Packets/Login/Vanilla: Difference between revisions

It's worth noting that, for build  (1.1.2.4125), the client automatically disconnects after a successful login challenge and proof exchange and sends a reconnect packet right away instead of asking for the realm list.

Opcodes and Errors

See Login Packets. The opcode value corresponds to the packet name.

Error codes

Name	Value	Client Message
SUCCESS	0x00
FAIL_UNKNOWN0	0x01	"Unable to Connect"
FAIL_UNKNOWN1	0x02	"Unable to Connect"
FAIL_BANNED	0x03	"The World of Warcraft account has been closed and is no longer available for use. Please go to http://www.wow-europe.com/en/misc/banned.html for further information.
FAIL_UNKNOWN_ACCOUNT	0x04	"The information you have entered is not valid. Please check the spelling of the account name and password. If you need help in retrieving a lost or stolen password and account, see http://www.wow-europe.com for more information."
FAIL_INCORRECT_PASSWORD	0x05	"The information you have entered is not valid. Please check the spelling of the account name and password. If you need help in retrieving a lost or stolen password and account, see http://www.wow-europe.com for more information."
FAIL_ALREADY_ONLINE	0x06	"This account is already logged into World of Warcraft. Please check the spelling and try again."
FAIL_NO_TIME	0x07	"You have used up your prepaid time for this account. Please purchase more to continue playing."
FAIL_DB_BUSY	0x08	"Could not log in to World of Warcraft at this time. Please try again later."
FAIL_VERSION_INVALID	0x09	"Unable to validate game version. This may be caused by file corruption or the interference of another program. Please visit http://www.wow-europe.com/en/support/ for more information and possible solutions to this issue."
LOGIN_DOWNLOAD_FILE	0x0A	"Downloading"
FAIL_INVALID_SERVER	0x0B	"Unable to Connect"
FAIL_SUSPENDED	0x0C	"The World of Warcraft account has been temporarily suspended. Please go to http://www.wow-europe.com/en/misc/banned.html for further information.
FAIL_NO_ACCESS	0x0D	"Unable to Connect"
SUCCESS_SURVEY	0x0E	"Success!" Pressing cancel either shows a cached realmlist or "Retrieving realm list".
FAIL_PARENTALCONTROL	0x0F	"Access to this account has been blocked by parental controls. Your settings may be changed in your account preferences at http://www.worldofwarcraft.com."
FAIL_LOCKED_ENFORCED	0x10	Does not appear to be valid on 1.12.1.

Challenge packets

See CMD_AUTH_LOGON_CHALLENGE_Client.

 (1.1.2.4125)

AuthLogonChallenge_Server

Offset	Type	Name	Description
0x1	uint8	command	LOGIN_CHALL (0x0)
0x2	uint8	protocol_version	Must be 0.
0x3	uint8	result
0x4	char[32]	B	SRP public server ephemeral
0x24	uint8	g_len	SRP generator length
0x25	uint8	g	SRP generator
0x26	uint8	n_len	SRP modulus length
0x27	char[32]	n	SRP modulus
0x47	char[32]	srp_salt	SRP user's salt
0x47	char[16]	crc_salt	A salt to be used in AuthLogonProof_Client.crc_hash

 (1.12.1.5875)

The AuthLogonChallenge_Server packet has added the two_factor_authentication field and will hang waiting for it to be sent.

AuthLogonChallenge_Server

Offset	Size / Endianness	Type	Name	Description
Header
0x1	1 / -	uint8	command	LOGIN_CHALL (0x0)
0x2	1 / -	uint8	protocol_version	Must be 0.
0x3	1 / -	uint8	result	The fields below are only included if this is LOGIN_OK (0x0).
Body
0x4	32 / Little	uint8[32]	B	SRP public server ephemeral. All SRP operations are performed with little endian values.
0x24	1 / -	uint8	g_len	SRP generator length. Should always be 1 since the generator is never larger than 255.
0x25	g_len / -	uint8	g	SRP generator. All SRP operations are performed with little endian values.
(0x26)	1 / -	uint8	n_len	SRP modulus length. Client will not read more than 32. All SRP operations are performed with little endian values.
(0x27)	n_len / Little	uint8[n_len]	n	SRP modulus. All SRP operations are performed with little endian values.
(0x47)	32 / Little	uint8[32]	srp_salt	SRP user's salt. All SRP operations are performed with little endian values.
(0x47)	16 / Little	uint8[16]	crc_salt	A salt to be used in AuthLogonProof_Client.crc_hash. Can be all zeros.
(0x57)	1 / -	bool (size 1 byte)	two_factor_authentication	0 for disabled. The fields below are not included if this is 0.
PIN
(0x58)	4 / Little	uint32	pin_grid_seed	Seed value for the PIN grid on the client. Only here if the two_factor_authentication field is true.
(0x5c)	16 / Little	uint8[16]	pin_salt	Salt value for the client. Only here if the two_factor_authentication field is true.

The offsets in parentheses are not fixed since they depend on the lengths of previous fields, but these fields are most often the default values so the offsets are presented as semi-fixed.

Proof packets

Client

 (1.1.2.4125)

AuthLogonProof_Client

Offset	Type	Name	Description
0x0	uint8	command	0x1
0x1	uint8[32]	a
0x21	uint8[20]	m1
0x35	uint8[20]	crc_hash
0x49	uint8	num_keys

 (1.12.1.5875)

AuthLogonProof_Client

Offset	Size / Endianness	Type	Name	Description
0x0	1 / -	uint8	command	LOGIN_PROOF (0x1)
0x1	32 / Little	uint8[32]	a	SRP6 Client public key. Called A (capital A) in RFC2945.
0x21	20 / Little	uint8[20]	m1	SRP6 Client proof.
0x35	20 / Little	uint8[20]	crc_hash	Hash of arbitrary files. Can be safely ignored.
0x49	1 / -	uint8	num_keys	Used for unknown telemetry. Can be expected to always be 0. See the table below for when it is not 0.
num_keys amounts of num_key fields, if applicable.
0x4A	1 / -	bool (size 1 byte)	two_factor_enabled	If false the packet ends here, if true the fields in the table below are included. Added in 1.12.x client branch.
security_flags.PIN fields, if applicable.

When num_keys is not 0, the field is followed by 4 key data fields that repeat num_key times.

num_keys Fields

Offset	Size / Endianness	Type	Name	Description
	2 / -	uint16	unk1	Used for unknown telemetry. Can be expected to not be present.
	4 / -	uint32	unk2	Used for unknown telemetry. Can be expected to not be present.
	4 / -	uint8[4]	unk3	Used for unknown telemetry. Can be expected to not be present.
	20 / -	uint8[20]	unk4	Used for unknown telemetry. Can be expected to not be present.

When two_factor_enabled is not 0, the field is followed by the data in the table below.

two_factor_enabled Fields

Offset	Size / Endianness	Type	Name	Description
	16 / ?	uint8[16]	pin_salt	Salt used for PIN. Only included if two_factor_enabled is true.
	20 / ?	uint8[20]	pin_hash	Client proof for PIN. Only included if two_factor_enabled is true.

Server

AuthLogonProof_Server

Offset	Size	Type	Name	Description
Header
0x0	1 / -	uint8	command	LOGIN_PROOF (0x1)
0x1	1 / -	uint8	error	The fields below are only included if this is LOGIN_OK (0x0).
Body
0x2	20 / Little	uint8[20]	m2	SRP6 Server proof.
0x16	4 / Little	uint32	hardware_survey_id	ID of a hardware survey that the client should perform. Set to 0 to not use. Can safely be set to 0.

Reconnection challenge packets

AuthReconnectionChallenge_Client has the same structure as AuthLogonChallenge_Client, except that the command is RECON_CHALL (0x2).

AuthReconnectionChallenge_Server

Offset	Size / Endianness	Type	Name	Description
Header
0x0	1 / -	uint8	command	RECON_CHALL (0x2)
0x1	1 / -	uint8	error	The fields below are only included if this is LOGIN_OK (0x0).
Body
0x2	16 / Little	char[16]	challenge_data	Random data, used as challenge data.
0x12	16 / -	char[16]	checksum_salt	No longer used by client in 1.12. Can be all zeros.

Reconnection proof packets

AuthReconnectionProof_Client

Offset	Size / Endianness	Type	Name	Description
0x0	1 / -	uint8	command	RECON_PROOF (0x3)
0x1	16 / Little	uint8[16]	proof_data	Challenge data used for calculating proof.
0x11	20 / Little	uint8[20]	client_proof	SRP6 Client proof.
0x25	20 / ?	uint8[20]	client_checksum	Unknown.
0x39	1 / -	uint8	key_count	Unknown. Can be expected to always be 0.

To check if the client proof is correct, the server must calculate SHA1(account_name | proof_data | challenge_data | session_key) and compare it to client_proof.

AuthReconnectionProof_Server

Offset	Size / Endianness	Type	Name	Description
0x0	1 / -	uint8	command	RECON_PROOF (0x3)
0x1	1 / -	uint8	error	Return 0 if the client calculated proof matches the server calculated proof.

Realm list packets

Client

RealmList_Client

Offset	Size / Endianness	Type	Name	Description
0x0	1 / -	uint8	cmd	REALMLIST (0x10)
0x1	4 / -	uint32	unknown	Hardcoded to 0 in the client. Can be expected to always be 0.

Server

The server answers with a packet composed of a RealmHeader_Server, as many RealmInfo_Server as specified and a RealmFooter_Server.

Header

RealmHeader_Server

Offset	Size / Endianness	Type	Name	Description
0x0	1 / -	uint8	command	REALMLIST (0x10)
0x1	2 / Little	uint16	size	Size of the rest of packet, without the command and size fields (3 bytes).
0x3	4 / -	uint32	unknown	Not used in public clients. Set to 0.
0x7	1 / -	uint8	num_realms	Number of RealmInfo_Server.

The size value can be computed with the part of the header taken into account plus the footer (5+2 bytes) and the size of every RealmInfo_Server which is variable.

Body

RealmInfo_Server

Offset	Size / Endianness	Type	Name	Description
0x0	4 / Little	uint32	realm_type	0 is normal, 1 is PvP, 6 is RP and 8 is RPPvP.
0x4	1 / -	uint8	flags	See RealmInfo_Server.flags table below.
0x5	- / Big	char[]	realm_name	Zero terminated string; name of the Realm
	- / Big	char[]	address_port	Zero terminated string; address of the Realm ("ip:port")
	4 / Little	float	population	Population value. 200 is always green "Recommended", 400 is always red "Full", 600 is always blue "Recommended". Low/Medium/High are calculated based on the population values sent.
	1 / -	uint8	num_chars	The number of characters the client has on the server.
	1 / -	uint8	realm_category	The language or region of the server. How this is interpreted depends on the locale of the client. It is shown as tabs at the bottom of the realmlist screen. If there are only realms of one category no tabs are shown. See table RealmInfo_Server.realm_category Values.
	1 / -	uint8	realm_id	Used for the initial sorting of the realms. Identical values are not a problem.

RealmInfo_Server.flags Values

Value	Name	Description
0x00	NONE	No changes.
0x01	INVALID	Color realm name in read.
0x02	OFFLINE	Gray out name and prevent selection.
0x04	SPECIFY_BUILD	Unused. Possibly used to list realm build numbers previously.
0x08	UNK1	Unused.
0x10	UNK2	Unused.
0x20	FORCE_RECOMMENDED	Forces the client to show the server as "Recommended" in blue text, no matter what the population value is.
0x40	FORCE_NEW_PLAYERS	Forces the client to show the server as "Recommended" in green text, no matter what the population value is.
0x80	FORCE_FULL	Forces the client to show the population as "Full" in red text, no matter what the population value is.

RealmInfo_Server.realm_category Values

Value	Name	Description
0x00	DEFAULT	Same as the first value for a locale.
US
0x01	UNITED_STATES	United States.
0x05	OCEANIC	Oceania.
EUROPE
0x01	ENGLISH	English.
0x02	GERMAN	German.
0x03	FRENCH	French.
0x05	SPANISH	Spanish.
KOREA
0x01	KOREA	Korea.
TAIWAN
0x01	TAIWAN	Taiwan.
CHINA
0x01	CHINA	China.
0x02	CN3	Unknown.
0x03	CN7	Unknown.
TEST
0x01	TEST_SERVER	Test.
0x05	OCEANIC_TEST	Oceanic test.
QA
0x01	QA_SERVER	QA server.

Footer

RealmFooter_Server

Offset	Size / Endianness	Type	Name	Description
0x0	2 / ?	uint16	unknown	Ignored in public clients. Set to 0.