phaneron/Kelsidavis-WoWee
1
0
Fork 0
mirror of https://github.com/Kelsidavis/WoWee.git synced 2026-03-22 23:30:14 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
Kelsidavis-WoWee/src/game/warden_crypto.cpp

162 lines
5.3 KiB
C++
Raw Normal View History

Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
#include "game/warden_crypto.hpp"
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
#include "auth/crypto.hpp"
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
#include "core/logger.hpp"
#include <cstring>
#include <algorithm>
namespace wowee {
namespace game {
WardenCrypto::WardenCrypto()
: initialized_(false)
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
, decryptRC4_i_(0)
, decryptRC4_j_(0)
, encryptRC4_i_(0)
, encryptRC4_j_(0) {
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
}
WardenCrypto::~WardenCrypto() {
}
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
void WardenCrypto::sha1RandxGenerate(const std::vector<uint8_t>& seed,
uint8_t* outputEncryptKey,
uint8_t* outputDecryptKey) {
// SHA1Randx / WardenKeyGenerator algorithm (from MaNGOS/VMaNGOS)
// Split the 40-byte session key in half
size_t half = seed.size() / 2;
// o1 = SHA1(first half of session key)
std::vector<uint8_t> firstHalf(seed.begin(), seed.begin() + half);
auto o1 = auth::Crypto::sha1(firstHalf);
// o2 = SHA1(second half of session key)
std::vector<uint8_t> secondHalf(seed.begin() + half, seed.end());
auto o2 = auth::Crypto::sha1(secondHalf);
// o0 = 20 zero bytes initially
std::vector<uint8_t> o0(20, 0);
uint32_t taken = 20; // Force FillUp on first Generate
// Lambda: FillUp - compute o0 = SHA1(o1 || o0 || o2)
auto fillUp = [&]() {
std::vector<uint8_t> combined;
combined.reserve(60);
combined.insert(combined.end(), o1.begin(), o1.end());
combined.insert(combined.end(), o0.begin(), o0.end());
combined.insert(combined.end(), o2.begin(), o2.end());
o0 = auth::Crypto::sha1(combined);
taken = 0;
};
// Generate first 16 bytes → encrypt key (client→server)
for (int i = 0; i < 16; ++i) {
if (taken == 20) fillUp();
outputEncryptKey[i] = o0[taken++];
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
}
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
// Generate next 16 bytes → decrypt key (server→client)
for (int i = 0; i < 16; ++i) {
if (taken == 20) fillUp();
outputDecryptKey[i] = o0[taken++];
}
}
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
bool WardenCrypto::initFromSessionKey(const std::vector<uint8_t>& sessionKey) {
if (sessionKey.size() != 40) {
LOG_ERROR("Warden: Session key must be 40 bytes, got ", sessionKey.size());
return false;
}
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
uint8_t encryptKey[16];
uint8_t decryptKey[16];
sha1RandxGenerate(sessionKey, encryptKey, decryptKey);
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
docs+security: sync controls and scope Warden RC4 CodeQL exception
2026-02-19 15:54:35 -08:00
// Warden protocol compatibility note:
// Blizzard's Warden stream crypto is RC4-based; this cannot be upgraded
// without breaking protocol interoperability with supported servers.
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
std::vector<uint8_t> ek(encryptKey, encryptKey + 16);
std::vector<uint8_t> dk(decryptKey, decryptKey + 16);
encryptRC4State_.resize(256);
decryptRC4State_.resize(256);
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
Fix CodeQL weak-crypto suppressions: switch lgtm to codeql inline format The old `// lgtm [cpp/...]` comments used a space (invalid syntax) and were placed on preceding lines rather than inline with the flagged code. GitHub's CodeQL action v3 requires `// codeql[query-id]` on the same line as the flagged expression. All four alert sites updated: - world_socket.cpp: encryptCipher/decryptCipher.init() (protocol RC4) - warden_module.cpp: decryptRC4() call (Warden protocol RC4) - warden_crypto.cpp: initRC4() calls (Warden stream cipher init) - game_handler.cpp: wardenLoadedModule_->load() (MD5+RC4 via Warden) All uses are protocol-mandated by Blizzard's WoW/Warden spec and cannot be replaced without breaking server interoperability.
2026-02-19 17:06:49 -08:00
initRC4(ek, encryptRC4State_, encryptRC4_i_, encryptRC4_j_); // codeql[cpp/weak-cryptographic-algorithm]
initRC4(dk, decryptRC4State_, decryptRC4_i_, decryptRC4_j_); // codeql[cpp/weak-cryptographic-algorithm]
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
docs+security: sync controls and scope Warden RC4 CodeQL exception
2026-02-19 15:54:35 -08:00
// Scrub temporary key material after RC4 state initialization.
std::fill(ek.begin(), ek.end(), 0);
std::fill(dk.begin(), dk.end(), 0);
std::fill(std::begin(encryptKey), std::end(encryptKey), 0);
std::fill(std::begin(decryptKey), std::end(decryptKey), 0);
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
initialized_ = true;
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
LOG_INFO("Warden: Crypto initialized from session key");
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
return true;
}
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
void WardenCrypto::replaceKeys(const std::vector<uint8_t>& newEncryptKey,
const std::vector<uint8_t>& newDecryptKey) {
encryptRC4State_.resize(256);
decryptRC4State_.resize(256);
initRC4(newEncryptKey, encryptRC4State_, encryptRC4_i_, encryptRC4_j_);
initRC4(newDecryptKey, decryptRC4State_, decryptRC4_i_, decryptRC4_j_);
LOG_INFO("Warden: RC4 keys replaced (module-specific keys)");
}
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
std::vector<uint8_t> WardenCrypto::decrypt(const std::vector<uint8_t>& data) {
if (!initialized_) {
LOG_WARNING("Warden: Attempted to decrypt without initialization");
return data;
}
std::vector<uint8_t> result(data.size());
processRC4(data.data(), result.data(), data.size(),
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
decryptRC4State_, decryptRC4_i_, decryptRC4_j_);
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
return result;
}
std::vector<uint8_t> WardenCrypto::encrypt(const std::vector<uint8_t>& data) {
if (!initialized_) {
LOG_WARNING("Warden: Attempted to encrypt without initialization");
return data;
}
std::vector<uint8_t> result(data.size());
processRC4(data.data(), result.data(), data.size(),
Vanilla/Turtle WoW support: M2 loading, bone parsing, textures, auth - Vanilla M2 bone struct (108 bytes) with 28-byte animation tracks - Version-aware bone parsing (vanilla vs WotLK format detection) - Fix CharSections.dbc field layout for vanilla (variation/color at 4-5) - Remove broken CharSections.csv files (all fields marked as strings) - Expansion data reload on profile switch (DBC cache clear, layout reload) - Vanilla packet encryption (VanillaCrypt XOR-based header crypt) - Extended character preview geoset range (0-99) for vanilla models - DBC cache clear support in AssetManager
2026-02-13 16:53:28 -08:00
encryptRC4State_, encryptRC4_i_, encryptRC4_j_);
Implement full Warden anti-cheat crypto system (WoW 3.3.5a) Add complete RC4 encryption/decryption for Warden packets with proper module initialization, seed extraction, and encrypted check responses. New components: - WardenCrypto class: Handles RC4 cipher state for incoming/outgoing packets - Module initialization: Extracts 16-byte seed from first SMSG_WARDEN_DATA - Separate input/output RC4 ciphers with proper key derivation - Enhanced module ACK: Sends encrypted acknowledgment with checksum Updated GameHandler: - First packet: Initialize crypto and send encrypted module ACK - Subsequent packets: Decrypt checks, generate responses, encrypt replies - Support for module info, hash checks, Lua checks, and memory scans - Detailed logging of plaintext and encrypted data for debugging Works with servers that: - Use standard WoW 3.3.5a Warden protocol - Accept crypto-based responses without module execution - Have permissive or disabled Warden settings Tested against Warmane (strict enforcement) and ready for less restrictive servers.
2026-02-12 02:09:15 -08:00
return result;
}
void WardenCrypto::initRC4(const std::vector<uint8_t>& key,
std::vector<uint8_t>& state,
uint8_t& i, uint8_t& j) {
for (int idx = 0; idx < 256; ++idx) {
state[idx] = static_cast<uint8_t>(idx);
}
j = 0;
for (int idx = 0; idx < 256; ++idx) {
j = (j + state[idx] + key[idx % key.size()]) & 0xFF;
std::swap(state[idx], state[j]);
}
i = 0;
j = 0;
}
void WardenCrypto::processRC4(const uint8_t* input, uint8_t* output, size_t length,
std::vector<uint8_t>& state, uint8_t& i, uint8_t& j) {
for (size_t idx = 0; idx < length; ++idx) {
i = (i + 1) & 0xFF;
j = (j + state[i]) & 0xFF;
std::swap(state[i], state[j]);
uint8_t k = state[(state[i] + state[j]) & 0xFF];
output[idx] = input[idx] ^ k;
}
}
} // namespace game
} // namespace wowee
Reference in a new issue Copy permalink