lots of changes

2026-02-01 20:59:23 +01:00 · 2026-02-01 20:59:23 +01:00 · 3b6de6968d
commit 3b6de6968d
parent 8af4ca525a
24 changed files with 879 additions and 258 deletions
--- a/rnex-core/src/prudp/mod.rs
+++ b/rnex-core/src/prudp/mod.rs
@ -1,5 +1,6 @@
 pub mod encryption;
 pub mod socket_addr;
 pub mod station_url;
+pub mod ticket;
 pub mod types_flags;
 pub mod virtual_port;
--- a/rnex-core/src/prudp/socket_addr.rs
+++ b/rnex-core/src/prudp/socket_addr.rs
@ -1,26 +1,24 @@
+use hmac::Hmac;
+use macros::RmcSerialize;
+use md5::digest::Mac;
+use rnex_core::prudp::virtual_port::VirtualPort;
 use std::io::Write;
 use std::net::SocketAddrV4;
-use hmac::{Hmac};
-use md5::digest::Mac;
-use macros::RmcSerialize;
-use rnex_core::prudp::virtual_port::VirtualPort;

 type Md5Hmac = Hmac<md5::Md5>;

 #[derive(Eq, PartialEq, Hash, Debug, Copy, Clone, Ord, PartialOrd, RmcSerialize)]
 #[rmc_struct(0)]
-pub struct PRUDPSockAddr{
+pub struct PRUDPSockAddr {
    pub regular_socket_addr: SocketAddrV4,
-    pub virtual_port: VirtualPort
+    pub virtual_port: VirtualPort,
 }

-
-
-impl PRUDPSockAddr{
-    pub fn new(regular_socket_addr: SocketAddrV4, virtual_port: VirtualPort) -> Self{
-        Self{
+impl PRUDPSockAddr {
+    pub fn new(regular_socket_addr: SocketAddrV4, virtual_port: VirtualPort) -> Self {
+        Self {
            regular_socket_addr,
-            virtual_port
+            virtual_port,
        }
    }

@ -30,8 +28,11 @@ impl PRUDPSockAddr{
        let data = self.regular_socket_addr.ip().octets().to_vec();
        //data.extend_from_slice(&self.regular_socket_addr.port().to_be_bytes());

-        hmac.write_all(&data).expect("figuring this out was complete ass");
-        let result: [u8; 16] = hmac.finalize().into_bytes()[0..16].try_into().expect("fuck");
+        hmac.write_all(&data)
+            .expect("figuring this out was complete ass");
+        let result: [u8; 16] = hmac.finalize().into_bytes()[0..16]
+            .try_into()
+            .expect("fuck");
        result
    }
-}
+}
--- a/rnex-core/src/prudp/ticket.rs
+++ b/rnex-core/src/prudp/ticket.rs
@ -0,0 +1,81 @@
+use std::io::Cursor;
+
+use log::{error, info};
+use rc4::{KeyInit, Rc4, Rc4Core, StreamCipher, cipher::StreamCipherCoreWrapper};
+use typenum::{U16, U32};
+use v_byte_helpers::{IS_BIG_ENDIAN, ReadExtensions};
+
+use crate::{
+    kerberos::{SESSION_KEY_LENGTH, SESSION_KEY_LENGTH_TY, TicketInternalData, derive_key},
+    nex::account::Account,
+    rmc::structures::RmcSerialize,
+};
+
+pub fn read_secure_connection_data(
+    data: &[u8],
+    act: &Account,
+) -> Option<([u8; SESSION_KEY_LENGTH], u32, u32)> {
+    let mut cursor = Cursor::new(data);
+
+    let mut ticket_data: Vec<u8> = Vec::deserialize(&mut cursor).ok()?;
+    let mut request_data: Vec<u8> = Vec::deserialize(&mut cursor).ok()?;
+    info!(
+        "done
+    request data"
+    );
+
+    let ticket_data_size = ticket_data.len();
+
+    let ticket_data = &mut ticket_data[0..ticket_data_size - 0x10];
+
+    let server_key = derive_key(act.pid, &act.kerbros_password[..]);
+
+    let mut rc4: StreamCipherCoreWrapper<Rc4Core<U16>> =
+        Rc4::new_from_slice(&server_key).expect("unable to init rc4 keystream");
+
+    rc4.apply_keystream(ticket_data);
+
+    let ticket_data: &TicketInternalData = match bytemuck::try_from_bytes(ticket_data) {
+        Ok(v) => v,
+        Err(e) => {
+            error!("unable to read internal ticket data: {}", e);
+            return None;
+        }
+    };
+
+    // todo: add ticket expiration
+
+    let TicketInternalData {
+        session_key,
+        pid: ticket_source_pid,
+        issued_time,
+    } = *ticket_data;
+
+    // todo: add checking if tickets are signed with a valid md5-hmac
+    let request_data_length = request_data.len();
+    let request_data = &mut request_data[0..request_data_length - 0x10];
+
+    let mut rc4: StreamCipherCoreWrapper<Rc4Core<SESSION_KEY_LENGTH_TY>> =
+        Rc4::new_from_slice(&session_key).expect("unable to init rc4 keystream");
+
+    rc4.apply_keystream(request_data);
+
+    let mut reqest_data_cursor = Cursor::new(request_data);
+
+    let pid: u32 = reqest_data_cursor.read_struct(IS_BIG_ENDIAN).ok()?;
+
+    if pid != ticket_source_pid {
+        let ticket_created_on = issued_time.to_regular_time();
+
+        error!(
+            "someone tried to spoof their pid, ticket was created on: {}",
+            ticket_created_on.to_rfc2822()
+        );
+        return None;
+    }
+
+    let _cid: u32 = reqest_data_cursor.read_struct(IS_BIG_ENDIAN).ok()?;
+    let response_check: u32 = reqest_data_cursor.read_struct(IS_BIG_ENDIAN).ok()?;
+
+    Some((session_key, pid, response_check))
+}