codePugHacKEr/bedrock-protocol
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Rename src/auth -> src/handshake

Browse source
This commit is contained in:
extremeheat 2021-05-12 04:20:35 -04:00
commit 879a4c21ba
6 changed files with 15 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

8
src/client.js
View file

@ -7,9 +7,9 @@ const debug = require('debug')('minecraft-protocol')
const Options = require('./options')
const auth = require('./client/auth')
const { Encrypt } = require('./auth/encryption')
const Login = require('./auth/login')
const LoginVerify = require('./auth/loginVerify')
const { KeyExchange } = require('./handshake/keyExchange')
const Login = require('./handshake/login')
const LoginVerify = require('./handshake/loginVerify')
const debugging = false
@ -25,7 +25,7 @@ class Client extends Connection {
this.serializer = createSerializer(this.options.version)
this.deserializer = createDeserializer(this.options.version)
Encrypt(this, null, this.options)
KeyExchange(this, null, this.options)
Login(this, null, this.options)
LoginVerify(this, null, this.options)

0
src/auth/constants.js → src/handshake/constants.js
View file

12
src/auth/encryption.js → src/handshake/keyExchange.js
View file

@ -8,7 +8,8 @@ const curve = 'secp384r1'
const pem = { format: 'pem', type: 'sec1' }
const der = { format: 'der', type: 'spki' }
function Encrypt (client, server, options) {
function KeyExchange (client, server, options) {
// Generate a key pair at program start up
client.ecdhKeyPair = crypto.generateKeyPairSync('ec', { namedCurve: curve })
client.publicKeyDER = client.ecdhKeyPair.publicKey.export(der)
client.privateKeyPEM = client.ecdhKeyPair.privateKey.export(pem)
@ -31,10 +32,9 @@ function Encrypt (client, server, options) {
const secretHash = crypto.createHash('sha256')
secretHash.update(SALT)
secretHash.update(client.sharedSecret)
// console.log('[encrypt] Shared secret', client.sharedSecret)
client.secretKeyBytes = secretHash.digest()
// console.log('[encrypt] Shared hash', client.secretKeyBytes)
const token = JWT.sign({
salt: toBase64(SALT),
signedToken: client.clientX509
@ -56,13 +56,14 @@ function Encrypt (client, server, options) {
throw Error('Server did not return a valid JWT, cannot start encryption!')
}
// TODO: Should we do some JWT signature validation here? Seems pointless
// No verification here, not needed
const [header, payload] = jwt.split('.').map(k => Buffer.from(k, 'base64'))
const head = JSON.parse(String(header))
const body = JSON.parse(String(payload))
const pubKeyDer = crypto.createPublicKey({ key: Buffer.from(head.x5u, 'base64'), ...der })
// Shared secret from the client's public key + our private key
client.sharedSecret = crypto.diffieHellman({ privateKey: client.ecdhKeyPair.privateKey, publicKey: pubKeyDer })
@ -76,6 +77,7 @@ function Encrypt (client, server, options) {
client.startEncryption(iv)
// It works! First encrypted packet :)
client.write('client_to_server_handshake', {})
this.emit('join')
client.status = ClientStatus.Initializing
@ -89,4 +91,4 @@ function toBase64 (string) {
return Buffer.from(string).toString('base64')
}
module.exports = { Encrypt }
module.exports = { KeyExchange }

0
src/auth/login.js → src/handshake/login.js
View file

0
src/auth/loginVerify.js → src/handshake/loginVerify.js
View file

8
src/serverPlayer.js
View file

@ -3,9 +3,9 @@ const fs = require('fs')
const Options = require('./options')
const debug = require('debug')('minecraft-protocol')
const { Encrypt } = require('./auth/encryption')
const Login = require('./auth/login')
const LoginVerify = require('./auth/loginVerify')
const { KeyExchange } = require('./handshake/keyExchange')
const Login = require('./handshake/login')
const LoginVerify = require('./handshake/loginVerify')
class Player extends Connection {
constructor (server, connection) {
@ -16,7 +16,7 @@ class Player extends Connection {
this.connection = connection
this.options = server.options
Encrypt(this, server, server.options)
KeyExchange(this, server, server.options)
Login(this, server, server.options)
LoginVerify(this, server, server.options)