SamyGO

Samsung TV Firmware on the GO
https://forum.samygo.tv/

Defeating authuld protection on CI+ devices

https://forum.samygo.tv/viewtopic.php?t=655

Page 5 of 9

Re: Defeating authuld protection on CI+ devices

Posted: Thu Dec 02, 2010 3:07 pm
by cyberdemon79
Forgot to add:

The hardcoded mkey is correct for a LxxxB650T2P (CI+ model), it may be different for other tvs.
Be very careful if you want to modify your stored hashes and keep away from hash in /dev/bml0/3
(don't modify them, executing the program on them should be safe) if you miscalculate one of those
hashes, authuld will shut down the tv very early within the boot process, you may lose the ability to
access a shell on brick your tv. Recalculating the mtd_exe hash seems to be ok (a lot of other stuff
is checked first and we get enough time to kill authuld which buys us some more minutes to restore
our hashes).

Re: Defeating authuld protection on CI+ devices

Posted: Thu Dec 02, 2010 5:54 pm
by erdem_ua
Yuppi :D
That will lead easy flash back tool for CI+ series :)
Bye bye authld, we don't miss you.

Re: Defeating authuld protection on CI+ devices

Posted: Fri Dec 03, 2010 3:40 pm
by cyberdemon79
Hi there,

I modified the program to display and check all available hashes on the tv.
When executed it grabs the hashes for kernel, uboot, fnw, authuld, root and boot from /dev/bml0/3,
tries to detect the flashtype (128, 1000 or 2000) and on which partition mtd_exe and mtd_appdata are mounted.
Then it choses the matching macpartition name and compares all those hashes (calculated vs stored).
At the begin of the program, the mkey is verified against the authuld hash (we assume that nobody
messed with it).
All the program does is display thoses hashes and show if the match the stored ones (against which
authuld checks).
It should be safe to execute (no modification is done by it, it just reads data),
please post your results including your model number (I want to check if the mkey is the same for all tvs).

Haven't got a crosscompiler handy, could someone please be so kind and compile it ?

Code: Select all

/**********************************************************************/
/* calchash by cyberdemon based upon work by petergray and smartsmurf */
/* ------------------------------------------------------------------ */
/* credits for the original program go to:                            */
/* AES-CMAC with AES-128 bit                                          */
/* CMAC Algorithm described in SP800-38B                              */
/* Author: Junhyuk Song (junhyuk.song@samsung.com)                    */
/* Jicheol Lee (jicheol.lee@samsung.com)                              */
/**********************************************************************/

#include <stdio.h>
#include <string.h>
#include <malloc.h>

#define BOOTLOADER_PARTITION	"/dev/bml0/1"
#define UBOOT_PARTITION		"/dev/bml0/2"
#define UBOOT_ENV_PARTITION	"/dev/bml0/3"
#define FNW_PARTITION		"/dev/bml0/4"
#define KERNEL_PARTITION	"/dev/bml0/5"
#define ROOT_PARTITION		"/dev/bml0/6"
#define BOOT_PARTITION		"/dev/bml0/7"
#define AUTHULD_PATH		"/bin/authuld"
#define MTDEXE_PARTITION1	"/dev/bml0/8"
#define MTDAPPDATA_PARTITION1	"/dev/bml0/9"
#define MTDEXE_PARTITION2	"/dev/bml0/10"
#define MTDAPPDATA_PARTITION2	"/dev/bml0/11"

unsigned char sbox_table[256] = {
    0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5,
    0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76,
    0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0,
    0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0,
    0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc,
    0x34, 0xa5, 0xe5, 0xf1, 0x71, 0xd8, 0x31, 0x15,
    0x04, 0xc7, 0x23, 0xc3, 0x18, 0x96, 0x05, 0x9a,
    0x07, 0x12, 0x80, 0xe2, 0xeb, 0x27, 0xb2, 0x75,
    0x09, 0x83, 0x2c, 0x1a, 0x1b, 0x6e, 0x5a, 0xa0,
    0x52, 0x3b, 0xd6, 0xb3, 0x29, 0xe3, 0x2f, 0x84,
    0x53, 0xd1, 0x00, 0xed, 0x20, 0xfc, 0xb1, 0x5b,
    0x6a, 0xcb, 0xbe, 0x39, 0x4a, 0x4c, 0x58, 0xcf,
    0xd0, 0xef, 0xaa, 0xfb, 0x43, 0x4d, 0x33, 0x85,
    0x45, 0xf9, 0x02, 0x7f, 0x50, 0x3c, 0x9f, 0xa8,
    0x51, 0xa3, 0x40, 0x8f, 0x92, 0x9d, 0x38, 0xf5,
    0xbc, 0xb6, 0xda, 0x21, 0x10, 0xff, 0xf3, 0xd2,
    0xcd, 0x0c, 0x13, 0xec, 0x5f, 0x97, 0x44, 0x17,
    0xc4, 0xa7, 0x7e, 0x3d, 0x64, 0x5d, 0x19, 0x73,
    0x60, 0x81, 0x4f, 0xdc, 0x22, 0x2a, 0x90, 0x88,
    0x46, 0xee, 0xb8, 0x14, 0xde, 0x5e, 0x0b, 0xdb,
    0xe0, 0x32, 0x3a, 0x0a, 0x49, 0x06, 0x24, 0x5c,
    0xc2, 0xd3, 0xac, 0x62, 0x91, 0x95, 0xe4, 0x79,
    0xe7, 0xc8, 0x37, 0x6d, 0x8d, 0xd5, 0x4e, 0xa9,
    0x6c, 0x56, 0xf4, 0xea, 0x65, 0x7a, 0xae, 0x08,
    0xba, 0x78, 0x25, 0x2e, 0x1c, 0xa6, 0xb4, 0xc6,
    0xe8, 0xdd, 0x74, 0x1f, 0x4b, 0xbd, 0x8b, 0x8a,
    0x70, 0x3e, 0xb5, 0x66, 0x48, 0x03, 0xf6, 0x0e,
    0x61, 0x35, 0x57, 0xb9, 0x86, 0xc1, 0x1d, 0x9e,
    0xe1, 0xf8, 0x98, 0x11, 0x69, 0xd9, 0x8e, 0x94,
    0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf,
    0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68,
    0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16
};

/* For CMAC Calculation */
unsigned char const_Rb[16] = {
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x87
};
unsigned char const_Zero[16] = {
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
};

/* Basic Functions */
void xor_128(unsigned char *a, unsigned char *b, unsigned char *out)
{
int i;
for (i=0;i<16; i++)
{
out[i] = a[i] ^ b[i];
}
}

void print_hex(char *str, unsigned char *buf, int len)
{
int i;
for ( i=0; i<len; i++ ) {
if ( (i % 16) == 0 && i != 0 ) printf(str);
printf("%02x", buf[i]);
if ( (i % 4) == 3 ) printf(" ");
if ( (i % 16) == 15 ) printf("\n");
}
if ( (i % 16) != 0 ) printf("\n");
}

void print128(unsigned char *bytes)
{
int j;
for (j=0; j<16;j++) {
printf("%02x",bytes[j]);
printf(" ");
}
}

void print96(unsigned char *bytes)
{
int j;
for (j=0; j<12;j++) {
printf("%02x",bytes[j]);
if ( (j%4) == 3 ) printf(" ");
}
}

/* AES-CMAC Generation Function */
void leftshift_onebit(unsigned char *input,unsigned char *output)
{
int i;
unsigned char overflow = 0;
for ( i=15; i>=0; i-- ) {
output[i] = input[i] << 1;
output[i] |= overflow;
overflow = (input[i] & 0x80)?1:0;
}
return;
}

void xor_32(unsigned char *a, unsigned char *b, unsigned char *out)
{
    int i;
    for (i=0;i<4; i++)
    {
        out[i] = a[i] ^ b[i];
    }
}

unsigned char sbox(unsigned char a)
{
    return sbox_table[(int)a];
}

void next_key(unsigned char *key, int round)
{
    unsigned char rcon;
    unsigned char sbox_key[4];
    unsigned char rcon_table[12] = {
        0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80,
        0x1b, 0x36, 0x36, 0x36
    };

    sbox_key[0] = sbox(key[13]);
    sbox_key[1] = sbox(key[14]);
    sbox_key[2] = sbox(key[15]);
    sbox_key[3] = sbox(key[12]);
    rcon = rcon_table[round];

    xor_32(&key[0], sbox_key, &key[0]);
    key[0] = key[0] ^ rcon;

    xor_32(&key[4], &key[0], &key[4]);
    xor_32(&key[8], &key[4], &key[8]);
    xor_32(&key[12], &key[8], &key[12]);
}

void byte_sub(unsigned char *in, unsigned char *out)
{
    int i;
    for (i=0; i< 16; i++)
    {
        out[i] = sbox(in[i]);
    }
}

void shift_row(unsigned char *in, unsigned char *out)
{
    out[0] =  in[0];
    out[1] =  in[5];
    out[2] =  in[10];
    out[3] =  in[15];
    out[4] =  in[4];
    out[5] =  in[9];
    out[6] =  in[14];
    out[7] =  in[3];
    out[8] =  in[8];
    out[9] =  in[13];
    out[10] = in[2];
    out[11] = in[7];
    out[12] = in[12];
    out[13] = in[1];
    out[14] = in[6];
    out[15] = in[11];
}

void mix_column(unsigned char *in, unsigned char *out)
{
    int i;
    unsigned char add1b[4];
    unsigned char add1bf7[4];
    unsigned char rotl[4];
    unsigned char swap_halfs[4];
    unsigned char andf7[4];
    unsigned char rotr[4];
    unsigned char temp[4];
    unsigned char tempb[4];

    for (i=0 ; i<4; i++)
    {
        if ((in[i] & 0x80)== 0x80)
            add1b[i] = 0x1b;
        else
            add1b[i] = 0x00;
    }


    swap_halfs[0] = in[2];    /* Swap halfs */
    swap_halfs[1] = in[3];
    swap_halfs[2] = in[0];
    swap_halfs[3] = in[1];

    rotl[0] = in[3];        /* Rotate left 8 bits */
    rotl[1] = in[0];
    rotl[2] = in[1];
    rotl[3] = in[2];

 

    andf7[0] = in[0] & 0x7f;
    andf7[1] = in[1] & 0x7f;
    andf7[2] = in[2] & 0x7f;
    andf7[3] = in[3] & 0x7f;

    for (i = 3; i>0; i--)    /* logical shift left 1 bit */
    {
        andf7[i] = andf7[i] << 1;
        if ((andf7[i-1] & 0x80) == 0x80)
        {
            andf7[i] = (andf7[i] | 0x01);
        }
    }
    andf7[0] = andf7[0] << 1;
    andf7[0] = andf7[0] & 0xfe;

    xor_32(add1b, andf7, add1bf7);

    xor_32(in, add1bf7, rotr);

    temp[0] = rotr[0];         /* Rotate right 8 bits */
    rotr[0] = rotr[1];
    rotr[1] = rotr[2];
    rotr[2] = rotr[3];
    rotr[3] = temp[0];
    xor_32(add1bf7, rotr, temp);
    xor_32(swap_halfs, rotl,tempb);
    xor_32(temp, tempb, out);
}

void AES_128(unsigned char *key, unsigned char *data, unsigned char *ciphertext)
{
    int round;
    int i;
    unsigned char intermediatea[16];
    unsigned char intermediateb[16];
    unsigned char round_key[16];

    for(i=0; i<16; i++) round_key[i] = key[i];
    for (round = 0; round < 11; round++)
    {
        if (round == 0)
        {
            xor_128(round_key, data, ciphertext);
            next_key(round_key, round);
        }

 

        else if (round == 10)
        {
            byte_sub(ciphertext, intermediatea);
            shift_row(intermediatea, intermediateb);
            xor_128(intermediateb, round_key, ciphertext);
        }
        else    /* 1 - 9 */
        {
            byte_sub(ciphertext, intermediatea);
            shift_row(intermediatea, intermediateb);
            mix_column(&intermediateb[0], &intermediatea[0]);
            mix_column(&intermediateb[4], &intermediatea[4]);
            mix_column(&intermediateb[8], &intermediatea[8]);
            mix_column(&intermediateb[12], &intermediatea[12]);
            xor_128(intermediatea, round_key, ciphertext);
            next_key(round_key, round);
        }
    }
}

void generate_subkey(unsigned char *key, unsigned char *K1, unsigned
char *K2)
{
unsigned char L[16];
unsigned char Z[16];
unsigned char tmp[16];
int i;
for ( i=0; i<16; i++ ) Z[i] = 0;
AES_128(key,Z,L);
if ( (L[0] & 0x80) == 0 ) { /* If MSB(L) = 0, then K1 = L << 1 */
leftshift_onebit(L,K1);
} else { /* Else K1 = ( L << 1 ) (+) Rb */
leftshift_onebit(L,tmp);
xor_128(tmp,const_Rb,K1);
}

if ( (K1[0] & 0x80) == 0 ) {
leftshift_onebit(K1,K2);
} else {
leftshift_onebit(K1,tmp);
xor_128(tmp,const_Rb,K2);
}
return;
}

void padding ( unsigned char *lastb, unsigned char *pad, int length )
{
int j;
/* original last block */
for ( j=0; j<16; j++ ) {
if ( j < length ) {
pad[j] = lastb[j];
} else if ( j == length ) {
pad[j] = 0x80;
} else {
pad[j] = 0x00;
}
}
}

int AES_CMAC(FILE *f, unsigned char *key, int length, unsigned char *mac)
{
unsigned char input[16];
unsigned char X[16],Y[16], M_last[16], padded[16];
unsigned char K1[16], K2[16];
int n, i, flag, res;
generate_subkey(key, K1, K2);
n=(length+15)/16; /* n is number of rounds */
if (n==0)
{
	n=1;
	flag=0;
}
else
{
	if ((length%16)==0)
	{
		/* last block is a complete block */
		flag=1;
	}
	else
	{
		/* last block is not complete block */
		flag = 0;
	}
}
fseek(f, 16*(n-1), SEEK_SET);
res=fread(input, 1, ((length%16==0) ? 16 : (length%16)), f);
if (res!=((length%16==0) ? 16 : (length%16)))
{
	printf("error reading last block (%d)\n", res);
	return -1;
}
if (flag)
{
	/* last block is complete block */
	xor_128(input, K1, M_last);
}
else
{
	padding(input,padded,length%16);
	xor_128(padded,K2,M_last);
}

for (i=0;i<16;i++) X[i]=0;
fseek(f, 0, SEEK_SET);
for (i=0;i<n-1;i++)
{
	if (fread(input, 1, 16, f)!=16) return -2;
	xor_128(X,input,Y); /* Y := Mi (+) X */
	AES_128(key,Y,X); /* X := AES-128(KEY, Y); */
}

xor_128(X,M_last,Y);
AES_128(key,Y,X);
for (i=0;i<16;i++)
{
	mac[i]=X[i];
}
return 0;
}

typedef struct {
	unsigned char hash[16];
	unsigned char len[4];
} hash_t;

typedef struct {
	hash_t hash[8];
} hashes_t;

unsigned long getsize(char *str)
{
	return (((unsigned char) str[3])<<24)+(((unsigned char) str[2])<<16)+(((unsigned char) str[1])<<8)+((unsigned char) str[0]);
}

int calculate_hash(char *partname, hash_t parthash, char *mkey, char *hash)
{
int res;
FILE *f;
unsigned int filesize, tmpfilesize;
f=fopen(partname, "rb");
if (!f)
{
        printf("unable to open %s\n", partname);
        return -3;
}
filesize=getsize(parthash.len);
fseek(f, 0, SEEK_END);
tmpfilesize=ftell(f);
fseek(f, 0, SEEK_SET);
if (tmpfilesize<filesize)
{
        printf("file %s is too short\n", partname);
        fclose(f);
        return -4;
}
res=AES_CMAC(f, mkey, filesize, hash);
if (res)
{
        printf("error while calculating hash for file %s (%d)\n", partname, res);
        fclose(f);
        return -5;
}
fclose(f);
return 0;
}

int main(int argc, char **argv)
{
int i;
FILE *f;
char buf[1024];
int partflag=0;
hashes_t hashes;
unsigned char *data;
unsigned char hash[16];
unsigned char mkey[16] = {0x7c, 0xed, 0x26, 0xd8, 0xca, 0x2f, 0xa0, 0xf8, 0x0b, 0xc6, 0x37, 0xe2, 0xff, 0x07, 0xec, 0x46};
unsigned int flashtype=0;
char macpartition[2][80];

//read hashes
f=fopen(UBOOT_ENV_PARTITION, "rb");
if (!f)
{
	printf("unable to open %s\n", UBOOT_ENV_PARTITION);
	return -1;
}
fseek(f, 0x1000, SEEK_SET);
if (fread((char *) &hashes, 1, sizeof(hashes_t)-2*sizeof(hash_t), f)!=sizeof(hashes_t)-2*sizeof(hash_t))
{
	printf("unable to read the hashes\n");
	fclose(f);
	return -2;
}
fclose(f);

//check mkey
int res;
res=calculate_hash(AUTHULD_PATH, hashes.hash[3], mkey, hash);
if (res<0) return res;
printf("str_hash ");print128((unsigned char *) &hashes.hash[3]);printf("\n");
printf("AES_CMAC ");print128(hash);printf("\n");
if (memcmp(hashes.hash[3].hash, hash, 16)!=0)
{
	printf("hashes don't match, wrong mkey ?\n");
	return -6;
}
printf("mkey\t");print128(mkey);printf("\n");

//detect flashsize
memset(macpartition, 0, 160);
f=fopen("/mtd_tlib", "r");
if (f)
{
	fclose(f);
	f=fopen("/etc/flash_flag", "r");
	if (f)
	{
		fclose(f);
		flashtype=2000;
		strcpy(macpartition[0], "/dev/bml0/16");
		strcpy(macpartition[1], "/dev/bml0/17");
	}
	else
	{
		flashtype=1000;
		strcpy(macpartition[0], "/dev/bml0/18");
		strcpy(macpartition[1], "/dev/bml0/19");
	}
}
else
{
	flashtype=128;
	strcpy(macpartition[0], "/dev/bml0/14");
	strcpy(macpartition[1], "/dev/bml0/15");
}
printf("detected a flashtype of %u\n", flashtype);
f=fopen("/proc/mounts", "r");
if (!f)
{
	printf("unable to open /proc/mounts\n");
	return -7;
}
memset(buf, 0, 1024);
int flag=0;
while(fgets(buf, 1024, f))
{
	if ((strstr(buf, "/dev/stl0/10")!=NULL)||(strstr(buf, "/dev/tbml10")!=NULL)) partflag=1;
	memset(buf, 0, 1024);
}
fclose(f);
printf("using %s partition for mtd_exe and mtd_appdata\n", !partflag ? "1st" : "2nd");
f=fopen(macpartition[partflag], "rb");
if (!f)
{
	printf("unable to open the macpartition %s\n", macpartition[partflag]);
	return -8;
}
if (fread((char *) &hashes.hash[6], 1, sizeof(hash_t)*2, f)!=sizeof(hash_t)*2)
{
	printf("unable to read %d bytes from macpartition %s\n", sizeof(hash_t)*2, macpartition[partflag]);
	return -9;
}

//display hashes from bml0/3 and from macpartition
for (i=0;i<8;i++)
{
        char hashname[8][12]={"kernel", "uboot", "fnw", "authuld", "root", "boot", "mtd_exe", "mtd_app"};
        char partname[8][20]={KERNEL_PARTITION, UBOOT_PARTITION, FNW_PARTITION, AUTHULD_PATH, ROOT_PARTITION, BOOT_PARTITION, MTDEXE_PARTITION1, MTDAPPDATA_PARTITION1};
	if (partflag)
	{
		strcpy(partname[6], MTDEXE_PARTITION2);
		strcpy(partname[7], MTDAPPDATA_PARTITION2);
	}
        printf("%s\t", hashname[i]);print128((unsigned char *) &hashes+i*20);printf("\n");
        res=calculate_hash(partname[i], hashes.hash[i], mkey, hash);
        printf("\t");print128(hash);
        if (memcmp((unsigned char *) &hashes+i*20, hash, 16)==0) printf("\tmatches\n");
        else printf("doesn't match\n");
}
return 0;
}
Thank you,
cu Cyberdemon

Re: Defeating authuld protection on CI+ devices

Posted: Fri Dec 03, 2010 7:30 pm
by cyberdemon79
I have compiled the program and it is attached below.

Here's the output on my tv (LExxB650T2P, firmware 2007.1):

Code: Select all

# ./calchash 
str_hash 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa 
AES_CMAC 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa 
mkey    7c ed 26 d8 ca 2f a0 f8 0b c6 37 e2 ff 07 ec 46 
detected a flashtype of 1000
using 1st partition for mtd_exe and mtd_appdata
kernel  26 7a 0e f7 6f f0 e4 9f 79 1b c5 74 54 10 2e d9 
        26 7a 0e f7 6f f0 e4 9f 79 1b c5 74 54 10 2e d9         matches
uboot   72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb 
        72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb         matches
fnw     62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca 
        62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca         matches
authuld 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa 
        3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa         matches
root    03 16 53 43 b4 50 8d fc 20 57 c4 a2 cc 3d 15 f8 
        03 16 53 43 b4 50 8d fc 20 57 c4 a2 cc 3d 15 f8         matches
boot    99 94 2c 0f d7 e1 3a ec eb 57 a2 13 82 be b3 c8 
        99 94 2c 0f d7 e1 3a ec eb 57 a2 13 82 be b3 c8         matches
mtd_exe 56 7f 9a 70 39 56 f0 3f 93 b0 25 ca bd dd 40 0f 
        56 7f 9a 70 39 56 f0 3f 93 b0 25 ca bd dd 40 0f         matches
mtd_app 75 b6 50 6a 22 80 f1 39 86 42 d0 b0 b6 2f 26 3a 
        75 b6 50 6a 22 80 f1 39 86 42 d0 b0 b6 2f 26 3a         matches
Keep in mind that the hash calculation for mtd_exe and mtd_appdata take quite a while
(something between 10 and 15 minutes or so).

Re: Defeating authuld protection on CI+ devices

Posted: Sat Dec 04, 2010 12:41 am
by mpolak77
ON LE40B750U1PXZG

Code: Select all

# ./calchash 
str_hash 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa 
AES_CMAC 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa 
mkey    7c ed 26 d8 ca 2f a0 f8 0b c6 37 e2 ff 07 ec 46 
detected a flashtype of 1000
using 2nd partition for mtd_exe and mtd_appdata
kernel  26 7a 0e f7 6f f0 e4 9f 79 1b c5 74 54 10 2e d9 
        26 7a 0e f7 6f f0 e4 9f 79 1b c5 74 54 10 2e d9         matches
uboot   72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb 
        72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb         matches
fnw     62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca 
        62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca         matches
authuld 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa 
        3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa         matches
root    c0 d5 c5 4b bf 04 e5 28 ef 3b c8 4a 5b 75 aa 07 
        c0 d5 c5 4b bf 04 e5 28 ef 3b c8 4a 5b 75 aa 07         matches
boot    b0 5a b0 71 00 32 84 11 e2 f7 fe 45 a4 83 fe 5e 
        b0 5a b0 71 00 32 84 11 e2 f7 fe 45 a4 83 fe 5e         matches
mtd_exe 48 13 2e 53 64 5f d1 31 d3 f5 85 fe 3e a4 24 f8 
        48 13 2e 53 64 5f d1 31 d3 f5 85 fe 3e a4 24 f8         matches
mtd_app 07 7c b3 32 41 ec cd b1 dd f0 40 fd f4 21 82 9d 
        07 7c b3 32 41 ec cd b1 dd f0 40 fd f4 21 82 9d         matches

Re: Defeating authuld protection on CI+ devices

Posted: Sat Dec 04, 2010 1:28 am
by cyberdemon79
Faster implementation (source included)

Re: Defeating authuld protection on CI+ devices

Posted: Sun Dec 05, 2010 5:30 pm
by gchirtoaca
LE37B653T5PXZG, T-CHLCIPDEUC 2008.2 fw:

Code: Select all

str_hash 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa
AES_CMAC 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa
mkey    7c ed 26 d8 ca 2f a0 f8 0b c6 37 e2 ff 07 ec 46
detected a flashtype of 1000
using 2nd partition for mtd_exe and mtd_appdata
kernel  26 7a 0e f7 6f f0 e4 9f 79 1b c5 74 54 10 2e d9
100%    26 7a 0e f7 6f f0 e4 9f 79 1b c5 74 54 10 2e d9         matches
uboot   72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb
100%    72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb         matches
fnw     62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca
100%    62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca         matches
authuld 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa
100%    3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa         matches
root    03 16 53 43 b4 50 8d fc 20 57 c4 a2 cc 3d 15 f8
100%    03 16 53 43 b4 50 8d fc 20 57 c4 a2 cc 3d 15 f8         matches
boot    99 94 2c 0f d7 e1 3a ec eb 57 a2 13 82 be b3 c8
100%    99 94 2c 0f d7 e1 3a ec eb 57 a2 13 82 be b3 c8         matches
mtd_exe 2a 84 cf fb db 15 0b 43 46 2c 57 1f 2e 6a d2 76
100%    2a 84 cf fb db 15 0b 43 46 2c 57 1f 2e 6a d2 76         matches
mtd_app be 65 a8 67 1b 7a 61 77 b7 57 aa 0b 14 9d a2 89
100%    be 65 a8 67 1b 7a 61 77 b7 57 aa 0b 14 9d a2 89         matches
Thank you!

Re: Defeating authuld protection on CI+ devices

Posted: Sun Dec 05, 2010 7:48 pm
by edelfalke
UE40B7090 T-CHUCIPDEUC 3000 FW:

Code: Select all

str_hash 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa
AES_CMAC 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa
mkey    7c ed 26 d8 ca 2f a0 f8 0b c6 37 e2 ff 07 ec 46
detected a flashtype of 2000
using 2nd partition for mtd_exe and mtd_appdata
kernel  0d fc 34 34 41 f6 90 ef 44 ce f7 5d a9 30 08 42
        0d fc 34 34 41 f6 90 ef 44 ce f7 5d a9 30 08 42         matches
uboot   72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb
        72 ab f2 09 a8 ea d4 bc e5 4b 24 a8 7b 1d f6 bb         matches
fnw     62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca
        62 41 92 96 d0 4c 2f b1 17 00 81 0f b5 78 47 ca         matches
authuld 3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa
        3d 8a 03 f3 1c f0 b8 15 30 a1 4b f7 42 d8 4d fa         matches
root    59 f9 bf c0 9f fb 8b ea 00 74 15 80 b4 f1 aa 9c
        59 f9 bf c0 9f fb 8b ea 00 74 15 80 b4 f1 aa 9c         matches
boot    f1 93 7c e0 72 2f 27 bd a1 cd 70 12 62 2a 26 f5
        f1 93 7c e0 72 2f 27 bd a1 cd 70 12 62 2a 26 f5         matches
mtd_exe e2 c3 69 6c 89 77 40 47 be 78 1e a3 cf 99 a4 e0
        e2 c3 69 6c 89 77 40 47 be 78 1e a3 cf 99 a4 e0         matches
mtd_app cd 10 c7 d5 57 6d 0a 30 c1 93 10 ea b9 83 be 21
        cd 10 c7 d5 57 6d 0a 30 c1 93 10 ea b9 83 be 21         matches
All times are UTC+01:00
Page 5 of 9

Powered by phpBB® Forum Software © phpBB Limited