x64 key generation?

Question

x64 key generation?

pottzman opened this issue 2 years ago · 13 comments

What is wrong with x64 key generation? I have no issues with x64.

Answer 1 · 2023-06-03T11:30:41.000Z

Hello pottzman! We're working in a team with Neo and Coni now. We've figured out that the private keys I've reversed are in fact correct, the only problem with them is that they aren't VLK. They're used to generate Retail and OEM keys and neither of them work with the image I'm testing it on. Note that I extracted the pidgen from that exact volume image.

I find it extremely weird, and for now this is the main issue with x64 key generation.

Answer 2 · 2023-06-03T15:18:01.000Z

If the pidgen cane from a VLK image of windows then it shouldn't have BINK resources for Retail or OEM in it.

Answer 3 · 2023-06-03T23:31:34.000Z

If the pidgen cane from a VLK image of windows then it shouldn't have BINK resources for Retail or OEM in it.

The problem is that the VLK builds seem to have 2 BINKs in their pidgen DLLs.

We also know the second BINK resource is hardcoded to be OEM

We're stuck trying to figure out what this mysterious second VLK bink might be.

Answer 4 · 2023-06-04T01:32:45.000Z

For VLK builds I don’t think the second BINK is used for anything.

Answer 5 · 2023-06-04T04:08:22.000Z

According to dpcdll.dll, the second bink (id 0x65) isn't used for anything relevant. You can confirm this with DPCDLL-Viewer, the only entries matching BINKs in pidgen are those for BINK 0x64.

For reference, I tested with en_win_xp_pro_x64_vl.iso

Answer 6 · 2023-06-04T05:19:21.000Z

Got it. Glad to have that out of the way.

As for x64, everything after server 2003 uses a new signature algorithm. We have yet to figure out entirely and implement it. We do have the keys.

Answer 7 · 2023-06-04T05:20:46.000Z

I implemented an algorithm that generated a working key.

Please try with en_win_xp_pro_x64_vl.iso: R7KWY-RBF3F-R6C8P-RBK36-26YRY

~~Have not tested confirmation ID yet.~~ Am dumb, I forgot VLK doesn't do conf IDs

Answer 8 · 2023-06-04T05:41:28.000Z

R7KWY-RBF3F-R6C8P-RBK36-26YRY

I will test with en_windows_xp_professional_x64.iso and share results.

Answer 9 · 2023-06-04T05:49:43.000Z

R7KWY-RBF3F-R6C8P-RBK36-26YRY

I will test with en_windows_xp_professional_x64.iso and share results.

Confirmed working and the PID shown on system properties is the same!

Answer 10 · 2023-06-04T06:10:34.000Z

x64 Retail: FDP9B-YDR92-PXP7H-9FY2Q-YFKJ6

Answer 11 · 2023-06-04T06:18:35.000Z

x64 Retail: FDP9B-YDR92-PXP7H-9FY2Q-YFKJ6

Delightful! Can you aubmit a PR with the changes?

Answer 12 · 2023-06-04T06:20:53.000Z

I had a look at the code. It seems there is no change in algo from server 2k3, just different os_family constants, keys, and curve params.

# x64 VLK - 652
# x64 Retail - 306

I will see if I can implement something for this tomorrow. In the meantime, it would be good if DPCDLL.DLL was used to create a table of these constants, as that file is where I found them. I proposed this in UMSKT/UMSKT#15.

Answer 13 · 2023-06-04T06:39:34.000Z

@WitherOrNot I think going forward I'll add something similar to that structure you proposed to keys.json