|
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309 |
- using System;
- using System.Collections.Generic;
- using System.Runtime.InteropServices;
- using System.Security.Cryptography;
- using System.Text;
- using System.Threading;
-
- namespace Shadowsocks.Encrypt
- {
- public class PolarSSLEncryptor
- : EncryptorBase, IDisposable
- {
- const int CIPHER_AES = 1;
- const int CIPHER_RC4 = 2;
- const int CIPHER_BF = 3;
-
- static Dictionary<string, int[]> ciphers = new Dictionary<string, int[]> {
- {"aes-128-cfb", new int[]{16, 16, CIPHER_AES, PolarSSL.AES_CTX_SIZE}},
- {"aes-192-cfb", new int[]{24, 16, CIPHER_AES, PolarSSL.AES_CTX_SIZE}},
- {"aes-256-cfb", new int[]{32, 16, CIPHER_AES, PolarSSL.AES_CTX_SIZE}},
- {"bf-cfb", new int[]{16, 8, CIPHER_BF, PolarSSL.BLOWFISH_CTX_SIZE}},
- {"rc4", new int[]{16, 0, CIPHER_RC4, PolarSSL.ARC4_CTX_SIZE}},
- {"rc4-md5", new int[]{16, 16, CIPHER_RC4, PolarSSL.ARC4_CTX_SIZE}},
- };
-
- private static readonly Dictionary<string, byte[]> CachedKeys = new Dictionary<string, byte[]>();
- private int _cipher;
- private int[] _cipherInfo;
- private byte[] _key;
- private byte[] _encryptCtx;
- private byte[] _decryptCtx;
- private byte[] _encryptIV;
- private byte[] _decryptIV;
- private int _encryptIVOffset;
- private int _decryptIVOffset;
- private string _method;
- private int keyLen;
- private int ivLen;
-
- public PolarSSLEncryptor(string method, string password)
- : base(method, password)
- {
- InitKey(method, password);
- }
-
- private static void randBytes(byte[] buf, int length)
- {
- byte[] temp = new byte[length];
- new Random().NextBytes(temp);
- temp.CopyTo(buf, 0);
- }
-
- private void bytesToKey(byte[] password, byte[] key)
- {
- byte[] result = new byte[password.Length + 16];
- int i = 0;
- byte[] md5sum = null;
- while (i < key.Length)
- {
- MD5 md5 = MD5.Create();
- if (i == 0)
- {
- md5sum = md5.ComputeHash(password);
- }
- else
- {
- md5sum.CopyTo(result, 0);
- password.CopyTo(result, md5sum.Length);
- md5sum = md5.ComputeHash(result);
- }
- md5sum.CopyTo(key, i);
- i += md5sum.Length;
- }
- }
-
- private void InitKey(string method, string password)
- {
- method = method.ToLower();
- _method = method;
- string k = method + ":" + password;
- _cipherInfo = ciphers[_method];
- _cipher = _cipherInfo[2];
- if (_cipher == 0)
- {
- throw new Exception("method not found");
- }
- keyLen = ciphers[_method][0];
- ivLen = ciphers[_method][1];
- if (CachedKeys.ContainsKey(k))
- {
- _key = CachedKeys[k];
- }
- else
- {
- byte[] passbuf = Encoding.UTF8.GetBytes(password);
- _key = new byte[32];
- byte[] iv = new byte[16];
- bytesToKey(passbuf, _key);
- CachedKeys[k] = _key;
- }
- }
-
- private void InitCipher(ref byte[] ctx, byte[] iv, bool isCipher)
- {
- ctx = new byte[_cipherInfo[3]];
- byte[] realkey;
- if (_method == "rc4-md5")
- {
- byte[] temp = new byte[keyLen + ivLen];
- realkey = new byte[keyLen];
- Array.Copy(_key, 0, temp, 0, keyLen);
- Array.Copy(iv, 0, temp, keyLen, ivLen);
- realkey = MD5.Create().ComputeHash(temp);
- }
- else
- {
- realkey = _key;
- }
- if (_cipher == CIPHER_AES)
- {
- PolarSSL.aes_init(ctx);
- // PolarSSL takes key length by bit
- // since we'll use CFB mode, here we both do enc, not dec
- PolarSSL.aes_setkey_enc(ctx, realkey, keyLen * 8);
- if (isCipher)
- {
- _encryptIV = new byte[ivLen];
- Array.Copy(iv, _encryptIV, ivLen);
- }
- else
- {
- _decryptIV = new byte[ivLen];
- Array.Copy(iv, _decryptIV, ivLen);
- }
- }
- else if (_cipher == CIPHER_BF)
- {
- PolarSSL.blowfish_init(ctx);
- // PolarSSL takes key length by bit
- PolarSSL.blowfish_setkey(ctx, realkey, keyLen * 8);
- if (isCipher)
- {
- _encryptIV = new byte[ivLen];
- Array.Copy(iv, _encryptIV, ivLen);
- }
- else
- {
- _decryptIV = new byte[ivLen];
- Array.Copy(iv, _decryptIV, ivLen);
- }
- }
- else if (_cipher == CIPHER_RC4)
- {
- PolarSSL.arc4_init(ctx);
- PolarSSL.arc4_setup(ctx, realkey, keyLen);
- }
- }
-
-
-
- static byte[] tempbuf = new byte[32768];
-
- public override void Encrypt(byte[] buf, int length, byte[] outbuf, out int outlength)
- {
- if (_encryptCtx == null)
- {
- randBytes(outbuf, ivLen);
- InitCipher(ref _encryptCtx, outbuf, true);
- outlength = length + ivLen;
- lock (tempbuf)
- {
- // C# could be multi-threaded
- switch (_cipher)
- {
- case CIPHER_AES:
- PolarSSL.aes_crypt_cfb128(_encryptCtx, PolarSSL.AES_ENCRYPT, length, ref _encryptIVOffset, _encryptIV, buf, tempbuf);
- break;
- case CIPHER_BF:
- PolarSSL.blowfish_crypt_cfb64(_encryptCtx, PolarSSL.BLOWFISH_ENCRYPT, length, ref _encryptIVOffset, _encryptIV, buf, tempbuf);
- break;
- case CIPHER_RC4:
- PolarSSL.arc4_crypt(_encryptCtx, length, buf, tempbuf);
- break;
- }
- outlength = length + ivLen;
- Buffer.BlockCopy(tempbuf, 0, outbuf, ivLen, outlength);
- }
- }
- else
- {
- outlength = length;
- switch (_cipher)
- {
- case CIPHER_AES:
- PolarSSL.aes_crypt_cfb128(_encryptCtx, PolarSSL.AES_ENCRYPT, length, ref _encryptIVOffset, _encryptIV, buf, outbuf);
- break;
- case CIPHER_BF:
- PolarSSL.blowfish_crypt_cfb64(_encryptCtx, PolarSSL.BLOWFISH_ENCRYPT, length, ref _encryptIVOffset, _encryptIV, buf, outbuf);
- break;
- case CIPHER_RC4:
- PolarSSL.arc4_crypt(_encryptCtx, length, buf, outbuf);
- break;
- }
- }
- }
-
- public override void Decrypt(byte[] buf, int length, byte[] outbuf, out int outlength)
- {
- if (_decryptCtx == null)
- {
- InitCipher(ref _decryptCtx, buf, false);
- outlength = length - ivLen;
- lock (tempbuf)
- {
- // C# could be multi-threaded
- Buffer.BlockCopy(buf, ivLen, tempbuf, 0, length - ivLen);
- switch (_cipher)
- {
- case CIPHER_AES:
- PolarSSL.aes_crypt_cfb128(_decryptCtx, PolarSSL.AES_DECRYPT, length - ivLen, ref _decryptIVOffset, _decryptIV, tempbuf, outbuf);
- break;
- case CIPHER_BF:
- PolarSSL.blowfish_crypt_cfb64(_decryptCtx, PolarSSL.BLOWFISH_DECRYPT, length - ivLen, ref _decryptIVOffset, _decryptIV, tempbuf, outbuf);
- break;
- case CIPHER_RC4:
- PolarSSL.arc4_crypt(_decryptCtx, length - ivLen, tempbuf, outbuf);
- break;
- }
- }
- }
- else
- {
- outlength = length;
- switch (_cipher)
- {
- case CIPHER_AES:
- PolarSSL.aes_crypt_cfb128(_decryptCtx, PolarSSL.AES_DECRYPT, length, ref _decryptIVOffset, _decryptIV, buf, outbuf);
- break;
- case CIPHER_BF:
- PolarSSL.blowfish_crypt_cfb64(_decryptCtx, PolarSSL.BLOWFISH_DECRYPT, length, ref _decryptIVOffset, _decryptIV, buf, outbuf);
- break;
- case CIPHER_RC4:
- PolarSSL.arc4_crypt(_decryptCtx, length, buf, outbuf);
- break;
- }
- }
- }
-
- #region IDisposable
- private bool _disposed;
-
- public override void Dispose()
- {
- Dispose(true);
- GC.SuppressFinalize(this);
- }
-
- ~PolarSSLEncryptor()
- {
- Dispose(false);
- }
-
- protected virtual void Dispose(bool disposing)
- {
- if (!_disposed)
- {
- if (disposing)
- {
-
- }
-
- if (_encryptCtx != null)
- {
- switch (_cipher)
- {
- case CIPHER_AES:
- PolarSSL.aes_free(_encryptCtx);
- break;
- case CIPHER_BF:
- PolarSSL.blowfish_free(_encryptCtx);
- break;
- case CIPHER_RC4:
- PolarSSL.arc4_free(_encryptCtx);
- break;
- }
- }
- if (_decryptCtx != null)
- {
- switch (_cipher)
- {
- case CIPHER_AES:
- PolarSSL.aes_free(_decryptCtx);
- break;
- case CIPHER_BF:
- PolarSSL.blowfish_free(_decryptCtx);
- break;
- case CIPHER_RC4:
- PolarSSL.arc4_free(_decryptCtx);
- break;
- }
- }
- _encryptCtx = null;
- _decryptCtx = null;
- _disposed = true;
- }
- }
- #endregion
- }
- }
|
