First thank`s for this wonderful app !

Question: Would it be also possible to use a ICOM instead of Bimmergeeks Interaface ?

and for Beginners another Question:

I have an original 2007 M5, not tuned.

So the first i made, was, to press button "Read full Flash" ,with standard-cable D-Can. The complete reading process took approx 60 minutes. Now there are two files saved, one "full" and one "tune".
After that, i successfuly loaded the "full-file" to Binary Modification Tool".

So that`s it, i`v done so far.

Now please give me help/correction:

1. First to be able to save ISN, I have to flash DME with "Flash RSA Bypass" (only with edibasLib - Cable)
2. Saving ISN

so far it is clear, but then...

3. After step 2, i`ll have to press button "Read full Flash" again ? The bypassed full-file will now be saved on pc. ?
4. Now i have to load this bypassed full-file to Binary Modification Tool, change values and load it back to MSS6x-Flasher. ?
5. So what is to do ? do i have to press Button "flash Tune" or "flash Program" ? I don`t know the difference between these functions. With Binary Modification Tool, it`s not possible to load the tune-file, only full.

sorry for asking, but i`m not familiar with tuning a DME , so please can anybody make step by step guide ?

Minor Update (Now Version 1.0.0.3)

Changes:

• The application will now default to using the D2XX Driver instead of the Virtual COM Port. This seems to be more stable for K-line mode communications, should not cause any regressions for other cars
  • In this mode, the settings you have in device manager (COM port, latency, etc) shouldn't matter.
  • If you wish to go back to the Virtual COM Mode, Edit the "MSS6x Flasher.exe.config" so that "Port" is set to the COM port you desire (default is now "FTDI0")
  • Note: This will probably not work properly if you have multiple FTDI devices connected at the same time. If you have multiple FTDI devices, you can try to select the specific device you want using the instructions under "FTDI D2XX Properties" here
• Eliminated the slow RSA bypass. Just seemed to create confusion.
• Made some changes so that if one of the stages during a flash process fails, the program doesn't try to perform the subsequent steps.

CaptainPunPants - Might be worth trying this version out with either of your cables.

My apologies, Martyn. I'm a bit slow on the uptake today...

Martin was instructing omhl, your problem is something else.

Playing around with K-line mode on my bench, it does seem like there might be an issue somewhere there, though tracking it down is proving to be tough. I think part of the issue might be that K-line mode seems to be straight up faster than D-CAN mode for this purpose. Will see if I can tweak some settings to get it to work a bit better.

Edit: So using the FTDI driver to access the cable instead of the virtual COM port seems to work better. Does suggest it's a speed / timing issue.

You just need to tick 'force program programming in comfort mode' in WinKFP.

ahh i see.

seems like Winkfp (update) does the same thing. So if I was already on 241E seems like most programs out there like winkfp and autologic etc will only write the tune portion of it. Just a PSA if anybody is wondering.
Now I'm wondering how to force a full program reset. Maybe I have to downgrade and then upgrade.

Did the autologic do a full program write or did it just rewrite the tune? Full program write should disable the RSA bypass. Tune write will not.

Just for fun I went back to 241E program with autologic. It seems like I don't need a RSA bypass despite going back to stock?
When I try RSA bypass, it says the full read after autologic was not stock.

I could go straight into flashing my tune and car starts up okay. Is the RSA bypass somewhat permanent?

Okay, so definitely a K-line car and there's nothing even going to the CAN-pins to cause an issue. Could be a bad cable, hard to say with certainty. I'll run some tests tonight and see if I can figure anything out.

Just took a look. Only populated pins on the vehicle connector are 1, 4, 5, 7, 9, and 16. All others don't even have wire receptacles.

Hmm that’s a tough one, I’ll try to replicate.

Does your OBDII port have anything going to pins 6 and 14?

Oh yeah, failed to specify that. Can confirm, both cables had the latency timer set to 1ms.

So something is failing when it's trying to write to the external flash. To be honest I haven't messed with the slow RSA delete too much so maybe I missed something there, so I'll double check that.

In the mean time, I'd double check that your cable's latency is set to 1ms in device manager - especially since your old cable worked with WinKFP (since you have an 06 car the Bimmergeeks cable isn't strictly necessary, but it's still good to have around for newer cars or if you end up doing a bench flash using the D-CAN pins directly).

Hey all. Just got done attempting this with an 06 M5. Short version: semi-bricked at RSA bypass, un-bricked in WinKFP with some headaches/sweating.

Used the Bimmergeeks pro cable (with the switch) and a Deutronic DBL430 set at 13.6V.

Before getting the cable, I successfully did a full read with my old K+DCAN cable (had an adapter instead of a switch bridging pins 7+8). I backed up the ~5MB binary file and tune.
Created copies of the binary, loaded into the binary modification tool, it recognized. Purchased a single-VIN license, created some modified binaries to test it out.

The bimmergeeks cable arrived, and I started with an attempt to read the ISN. It failed (as expected), and recommended the RSA bypass. I attempted the slow version (since I have no experience outside of diagnostics and coding).
Failed after erasing the ECU: "Failed to set flash address @ 0x450000" (image attached).

The ECU would still identify in WinKFP, and attempt to flash. However, the flash was failing to take last night. Partway though the process, it would cycle out of flash mode and abort. Usually citing a security access error when trying to switch programming mode. Checked in ISTA+ afterward, and it would load the module tree and list the DME as blue (ECU with aborted flash).

Tried the Bimmergeeks cable this morning, with the toggle switch in the other positon. The flash took, so I foolishly decided that was the problem.

Tried the RSA bypass (slow) again, and got the same error (failed to set flash address). That's the image below (I didn't take a screen shot last night, but I believe it failed at exactly the same point).

Tried WinKFP again, and I could NOT get it to take the flash. It would keep getting error 211, usually citing a security access problem prior to aborting the flash, at varying percentages (never failing at the same point).

Finally ran it with my old K+DCAN cable today, and it flashed successfully. The car is back where it started now, un-bricked and running.

I haven't tried the MSS6x flasher with the old K+DCAN cable, as I'm not sure if it has the proper EDIABAS firmware. (I paid a premium for it in ~2011 or 2012, it's listed as INPA compatible on the label). While my car is old enough to (probably) not be subject to the bug, I wasn't ready to take the risk ("not thoroughly tested" was enough to convince me to shell out for a 2nd cable).

Have I stupidly failed to properly set something up for the RSA bypass? Or is it possible I just got a spotty interface cable?

Thanks again terra! For now, just updated ecu software to 241E. Verified the before and after using your application. Will take a full read later on.