1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
|
package MasterServer::Core::Secure;
use strict;
use warnings;
use POSIX qw/strftime/;
use Exporter 'import';
our @EXPORT = qw| load_ciphers
secure_string
auth_browser
auth_server
validate_string |;
################################################################################
## Supported Games list ciphers
## Clear the Supported Games table and insert the list of supported games AND
## their ciphers / default ports / descriptions included from the
## data/supportedgames.pl file.
##
## Only config files after 5 October 2015 work with this script.
################################################################################
sub load_ciphers {
my $self = shift;
# first delete the old cipher database
$self->clear_ciphers();
# start inserting ciphers (bulk)
$self->{dbh}->begin_work;
# iterate through the game list and insert entries
for (keys %{$self->{game}}) {
my %opt = ();
$opt{gamename} = lc $_;
$opt{cipher} = $self->{game}->{$_}->{key};
$opt{description} = $self->{game}->{$_}->{label} || 'Unknown Game';
$opt{default_qport} = $self->{game}->{$_}->{port} || 0;
# insert the game/cipher in the db or halt on error
if ($self->insert_cipher(%opt) < 0) {
$self->{dbh}->rollback;
$self->log("fatal", "could not update cipher database");
$self->halt();
}
}
# commit
$self->{dbh}->commit;
$self->log("info", "cipher database successfully updated");
}
################################################################################
# generate a random string of 6 characters long for the \secure\ challenge
# returns a random string, only uppercase characters
################################################################################
sub secure_string {
my @c = ('A'..'Z');
my $s = "";
$s .= $c[rand @c] for 1..6;
return $s;
}
################################################################################
# authenticate browser response for secure/validate challenge
# returns 1 on valid response, 0 on invalid
################################################################################
sub auth_browser {
my ($self, %o) = @_;
# exceptions (debugging, exclusion)
return 1 if ($self->{debug_validate});
return 1 if ($self->{ignore_browser_key} =~ m/$o{gamename}/i);
# calculate validate string
my $val = get_validate_string(
$self->get_game_props(gamename => $o{gamename})->[0]->{cipher},
$o{secure},
$o{enctype} || 0
);
# return match or no match
return ( $o{validate} && ($val eq $o{validate}) );
}
################################################################################
# authenticate server response for secure/validate challenge
# returns 1 on valid response, 0 on invalid
################################################################################
sub auth_server {
my ($self, %o) = @_;
# exceptions (debugging, exclusion)
return 1 if ($self->{debug_validate});
return 1 if ($self->{ignore_beacon_key} =~ m/$o{gamename}/i);
# calculate validate string
my $val = get_validate_string(
$self->get_game_props(gamename => $o{gamename})->[0]->{cipher},
$o{secure},
$o{enctype} || 0
);
# return match or no match
return ( $o{validate} && ($val eq $o{validate}) );
}
################################################################################
# calculate and return validate string
# requires gamename
################################################################################
sub validate_string {
my ($self, %o) = @_;
return get_validate_string(
$self->get_game_props(gamename => $o{gamename})->[0]->{cipher},
$o{secure},
$o{enctype} || 0
);
}
################################################################################
# algorithm to process the response to the secure/validate query. processes
# the secure_string and returns the challenge_string with which GameSpy secure
# protocol authenticates games.
#
# the following algorithm is based on gsmsalg.h in GSMSALG 0.3.3 by Luigi
# Auriemma, aluigi@autistici.org, aluigi.org, copyright 2004-2008. GSMSALG 0.3.3
# was released under the GNU General Public License, for more information, see
# the original software at http://aluigi.altervista.org/papers.htm#gsmsalg
#
# conversion and modification of the algorithm by Darkelarious, June 2014 with
# explicit, written permission of Luigi Auriemma.
#
# use pre-built rotations for enctype
# -- see GSMSALG 0.3.3 reference for copyright and more information
my @enc_chars = ( qw |
001 186 250 178 081 000 084 128 117 022 142 142 002 008 054 165
045 005 013 022 082 007 180 034 140 233 009 214 185 038 000 004
006 005 000 019 024 196 030 091 029 118 116 252 080 081 006 022
000 081 040 000 004 010 041 120 081 000 001 017 082 022 006 074
032 132 001 162 030 022 071 022 050 081 154 196 003 042 115 225
045 079 024 075 147 076 015 057 010 000 004 192 018 012 154 094
002 179 024 184 007 012 205 033 005 192 169 065 067 004 060 082
117 236 152 128 029 008 002 029 088 132 001 078 059 106 083 122
085 086 087 030 127 236 184 173 000 112 031 130 216 252 151 139
240 131 254 014 118 003 190 057 041 119 048 224 043 255 183 158
001 004 248 001 014 232 083 255 148 012 178 069 158 010 199 006
024 001 100 176 003 152 001 235 002 176 001 180 018 073 007 031
095 094 093 160 079 091 160 090 089 088 207 082 084 208 184 052
002 252 014 066 041 184 218 000 186 177 240 018 253 035 174 182
069 169 187 006 184 136 020 036 169 000 020 203 036 018 174 204
087 086 238 253 008 048 217 253 139 062 010 132 070 250 119 184
|);
#
# args: game cipher, 6-char challenge string, encryption type
# returns: validate string (usually 8 characters long)
# !! requires cipher hash to be configured in config! (imported or otherwise)
################################################################################
sub get_validate_string {
my ($cipher_string, $secure_string, $enctype) = @_;
# convert to array of characters
my @cip = split "", $cipher_string || "";
my @sec = split "", $secure_string || "";
# length of strings/arrays which should be 6
my $sec_len = scalar @sec;
my $cip_len = scalar @cip;
# from this point on, work with ordinal values
for (0..$sec_len-1) { $sec[$_] = ord $sec[$_]; }
for (0..$cip_len-1) { $cip[$_] = ord $cip[$_]; }
# helper vars
my ($i,$j,$k,$l,$m,$n,$p);
# too short or too long -- return empty string
return "" if ($sec_len <= 0 || $sec_len > 8);
return "" if ($cip_len <= 0 || $cip_len > 8);
# temporary array with ascii characters
my @enc;
for(0..255) {$enc[$_] = $_;}
$j = 0;
for(0..255) {
$j += $enc[$_] + $cip[$_ % $cip_len];
$j = $j % 256;
$l = $enc[$j];
$enc[$j] = $enc[$_];
$enc[$_] = $l;
}
# store temporary positions
my @tmp;
$j = 0;
$k = 0;
for($i = 0; $sec[$i]; $i++) {
$j += $sec[$i] + 1;
$j = $j % 256;
$l = $enc[$j];
$k += $l;
$k = $k % 256;
$m = $enc[$k];
$enc[$k] = $l;
$enc[$j] = $m;
$tmp[$i] = $sec[$i] ^ $enc[($l + $m) & 0xff];
}
# part of the enctype 1-2 process
for($sec_len = $i; $sec_len % 3; $sec_len++) {
$tmp[$sec_len] = 0;
}
if ($enctype == 1) {
for (0..$sec_len-1) {
$tmp[$_] = $enc_chars[$tmp[$_]];
}
}
elsif ($enctype == 2) {
for (0..$sec_len-1) {
$tmp[$_] ^= $cip[$_ % $cip_len];
}
}
# parse the validate array
$p = 0;
my @val;
for($i = 0; $i < $sec_len; $i += 3) {
$l = $tmp[$i];
$m = $tmp[$i + 1];
$m = $m % 256;
$n = $tmp[$i + 2];
$n = $n % 256;
$val[$p++] = charshift($l >> 2);
$val[$p++] = charshift((($l & 3 ) << 4) | ($m >> 4));
$val[$p++] = charshift((($m & 15) << 2) | ($n >> 6));
$val[$p++] = charshift($n & 63);
}
# return to ascii characters
my $str = "";
for (@val) { $str .= chr $_}
return $str;
}
################################################################################
# rotate characters as part of the secure/validate algorithm.
# arg and return: int (representing a character)
################################################################################
sub charshift {
my $reg = shift;
return($reg + 65) if ($reg < 26);
return($reg + 71) if ($reg < 52);
return($reg - 4) if ($reg < 62);
return(43) if ($reg == 62);
return(47) if ($reg == 63);
# if all else fails
return(0);
}
1;
|
