Mirror/TrinityCore
1
0
Fork 0
mirror of https://github.com/TrinityCore/TrinityCore.git synced 2026-01-18 00:18:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
cbcd149ce508dfe8ff508391f9e32b7dc2cfbe5c
TrinityCore/src/server/game/Warden/Warden.cpp

290 lines
8.2 KiB
C++
Raw Blame History

/*
* This file is part of the TrinityCore Project. See AUTHORS file for Copyright information
*
* This program is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License as published by the
* Free Software Foundation; either version 2 of the License, or (at your
* option) any later version.
*
* This program is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
* more details.
*
* You should have received a copy of the GNU General Public License along
* with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include "Common.h"
#include "WorldPacket.h"
#include "WorldSession.h"
#include "Log.h"
#include "Opcodes.h"
#include "ByteBuffer.h"
#include "GameTime.h"
#include "World.h"
#include "Util.h"
#include "Warden.h"
#include "AccountMgr.h"
#include "WardenPackets.h"
#include <openssl/sha.h>
#include <openssl/md5.h>
#include <charconv>
Warden::Warden() : _session(nullptr), _checkTimer(10 * IN_MILLISECONDS), _clientResponseTimer(0),
_dataSent(false), _initialized(false)
{
}
Warden::~Warden()
{
_initialized = false;
}
void Warden::MakeModuleForClient()
{
TC_LOG_DEBUG("warden", "Make module for client");
InitializeModuleForClient(_module.emplace());
MD5_CTX ctx;
MD5_Init(&ctx);
MD5_Update(&ctx, _module->CompressedData, _module->CompressedSize);
MD5_Final(_module->Id.data(), &ctx);
}
void Warden::SendModuleToClient()
{
TC_LOG_DEBUG("warden", "Send module to client");
// Create packet structure
WardenModuleTransfer packet;
uint32 sizeLeft = _module->CompressedSize;
uint32 pos = 0;
uint16 burstSize;
while (sizeLeft > 0)
{
burstSize = sizeLeft < 500 ? sizeLeft : 500;
packet.Command = WARDEN_SMSG_MODULE_CACHE;
packet.DataSize = burstSize;
memcpy(packet.Data, _module->CompressedData + pos, burstSize);
sizeLeft -= burstSize;
pos += burstSize;
EndianConvert(packet.DataSize);
EncryptData(reinterpret_cast<uint8*>(&packet), burstSize + 3);
WorldPacket pkt1(SMSG_WARDEN3_DATA, burstSize + 3);
pkt1.append(reinterpret_cast<uint8*>(&packet), burstSize + 3);
_session->SendPacket(&pkt1);
}
}
void Warden::RequestModule()
{
TC_LOG_DEBUG("warden", "Request module");
// Create packet structure
WardenModuleUse request;
request.Command = WARDEN_SMSG_MODULE_USE;
request.ModuleId = _module->Id;
request.ModuleKey = _module->Key;
request.Size = _module->CompressedSize;
EndianConvert(request.Size);
// Encrypt with warden RC4 key.
EncryptData(reinterpret_cast<uint8*>(&request), sizeof(WardenModuleUse));
WorldPacket pkt(SMSG_WARDEN3_DATA, sizeof(WardenModuleUse));
pkt.append(reinterpret_cast<uint8*>(&request), sizeof(WardenModuleUse));
_session->SendPacket(&pkt);
}
void Warden::Update(uint32 diff)
{
if (!_initialized)
return;
if (_dataSent)
{
uint32 maxClientResponseDelay = sWorld->getIntConfig(CONFIG_WARDEN_CLIENT_RESPONSE_DELAY);
if (maxClientResponseDelay > 0)
{
// Kick player if client response delays more than set in config
if (_clientResponseTimer > maxClientResponseDelay * IN_MILLISECONDS)
{
TC_LOG_WARN("warden", "%s (latency: %u, IP: %s) exceeded Warden module response delay (%s) - disconnecting client",
_session->GetPlayerInfo().c_str(), _session->GetLatency(), _session->GetRemoteAddress().c_str(), secsToTimeString(maxClientResponseDelay, TimeFormat::ShortText).c_str());
_session->KickPlayer("Warden::Update Warden module response delay exceeded");
}
else
_clientResponseTimer += diff;
}
}
else
{
if (diff >= _checkTimer)
RequestChecks();
else
_checkTimer -= diff;
}
}
void Warden::DecryptData(uint8* buffer, uint32 length)
{
_inputCrypto.UpdateData(buffer, length);
}
void Warden::EncryptData(uint8* buffer, uint32 length)
{
_outputCrypto.UpdateData(buffer, length);
}
bool Warden::IsValidCheckSum(uint32 checksum, uint8 const* data, const uint16 length)
{
uint32 newChecksum = BuildChecksum(data, length);
if (checksum != newChecksum)
{
TC_LOG_DEBUG("warden", "CHECKSUM IS NOT VALID");
return false;
}
else
{
TC_LOG_DEBUG("warden", "CHECKSUM IS VALID");
return true;
}
}
struct keyData {
union
{
struct
{
uint8 bytes[20];
} bytes;
struct
{
uint32 ints[5];
} ints;
};
};
uint32 Warden::BuildChecksum(uint8 const* data, uint32 length)
{
keyData hash;
SHA1(data, length, hash.bytes.bytes);
uint32 checkSum = 0;
for (uint8 i = 0; i < 5; ++i)
checkSum = checkSum ^ hash.ints.ints[i];
return checkSum;
}
char const* Warden::ApplyPenalty(WardenCheck const* check)
{
WardenActions action;
if (check)
action = check->Action;
else
action = WardenActions(sWorld->getIntConfig(CONFIG_WARDEN_CLIENT_FAIL_ACTION));
switch (action)
{
case WARDEN_ACTION_KICK:
_session->KickPlayer("Warden::Penalty");
break;
case WARDEN_ACTION_BAN:
{
std::string accountName;
AccountMgr::GetName(_session->GetAccountId(), accountName);
std::string banReason = "Warden Anticheat Violation";
// Check can be NULL, for example if the client sent a wrong signature in the warden packet (CHECKSUM FAIL)
if (check)
banReason += Trinity::StringFormat(": %s (CheckId: %u", check->Comment.c_str(), uint32(check->CheckId));
sWorld->BanAccount(BAN_ACCOUNT, accountName, sWorld->getIntConfig(CONFIG_WARDEN_CLIENT_BAN_DURATION), banReason, "Server");
break;
}
case WARDEN_ACTION_LOG:
default:
return "None";
}
return EnumUtils::ToTitle(action);
}
void Warden::HandleData(ByteBuffer& buff)
{
DecryptData(buff.contents(), buff.size());
uint8 opcode;
buff >> opcode;
TC_LOG_DEBUG("warden", "Got packet, opcode %02X, size %u", opcode, uint32(buff.size() - 1));
buff.hexlike();
switch (opcode)
{
case WARDEN_CMSG_MODULE_MISSING:
SendModuleToClient();
break;
case WARDEN_CMSG_MODULE_OK:
RequestHash();
break;
case WARDEN_CMSG_CHEAT_CHECKS_RESULT:
HandleCheckResult(buff);
break;
case WARDEN_CMSG_MEM_CHECKS_RESULT:
TC_LOG_DEBUG("warden", "NYI WARDEN_CMSG_MEM_CHECKS_RESULT received!");
break;
case WARDEN_CMSG_HASH_RESULT:
HandleHashResult(buff);
InitializeModule();
break;
case WARDEN_CMSG_MODULE_FAILED:
TC_LOG_DEBUG("warden", "NYI WARDEN_CMSG_MODULE_FAILED received!");
break;
default:
TC_LOG_WARN("warden", "Got unknown warden opcode %02X of size %u.", opcode, uint32(buff.size() - 1));
break;
}
}
bool Warden::ProcessLuaCheckResponse(std::string const& msg)
{
static constexpr char WARDEN_TOKEN[] = "_TW\t";
if (!StringStartsWith(msg, WARDEN_TOKEN))
return false;
uint16 id = 0;
std::from_chars(msg.data() + sizeof(WARDEN_TOKEN) - 1, msg.data() + msg.size(), id, 10);
if (id < sWardenCheckMgr->GetMaxValidCheckId())
{
WardenCheck const& check = sWardenCheckMgr->GetCheckData(id);
if (check.Type == LUA_EVAL_CHECK)
{
char const* penalty = ApplyPenalty(&check);
TC_LOG_WARN("warden", "%s failed Warden check %u (%s). Action: %s", _session->GetPlayerInfo().c_str(), id, EnumUtils::ToConstant(check.Type), penalty);
return true;
}
}
char const* penalty = ApplyPenalty(nullptr);
TC_LOG_WARN("warden", "%s sent bogus Lua check response for Warden. Action: %s", _session->GetPlayerInfo().c_str(), penalty);
return true;
}
void WorldSession::HandleWardenData(WorldPackets::Warden::WardenData& packet)
{
if (!_warden || packet.Data.empty())
return;
_warden->HandleData(packet.Data);
}
Reference in New Issue View Git Blame Copy Permalink