private static void Postfix(CustomLiteNetLib4MirrorTransport __instance, ConnectionRequest request)
{
var allow = true;
var reason = "No Reason";
if (!request.Data.EndOfData)
{
return;
}
var userId = CustomLiteNetLib4MirrorTransport.UserIds[request.RemoteEndPoint].UserId;
SynapseController.Server.Events.Server.InvokePreAuthenticationEvent(userId, ref allow, ref reason, request);
if (allow)
{
request.Accept();
return;
}
var data = new NetDataWriter();
data.Put((byte)10);
data.Put(reason);
request.RejectForce(data);
}
public static void Postfix(CustomLiteNetLib4MirrorTransport __instance, ConnectionRequest request)
{
var allow = true;
if (!request.Data.EndOfData)
{
//The Server is not done handling the Authentication, so wait now.
return;
}
var userId = CustomLiteNetLib4MirrorTransport.UserIds[request.RemoteEndPoint].UserId;
Events.InvokePreAuthentication(userId, request, ref allow);
if (allow)
{
request.Accept();
return;
}
var data = new NetDataWriter();
data.Put((byte)10);
request.RejectForce(data);
}
/// <summary>
/// Handle the player connection.
/// </summary>
/// <param name="request">The <see cref="ConnectionRequest"/> instance.</param>
private static void HandleConnection(ConnectionRequest request)
{
try
{
int position = request.Data.Position;
if (!request.Data.TryGetByte(out byte result1) || !request.Data.TryGetByte(out byte result2) || !request.Data.TryGetByte(out byte result3) || result1 != CustomNetworkManager.Major || result2 != CustomNetworkManager.Minor || result3 != CustomNetworkManager.SyncedRevision)
{
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)3);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
}
else
{
bool flag = request.Data.TryGetInt(out int result4);
if (!request.Data.TryGetBytesWithLength(out byte[] result5))
{
flag = false;
}
if (!flag)
{
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)15);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
}
else if (CustomLiteNetLib4MirrorTransport.DelayConnections)
{
CustomLiteNetLib4MirrorTransport.PreauthDisableIdleMode();
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)17);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put(CustomLiteNetLib4MirrorTransport.DelayTime);
if (CustomLiteNetLib4MirrorTransport.DelayVolume < byte.MaxValue)
{
++CustomLiteNetLib4MirrorTransport.DelayVolume;
}
if (CustomLiteNetLib4MirrorTransport.DelayVolume < CustomLiteNetLib4MirrorTransport.DelayVolumeThreshold)
{
ServerConsole.AddLog(
$"Delayed connection incoming from endpoint {request.RemoteEndPoint} by {CustomLiteNetLib4MirrorTransport.DelayTime} seconds.");
request.Reject(CustomLiteNetLib4MirrorTransport.RequestWriter);
}
else
{
ServerConsole.AddLog(
$"Force delayed connection incoming from endpoint {request.RemoteEndPoint} by {CustomLiteNetLib4MirrorTransport.DelayTime} seconds.");
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
}
}
else
{
if (CustomLiteNetLib4MirrorTransport.UseChallenge)
{
if (result4 == 0 || result5 == null || result5.Length == 0)
{
if (!CustomLiteNetLib4MirrorTransport.CheckIpRateLimit(request))
{
return;
}
int num = 0;
string key = string.Empty;
for (byte index = 0; index < 3; ++index)
{
num = RandomGenerator.GetInt32();
if (num == 0)
{
num = 1;
}
key = request.RemoteEndPoint.Address + "-" + num;
if (CustomLiteNetLib4MirrorTransport.Challenges.ContainsKey(key))
{
if (index == 2)
{
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)4);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
ServerConsole.AddLog(
$"Failed to generate ID for challenge for incoming connection from endpoint {request.RemoteEndPoint}.");
return;
}
}
else
{
break;
}
}
byte[] bytes = RandomGenerator.GetBytes(CustomLiteNetLib4MirrorTransport.ChallengeInitLen + CustomLiteNetLib4MirrorTransport.ChallengeSecretLen, true);
ServerConsole.AddLog(
$"Requested challenge for incoming connection from endpoint {request.RemoteEndPoint}.");
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)13);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)CustomLiteNetLib4MirrorTransport.ChallengeMode);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put(num);
switch (CustomLiteNetLib4MirrorTransport.ChallengeMode)
{
case ChallengeType.MD5:
CustomLiteNetLib4MirrorTransport.RequestWriter.PutBytesWithLength(bytes, 0, CustomLiteNetLib4MirrorTransport.ChallengeInitLen);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put(CustomLiteNetLib4MirrorTransport.ChallengeSecretLen);
CustomLiteNetLib4MirrorTransport.RequestWriter.PutBytesWithLength(Md.Md5(bytes));
CustomLiteNetLib4MirrorTransport.Challenges.Add(key, new PreauthChallengeItem(new ArraySegment <byte>(bytes, CustomLiteNetLib4MirrorTransport.ChallengeInitLen, CustomLiteNetLib4MirrorTransport.ChallengeSecretLen)));
break;
case ChallengeType.SHA1:
CustomLiteNetLib4MirrorTransport.RequestWriter.PutBytesWithLength(bytes, 0, CustomLiteNetLib4MirrorTransport.ChallengeInitLen);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put(CustomLiteNetLib4MirrorTransport.ChallengeSecretLen);
CustomLiteNetLib4MirrorTransport.RequestWriter.PutBytesWithLength(Sha.Sha1(bytes));
CustomLiteNetLib4MirrorTransport.Challenges.Add(key, new PreauthChallengeItem(new ArraySegment <byte>(bytes, CustomLiteNetLib4MirrorTransport.ChallengeInitLen, CustomLiteNetLib4MirrorTransport.ChallengeSecretLen)));
break;
default:
CustomLiteNetLib4MirrorTransport.RequestWriter.PutBytesWithLength(bytes);
CustomLiteNetLib4MirrorTransport.Challenges.Add(key, new PreauthChallengeItem(new ArraySegment <byte>(bytes)));
break;
}
request.Reject(CustomLiteNetLib4MirrorTransport.RequestWriter);
CustomLiteNetLib4MirrorTransport.PreauthDisableIdleMode();
return;
}
string key1 = request.RemoteEndPoint.Address + "-" + result4;
if (!CustomLiteNetLib4MirrorTransport.Challenges.ContainsKey(key1))
{
ServerConsole.AddLog(
$"Security challenge response of incoming connection from endpoint {request.RemoteEndPoint} has been REJECTED (invalid Challenge ID).");
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)14);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
return;
}
ArraySegment <byte> validResponse = CustomLiteNetLib4MirrorTransport.Challenges[key1].ValidResponse;
if (!result5.SequenceEqual(validResponse))
{
ServerConsole.AddLog(
$"Security challenge response of incoming connection from endpoint {request.RemoteEndPoint} has been REJECTED (invalid response).");
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)15);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
return;
}
CustomLiteNetLib4MirrorTransport.Challenges.Remove(key1);
CustomLiteNetLib4MirrorTransport.PreauthDisableIdleMode();
ServerConsole.AddLog(
$"Security challenge response of incoming connection from endpoint {request.RemoteEndPoint} has been accepted.");
}
else if (!CustomLiteNetLib4MirrorTransport.CheckIpRateLimit(request))
{
return;
}
if (!CharacterClassManager.OnlineMode)
{
KeyValuePair <BanDetails, BanDetails> keyValuePair = BanHandler.QueryBan(null, request.RemoteEndPoint.Address.ToString());
if (keyValuePair.Value != null)
{
ServerConsole.AddLog($"Player tried to connect from banned endpoint {request.RemoteEndPoint}.");
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)6);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put(keyValuePair.Value.Expires);
CustomLiteNetLib4MirrorTransport.RequestWriter.Put(keyValuePair.Value?.Reason ?? string.Empty);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
}
else
{
request.Accept();
CustomLiteNetLib4MirrorTransport.PreauthDisableIdleMode();
}
}
else
{
if (!request.Data.TryGetString(out string result6) || result6 == string.Empty)
{
CustomLiteNetLib4MirrorTransport.RequestWriter.Reset();
CustomLiteNetLib4MirrorTransport.RequestWriter.Put((byte)5);
request.RejectForce(CustomLiteNetLib4MirrorTransport.RequestWriter);
}
/// <summary>
/// Is run whenever a user joins the server (instead of pre-authenticates)
/// </summary>
/// <param name="gameObject"></param>
public void SmartGuardDeepCheck(GameObject go)
{
try
{
if (!_enable)
{
return;
}
CharacterClassManager ccm = go.GetComponent <CharacterClassManager>();
ServerRoles sr = go.GetComponent <ServerRoles>();
NicknameSync ns = go.GetComponent <NicknameSync>();
CustomLiteNetLib4MirrorTransport cln = go.GetComponent <CustomLiteNetLib4MirrorTransport>();
string domain = ccm.UserId.Split('@')[1].ToLower();
//Whitelist Check
if (sr.BypassStaff && _skStaffGlobal)
{
Base.SmartGuard("User is global staff. Skipping...");
return;
}
else if (sr.RemoteAdmin && _skStaffServer)
{
Base.SmartGuard("User is server staff. Skipping...");
return;
}
else if (_uidWhitelist.Contains(ccm.UserId))
{
Base.SmartGuard("User's UserId is whitelisted. Skipping...");
}
else if (_nameWhitelist.Contains(ns.MyNick))
{
Base.SmartGuard("User's name is whitelisted (not recommended). Skipping...");
return;
}
//Blacklist Check
if (_nameFilterSmart)
{
string antil33t = _rgx.Replace(ns.MyNick.ToLower(), string.Empty);
foreach (KeyValuePair <string, string> pair in leetrules)
{
antil33t = antil33t.Replace(pair.Key, pair.Value);
}
if (_nameBlacklist.Contains(antil33t))
{
if (_banDurationOne == 0)
{
HandlePunishments(go, "Blacklisted name");
return;
}
else if (_banDurationOne > 0)
{
HandlePunishments(go, "Blacklisted name");
return;
}
}
}
else if (!_nameFilterSmart)
{
if (_nameBlacklist.Contains(ns.MyNick.ToLower()))
{
if (_banDurationOne == 0)
{
HandlePunishments(go, "Blacklisted name");
return;
}
else if (_banDurationOne > 0)
{
HandlePunishments(go, "Blacklisted name");
return;
}
}
}
if (_uidBlacklist.Contains(ccm.UserId))
{
if (_banDurationOne == 0)
{
HandlePunishments(go, "Blacklisted UID");
}
else if (_banDurationOne > 0)
{
HandlePunishments(go, "Blacklisted UID");
}
}
bool doContinue = true;
if (domain == "discord")
{
doContinue = CheckDiscord(go);
}
else if (domain == "steam")
{
doContinue = CheckSteam(go);
}
if (!doContinue)
{
return;
}
}
catch (Exception e)
{
Base.Error(e.ToString());
}
}
