1
0
mirror of https://github.com/Wind4/vlmcsd.git synced 2024-11-24 19:11:04 +08:00

vlmcsd-1111-2017-06-17-Hotbird64

This commit is contained in:
Wind4 2017-06-22 15:21:58 +08:00
parent 5a29226593
commit 550df56794
47 changed files with 2216 additions and 2036 deletions

7
VisualStudio/vlmcsd/vlmcsd.vcxproj Executable file → Normal file
View File

@ -29,7 +29,7 @@
<PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">
<ConfigurationType>Application</ConfigurationType>
<UseDebugLibraries>true</UseDebugLibraries>
<PlatformToolset>v140_xp</PlatformToolset>
<PlatformToolset>v141_xp</PlatformToolset>
<CharacterSet>MultiByte</CharacterSet>
</PropertyGroup>
<PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|ARM'" Label="Configuration">
@ -41,7 +41,7 @@
<PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
<ConfigurationType>Application</ConfigurationType>
<UseDebugLibraries>true</UseDebugLibraries>
<PlatformToolset>v140_xp</PlatformToolset>
<PlatformToolset>v141_xp</PlatformToolset>
<CharacterSet>MultiByte</CharacterSet>
</PropertyGroup>
<PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">
@ -137,13 +137,14 @@
</ItemDefinitionGroup>
<ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
<ClCompile>
<WarningLevel>Level3</WarningLevel>
<WarningLevel>Level4</WarningLevel>
<Optimization>Disabled</Optimization>
<SDLCheck>true</SDLCheck>
<PreprocessorDefinitions>_USING_V110_SDK71_;%(PreprocessorDefinitions);_CRYPTO_WINDOWS;_PEDANTIC</PreprocessorDefinitions>
<MultiProcessorCompilation>true</MultiProcessorCompilation>
<MinimalRebuild>false</MinimalRebuild>
<AdditionalOptions>$(ExternalCompilerOptions) %(AdditionalOptions)</AdditionalOptions>
<DisableSpecificWarnings>4201;4200;4214;4706</DisableSpecificWarnings>
</ClCompile>
<Link>
<SubSystem>Console</SubSystem>

0
VisualStudio/vlmcsd/vlmcsd.vcxproj.filters Executable file → Normal file
View File

0
VisualStudio/vlmcsdmulti/vlmcsdmulti.vcxproj Executable file → Normal file
View File

0
VisualStudio/vlmcsdmulti/vlmcsdmulti.vcxproj.filters Executable file → Normal file
View File

View File

@ -23,6 +23,9 @@
# Set ePID/HwId for Office 2016 (including Visio and Project) explicitly
;Office2016 = 06401-00206-437-444444-03-1033-9600.0000-3622014 / 01 02 03 04 05 06 07 08
# Set ePID/HwId for Windows China Government (Enterprise G/GN) explicitly
;WinChinaGov = 06401-03858-000-555555-03-1033-9600.0000-3622014 / 01 02 03 04 05 06 07 08
# Use a compatible VPN device to create a hidden local IPv4 address
# Command line: -O
# VPN = <VPN adapter name>[=<IPv4 address>][/<CIDR mask>][:<DHCP lease duration>]

Binary file not shown.

Binary file not shown.

View File

@ -4,7 +4,7 @@ cd "$( dirname "$0" )"
export VLMCSD_VERSION=$(git describe)
msbuild='/cygdrive/c/Program Files (x86)/MSBuild/14.0/bin/MSBuild.exe'
msbuild='/cygdrive/c/Program Files (x86)/Microsoft Visual Studio/2017/Enterprise/MSBuild/15.0/Bin/amd64/msbuild.exe'
version="$VLMCSD_VERSION, built $(date -u '+%Y-%m-%d %H:%M:%S') UTC"
make -C .. clean
@ -41,7 +41,7 @@ make $MAKEFLAGS MSRPC=1 THREADS=1 DNS_PARSER=internal CLIENT_NAME=../bin/vlmcs-c
make $MAKEFLAGS vlmcsdmulti MSRPC=1 THREADS=1 DNS_PARSER=internal MULTI_NAME=../bin/vlmcsdmulti-cygwin-msrpc-x64 CC=x86_64-pc-cygwin-gcc.exe CFLAGS="$CFMSRPC -flto=jobserver" PLATFORMFLAGS="$PF64" LDFLAGS="$LFCYG64"
make $MAKEFLAGS vlmcsdmulti MSRPC=1 THREADS=1 DNS_PARSER=internal MULTI_NAME=../bin/vlmcsdmulti-cygwin-msrpc-x86 CC=i686-pc-cygwin-gcc.exe CFLAGS="$CFMSRPC -flto=jobserver" PLATFORMFLAGS="$PF32" LDFLAGS="$LFCYG32"
make $MAKEFLAGS THREADS=1 MSRPC=1 DNS_PARSER=internal CLIENT_NAME=../bin/vlmcs-cygwin-msrpc-x86-openssl-EXPERIMENTAL CRYPTO=openssl_with_aes PROGRAM_NAME=../bin/vlmcsd-cygwin-x86-openssl-EXPERIMENTAL CC=i686-pc-cygwin-gcc.exe CFLAGS="$CFMSRPC" PLATFORMFLAGS="$PF32" LDFLAGS="$LFCYG32"
#make $MAKEFLAGS THREADS=1 MSRPC=1 DNS_PARSER=internal CLIENT_NAME=../bin/vlmcs-cygwin-msrpc-x86-openssl-EXPERIMENTAL CRYPTO=openssl_with_aes PROGRAM_NAME=../bin/vlmcsd-cygwin-x86-openssl-EXPERIMENTAL CC=i686-pc-cygwin-gcc.exe CFLAGS="$CFMSRPC" PLATFORMFLAGS="$PF32" LDFLAGS="$LFCYG32"
make $MAKEFLAGS THREADS=1 MSRPC=1 DNS_PARSER=internal CLIENT_NAME=../bin/vlmcs-cygwin-msrpc-x64-openssl-EXPERIMENTAL CRYPTO=openssl_with_aes PROGRAM_NAME=../bin/vlmcsd-cygwin-x64-openssl-EXPERIMENTAL CC=x86_64-pc-cygwin-gcc.exe CFLAGS="$CFMSRPC" PLATFORMFLAGS="$PF64" LDFLAGS="$LFCYG64"
export CAT=2

View File

@ -19,7 +19,7 @@ DOSDOCS = $(PDFDOCS:.pdf=.dos.txt)
groff -Thtml -mandoc -c $< > $@
%.unix.txt : %
groff -P -c -Tutf8 -mandoc -c $< | col -bx > $@
groff -P -c -Tascii -mandoc -c $< | col -bx > $@
%.dos.txt : %.unix.txt
# unix2dos -n $< $@

View File

@ -52,8 +52,8 @@ OPTIONS
Show help.
-V Displays extended version information. This includes the com
piler used to build vlmcs, the intended platform and flags (com
-V Displays extended version information. This includes the com-
piler used to build vlmcs, the intended platform and flags (com-
pile time options) to build vlmcs. If you have the source code
of vlmcsd, you can type make help (or gmake help on systems that
do not use the GNU version of make(1) by default) to see the
@ -72,7 +72,7 @@ OPTIONS
-l application
Request activation for a specific application. Valid applica
Request activation for a specific application. Valid applica-
tions can be displayed by using -x. The default application is
Windows Vista Business. The list of available applications is
not complete. You may supply GUIDs with -a, -k and -s to specify
@ -91,7 +91,7 @@ OPTIONS
vlmcs ignores the minor protocol number (e.g. sends a v4 request
for version 4.1). If the major version number is less then 4, it
sends a v4 request. If the major version is greater then 6, it
sends a v6 request. In any case the protocol-version as speci
sends a v6 request. In any case the protocol-version as speci-
fied by -K is put in the version fields of the request.
@ -115,10 +115,10 @@ OPTIONS
this flag.
-d Use NetBIOS names instead of DNS names. By default vlmcsd gener
ates some random DNS names for each request. If you prefer Net
-d Use NetBIOS names instead of DNS names. By default vlmcsd gener-
ates some random DNS names for each request. If you prefer Net-
BIOS names, you may use -d. A real Microsoft activation client
uses DNS names or NetBIOS depending on the client name configu
uses DNS names or NetBIOS depending on the client name configu-
ration. KMS servers treat the workstation name as a comment that
affects logging only. Clients will be identified by a GUID that
can be specified using -c. -d has no effect if you also specify
@ -126,7 +126,7 @@ OPTIONS
-a application-guid
Send requests with a specific application-guid. There are cur
Send requests with a specific application-guid. There are cur-
rently only three known valid application-guids:
@ -135,7 +135,7 @@ OPTIONS
0ff1ce15-a989-479d-af46-f275c6370663 (Office 2013)
A Microsoft KMS server uses these GUIDs to have seperate coun
A Microsoft KMS server uses these GUIDs to have seperate coun-
ters for the already activated clients. A client that does not
contact the KMS server within 30 days will be deleted from the
database. Emulated KMS servers are always fully charged.
@ -153,8 +153,8 @@ OPTIONS
The activation-guid defines the actual product, e.g. "Windows
8.1 Professional WMC KMSCLIENT edition". A activation-guid maps
1:1 to a product key. However, neither a Microsoft KMS server
nor emulated servers check this id. The activation-guid is use
ful in logging to get a specific product description like "Win
nor emulated servers check this id. The activation-guid is use-
ful in logging to get a specific product description like "Win-
dows 8.1 Professional WMC". A list of current activation-guids
can be found in kms.c (table ExtendedProductList).
@ -171,7 +171,7 @@ OPTIONS
test an emulated KMS server whether it suffers from memory
leaks. To test for memory leaks use -n with a large number of
requests (> 100000) and then test twice (with and without -T).
This option may become neccessary for future versions of Micro
This option may become neccessary for future versions of Micro-
soft's KMS server because multiple requests with different
clients-guids for the same kms-id-guid are impossible in a real
KMS szenario over the same TCP connection.
@ -195,9 +195,9 @@ OPTIONS
-G filename
Grabs ePIDs and HWIDs from a KMS server and writes the informa
tion to filename in format suitable to be used as a configura
tion file (aka ini file) for vlmcsd(8). This is especially use
Grabs ePIDs and HWIDs from a KMS server and writes the informa-
tion to filename in format suitable to be used as a configura-
tion file (aka ini file) for vlmcsd(8). This is especially use-
ful if you have access to a genuine KMS server and want to use
the same data with vlmcsd(8).
@ -229,8 +229,8 @@ OPTIONS
Reports a specific license status to the KMS server. status is a
number that can be from 0 to 6. 0=unlicensed, 1=licensed, 2=OOB
grace, 3=OOT grace, 4=Non-genuinue grace, 5=notification,
6=extended grace. Refer to TechNet http://
technet.microsoft.com/en-us/library/ff686879.aspx#_Toc257201371
6=extended grace. Refer to TechNet <http://
technet.microsoft.com/en-us/library/ff686879.aspx#_Toc257201371>
for more information. A Microsoft KMS server collects this
information for statistics only.
@ -262,7 +262,7 @@ OPTIONS
Disables (-N0) or enables (-N1) the NDR64 transfer syntax in the
RPC protocol. Disable NDR64 only in case of problems. If NDR64
is not used, vlmcs cannot detect many RPC protocol errors in KMS
emulators. If you want to test whether a KMS emulator fully sup
emulators. If you want to test whether a KMS emulator fully sup-
ports NDR64, you must use the -n option to send at least two
requests. This is because Microsoft's client always sends the
first request using NDR32 syntax and subsequent requests using
@ -271,7 +271,7 @@ OPTIONS
-B0 and -B1
Disables (-B0) or enables (-B1) bind time feature negotiation
(BTFN) in the RPC protocol. Disable BTFN only in case of prob
(BTFN) in the RPC protocol. Disable BTFN only in case of prob-
lems. If BTFN is not used, vlmcs cannot detect many RPC protocol
errors in KMS emulators.
@ -314,7 +314,7 @@ EXAMPLES
BUGS
Some platforms (e.g. Solaris) may have a man(7) system that does not
handle URLs. URLs may be omitted in the documentation on those plat
handle URLs. URLs may be omitted in the documentation on those plat-
forms. Cygwin, Linux, FreeBSD and Mac OS X are known to work correctly.
@ -323,7 +323,7 @@ AUTHOR
CREDITS
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos-
ferati87, qad, Ratiborus, vityan666, ...

View File

@ -1,5 +1,5 @@
<!-- Creator : groff version 1.22.3 -->
<!-- CreationDate: Thu Jan 19 21:29:26 2017 -->
<!-- CreationDate: Sat Jun 17 00:53:29 2017 -->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

Binary file not shown.

View File

@ -52,8 +52,8 @@ OPTIONS
Show help.
-V Displays extended version information. This includes the com
piler used to build vlmcs, the intended platform and flags (com
-V Displays extended version information. This includes the com-
piler used to build vlmcs, the intended platform and flags (com-
pile time options) to build vlmcs. If you have the source code
of vlmcsd, you can type make help (or gmake help on systems that
do not use the GNU version of make(1) by default) to see the
@ -72,7 +72,7 @@ OPTIONS
-l application
Request activation for a specific application. Valid applica
Request activation for a specific application. Valid applica-
tions can be displayed by using -x. The default application is
Windows Vista Business. The list of available applications is
not complete. You may supply GUIDs with -a, -k and -s to specify
@ -91,7 +91,7 @@ OPTIONS
vlmcs ignores the minor protocol number (e.g. sends a v4 request
for version 4.1). If the major version number is less then 4, it
sends a v4 request. If the major version is greater then 6, it
sends a v6 request. In any case the protocol-version as speci
sends a v6 request. In any case the protocol-version as speci-
fied by -K is put in the version fields of the request.
@ -115,10 +115,10 @@ OPTIONS
this flag.
-d Use NetBIOS names instead of DNS names. By default vlmcsd gener
ates some random DNS names for each request. If you prefer Net
-d Use NetBIOS names instead of DNS names. By default vlmcsd gener-
ates some random DNS names for each request. If you prefer Net-
BIOS names, you may use -d. A real Microsoft activation client
uses DNS names or NetBIOS depending on the client name configu
uses DNS names or NetBIOS depending on the client name configu-
ration. KMS servers treat the workstation name as a comment that
affects logging only. Clients will be identified by a GUID that
can be specified using -c. -d has no effect if you also specify
@ -126,7 +126,7 @@ OPTIONS
-a application-guid
Send requests with a specific application-guid. There are cur
Send requests with a specific application-guid. There are cur-
rently only three known valid application-guids:
@ -135,7 +135,7 @@ OPTIONS
0ff1ce15-a989-479d-af46-f275c6370663 (Office 2013)
A Microsoft KMS server uses these GUIDs to have seperate coun
A Microsoft KMS server uses these GUIDs to have seperate coun-
ters for the already activated clients. A client that does not
contact the KMS server within 30 days will be deleted from the
database. Emulated KMS servers are always fully charged.
@ -153,8 +153,8 @@ OPTIONS
The activation-guid defines the actual product, e.g. "Windows
8.1 Professional WMC KMSCLIENT edition". A activation-guid maps
1:1 to a product key. However, neither a Microsoft KMS server
nor emulated servers check this id. The activation-guid is use
ful in logging to get a specific product description like "Win
nor emulated servers check this id. The activation-guid is use-
ful in logging to get a specific product description like "Win-
dows 8.1 Professional WMC". A list of current activation-guids
can be found in kms.c (table ExtendedProductList).
@ -171,7 +171,7 @@ OPTIONS
test an emulated KMS server whether it suffers from memory
leaks. To test for memory leaks use -n with a large number of
requests (> 100000) and then test twice (with and without -T).
This option may become neccessary for future versions of Micro
This option may become neccessary for future versions of Micro-
soft's KMS server because multiple requests with different
clients-guids for the same kms-id-guid are impossible in a real
KMS szenario over the same TCP connection.
@ -195,9 +195,9 @@ OPTIONS
-G filename
Grabs ePIDs and HWIDs from a KMS server and writes the informa
tion to filename in format suitable to be used as a configura
tion file (aka ini file) for vlmcsd(8). This is especially use
Grabs ePIDs and HWIDs from a KMS server and writes the informa-
tion to filename in format suitable to be used as a configura-
tion file (aka ini file) for vlmcsd(8). This is especially use-
ful if you have access to a genuine KMS server and want to use
the same data with vlmcsd(8).
@ -229,8 +229,8 @@ OPTIONS
Reports a specific license status to the KMS server. status is a
number that can be from 0 to 6. 0=unlicensed, 1=licensed, 2=OOB
grace, 3=OOT grace, 4=Non-genuinue grace, 5=notification,
6=extended grace. Refer to TechNet http://
technet.microsoft.com/en-us/library/ff686879.aspx#_Toc257201371
6=extended grace. Refer to TechNet <http://
technet.microsoft.com/en-us/library/ff686879.aspx#_Toc257201371>
for more information. A Microsoft KMS server collects this
information for statistics only.
@ -262,7 +262,7 @@ OPTIONS
Disables (-N0) or enables (-N1) the NDR64 transfer syntax in the
RPC protocol. Disable NDR64 only in case of problems. If NDR64
is not used, vlmcs cannot detect many RPC protocol errors in KMS
emulators. If you want to test whether a KMS emulator fully sup
emulators. If you want to test whether a KMS emulator fully sup-
ports NDR64, you must use the -n option to send at least two
requests. This is because Microsoft's client always sends the
first request using NDR32 syntax and subsequent requests using
@ -271,7 +271,7 @@ OPTIONS
-B0 and -B1
Disables (-B0) or enables (-B1) bind time feature negotiation
(BTFN) in the RPC protocol. Disable BTFN only in case of prob
(BTFN) in the RPC protocol. Disable BTFN only in case of prob-
lems. If BTFN is not used, vlmcs cannot detect many RPC protocol
errors in KMS emulators.
@ -314,7 +314,7 @@ EXAMPLES
BUGS
Some platforms (e.g. Solaris) may have a man(7) system that does not
handle URLs. URLs may be omitted in the documentation on those plat
handle URLs. URLs may be omitted in the documentation on those plat-
forms. Cygwin, Linux, FreeBSD and Mac OS X are known to work correctly.
@ -323,7 +323,7 @@ AUTHOR
CREDITS
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos-
ferati87, qad, Ratiborus, vityan666, ...

View File

@ -1,5 +1,5 @@
.mso www.tmac
.TH "VLMCSD-FLOPPY" 7 "October 2016" "Hotbird64" "KMS Activation Manual"
.TH "VLMCSD-FLOPPY" 7 "May 2017" "Hotbird64" "KMS Activation Manual"
.LO 8
.SH NAME
@ -102,7 +102,13 @@ Defines the ePID that is used for Windows activations. If you ommit this paramet
Defines the ePID that is used for Office 2010 activations. If you ommit this parameter, \fBvlmcsd\fR(8) generates a random ePID when it is started.
.IP "\fBOFFICE2013=\fIepid\fR"
Defines the ePID that is used for Office (versions 2013 and greater) activations. If you ommit this parameter, \fBvlmcsd\fR(8) generates a random ePID when it is started.
Defines the ePID that is used for Office 2016 activations. If you ommit this parameter, \fBvlmcsd\fR(8) generates a random ePID when it is started.
.IP "\fBOFFICE2016=\fIepid\fR"
Defines the ePID that is used for Office 2016 activations. If you ommit this parameter, \fBvlmcsd\fR(8) generates a random ePID when it is started.
.IP "\fBWINCHINAGOV=\fIepid\fR"
Defines the ePID that is used for Windows China Government Edition activations (Enterprise G/GN). If you ommit this parameter, \fBvlmcsd\fR(8) generates a random ePID when it is started.
.IP "\fBHWID=\fIhwid\fR"
Defines the HwId that is sent to clients. \fIhwid\fR must be specified as 16 hex digits that are interpreted as a series of 8 bytes (big endian). Any character that is not a hex digit will be ignored. This is for better readability.

View File

@ -8,12 +8,12 @@ NAME
DESCRIPTION
floppy144.vfd is an image of a bootable floppy that contains a minimal
version of Linux and vlmcsd(8). It requires only 16 MB of RAM. Its pri
version of Linux and vlmcsd(8). It requires only 16 MB of RAM. Its pri-
mary purpose is to run vlmcsd(8) in a small virtual machine which makes
it easy to use vlmcsd(8) to activate the virtual machine's host com
it easy to use vlmcsd(8) to activate the virtual machine's host com-
puter which is not possible in Windows 8.1 and up. The floppy image is
a standard 3,5" floppy with 1.44 MB storage. It is formatted with a
FAT12 filesystem. The floppy can be mounted to apply several customiza
FAT12 filesystem. The floppy can be mounted to apply several customiza-
tions.
@ -32,7 +32,7 @@ SETUP
has floppy boot disabled by default). If possible, setup a virtual
machine with plain old BIOS (not UEFI). If you created an UEFI virtual
machine, enable the compatibility support mode (CSM) to allow a BIOS
compatible boot. Set number of CPUs to 1. The Linux kernel is not capa
compatible boot. Set number of CPUs to 1. The Linux kernel is not capa-
ble of SMP. Remove IDE, SATA, SCSI and USB support if possible. The
Linux kernel can't handle this and ignores any devices connected to
these buses.
@ -49,10 +49,10 @@ SETUP
Most hypervisors emulate an Intel PRO/1000 or AMD PCNET32 by default.
Selecting a paravirtualized driver slightly improves performance. In
VirtualBox you can simply select virtio in the network configuration
dialog. VMWare requires that you add or change the VMX file. Use 'eth
dialog. VMWare requires that you add or change the VMX file. Use 'eth-
ernet0.virtualDev = "vmxnet3"' in your VMWare config file.
If you are using QEMU, you must also setup a TAP adapter. Port redi
If you are using QEMU, you must also setup a TAP adapter. Port redi-
rection does not work to activate your own computer.
@ -62,7 +62,7 @@ CONFIGURATION
must be mounted. Under Linux you can simply attach floppy144.vfd to a
loop device which is mountable like any other block device. For Windows
you must use some software that allows mounting a floppy image, e.g.
OSFMount ⟨http://www.osforensics.com/tools/mount-disk-images.html⟩
OSFMount <http://www.osforensics.com/tools/mount-disk-images.html>
OSFMount works under all Windows versions beginning with Windows XP up
to Windows 10 (32- and 64-bit).
@ -75,7 +75,7 @@ CONFIGURATION
LABEL dhcp
KERNEL bzImage
APPEND vga=773 quiet initrd=initrd KBD=us LIS
APPEND vga=773 quiet initrd=initrd KBD=us LIS-
TEN=[::]:1688,0.0.0.0:1688 TZ=UTC0 IPV4_CONFIG=DHCP
NTP_SERVER=pool.ntp.org HOST_NAME=vlmcsd ROOT_PASSWORD=vlmcsd
USER_NAME=user USER_PASSWORD=vlmcsd GUEST_PASSWORD=vlmcsd
@ -86,9 +86,9 @@ CONFIGURATION
LABEL static
KERNEL bzImage
APPEND vga=773 quiet initrd=initrd KBD=fr LIS
APPEND vga=773 quiet initrd=initrd KBD=fr LIS-
TEN=[::]:1688,0.0.0.0:1688 TZ=CET-1CEST,M3.5.0,M10.5.0/3
IPV4_CONFIG=STATIC IPV4_ADDRESS=192.168.20.123/24 IPV4_GATE
IPV4_CONFIG=STATIC IPV4_ADDRESS=192.168.20.123/24 IPV4_GATE-
WAY=192.168.20.2 IPV4_DNS1=192.168.20.2 IPV4_DNS2=NONE
NTP_SERVER=pool.ntp.org HOST_NAME=vlmcsd ROOT_PASSWORD=vlmcsd
USER_NAME=user USER_PASSWORD=vlmcsd GUEST_PASSWORD=vlmcsd
@ -98,7 +98,7 @@ CONFIGURATION
There are two configurations in this files: dhcp (for configuring the
IPv4 network via DHCP) and static (for a static IPv4 configuration).
The kernel always boots the dhcp configuration without asking (lines
'prompt 0' and 'default dhcp'). You can simply change the default con
'prompt 0' and 'default dhcp'). You can simply change the default con-
figuration to static and then customize the APPEND line in the static
configuration. For more details how to customize the syslinux.cfg file
see syslinux(1).
@ -108,11 +108,11 @@ CONFIGURATION
vga=vesa-video-mode
Sets the VESA display mode for the virtual machine. The parame
Sets the VESA display mode for the virtual machine. The parame-
ter is not optional. If you ommit it, you will not see anything
on the screen. 773 means 1024x768 with 256 colors. See Wikipedia
https://en.wikipedia.org/wiki/
VESA_BIOS_Extensions#Linux_video_mode_numbers for more video
<https://en.wikipedia.org/wiki/
VESA_BIOS_Extensions#Linux_video_mode_numbers> for more video
modes. Note that all 16 color (4-bit) modes will not work. Use
8-bit (256 colors), 16-bit (65536 colors), 24-bit and 32-bit (>
16 Million colors) only. All modes above 1280x1024 are non-VESA-
@ -123,14 +123,14 @@ CONFIGURATION
may omit quiet but it doesn't make much sense. The boot log is
actually very verbose and scrolls away from screen quickly. If
any errors occur during boot, they will be displayed even if
quiet is present in the APPEND line. You may evaluate the com
quiet is present in the APPEND line. You may evaluate the com-
plete boot log later by using the dmesg command or the menu on
/dev/tty8.
initrd=initial-ram-disk-file
This defines the initial ram disk that the kernel will read.
There is only one initial ram disk on the floppy thus leave ini
There is only one initial ram disk on the floppy thus leave ini-
trd=initrd as it is.
@ -176,9 +176,21 @@ CONFIGURATION
OFFICE2013=epid
Defines the ePID that is used for Office (versions 2013 and
greater) activations. If you ommit this parameter, vlmcsd(8)
generates a random ePID when it is started.
Defines the ePID that is used for Office 2016 activations. If
you ommit this parameter, vlmcsd(8) generates a random ePID when
it is started.
OFFICE2016=epid
Defines the ePID that is used for Office 2016 activations. If
you ommit this parameter, vlmcsd(8) generates a random ePID when
it is started.
WINCHINAGOV=epid
Defines the ePID that is used for Windows China Government Edi-
tion activations (Enterprise G/GN). If you ommit this parameter,
vlmcsd(8) generates a random ePID when it is started.
HWID=hwid
@ -190,8 +202,8 @@ CONFIGURATION
TZ=posix-time-zone-string
Set the time zone to posix-time-zone-string. It must conform to
the POSIX http://pubs.opengroup.org/onlinepubs/009695399/
basedefs/xbd_chap08.html specification. Simplified time zone
the POSIX <http://pubs.opengroup.org/onlinepubs/009695399/
basedefs/xbd_chap08.html> specification. Simplified time zone
strings like "Europe/London" or "America/Detroit" are not
allowed. This has the very simple reason that there is no space
on the floppy to store the time zone database.
@ -201,7 +213,7 @@ CONFIGURATION
CET The standard (winter) time zone has the name CET.
-1 The standard time zone is one hour east of UTC. Nega
-1 The standard time zone is one hour east of UTC. Nega-
tive numbers are east of UTC. Positive numbers are
west of UTC.
@ -228,12 +240,12 @@ CONFIGURATION
IPV4_CONFIG=DHCP | STATIC
This determines how you want to configure IPv4 networking. If
you use IPV4_CONFIG=STATIC, you must supply additional para
you use IPV4_CONFIG=STATIC, you must supply additional para-
maters to the APPEND command line.
IPV4_ADDRESS=ipv4-address/CIDR-mask
Use ipv4-address with netmask CIDR-mask for static IPv4 configu
Use ipv4-address with netmask CIDR-mask for static IPv4 configu-
ration. The netmask must not be ommitted. For IPv4 address
192.168.12.17 with a netmask of 255.255.255.0 use
192.168.12.17/24. For IPv4 address 10.4.0.8 with a netmask of
@ -245,7 +257,7 @@ CONFIGURATION
Use ipv4-address as the default gateway. This is usually the
IPv4 address of your router. You may specify NONE explicitly for
no gateway. In this case your virtual machine is only visible on
its local LAN. This paramater is ignored, if you used IPV4_CON
its local LAN. This paramater is ignored, if you used IPV4_CON-
FIG=DHCP.
@ -262,9 +274,9 @@ CONFIGURATION
IPV4_DNS2=ipv4-address | NONE
Use ipv4-address as the secondary name server. It serves as a
backup if the primary name server is not available. Home net
backup if the primary name server is not available. Home net-
works often don't have a secondary name server. In this case set
this to NONE. This paramater is ignored, if you used IPV4_CON
this to NONE. This paramater is ignored, if you used IPV4_CON-
FIG=DHCP.
@ -282,7 +294,7 @@ CONFIGURATION
IPV4_CONFIG=DHCP and your DHCP server returns a domain name, the
domain part of an FQDN will be replaced by that name. This host
name or host part of an FQDN will not replaced by a host name
returned via DHCP. The host name is not important for the opera
returned via DHCP. The host name is not important for the opera-
tion of floppy144.vfd.
@ -319,10 +331,10 @@ CONFIGURATION
OPERATION
Diskless System
The floppy144.vfd virtual machine is a diskless system that works
entirely from RAM. The file system is actually a RAM disk that is cre
entirely from RAM. The file system is actually a RAM disk that is cre-
ated from the initrd(4) file on the floppy image.
Anything you'll do from inside the virtual machine, for instance edit
Anything you'll do from inside the virtual machine, for instance edit-
ing a config file, will be lost when you reboot the machine. So, if you
ever asked yourself if rm -fr / (root privileges required) really
deletes all files from all mounted partitions, the floppy144.vfd VM is
@ -338,7 +350,7 @@ OPERATION
The kernel boots up very quickly and the init script (/sbin/init) waits
5 seconds. In these 5 seconds you can:
Press 'm' to manually enter the time zone and the IPv4 parame
Press 'm' to manually enter the time zone and the IPv4 parame-
ters. These will be queried interactively.
Press 't' to manually enter the time zone only.
Press 's' to escape to a shell.
@ -351,7 +363,7 @@ OPERATION
Logging into the system
There are 5 local logins provided on /dev/tty2 to /dev/tty6. To switch
to these logins, simply press ALT-F2 to ALT-F6. To return to the con
to these logins, simply press ALT-F2 to ALT-F6. To return to the con-
sole on /dev/tty1, press ALT-F1. If inetd(8) is running you can also
use telnet(1). This allows you use a terminal program (e.g. putty) that
can utilize your keyboard layout, can be resized and has full UTF-8
@ -369,7 +381,7 @@ OPERATION
The menu system
You'll find a menu system on /dev/tty8 (press ALT-F8 to see it). It
allows you performing some administrative tasks and to view various
system information. It is mainly for users that do not have much expe
system information. It is mainly for users that do not have much expe-
rience with Unix commands.
@ -419,7 +431,7 @@ OPERATION
8) Show TCP/IP configuration
Shows the TCP/IP configuration, listening sockets and current
TCP and UDP connections. Useful, if you problems with net con
TCP and UDP connections. Useful, if you problems with net con-
nectivity. The output is piped through less(1). So press 'q' to
return to the menu.
@ -431,7 +443,7 @@ OPERATION
s) Shutdown
Shuts down the floppy144.vfd virtual machine. Proper shutdown is
not required. It is ok to use a hard power off in your virtual
not required. It is ok to use a hard power off in your virtual-
ization program.
@ -476,7 +488,7 @@ PERMANENT CHANGES OF INITRD
works on almost any unix-like OS, it does not work on Windows even not
with Cygwin. The reason is that the NTFS file system can't handle uids
and gids. These cannot be preserved when unpacking the cpio(1) archive
to NTFS. If you use the WSL subsystem of Windows 10 Redstone (Anniver
to NTFS. If you use the WSL subsystem of Windows 10 Redstone (Anniver-
sary Update) and later, you must make sure to unpack the initrd(4) file
to a directory on VolFs (normally everything that is not mounted under
/mnt). The initrd(4) file can be on a VolFs or DriveFs.
@ -484,7 +496,7 @@ PERMANENT CHANGES OF INITRD
FAQ
On what distro is the floppy image based?
None. Besides the boot loader ldlinux.sys, there are only three bina
None. Besides the boot loader ldlinux.sys, there are only three bina-
ries: The Linux kernel bzImage, busybox(1) and vlmcsdmulti-x86-musl-
static. bzImage and busybox(1) have been compiled with carefully
selected configuration parameters not found in any distro. This was
@ -494,7 +506,7 @@ FAQ
Why is a rather old Linux kernel (3.12) used?
Linux 3.12 is the last kernel that can be booted with 16 MB of RAM.
Beginning with Linux 3.13 it requires much more memory (about 80 MB) to
boot. The floppy image is regularly tested with newer kernels. Every
boot. The floppy image is regularly tested with newer kernels. Every-
thing works except that you need to assign much more main memory to the
virtual machine.
@ -513,7 +525,7 @@ FILES
BUGS
IPv6 cannot be configured with static or manual parameters.
DHCPv6 is not supported.
´ip route add ...' does not work. Use 'route add ...' instead.
'ip route add ...' does not work. Use 'route add ...' instead.
AUTHOR
@ -533,4 +545,4 @@ SEE ALSO
Hotbird64 October 2016 VLMCSD-FLOPPY(7)
Hotbird64 May 2017 VLMCSD-FLOPPY(7)

View File

@ -1,5 +1,5 @@
<!-- Creator : groff version 1.22.3 -->
<!-- CreationDate: Thu Jan 19 21:29:26 2017 -->
<!-- CreationDate: Sat Jun 17 00:53:29 2017 -->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
@ -282,9 +282,25 @@ started.</p>
<p style="margin-left:11%;"><b>OFFICE2013=</b><i>epid</i></p>
<p style="margin-left:22%;">Defines the ePID that is used
for Office (versions 2013 and greater) activations. If you
ommit this parameter, <b>vlmcsd</b>(8) generates a random
ePID when it is started.</p>
for Office 2016 activations. If you ommit this parameter,
<b>vlmcsd</b>(8) generates a random ePID when it is
started.</p>
<p style="margin-left:11%;"><b>OFFICE2016=</b><i>epid</i></p>
<p style="margin-left:22%;">Defines the ePID that is used
for Office 2016 activations. If you ommit this parameter,
<b>vlmcsd</b>(8) generates a random ePID when it is
started.</p>
<p style="margin-left:11%;"><b>WINCHINAGOV=</b><i>epid</i></p>
<p style="margin-left:22%;">Defines the ePID that is used
for Windows China Government Edition activations (Enterprise
G/GN). If you ommit this parameter, <b>vlmcsd</b>(8)
generates a random ePID when it is started.</p>
<p style="margin-left:11%;"><b>HWID=</b><i>hwid</i></p>

Binary file not shown.

View File

@ -8,12 +8,12 @@ NAME
DESCRIPTION
floppy144.vfd is an image of a bootable floppy that contains a minimal
version of Linux and vlmcsd(8). It requires only 16 MB of RAM. Its pri
version of Linux and vlmcsd(8). It requires only 16 MB of RAM. Its pri-
mary purpose is to run vlmcsd(8) in a small virtual machine which makes
it easy to use vlmcsd(8) to activate the virtual machine's host com
it easy to use vlmcsd(8) to activate the virtual machine's host com-
puter which is not possible in Windows 8.1 and up. The floppy image is
a standard 3,5" floppy with 1.44 MB storage. It is formatted with a
FAT12 filesystem. The floppy can be mounted to apply several customiza
FAT12 filesystem. The floppy can be mounted to apply several customiza-
tions.
@ -32,7 +32,7 @@ SETUP
has floppy boot disabled by default). If possible, setup a virtual
machine with plain old BIOS (not UEFI). If you created an UEFI virtual
machine, enable the compatibility support mode (CSM) to allow a BIOS
compatible boot. Set number of CPUs to 1. The Linux kernel is not capa
compatible boot. Set number of CPUs to 1. The Linux kernel is not capa-
ble of SMP. Remove IDE, SATA, SCSI and USB support if possible. The
Linux kernel can't handle this and ignores any devices connected to
these buses.
@ -49,10 +49,10 @@ SETUP
Most hypervisors emulate an Intel PRO/1000 or AMD PCNET32 by default.
Selecting a paravirtualized driver slightly improves performance. In
VirtualBox you can simply select virtio in the network configuration
dialog. VMWare requires that you add or change the VMX file. Use 'eth
dialog. VMWare requires that you add or change the VMX file. Use 'eth-
ernet0.virtualDev = "vmxnet3"' in your VMWare config file.
If you are using QEMU, you must also setup a TAP adapter. Port redi
If you are using QEMU, you must also setup a TAP adapter. Port redi-
rection does not work to activate your own computer.
@ -62,7 +62,7 @@ CONFIGURATION
must be mounted. Under Linux you can simply attach floppy144.vfd to a
loop device which is mountable like any other block device. For Windows
you must use some software that allows mounting a floppy image, e.g.
OSFMount ⟨http://www.osforensics.com/tools/mount-disk-images.html⟩
OSFMount <http://www.osforensics.com/tools/mount-disk-images.html>
OSFMount works under all Windows versions beginning with Windows XP up
to Windows 10 (32- and 64-bit).
@ -75,7 +75,7 @@ CONFIGURATION
LABEL dhcp
KERNEL bzImage
APPEND vga=773 quiet initrd=initrd KBD=us LIS
APPEND vga=773 quiet initrd=initrd KBD=us LIS-
TEN=[::]:1688,0.0.0.0:1688 TZ=UTC0 IPV4_CONFIG=DHCP
NTP_SERVER=pool.ntp.org HOST_NAME=vlmcsd ROOT_PASSWORD=vlmcsd
USER_NAME=user USER_PASSWORD=vlmcsd GUEST_PASSWORD=vlmcsd
@ -86,9 +86,9 @@ CONFIGURATION
LABEL static
KERNEL bzImage
APPEND vga=773 quiet initrd=initrd KBD=fr LIS
APPEND vga=773 quiet initrd=initrd KBD=fr LIS-
TEN=[::]:1688,0.0.0.0:1688 TZ=CET-1CEST,M3.5.0,M10.5.0/3
IPV4_CONFIG=STATIC IPV4_ADDRESS=192.168.20.123/24 IPV4_GATE
IPV4_CONFIG=STATIC IPV4_ADDRESS=192.168.20.123/24 IPV4_GATE-
WAY=192.168.20.2 IPV4_DNS1=192.168.20.2 IPV4_DNS2=NONE
NTP_SERVER=pool.ntp.org HOST_NAME=vlmcsd ROOT_PASSWORD=vlmcsd
USER_NAME=user USER_PASSWORD=vlmcsd GUEST_PASSWORD=vlmcsd
@ -98,7 +98,7 @@ CONFIGURATION
There are two configurations in this files: dhcp (for configuring the
IPv4 network via DHCP) and static (for a static IPv4 configuration).
The kernel always boots the dhcp configuration without asking (lines
'prompt 0' and 'default dhcp'). You can simply change the default con
'prompt 0' and 'default dhcp'). You can simply change the default con-
figuration to static and then customize the APPEND line in the static
configuration. For more details how to customize the syslinux.cfg file
see syslinux(1).
@ -108,11 +108,11 @@ CONFIGURATION
vga=vesa-video-mode
Sets the VESA display mode for the virtual machine. The parame
Sets the VESA display mode for the virtual machine. The parame-
ter is not optional. If you ommit it, you will not see anything
on the screen. 773 means 1024x768 with 256 colors. See Wikipedia
https://en.wikipedia.org/wiki/
VESA_BIOS_Extensions#Linux_video_mode_numbers for more video
<https://en.wikipedia.org/wiki/
VESA_BIOS_Extensions#Linux_video_mode_numbers> for more video
modes. Note that all 16 color (4-bit) modes will not work. Use
8-bit (256 colors), 16-bit (65536 colors), 24-bit and 32-bit (>
16 Million colors) only. All modes above 1280x1024 are non-VESA-
@ -123,14 +123,14 @@ CONFIGURATION
may omit quiet but it doesn't make much sense. The boot log is
actually very verbose and scrolls away from screen quickly. If
any errors occur during boot, they will be displayed even if
quiet is present in the APPEND line. You may evaluate the com
quiet is present in the APPEND line. You may evaluate the com-
plete boot log later by using the dmesg command or the menu on
/dev/tty8.
initrd=initial-ram-disk-file
This defines the initial ram disk that the kernel will read.
There is only one initial ram disk on the floppy thus leave ini
There is only one initial ram disk on the floppy thus leave ini-
trd=initrd as it is.
@ -176,9 +176,21 @@ CONFIGURATION
OFFICE2013=epid
Defines the ePID that is used for Office (versions 2013 and
greater) activations. If you ommit this parameter, vlmcsd(8)
generates a random ePID when it is started.
Defines the ePID that is used for Office 2016 activations. If
you ommit this parameter, vlmcsd(8) generates a random ePID when
it is started.
OFFICE2016=epid
Defines the ePID that is used for Office 2016 activations. If
you ommit this parameter, vlmcsd(8) generates a random ePID when
it is started.
WINCHINAGOV=epid
Defines the ePID that is used for Windows China Government Edi-
tion activations (Enterprise G/GN). If you ommit this parameter,
vlmcsd(8) generates a random ePID when it is started.
HWID=hwid
@ -190,8 +202,8 @@ CONFIGURATION
TZ=posix-time-zone-string
Set the time zone to posix-time-zone-string. It must conform to
the POSIX http://pubs.opengroup.org/onlinepubs/009695399/
basedefs/xbd_chap08.html specification. Simplified time zone
the POSIX <http://pubs.opengroup.org/onlinepubs/009695399/
basedefs/xbd_chap08.html> specification. Simplified time zone
strings like "Europe/London" or "America/Detroit" are not
allowed. This has the very simple reason that there is no space
on the floppy to store the time zone database.
@ -201,7 +213,7 @@ CONFIGURATION
CET The standard (winter) time zone has the name CET.
-1 The standard time zone is one hour east of UTC. Nega
-1 The standard time zone is one hour east of UTC. Nega-
tive numbers are east of UTC. Positive numbers are
west of UTC.
@ -228,12 +240,12 @@ CONFIGURATION
IPV4_CONFIG=DHCP | STATIC
This determines how you want to configure IPv4 networking. If
you use IPV4_CONFIG=STATIC, you must supply additional para
you use IPV4_CONFIG=STATIC, you must supply additional para-
maters to the APPEND command line.
IPV4_ADDRESS=ipv4-address/CIDR-mask
Use ipv4-address with netmask CIDR-mask for static IPv4 configu
Use ipv4-address with netmask CIDR-mask for static IPv4 configu-
ration. The netmask must not be ommitted. For IPv4 address
192.168.12.17 with a netmask of 255.255.255.0 use
192.168.12.17/24. For IPv4 address 10.4.0.8 with a netmask of
@ -245,7 +257,7 @@ CONFIGURATION
Use ipv4-address as the default gateway. This is usually the
IPv4 address of your router. You may specify NONE explicitly for
no gateway. In this case your virtual machine is only visible on
its local LAN. This paramater is ignored, if you used IPV4_CON
its local LAN. This paramater is ignored, if you used IPV4_CON-
FIG=DHCP.
@ -262,9 +274,9 @@ CONFIGURATION
IPV4_DNS2=ipv4-address | NONE
Use ipv4-address as the secondary name server. It serves as a
backup if the primary name server is not available. Home net
backup if the primary name server is not available. Home net-
works often don't have a secondary name server. In this case set
this to NONE. This paramater is ignored, if you used IPV4_CON
this to NONE. This paramater is ignored, if you used IPV4_CON-
FIG=DHCP.
@ -282,7 +294,7 @@ CONFIGURATION
IPV4_CONFIG=DHCP and your DHCP server returns a domain name, the
domain part of an FQDN will be replaced by that name. This host
name or host part of an FQDN will not replaced by a host name
returned via DHCP. The host name is not important for the opera
returned via DHCP. The host name is not important for the opera-
tion of floppy144.vfd.
@ -319,10 +331,10 @@ CONFIGURATION
OPERATION
Diskless System
The floppy144.vfd virtual machine is a diskless system that works
entirely from RAM. The file system is actually a RAM disk that is cre
entirely from RAM. The file system is actually a RAM disk that is cre-
ated from the initrd(4) file on the floppy image.
Anything you'll do from inside the virtual machine, for instance edit
Anything you'll do from inside the virtual machine, for instance edit-
ing a config file, will be lost when you reboot the machine. So, if you
ever asked yourself if rm -fr / (root privileges required) really
deletes all files from all mounted partitions, the floppy144.vfd VM is
@ -338,7 +350,7 @@ OPERATION
The kernel boots up very quickly and the init script (/sbin/init) waits
5 seconds. In these 5 seconds you can:
Press 'm' to manually enter the time zone and the IPv4 parame
Press 'm' to manually enter the time zone and the IPv4 parame-
ters. These will be queried interactively.
Press 't' to manually enter the time zone only.
Press 's' to escape to a shell.
@ -351,7 +363,7 @@ OPERATION
Logging into the system
There are 5 local logins provided on /dev/tty2 to /dev/tty6. To switch
to these logins, simply press ALT-F2 to ALT-F6. To return to the con
to these logins, simply press ALT-F2 to ALT-F6. To return to the con-
sole on /dev/tty1, press ALT-F1. If inetd(8) is running you can also
use telnet(1). This allows you use a terminal program (e.g. putty) that
can utilize your keyboard layout, can be resized and has full UTF-8
@ -369,7 +381,7 @@ OPERATION
The menu system
You'll find a menu system on /dev/tty8 (press ALT-F8 to see it). It
allows you performing some administrative tasks and to view various
system information. It is mainly for users that do not have much expe
system information. It is mainly for users that do not have much expe-
rience with Unix commands.
@ -419,7 +431,7 @@ OPERATION
8) Show TCP/IP configuration
Shows the TCP/IP configuration, listening sockets and current
TCP and UDP connections. Useful, if you problems with net con
TCP and UDP connections. Useful, if you problems with net con-
nectivity. The output is piped through less(1). So press 'q' to
return to the menu.
@ -431,7 +443,7 @@ OPERATION
s) Shutdown
Shuts down the floppy144.vfd virtual machine. Proper shutdown is
not required. It is ok to use a hard power off in your virtual
not required. It is ok to use a hard power off in your virtual-
ization program.
@ -476,7 +488,7 @@ PERMANENT CHANGES OF INITRD
works on almost any unix-like OS, it does not work on Windows even not
with Cygwin. The reason is that the NTFS file system can't handle uids
and gids. These cannot be preserved when unpacking the cpio(1) archive
to NTFS. If you use the WSL subsystem of Windows 10 Redstone (Anniver
to NTFS. If you use the WSL subsystem of Windows 10 Redstone (Anniver-
sary Update) and later, you must make sure to unpack the initrd(4) file
to a directory on VolFs (normally everything that is not mounted under
/mnt). The initrd(4) file can be on a VolFs or DriveFs.
@ -484,7 +496,7 @@ PERMANENT CHANGES OF INITRD
FAQ
On what distro is the floppy image based?
None. Besides the boot loader ldlinux.sys, there are only three bina
None. Besides the boot loader ldlinux.sys, there are only three bina-
ries: The Linux kernel bzImage, busybox(1) and vlmcsdmulti-x86-musl-
static. bzImage and busybox(1) have been compiled with carefully
selected configuration parameters not found in any distro. This was
@ -494,7 +506,7 @@ FAQ
Why is a rather old Linux kernel (3.12) used?
Linux 3.12 is the last kernel that can be booted with 16 MB of RAM.
Beginning with Linux 3.13 it requires much more memory (about 80 MB) to
boot. The floppy image is regularly tested with newer kernels. Every
boot. The floppy image is regularly tested with newer kernels. Every-
thing works except that you need to assign much more main memory to the
virtual machine.
@ -513,7 +525,7 @@ FILES
BUGS
IPv6 cannot be configured with static or manual parameters.
DHCPv6 is not supported.
´ip route add ...' does not work. Use 'route add ...' instead.
'ip route add ...' does not work. Use 'route add ...' instead.
AUTHOR
@ -533,4 +545,4 @@ SEE ALSO
Hotbird64 October 2016 VLMCSD-FLOPPY(7)
Hotbird64 May 2017 VLMCSD-FLOPPY(7)

View File

@ -19,7 +19,7 @@ DESCRIPTION
KMS is a way to activate Microsoft products that was designed for
medium and large businesses. In a standard SOHO environment you enter a
product key during installation and then activate your product over the
Internet. This is done by sending a request to a server at micro
Internet. This is done by sending a request to a server at micro-
soft.com which then either grants or refuses activation.
By entering a special key called General Volume License Key (GVLK),
@ -28,13 +28,13 @@ DESCRIPTION
usually resides in a company's intranet. vlmcsd is an independent open
source implementation of a KMS server that is available for everyone
while Microsoft gives their KMS server only to corporations that signed
a so called "Select contract". In addition vlmcsd never refuses activa
a so called "Select contract". In addition vlmcsd never refuses activa-
tion while the Microsoft KMS server only activates the products the
customer has paid for.
Product activation using vlmcsd is performed in three easy steps:
1) Run vlmcsd (or any other KMS emulator) on a computer in your net
1) Run vlmcsd (or any other KMS emulator) on a computer in your net-
work. This will be your KMS server. New users should simply run the
program without any parameters. The defaults should fit the needs of
most users.
@ -47,11 +47,11 @@ DESCRIPTION
However, when it comes to the details, some things turn out to be more
difficult than you might think.
The most important thing to know is that KMS activation is not perma
The most important thing to know is that KMS activation is not perma-
nent. The computer remains activated for 180 days (30 or 45 days with
consumer-only products). KMS activation however is not an evaluation
license. You can repeat the activation anytime and as often as you like
to extend activation to another 180 days. This normally happens auto
to extend activation to another 180 days. This normally happens auto-
matically. For this to work, you have to ensure that a KMS server is
always reachable for the clients on your network.
@ -64,7 +64,7 @@ DESCRIPTION
How to get a GVLK?
That is relatively simple. The GVLKs are published on Microsoft's Tech
That is relatively simple. The GVLKs are published on Microsoft's Tech-
net web site.
Windows: http://technet.microsoft.com/en-us/library/jj612867.aspx
@ -86,7 +86,7 @@ DESCRIPTION
7B9N3-D94CG-YTVHR-QBPX3-RJP64 - Windows 8.1 Core N
BB6NG-PQ82V-VRDPW-8XVD2-V8P66 - Windows 8.1 Core Single Language
NCTT7-2RGK8-WMHRF-RY7YQ-JTXG3 - Windows 8.1 Core Country Specific
GNBB8-YVD74-QJHX6-27H4K-8QHDG - Windows 8 Professional with Media Cen
GNBB8-YVD74-QJHX6-27H4K-8QHDG - Windows 8 Professional with Media Cen-
ter
BN3D2-R7TKB-3YPBD-8DRP2-27GG4 - Windows 8 Core
8N2M2-HWPGY-7PGT9-HGDD8-GVGGY - Windows 8 Core N
@ -103,7 +103,7 @@ DESCRIPTION
section.
These are two Visual Basic script utilities that are used to control
Microsoft's Software Protection system. To use them open a Windows Com
Microsoft's Software Protection system. To use them open a Windows Com-
mand Prompt. slmgr.vbs is for Windows. ospp.vbs is for Office 2010 and
2013. These utilities are installed with Windows and Office and you
don't need to download them.
@ -153,7 +153,7 @@ DESCRIPTION
2) Type "cscript ospp.vbs /setprt:tcp-port". Example: cscript
ospp.vbs /setprt:1688
tcp-port is usually 1688 unless you instructed vlmcsd to use a differ
tcp-port is usually 1688 unless you instructed vlmcsd to use a differ-
ent port which is rarely necessary.

View File

@ -1,5 +1,5 @@
<!-- Creator : groff version 1.22.3 -->
<!-- CreationDate: Thu Jan 19 21:29:26 2017 -->
<!-- CreationDate: Sat Jun 17 00:53:29 2017 -->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

Binary file not shown.

View File

@ -19,7 +19,7 @@ DESCRIPTION
KMS is a way to activate Microsoft products that was designed for
medium and large businesses. In a standard SOHO environment you enter a
product key during installation and then activate your product over the
Internet. This is done by sending a request to a server at micro
Internet. This is done by sending a request to a server at micro-
soft.com which then either grants or refuses activation.
By entering a special key called General Volume License Key (GVLK),
@ -28,13 +28,13 @@ DESCRIPTION
usually resides in a company's intranet. vlmcsd is an independent open
source implementation of a KMS server that is available for everyone
while Microsoft gives their KMS server only to corporations that signed
a so called "Select contract". In addition vlmcsd never refuses activa
a so called "Select contract". In addition vlmcsd never refuses activa-
tion while the Microsoft KMS server only activates the products the
customer has paid for.
Product activation using vlmcsd is performed in three easy steps:
1) Run vlmcsd (or any other KMS emulator) on a computer in your net
1) Run vlmcsd (or any other KMS emulator) on a computer in your net-
work. This will be your KMS server. New users should simply run the
program without any parameters. The defaults should fit the needs of
most users.
@ -47,11 +47,11 @@ DESCRIPTION
However, when it comes to the details, some things turn out to be more
difficult than you might think.
The most important thing to know is that KMS activation is not perma
The most important thing to know is that KMS activation is not perma-
nent. The computer remains activated for 180 days (30 or 45 days with
consumer-only products). KMS activation however is not an evaluation
license. You can repeat the activation anytime and as often as you like
to extend activation to another 180 days. This normally happens auto
to extend activation to another 180 days. This normally happens auto-
matically. For this to work, you have to ensure that a KMS server is
always reachable for the clients on your network.
@ -64,7 +64,7 @@ DESCRIPTION
How to get a GVLK?
That is relatively simple. The GVLKs are published on Microsoft's Tech
That is relatively simple. The GVLKs are published on Microsoft's Tech-
net web site.
Windows: http://technet.microsoft.com/en-us/library/jj612867.aspx
@ -86,7 +86,7 @@ DESCRIPTION
7B9N3-D94CG-YTVHR-QBPX3-RJP64 - Windows 8.1 Core N
BB6NG-PQ82V-VRDPW-8XVD2-V8P66 - Windows 8.1 Core Single Language
NCTT7-2RGK8-WMHRF-RY7YQ-JTXG3 - Windows 8.1 Core Country Specific
GNBB8-YVD74-QJHX6-27H4K-8QHDG - Windows 8 Professional with Media Cen
GNBB8-YVD74-QJHX6-27H4K-8QHDG - Windows 8 Professional with Media Cen-
ter
BN3D2-R7TKB-3YPBD-8DRP2-27GG4 - Windows 8 Core
8N2M2-HWPGY-7PGT9-HGDD8-GVGGY - Windows 8 Core N
@ -103,7 +103,7 @@ DESCRIPTION
section.
These are two Visual Basic script utilities that are used to control
Microsoft's Software Protection system. To use them open a Windows Com
Microsoft's Software Protection system. To use them open a Windows Com-
mand Prompt. slmgr.vbs is for Windows. ospp.vbs is for Office 2010 and
2013. These utilities are installed with Windows and Office and you
don't need to download them.
@ -153,7 +153,7 @@ DESCRIPTION
2) Type "cscript ospp.vbs /setprt:tcp-port". Example: cscript
ospp.vbs /setprt:1688
tcp-port is usually 1688 unless you instructed vlmcsd to use a differ
tcp-port is usually 1688 unless you instructed vlmcsd to use a differ-
ent port which is rarely necessary.

View File

@ -1,5 +1,5 @@
.mso www.tmac
.TH VLMCSD 8 "January 2017" "Hotbird64" "KMS Activation Manual"
.TH VLMCSD 8 "June 2017" "Hotbird64" "KMS Activation Manual"
.LO 8
.SH NAME
@ -27,7 +27,7 @@ The followong features that require that vlmcsd is permanently loaded will not w
You cannot maintain a client list (option \fB-M1\fR)
.IP
EPID Randomization Level 1 (option \fB-r1\fR) works like Level 2 (\fB-r2\fR). You may want to use Level 0 (\fB-r0\fR) or custom EPIDs (options \fB-w\fR, \fB-0\fR, \fB-3\fR and \fB-6\fR) instead.
EPID Randomization Level 1 (option \fB-r1\fR) works like Level 2 (\fB-r2\fR). You may want to use Level 0 (\fB-r0\fR) or custom EPIDs (options \fB-w\fR, \fB-G\fR, \fB-0\fR, \fB-3\fR and \fB-6\fR) instead.
.SH OPTIONS
Since vlmcsd can be configured at compile time, some options may not be available on your system.
@ -185,6 +185,9 @@ Use \fIePID\fR as Office 2013 ePID (including Project and Visio). If specified,
.IP "\fB-6\fR \fIePID\fR"
Use \fIePID\fR as Office 2016 ePID (including Project and Visio). If specified, \fB-r\fR is disregarded for Office 2016.
.IP "\fB-G\fR \fIePID\fR"
Use \fIePID\fR as Windows China Government ePID. If specified, \fB-r\fR is disregarded for Windows China Government Editions (Enterprise G/GN).
.IP "\fB-H\fR \fIHwId\fR"
Use \fIHwId\fR for all products. All HWIDs in the ini file (see \fB-i\fR) will not be used. In an ini file you can specify a seperate HWID for each \fIapplication-guid\fR. This is not possible when entering a HWID from the command line.
@ -221,7 +224,7 @@ These options determine how ePIDs are generated if
\fB-r1\fR instructs vlmcsd to generate random ePIDs when the program starts or receives a SIGHUP signal and uses these ePIDs until it is stopped or receives another SIGHUP. Most other KMS emulators generate a new ePID on every KMS request. This is easily detectable. Microsoft could just modify sppsvc.exe in a way that it always sends two identical KMS requests in two RPC requests but over the same TCP connection. If both KMS responses contain the different ePIDs, the KMS server is not genuine. \fB-r1\fR is the default mode. \fB-r1\fR also ensures that all three ePIDs (Windows, Office 2010 and Office 2013) use the same OS build number and LCID (language id).
If vlmcsd has been started by an internet superserver, \fB-r1\fR works almost identically to \fB-r2\fR. The only exception occurs if you send more than one activation request over the same TCP connection. This is simply due to the fact that vlmcsd is started upon a connection request and does not stay in memory after servicing a KMS request. Consider using \fB-r0\fR or \fB-w\fR, \fB-0\fR, \fB-3\fR and \fB-6\fB when starting vlmcsd by an internet superserver.
If vlmcsd has been started by an internet superserver, \fB-r1\fR works almost identically to \fB-r2\fR. The only exception occurs if you send more than one activation request over the same TCP connection. This is simply due to the fact that vlmcsd is started upon a connection request and does not stay in memory after servicing a KMS request. Consider using \fB-r0\fR or \fB-w\fR, \fB-G\fR, \fB-0\fR, \fB-3\fR and \fB-6\fR when starting vlmcsd by an internet superserver.
\fB-r2\fR behaves like most other KMS server emulators with random support and generates a new random ePID on every request. \fB-r2\fR should be treated as debugging option only because it allows very easy emulator detection.
@ -321,13 +324,13 @@ If you used a pid file, it is not deleted and recreated because the process id s
If you used the 'user' and/or 'group' directive in an ini file these are ignored. This is because once you switched to lower privileged users and groups, there is no way back. Anything else would be a severe security flaw in the OS.
.RE
Signaling is not available in the native Windows version and in the Cygwin version when it runs as Windows service.
Signaling is not available in the native Windows version and in the Cygwin version when vlmcsd runs as a Windows service.
.SH SUPPORTED OPERATING SYSTEMS
\fBvlmcsd\fR compiles and runs on Linux, Windows (no Cygwin required but explicitly supported), Mac OS X, FreeBSD, NetBSD, OpenBSD, Dragonfly BSD, Minix, Solaris, OpenIndiana, Android and iOS. Other POSIX or unixoid OSses may work with unmodified sources or may require minor porting efforts.
.SH SUPPORTED PRODUCTS
\fBvlmcsd\fR can answer activation requests for the following products: Windows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (up to 1607), Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Office 2010, Project 2010, Visio 2010, Office 2013, Project 2013, Visio 2013, Office 2016, Project 2016, Visio 2016. Newer version may work as long as the KMS protocol does not change. A complete list of fully supported products can be obtained using the \fB-x\fR option of \fBvlmcs\fR(1).
\fBvlmcsd\fR can answer activation requests for the following products: Windows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (up to 1703), Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Office 2010, Project 2010, Visio 2010, Office 2013, Project 2013, Visio 2013, Office 2016, Project 2016, Visio 2016. Newer products may work as long as the KMS protocol does not change. A complete list of fully supported products can be obtained using the \fB-x\fR option of \fBvlmcs\fR(1).
.PP
Office, Project and Visio must be volume license versions.

View File

@ -36,7 +36,7 @@ DESCRIPTION
client on stdin that wants to be activated.
All options that control setting up listening sockets will be ignored
when in inetd mode. The sockets will be set up by your internet super
when in inetd mode. The sockets will be set up by your internet super-
server. You also cannot limit the number of simultanous clients (option
-m). You need to configure the limit in your internet superserver.
@ -49,14 +49,14 @@ DESCRIPTION
EPID Randomization Level 1 (option -r1) works like Level 2
(-r2). You may want to use Level 0 (-r0) or custom EPIDs
(options -w, -0, -3 and -6) instead.
(options -w, -G, -0, -3 and -6) instead.
OPTIONS
Since vlmcsd can be configured at compile time, some options may not be
available on your system.
All options that do no require an argument may be combined with a sin
All options that do no require an argument may be combined with a sin-
gle dash, for instance "vlmcsd -D -e" is identical to "vlmcsd -De". For
all options that require an argument a space between the option and the
option argument is optional. Thus "vlmcsd -r 2" and "vlmcsd -r2" are
@ -67,7 +67,7 @@ OPTIONS
Displays help.
-V Displays extended version information. This includes the com
-V Displays extended version information. This includes the com-
piler used to build vlmcsd, the intended platform and flags
(compile time options) to build vlmcsd. If you have the source
code of vlmcsd, you can type make help (or gmake help on systems
@ -103,7 +103,7 @@ OPTIONS
Sets the level of protection against activations from public IP
addresses. The default is -o0 for no protection.
-o1 causes vlmcsd not to listen on all IP addresses but on pri
-o1 causes vlmcsd not to listen on all IP addresses but on pri-
vate IP addresses only. IPv4 addresses in the 100.64.0.0/10
range (see RFC6598) are not treated as private since they can be
reached from other users of your ISP. Private IPv4 addresses are
@ -129,7 +129,7 @@ OPTIONS
a single byte sent over the connection. This protects against
clients with public IP addresses even if NAT port forwarding is
used. While -o2 offers a higher level of protection than -o1,
the client sees that the KMS TCP port (1688 by default) is actu
the client sees that the KMS TCP port (1688 by default) is actu-
ally accepting connections.
If vlmcsd is compiled to use MS RPC, -o2 can only offer very
@ -153,12 +153,12 @@ OPTIONS
-o1 (and thus -o3) is not (yet) available in some scenarios:
FreeBSD: There is a longtime unfixed bug https://
bugs.freebsd.org/bugzilla/show_bug.cgi?id=178881 in the
32-bit ABI of the 64-bit kernel. If you have a 64-bit Free
FreeBSD: There is a longtime unfixed bug <https://
bugs.freebsd.org/bugzilla/show_bug.cgi?id=178881> in the
32-bit ABI of the 64-bit kernel. If you have a 64-bit Free-
BSD kernel, you must run the 64-bit version of vlmcsd if
you use -o1 or -o3. The 32-bit version causes undefined
behavior up to crashing vlmcsd. Other BSDs (NetBSD, Open
behavior up to crashing vlmcsd. Other BSDs (NetBSD, Open-
BSD, Dragonfly and Mac OS X) work correctly.
If vlmcsd was started by an internet superserver or was
@ -168,7 +168,7 @@ OPTIONS
-P port
Use TCP port for all subsequent -L statements that do not
include an optional port. If you use -P and -L, -P must be spec
include an optional port. If you use -P and -L, -P must be spec-
ified before -L.
@ -178,18 +178,18 @@ OPTIONS
to the system. This allows product activation using a local
instance of vlmcsd. This feature is only available in Windows
and Cygwin builds of vlmcsd since it is not of any use on other
operating systems. Compatible VPN adapters are Tap-windows ver
operating systems. Compatible VPN adapters are Tap-windows ver-
sion 8.2 or higher (from OpenVPN) and the TeamViewer VPN
adapter. There are two special vpn-adapter-names. A single
period (.) instructs vlmcsd to use the first available compati
period (.) instructs vlmcsd to use the first available compati-
ble VPN adapter. A single dash (-) disables the use of a VPN
adapter if one has been configured in vlmcsd.ini(5). The vpn-
adapter-name is not case-sensitive. If the vpn-adapter-name con
adapter-name is not case-sensitive. If the vpn-adapter-name con-
tains spaces (e.g. Ethernet 3), you must enclose it in quotes.
The default ipv4-address is 10.10.10.9 and the default cidr-mask
is 30. If you are using the default values, your VPN adapter
uses an IPv4 address of 10.10.10.9 and you can set your activa
uses an IPv4 address of 10.10.10.9 and you can set your activa-
tion client to use the easy to remember address 10.10.10.10
(e.g. slmgr /skms 10.10.10.10 or cscript ospp.vbs
/sethst:10.10.10.10).
@ -204,7 +204,7 @@ OPTIONS
IPv4 configuration manually anyway, the IPv4 address and the
subnet mask must match the -O parameter. It is safe leave the
IPv4 configuration to automatic (DHCP). vlmcsd will wait up to
four seconds for the DHCP configuration to complete before bind
four seconds for the DHCP configuration to complete before bind-
ing to and listenin on any interfaces.
You should be aware that only one program can use a VPN adapter
@ -212,13 +212,13 @@ OPTIONS
you will not be able to use the VPN feature of TeamViewer as
long as vlmcsd is running. The same applies to OpenVPN TAP
adapters that are in use by other programs (for example OpenVPN,
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con-
flicts is to install Tap-Windows from OpenVPN, cd to C:\Program
Files\TAP-Windows\bin and run addtap.bat to install an addi
Files\TAP-Windows\bin and run addtap.bat to install an addi-
tional TAP adapter. Go to "Network Connections" and rename the
new adapter to "vlmcsd" and specify -O vlmcsd to use it.
Example: -O "Ethernet 7"=192.168.123.1/24 (uses VPN adapter Eth
Example: -O "Ethernet 7"=192.168.123.1/24 (uses VPN adapter Eth-
ernet 7 with IPv4 address 192.168.123.1 and have 192.168.123.2
to 192.168.123.254 as additional local (but apparently remote)
IPv4 addresses.
@ -227,7 +227,7 @@ OPTIONS
-x0 and -x1
Controls under what circumstances vlmcsd will exit. Using the
default of -x0 vlmcsd stays active as long as it can perform
some useful operations. If vlmcsd is run by any form of a watch
some useful operations. If vlmcsd is run by any form of a watch-
dog, e.g. NT service manager (Windows), systemd (Linux) or
launchd (Mac OS / iOS), it may be desirable to end vlmcsd and
let the watchdog restart it. This is especially true if some
@ -277,12 +277,12 @@ OPTIONS
-t seconds
Timeout the TCP connection with the client after seconds sec
Timeout the TCP connection with the client after seconds sec-
onds. After sending an activation request. RPC keeps the TCP
connection for a while. The default is 30 seconds. You may spec
connection for a while. The default is 30 seconds. You may spec-
ify a shorter period to free ressources on your device faster.
This is useful for devices with limited main memory or if you
used -m to limit the concurrent clients that may request activa
used -m to limit the concurrent clients that may request activa-
tion. Microsoft RPC clients disconnect after 30 seconds by
default. Setting seconds to a greater value does not make much
sense.
@ -293,7 +293,7 @@ OPTIONS
This is useful for devices with limited ressources or if you are
experiencing DoS attacks that spawn thousands of threads or
forked processes. If additional clients connect to vlmcsd, they
need to wait until another client disconnects. If you set con
need to wait until another client disconnects. If you set con-
current-clients to a small value ( <10 ), you should also select
a reasonable timeout of 2 or 3 seconds with -t. The default is
no limit.
@ -317,7 +317,7 @@ OPTIONS
Disables (-N0) or enables (-N1) the use of the NDR64 transfer
syntax in the RPC protocol. Unlike Microsoft vlmcsd supports
NDR64 on 32-bit operating systems. Microsoft introduced NDR64 in
Windows Vista but their KMS servers started using it with Win
Windows Vista but their KMS servers started using it with Win-
dows 8. Thus if you choose random ePIDs, vlmcsd will select
ePIDs with build numbers 9200 and 9600 if you enable NDR64 and
build numbers 6002 and 7601 if you disable NDR64. The default is
@ -326,10 +326,10 @@ OPTIONS
-B0 and -B1
Disables (-B0) or enables (-B1) bind time feature negotiation
(BTFN) in the RPC protocol. All Windows operating systems start
ing with Vista support BTFN and try to negotiate it when initi
(BTFN) in the RPC protocol. All Windows operating systems start-
ing with Vista support BTFN and try to negotiate it when initi-
ating an RPC connection. Thus consider turning it off as a debug
/ troubleshooting feature only. Some older firewalls that selec
/ troubleshooting feature only. Some older firewalls that selec-
tively block or redirect RPC traffic may get confused when they
detect NDR64 or BTFN.
@ -343,7 +343,7 @@ OPTIONS
If you use the special filename "syslog", vlmcsd uses syslog(3)
for logging. If your system has no syslog service (/dev/log)
installed, logging output will go to /dev/console. Syslog log
installed, logging output will go to /dev/console. Syslog log-
ging is not available in the native Windows version. The Cygwin
version does support syslog logging.
@ -351,7 +351,7 @@ OPTIONS
-T0 and -T1
Disable (-T0) or enable (-T1) the inclusion of date and time in
each line of the log. The default is -T1. -T0 is useful if you
log to stdout(3) which is redirected to another logging mecha
log to stdout(3) which is redirected to another logging mecha-
nism that already includes date and time in its output, for
instance systemd-journald(8). If you log to syslog(3), -T1 is
ignored and date and time will never be included in the output
@ -376,15 +376,15 @@ OPTIONS
-v Use verbose logging. Logs every parameter of the base request
and the base response. It also logs the HWID of the KMS server
if KMS protocol version 6 is used. This option is mainly for
debugging purposes. It only has an effect if some form of log
debugging purposes. It only has an effect if some form of log-
ging is used. Thus -v does not make sense if not used with -l,
-e or -f.
-q Do not use verbose logging. This is actually the default behav
-q Do not use verbose logging. This is actually the default behav-
ior. It only makes sense if you use vlmcsd with an ini file (see
-i and vlmcsd.ini(5)). If the ini file contains the line
"LogVerbose = true" you can use -q to restore the default behav
"LogVerbose = true" you can use -q to restore the default behav-
ior.
@ -434,6 +434,12 @@ OPTIONS
specified, -r is disregarded for Office 2016.
-G ePID
Use ePID as Windows China Government ePID. If specified, -r is
disregarded for Windows China Government Editions (Enterprise
G/GN).
-H HwId
Use HwId for all products. All HWIDs in the ini file (see -i)
will not be used. In an ini file you can specify a seperate HWID
@ -451,7 +457,7 @@ OPTIONS
-i filename
Use configuration file (aka ini file) filename. Most configura
Use configuration file (aka ini file) filename. Most configura-
tion parameters can be set either via the command line or an ini
file. The command line always has precedence over configuration
items in the ini file. See vlmcsd.ini(5) for the format of the
@ -465,7 +471,7 @@ OPTIONS
-j filename
Use KMS data file filename. By default vlmcsd only contains the
minimum product data that is required to perform all operations
correctly. You may use a more complete KMS data file that con
correctly. You may use a more complete KMS data file that con-
tains all detailed product names. This is especially useful if
you are logging KMS requests. If you don't log, there is no need
to load an external KMS data file.
@ -506,8 +512,8 @@ OPTIONS
more than one activation request over the same TCP connection.
This is simply due to the fact that vlmcsd is started upon a
connection request and does not stay in memory after servicing a
KMS request. Consider using -r0 or -w, -0, -3 and -6 when start
ing vlmcsd by an internet superserver.
KMS request. Consider using -r0 or -w, -G, -0, -3 and -6 when
starting vlmcsd by an internet superserver.
-r2 behaves like most other KMS server emulators with random
support and generates a new random ePID on every request. -r2
@ -526,8 +532,8 @@ OPTIONS
by .NET Framework 4.0. This may lead to a locale id which is
unlikely to occur in your country, for instance 2155 for "Quecha
- Ecuador". You may want to select the locale id of your country
instead. See MSDN http://msdn.microsoft.com/en-us/goglobal/
bb964664.aspx for a list of valid LCIDs. Please note that some
instead. See MSDN <http://msdn.microsoft.com/en-us/goglobal/
bb964664.aspx> for a list of valid LCIDs. Please note that some
of them are not recognized by .NET Framework 4.0.
Most other KMS emulators use a fixed LCID of 1033 (English -
@ -570,29 +576,29 @@ OPTIONS
-M0 and -M1
Disables (-M0) or enables (-M1) maintaining a list of client
machine IDs (CMIDs). The default is -M0. -M1 is useful to pre
machine IDs (CMIDs). The default is -M0. -M1 is useful to pre-
vent emulator detection. By maintaing a CMID list, vlmcsd
reports current active clients exactly like a genuine KMS emula
reports current active clients exactly like a genuine KMS emula-
tor. This includes bug compatibility to the extent that you can
permanently kill a genuine KMS emulator by sending an "over
permanently kill a genuine KMS emulator by sending an "over-
charge request" with a required client count of 376 or more and
then request activation for 671 clients. vlmcsd can be reset
from this condition by restarting it. If -M0 is used, vlmcsd
reports current active clients as good as possible. If no client
sends an "overcharge request", it is not possible to detect vlm
sends an "overcharge request", it is not possible to detect vlm-
csd as an emulator with -M0. -M1 requires the allocation of a
buffer that is about 50 kB in size. On hardware with few memory
resources use it only if you really need it.
If you start vlmcsd from an internet superserver, -M1 cannot be
used. Since vlmcsd exits after each activation, it cannot main
used. Since vlmcsd exits after each activation, it cannot main-
tain any state in memory.
-E0 and -E1
These options are ignored if you do not also specify -M1. If you
use -E0 (the default), vlmcsd starts up as a fully "charged" KMS
server. Clients activate immediately. -E1 lets you start up vlm
server. Clients activate immediately. -E1 lets you start up vlm-
csd with an empty CMID list. Activation will start when the
required minimum clients (25 for Windows Client OSses, 5 for
Windows Server OSses and Office) have registered with the KMS
@ -609,7 +615,7 @@ OPTIONS
-R renewal-interval
Instructs clients to renew activation every renewal-interval.
The renewal-interval is a number optionally immediately followed
by a letter indicating the unit. Valid unit letters are s (sec
by a letter indicating the unit. Valid unit letters are s (sec-
onds), m (minutes), h (hours), d (days) and w (weeks). If you do
not specify a letter, minutes is assumed.
@ -623,14 +629,14 @@ OPTIONS
before your activation expires (usually 180 days).
Even though you can specify seconds, the granularity of this
option is 1 minute. Seconds are rounded down to the next multi
option is 1 minute. Seconds are rounded down to the next multi-
ple of 60.
-A activation-interval
Instructs clients to retry activation every activation-interval
if it was unsuccessful, e.g. because it could not reach the
server. The default is 120 (identical to 2h). activation-inter
server. The default is 120 (identical to 2h). activation-inter-
val follows the same syntax as renewal-interval in the -R
option.
@ -639,7 +645,7 @@ OPTIONS
with the native Windows version and Cygwin. Combine -s with
other command line options. These will be in effect when you
start the service. The service automatically starts when you
reboot your machine. To start it manually, type "net start vlm
reboot your machine. To start it manually, type "net start vlm-
csd".
If you use Cygwin, you must include your Cygwin system DLL
@ -656,35 +662,35 @@ OPTIONS
on your system.
-S Uninstalls the vlmcsd service. Works only with the native Win
-S Uninstalls the vlmcsd service. Works only with the native Win-
dows version and Cygwin. All other options will be ignored if
you include -S in the command line.
-U [domain\]username
Can only be used together with -s. Starts the service as a dif
Can only be used together with -s. Starts the service as a dif-
ferent user than the local SYSTEM account. This is used to run
the service under an account with low privileges. If you omit
the domain, an account from the local computer will be used.
You may use "NT AUTHORITY\NetworkService". This is a pseudo user
with low privileges. You may also use "NT AUTHORITY\LocalSer
vice" which has more privileges but these are of no use for run
with low privileges. You may also use "NT AUTHORITY\LocalSer-
vice" which has more privileges but these are of no use for run-
ning vlmcsd.
Make sure that the user you specify has at least execute permis
Make sure that the user you specify has at least execute permis-
sion for your executable. "NT AUTHORITY\NetworkService" normally
has no permission to run binaries from your home directory.
For your convenience you can use the special username "/l" as a
shortcut for "NT AUTHORITY\LocalService" and "/n" for "NT
AUTHORITY\NetworkService". "vlmcsd -s -U /n" installs the ser
AUTHORITY\NetworkService". "vlmcsd -s -U /n" installs the ser-
vice to run as "NT AUTHORITY\NetworkService".
-W password
Can only be used together with -s. Specifies a password for the
corresponding username you use with -U. SYSTEM, "NT AUTHOR
corresponding username you use with -U. SYSTEM, "NT AUTHOR-
ITY\NetworkService", "NT AUTHORITY\LocalService" do not require
a password.
@ -698,7 +704,7 @@ SIGNALS
SIGTERM, SIGINT
These signals cause vlmcsd to exit gracefully. All global sema
These signals cause vlmcsd to exit gracefully. All global sema-
phores and shared memory pages will be released, the pid file
will be unlinked (deleted) and a shutdown message will be
logged.
@ -707,7 +713,7 @@ SIGNALS
SIGHUP Causes vlmcsd to be restarted completely. This is useful if you
started vlmcsd with an ini file. You can modify the ini file
while vlmcsd is running and then sending SIGHUP, e.g. by typing
"killall -SIGHUP vlmcsd" or "kill -SIGHUP `cat /var/run/vlm
"killall -SIGHUP vlmcsd" or "kill -SIGHUP `cat /var/run/vlm-
csd.pid`".
The SIGHUP handler has been implemented relatively simple. It is
@ -715,18 +721,18 @@ SIGNALS
immediately with the following exceptions:
The new process does not get a new process id.
-- The new process does not get a new process id.
If you used a pid file, it is not deleted and recreated
-- If you used a pid file, it is not deleted and recreated
because the process id stays the same.
If you used the 'user' and/or 'group' directive in an ini
-- If you used the 'user' and/or 'group' directive in an ini
file these are ignored. This is because once you switched to
lower privileged users and groups, there is no way back. Any
lower privileged users and groups, there is no way back. Any-
thing else would be a severe security flaw in the OS.
Signaling is not available in the native Windows version and in the
Cygwin version when it runs as Windows service.
Cygwin version when vlmcsd runs as a Windows service.
SUPPORTED OPERATING SYSTEMS
@ -738,12 +744,12 @@ SUPPORTED OPERATING SYSTEMS
SUPPORTED PRODUCTS
vlmcsd can answer activation requests for the following products: Win
dows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (up to 1607),
Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Win
vlmcsd can answer activation requests for the following products: Win-
dows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (up to 1703),
Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Win-
dows Server 2012 R2, Windows Server 2016, Office 2010, Project 2010,
Visio 2010, Office 2013, Project 2013, Visio 2013, Office 2016, Project
2016, Visio 2016. Newer version may work as long as the KMS protocol
2016, Visio 2016. Newer products may work as long as the KMS protocol
does not change. A complete list of fully supported products can be
obtained using the -x option of vlmcs(1).
@ -762,13 +768,13 @@ EXAMPLES
vlmcsd -l /var/log/vlmcsd.log
Starts vlmcsd as a daemon and logs everything to /var/log/vlm
Starts vlmcsd as a daemon and logs everything to /var/log/vlm-
csd.log.
vlmcsd -L 192.168.1.17
Starts vlmcsd as a daemon and listens on IP address 192.168.1.17
only. This is useful for routers that have a public and a pri
only. This is useful for routers that have a public and a pri-
vate IP address to prevent your KMS server from becoming public.
@ -788,7 +794,7 @@ AUTHOR
CREDITS
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati-
borus, ...
@ -797,4 +803,4 @@ SEE ALSO
Hotbird64 January 2017 VLMCSD(8)
Hotbird64 June 2017 VLMCSD(8)

View File

@ -1,5 +1,5 @@
<!-- Creator : groff version 1.22.3 -->
<!-- CreationDate: Thu Jan 19 21:29:26 2017 -->
<!-- CreationDate: Sat Jun 17 00:53:29 2017 -->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
@ -108,8 +108,8 @@ maintain a client list (option <b>-M1</b>)</p>
<p style="margin-left:22%; margin-top: 1em">EPID
Randomization Level 1 (option <b>-r1</b>) works like Level 2
(<b>-r2</b>). You may want to use Level 0 (<b>-r0</b>) or
custom EPIDs (options <b>-w</b>, <b>-0</b>, <b>-3</b> and
<b>-6</b>) instead.</p>
custom EPIDs (options <b>-w</b>, <b>-G</b>, <b>-0</b>,
<b>-3</b> and <b>-6</b>) instead.</p>
<h2>OPTIONS
<a name="OPTIONS"></a>
@ -640,6 +640,13 @@ is disregarded for Office 2013.</p>
ePID (including Project and Visio). If specified, <b>-r</b>
is disregarded for Office 2016.</p>
<p style="margin-left:11%;"><b>-G</b> <i>ePID</i></p>
<p style="margin-left:22%;">Use <i>ePID</i> as Windows
China Government ePID. If specified, <b>-r</b> is
disregarded for Windows China Government Editions
(Enterprise G/GN).</p>
<p style="margin-left:11%;"><b>-H</b> <i>HwId</i></p>
<p style="margin-left:22%;">Use <i>HwId</i> for all
@ -729,8 +736,9 @@ if you send more than one activation request over the same
TCP connection. This is simply due to the fact that vlmcsd
is started upon a connection request and does not stay in
memory after servicing a KMS request. Consider using
<b>-r0</b> or <b>-w</b>, <b>-0</b>, <b>-3</b> and <b>-6 when
starting vlmcsd by an internet superserver.</b></p>
<b>-r0</b> or <b>-w</b>, <b>-G</b>, <b>-0</b>, <b>-3</b> and
<b>-6</b> when starting vlmcsd by an internet
superserver.</p>
<p style="margin-left:22%; margin-top: 1em"><b>-r2</b>
behaves like most other KMS server emulators with random
@ -1073,7 +1081,7 @@ else would be a severe security flaw in the OS.</p></td></tr>
<p style="margin-left:11%; margin-top: 1em">Signaling is
not available in the native Windows version and in the
Cygwin version when it runs as Windows service.</p>
Cygwin version when vlmcsd runs as a Windows service.</p>
<h2>SUPPORTED OPERATING SYSTEMS
<a name="SUPPORTED OPERATING SYSTEMS"></a>
@ -1095,11 +1103,11 @@ sources or may require minor porting efforts.</p>
<p style="margin-left:11%; margin-top: 1em"><b>vlmcsd</b>
can answer activation requests for the following products:
Windows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10
(up to 1607), Windows Server 2008, Windows Server 2008 R2,
(up to 1703), Windows Server 2008, Windows Server 2008 R2,
Windows Server 2012, Windows Server 2012 R2, Windows Server
2016, Office 2010, Project 2010, Visio 2010, Office 2013,
Project 2013, Visio 2013, Office 2016, Project 2016, Visio
2016. Newer version may work as long as the KMS protocol
2016. Newer products may work as long as the KMS protocol
does not change. A complete list of fully supported products
can be obtained using the <b>-x</b> option of
<b>vlmcs</b>(1).</p>

Binary file not shown.

View File

@ -36,7 +36,7 @@ DESCRIPTION
client on stdin that wants to be activated.
All options that control setting up listening sockets will be ignored
when in inetd mode. The sockets will be set up by your internet super
when in inetd mode. The sockets will be set up by your internet super-
server. You also cannot limit the number of simultanous clients (option
-m). You need to configure the limit in your internet superserver.
@ -49,14 +49,14 @@ DESCRIPTION
EPID Randomization Level 1 (option -r1) works like Level 2
(-r2). You may want to use Level 0 (-r0) or custom EPIDs
(options -w, -0, -3 and -6) instead.
(options -w, -G, -0, -3 and -6) instead.
OPTIONS
Since vlmcsd can be configured at compile time, some options may not be
available on your system.
All options that do no require an argument may be combined with a sin
All options that do no require an argument may be combined with a sin-
gle dash, for instance "vlmcsd -D -e" is identical to "vlmcsd -De". For
all options that require an argument a space between the option and the
option argument is optional. Thus "vlmcsd -r 2" and "vlmcsd -r2" are
@ -67,7 +67,7 @@ OPTIONS
Displays help.
-V Displays extended version information. This includes the com
-V Displays extended version information. This includes the com-
piler used to build vlmcsd, the intended platform and flags
(compile time options) to build vlmcsd. If you have the source
code of vlmcsd, you can type make help (or gmake help on systems
@ -103,7 +103,7 @@ OPTIONS
Sets the level of protection against activations from public IP
addresses. The default is -o0 for no protection.
-o1 causes vlmcsd not to listen on all IP addresses but on pri
-o1 causes vlmcsd not to listen on all IP addresses but on pri-
vate IP addresses only. IPv4 addresses in the 100.64.0.0/10
range (see RFC6598) are not treated as private since they can be
reached from other users of your ISP. Private IPv4 addresses are
@ -129,7 +129,7 @@ OPTIONS
a single byte sent over the connection. This protects against
clients with public IP addresses even if NAT port forwarding is
used. While -o2 offers a higher level of protection than -o1,
the client sees that the KMS TCP port (1688 by default) is actu
the client sees that the KMS TCP port (1688 by default) is actu-
ally accepting connections.
If vlmcsd is compiled to use MS RPC, -o2 can only offer very
@ -153,12 +153,12 @@ OPTIONS
-o1 (and thus -o3) is not (yet) available in some scenarios:
FreeBSD: There is a longtime unfixed bug https://
bugs.freebsd.org/bugzilla/show_bug.cgi?id=178881 in the
32-bit ABI of the 64-bit kernel. If you have a 64-bit Free
FreeBSD: There is a longtime unfixed bug <https://
bugs.freebsd.org/bugzilla/show_bug.cgi?id=178881> in the
32-bit ABI of the 64-bit kernel. If you have a 64-bit Free-
BSD kernel, you must run the 64-bit version of vlmcsd if
you use -o1 or -o3. The 32-bit version causes undefined
behavior up to crashing vlmcsd. Other BSDs (NetBSD, Open
behavior up to crashing vlmcsd. Other BSDs (NetBSD, Open-
BSD, Dragonfly and Mac OS X) work correctly.
If vlmcsd was started by an internet superserver or was
@ -168,7 +168,7 @@ OPTIONS
-P port
Use TCP port for all subsequent -L statements that do not
include an optional port. If you use -P and -L, -P must be spec
include an optional port. If you use -P and -L, -P must be spec-
ified before -L.
@ -178,18 +178,18 @@ OPTIONS
to the system. This allows product activation using a local
instance of vlmcsd. This feature is only available in Windows
and Cygwin builds of vlmcsd since it is not of any use on other
operating systems. Compatible VPN adapters are Tap-windows ver
operating systems. Compatible VPN adapters are Tap-windows ver-
sion 8.2 or higher (from OpenVPN) and the TeamViewer VPN
adapter. There are two special vpn-adapter-names. A single
period (.) instructs vlmcsd to use the first available compati
period (.) instructs vlmcsd to use the first available compati-
ble VPN adapter. A single dash (-) disables the use of a VPN
adapter if one has been configured in vlmcsd.ini(5). The vpn-
adapter-name is not case-sensitive. If the vpn-adapter-name con
adapter-name is not case-sensitive. If the vpn-adapter-name con-
tains spaces (e.g. Ethernet 3), you must enclose it in quotes.
The default ipv4-address is 10.10.10.9 and the default cidr-mask
is 30. If you are using the default values, your VPN adapter
uses an IPv4 address of 10.10.10.9 and you can set your activa
uses an IPv4 address of 10.10.10.9 and you can set your activa-
tion client to use the easy to remember address 10.10.10.10
(e.g. slmgr /skms 10.10.10.10 or cscript ospp.vbs
/sethst:10.10.10.10).
@ -204,7 +204,7 @@ OPTIONS
IPv4 configuration manually anyway, the IPv4 address and the
subnet mask must match the -O parameter. It is safe leave the
IPv4 configuration to automatic (DHCP). vlmcsd will wait up to
four seconds for the DHCP configuration to complete before bind
four seconds for the DHCP configuration to complete before bind-
ing to and listenin on any interfaces.
You should be aware that only one program can use a VPN adapter
@ -212,13 +212,13 @@ OPTIONS
you will not be able to use the VPN feature of TeamViewer as
long as vlmcsd is running. The same applies to OpenVPN TAP
adapters that are in use by other programs (for example OpenVPN,
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con-
flicts is to install Tap-Windows from OpenVPN, cd to C:\Program
Files\TAP-Windows\bin and run addtap.bat to install an addi
Files\TAP-Windows\bin and run addtap.bat to install an addi-
tional TAP adapter. Go to "Network Connections" and rename the
new adapter to "vlmcsd" and specify -O vlmcsd to use it.
Example: -O "Ethernet 7"=192.168.123.1/24 (uses VPN adapter Eth
Example: -O "Ethernet 7"=192.168.123.1/24 (uses VPN adapter Eth-
ernet 7 with IPv4 address 192.168.123.1 and have 192.168.123.2
to 192.168.123.254 as additional local (but apparently remote)
IPv4 addresses.
@ -227,7 +227,7 @@ OPTIONS
-x0 and -x1
Controls under what circumstances vlmcsd will exit. Using the
default of -x0 vlmcsd stays active as long as it can perform
some useful operations. If vlmcsd is run by any form of a watch
some useful operations. If vlmcsd is run by any form of a watch-
dog, e.g. NT service manager (Windows), systemd (Linux) or
launchd (Mac OS / iOS), it may be desirable to end vlmcsd and
let the watchdog restart it. This is especially true if some
@ -277,12 +277,12 @@ OPTIONS
-t seconds
Timeout the TCP connection with the client after seconds sec
Timeout the TCP connection with the client after seconds sec-
onds. After sending an activation request. RPC keeps the TCP
connection for a while. The default is 30 seconds. You may spec
connection for a while. The default is 30 seconds. You may spec-
ify a shorter period to free ressources on your device faster.
This is useful for devices with limited main memory or if you
used -m to limit the concurrent clients that may request activa
used -m to limit the concurrent clients that may request activa-
tion. Microsoft RPC clients disconnect after 30 seconds by
default. Setting seconds to a greater value does not make much
sense.
@ -293,7 +293,7 @@ OPTIONS
This is useful for devices with limited ressources or if you are
experiencing DoS attacks that spawn thousands of threads or
forked processes. If additional clients connect to vlmcsd, they
need to wait until another client disconnects. If you set con
need to wait until another client disconnects. If you set con-
current-clients to a small value ( <10 ), you should also select
a reasonable timeout of 2 or 3 seconds with -t. The default is
no limit.
@ -317,7 +317,7 @@ OPTIONS
Disables (-N0) or enables (-N1) the use of the NDR64 transfer
syntax in the RPC protocol. Unlike Microsoft vlmcsd supports
NDR64 on 32-bit operating systems. Microsoft introduced NDR64 in
Windows Vista but their KMS servers started using it with Win
Windows Vista but their KMS servers started using it with Win-
dows 8. Thus if you choose random ePIDs, vlmcsd will select
ePIDs with build numbers 9200 and 9600 if you enable NDR64 and
build numbers 6002 and 7601 if you disable NDR64. The default is
@ -326,10 +326,10 @@ OPTIONS
-B0 and -B1
Disables (-B0) or enables (-B1) bind time feature negotiation
(BTFN) in the RPC protocol. All Windows operating systems start
ing with Vista support BTFN and try to negotiate it when initi
(BTFN) in the RPC protocol. All Windows operating systems start-
ing with Vista support BTFN and try to negotiate it when initi-
ating an RPC connection. Thus consider turning it off as a debug
/ troubleshooting feature only. Some older firewalls that selec
/ troubleshooting feature only. Some older firewalls that selec-
tively block or redirect RPC traffic may get confused when they
detect NDR64 or BTFN.
@ -343,7 +343,7 @@ OPTIONS
If you use the special filename "syslog", vlmcsd uses syslog(3)
for logging. If your system has no syslog service (/dev/log)
installed, logging output will go to /dev/console. Syslog log
installed, logging output will go to /dev/console. Syslog log-
ging is not available in the native Windows version. The Cygwin
version does support syslog logging.
@ -351,7 +351,7 @@ OPTIONS
-T0 and -T1
Disable (-T0) or enable (-T1) the inclusion of date and time in
each line of the log. The default is -T1. -T0 is useful if you
log to stdout(3) which is redirected to another logging mecha
log to stdout(3) which is redirected to another logging mecha-
nism that already includes date and time in its output, for
instance systemd-journald(8). If you log to syslog(3), -T1 is
ignored and date and time will never be included in the output
@ -376,15 +376,15 @@ OPTIONS
-v Use verbose logging. Logs every parameter of the base request
and the base response. It also logs the HWID of the KMS server
if KMS protocol version 6 is used. This option is mainly for
debugging purposes. It only has an effect if some form of log
debugging purposes. It only has an effect if some form of log-
ging is used. Thus -v does not make sense if not used with -l,
-e or -f.
-q Do not use verbose logging. This is actually the default behav
-q Do not use verbose logging. This is actually the default behav-
ior. It only makes sense if you use vlmcsd with an ini file (see
-i and vlmcsd.ini(5)). If the ini file contains the line
"LogVerbose = true" you can use -q to restore the default behav
"LogVerbose = true" you can use -q to restore the default behav-
ior.
@ -434,6 +434,12 @@ OPTIONS
specified, -r is disregarded for Office 2016.
-G ePID
Use ePID as Windows China Government ePID. If specified, -r is
disregarded for Windows China Government Editions (Enterprise
G/GN).
-H HwId
Use HwId for all products. All HWIDs in the ini file (see -i)
will not be used. In an ini file you can specify a seperate HWID
@ -451,7 +457,7 @@ OPTIONS
-i filename
Use configuration file (aka ini file) filename. Most configura
Use configuration file (aka ini file) filename. Most configura-
tion parameters can be set either via the command line or an ini
file. The command line always has precedence over configuration
items in the ini file. See vlmcsd.ini(5) for the format of the
@ -465,7 +471,7 @@ OPTIONS
-j filename
Use KMS data file filename. By default vlmcsd only contains the
minimum product data that is required to perform all operations
correctly. You may use a more complete KMS data file that con
correctly. You may use a more complete KMS data file that con-
tains all detailed product names. This is especially useful if
you are logging KMS requests. If you don't log, there is no need
to load an external KMS data file.
@ -506,8 +512,8 @@ OPTIONS
more than one activation request over the same TCP connection.
This is simply due to the fact that vlmcsd is started upon a
connection request and does not stay in memory after servicing a
KMS request. Consider using -r0 or -w, -0, -3 and -6 when start
ing vlmcsd by an internet superserver.
KMS request. Consider using -r0 or -w, -G, -0, -3 and -6 when
starting vlmcsd by an internet superserver.
-r2 behaves like most other KMS server emulators with random
support and generates a new random ePID on every request. -r2
@ -526,8 +532,8 @@ OPTIONS
by .NET Framework 4.0. This may lead to a locale id which is
unlikely to occur in your country, for instance 2155 for "Quecha
- Ecuador". You may want to select the locale id of your country
instead. See MSDN http://msdn.microsoft.com/en-us/goglobal/
bb964664.aspx for a list of valid LCIDs. Please note that some
instead. See MSDN <http://msdn.microsoft.com/en-us/goglobal/
bb964664.aspx> for a list of valid LCIDs. Please note that some
of them are not recognized by .NET Framework 4.0.
Most other KMS emulators use a fixed LCID of 1033 (English -
@ -570,29 +576,29 @@ OPTIONS
-M0 and -M1
Disables (-M0) or enables (-M1) maintaining a list of client
machine IDs (CMIDs). The default is -M0. -M1 is useful to pre
machine IDs (CMIDs). The default is -M0. -M1 is useful to pre-
vent emulator detection. By maintaing a CMID list, vlmcsd
reports current active clients exactly like a genuine KMS emula
reports current active clients exactly like a genuine KMS emula-
tor. This includes bug compatibility to the extent that you can
permanently kill a genuine KMS emulator by sending an "over
permanently kill a genuine KMS emulator by sending an "over-
charge request" with a required client count of 376 or more and
then request activation for 671 clients. vlmcsd can be reset
from this condition by restarting it. If -M0 is used, vlmcsd
reports current active clients as good as possible. If no client
sends an "overcharge request", it is not possible to detect vlm
sends an "overcharge request", it is not possible to detect vlm-
csd as an emulator with -M0. -M1 requires the allocation of a
buffer that is about 50 kB in size. On hardware with few memory
resources use it only if you really need it.
If you start vlmcsd from an internet superserver, -M1 cannot be
used. Since vlmcsd exits after each activation, it cannot main
used. Since vlmcsd exits after each activation, it cannot main-
tain any state in memory.
-E0 and -E1
These options are ignored if you do not also specify -M1. If you
use -E0 (the default), vlmcsd starts up as a fully "charged" KMS
server. Clients activate immediately. -E1 lets you start up vlm
server. Clients activate immediately. -E1 lets you start up vlm-
csd with an empty CMID list. Activation will start when the
required minimum clients (25 for Windows Client OSses, 5 for
Windows Server OSses and Office) have registered with the KMS
@ -609,7 +615,7 @@ OPTIONS
-R renewal-interval
Instructs clients to renew activation every renewal-interval.
The renewal-interval is a number optionally immediately followed
by a letter indicating the unit. Valid unit letters are s (sec
by a letter indicating the unit. Valid unit letters are s (sec-
onds), m (minutes), h (hours), d (days) and w (weeks). If you do
not specify a letter, minutes is assumed.
@ -623,14 +629,14 @@ OPTIONS
before your activation expires (usually 180 days).
Even though you can specify seconds, the granularity of this
option is 1 minute. Seconds are rounded down to the next multi
option is 1 minute. Seconds are rounded down to the next multi-
ple of 60.
-A activation-interval
Instructs clients to retry activation every activation-interval
if it was unsuccessful, e.g. because it could not reach the
server. The default is 120 (identical to 2h). activation-inter
server. The default is 120 (identical to 2h). activation-inter-
val follows the same syntax as renewal-interval in the -R
option.
@ -639,7 +645,7 @@ OPTIONS
with the native Windows version and Cygwin. Combine -s with
other command line options. These will be in effect when you
start the service. The service automatically starts when you
reboot your machine. To start it manually, type "net start vlm
reboot your machine. To start it manually, type "net start vlm-
csd".
If you use Cygwin, you must include your Cygwin system DLL
@ -656,35 +662,35 @@ OPTIONS
on your system.
-S Uninstalls the vlmcsd service. Works only with the native Win
-S Uninstalls the vlmcsd service. Works only with the native Win-
dows version and Cygwin. All other options will be ignored if
you include -S in the command line.
-U [domain\]username
Can only be used together with -s. Starts the service as a dif
Can only be used together with -s. Starts the service as a dif-
ferent user than the local SYSTEM account. This is used to run
the service under an account with low privileges. If you omit
the domain, an account from the local computer will be used.
You may use "NT AUTHORITY\NetworkService". This is a pseudo user
with low privileges. You may also use "NT AUTHORITY\LocalSer
vice" which has more privileges but these are of no use for run
with low privileges. You may also use "NT AUTHORITY\LocalSer-
vice" which has more privileges but these are of no use for run-
ning vlmcsd.
Make sure that the user you specify has at least execute permis
Make sure that the user you specify has at least execute permis-
sion for your executable. "NT AUTHORITY\NetworkService" normally
has no permission to run binaries from your home directory.
For your convenience you can use the special username "/l" as a
shortcut for "NT AUTHORITY\LocalService" and "/n" for "NT
AUTHORITY\NetworkService". "vlmcsd -s -U /n" installs the ser
AUTHORITY\NetworkService". "vlmcsd -s -U /n" installs the ser-
vice to run as "NT AUTHORITY\NetworkService".
-W password
Can only be used together with -s. Specifies a password for the
corresponding username you use with -U. SYSTEM, "NT AUTHOR
corresponding username you use with -U. SYSTEM, "NT AUTHOR-
ITY\NetworkService", "NT AUTHORITY\LocalService" do not require
a password.
@ -698,7 +704,7 @@ SIGNALS
SIGTERM, SIGINT
These signals cause vlmcsd to exit gracefully. All global sema
These signals cause vlmcsd to exit gracefully. All global sema-
phores and shared memory pages will be released, the pid file
will be unlinked (deleted) and a shutdown message will be
logged.
@ -707,7 +713,7 @@ SIGNALS
SIGHUP Causes vlmcsd to be restarted completely. This is useful if you
started vlmcsd with an ini file. You can modify the ini file
while vlmcsd is running and then sending SIGHUP, e.g. by typing
"killall -SIGHUP vlmcsd" or "kill -SIGHUP `cat /var/run/vlm
"killall -SIGHUP vlmcsd" or "kill -SIGHUP `cat /var/run/vlm-
csd.pid`".
The SIGHUP handler has been implemented relatively simple. It is
@ -715,18 +721,18 @@ SIGNALS
immediately with the following exceptions:
The new process does not get a new process id.
-- The new process does not get a new process id.
If you used a pid file, it is not deleted and recreated
-- If you used a pid file, it is not deleted and recreated
because the process id stays the same.
If you used the 'user' and/or 'group' directive in an ini
-- If you used the 'user' and/or 'group' directive in an ini
file these are ignored. This is because once you switched to
lower privileged users and groups, there is no way back. Any
lower privileged users and groups, there is no way back. Any-
thing else would be a severe security flaw in the OS.
Signaling is not available in the native Windows version and in the
Cygwin version when it runs as Windows service.
Cygwin version when vlmcsd runs as a Windows service.
SUPPORTED OPERATING SYSTEMS
@ -738,12 +744,12 @@ SUPPORTED OPERATING SYSTEMS
SUPPORTED PRODUCTS
vlmcsd can answer activation requests for the following products: Win
dows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (up to 1607),
Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Win
vlmcsd can answer activation requests for the following products: Win-
dows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (up to 1703),
Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Win-
dows Server 2012 R2, Windows Server 2016, Office 2010, Project 2010,
Visio 2010, Office 2013, Project 2013, Visio 2013, Office 2016, Project
2016, Visio 2016. Newer version may work as long as the KMS protocol
2016, Visio 2016. Newer products may work as long as the KMS protocol
does not change. A complete list of fully supported products can be
obtained using the -x option of vlmcs(1).
@ -762,13 +768,13 @@ EXAMPLES
vlmcsd -l /var/log/vlmcsd.log
Starts vlmcsd as a daemon and logs everything to /var/log/vlm
Starts vlmcsd as a daemon and logs everything to /var/log/vlm-
csd.log.
vlmcsd -L 192.168.1.17
Starts vlmcsd as a daemon and listens on IP address 192.168.1.17
only. This is useful for routers that have a public and a pri
only. This is useful for routers that have a public and a pri-
vate IP address to prevent your KMS server from becoming public.
@ -788,7 +794,7 @@ AUTHOR
CREDITS
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati-
borus, ...
@ -797,4 +803,4 @@ SEE ALSO
Hotbird64 January 2017 VLMCSD(8)
Hotbird64 June 2017 VLMCSD(8)

View File

@ -1,4 +1,4 @@
.TH VLMCSD.INI 5 "January 2017" "Hotbird64" "KMS Activation Manual"
.TH VLMCSD.INI 5 "May 2017" "Hotbird64" "KMS Activation Manual"
.LO 8
.SH NAME
@ -190,6 +190,9 @@ The \fIargument\fR has the form \fIePID\fR [ / \fIHwId\fR ]. Always use \fIePID\
.IP "\fBOffice2016\fR"
The \fIargument\fR has the form \fIePID\fR [ / \fIHwId\fR ]. Always use \fIePID\fR and \fIHwId\fR for Office 2016 activations. If specified, \fBRandomizationLevel\fR for Office 2016 activitations will be ignored.
.IP "\fBWinChinaGov\fR"
The \fIargument\fR has the form \fIePID\fR [ / \fIHwId\fR ]. Always use \fIePID\fR and \fIHwId\fR for China Government Editions of Windows (Enterprise G/GN). If specified, \fBRandomizationLevel\fR for Windows China Government activitations will be ignored.
.SH "VALID EPIDS"
The ePID is currently a comment only. You can specify any string up to 63 bytes. In Windows 7 Microsoft has blacklisted few ( < 10 ) ePIDs that were used in KMSv5 versions of the "Ratiborus Virtual Machine". Microsoft has given up on blacklisting when KMS emulators appeared in the wild.

View File

@ -17,7 +17,7 @@ DESCRIPTION
option on the vlmcsd command line to use an ini file. There is no
default name or default location for the ini file.
Everything, that can be configured in the ini file, may also be speci
Everything, that can be configured in the ini file, may also be speci-
fied on the command line. Any configuration option specified on the
command line takes precedence over the respective configuration line in
the ini file.
@ -33,16 +33,16 @@ DESCRIPTION
Differences between command line and configuration file
If you specify an illegal option or option argument on the command
line, vlmcsd displays help and exits. If you specify an incorrect key
line, vlmcsd displays help and exits. If you specify an incorrect key-
word or argument in the ini file, vlmcsd displays a warning with some
information, ignores the respective line and continues. This is inten
tional and prevents vlmcsd from aborting after a SIGHUP if the configu
information, ignores the respective line and continues. This is inten-
tional and prevents vlmcsd from aborting after a SIGHUP if the configu-
ration was modified incorrectly.
SYNTAX
vlmcsd.ini is a UTF-8 encoded text file with each line being in the
format keyword = argument. The keyword is not case-sensitive. The argu
format keyword = argument. The keyword is not case-sensitive. The argu-
ment is treated literally. It is neither required nor allowed to
enclose the argument in any form of quote characters except when quote
characters are part of the argument itself. Whitespace characters are
@ -54,14 +54,14 @@ SYNTAX
Lines, that start with '#' or ';' are treated as comments. Empty lines
are ignored as well. If a keyword is repeated in another line, vlmcsd
will use the argument of the last occurence of the keyword. An excep
will use the argument of the last occurence of the keyword. An excep-
tion to this is the Listen keyword which can be specified multiple
times and causes vlmcsd to listen on more than one IP address and/or
port.
Some arguments are binary arguments that need to be either TRUE or
FALSE. You can use "Yes", "On" or "1" as an alias for TRUE and "No",
"Off" or "0" as an alias for FALSE. Binary arguments are case-insensi
"Off" or "0" as an alias for FALSE. Binary arguments are case-insensi-
tive.
@ -71,7 +71,7 @@ KEYWORDS
was compiled):
Listen This defines on what combinations of IP addresses and ports vlm
Listen This defines on what combinations of IP addresses and ports vlm-
csd should listen. Listen can be specified more than once. The
argument has the form ipaddress[:port]. If you omit the port,
the default port of 1688 is used. If the ipaddress contains
@ -80,7 +80,7 @@ KEYWORDS
which means listen to all IPv4 and all IPv6 addresses. See the
-L option in vlmcsd(8) for more info about the syntax. If you
use -L or -P on the command line, all Listen keywords in the ini
file will be ignored. The Listen keyword cannot be used if vlm
file will be ignored. The Listen keyword cannot be used if vlm-
csd has been compiled to use Microsoft RPC (Windows and Cygwin
only) or simple sockets.
@ -91,7 +91,7 @@ KEYWORDS
Listen = [fe80::1721:12ff:fe81:d36b%eth0]:1688
Port Can only be used if vlmcsd has been compiled to use simple sock
Port Can only be used if vlmcsd has been compiled to use simple sock-
ets or on Windows and Cygwin if vlmcsd(8) has been compiled to
use Microsoft RPC. Otherwise you must use Listen instead. Causes
vlmcsd to listen on that port instead of 1688.
@ -115,7 +115,7 @@ KEYWORDS
0 = No protection (default)
1 = Listen on private IP addresses only (plus those specified by
one or more Listen statements)
2 = Disconnect clients with public IP addresses without activat
2 = Disconnect clients with public IP addresses without activat-
ing
3 = Combines 1 and 2
@ -131,7 +131,7 @@ KEYWORDS
to the system. This allows product activation using a local
instance of vlmcsd. This feature is only available in Windows
and Cygwin builds of vlmcsd since it is not of any use on other
operating systems. Compatible VPN adapters are Tap-windows ver
operating systems. Compatible VPN adapters are Tap-windows ver-
sion 8.2 or higher (from OpenVPN) and the TeamViewer VPN
adapter. There is a special vpn-adapter-name. A single period
(.) instructs vlmcsd to use the first available compatible VPN
@ -141,7 +141,7 @@ KEYWORDS
The default ipv4-address is 10.10.10.9 and the default cidr-mask
is 30. If you are using the default values, your VPN adapter
uses an IPv4 address of 10.10.10.9 and you can set your activa
uses an IPv4 address of 10.10.10.9 and you can set your activa-
tion client to use the easy to remember address 10.10.10.10
(e.g. slmgr /skms 10.10.10.10 or cscript ospp.vbs
/sethst:10.10.10.10).
@ -156,7 +156,7 @@ KEYWORDS
IPv4 configuration manually anyway, the IPv4 address and the
subnet mask must match the VPN= directive. It is safe leave the
IPv4 configuration to automatic (DHCP). vlmcsd will wait up to
four seconds for the DHCP configuration to complete before bind
four seconds for the DHCP configuration to complete before bind-
ing to and listenin on any interfaces.
You should be aware that only one program can use a VPN adapter
@ -164,17 +164,17 @@ KEYWORDS
you will not be able to use the VPN feature of TeamViewer as
long as vlmcsd is running. The same applies to OpenVPN TAP
adapters that are in use by other programs (for example OpenVPN,
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con-
flicts is to install Tap-Windows from OpenVPN, cd to C:\Program
Files\TAP-Windows\bin and run addtap.bat to install an addi
Files\TAP-Windows\bin and run addtap.bat to install an addi-
tional TAP adapter. Go to "Network Connections" and rename the
new adapter to "vlmcsd" and specify VPN=vlmcsd to use it.
ExitLevel
Can be either 0 (the default) or 1. Controls under what circum
Can be either 0 (the default) or 1. Controls under what circum-
stances vlmcsd will exit. Using the default of 0 vlmcsd stays
active as long as it can perform some useful operations. If vlm
active as long as it can perform some useful operations. If vlm-
csd is run by any form of a watchdog, e.g. NT service manager
(Windows), systemd (Linux) or launchd (Mac OS / iOS), it may be
desirable to end vlmcsd and let the watchdog restart it. This is
@ -206,7 +206,7 @@ KEYWORDS
Please note that ExitLevel = 1 is kind of a workaround option.
While it may help under some circumstances, it is better to
solve the problem at its origin, e.g. properly implementing
dependencies in your startup script to ensure all network inter
dependencies in your startup script to ensure all network inter-
faces and the VPN adapter you will use are completely setup
before you start vlmcsd.
@ -219,12 +219,12 @@ KEYWORDS
UseBTFN
Can be TRUE or FALSE. Specifies whether you want to use bind
time feature negotiation in RPC. See options -b0 and -b1 in vlm
time feature negotiation in RPC. See options -b0 and -b1 in vlm-
csd(8). The default is TRUE.
RandomizationLevel
The argument must 0, 1 or 2. This specifies the ePID randomiza
The argument must 0, 1 or 2. This specifies the ePID randomiza-
tion level. See options -r0, -r1 and -r2 in vlmcsd(8). The
default randomization level is 1. A RandomizationLevel of 2 is
not recommended and should be treated as a debugging level.
@ -233,14 +233,14 @@ KEYWORDS
LCID Use a specific culture id (LCID) even if the ePID is randomized.
The argument must be a number between 1 and 32767. While any
number in that range is valid, you should use an offcial LCID. A
list of assigned LCIDs can be found at http://msdn.micro
list of assigned LCIDs can be found at http://msdn.micro-
soft.com/en-us/goglobal/bb964664.aspx. On the command line you
control this setting with option -C.
MaxWorkers
The argument specifies the maximum number of worker processes or
threads that will be used to serve activation requests concur
threads that will be used to serve activation requests concur-
rently. This is the same as specifying -m on the command line.
Minimum is 1. The maximum is platform specific and is at least
32767 but is likely to be greater on most systems. The default
@ -248,13 +248,13 @@ KEYWORDS
ConnectionTimeout
Used to control when the vlmcsd disconnects idle TPC connec
Used to control when the vlmcsd disconnects idle TPC connec-
tions. The default is 30 seconds. This is the same setting as -t
on the command line.
DisconnectClientsImmediately
Set this to TRUE to disconnect a client after it got an activa
Set this to TRUE to disconnect a client after it got an activa-
tion response regardless whether a timeout has occured or not.
The default is FALSE. Setting this to TRUE is non-standard
behavior. Use only if you are experiencing DoS or DDoS attacks.
@ -291,11 +291,11 @@ KEYWORDS
LogDateAndTime
Can be TRUE or FALSE. The default is TRUE. If set to FALSE, log
Can be TRUE or FALSE. The default is TRUE. If set to FALSE, log-
ging output does not include date and time. This is useful if
you log to stdout(3) which is redirected to another logging
mechanism that already includes date and time in its output, for
instance systemd-journald(8). If you log to syslog(3), LogDate
instance systemd-journald(8). If you log to syslog(3), LogDate-
AndTime is ignored and date and time will never be included in
the output sent to syslog(3). Using the command line you control
this setting with options -T0 and -T1.
@ -304,7 +304,7 @@ KEYWORDS
LogVerbose
Set this to either TRUE or FALSE. The default is FALSE. If set
to TRUE, more details of each activation will be logged. You use
-v and -q in the command line to control this setting. LogVer
-v and -q in the command line to control this setting. LogVer-
bose has an effect only if you specify a log file or redirect
logging to stdout(3).
@ -325,22 +325,22 @@ KEYWORDS
The SKU ID is not checked. Like a genuine KMS server vlmcsd
activates a product that has a random or unknown SKU ID. If you
select 1 or 3, vlmcsd also checks the Application ID for cor
rectness. If Microsoft introduces a new KMS ID for a new prod
uct, you cannot activate it if you used 1 or 3 until a new ver
select 1 or 3, vlmcsd also checks the Application ID for cor-
rectness. If Microsoft introduces a new KMS ID for a new prod-
uct, you cannot activate it if you used 1 or 3 until a new ver-
sion of vlmcsd is available.
CheckClientTime
Can be TRUE or FALSE. The default is FALSE. If you set this to
TRUE vlmcsd(8) checks if the client time differs no more than
four hours from the system time. This is useful to prevent emu
four hours from the system time. This is useful to prevent emu-
lator detection. A client that tries to detect an emulator could
simply send two subsequent request with two time stamps that
differ more than four hours from each other. If both requests
succeed, the server is an emulator. If you set this to TRUE on a
system with no reliable time source, activations will fail. It
is ok to set the correct system time after you started vlm
is ok to set the correct system time after you started vlm-
csd(8).
@ -361,22 +361,22 @@ KEYWORDS
about 50 kB in size. On hardware with few memory resources use
it only if you really need it.
If you start vlmcsd(8) from an internet superserver, this set
ting cannot be used. Since vlmcsd(8) exits after each activa
If you start vlmcsd(8) from an internet superserver, this set-
ting cannot be used. Since vlmcsd(8) exits after each activa-
tion, it cannot maintain any state in memory.
StartEmpty
This setting is ignored if you do not also specify Maintain
This setting is ignored if you do not also specify Maintain-
Clients = TRUE. If you specify FALSE (the default), vlmcsd(8)
starts up as a fully "charged" KMS server. Clients activate
immediately. StartEmpty = TRUE lets you start up vlmcsd(8) with
an empty CMID list. Activation will start when the required min
an empty CMID list. Activation will start when the required min-
imum clients (25 for Windows Client OSses, 5 for Windows Server
OSses and Office) have registered with the KMS server. As long
as the minimum client count has not been reached, clients end up
in HRESULT 0xC004F038 "The count reported by your Key Management
Service (KMS) is insufficient. Please contact your system admin
Service (KMS) is insufficient. Please contact your system admin-
istrator". You may use vlmcs(1) or another KMS client emulator
to "charge" vlmcsd(8). Setting this parameter to TRUE does not
improve emulator detection prevention. It's primary purpose is
@ -385,16 +385,16 @@ KEYWORDS
ActivationInterval
This is the same as specifying -A on the command line. See vlm
csd(8) for details. The default is 2 hours. Example: Activation
This is the same as specifying -A on the command line. See vlm-
csd(8) for details. The default is 2 hours. Example: Activation-
Interval = 1h
RenewalInterval
This is the same as specifying -R on the command line. See vlm
csd(8) for details. The default is 7 days. Example: RenewalIn
This is the same as specifying -R on the command line. See vlm-
csd(8) for details. The default is 7 days. Example: RenewalIn-
terval = 3d. Please note that the KMS client decides itself when
to renew activation. Even though vlmcsd sends the renewal inter
to renew activation. Even though vlmcsd sends the renewal inter-
val you specify, it is no more than some kind of recommendation
to the client. Older KMS clients did follow the recommendation
from a KMS server or emulator. Newer clients do not.
@ -414,9 +414,9 @@ KEYWORDS
Group Run vlmcsd as another, preferrably less privileged, group. The
argument can be a group name or a numeric group id. You must
have the required privileges (capabilities on Linux) to change
the security context of a process without providing any creden
the security context of a process without providing any creden-
tials (a password in most cases). On most unixoid OSses 'root'
is the only user who has these privileges in the default config
is the only user who has these privileges in the default config-
uration. This setting is not available in the native Windows
version of vlmcsd. See -g in vlmcsd(8). This setting cannot be
changed on the fly by sending SIGHUP to vlmcsd.
@ -430,22 +430,29 @@ KEYWORDS
Office2010
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for Office 2010 activations. If specified, Randomization
HwId for Office 2010 activations. If specified, Randomization-
Level for Office 2010 activitations will be ignored.
Office2013
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for Office 2013 activations. If specified, Randomization
HwId for Office 2013 activations. If specified, Randomization-
Level for Office 2013 activitations will be ignored.
Office2016
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for Office 2016 activations. If specified, Randomization
HwId for Office 2016 activations. If specified, Randomization-
Level for Office 2016 activitations will be ignored.
WinChinaGov
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for China Government Editions of Windows (Enterprise G/GN).
If specified, RandomizationLevel for Windows China Government
activitations will be ignored.
VALID EPIDS
The ePID is currently a comment only. You can specify any string up to
63 bytes. In Windows 7 Microsoft has blacklisted few ( < 10 ) ePIDs
@ -461,7 +468,7 @@ VALID EPIDS
If you use non-ASCII characters in your ePID (you shouldn't do anyway),
these must be in UTF-8 format. This is especially important when you
run vlmcsd on Windows or cygwin because UTF-8 is not the default encod
run vlmcsd on Windows or cygwin because UTF-8 is not the default encod-
ing for most editors.
If you are specifying an optional HWID it follows the same syntax as in
@ -474,12 +481,12 @@ FILES
AUTHOR
vlmcsd(8) was written by crony12, Hotbird64 and vityan666. With contri
vlmcsd(8) was written by crony12, Hotbird64 and vityan666. With contri-
butions from DougQaid.
CREDITS
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati-
borus, ...
@ -488,4 +495,4 @@ SEE ALSO
Hotbird64 January 2017 VLMCSD.INI(5)
Hotbird64 May 2017 VLMCSD.INI(5)

View File

@ -1,5 +1,5 @@
<!-- Creator : groff version 1.22.3 -->
<!-- CreationDate: Thu Jan 19 21:29:26 2017 -->
<!-- CreationDate: Sat Jun 17 00:53:29 2017 -->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
@ -662,6 +662,15 @@ and <i>HwId</i> for Office 2016 activations. If specified,
<b>RandomizationLevel</b> for Office 2016 activitations will
be ignored.</p>
<p style="margin-left:11%;"><b>WinChinaGov</b></p>
<p style="margin-left:22%;">The <i>argument</i> has the
form <i>ePID</i> [ / <i>HwId</i> ]. Always use <i>ePID</i>
and <i>HwId</i> for China Government Editions of Windows
(Enterprise G/GN). If specified, <b>RandomizationLevel</b>
for Windows China Government activitations will be
ignored.</p>
<h2>VALID EPIDS
<a name="VALID EPIDS"></a>
</h2>

Binary file not shown.

View File

@ -17,7 +17,7 @@ DESCRIPTION
option on the vlmcsd command line to use an ini file. There is no
default name or default location for the ini file.
Everything, that can be configured in the ini file, may also be speci
Everything, that can be configured in the ini file, may also be speci-
fied on the command line. Any configuration option specified on the
command line takes precedence over the respective configuration line in
the ini file.
@ -33,16 +33,16 @@ DESCRIPTION
Differences between command line and configuration file
If you specify an illegal option or option argument on the command
line, vlmcsd displays help and exits. If you specify an incorrect key
line, vlmcsd displays help and exits. If you specify an incorrect key-
word or argument in the ini file, vlmcsd displays a warning with some
information, ignores the respective line and continues. This is inten
tional and prevents vlmcsd from aborting after a SIGHUP if the configu
information, ignores the respective line and continues. This is inten-
tional and prevents vlmcsd from aborting after a SIGHUP if the configu-
ration was modified incorrectly.
SYNTAX
vlmcsd.ini is a UTF-8 encoded text file with each line being in the
format keyword = argument. The keyword is not case-sensitive. The argu
format keyword = argument. The keyword is not case-sensitive. The argu-
ment is treated literally. It is neither required nor allowed to
enclose the argument in any form of quote characters except when quote
characters are part of the argument itself. Whitespace characters are
@ -54,14 +54,14 @@ SYNTAX
Lines, that start with '#' or ';' are treated as comments. Empty lines
are ignored as well. If a keyword is repeated in another line, vlmcsd
will use the argument of the last occurence of the keyword. An excep
will use the argument of the last occurence of the keyword. An excep-
tion to this is the Listen keyword which can be specified multiple
times and causes vlmcsd to listen on more than one IP address and/or
port.
Some arguments are binary arguments that need to be either TRUE or
FALSE. You can use "Yes", "On" or "1" as an alias for TRUE and "No",
"Off" or "0" as an alias for FALSE. Binary arguments are case-insensi
"Off" or "0" as an alias for FALSE. Binary arguments are case-insensi-
tive.
@ -71,7 +71,7 @@ KEYWORDS
was compiled):
Listen This defines on what combinations of IP addresses and ports vlm
Listen This defines on what combinations of IP addresses and ports vlm-
csd should listen. Listen can be specified more than once. The
argument has the form ipaddress[:port]. If you omit the port,
the default port of 1688 is used. If the ipaddress contains
@ -80,7 +80,7 @@ KEYWORDS
which means listen to all IPv4 and all IPv6 addresses. See the
-L option in vlmcsd(8) for more info about the syntax. If you
use -L or -P on the command line, all Listen keywords in the ini
file will be ignored. The Listen keyword cannot be used if vlm
file will be ignored. The Listen keyword cannot be used if vlm-
csd has been compiled to use Microsoft RPC (Windows and Cygwin
only) or simple sockets.
@ -91,7 +91,7 @@ KEYWORDS
Listen = [fe80::1721:12ff:fe81:d36b%eth0]:1688
Port Can only be used if vlmcsd has been compiled to use simple sock
Port Can only be used if vlmcsd has been compiled to use simple sock-
ets or on Windows and Cygwin if vlmcsd(8) has been compiled to
use Microsoft RPC. Otherwise you must use Listen instead. Causes
vlmcsd to listen on that port instead of 1688.
@ -115,7 +115,7 @@ KEYWORDS
0 = No protection (default)
1 = Listen on private IP addresses only (plus those specified by
one or more Listen statements)
2 = Disconnect clients with public IP addresses without activat
2 = Disconnect clients with public IP addresses without activat-
ing
3 = Combines 1 and 2
@ -131,7 +131,7 @@ KEYWORDS
to the system. This allows product activation using a local
instance of vlmcsd. This feature is only available in Windows
and Cygwin builds of vlmcsd since it is not of any use on other
operating systems. Compatible VPN adapters are Tap-windows ver
operating systems. Compatible VPN adapters are Tap-windows ver-
sion 8.2 or higher (from OpenVPN) and the TeamViewer VPN
adapter. There is a special vpn-adapter-name. A single period
(.) instructs vlmcsd to use the first available compatible VPN
@ -141,7 +141,7 @@ KEYWORDS
The default ipv4-address is 10.10.10.9 and the default cidr-mask
is 30. If you are using the default values, your VPN adapter
uses an IPv4 address of 10.10.10.9 and you can set your activa
uses an IPv4 address of 10.10.10.9 and you can set your activa-
tion client to use the easy to remember address 10.10.10.10
(e.g. slmgr /skms 10.10.10.10 or cscript ospp.vbs
/sethst:10.10.10.10).
@ -156,7 +156,7 @@ KEYWORDS
IPv4 configuration manually anyway, the IPv4 address and the
subnet mask must match the VPN= directive. It is safe leave the
IPv4 configuration to automatic (DHCP). vlmcsd will wait up to
four seconds for the DHCP configuration to complete before bind
four seconds for the DHCP configuration to complete before bind-
ing to and listenin on any interfaces.
You should be aware that only one program can use a VPN adapter
@ -164,17 +164,17 @@ KEYWORDS
you will not be able to use the VPN feature of TeamViewer as
long as vlmcsd is running. The same applies to OpenVPN TAP
adapters that are in use by other programs (for example OpenVPN,
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con
QEMU, Ratiborus VM, aiccu, etc.). The best way to avoid con-
flicts is to install Tap-Windows from OpenVPN, cd to C:\Program
Files\TAP-Windows\bin and run addtap.bat to install an addi
Files\TAP-Windows\bin and run addtap.bat to install an addi-
tional TAP adapter. Go to "Network Connections" and rename the
new adapter to "vlmcsd" and specify VPN=vlmcsd to use it.
ExitLevel
Can be either 0 (the default) or 1. Controls under what circum
Can be either 0 (the default) or 1. Controls under what circum-
stances vlmcsd will exit. Using the default of 0 vlmcsd stays
active as long as it can perform some useful operations. If vlm
active as long as it can perform some useful operations. If vlm-
csd is run by any form of a watchdog, e.g. NT service manager
(Windows), systemd (Linux) or launchd (Mac OS / iOS), it may be
desirable to end vlmcsd and let the watchdog restart it. This is
@ -206,7 +206,7 @@ KEYWORDS
Please note that ExitLevel = 1 is kind of a workaround option.
While it may help under some circumstances, it is better to
solve the problem at its origin, e.g. properly implementing
dependencies in your startup script to ensure all network inter
dependencies in your startup script to ensure all network inter-
faces and the VPN adapter you will use are completely setup
before you start vlmcsd.
@ -219,12 +219,12 @@ KEYWORDS
UseBTFN
Can be TRUE or FALSE. Specifies whether you want to use bind
time feature negotiation in RPC. See options -b0 and -b1 in vlm
time feature negotiation in RPC. See options -b0 and -b1 in vlm-
csd(8). The default is TRUE.
RandomizationLevel
The argument must 0, 1 or 2. This specifies the ePID randomiza
The argument must 0, 1 or 2. This specifies the ePID randomiza-
tion level. See options -r0, -r1 and -r2 in vlmcsd(8). The
default randomization level is 1. A RandomizationLevel of 2 is
not recommended and should be treated as a debugging level.
@ -233,14 +233,14 @@ KEYWORDS
LCID Use a specific culture id (LCID) even if the ePID is randomized.
The argument must be a number between 1 and 32767. While any
number in that range is valid, you should use an offcial LCID. A
list of assigned LCIDs can be found at http://msdn.micro
list of assigned LCIDs can be found at http://msdn.micro-
soft.com/en-us/goglobal/bb964664.aspx. On the command line you
control this setting with option -C.
MaxWorkers
The argument specifies the maximum number of worker processes or
threads that will be used to serve activation requests concur
threads that will be used to serve activation requests concur-
rently. This is the same as specifying -m on the command line.
Minimum is 1. The maximum is platform specific and is at least
32767 but is likely to be greater on most systems. The default
@ -248,13 +248,13 @@ KEYWORDS
ConnectionTimeout
Used to control when the vlmcsd disconnects idle TPC connec
Used to control when the vlmcsd disconnects idle TPC connec-
tions. The default is 30 seconds. This is the same setting as -t
on the command line.
DisconnectClientsImmediately
Set this to TRUE to disconnect a client after it got an activa
Set this to TRUE to disconnect a client after it got an activa-
tion response regardless whether a timeout has occured or not.
The default is FALSE. Setting this to TRUE is non-standard
behavior. Use only if you are experiencing DoS or DDoS attacks.
@ -291,11 +291,11 @@ KEYWORDS
LogDateAndTime
Can be TRUE or FALSE. The default is TRUE. If set to FALSE, log
Can be TRUE or FALSE. The default is TRUE. If set to FALSE, log-
ging output does not include date and time. This is useful if
you log to stdout(3) which is redirected to another logging
mechanism that already includes date and time in its output, for
instance systemd-journald(8). If you log to syslog(3), LogDate
instance systemd-journald(8). If you log to syslog(3), LogDate-
AndTime is ignored and date and time will never be included in
the output sent to syslog(3). Using the command line you control
this setting with options -T0 and -T1.
@ -304,7 +304,7 @@ KEYWORDS
LogVerbose
Set this to either TRUE or FALSE. The default is FALSE. If set
to TRUE, more details of each activation will be logged. You use
-v and -q in the command line to control this setting. LogVer
-v and -q in the command line to control this setting. LogVer-
bose has an effect only if you specify a log file or redirect
logging to stdout(3).
@ -325,22 +325,22 @@ KEYWORDS
The SKU ID is not checked. Like a genuine KMS server vlmcsd
activates a product that has a random or unknown SKU ID. If you
select 1 or 3, vlmcsd also checks the Application ID for cor
rectness. If Microsoft introduces a new KMS ID for a new prod
uct, you cannot activate it if you used 1 or 3 until a new ver
select 1 or 3, vlmcsd also checks the Application ID for cor-
rectness. If Microsoft introduces a new KMS ID for a new prod-
uct, you cannot activate it if you used 1 or 3 until a new ver-
sion of vlmcsd is available.
CheckClientTime
Can be TRUE or FALSE. The default is FALSE. If you set this to
TRUE vlmcsd(8) checks if the client time differs no more than
four hours from the system time. This is useful to prevent emu
four hours from the system time. This is useful to prevent emu-
lator detection. A client that tries to detect an emulator could
simply send two subsequent request with two time stamps that
differ more than four hours from each other. If both requests
succeed, the server is an emulator. If you set this to TRUE on a
system with no reliable time source, activations will fail. It
is ok to set the correct system time after you started vlm
is ok to set the correct system time after you started vlm-
csd(8).
@ -361,22 +361,22 @@ KEYWORDS
about 50 kB in size. On hardware with few memory resources use
it only if you really need it.
If you start vlmcsd(8) from an internet superserver, this set
ting cannot be used. Since vlmcsd(8) exits after each activa
If you start vlmcsd(8) from an internet superserver, this set-
ting cannot be used. Since vlmcsd(8) exits after each activa-
tion, it cannot maintain any state in memory.
StartEmpty
This setting is ignored if you do not also specify Maintain
This setting is ignored if you do not also specify Maintain-
Clients = TRUE. If you specify FALSE (the default), vlmcsd(8)
starts up as a fully "charged" KMS server. Clients activate
immediately. StartEmpty = TRUE lets you start up vlmcsd(8) with
an empty CMID list. Activation will start when the required min
an empty CMID list. Activation will start when the required min-
imum clients (25 for Windows Client OSses, 5 for Windows Server
OSses and Office) have registered with the KMS server. As long
as the minimum client count has not been reached, clients end up
in HRESULT 0xC004F038 "The count reported by your Key Management
Service (KMS) is insufficient. Please contact your system admin
Service (KMS) is insufficient. Please contact your system admin-
istrator". You may use vlmcs(1) or another KMS client emulator
to "charge" vlmcsd(8). Setting this parameter to TRUE does not
improve emulator detection prevention. It's primary purpose is
@ -385,16 +385,16 @@ KEYWORDS
ActivationInterval
This is the same as specifying -A on the command line. See vlm
csd(8) for details. The default is 2 hours. Example: Activation
This is the same as specifying -A on the command line. See vlm-
csd(8) for details. The default is 2 hours. Example: Activation-
Interval = 1h
RenewalInterval
This is the same as specifying -R on the command line. See vlm
csd(8) for details. The default is 7 days. Example: RenewalIn
This is the same as specifying -R on the command line. See vlm-
csd(8) for details. The default is 7 days. Example: RenewalIn-
terval = 3d. Please note that the KMS client decides itself when
to renew activation. Even though vlmcsd sends the renewal inter
to renew activation. Even though vlmcsd sends the renewal inter-
val you specify, it is no more than some kind of recommendation
to the client. Older KMS clients did follow the recommendation
from a KMS server or emulator. Newer clients do not.
@ -414,9 +414,9 @@ KEYWORDS
Group Run vlmcsd as another, preferrably less privileged, group. The
argument can be a group name or a numeric group id. You must
have the required privileges (capabilities on Linux) to change
the security context of a process without providing any creden
the security context of a process without providing any creden-
tials (a password in most cases). On most unixoid OSses 'root'
is the only user who has these privileges in the default config
is the only user who has these privileges in the default config-
uration. This setting is not available in the native Windows
version of vlmcsd. See -g in vlmcsd(8). This setting cannot be
changed on the fly by sending SIGHUP to vlmcsd.
@ -430,22 +430,29 @@ KEYWORDS
Office2010
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for Office 2010 activations. If specified, Randomization
HwId for Office 2010 activations. If specified, Randomization-
Level for Office 2010 activitations will be ignored.
Office2013
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for Office 2013 activations. If specified, Randomization
HwId for Office 2013 activations. If specified, Randomization-
Level for Office 2013 activitations will be ignored.
Office2016
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for Office 2016 activations. If specified, Randomization
HwId for Office 2016 activations. If specified, Randomization-
Level for Office 2016 activitations will be ignored.
WinChinaGov
The argument has the form ePID [ / HwId ]. Always use ePID and
HwId for China Government Editions of Windows (Enterprise G/GN).
If specified, RandomizationLevel for Windows China Government
activitations will be ignored.
VALID EPIDS
The ePID is currently a comment only. You can specify any string up to
63 bytes. In Windows 7 Microsoft has blacklisted few ( < 10 ) ePIDs
@ -461,7 +468,7 @@ VALID EPIDS
If you use non-ASCII characters in your ePID (you shouldn't do anyway),
these must be in UTF-8 format. This is especially important when you
run vlmcsd on Windows or cygwin because UTF-8 is not the default encod
run vlmcsd on Windows or cygwin because UTF-8 is not the default encod-
ing for most editors.
If you are specifying an optional HWID it follows the same syntax as in
@ -474,12 +481,12 @@ FILES
AUTHOR
vlmcsd(8) was written by crony12, Hotbird64 and vityan666. With contri
vlmcsd(8) was written by crony12, Hotbird64 and vityan666. With contri-
butions from DougQaid.
CREDITS
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati
Thanks to CODYQX4, deagles, eIcn, mikmik38, nosferati87, qad, Rati-
borus, ...
@ -488,4 +495,4 @@ SEE ALSO
Hotbird64 January 2017 VLMCSD.INI(5)
Hotbird64 May 2017 VLMCSD.INI(5)

View File

@ -17,9 +17,9 @@ DESCRIPTION
the combined binary is significantly smaller than the sum of both
files.
vlmcsdmulti should not be called directly. Instead you may want to cre
vlmcsdmulti should not be called directly. Instead you may want to cre-
ate symbolic links named vlmcs and vlmcsd which point to vlmcsdmulti.
You then use these links to call the respective program. You may how
You then use these links to call the respective program. You may how-
ever call vlmcsdmulti followed by a complete command line of either
vlmcs(1) or vlmcsd(8).
@ -51,7 +51,7 @@ DESCRIPTION
Memory considerations
While you definitely save disk space by using vlmcsdmulti you will need
more RAM when you run vlmcsdmulti as a daemon (KMS server) instead of
vlmcsd. You should consider running vlmcsdmulti via an internet super
vlmcsd. You should consider running vlmcsdmulti via an internet super-
server like inetd(8) or xinetd(8).
@ -64,7 +64,7 @@ AUTHOR
CREDITS
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos-
ferati87, qad, vityan666, ...

View File

@ -1,5 +1,5 @@
<!-- Creator : groff version 1.22.3 -->
<!-- CreationDate: Thu Jan 19 21:29:26 2017 -->
<!-- CreationDate: Sat Jun 17 00:53:29 2017 -->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

Binary file not shown.

View File

@ -17,9 +17,9 @@ DESCRIPTION
the combined binary is significantly smaller than the sum of both
files.
vlmcsdmulti should not be called directly. Instead you may want to cre
vlmcsdmulti should not be called directly. Instead you may want to cre-
ate symbolic links named vlmcs and vlmcsd which point to vlmcsdmulti.
You then use these links to call the respective program. You may how
You then use these links to call the respective program. You may how-
ever call vlmcsdmulti followed by a complete command line of either
vlmcs(1) or vlmcsd(8).
@ -51,7 +51,7 @@ DESCRIPTION
Memory considerations
While you definitely save disk space by using vlmcsdmulti you will need
more RAM when you run vlmcsdmulti as a daemon (KMS server) instead of
vlmcsd. You should consider running vlmcsdmulti via an internet super
vlmcsd. You should consider running vlmcsdmulti via an internet super-
server like inetd(8) or xinetd(8).
@ -64,7 +64,7 @@ AUTHOR
CREDITS
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos
Thanks to CODYQX4, crony12, deagles, DougQaid, eIcn, mikmik38, nos-
ferati87, qad, vityan666, ...

View File

@ -63,7 +63,7 @@ WCHAR utf8_to_ucs2_char(const unsigned char *input, const unsigned char **end_pt
{
*end_ptr = input;
if (input[0] == 0)
return ~0;
return (WCHAR)~0;
if (input[0] < 0x80) {
*end_ptr = input + 1;
@ -73,7 +73,7 @@ WCHAR utf8_to_ucs2_char(const unsigned char *input, const unsigned char **end_pt
if ((input[0] & 0xE0) == 0xE0) {
if (input[1] == 0 || input[2] == 0)
return ~0;
return (WCHAR)~0;
*end_ptr = input + 3;
@ -85,7 +85,7 @@ WCHAR utf8_to_ucs2_char(const unsigned char *input, const unsigned char **end_pt
if ((input[0] & 0xC0) == 0xC0) {
if (input[1] == 0)
return ~0;
return (WCHAR)~0;
*end_ptr = input + 2;
@ -93,7 +93,7 @@ WCHAR utf8_to_ucs2_char(const unsigned char *input, const unsigned char **end_pt
LE16((input[0] & 0x1F) << 6 |
(input[1] & 0x3F));
}
return ~0;
return (WCHAR)~0;
}
// Convert one character from UCS2 to UTF-8
@ -110,8 +110,8 @@ int ucs2_to_utf8_char(const WCHAR ucs2_le, char *utf8)
}
if (ucs2 >= 0x80 && ucs2 < 0x800) {
utf8[0] = (ucs2 >> 6) | 0xC0;
utf8[1] = (ucs2 & 0x3F) | 0x80;
utf8[0] = (char)((ucs2 >> 6) | 0xC0);
utf8[1] = (char)((ucs2 & 0x3F) | 0x80);
utf8[2] = '\0';
return 2;
}
@ -596,13 +596,25 @@ void loadKmsData()
if (!InetdMode) logger("Read KMS data file %s\n", fn_data);
# endif // NO_LOG
}
if (KmsData->CsvlkCount < MIN_CSVLK)
{
printerrorf("Warning: Legacy database: Some products are missing.\n");
}
}
# endif // NO_EXTERNAL_DATA
# if !defined(NO_RANDOM_EPID) || !defined(NO_CL_PIDS) || !defined(NO_INI_FILE)
if (KmsData->CsvlkCount > MIN_CSVLK)
{
KmsResponseParameters = (KmsResponseParam_t*)realloc(KmsResponseParameters, KmsData->CsvlkCount * sizeof(KmsResponseParam_t));
if (!KmsResponseParameters) OutOfMemory();
memset(KmsResponseParameters + MIN_CSVLK, 0, (KmsData->CsvlkCount - MIN_CSVLK) * sizeof(KmsResponseParam_t));
}
# endif // !defined(NO_RANDOM_EPID) || !defined(NO_CL_PIDS) || !defined(NO_INI_FILE)
# ifndef UNSAFE_DATA_LOAD

View File

@ -91,13 +91,13 @@ static const uint16_t LcidList[] = {
#ifdef _PEDANTIC
uint16_t IsValidLcid(const uint16_t Lcid)
uint16_t IsValidLcid(const uint16_t lcid)
{
uint16_t i;
for (i = 0; i < vlmcsd_countof(LcidList); i++)
{
if (Lcid == LcidList[i]) return Lcid;
if (lcid == LcidList[i]) return lcid;
}
return 0;
@ -297,7 +297,7 @@ static void generateRandomPid(int index, char *const szPid, int serverType, int1
# define minTime ((time_t)1470175200) /* Release Date Win 2016 */
time_t maxTime, kmsTime;
time_t maxTime;
time(&maxTime);
# ifndef BUILD_TIME
@ -307,10 +307,8 @@ static void generateRandomPid(int index, char *const szPid, int serverType, int1
if (maxTime < (time_t)BUILD_TIME) // Just in case the system time is < 10/17/2013 1:00 pm
maxTime = (time_t)BUILD_TIME;
kmsTime = (rand32() % (maxTime - minTime)) + minTime;
struct tm *pidTime;
pidTime = gmtime(&kmsTime);
time_t kmsTime = (rand32() % (maxTime - minTime)) + minTime;
struct tm *pidTime = gmtime(&kmsTime);
strcat(szPid, itoc(numberBuffer, pidTime->tm_yday, 3));
strcat(szPid, itoc(numberBuffer, pidTime->tm_year + 1900, 4));
@ -516,7 +514,7 @@ long long int llabs(long long int j);
* Creates the unencrypted base response
*/
#ifndef IS_LIBRARY
static HRESULT __stdcall CreateResponseBaseCallback(const REQUEST *const baseRequest, RESPONSE *const baseResponse, BYTE *const hwId, const char* const ipstr)
static HRESULT __stdcall CreateResponseBaseCallback(const REQUEST *const baseRequest, RESPONSE *const baseResponse, BYTE *const hwId, const char* const ipstr_unused)
{
const char* EpidSource;
#ifndef NO_LOG
@ -730,8 +728,7 @@ __pure static uint64_t TimestampInterval(void *ts)
static int_fast8_t CreateV6Hmac(BYTE *const encrypt_start, const size_t encryptSize, int_fast8_t tolerance)
{
BYTE hash[32];
# define halfHashSize (sizeof(hash) >> 1)
uint64_t timeSlot;
const uint8_t halfHashSize = sizeof(hash) >> 1;
BYTE *responseEnd = encrypt_start + encryptSize;
// This is the time from the response
@ -742,7 +739,7 @@ static int_fast8_t CreateV6Hmac(BYTE *const encrypt_start, const size_t encryptS
// When generating a response tolerance must be 0.
// If verifying the hash, try tolerance -1, 0 and +1. One of them must match.
timeSlot = LE64((GET_UA64LE(ft) / TIME_C1 * TIME_C2 + TIME_C3) + (tolerance * TIME_C1));
uint64_t timeSlot = LE64((GET_UA64LE(ft) / TIME_C1 * TIME_C2 + TIME_C3) + (tolerance * TIME_C1));
// The time slot is hashed with SHA256 so it is not so obvious that it is time
Sha256((BYTE*)&timeSlot, sizeof(timeSlot), hash);
@ -761,7 +758,6 @@ static int_fast8_t CreateV6Hmac(BYTE *const encrypt_start, const size_t encryptS
memcpy(responseEnd - sizeof(((RESPONSE_V6*)0)->HMAC), hash + halfHashSize, halfHashSize);
return TRUE;
# undef halfHashSize
}
@ -782,7 +778,7 @@ size_t CreateResponseV6(REQUEST_V6 *restrict request_v6, BYTE *const responseBuf
#ifdef _DEBUG
// ReSharper disable once CppEntityNeverUsed
RESPONSE_V6_DEBUG* xxx = (RESPONSE_V6_DEBUG*)responseBuffer;
RESPONSE_V6_DEBUG* xxx_unused = (RESPONSE_V6_DEBUG*)responseBuffer;
#endif
static const BYTE DefaultHwid[8] = { HWID };
@ -955,7 +951,7 @@ RESPONSE_RESULT DecryptResponseV4(RESPONSE_V4* response_v4, const int responseSi
}
static RESPONSE_RESULT VerifyResponseV6(RESPONSE_RESULT result, const AesCtx* Ctx, RESPONSE_V6* response_v6, REQUEST_V6* request_v6, BYTE* const rawResponse)
static RESPONSE_RESULT VerifyResponseV6(RESPONSE_RESULT result, RESPONSE_V6* response_v6, REQUEST_V6* request_v6, BYTE* const rawResponse)
{
// Check IVs
result.IVsOK = !memcmp // In V6 the XoredIV is actually the request IV
@ -1029,7 +1025,7 @@ static RESPONSE_RESULT VerifyResponseV5(RESPONSE_RESULT result, REQUEST_V5* requ
RESPONSE_RESULT DecryptResponseV6(RESPONSE_V6* response_v6, int responseSize, BYTE* const response, const BYTE* const rawRequest, BYTE* hwid)
{
RESPONSE_RESULT result;
result.mask = ~0; // Set all bits in the results mask to 1. Assume success first.
result.mask = (DWORD)~0; // Set all bits in the results mask to 1. Assume success first.
result.effectiveResponseSize = responseSize;
int copySize1 =
@ -1126,7 +1122,7 @@ RESPONSE_RESULT DecryptResponseV6(RESPONSE_V6* response_v6, int responseSize, BY
memcpy(hwid, response_v6->HwId, sizeof(response_v6->HwId));
// Verify the V6 specific part of the response
result = VerifyResponseV6(result, &Ctx, response_v6, request_v6, response);
result = VerifyResponseV6(result, response_v6, request_v6, response);
}
else // V5
{

View File

@ -258,12 +258,6 @@ typedef struct VlmcsdData
char* Name;
};
//union
//{
// uint64_t X_EPidOffset;
// char* X_EPid;
//};
uint8_t AppIndex;
uint8_t KmsIndex;
uint8_t ProtocolVersion;
@ -337,6 +331,7 @@ typedef struct VlmcsdHeader
#define EPID_INDEX_OFFICE2010 1
#define EPID_INDEX_OFFICE2013 2
#define EPID_INDEX_OFFICE2016 3
#define EPID_INDEX_WINCHINAGOV 4
typedef HRESULT(__stdcall *RequestCallback_t)(const REQUEST *const baseRequest, RESPONSE *const baseResponse, BYTE *const hwId, const char* const ipstr);

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

View File

@ -17,7 +17,6 @@ SERVICE_STATUS_HANDLE gSvcStatusHandle;
VOID WINAPI ServiceCtrlHandler(DWORD dwCtrl)
{
// Handle the requested control code.
switch (dwCtrl)
{
case SERVICE_CONTROL_STOP:

View File

@ -406,7 +406,7 @@ static void CheckRpcBindRequest(const RPC_BIND_REQUEST *const Request, const uns
/*
* Check, if we receive enough bytes to return a valid RPC bind response
*/
static unsigned int checkRpcBindSize(const RPC_BIND_REQUEST *const Request, const unsigned int RequestSize, WORD* NdrCtx, WORD* Ndr64Ctx)
static unsigned int checkRpcBindSize(const RPC_BIND_REQUEST *const Request, const unsigned int RequestSize, WORD* NdrCtx_unused, WORD* Ndr64Ctx_unused)
{
if (RequestSize < sizeof(RPC_BIND_REQUEST)) return FALSE;

View File

@ -48,7 +48,7 @@
#include "types.h"
#include "kms.h"
#define MIN_CSVLK 4
#define MIN_CSVLK 5
typedef struct
{
const char* Epid;

View File

@ -84,7 +84,7 @@
#include "wintap.h"
#endif
static const char* const optstring = "N:B:m:t:w:0:3:6:H:A:R:u:g:L:p:i:P:l:r:U:W:C:c:F:O:o:x:T:K:E:M:j:SseDdVvqkZ";
static const char* const optstring = "N:B:m:t:w:0:3:6:H:A:R:u:G:g:L:p:i:P:l:r:U:W:C:c:F:O:o:x:T:K:E:M:j:SseDdVvqkZ";
#if !defined(NO_SOCKETS) && !defined(USE_MSRPC) && !defined(SIMPLE_SOCKETS)
static uint_fast8_t maxsockets = 0;
@ -123,6 +123,7 @@ static IniFileParameter_t IniFileParameterList[] =
{ "Office2010", INI_PARAM_OFFICE2010 },
{ "Office2013", INI_PARAM_OFFICE2013 },
{ "Office2016", INI_PARAM_OFFICE2016 },
{ "WinChinaGov", INI_PARAM_WINCHINAGOV },
# ifndef NO_SOCKETS
{ "ExitLevel", INI_PARAM_EXIT_LEVEL },
# endif // NO_SOCKETS
@ -274,6 +275,7 @@ static __noreturn void usage()
" -0 <ePID>\t\talways use <ePID> for Office2010\n"
" -3 <ePID>\t\talways use <ePID> for Office2013\n"
" -6 <ePID>\t\talways use <ePID> for Office2016\n"
" -G <ePID>\t\talways use <ePID> for Win China Gov\n"
" -H <HwId>\t\talways use hardware Id <HwId>\n"
# endif // NO_CL_PIDS
# if !defined(_WIN32) && !defined(NO_USER_SWITCH)
@ -404,9 +406,9 @@ __pure static BOOL getTimeSpanFromIniFile(DWORD* result, const char *const restr
#endif // NO_INI_FILE
__pure static DWORD getTimeSpanFromCommandLine(const char *const restrict optarg, const char optchar)
__pure static DWORD getTimeSpanFromCommandLine(const char *const restrict arg, const char optchar)
{
DWORD val = timeSpanString2Minutes(optarg);
DWORD val = timeSpanString2Minutes(arg);
if (!val)
{
@ -553,6 +555,11 @@ static BOOL setIniFileParameter(uint_fast8_t id, const char *const iniarg)
setHwIdFromIniFileLine(&s, EPID_INDEX_OFFICE2016);
break;
case INI_PARAM_WINCHINAGOV:
setEpidFromIniFileLine(&s, EPID_INDEX_WINCHINAGOV);
setHwIdFromIniFileLine(&s, EPID_INDEX_WINCHINAGOV);
break;
# ifndef NO_TAP
case INI_PARAM_VPN:
@ -1050,14 +1057,14 @@ static DWORD daemonizeAndSetSignalAction()
// Workaround for Cygwin fork problem (only affects cygwin processes that are Windows services)
// Best is to compile for Cygwin with threads. fork() is slow and unreliable on Cygwin
#if !defined(NO_INI_FILE) || !defined(NO_LOG) || !defined(NO_CL_PIDS) || !defined(NO_EXTERNAL_DATA)
__pure static char* getCommandLineArg(char *const restrict optarg)
__pure static char* getCommandLineArg(char *const restrict arg)
{
# if !__CYGWIN__ || defined(USE_THREADS) || defined(NO_SOCKETS)
return optarg;
return arg;
# else
if (!IsNTService) return optarg;
if (!IsNTService) return arg;
return vlmcsd_strdup(optarg);
return vlmcsd_strdup(arg);
# endif
}
#endif // !defined(NO_INI_FILE) || !defined(NO_LOG) || !defined(NO_CL_PIDS) || !defined(NO_EXTERNAL_DATA)
@ -1118,6 +1125,13 @@ static void parseGeneralArguments() {
# endif // NO_LOG
break;
case 'G':
KmsResponseParameters[EPID_INDEX_WINCHINAGOV].Epid = getCommandLineArg(optarg);
# ifndef NO_LOG
KmsResponseParameters[EPID_INDEX_WINCHINAGOV].EpidSource = "command line";
# endif // NO_LOG
break;
case 'H':
HwId = (BYTE*)vlmcsd_malloc(sizeof(((RESPONSE_V6 *)0)->HwId));
hex2bin(HwId, optarg, sizeof(((RESPONSE_V6 *)0)->HwId));
@ -1125,6 +1139,7 @@ static void parseGeneralArguments() {
KmsResponseParameters[EPID_INDEX_WINDOWS].HwId =
KmsResponseParameters[EPID_INDEX_OFFICE2010].HwId =
KmsResponseParameters[EPID_INDEX_OFFICE2013].HwId =
KmsResponseParameters[EPID_INDEX_WINCHINAGOV].HwId =
KmsResponseParameters[EPID_INDEX_OFFICE2016].HwId = HwId;
break;
@ -1146,7 +1161,7 @@ static void parseGeneralArguments() {
case 'x':
ignoreIniFileParameter(INI_PARAM_EXIT_LEVEL);
ExitLevel = getOptionArgumentInt((char)o, 0, 1);
ExitLevel = (int_fast8_t)getOptionArgumentInt((char)o, 0, 1);
break;
case 'P':
@ -1581,7 +1596,7 @@ int setupListeningSockets()
char** privateIPList = NULL;
int numPrivateIPs = 0;
if (PublicIPProtectionLevel & 1) getPrivateIPAddresses(&numPrivateIPs, &privateIPList);
uint_fast8_t allocsockets = maxsockets ? (maxsockets + numPrivateIPs) : ((PublicIPProtectionLevel & 1) ? numPrivateIPs : 2);
uint_fast8_t allocsockets = (uint_fast8_t)(maxsockets ? (maxsockets + numPrivateIPs) : ((PublicIPProtectionLevel & 1) ? numPrivateIPs : 2));
# else // !HAVE_GETIFADDR
uint_fast8_t allocsockets = maxsockets ? maxsockets : 2;
# endif // !HAVE_GETIFADDR

View File

@ -59,6 +59,7 @@ int server_main(int argc, CARGV argv);
#define INI_PARAM_DATA_FILE 28
#define INI_PARAM_VPN 29
#define INI_PARAM_EXIT_LEVEL 30
#define INI_PARAM_WINCHINAGOV 31
#define INI_FILE_PASS_1 1
#define INI_FILE_PASS_2 2

View File

@ -271,7 +271,7 @@ static int DevCtl(DWORD code, void* data, DWORD len)
}
static DWORD WINAPI TapMirror(LPVOID data)
static DWORD WINAPI TapMirror(LPVOID data_unused)
{
while (TRUE)
{