My target is ****, which using FLEXlm 8.0d. I have read Nolan Blender's Zendenc essay, and got data from vendorcode, job structure. Fed them into calcseed I got the encryption seed. But when I fed the encryption seed and key0-4 (got from vendorcode+0x0C...) into lmvkey5.exe (downloaded from CrackZ), I can't pass the checksum test. Examine the lmrecode.c, I guess I need the glseed for version 8 to get the correct key 5. Do we have new version of lmvkey5 for FLEXlm 8.0 or can anyone show me how to get the glseed for version 8?

I also try macilaci's method. I have located the position of computing seed and license compare code. But these code never be executed. A call which pass in SIGN as argument failed and ended the _l_ckout_string_key procedure. Does anyone know anything about the SIGN= check?

Hi,

If your target uses ECC, Elliptic Curves Cryptography, the compare, pointed out by Macilaci's, will never be reached.

The verification is made in _l_pubkey_verify!


Bye

Hi
For those of you who need, i've upped here a recode for up to 8.1
but only change in this particular is the glseed
case(8): /* version 8.0 */
glseed = 0x3CDE3EBF;
break;
and on nbl_svk
/* PATCH for version 8 - uses different value here. */
if (glseed == 0x3CDE3EBF)
{
seedval = 0x6F7330B8;
}

If anyone have success on 8.1 plese give me a call

Best

PadsPCB

Hi padspcb,
Sorry I have delete your attachment.I will send it to Woodmann and see if its relevant

Regards

Well it may be relevant to those that dont have it
but for the previous version that can be found on
old crackz mirrors, just add the info missing.
If anyone realy needs this stuff, please send pm.
But as it was just a fix, seemed not so relevant to post

But trouble on 8.1 are the seeds, i've reduced freedom to 3 dw
but this is still a lot of computing 32*32*32.

Best
Pads

hi this is sandy
i am new to flexlm. Actually i am able to run my application which is using flexlm 8.0d licence manager. But the problem is its not supporting the all my packages.and its give error when i run build my project.....
Main problem is....
I have complete dump of flexlm 8.0d files from a computer which is running a floating licence...
can you some how convert that floating licence to node locked licence ....or help me in converting to do that.... and create a licence.dat file..
Your help will be greatly appreciated.......

sandy

Aw gimme a break sandy, what in +Orc's name possessed you to dredge up 4 ancient flexlm threads and post the exact same thing in each? In any other context this is known as spam, and like all spam is...

I deleted the redundant crossposts, will leave this one, the ones you want to bond with will read this one just fine

Kayaker

common i am not a spammer..well the reason of leaving on all thread was because i need to get flexlm licence.dat file done asap ..i am not a top end guy....and working on my thesis...
telecom guy who works on layer 3 and need some help on flexlm 8.0d to to make a node locked licence.dat file.
well can u help .....
lets see

With respect.

A read of the FLEXlm manuals would tell you the syntax difference between a node locked and floating license.

A read of the various FLEXlm tutorials would tell you what you need to do to recover enough information to generate a license and also what kind of information you need to tell ppl for even rudimentary assistance.

I think you are just looking for someone to fix you a license. Not many here subscribe to that philosophy, I wish you luck.

Regards

CrackZ.

Hi at all..
at first sorry for my 'englitch', in the hope that someone can understand it, i will try to wite my 'findinds' on flex and licenses (old style)...I have played with a Flexlm 8.2 protected App. After reading tutorials and trying out them, i have asked me how the hell checks Flexlm the SIGN validity...Take a look

x4340B0 call _l_isdigit ; search this call
x4340B5 add esp, 4
x4340B8 test eax, eax
x4340BA jz short loc_4340D6

>snip<

x434121 mov edx, [ebp+var_1D0]
x434127 and edx, 0FFh
x43412D mov eax, [ebp+var_188]
x434133 xor ecx, ecx
x434135 mov cl, byte_4DB258[eax] ; in [4DB258] Calculated SIGN
x43413B cmp edx, ecx ; final compare
x43413D jz short loc_434143
x43413F xor eax, eax
x434141 jmp short loc_434169 ; bad jmp (exits the loop)

You can see after the second "_l_isdigit" call the "final compare" as part of the check loop. Just let your favorite debugger display the variable above the compare... I dont know if it works with other versions of Flex or newer license types.
Regards.

monguz,

yes, it works with other flexlm versions - i've checked with 7.2 & 8.4

_l_pubkey_verify, how to patch it , set it to 0?

Yes. Patcher for _l_pubkey_verify is available at

h**p://www.woodmann.com/crackz/Flexlm.htm

Tom