h" #include "core/hle/service/apt/apt.h" #include "core/hle/service/apt/apt_a.h" #include "core/hle/service/apt/apt_s.h" #include "core/hle/service/apt/apt_u.h" #include "core/hle/service/apt/bcfnt/bcfnt.h" #include "core/hle/service/apt/ns.h" #include "core/hle/service/apt/ns_c.h" #include "core/hle/service/apt/ns_s.h" #include "core/hle/service/cfg/cfg.h" #include "core/hle/service/fs/archive.h" #include "core/hle/service/fs/fs_user.h" #include "core/hle/service/ptm/ptm.h" #include "core/hle/service/service.h" #include "core/hw/aes/ccm.h" #include "core/hw/aes/key.h" #include "core/loader/loader.h" #include "core/telemetry_session.h" SERVICE_CONSTRUCT_IMPL(Service::APT::Module) namespace Service::APT { template void Module::serialize(Archive& ar, const unsigned int file_version) { ar& shared_font_mem; ar& shared_font_loaded; ar& shared_font_relocated; ar& cpu_percent; ar& screen_capture_post_permission; ar& applet_manager; ar& wireless_reboot_info; } SERIALIZE_IMPL(Module) Module::NSInterface::NSInterface(std::shared_ptr apt, const char* name, u32 max_session) : ServiceFramework(name, max_session), apt(std::move(apt)) {} Module::NSInterface::~NSInterface() = default; std::shared_ptr Module::NSInterface::GetModule() const { return apt; } void Module::NSInterface::SetWirelessRebootInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto size = rp.Pop(); const auto buffer = rp.PopStaticBuffer(); apt->wireless_reboot_info = std::move(buffer); auto rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); LOG_WARNING(Service_APT, "called size={}", size); } void Module::NSInterface::ShutdownAsync(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_INFO(Service_APT, "called"); apt->system.RequestShutdown(); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::NSInterface::RebootSystem(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto launch_title = rp.Pop() != 0; const auto title_id = rp.Pop(); const auto media_type = static_cast(rp.Pop()); rp.Skip(1, false); // Skip padding // TODO: Utilize requested memory type. const auto mem_type = rp.Pop(); LOG_WARNING(Service_APT, "called launch_title={}, title_id={:016X}, media_type={:02X}, mem_type={:02X}", launch_title, title_id, media_type, mem_type); // TODO: Handle mem type. if (launch_title) { NS::RebootToTitle(apt->system, media_type, title_id); } else { apt->system.RequestReset(); } IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::NSInterface::RebootSystemClean(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_INFO(Service_APT, "called"); apt->system.RequestReset(); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::Initialize(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); const auto attributes = rp.Pop(); LOG_DEBUG(Service_APT, "called app_id={:#010X}, attributes={:#010X}", app_id, attributes); auto result = apt->applet_manager->Initialize(app_id, attributes); if (result.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(result.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(1, 3); rb.Push(ResultSuccess); rb.PushCopyObjects(result->notification_event, result->parameter_event); } } static u32 DecompressLZ11(const u8* in, u8* out) { u32_le decompressed_size; std::memcpy(&decompressed_size, in, sizeof(u32)); in += 4; u8 type = decompressed_size & 0xFF; ASSERT(type == 0x11); decompressed_size >>= 8; u32 current_out_size = 0; u8 flags = 0, mask = 1; while (current_out_size < decompressed_size) { if (mask == 1) { flags = *(in++); mask = 0x80; } else { mask >>= 1; } if (flags & mask) { u8 byte1 = *(in++); u32 length = byte1 >> 4; u32 offset; if (length == 0) { u8 byte2 = *(in++); u8 byte3 = *(in++); length = (((byte1 & 0x0F) << 4) | (byte2 >> 4)) + 0x11; offset = (((byte2 & 0x0F) << 8) | byte3) + 0x1; } else if (length == 1) { u8 byte2 = *(in++); u8 byte3 = *(in++); u8 byte4 = *(in++); length = (((byte1 & 0x0F) << 12) | (byte2 << 4) | (byte3 >> 4)) + 0x111; offset = (((byte3 & 0x0F) << 8) | byte4) + 0x1; } else { u8 byte2 = *(in++); length = (byte1 >> 4) + 0x1; offset = (((byte1 & 0x0F) << 8) | byte2) + 0x1; } for (u32 i = 0; i < length; i++) { *out = *(out - offset); ++out; } current_out_size += length; } else { *(out++) = *(in++); current_out_size++; } } return decompressed_size; } bool Module::LoadSharedFont() { auto cfg = Service::CFG::GetModule(system); u8 font_region_code; switch (cfg->GetRegionValue()) { case 4: // CHN font_region_code = 2; break; case 5: // KOR font_region_code = 3; break; case 6: // TWN font_region_code = 4; break; default: // JPN/EUR/USA font_region_code = 1; break; } const u64_le shared_font_archive_id_low = 0x0004009b00014002 | ((font_region_code - 1) << 8); FileSys::NCCHArchive archive(shared_font_archive_id_low, Service::FS::MediaType::NAND); // 20-byte all zero path for opening RomFS const FileSys::Path file_path(std::vector(20, 0)); FileSys::Mode open_mode = {}; open_mode.read_flag.Assign(1); auto file_result = archive.OpenFile(file_path, open_mode); if (file_result.Failed()) return false; auto romfs = std::move(file_result).Unwrap(); std::vector romfs_buffer(romfs->GetSize()); romfs->Read(0, romfs_buffer.size(), romfs_buffer.data()); romfs->Close(); const char16_t* file_name[4] = {u"cbf_std.bcfnt.lz", u"cbf_zh-Hans-CN.bcfnt.lz", u"cbf_ko-Hang-KR.bcfnt.lz", u"cbf_zh-Hant-TW.bcfnt.lz"}; const RomFS::RomFSFile font_file = RomFS::GetFile(romfs_buffer.data(), {file_name[font_region_code - 1]}); if (font_file.Data() == nullptr) return false; struct { u32_le status; u32_le region; u32_le decompressed_size; INSERT_PADDING_WORDS(0x1D); } shared_font_header{}; static_assert(sizeof(shared_font_header) == 0x80, "shared_font_header has incorrect size"); shared_font_header.status = 2; // successfully loaded shared_font_header.region = font_region_code; shared_font_header.decompressed_size = DecompressLZ11(font_file.Data(), shared_font_mem->GetPointer(0x80)); std::memcpy(shared_font_mem->GetPointer(), &shared_font_header, sizeof(shared_font_header)); *shared_font_mem->GetPointer(0x83) = 'U'; // Change the magic from "CFNT" to "CFNU" return true; } bool Module::LoadLegacySharedFont() { // This is the legacy method to load shared font. // The expected format is a decrypted, uncompressed BCFNT file with the 0x80 byte header // generated by the APT:U service. The best way to get is by dumping it from RAM. We've provided // a homebrew app to do this: https://github.com/citra-emu/3dsutils. Put the resulting file // "shared_font.bin" in the Citra "sysdata" directory. std::string filepath = FileUtil::GetUserPath(FileUtil::UserPath::SysDataDir) + SHARED_FONT; FileUtil::CreateFullPath(filepath); // Create path if not already created FileUtil::IOFile file(filepath, "rb"); if (file.IsOpen()) { file.ReadBytes(shared_font_mem->GetPointer(), file.GetSize()); return true; } return false; } void Module::APTInterface::GetSharedFont(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); IPC::RequestBuilder rb = rp.MakeBuilder(2, 2); // Log in telemetry if the game uses the shared font apt->system.TelemetrySession().AddField(Common::Telemetry::FieldType::Session, "RequiresSharedFont", true); if (!apt->shared_font_loaded) { // On real 3DS, font loading happens on booting. However, we load it on demand to coordinate // with CFG region auto configuration, which happens later than APT initialization. if (apt->LoadSharedFont()) { apt->shared_font_loaded = true; } else if (apt->LoadLegacySharedFont()) { LOG_WARNING(Service_APT, "Loaded shared font by legacy method"); apt->shared_font_loaded = true; } else { LOG_ERROR(Service_APT, "shared font file missing - go dump it from your 3ds"); rb.Push(-1); // TODO: Find the right error code rb.Push(0); rb.PushCopyObjects(nullptr); apt->system.SetStatus(Core::System::ResultStatus::ErrorSystemFiles, "Shared fonts"); return; } } // The shared font has to be relocated to the new address before being passed to the // application. // Note: the target address is still in the old linear heap region even on new firmware // versions. This exception is made for shared font to resolve the following compatibility // issue: // The linear heap region changes depending on the kernel version marked in application's // exheader (not the actual version the application is running on). If an application with old // kernel version and an applet with new kernel version run at the same time, and they both use // shared font, different linear heap region would have required shared font to relocate // according to two different addresses at the same time, which is impossible. VAddr target_address = static_cast(apt->shared_font_mem->GetLinearHeapPhysicalOffset()) + Memory::LINEAR_HEAP_VADDR; if (!apt->shared_font_relocated) { BCFNT::RelocateSharedFont(apt->shared_font_mem, target_address); apt->shared_font_relocated = true; } rb.Push(ResultSuccess); // No error // Since the SharedMemory interface doesn't provide the address at which the memory was // allocated, the real APT service calculates this address by scanning the entire address space // (using svcQueryMemory) and searches for an allocation of the same size as the Shared Font. rb.Push(target_address); rb.PushCopyObjects(apt->shared_font_mem); } void Module::APTInterface::GetWirelessRebootInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto size = rp.Pop(); LOG_WARNING(Service_APT, "called size={:08X}", size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 2); rb.Push(ResultSuccess); rb.PushStaticBuffer(apt->wireless_reboot_info, 0); } void Module::APTInterface::NotifyToWait(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.Pop(); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); // No error LOG_WARNING(Service_APT, "(STUBBED) app_id={}", app_id); } void Module::APTInterface::GetLockHandle(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); // Bits [0:2] are the applet type (System, Library, etc) // Bit 5 tells the application that there's a pending APT parameter, // this will cause the app to wait until parameter_event is signaled. const auto attributes = rp.Pop(); LOG_DEBUG(Service_APT, "called applet_attributes={:#010X}", attributes); auto result = apt->applet_manager->GetLockHandle(attributes); if (result.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(result.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(3, 2); rb.Push(ResultSuccess); rb.PushRaw(result->corrected_attributes); rb.Push(result->state); rb.PushCopyObjects(result->lock); } } void Module::APTInterface::Enable(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto attributes = rp.Pop(); LOG_DEBUG(Service_APT, "called attributes={:#010X}", attributes); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->Enable(attributes)); } void Module::APTInterface::Finalize(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called applet_id={:08X}", applet_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->Finalize(applet_id)); } void Module::APTInterface::GetAppletManInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); auto applet_pos = rp.PopEnum(); LOG_DEBUG(Service_APT, "called, applet_pos={:08X}", applet_pos); auto info = apt->applet_manager->GetAppletManInfo(applet_pos); if (info.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(info.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(5, 0); rb.Push(ResultSuccess); rb.PushEnum(info->active_applet_pos); rb.PushEnum(info->requested_applet_id); rb.PushEnum(info->home_menu_applet_id); rb.PushEnum(info->active_applet_id); } } void Module::APTInterface::CountRegisteredApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.Push(apt->applet_manager->CountRegisteredApplet()); } void Module::APTInterface::IsRegistered(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); // No error rb.Push(apt->applet_manager->IsRegistered(app_id)); LOG_DEBUG(Service_APT, "called app_id={:#010X}", app_id); } void Module::APTInterface::GetAttribute(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called app_id={:#010X}", app_id); auto applet_attr = apt->applet_manager->GetAttribute(app_id); if (applet_attr.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(applet_attr.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.Push(applet_attr.Unwrap().raw); } } void Module::APTInterface::InquireNotification(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called app_id={:#010X}", app_id); auto notification = apt->applet_manager->InquireNotification(app_id); if (notification.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(notification.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.Push(static_cast(notification.Unwrap())); } } void Module::APTInterface::SendParameter(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto src_app_id = rp.PopEnum(); const auto dst_app_id = rp.PopEnum(); const auto signal_type = rp.PopEnum(); const auto buffer_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called src_app_id={:#010X}, dst_app_id={:#010X}, signal_type={:#010X}," "buffer_size={:#010X}", src_app_id, dst_app_id, signal_type, buffer_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->SendParameter({ .sender_id = src_app_id, .destination_id = dst_app_id, .signal = signal_type, .object = object, .buffer = buffer, })); } void Module::APTInterface::ReceiveParameter(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); const auto buffer_size = rp.Pop(); LOG_DEBUG(Service_APT, "called app_id={:#010X}, buffer_size={:#010X}", app_id, buffer_size); auto next_parameter = apt->applet_manager->ReceiveParameter(app_id); if (next_parameter.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(next_parameter.Code()); } else { const auto size = std::min(static_cast(next_parameter->buffer.size()), buffer_size); next_parameter->buffer.resize( buffer_size); // APT always push a buffer with the maximum size IPC::RequestBuilder rb = rp.MakeBuilder(4, 4); rb.Push(ResultSuccess); // No error rb.PushEnum(next_parameter->sender_id); rb.PushEnum(next_parameter->signal); // Signal type rb.Push(size); // Parameter buffer size rb.PushMoveObjects(next_parameter->object); rb.PushStaticBuffer(std::move(next_parameter->buffer), 0); } } void Module::APTInterface::GlanceParameter(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); const u32 buffer_size = rp.Pop(); LOG_DEBUG(Service_APT, "called app_id={:#010X}, buffer_size={:#010X}", app_id, buffer_size); auto next_parameter = apt->applet_manager->GlanceParameter(app_id); if (next_parameter.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(next_parameter.Code()); } else { const auto size = std::min(static_cast(next_parameter->buffer.size()), buffer_size); next_parameter->buffer.resize( buffer_size); // APT always push a buffer with the maximum size IPC::RequestBuilder rb = rp.MakeBuilder(4, 4); rb.Push(ResultSuccess); // No error rb.PushEnum(next_parameter->sender_id); rb.PushEnum(next_parameter->signal); // Signal type rb.Push(size); // Parameter buffer size rb.PushMoveObjects(next_parameter->object); rb.PushStaticBuffer(std::move(next_parameter->buffer), 0); } } void Module::APTInterface::CancelParameter(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto check_sender = rp.Pop(); const auto sender_appid = rp.PopEnum(); const auto check_receiver = rp.Pop(); const auto receiver_appid = rp.PopEnum(); LOG_DEBUG( Service_APT, "called check_sender={}, sender_appid={:#010X}, check_receiver={}, receiver_appid={:#010X}", check_sender, sender_appid, check_receiver, receiver_appid); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); // No error rb.Push(apt->applet_manager->CancelParameter(check_sender, sender_appid, check_receiver, receiver_appid)); } void Module::APTInterface::PrepareToDoApplicationJump(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); auto flags = rp.PopEnum(); u64 title_id = rp.Pop(); u8 media_type = rp.Pop(); LOG_INFO(Service_APT, "called title_id={:016X}, media_type={:#01X}, flags={:#08X}", title_id, media_type, flags); Result result = apt->applet_manager->PrepareToDoApplicationJump( title_id, static_cast(media_type), flags); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(result); } void Module::APTInterface::DoApplicationJump(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto param_size = rp.Pop(); const auto hmac_size = rp.Pop(); const auto param = rp.PopStaticBuffer(); const auto hmac = rp.PopStaticBuffer(); LOG_INFO(Service_APT, "called param_size={:08X}, hmac_size={:08X}", param_size, hmac_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->DoApplicationJump(DeliverArg{param, hmac})); } void Module::APTInterface::GetProgramIdOnApplicationJump(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); const auto parameters = apt->applet_manager->GetApplicationJumpParameters(); IPC::RequestBuilder rb = rp.MakeBuilder(7, 0); rb.Push(ResultSuccess); rb.Push(parameters.current_title_id); rb.Push(static_cast(parameters.current_media_type)); rb.Push(parameters.next_title_id); rb.Push(static_cast(parameters.next_media_type)); } void Module::APTInterface::SendDeliverArg(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto param_size = rp.Pop(); const auto hmac_size = rp.Pop(); const auto param = rp.PopStaticBuffer(); const auto hmac = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called param_size={:08X}, hmac_size={:08X}", param_size, hmac_size); apt->applet_manager->SetDeliverArg(DeliverArg{param, hmac}); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::ReceiveDeliverArg(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto param_size = rp.Pop(); const auto hmac_size = rp.Pop(); LOG_DEBUG(Service_APT, "called param_size={:08X}, hmac_size={:08X}", param_size, hmac_size); auto arg = apt->applet_manager->ReceiveDeliverArg().value_or(DeliverArg{}); arg.param.resize(param_size); arg.hmac.resize(std::min(hmac_size, 0x20)); IPC::RequestBuilder rb = rp.MakeBuilder(4, 4); rb.Push(ResultSuccess); rb.Push(arg.source_program_id); rb.Push(1); rb.PushStaticBuffer(std::move(arg.param), 0); rb.PushStaticBuffer(std::move(arg.hmac), 1); } void Module::APTInterface::PrepareToStartApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto title_id = rp.Pop(); const auto media_type = static_cast(rp.Pop()); rp.Skip(1, false); // Padding const auto flags = rp.Pop(); LOG_INFO(Service_APT, "called title_id={:#010X} media_type={} flags={:#010X}", title_id, media_type, flags); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToStartApplication(title_id, media_type)); } void Module::APTInterface::StartApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto hmac_size = rp.Pop(); const auto paused = rp.Pop(); const auto parameter = rp.PopStaticBuffer(); const auto hmac = rp.PopStaticBuffer(); LOG_INFO(Service_APT, "called parameter_size={:#010X}, hmac_size={:#010X}, paused={}", parameter_size, hmac_size, paused); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->StartApplication(parameter, hmac, paused)); } void Module::APTInterface::WakeupApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->WakeupApplication(nullptr, {})); } void Module::APTInterface::CancelApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->CancelApplication()); } void Module::APTInterface::AppletUtility(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); // These are from 3dbrew - I'm not really sure what they're used for. const auto utility_command = rp.Pop(); const auto input_size = rp.Pop(); const auto output_size = rp.Pop(); [[maybe_unused]] const auto input = rp.PopStaticBuffer(); LOG_WARNING(Service_APT, "(STUBBED) called command={:#010X}, input_size={:#010X}, output_size={:#010X}", utility_command, input_size, output_size); std::vector out(output_size); if (utility_command == 0x6 && output_size > 0) { // Command 0x6 (TryLockTransition) expects a boolean return value indicating // whether the attempt succeeded. Since we don't implement any of the transition // locking stuff yet, fake a success result to avoid app crashes. out[0] = true; } IPC::RequestBuilder rb = rp.MakeBuilder(2, 2); rb.Push(ResultSuccess); // No error rb.Push(ResultSuccess); // Utility function result rb.PushStaticBuffer(out, 0); } void Module::APTInterface::SetAppCpuTimeLimit(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto must_be_one = rp.Pop(); const auto value = rp.Pop(); LOG_WARNING(Service_APT, "(STUBBED) called, must_be_one={}, value={}", must_be_one, value); if (must_be_one != 1) { LOG_ERROR(Service_APT, "This value should be one, but is actually {}!", must_be_one); } apt->cpu_percent = value; IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); // No error } void Module::APTInterface::GetAppCpuTimeLimit(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto must_be_one = rp.Pop(); LOG_WARNING(Service_APT, "(STUBBED) called, must_be_one={}", must_be_one); if (must_be_one != 1) { LOG_ERROR(Service_APT, "This value should be one, but is actually {}!", must_be_one); } IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); // No error rb.Push(apt->cpu_percent); } void Module::APTInterface::PrepareToStartLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called, applet_id={:08X}", applet_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToStartLibraryApplet(applet_id)); } void Module::APTInterface::PrepareToStartSystemApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called, applet_id={:08X}", applet_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToStartSystemApplet(applet_id)); } void Module::APTInterface::PrepareToStartNewestHomeMenu(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); LOG_DEBUG(Service_APT, "called"); // TODO(Subv): This command can only be called by a System Applet (return 0xC8A0CC04 otherwise). // This command must return an error when called, otherwise the Home Menu will try to reboot the // system. rb.Push(Result(ErrorDescription::AlreadyExists, ErrorModule::Applet, ErrorSummary::InvalidState, ErrorLevel::Status)); } void Module::APTInterface::PreloadLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called, applet_id={:08X}", applet_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PreloadLibraryApplet(applet_id)); } void Module::APTInterface::FinishPreloadingLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->FinishPreloadingLibraryApplet(applet_id)); LOG_WARNING(Service_APT, "(STUBBED) called, applet_id={:#05X}", applet_id); } void Module::APTInterface::StartLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); const auto buffer_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called, applet_id={:08X}, size={:08X}", applet_id, buffer_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->StartLibraryApplet(applet_id, object, buffer)); } void Module::APTInterface::StartSystemApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto applet_id = rp.PopEnum(); const auto buffer_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called, applet_id={:08X}, size={:08X}", applet_id, buffer_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->StartSystemApplet(applet_id, object, buffer)); } void Module::APTInterface::OrderToCloseApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->OrderToCloseApplication()); } void Module::APTInterface::PrepareToCloseApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto return_to_sys = rp.Pop() != 0; LOG_DEBUG(Service_APT, "called return_to_sys={}", return_to_sys); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToCloseApplication(return_to_sys)); } void Module::APTInterface::CloseApplication(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called size={}", parameter_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->CloseApplication(object, buffer)); } void Module::APTInterface::CancelLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_exiting = rp.Pop(); LOG_DEBUG(Service_APT, "called app_exiting={}", app_exiting); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->CancelLibraryApplet(app_exiting)); } void Module::APTInterface::PrepareToCloseLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto not_pause = rp.Pop(); const auto exiting = rp.Pop(); const auto jump_to_home = rp.Pop(); LOG_DEBUG(Service_APT, "called not_pause={} exiting={} jump_to_home={}", not_pause, exiting, jump_to_home); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToCloseLibraryApplet(not_pause, exiting, jump_to_home)); } void Module::APTInterface::PrepareToCloseSystemApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToCloseSystemApplet()); } void Module::APTInterface::CloseLibraryApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called size={}", parameter_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->CloseLibraryApplet(object, buffer)); } void Module::APTInterface::CloseSystemApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called size={}", parameter_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->CloseSystemApplet(object, buffer)); } void Module::APTInterface::OrderToCloseSystemApplet(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->OrderToCloseSystemApplet()); } void Module::APTInterface::SendDspSleep(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto from_app_id = rp.PopEnum(); const auto object = rp.PopGenericObject(); LOG_DEBUG(Service_APT, "called, from_app_id={:08X}", from_app_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->SendDspSleep(from_app_id, object)); } void Module::APTInterface::SendDspWakeUp(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto from_app_id = rp.PopEnum(); const auto object = rp.PopGenericObject(); LOG_DEBUG(Service_APT, "called, from_app_id={:08X}", from_app_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->SendDspWakeUp(from_app_id, object)); } void Module::APTInterface::ReplySleepQuery(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto from_app_id = rp.PopEnum(); const auto reply_value = rp.PopEnum(); LOG_WARNING(Service_APT, "(STUBBED) called, from_app_id={:08X}, reply_value={:08X}", from_app_id, reply_value); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::ReplySleepNotificationComplete(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto from_app_id = rp.PopEnum(); LOG_WARNING(Service_APT, "(STUBBED) called, from_app_id={:08X}", from_app_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::PrepareToJumpToHomeMenu(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToJumpToHomeMenu()); } void Module::APTInterface::JumpToHomeMenu(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called size={}", parameter_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->JumpToHomeMenu(object, buffer)); } void Module::APTInterface::PrepareToLeaveHomeMenu(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->PrepareToLeaveHomeMenu()); } void Module::APTInterface::LeaveHomeMenu(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called size={}", parameter_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->LeaveHomeMenu(object, buffer)); } void Module::APTInterface::LoadSysMenuArg(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto size = std::min(std::size_t{rp.Pop()}, SysMenuArgSize); LOG_DEBUG(Service_APT, "called"); // This service function does not clear the buffer. std::vector buffer(size); std::copy_n(apt->sys_menu_arg_buffer.cbegin(), size, buffer.begin()); IPC::RequestBuilder rb = rp.MakeBuilder(1, 2); rb.Push(ResultSuccess); rb.PushStaticBuffer(std::move(buffer), 0); } void Module::APTInterface::StoreSysMenuArg(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto size = std::min(std::size_t{rp.Pop()}, SysMenuArgSize); const auto& buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called"); ASSERT_MSG(buffer.size() >= size, "Buffer too small to hold requested data"); std::copy_n(buffer.cbegin(), size, apt->sys_menu_arg_buffer.begin()); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::SendCaptureBufferInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); [[maybe_unused]] const auto size = rp.Pop(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called"); apt->applet_manager->SendCaptureBufferInfo(buffer); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::ReceiveCaptureBufferInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto size = rp.Pop(); LOG_DEBUG(Service_APT, "called"); auto screen_capture_buffer = apt->applet_manager->ReceiveCaptureBufferInfo(); auto real_size = std::min(static_cast(screen_capture_buffer.size()), size); screen_capture_buffer.resize(size); IPC::RequestBuilder rb = rp.MakeBuilder(2, 2); rb.Push(ResultSuccess); rb.Push(real_size); rb.PushStaticBuffer(std::move(screen_capture_buffer), 0); } void Module::APTInterface::GetCaptureInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto size = rp.Pop(); LOG_DEBUG(Service_APT, "called"); auto screen_capture_buffer = apt->applet_manager->GetCaptureInfo(); auto real_size = std::min(static_cast(screen_capture_buffer.size()), size); screen_capture_buffer.resize(size); IPC::RequestBuilder rb = rp.MakeBuilder(2, 2); rb.Push(ResultSuccess); rb.Push(real_size); rb.PushStaticBuffer(std::move(screen_capture_buffer), 0); } void Module::APTInterface::Unknown54(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); auto in_param = rp.Pop(); LOG_DEBUG(Service_APT, "called, in_param={}", in_param); auto media_type = apt->applet_manager->Unknown54(in_param); if (media_type.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(media_type.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.PushEnum(media_type.Unwrap()); } } void Module::APTInterface::SetScreenCapturePostPermission(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); auto permission = rp.Pop(); LOG_DEBUG(Service_APT, "called, permission={}", permission); apt->screen_capture_post_permission = static_cast(permission & 0xF); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); // No error } void Module::APTInterface::GetScreenCapturePostPermission(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); // No error rb.Push(static_cast(apt->screen_capture_post_permission)); } void Module::APTInterface::WakeupApplication2(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto buffer_size = rp.Pop(); const auto object = rp.PopGenericObject(); const auto buffer = rp.PopStaticBuffer(); LOG_DEBUG(Service_APT, "called buffer_size={:#010X}", buffer_size); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(apt->applet_manager->WakeupApplication(object, buffer)); } void Module::APTInterface::GetProgramId(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto process_id = rp.PopPID(); LOG_DEBUG(Service_APT, "called process_id={}", process_id); IPC::RequestBuilder rb = rp.MakeBuilder(3, 0); rb.Push(ResultSuccess); auto fs_user = apt->system.ServiceManager().GetService("fs:USER"); ASSERT_MSG(fs_user != nullptr, "fs:USER service is missing."); auto program_info_result = fs_user->GetProgramLaunchInfo(process_id); if (program_info_result.Failed()) { // On failure, APT still returns a success result with a program ID of 0. rb.Push(0); } else { rb.Push(program_info_result.Unwrap().program_id); } } void Module::APTInterface::GetProgramInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto title_id = rp.Pop(); const auto media_type = static_cast(rp.Pop()); rp.Skip(1, false); // Skip padding LOG_WARNING(Service_APT, "called title_id={:016X}, media_type={:02X}", title_id, media_type); std::string path = Service::AM::GetTitleContentPath(media_type, title_id); auto loader = Loader::GetLoader(path); if (!loader) { LOG_WARNING(Service_APT, "Could not find .app for title 0x{:016x}", title_id); // TODO: Proper error code IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultUnknown); return; } auto memory_mode = loader->LoadKernelMemoryMode(); if (memory_mode.second != Loader::ResultStatus::Success || !memory_mode.first) { LOG_ERROR(Service_APT, "Could not load memory mode for title 0x{:016x}", title_id); // TODO: Proper error code IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultUnknown); return; } auto core_version = loader->LoadCoreVersion(); if (core_version.second != Loader::ResultStatus::Success || !core_version.first) { LOG_ERROR(Service_APT, "Could not load core version for title 0x{:016x}", title_id); // TODO: Proper error code IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultUnknown); return; } IPC::RequestBuilder rb = rp.MakeBuilder(3, 0); rb.Push(ResultSuccess); rb.Push(static_cast(memory_mode.first.value())); rb.Push(core_version.first.value()); } void Module::APTInterface::GetAppletInfo(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto app_id = rp.PopEnum(); LOG_DEBUG(Service_APT, "called, app_id={:08X}", app_id); auto info = apt->applet_manager->GetAppletInfo(app_id); if (info.Failed()) { IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(info.Code()); } else { IPC::RequestBuilder rb = rp.MakeBuilder(7, 0); rb.Push(ResultSuccess); rb.Push(info->title_id); rb.Push(static_cast(info->media_type)); rb.Push(info->registered); rb.Push(info->loaded); rb.Push(info->attributes); } } void Module::APTInterface::GetStartupArgument(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto parameter_size = rp.Pop(); const auto startup_argument_type = static_cast(rp.Pop()); LOG_INFO(Service_APT, "called, startup_argument_type={}, parameter_size={:#010X}", startup_argument_type, parameter_size); std::vector param; bool exists = false; if (auto arg = apt->applet_manager->ReceiveDeliverArg()) { param = std::move(arg->param); // TODO: This is a complete guess based on observations. It is unknown how the OtherMedia // type is handled and how it interacts with the OtherApp type, and it is unknown if // this (checking the jump parameters) is indeed the way the 3DS checks the types. const auto& jump_parameters = apt->applet_manager->GetApplicationJumpParameters(); switch (startup_argument_type) { case StartupArgumentType::OtherApp: exists = jump_parameters.current_title_id != jump_parameters.next_title_id && jump_parameters.current_media_type == jump_parameters.next_media_type; break; case StartupArgumentType::Restart: exists = jump_parameters.current_title_id == jump_parameters.next_title_id; break; case StartupArgumentType::OtherMedia: exists = jump_parameters.current_media_type != jump_parameters.next_media_type; break; } } constexpr u32 max_parameter_size{0x1000}; param.resize(std::min(parameter_size, max_parameter_size)); IPC::RequestBuilder rb = rp.MakeBuilder(2, 2); rb.Push(ResultSuccess); rb.Push(exists); rb.PushStaticBuffer(std::move(param), 0); } void Module::APTInterface::Wrap(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto output_size = rp.Pop(); const auto input_size = rp.Pop(); const auto nonce_offset = rp.Pop(); auto nonce_size = rp.Pop(); auto& input = rp.PopMappedBuffer(); auto& output = rp.PopMappedBuffer(); LOG_DEBUG(Service_APT, "called, output_size={}, input_size={}, nonce_offset={}, nonce_size={}", output_size, input_size, nonce_offset, nonce_size); ASSERT(input.GetSize() == input_size); ASSERT(output.GetSize() == output_size); // Note: real 3DS still returns SUCCESS when the sizes don't match. It seems that it doesn't // check the buffer size and writes data with potential overflow. ASSERT_MSG(output_size == input_size + HW::AES::CCM_MAC_SIZE, "input_size ({}) doesn't match to output_size ({})", input_size, output_size); // Note: This weird nonce size modification is verified against real 3DS nonce_size = std::min(nonce_size & ~3, HW::AES::CCM_NONCE_SIZE); // Reads nonce and concatenates the rest of the input as plaintext HW::AES::CCMNonce nonce{}; input.Read(nonce.data(), nonce_offset, nonce_size); u32 pdata_size = input_size - nonce_size; std::vector pdata(pdata_size); input.Read(pdata.data(), 0, nonce_offset); input.Read(pdata.data() + nonce_offset, nonce_offset + nonce_size, pdata_size - nonce_offset); // Encrypts the plaintext using AES-CCM auto cipher = HW::AES::EncryptSignCCM(pdata, nonce, HW::AES::KeySlotID::APTWrap); // Puts the nonce to the beginning of the output, with ciphertext followed output.Write(nonce.data(), 0, nonce_size); output.Write(cipher.data(), nonce_size, cipher.size()); IPC::RequestBuilder rb = rp.MakeBuilder(1, 4); rb.Push(ResultSuccess); // Unmap buffer rb.PushMappedBuffer(input); rb.PushMappedBuffer(output); } void Module::APTInterface::Unwrap(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto output_size = rp.Pop(); const auto input_size = rp.Pop(); const auto nonce_offset = rp.Pop(); auto nonce_size = rp.Pop(); auto& input = rp.PopMappedBuffer(); auto& output = rp.PopMappedBuffer(); LOG_DEBUG(Service_APT, "called, output_size={}, input_size={}, nonce_offset={}, nonce_size={}", output_size, input_size, nonce_offset, nonce_size); ASSERT(input.GetSize() == input_size); ASSERT(output.GetSize() == output_size); // Note: real 3DS still returns SUCCESS when the sizes don't match. It seems that it doesn't // check the buffer size and writes data with potential overflow. ASSERT_MSG(output_size == input_size - HW::AES::CCM_MAC_SIZE, "input_size ({}) doesn't match to output_size ({})", input_size, output_size); // Note: This weird nonce size modification is verified against real 3DS nonce_size = std::min(nonce_size & ~3, HW::AES::CCM_NONCE_SIZE); // Reads nonce and cipher text HW::AES::CCMNonce nonce{}; input.Read(nonce.data(), 0, nonce_size); u32 cipher_size = input_size - nonce_size; std::vector cipher(cipher_size); input.Read(cipher.data(), nonce_size, cipher_size); // Decrypts the ciphertext using AES-CCM auto pdata = HW::AES::DecryptVerifyCCM(cipher, nonce, HW::AES::KeySlotID::APTWrap); IPC::RequestBuilder rb = rp.MakeBuilder(1, 4); if (!pdata.empty()) { // Splits the plaintext and put the nonce in between output.Write(pdata.data(), 0, nonce_offset); output.Write(nonce.data(), nonce_offset, nonce_size); output.Write(pdata.data() + nonce_offset, nonce_offset + nonce_size, pdata.size() - nonce_offset); rb.Push(ResultSuccess); } else { LOG_ERROR(Service_APT, "Failed to decrypt data"); rb.Push(Result(static_cast(1), ErrorModule::PS, ErrorSummary::WrongArgument, ErrorLevel::Status)); } // Unmap buffer rb.PushMappedBuffer(input); rb.PushMappedBuffer(output); } void Module::APTInterface::Reboot(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto title_id = rp.Pop(); const auto media_type = static_cast(rp.Pop()); rp.Skip(1, false); // Skip padding const auto mem_type = rp.Pop(); const auto firm_tid_low = rp.Pop(); LOG_WARNING(Service_APT, "called title_id={:016X}, media_type={:02X}, mem_type={:02X}, firm_tid_low={:08X}", title_id, media_type, mem_type, firm_tid_low); // TODO: Handle mem type and FIRM TID low. NS::RebootToTitle(apt->system, media_type, title_id); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::HardwareResetAsync(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_WARNING(Service_APT, "called"); apt->system.RequestReset(); IPC::RequestBuilder rb = rp.MakeBuilder(1, 0); rb.Push(ResultSuccess); } void Module::APTInterface::GetTargetPlatform(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.PushEnum(apt->applet_manager->GetTargetPlatform()); } void Module::APTInterface::CheckNew3DS(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); PTM::CheckNew3DS(rb); } void Module::APTInterface::GetApplicationRunningMode(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.PushEnum(apt->applet_manager->GetApplicationRunningMode()); } void Module::APTInterface::IsStandardMemoryLayout(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); LOG_DEBUG(Service_APT, "called"); bool is_standard; if (Settings::values.is_new_3ds) { // Memory layout is standard if it is not NewDev1 (178MB) is_standard = apt->system.Kernel().GetNew3dsHwCapabilities().memory_mode != Kernel::New3dsMemoryMode::NewDev1; } else { // Memory layout is standard if it is Prod (64MB) is_standard = apt->system.Kernel().GetMemoryMode() == Kernel::MemoryMode::Prod; } IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.Push(is_standard); } void Module::APTInterface::IsTitleAllowed(Kernel::HLERequestContext& ctx) { IPC::RequestParser rp(ctx); const auto program_id = rp.Pop(); const auto media_type = static_cast(rp.Pop()); rp.Skip(1, false); // Padding LOG_DEBUG(Service_APT, "called, title_id={:016X} media_type={}", program_id, media_type); // We allow all titles to be launched, so this function is a no-op IPC::RequestBuilder rb = rp.MakeBuilder(2, 0); rb.Push(ResultSuccess); rb.Push(true); } Module::APTInterface::APTInterface(std::shared_ptr apt, const char* name, u32 max_session) : ServiceFramework(name, max_session), apt(std::move(apt)) {} Module::APTInterface::~APTInterface() = default; std::shared_ptr Module::APTInterface::GetModule() const { return apt; } Module::Module(Core::System& system) : system(system) { applet_manager = std::make_shared(system); using Kernel::MemoryPermission; shared_font_mem = system.Kernel() .CreateSharedMemory(nullptr, 0x332000, // 3272 KB MemoryPermission::ReadWrite, MemoryPermission::Read, 0, Kernel::MemoryRegion::SYSTEM, "APT:SharedFont") .Unwrap(); } Module::~Module() {} std::shared_ptr Module::GetAppletManager() const { return applet_manager; } std::shared_ptr GetModule(Core::System& system) { auto apt = system.ServiceManager().GetService("APT:A"); if (!apt) return nullptr; return apt->GetModule(); } void InstallInterfaces(Core::System& system) { auto& service_manager = system.ServiceManager(); auto apt = std::make_shared(system); std::make_shared(apt)->InstallAsService(service_manager); std::make_shared(apt)->InstallAsService(service_manager); std::make_shared(apt)->InstallAsService(service_manager); std::make_shared(apt)->InstallAsService(service_manager); std::make_shared(apt)->InstallAsService(service_manager); } } // namespace Service::APT