
514 lines
14 KiB
Raw Blame History

* OpenClonk,
* Copyright (c) 2003-2004, 2007-2008 Matthes Bender
* Copyright (c) 2004-2005, 2007, 2009 Günther Brammer
* Copyright (c) 2007 Julian Raschke
* Copyright (c) 2007 Peter Wortmann
* Copyright (c) 2009 Nicolas Hake
* Copyright (c) 2010 Benjamin Herr
* Copyright (c) 2010 Sven Eberhardt
* Copyright (c) 2001-2009, RedWolf Design GmbH,
* Portions might be copyrighted by other authors who have contributed
* to OpenClonk.
* Permission to use, copy, modify, and/or distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
* See isc_license.txt for full license and disclaimer.
* "Clonk" is a registered trademark of Matthes Bender.
* See clonk_trademark_license.txt for full license.
#include <C4Include.h>
#include <C4ConfigShareware.h>
#include <C4SecurityCertificates.h>
#include <C4Log.h>
#include <C4Gui.h>
#include <StdFile.h>
#ifdef HAVE_IO_H
#include <io.h>
#ifdef _DEBUG
// this disables registration checking!
#ifdef _WIN32
// Do not disable registration checking
#include <openssl/md5.h>
#include <openssl/rsa.h>
#include <openssl/evp.h>
#include <openssl/objects.h>
#include <openssl/x509.h>
#include <openssl/err.h>
#include <openssl/pem.h>
// OpenSSL / Key file handling helpers
// Loads a public key from memory. The parameter provided must point to a certificate in memory.
// If generated by, the certificate needs to be de-base64ed and de-XORed first.
// The loaded public key has to be cleared using clearPublicKey after use.
EVP_PKEY* loadPublicKey(const char *memKey, bool deBase64 = false, bool deXOR = false, const char *strXOR = 0)
const int maxKeyDataLen = 2048;
unsigned char keyData[maxKeyDataLen + 1];
unsigned int keyDataLen;
memset(keyData, 0, maxKeyDataLen + 1);
// De-base64 certificate
if (deBase64)
// The man page says that the data memKey points to will not be modified by this
BIO* memBio = BIO_new_mem_buf(const_cast<char *>(memKey), strlen(memKey));
BIO* b64Bio = BIO_new(BIO_f_base64());
BIO* bio = BIO_push(b64Bio, memBio);
(void) BIO_flush(bio);
keyDataLen = BIO_read(bio, keyData, maxKeyDataLen * 2);
keyDataLen = strlen(memKey);
memcpy(keyData, memKey, keyDataLen);
// De-XOR certificate
if (deXOR)
int xorStrLen = strlen(strXOR);
for (unsigned int i = 0; i < keyDataLen; i++)
keyData[i] = keyData[i] ^ strXOR[i % xorStrLen];
// Load public key from certificate
BIO* mbio = BIO_new_mem_buf(keyData, -1);
X509* cert = PEM_read_bio_X509(mbio, NULL, NULL, NULL);
if (!cert) return 0;
EVP_PKEY* pubKey = X509_get_pubkey(cert);
// Return public key
return pubKey;
void clearPublicKey(EVP_PKEY* pubKey)
// Verifies the specified block of data using the public key provided.
// The block of data is assumed to include a base64-ed signature separated
// from data by a double-linefeed delimier.
int verifyData(char *data, unsigned int dataLen, EVP_PKEY* pubKey)
// Invalid parameters
if (!data || !dataLen || !pubKey)
return -1;
// Find delimiter in data
char* pDelimiter = 0;
for (char* pBack = data + dataLen - 4; pBack >= data; pBack--)
if (memcmp(pBack, "\r\n\r\n", 4) == 0)
pDelimiter = pBack;
if (!pDelimiter) return -1; //return error("No delimiter found in data to verify.");
unsigned int dataOnlyLen = pDelimiter - data;
// De-base64 signature on registration key
unsigned char* b64Sig = (unsigned char*) pDelimiter + 4;
unsigned int b64SigLen = dataLen - dataOnlyLen - 4;
BIO* memBio = BIO_new_mem_buf(b64Sig, b64SigLen);
BIO* b64Bio = BIO_new(BIO_f_base64());
BIO* bio = BIO_push(b64Bio, memBio);
(void) BIO_flush(bio);
const int MAXSIGLEN = 1024;
unsigned char sig[MAXSIGLEN] = "";
unsigned int sigLen = BIO_read(bio, sig, MAXSIGLEN * 2);
// Verify signature
EVP_MD_CTX digest;
EVP_VerifyInit(&digest, EVP_sha1());
EVP_VerifyUpdate(&digest, data, dataOnlyLen);
int err = EVP_VerifyFinal(&digest, sig, sigLen, pubKey);
if (err != 1)
return -1;
// Data is valid
return 0;
// Windows clipboard handling
bool getClipboardText(char *pBuffer, int iBufferSize)
#ifdef _WIN32
if (!IsClipboardFormatAvailable(CF_TEXT)) return false;
if (!OpenClipboard(NULL)) return false;
HANDLE hData = GetClipboardData(CF_TEXT);
LPVOID pData = GlobalLock(hData);
strncpy(pBuffer, (const char*) pData, iBufferSize); pBuffer[iBufferSize] = 0;
return true;
return false;
// Old-style string scrambling
#define ScrambleDefaultKey "_D.lp/8f3_ 3 ] =h16%2"
const char ScrambleMark = '<EFBFBD>',
ScrambleRangeLow = '0',
ScrambleRangeHi = 'z';
void ScrambleString(char *szString, int iLen, const char *szKey)
if (!szString || !szKey) return;
char *cpString = szString;
const char *cpKey = szKey;
int iChar,iEscSequence=0;
if (iLen<0) iLen=SLen(szString);
while (iLen>0)
// Detect character escape sequences
if (*cpString=='\\') iEscSequence=2;
// Process character
if (!iEscSequence)
// Scramble range
if (Inside(*cpString,ScrambleRangeLow,ScrambleRangeHi))
// Shift character
iChar= ((int) *cpString) + (BoundBy(*cpKey,ScrambleRangeLow,ScrambleRangeHi)-ScrambleRangeLow);
if (iChar>ScrambleRangeHi) iChar-=(ScrambleRangeHi-ScrambleRangeLow+1);
*cpString = (char) iChar;
// Advance key
cpKey++; if (!(*cpKey)) cpKey=szKey;
// Postconvert backslash
if (*cpString=='\\') *cpString='<EFBFBD>';
// Advance
cpString++; iLen--; if (iEscSequence) iEscSequence--;
void UnscrambleString(char *szString/*, int iLen, const char *szKey*/)
int iLen=-1;
const char *szKey = ScrambleDefaultKey;
if (!szString || !szKey) return;
char *cpString = szString;
const char *cpKey = szKey;
int iChar,iEscSequence=0;
if (iLen<0) iLen=SLen(szString);
while (iLen>0)
// Detect character escape sequences
if (*cpString=='\\') iEscSequence=2;
// Process character
if (!iEscSequence)
// Preconvert backslash
if (*cpString=='<EFBFBD>') *cpString='\\';
// Scramble range
if (Inside(*cpString,ScrambleRangeLow,ScrambleRangeHi))
// Unshift character
iChar= ((int) *cpString) - (BoundBy(*cpKey,ScrambleRangeLow,ScrambleRangeHi)-ScrambleRangeLow);
if (iChar<ScrambleRangeLow) iChar+=(ScrambleRangeHi-ScrambleRangeLow+1);
*cpString = (char) iChar;
// Advance key
cpKey++; if (!(*cpKey)) cpKey=szKey;
cpString++; iLen--; if (iEscSequence) iEscSequence--;
#define IDS_SEC_FREEFOLDERMAKER "<22>6ydHdln zhWijn"
#define IDS_SEC_FREEFOLDERS "<22>8>t`giiW.fcf>ECs;.P5l;OS>sV.X4nqNIyeoCrq.P5l;YS;lUh.c<Q>6afeU.cAS<SenIys.TtfC8dTs.f4H;QfogmkG.w4W0Mq^vMoqs.E4s"
const char *LoadSecStr(const char *szString)
static char szBuf[1024+1];
return szBuf+1;
RegistrationValid = false;
RegData[0] = 0;
KeyFile[0] = 0;
InvalidKeyFile[0] = 0;
void C4ConfigShareware::Default()
RegistrationValid = false;
*RegData = 0;
*KeyFile = 0;
*InvalidKeyFile = 0;
bool C4ConfigShareware::Load(bool forceWorkingDirectory, const char *szCustomFile)
// Load standard config
if (!C4Config::Load(forceWorkingDirectory, szCustomFile)) return false;
// Load registration
// Done
return true;
bool C4ConfigShareware::Save()
// Save standard config
if (!C4Config::Save()) return false;
// Done
return true;
bool C4ConfigShareware::Registered()
return RegistrationValid;
bool C4ConfigShareware::LoadRegistration()
// Reset error message(s)
// First look in configured KeyPath
if (Security.KeyPath[0])
char searchPath[_MAX_PATH] = "";
SCopy(GetKeyPath(), searchPath);
for (DirectoryIterator i(searchPath); *i; ++i)
if (WildcardMatch("*.c4k", *i))
if (LoadRegistration(*i))
return true;
SCopy(*i, InvalidKeyFile, CFG_MaxString);
// Then look in ExePath
for (DirectoryIterator i(General.ExePath.getData()); *i; ++i)
if (WildcardMatch("*.c4k", *i))
if (LoadRegistration(*i))
return true;
SCopy(*i, InvalidKeyFile, CFG_MaxString);
// No key file found
return HandleError("No valid key file found.");
bool C4ConfigShareware::LoadRegistration(const char *keyFile)
// Set registered flag
RegistrationValid = true;
SCopy("Debug User", General.Name);
return true;
// Clear registered flag, general name, and key file names
RegistrationValid = false;
General.Name[0] = 0;
KeyFile[0] = 0;
InvalidKeyFile[0] = 0;
// Load registration key
char* delim = 0;
int regKeyLen = 0;
FILE* fh = fopen(keyFile, "rb");
if (!fh)
return HandleError("Cannot open key file.");
regKeyLen = fread(RegData, 1, MaxRegDataLen, fh);
delim = strstr(RegData, "\r\n\r\n");
if (!delim)
return HandleError("Invalid key data (no delimiter).");
// Load public key from memory
EVP_PKEY* pubKey = loadPublicKey(Cert_Reg_XOR_Base64, true, true, XOR_Cert_Reg);
if (!pubKey)
return HandleError("Internal error on public key.");
// Verify registration data
if (verifyData(RegData, regKeyLen, pubKey) != 0)
return HandleError("Registration key not valid.");
// Clear public key
// Cuid blacklist (this will ban a certain player-id forever)
int i;
const char *BlackCuid[] = { "16206436", "36689615", "15315029", "13109693", "17584580", "14718309",
"10851931", "13295768", "15786864", "13769103",
for (i = 0; BlackCuid[i]; i++)
if (SEqual2(SSearch(RegData, "Cuid="), BlackCuid[i]))
return HandleError("Invalid User-Id.");
// Cuid-Webcode blacklist (this will only ban a key with a given cuid-webcode combination, allowing to create a new key without assigning a new cuid)
const char *BlackCuidWebCode[] = { "16826502", "398ED5F7",
for (i = 0; BlackCuidWebCode[i]; i += 2)
if (SEqual2(SSearch(RegData, "Cuid="), BlackCuidWebCode[i]) && SEqual2(SSearch(RegData, "WebCode="), BlackCuidWebCode[i + 1]))
return HandleError("Invalid User-Id/WebCode.");
// Now truncate the signature from the registration key
*delim = 0;
// Set registered flag
RegistrationValid = true;
// Store valid keyfile name
SCopy(keyFile, KeyFile);
// Overwrite general config name (will be empty if not registered)
SAppend(GetRegistrationData("FirstName"), General.Name, CFG_MaxString);
SAppend(" ", General.Name, CFG_MaxString);
SAppend(GetRegistrationData("LastName"), General.Name, CFG_MaxString);
// Success
return true;
bool C4ConfigShareware::HandleError(const char *strMessage)
RegData[0] = 0;
if (RegistrationError.getLength()) RegistrationError.Append(" ");
return false;
const char* C4ConfigShareware::GetRegistrationError()
return RegistrationError.getData();
const char* C4ConfigShareware::GetKeyFilename()
return KeyFile;
const char* C4ConfigShareware::GetInvalidKeyFilename()
return InvalidKeyFile;
const char* C4ConfigShareware::GetKeyPath()
// Returns the configured key path with environment variables expanded and terminating slash
static char strKeyPath[_MAX_PATH + 1];
if (!Security.KeyPath[0]) return "";
SCopy(Security.KeyPath, strKeyPath);
ExpandEnvironmentVariables(strKeyPath, _MAX_PATH);
return strKeyPath;
StdStrBuf C4ConfigShareware::GetKeyMD5()
if (!Registered()) return StdStrBuf();
// Calculate MD5 of full key data
MD5(reinterpret_cast<BYTE *>(RegData), SLen(RegData), Digest);
// Convert to hex
StdStrBuf HexDigest;
for (int i = 0; i < MD5_DIGEST_LENGTH; i++)
HexDigest.AppendFormat("%02x", Digest[i]);
// Done
return HexDigest;
const char* C4ConfigShareware::GetRegistrationData(const char *strField)
// Notice: GetRegistrationData() is used by LoadRegistration even if the registered flag is not yet set.
static char strReturnValue[CFG_MaxString + 1];
// Find field in registration key
char strFieldMask[128 + 1 + 1];
strncpy(strFieldMask, strField, 128); strFieldMask[128] = 0;
strcat(strFieldMask, "=");
const char *pKeyField = strstr(RegData, strFieldMask);
// Field not found, key might be empty
if (!pKeyField) return "";
// Advance to value
pKeyField += strlen(strFieldMask);
// Get field value
size_t iValueLen = 256;
const char *pFieldEnd = strstr(pKeyField, "\x0d");
if (pFieldEnd) iValueLen = pFieldEnd - pKeyField;
iValueLen = Min<size_t>(iValueLen, CFG_MaxString);
strncpy(strReturnValue, pKeyField, iValueLen); strReturnValue[iValueLen] = 0;
return strReturnValue;
void C4ConfigShareware::ClearRegistrationError()
// Reset error message(s)
bool C4ConfigShareware::IsConfidentialData(const char *szInput)
// safety
if (!szInput) return false;
// unreg users don't have confidential data
if (!Config.Registered()) return false;
// shouldn't send the webcode!
const char *szWebCode = GetRegistrationData("WebCode");
if (szWebCode && *szWebCode) if (SSearchNoCase(szInput, szWebCode))
/* if (fShowWarningMessage && ::pGUI)
return true;
// all OK
return false;
C4ConfigShareware Config;