Azahar-Mirror/azahar
1
0
Fork 0
mirror of https://github.com/azahar-emu/azahar synced 2025-11-15 11:29:58 +01:00
Code Issues Packages Projects Releases Wiki Activity
azahar/src/core/file_sys/ticket.cpp
PabloMK7 dc1ebb63cb Major revamps to match game loading decisions. 
- Allow downloading titles from eshop and system settings
- Remove encrypted game support
2025-02-27 14:22:50 +01:00

170 lines
6.1 KiB
C++
Raw Blame History

// Copyright 2018 Citra Emulator Project
// Licensed under GPLv2 or any later version
// Refer to the license.txt file included.
#include <algorithm>
#include <cryptopp/aes.h>
#include <cryptopp/modes.h>
#include <cryptopp/sha.h>
#include "common/alignment.h"
#include "core/file_sys/certificate.h"
#include "core/file_sys/otp.h"
#include "core/file_sys/signature.h"
#include "core/file_sys/ticket.h"
#include "core/hle/service/am/am.h"
#include "core/hw/aes/key.h"
#include "core/hw/ecc.h"
#include "core/hw/unique_data.h"
#include "core/loader/loader.h"
namespace FileSys {
Loader::ResultStatus Ticket::DoTitlekeyFixup() {
if (ticket_body.console_id == 0u) {
// Common ticket, no need to fix up
return Loader::ResultStatus::Success;
}
auto& otp = HW::UniqueData::GetOTP();
auto& ct_cert = HW::UniqueData::GetCTCert();
if (!otp.Valid() || !ct_cert.IsValid()) {
LOG_ERROR(HW_AES, "Tried to fixup a ticket without a valid OTP/CTCert");
return Loader::ResultStatus::Error;
}
if (ticket_body.console_id != otp.GetDeviceID()) {
// Ticket does not correspond to this console, cannot fixup
LOG_ERROR(HW_AES, "Tried to fixup a ticket that does not correspond to this console");
return Loader::ResultStatus::Error;
}
HW::ECC::PublicKey ticket_ecc_public = HW::ECC::CreateECCPublicKey(ticket_body.ecc_public_key);
auto agreement = ct_cert.ECDHAgree(ticket_ecc_public);
if (agreement.empty()) {
LOG_ERROR(HW_AES, "Failed to perform ECDH agreement");
return Loader::ResultStatus::Error;
}
CryptoPP::SHA1 hash;
u8 digest[CryptoPP::SHA1::DIGESTSIZE];
hash.CalculateDigest(digest, agreement.data(), agreement.size());
std::vector<u8> key(0x10);
memcpy(key.data(), digest, key.size());
std::vector<u8> iv(0x10);
*reinterpret_cast<u64_be*>(iv.data()) = ticket_body.ticket_id;
CryptoPP::CBC_Mode<CryptoPP::AES>::Decryption{key.data(), key.size(), iv.data()}.ProcessData(
ticket_body.title_key.data(), ticket_body.title_key.data(), ticket_body.title_key.size());
return Loader::ResultStatus::Success;
}
Loader::ResultStatus Ticket::Load(std::span<const u8> file_data, std::size_t offset) {
std::size_t total_size = static_cast<std::size_t>(file_data.size() - offset);
serialized_size = total_size;
if (total_size < sizeof(u32))
return Loader::ResultStatus::Error;
std::memcpy(&signature_type, &file_data[offset], sizeof(u32));
// Signature lengths are variable, and the body follows the signature
u32 signature_size = GetSignatureSize(signature_type);
if (signature_size == 0) {
return Loader::ResultStatus::Error;
}
// The ticket body start position is rounded to the nearest 0x40 after the signature
std::size_t body_start = Common::AlignUp(signature_size + sizeof(u32), 0x40);
std::size_t body_end = body_start + sizeof(Body);
if (total_size < body_end)
return Loader::ResultStatus::Error;
// Read signature + ticket body
ticket_signature.resize(signature_size);
std::memcpy(ticket_signature.data(), &file_data[offset + sizeof(u32)], signature_size);
std::memcpy(&ticket_body, &file_data[offset + body_start], sizeof(Body));
std::size_t content_index_start = body_end;
if (total_size < content_index_start + (2 * sizeof(u32)))
return Loader::ResultStatus::Error;
// Read content index size from the second u32 into it. Actual format is undocumented.
const size_t content_index_size = *reinterpret_cast<const u32_be*>(
&file_data[offset + content_index_start + 1 * sizeof(u32)]);
const size_t content_index_end = content_index_start + content_index_size;
if (total_size < content_index_end)
return Loader::ResultStatus::Error;
content_index.resize(content_index_size);
std::memcpy(content_index.data(), &file_data[offset + content_index_start], content_index_size);
return Loader::ResultStatus::Success;
}
Loader::ResultStatus Ticket::Load(u64 title_id, u64 ticket_id) {
FileUtil::IOFile f(Service::AM::GetTicketPath(title_id, ticket_id), "rb");
if (!f.IsOpen()) {
return Loader::ResultStatus::Error;
}
std::vector<u8> ticket_data(f.GetSize());
f.ReadBytes(ticket_data.data(), ticket_data.size());
return Load(ticket_data, 0);
}
std::vector<u8> Ticket::Serialize() const {
std::vector<u8> ret(sizeof(u32_be));
*reinterpret_cast<u32_be*>(ret.data()) = signature_type;
ret.insert(ret.end(), ticket_signature.begin(), ticket_signature.end());
u32 padding = 0x40 - (ret.size() % 0x40);
ret.insert(ret.end(), padding, 0);
std::span<const u8> body_span{reinterpret_cast<const u8*>(&ticket_body),
reinterpret_cast<const u8*>(&ticket_body) + sizeof(ticket_body)};
ret.insert(ret.end(), body_span.begin(), body_span.end());
ret.insert(ret.end(), content_index.begin(), content_index.end());
return ret;
}
Loader::ResultStatus Ticket::Save(const std::string& file_path) const {
FileUtil::IOFile file(file_path, "wb");
if (!file.IsOpen())
return Loader::ResultStatus::Error;
auto serialized = Serialize();
if (file.WriteBytes(serialized.data(), serialized.size()) != serialized.size()) {
return Loader::ResultStatus::Error;
}
return Loader::ResultStatus::Success;
}
std::optional<std::array<u8, 16>> Ticket::GetTitleKey() const {
HW::AES::InitKeys();
std::array<u8, 16> ctr{};
std::memcpy(ctr.data(), &ticket_body.title_id, sizeof(u64));
HW::AES::SelectCommonKeyIndex(ticket_body.common_key_index);
if (!HW::AES::IsNormalKeyAvailable(HW::AES::KeySlotID::TicketCommonKey)) {
LOG_ERROR(Service_FS, "CommonKey {} missing", ticket_body.common_key_index);
return {};
}
auto key = HW::AES::GetNormalKey(HW::AES::KeySlotID::TicketCommonKey);
auto title_key = ticket_body.title_key;
CryptoPP::CBC_Mode<CryptoPP::AES>::Decryption{key.data(), key.size(), ctr.data()}.ProcessData(
title_key.data(), title_key.data(), title_key.size());
return title_key;
}
} // namespace FileSys
Reference in New Issue View Git Blame Copy Permalink