restitux/gamestream-webtransport-proxy
1
0
Fork 0
Code Issues Pull Requests 6 Actions Packages Projects Releases Wiki Activity

Server now returns paired == 1

Browse Source
This commit is contained in:
restitux
2025-06-29 20:34:13 -06:00
parent 7ec5e1ad90
commit 9b34307103
1 changed files with 16 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
gamestream-webtransport-proxy/src/pair.rs
+16 -8
View File
@@ -3,6 +3,7 @@ use axum::http::StatusCode;
use axum::response::{IntoResponse, Response}; use axum::response::{IntoResponse, Response};
use openssl::hash::MessageDigest; use openssl::hash::MessageDigest;
use openssl::sha::Sha256; use openssl::sha::Sha256;
use rand::Rng;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use openssl::pkey::{PKey, Private}; use openssl::pkey::{PKey, Private};
@@ -79,7 +80,7 @@ async fn get_url(base_url: &mut url_constructor::UrlConstructor) -> Result<Strin
let uuidv2_hex = hex::encode(uuidv2); let uuidv2_hex = hex::encode(uuidv2);
let url = base_url.param("uuid", uuidv2_hex).build(); let url = base_url.param("uuid", uuidv2_hex).build();
println!("Getting url: {url}"); //println!("Getting url: {url}");
let mut http_builder = reqwest::Client::builder(); let mut http_builder = reqwest::Client::builder();
http_builder = http_builder.user_agent("Mozilla/5.0"); http_builder = http_builder.user_agent("Mozilla/5.0");
@@ -168,6 +169,9 @@ fn generate_challenge_response(
)?; )?;
cipher_ctx.cipher_final(&mut client_challenge_response_data)?; cipher_ctx.cipher_final(&mut client_challenge_response_data)?;
let client_challenge_response_data_hex = hex::encode(&client_challenge_response_data);
//println!("client_challenge_response_data_hex: {client_challenge_response_data_hex}");
// Extract ASN.1 signature from certificate // Extract ASN.1 signature from certificate
let asn_signature = cert.signature(); let asn_signature = cert.signature();
let signature_data = asn_signature.as_slice(); let signature_data = asn_signature.as_slice();
@@ -176,9 +180,13 @@ fn generate_challenge_response(
let mut challenge_response = let mut challenge_response =
Vec::with_capacity(16 + signature_data.len() + client_secret_data.len()); Vec::with_capacity(16 + signature_data.len() + client_secret_data.len());
challenge_response.extend_from_slice(&client_challenge_response_data[32..32 + 16]); challenge_response.extend_from_slice(&client_challenge_response_data[32..32 + 16]);
//challenge_response.extend_from_slice(&client_challenge_response_data[0..16]);
challenge_response.extend_from_slice(signature_data); challenge_response.extend_from_slice(signature_data);
challenge_response.extend_from_slice(client_secret_data); challenge_response.extend_from_slice(client_secret_data);
let challenge_response_hex = hex::encode(&challenge_response);
//println!("challenge_response_hex: {challenge_response_hex}");
let mut hasher = Sha256::new(); let mut hasher = Sha256::new();
hasher.update(&challenge_response); hasher.update(&challenge_response);
let challenge_response_hash = hasher.finish().to_vec(); let challenge_response_hash = hasher.finish().to_vec();
@@ -228,9 +236,11 @@ async fn do_challenge(
cert: &X509, cert: &X509,
) -> Result<ServerPairingSecret> { ) -> Result<ServerPairingSecret> {
let aes_key = generate_aes_key(salt, pin).await; let aes_key = generate_aes_key(salt, pin).await;
let aes_hex = hex::encode(&aes_key);
//println!("aes_hex: {aes_hex}");
let client_challenge_response = get_server_challenge(base_url.clone(), &aes_key).await?; let client_challenge_response = get_server_challenge(base_url.clone(), &aes_key).await?;
println!("{client_challenge_response:?}"); //println!("{client_challenge_response:?}");
let challenge_response = generate_challenge_response( let challenge_response = generate_challenge_response(
client_challenge_response.challengeresponse, client_challenge_response.challengeresponse,
@@ -274,10 +284,8 @@ pub async fn generate_pin() -> [u8; 4] {
// TODO: reenable real RNG // TODO: reenable real RNG
let mut rng = rand::rng(); let mut rng = rand::rng();
for i in 0..pin.len() { for i in 0..pin.len() {
pin[i] = 5; pin[i] = rng.random_range(48..58); // Generate ascii number 0-9
//TODO: reenable random pin print!("{}", pin[i] as char);
// pin[i] = rng.random_range(0..10);
print!("{}", pin[i]);
} }
// Print as a four-digit, zero-padded integer // Print as a four-digit, zero-padded integer
println!(""); println!("");
@@ -388,7 +396,7 @@ pub async fn get_pair(Path((host, port)): Path<(String, u16)>) -> Response {
return StatusCode::INTERNAL_SERVER_ERROR.into_response(); return StatusCode::INTERNAL_SERVER_ERROR.into_response();
} }
}; };
println!("{server_cert:?}"); //println!("{server_cert:?}");
// Do the challenge response process // Do the challenge response process
// This returns the pairing secret // This returns the pairing secret
@@ -400,7 +408,7 @@ pub async fn get_pair(Path((host, port)): Path<(String, u16)>) -> Response {
return StatusCode::INTERNAL_SERVER_ERROR.into_response(); return StatusCode::INTERNAL_SERVER_ERROR.into_response();
} }
}; };
println!("{server_pairing_secret:?}"); //println!("{server_pairing_secret:?}");
// Verify the pairing_secret signature // Verify the pairing_secret signature
if let Err(e) = verify_signature( if let Err(e) = verify_signature(