metin-server/m2pack-secure
1
0
Fork 0
Code Issues 3 Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
59262f1691d863ac9079efd71093ad0f0facdf88
m2pack-secure/README.md
server 59262f1691 Initial secure packer CLI
2026-04-14 11:12:29 +02:00

1.6 KiB
Raw Blame History

m2pack-secure

CLI-first archive builder for a modern Metin2 client pack pipeline.

It is designed as a replacement for legacy EterPack tooling when you control the client source and want a format that is easier to automate and harder to tamper with.

Goals

  • CLI workflow first, no GUI dependency
  • deterministic manifest layout for automation
  • zstd compression
  • XChaCha20-Poly1305 authenticated encryption per file
  • Ed25519 signed manifest for tamper detection
  • JSON output for AI agents and automation

Current commands

  • m2pack keygen
  • m2pack build
  • m2pack list
  • m2pack verify
  • m2pack extract

Build

cmake -S . -B build
cmake --build build -j

Quick start

Generate a master content key and signing keypair:

./build/m2pack keygen --out-dir keys --json

Build an archive from a client asset directory:

./build/m2pack build \
  --input /path/to/client/root \
  --output out/client.m2p \
  --key keys/master.key \
  --sign-secret-key keys/signing.key \
  --json

Verify the archive:

./build/m2pack verify \
  --archive out/client.m2p \
  --public-key keys/signing.pub \
  --key keys/master.key \
  --json

Extract:

./build/m2pack extract \
  --archive out/client.m2p \
  --output out/unpacked \
  --key keys/master.key

Format summary

  • Single archive file with a fixed header
  • Binary manifest near the end of the file
  • Signed manifest hash in the header
  • Per-file random nonce
  • Per-file AEAD ciphertext, authenticated with the relative file path

See docs/format.md and docs/client-integration.md.

Reference in New Issue View Git Blame Copy Permalink