youys
/
shadowsocks-windows
Not watched
1
0
Fork 0
Code
Releases 67 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
1075 Commits
5 Branches
32 MB
181 Download
Tree: 4d4f1753c7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4d4f1753c7'
${ noResults }
shadowsocks-windows/shadowsocks-csharp/Encryption/AEAD/AEADMbedTLSEncryptor.cs

AEADMbedTLSEncryptor.cs 6.2 kB
Raw Normal View History

add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
Add OpenSSL 1.1.0g support due to hardware acceleration Note: If you want to compile it by yourself, please make sure do NOT use `no-asm` configure option, since the main point of this commit is to utilize assembly in openssl Add OpenSSL test
7 years ago
add AEAD support
8 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178 
  1. using System;

  2. using System.Collections.Generic;

  3. using System.Diagnostics;

  4. using System.Runtime.InteropServices;

  5. using Shadowsocks.Encryption.Exception;

  6. 

  7. namespace Shadowsocks.Encryption.AEAD

  8. {

  9.     public class AEADMbedTLSEncryptor

  10.         : AEADEncryptor, IDisposable

  11.     {

  12.         const int CIPHER_AES = 1;

  13. 

  14.         private IntPtr _encryptCtx = IntPtr.Zero;

  15.         private IntPtr _decryptCtx = IntPtr.Zero;

  16. 

  17.         public AEADMbedTLSEncryptor(string method, string password)

  18.             : base(method, password)

  19.         {

  20.         }

  21. 

  22.         private static readonly Dictionary<string, EncryptorInfo> _ciphers = new Dictionary<string, EncryptorInfo>

  23.         {

  24.             {"aes-128-gcm", new EncryptorInfo("AES-128-GCM", 16, 16, 12, 16, CIPHER_AES)},

  25.             {"aes-192-gcm", new EncryptorInfo("AES-192-GCM", 24, 24, 12, 16, CIPHER_AES)},

  26.             {"aes-256-gcm", new EncryptorInfo("AES-256-GCM", 32, 32, 12, 16, CIPHER_AES)},

  27.         };

  28. 

  29.         public static List<string> SupportedCiphers()

  30.         {

  31.             return new List<string>(_ciphers.Keys);

  32.         }

  33. 

  34.         protected override Dictionary<string, EncryptorInfo> getCiphers()

  35.         {

  36.             return _ciphers;

  37.         }

  38. 

  39.         public override void InitCipher(byte[] salt, bool isEncrypt, bool isUdp)

  40.         {

  41.             base.InitCipher(salt, isEncrypt, isUdp);

  42.             IntPtr ctx = Marshal.AllocHGlobal(MbedTLS.cipher_get_size_ex());

  43.             if (isEncrypt)

  44.             {

  45.                 _encryptCtx = ctx;

  46.             }

  47.             else

  48.             {

  49.                 _decryptCtx = ctx;

  50.             }

  51. 

  52.             MbedTLS.cipher_init(ctx);

  53.             if (MbedTLS.cipher_setup(ctx, MbedTLS.cipher_info_from_string(_innerLibName)) != 0)

  54.                 throw new System.Exception("Cannot initialize mbed TLS cipher context");

  55. 

  56.             DeriveSessionKey(isEncrypt ? _encryptSalt : _decryptSalt,

  57.                 _Masterkey, _sessionKey);

  58.             CipherSetKey(isEncrypt, _sessionKey);

  59.         }

  60. 

  61.         private void CipherSetKey(bool isEncrypt, byte[] key)

  62.         {

  63.             IntPtr ctx = isEncrypt ? _encryptCtx : _decryptCtx;

  64.             int ret = MbedTLS.cipher_setkey(ctx, key, keyLen * 8,

  65.                 isEncrypt ? MbedTLS.MBEDTLS_ENCRYPT : MbedTLS.MBEDTLS_DECRYPT);

  66.             if (ret != 0) throw new System.Exception("failed to set key");

  67.             ret = MbedTLS.cipher_reset(ctx);

  68.             if (ret != 0) throw new System.Exception("failed to finish preparation");

  69.         }

  70. 

  71.         public override void cipherEncrypt(byte[] plaintext, uint plen, byte[] ciphertext, ref uint clen)

  72.         {

  73.             // buf: all plaintext

  74.             // outbuf: ciphertext + tag

  75.             int ret;

  76.             byte[] tagbuf = new byte[tagLen];

  77.             uint olen = 0;

  78.             switch (_cipher)

  79.             {

  80.                 case CIPHER_AES:

  81.                     ret = MbedTLS.cipher_auth_encrypt(_encryptCtx,

  82.                         /* nonce */

  83.                         _encNonce, (uint) nonceLen,

  84.                         /* AD */

  85.                         IntPtr.Zero, 0,

  86.                         /* plain */

  87.                         plaintext, plen,

  88.                         /* cipher */

  89.                         ciphertext, ref olen,

  90.                         tagbuf, (uint) tagLen);

  91.                     if (ret != 0) throw new CryptoErrorException(String.Format("ret is {0}", ret));

  92.                     Debug.Assert(olen == plen);

  93.                     // attach tag to ciphertext

  94.                     Array.Copy(tagbuf, 0, ciphertext, (int) plen, tagLen);

  95.                     clen = olen + (uint) tagLen;

  96.                     break;

  97.                 default:

  98.                     throw new System.Exception("not implemented");

  99.             }

  100.         }

  101. 

  102.         public override void cipherDecrypt(byte[] ciphertext, uint clen, byte[] plaintext, ref uint plen)

  103.         {

  104.             // buf: ciphertext + tag

  105.             // outbuf: plaintext

  106.             int ret;

  107.             uint olen = 0;

  108.             // split tag

  109.             byte[] tagbuf = new byte[tagLen];

  110.             Array.Copy(ciphertext, (int) (clen - tagLen), tagbuf, 0, tagLen);

  111.             switch (_cipher)

  112.             {

  113.                 case CIPHER_AES:

  114.                     ret = MbedTLS.cipher_auth_decrypt(_decryptCtx,

  115.                         _decNonce, (uint) nonceLen,

  116.                         IntPtr.Zero, 0,

  117.                         ciphertext, (uint) (clen - tagLen),

  118.                         plaintext, ref olen,

  119.                         tagbuf, (uint) tagLen);

  120.                     if (ret != 0) throw new CryptoErrorException(String.Format("ret is {0}", ret));

  121.                     Debug.Assert(olen == clen - tagLen);

  122.                     plen = olen;

  123.                     break;

  124.                 default:

  125.                     throw new System.Exception("not implemented");

  126.             }

  127.         }

  128. 

  129.         #region IDisposable

  130. 

  131.         private bool _disposed;

  132. 

  133.         // instance based lock

  134.         private readonly object _lock = new object();

  135. 

  136.         public override void Dispose()

  137.         {

  138.             Dispose(true);

  139.             GC.SuppressFinalize(this);

  140.         }

  141. 

  142.         ~AEADMbedTLSEncryptor()

  143.         {

  144.             Dispose(false);

  145.         }

  146. 

  147.         protected virtual void Dispose(bool disposing)

  148.         {

  149.             lock (_lock)

  150.             {

  151.                 if (_disposed) return;

  152.                 _disposed = true;

  153.             }

  154. 

  155.             if (disposing)

  156.             {

  157.                 // free managed objects

  158.             }

  159. 

  160.             // free unmanaged objects

  161.             if (_encryptCtx != IntPtr.Zero)

  162.             {

  163.                 MbedTLS.cipher_free(_encryptCtx);

  164.                 Marshal.FreeHGlobal(_encryptCtx);

  165.                 _encryptCtx = IntPtr.Zero;

  166.             }

  167. 

  168.             if (_decryptCtx != IntPtr.Zero)

  169.             {

  170.                 MbedTLS.cipher_free(_decryptCtx);

  171.                 Marshal.FreeHGlobal(_decryptCtx);

  172.                 _decryptCtx = IntPtr.Zero;

  173.             }

  174.         }

  175. 

  176.         #endregion

  177.     }

  178. }

No Description