CryptographicException at SamFirm.KiesAuth.DecryptNonce(String inp) in KiesAuth.cs

[redddflash]

There seems to be a new issue since today (yesterday it was still working normally), see two examples below. It happens, no matter which region or model is used, or if you just want to check or download a firmware. Tested with version 0.3.6.6 and also with 0.3.6.5.

Maybe Samsung has again changed something in their server authentication?

D:\SamFirm>SamFirm_Reborn_0.3.6.6\SamFirm.exe -c -model SM-S918B -region EUX
========== SamFirm Firmware Update Check ==========

Checking firmware for SM-S918B/EUX/S918BXXS3BWKC/S918BOXM3BWJM/S918BXXU3BWJM/S918BXXS3BWKC

Unhandled Exception: System.Security.Cryptography.CryptographicException: Padding is invalid and cannot be removed.
   at System.Security.Cryptography.RijndaelManagedTransform.DecryptData(Byte[] inputBuffer, Int32 inputOffset, Int32 inputCount, Byte[]& outputBuffer, Int32 outputOffset, PaddingMode paddingMode, Boolean fLast)
   at System.Security.Cryptography.RijndaelManagedTransform.TransformFinalBlock(Byte[] inputBuffer, Int32 inputOffset, Int32 inputCount)
   at SamFirm.KiesAuth.DecryptNonce(String inp) in C:\Users\i_iva\Desktop\SamFirm_Reborn\KiesAuth.cs:line 26.
   at SamFirm.WebRequestExtension.GetResponseFUS(WebRequest wr) in C:\Users\i_iva\Desktop\SamFirm_Reborn\WebRequestExtension.cs:line 20.
   at SamFirm.Web.GenerateNonce() in C:\Users\i_iva\Desktop\SamFirm_Reborn\Web.cs:line 29.
   at SamFirm.Command.UpdateCheck(String model, String region, String pda, String csc, String phone, String data, Boolean BinaryNature, Boolean AutoFetch) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Command.cs:line 68.
   at SamFirm.Command.UpdateCheck(String model, String region, String info, Boolean BinaryNature, Boolean AutoFetch) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Command.cs:line 53.
   at SamFirm.Command.UpdateCheckAuto(String model, String region, Boolean BinaryNature) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Command.cs:line 23.
   at SamFirm.CmdLine.DoCheck() in C:\Users\i_iva\Desktop\SamFirm_Reborn\CmdLine.cs:line 101.
   at SamFirm.CmdLine.ProcessAction() in C:\Users\i_iva\Desktop\SamFirm_Reborn\CmdLine.cs:line 44.
   at SamFirm.Program.Main(String[] args) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Program.cs:line 21.

D:\SamFirm>SamFirm_Reborn_0.3.6.6\SamFirm.exe -c -model SM-G960F -region DBT
========== SamFirm Firmware Update Check ==========

Checking firmware for SM-G960F/DBT/G960FXXUHFVG4/G960FOXMHFVB4/G960FXXUHFVB4/G960FXXUHFVG4

Unhandled Exception: System.Security.Cryptography.CryptographicException: Padding is invalid and cannot be removed.
   at System.Security.Cryptography.RijndaelManagedTransform.DecryptData(Byte[] inputBuffer, Int32 inputOffset, Int32 inputCount, Byte[]& outputBuffer, Int32 outputOffset, PaddingMode paddingMode, Boolean fLast)
   at System.Security.Cryptography.RijndaelManagedTransform.TransformFinalBlock(Byte[] inputBuffer, Int32 inputOffset, Int32 inputCount)
   at SamFirm.KiesAuth.DecryptNonce(String inp) in C:\Users\i_iva\Desktop\SamFirm_Reborn\KiesAuth.cs:line 26.
   at SamFirm.WebRequestExtension.GetResponseFUS(WebRequest wr) in C:\Users\i_iva\Desktop\SamFirm_Reborn\WebRequestExtension.cs:line 20.
   at SamFirm.Web.GenerateNonce() in C:\Users\i_iva\Desktop\SamFirm_Reborn\Web.cs:line 29.
   at SamFirm.Command.UpdateCheck(String model, String region, String pda, String csc, String phone, String data, Boolean BinaryNature, Boolean AutoFetch) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Command.cs:line 68.
   at SamFirm.Command.UpdateCheck(String model, String region, String info, Boolean BinaryNature, Boolean AutoFetch) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Command.cs:line 53.
   at SamFirm.Command.UpdateCheckAuto(String model, String region, Boolean BinaryNature) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Command.cs:line 23.
   at SamFirm.CmdLine.DoCheck() in C:\Users\i_iva\Desktop\SamFirm_Reborn\CmdLine.cs:line 101.
   at SamFirm.CmdLine.ProcessAction() in C:\Users\i_iva\Desktop\SamFirm_Reborn\CmdLine.cs:line 44.
   at SamFirm.Program.Main(String[] args) in C:\Users\i_iva\Desktop\SamFirm_Reborn\Program.cs:line 21.

[tungtata]

Samsung just fix the encrypt key and iv so now nonce still got but can not decrypted. Waiting for someone fix it

[ivanmeler]

Just as i was working on imporvements.. they change encryption method..
working on it but this might take some time

[chenxiaolong]

Switching to the new keys alone isn't sufficient. (They can be found from the same places as the old keys. There's only a tiny bit of obfuscation in the form of two string replacement calls.)

From initial testing, it looks like all of these conditions are necessary:

• New fixed key and flexible key suffixes (reverse engineered)
• Passing additional fields to /NF_DownloadBinaryInform.do
  • CLIENT_PRODUCT must exist. The value doesn't seem to matter.
    • If this condition isn't met, the server fails with HTTP 500 and returns an HTML response.
  • CLIENT_VERSION must exist. The value doesn't seem to matter, but must be non-empty.
    • If this condition isn't met, the server fails with HTTP 500 and returns an HTML response.
  • DEVICE_IMEI_PUSH must be set to the target device's IMEI or if the device doesn't have a modem, the serial number.
    • Invalid IMEIs/serials don't work. Using a valid serial to download firmware for a different device doesn't work. Using a valid serial to download firmware for a different CSC of the same model doesn't work either (unless the same firmware version also exists for the device's original CSC).
    • If this condition isn't met, the server returns a FUS XML response with error code 408.

I'm not sure if it's possible to download arbitrary firmware anymore. I tried various things, like pretending to be old Smart Switch version, with no luck.

[tungtata]

Switching to the new keys alone isn't sufficient. (They can be found from the same places as the old keys. There's only a tiny bit of obfuscation in the form of two string replacement calls.)

From initial testing, it looks like all of these conditions are necessary:

• New fixed key and flexible key suffixes (reverse engineered)

• Passing additional fields to /NF_DownloadBinaryInform.do

  • CLIENT_PRODUCT must exist. The value doesn't seem to matter.

    • If this condition isn't met, the server fails with HTTP 500 and returns an HTML response.

  • CLIENT_VERSION must exist. The value doesn't seem to matter, but must be non-empty.

    • If this condition isn't met, the server fails with HTTP 500 and returns an HTML response.

  • DEVICE_IMEI_PUSH must be set to the target device's IMEI or if the device doesn't have a modem, the serial number.

    • Invalid IMEIs/serials don't work. Using a valid serial to download firmware for a different device doesn't work. Using a valid serial to download firmware for a different CSC of the same model doesn't work either (unless the same firmware version also exists for the device's original CSC).
    • If this condition isn't met, the server returns a FUS XML response with error code 408.

I'm not sure if it's possible to download arbitrary firmware anymore. I tried various things, like pretending to be old Smart Switch version, with no luck.

Did you got new key of the nonce encrypt?

[chenxiaolong]

I won't post the actual keys, but you can run this to extract the keys from publicly available sources: https://gist.github.com/chenxiaolong/62282271bfd8af198b75fc9cce201333

[tungtata]

this script works on Mac only right?

[chenxiaolong]

No, it should work anywhere where Python is installed (I personally use Linux).

[tungtata]

I tried on Windows and got this error

I am sorry because I don't works with py much

[chenxiaolong]

I tried on Windows and got this error I am sorry because I don't works with py much

Thanks, looks like I'm relying on syntax that's only accepted in newer versions of Python. I've updated the script to fix this (replaced 'ASCII' with "ASCII").

[tungtata]

how can I have your private contact bro? like telegram or whatsapp?

[ivanmeler]

fixed in new release, will be released in hour or so