Add code to crack a PRIOS key from a bunch of frames.

Author: ZeWaren

Diff for: PC/Makefile

@@ -0,0 +1,6 @@
+all: cracker
+
+cracker: prios_key_cracker.c ../ST-STEVAL-FKI868V1/Src/PRIOS.c
+	gcc -c -Wall -Werror -std=c99 -pedantic prios_key_cracker.c -I ../ST-STEVAL-FKI868V1/Inc
+	gcc -c -Wall -Werror -std=c99 -pedantic ../ST-STEVAL-FKI868V1/Src/PRIOS.c -I ../ST-STEVAL-FKI868V1/Inc
+	gcc -o prios_key_cracker prios_key_cracker.o PRIOS.o

Diff for: PC/config.h

@@ -0,0 +1,40 @@
+#define TEST_YEAR 20
+#define TEST_MONTH 4
+#define TEST_DAY 1
+#define CONSUMPTION_RANGE_MIN 1
+#define CONSUMPTION_RANGE_MAX 1000000
+
+uint8_t frames[32][28] = {
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x03, 0x12, 0x00, 0x13, 0xB7, 0x88, 0x9D, 0x6B, 0xEC, 0x89, 0xE2, 0xE1, 0x3B, 0x4C, 0xA5},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x03, 0x12, 0x00, 0x13, 0xB7, 0x89, 0x9D, 0x6B, 0xEC, 0x89, 0xE2, 0xE1, 0x3B, 0x4C, 0xA5},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x03, 0x12, 0x00, 0x13, 0xB7, 0x8E, 0x9D, 0x6B, 0xEC, 0x89, 0xE2, 0xE1, 0x3B, 0x4C, 0xA5},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x03, 0x12, 0x00, 0x13, 0xB7, 0x8F, 0x9D, 0x6B, 0xEC, 0x89, 0xE2, 0xE1, 0x3B, 0x4C, 0xA5},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x13, 0x12, 0x00, 0x13, 0xB7, 0x98, 0xB2, 0x22, 0x47, 0xA8, 0x31, 0x38, 0xE0, 0x55, 0xA7},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x13, 0x12, 0x00, 0x13, 0xB7, 0x99, 0xB2, 0x22, 0x47, 0xA8, 0x31, 0x38, 0xE0, 0x55, 0xA7},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x13, 0x12, 0x00, 0x13, 0xB7, 0x9E, 0xB2, 0x22, 0x47, 0xA8, 0x31, 0x38, 0xE0, 0x55, 0xA7},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x13, 0x12, 0x00, 0x13, 0xB7, 0x9F, 0xB2, 0x22, 0x47, 0xA8, 0x31, 0x38, 0xE0, 0x55, 0xA7},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x23, 0x12, 0x00, 0x13, 0xB7, 0xA0, 0xC3, 0xF8, 0xBA, 0xCA, 0x45, 0x52, 0x8D, 0x7E, 0xA0},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x23, 0x12, 0x00, 0x13, 0xB7, 0xA1, 0xC3, 0xF8, 0xBA, 0xCA, 0x45, 0x52, 0x8D, 0x7E, 0xA0},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x23, 0x12, 0x00, 0x13, 0xB7, 0xA6, 0xC3, 0xF8, 0xBA, 0xCA, 0x45, 0x52, 0x8D, 0x7E, 0xA0},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x23, 0x12, 0x00, 0x13, 0xB7, 0xA7, 0xC3, 0xF8, 0xBA, 0xCA, 0x45, 0x52, 0x8D, 0x7E, 0xA0},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x33, 0x12, 0x00, 0x13, 0xB7, 0xB0, 0xEC, 0xB1, 0x11, 0xEB, 0x96, 0x8B, 0x56, 0x67, 0xA2},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x33, 0x12, 0x00, 0x13, 0xB7, 0xB1, 0xEC, 0xB1, 0x11, 0xEB, 0x96, 0x8B, 0x56, 0x67, 0xA2},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x33, 0x12, 0x00, 0x13, 0xB7, 0xB6, 0xEC, 0xB1, 0x11, 0xEB, 0x96, 0x8B, 0x56, 0x67, 0xA2},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x33, 0x12, 0x00, 0x13, 0xB7, 0xB7, 0xEC, 0xB1, 0x11, 0xEB, 0x96, 0x8B, 0x56, 0x67, 0xA2},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x43, 0x12, 0x00, 0x13, 0xB7, 0xD2, 0x20, 0x4D, 0x40, 0x0E, 0xAD, 0x86, 0x57, 0x28, 0xAF},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x43, 0x12, 0x00, 0x13, 0xB7, 0xD3, 0x20, 0x4D, 0x40, 0x0E, 0xAD, 0x86, 0x57, 0x28, 0xAF},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x43, 0x12, 0x00, 0x13, 0xB7, 0xD4, 0x20, 0x4D, 0x40, 0x0E, 0xAD, 0x86, 0x57, 0x28, 0xAF},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x43, 0x12, 0x00, 0x13, 0xB7, 0xD5, 0x20, 0x4D, 0x40, 0x0E, 0xAD, 0x86, 0x57, 0x28, 0xAF},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x53, 0x12, 0x00, 0x13, 0xB7, 0xC2, 0x0F, 0x04, 0xEB, 0x2F, 0x7E, 0x5F, 0x8C, 0x31, 0xAD},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x53, 0x12, 0x00, 0x13, 0xB7, 0xC3, 0x0F, 0x04, 0xEB, 0x2F, 0x7E, 0x5F, 0x8C, 0x31, 0xAD},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x53, 0x12, 0x00, 0x13, 0xB7, 0xC4, 0x0F, 0x04, 0xEB, 0x2F, 0x7E, 0x5F, 0x8C, 0x31, 0xAD},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x53, 0x12, 0x00, 0x13, 0xB7, 0xC5, 0x0F, 0x04, 0xEB, 0x2F, 0x7E, 0x5F, 0x8C, 0x31, 0xAD},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x63, 0x12, 0x00, 0x13, 0xB7, 0xFA, 0x7E, 0xDE, 0x16, 0x4D, 0x0A, 0x35, 0xE1, 0x1A, 0xAA},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x63, 0x12, 0x00, 0x13, 0xB7, 0xFB, 0x7E, 0xDE, 0x16, 0x4D, 0x0A, 0x35, 0xE1, 0x1A, 0xAA},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x63, 0x12, 0x00, 0x13, 0xB7, 0xFC, 0x7E, 0xDE, 0x16, 0x4D, 0x0A, 0x35, 0xE1, 0x1A, 0xAA},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x63, 0x12, 0x00, 0x13, 0xB7, 0xFD, 0x7E, 0xDE, 0x16, 0x4D, 0x0A, 0x35, 0xE1, 0x1A, 0xAA},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x73, 0x12, 0x00, 0x13, 0xB7, 0xEA, 0x51, 0x97, 0xBD, 0x6C, 0xD9, 0xEC, 0x3A, 0x03, 0xA8},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x73, 0x12, 0x00, 0x13, 0xB7, 0xEB, 0x51, 0x97, 0xBD, 0x6C, 0xD9, 0xEC, 0x3A, 0x03, 0xA8},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x73, 0x12, 0x00, 0x13, 0xB7, 0xEC, 0x51, 0x97, 0xBD, 0x6C, 0xD9, 0xEC, 0x3A, 0x03, 0xA8},
+	{0x19, 0x44, 0x30, 0x4C, 0x15, 0x8C, 0xD7, 0x20, 0xD4, 0x01, 0x00, 0x00, 0xA2, 0x73, 0x12, 0x00, 0x13, 0xB7, 0xED, 0x51, 0x97, 0xBD, 0x6C, 0xD9, 0xEC, 0x3A, 0x03, 0xA8}
+};

Diff for: PC/prios_key_cracker.c

@@ -0,0 +1,117 @@
+//
+// Take a bunch of PRIOS WMBus frames, and find a decryption key that allows decoding all of them.
+// Unpolished code: do not use in production.
+//
+
+#include <stdio.h>
+#include <stdint.h>
+#include <time.h>
+
+// Use the PRIOS functions from the ST code.
+#include <PRIOS.h>
+#include "config.h"
+
+// Declare those since they're not exported by the ST code.
+uint32_t read_uint32_le(uint8_t *data, int offset);
+uint32_t read_uint32_be(uint8_t *data, int offset);
+uint32_t preparePRIOSKey(uint8_t *bytes);
+
+// Try to decode a payload with a key:
+uint8_t try_key(uint8_t *key_bytes, uint8_t *frame, uint8_t *out) {
+    uint32_t prepared_key = preparePRIOSKey(key_bytes);
+    return decodePRIOSPayload(frame, 11, prepared_key, out);
+}
+
+// Check that a decoded payload is coherent with the data we expect:
+uint8_t check_decoded_payload(uint8_t *decoded_frame, uint32_t *total_consumption, uint32_t *last_month_total_consumption, uint8_t *year, uint8_t *month, uint8_t *day) {
+    // Check that the consumptions look correct:
+    *total_consumption = read_uint32_le(decoded_frame, 1);
+    *last_month_total_consumption = read_uint32_le(decoded_frame, 5);
+    if (*last_month_total_consumption > *total_consumption) {
+        return 0;
+    }
+#ifdef CONSUMPTION_RANGE_MIN
+    if (*total_consumption < CONSUMPTION_RANGE_MIN) {
+        return 0;
+    }
+    if (*last_month_total_consumption < CONSUMPTION_RANGE_MIN) {
+        return 0;
+    }
+#endif
+#ifdef CONSUMPTION_RANGE_MAX
+    if (*total_consumption > CONSUMPTION_RANGE_MAX) {
+        return 0;
+    }
+    if (*last_month_total_consumption > CONSUMPTION_RANGE_MAX) {
+        return 0;
+    }
+#endif
+
+    // Check that the date is correct:
+    *year = ((decoded_frame[10] & 0xF0) >> 1) + ((decoded_frame[9] & 0xE0) >> 5);
+    *month = decoded_frame[10] & 0xF;
+    *day = decoded_frame[9] & 0x1F;
+    if (*year > 99 || *month > 12 || *day > 31) {
+        return 0;
+    }
+#ifdef TEST_YEAR
+    if (*year != TEST_YEAR) {
+        return 0;
+    }
+#endif
+#ifdef TEST_MONTH
+    if (*month != TEST_MONTH) {
+        return 0;
+    }
+#endif
+#ifdef TEST_DAY
+    if (*day != TEST_DAY) {
+        return 0;
+    }
+#endif
+
+    return 1;
+}
+
+int main(void) {
+	uint32_t total_consumption; uint32_t last_month_total_consumption; uint8_t year; uint8_t month; uint8_t day;
+    uint8_t found_keys = 0;
+    uint8_t decoded_frame[11];
+    time_t prevtime = 0;
+
+    // Loop over all the possible keys:
+    for (uint64_t i=0; i<0xffffffffffffffff; i++) {
+        time_t curtime = time(NULL);
+        if (curtime > prevtime + 1) {
+            printf("%.16llx keys tried\n", i);
+            prevtime = curtime;
+        }
+
+        // Test all frames in sequence until one fails:
+        uint8_t success = 1;
+        for (uint8_t j=0, count=sizeof(frames) / sizeof(frames[0]); j<count; j++) {
+	        // Check if the payload can be decoded:
+	        if (!try_key((uint8_t *) &i, frames[j], decoded_frame)) {
+	        	success = 0;
+	            break;
+	        }
+
+	        // Check the decoded payload for consistency:
+	        if (!check_decoded_payload(decoded_frame, &total_consumption, &last_month_total_consumption, &year, &month, &day)) {
+	        	success = 0;
+	            break;
+	        }
+        }
+
+        if (success) {
+	        printf(
+	        	"Candidate key: {0x%.2x, 0x%.2x, 0x%.2x, 0x%.2x, 0x%.2x, 0x%.2x, 0x%.2x, 0x%.2x}: First frame: current: %d, H0: %d H0 date: %.2d-%.2d-%.2d\n",
+	        	(uint8_t)(i & 0xFF), (uint8_t)((i >> 8) & 0xFF), (uint8_t)((i >> 16) & 0xFF), (uint8_t)((i >> 24) & 0xFF), (uint8_t)((i >> 32) & 0xFF), (uint8_t)((i >> 40) & 0xFF), (uint8_t)((i >> 48) & 0xFF), (uint8_t)((i >> 56) & 0xFF),
+	        	total_consumption, last_month_total_consumption, year, month, day
+	        );
+	        found_keys++;
+        }
+    }
+
+    return found_keys > 0;
+}