phaneron/Kelsidavis-WoWee
1
0
Fork 0
mirror of https://github.com/Kelsidavis/WoWee.git synced 2026-05-03 00:03:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Fix Warden module parse fallback and macOS FMOD integrity aliases

Browse source
This commit is contained in:
Kelsi 2026-02-25 09:26:34 -08:00
parent 1fab17e639
commit fc68c6c6b7
2 changed files with 178 additions and 83 deletions
Download patch file Download diff file Expand all files Collapse all files

50
src/auth/integrity.cpp
View file

@ -3,6 +3,7 @@
#include <fstream> #include <fstream>
#include <sstream> #include <sstream>
#include <vector>
namespace wowee { namespace wowee {
namespace auth { namespace auth {
@ -41,39 +42,46 @@ bool computeIntegrityHashWin32WithExe(const std::array<uint8_t, 16>& checksumSal
// that distribution rather than a stock 1.12.1 client, so when using Turtle's executable we include // that distribution rather than a stock 1.12.1 client, so when using Turtle's executable we include
// Turtle-specific DLLs as well. // Turtle-specific DLLs as well.
const bool isTurtleExe = (exeName == "TurtleWoW.exe"); const bool isTurtleExe = (exeName == "TurtleWoW.exe");
const char* kFilesBase[] = { // Some macOS client layouts use FMOD dylib naming instead of fmod.dll.
nullptr, // exeName // We accept the first matching filename in each alias group.
"fmod.dll", std::vector<std::vector<std::string>> fileGroups = {
"ijl15.dll", { exeName },
"dbghelp.dll", { "fmod.dll", "fmod.dylib", "libfmod.dylib", "fmodex.dll", "fmodex.dylib", "libfmod.so" },
"unicows.dll", { "ijl15.dll" },
{ "dbghelp.dll" },
{ "unicows.dll" },
}; };
const char* kFilesTurtleExtra[] = {
"twloader.dll",
"twdiscord.dll",
};
std::vector<std::string> files;
files.reserve(1 + 4 + (isTurtleExe ? (sizeof(kFilesTurtleExtra) / sizeof(kFilesTurtleExtra[0])) : 0));
for (const char* f : kFilesBase) {
files.push_back(f ? std::string(f) : exeName);
}
if (isTurtleExe) { if (isTurtleExe) {
for (const char* f : kFilesTurtleExtra) files.push_back(std::string(f)); fileGroups.push_back({ "twloader.dll" });
fileGroups.push_back({ "twdiscord.dll" });
} }
std::vector<uint8_t> allFiles; std::vector<uint8_t> allFiles;
std::string err; for (const auto& group : fileGroups) {
for (const auto& nameStr : files) { bool foundInGroup = false;
std::string groupErr;
for (const auto& nameStr : group) {
std::vector<uint8_t> bytes; std::vector<uint8_t> bytes;
std::string path = miscDir; std::string path = miscDir;
if (!path.empty() && path.back() != '/') path += '/'; if (!path.empty() && path.back() != '/') path += '/';
path += nameStr; path += nameStr;
std::string err;
if (!readWholeFile(path, bytes, err)) { if (!readWholeFile(path, bytes, err)) {
outError = err; if (groupErr.empty()) groupErr = err;
continue;
}
allFiles.insert(allFiles.end(), bytes.begin(), bytes.end());
foundInGroup = true;
break;
}
if (!foundInGroup) {
outError = groupErr.empty() ? "missing required integrity file group" : groupErr;
return false; return false;
} }
allFiles.insert(allFiles.end(), bytes.begin(), bytes.end());
} }
// HMAC_SHA1(checksumSalt, allFiles) // HMAC_SHA1(checksumSalt, allFiles)

181
src/game/warden_module.cpp
View file

@ -529,78 +529,165 @@ bool WardenModule::parseExecutableFormat(const std::vector<uint8_t>& exeData) {
std::cout << "[WardenModule] Allocated " << moduleSize_ << " bytes of executable memory at " std::cout << "[WardenModule] Allocated " << moduleSize_ << " bytes of executable memory at "
<< moduleMemory_ << '\n'; << moduleMemory_ << '\n';
// Parse copy/skip pairs (MaNGOS/TrinityCore format) auto readU16LE = [&](size_t at) -> uint16_t {
// Format: repeated [2B copy_count][copy_count bytes data][2B skip_count] return static_cast<uint16_t>(exeData[at] | (exeData[at + 1] << 8));
// Copy = copy from source to dest, Skip = advance dest pointer (zeros) };
// Terminates when copy_count == 0
size_t pos = 4; // Skip 4-byte size header enum class PairFormat {
CopyDataSkip, // [copy][data][skip]
SkipCopyData, // [skip][copy][data]
CopySkipData // [copy][skip][data]
};
auto tryParsePairs = [&](PairFormat format,
std::vector<uint8_t>& imageOut,
size_t& relocPosOut,
size_t& finalOffsetOut,
int& pairCountOut) -> bool {
imageOut.assign(moduleSize_, 0);
size_t pos = 4; // Skip 4-byte final size header
size_t destOffset = 0; size_t destOffset = 0;
int pairCount = 0; int pairCount = 0;
while (pos + 2 <= exeData.size()) { while (pos + 2 <= exeData.size()) {
// Read copy count (2 bytes LE) uint16_t copyCount = 0;
uint16_t copyCount = exeData[pos] | (exeData[pos + 1] << 8); uint16_t skipCount = 0;
switch (format) {
case PairFormat::CopyDataSkip: {
copyCount = readU16LE(pos);
pos += 2; pos += 2;
if (copyCount == 0) { if (copyCount == 0) {
break; // End of copy/skip pairs relocPosOut = pos;
finalOffsetOut = destOffset;
pairCountOut = pairCount;
imageOut.resize(moduleSize_);
return true;
} }
if (copyCount > 0) { if (pos + copyCount > exeData.size() || destOffset + copyCount > moduleSize_) {
if (pos + copyCount > exeData.size()) {
std::cerr << "[WardenModule] Copy section extends beyond data bounds" << '\n';
#ifdef _WIN32
VirtualFree(moduleMemory_, 0, MEM_RELEASE);
#else
munmap(moduleMemory_, moduleSize_);
#endif
moduleMemory_ = nullptr;
return false; return false;
} }
if (destOffset + copyCount > moduleSize_) { std::memcpy(imageOut.data() + destOffset, exeData.data() + pos, copyCount);
std::cerr << "[WardenModule] Copy section exceeds module size" << '\n';
#ifdef _WIN32
VirtualFree(moduleMemory_, 0, MEM_RELEASE);
#else
munmap(moduleMemory_, moduleSize_);
#endif
moduleMemory_ = nullptr;
return false;
}
std::memcpy(
static_cast<uint8_t*>(moduleMemory_) + destOffset,
exeData.data() + pos,
copyCount
);
pos += copyCount; pos += copyCount;
destOffset += copyCount; destOffset += copyCount;
}
// Read skip count (2 bytes LE) if (pos + 2 > exeData.size()) {
uint16_t skipCount = 0; return false;
if (pos + 2 <= exeData.size()) { }
skipCount = exeData[pos] | (exeData[pos + 1] << 8); skipCount = readU16LE(pos);
pos += 2; pos += 2;
break;
} }
// Advance dest pointer by skipCount (gaps are zero-filled from memset) case PairFormat::SkipCopyData: {
if (pos + 4 > exeData.size()) {
return false;
}
skipCount = readU16LE(pos);
pos += 2;
copyCount = readU16LE(pos);
pos += 2;
if (skipCount == 0 && copyCount == 0) {
relocPosOut = pos;
finalOffsetOut = destOffset;
pairCountOut = pairCount;
imageOut.resize(moduleSize_);
return true;
}
if (destOffset + skipCount > moduleSize_) {
return false;
}
destOffset += skipCount; destOffset += skipCount;
pairCount++; if (pos + copyCount > exeData.size() || destOffset + copyCount > moduleSize_) {
std::cout << "[WardenModule] Pair " << pairCount << ": copy " << copyCount return false;
<< ", skip " << skipCount << " (dest offset=" << destOffset << ")" << '\n'; }
std::memcpy(imageOut.data() + destOffset, exeData.data() + pos, copyCount);
pos += copyCount;
destOffset += copyCount;
break;
} }
// Save position — remaining decompressed data contains relocation entries case PairFormat::CopySkipData: {
relocDataOffset_ = pos; if (pos + 4 > exeData.size()) {
return false;
}
copyCount = readU16LE(pos);
pos += 2;
skipCount = readU16LE(pos);
pos += 2;
std::cout << "[WardenModule] Parsed " << pairCount << " skip/copy pairs, final offset: " if (copyCount == 0 && skipCount == 0) {
<< destOffset << "/" << finalCodeSize << '\n'; relocPosOut = pos;
finalOffsetOut = destOffset;
pairCountOut = pairCount;
imageOut.resize(moduleSize_);
return true;
}
if (pos + copyCount > exeData.size() || destOffset + copyCount > moduleSize_) {
return false;
}
std::memcpy(imageOut.data() + destOffset, exeData.data() + pos, copyCount);
pos += copyCount;
destOffset += copyCount;
break;
}
}
if (destOffset + skipCount > moduleSize_) {
return false;
}
destOffset += skipCount;
pairCount++;
}
return false;
};
std::vector<uint8_t> parsedImage;
size_t parsedRelocPos = 0;
size_t parsedFinalOffset = 0;
int parsedPairCount = 0;
PairFormat usedFormat = PairFormat::CopyDataSkip;
bool parsed = tryParsePairs(PairFormat::CopyDataSkip, parsedImage, parsedRelocPos, parsedFinalOffset, parsedPairCount);
if (!parsed) {
usedFormat = PairFormat::SkipCopyData;
parsed = tryParsePairs(PairFormat::SkipCopyData, parsedImage, parsedRelocPos, parsedFinalOffset, parsedPairCount);
}
if (!parsed) {
usedFormat = PairFormat::CopySkipData;
parsed = tryParsePairs(PairFormat::CopySkipData, parsedImage, parsedRelocPos, parsedFinalOffset, parsedPairCount);
}
if (parsed) {
std::memcpy(moduleMemory_, parsedImage.data(), parsedImage.size());
relocDataOffset_ = parsedRelocPos;
const char* formatName = "copy/data/skip";
if (usedFormat == PairFormat::SkipCopyData) formatName = "skip/copy/data";
if (usedFormat == PairFormat::CopySkipData) formatName = "copy/skip/data";
std::cout << "[WardenModule] Parsed " << parsedPairCount << " pairs using format "
<< formatName << ", final offset: " << parsedFinalOffset << "/" << finalCodeSize << '\n';
std::cout << "[WardenModule] Relocation data starts at decompressed offset " << relocDataOffset_ std::cout << "[WardenModule] Relocation data starts at decompressed offset " << relocDataOffset_
<< " (" << (exeData.size() - relocDataOffset_) << " bytes remaining)" << '\n'; << " (" << (exeData.size() - relocDataOffset_) << " bytes remaining)" << '\n';
return true;
}
// Fallback: copy raw payload (without the 4-byte size header) into module memory.
// This keeps loading alive for servers where packet flow can continue with hash/check fallbacks.
if (exeData.size() > 4) {
size_t rawCopySize = std::min(moduleSize_, exeData.size() - 4);
std::memcpy(moduleMemory_, exeData.data() + 4, rawCopySize);
}
relocDataOffset_ = 0;
std::cerr << "[WardenModule] Could not parse copy/skip pairs (all known layouts failed); using raw payload fallback" << '\n';
return true; return true;
} }