youys
/
shadowsocks-windows
Not watched
1
0
Fork 0
Code
Releases 67 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: c2bf74c554
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c2bf74c554'
${ noResults }
shadowsocks-windows/shadowsocks-csharp/Encryption/Stream/StreamEncryptor.cs

186 lines
6.8 kB
Raw Blame History 

  1. using System;

  2. using System.Collections.Generic;

  3. using System.Diagnostics;

  4. using System.Text;

  5. using Shadowsocks.Encryption.CircularBuffer;

  6. using Shadowsocks.Controller;

  7. using NLog;

  8. 

  9. namespace Shadowsocks.Encryption.Stream

  10. {

  11.     public abstract class StreamEncryptor : EncryptorBase

  12.     {

  13.         private static readonly Logger logger = LogManager.GetCurrentClassLogger();

  14.         // for UDP only

  15.         protected static byte[] udpBuffer = new byte[65536];

  16. 

  17.         // every connection should create its own buffer

  18.         private readonly ByteCircularBuffer buffer = new ByteCircularBuffer(TCPHandler.BufferSize * 2);

  19. 

  20.         // Is first packet

  21.         protected bool ivReady;

  22. 

  23.         protected CipherFamily cipherFamily;

  24.         protected CipherInfo CipherInfo;

  25.         // long-time master key

  26.         protected static byte[] key = Array.Empty<byte>();

  27.         protected byte[] iv = Array.Empty<byte>();

  28.         protected int keyLen;

  29.         protected int ivLen;

  30. 

  31.         public StreamEncryptor(string method, string password)

  32.             : base(method, password)

  33.         {

  34.             CipherInfo = getCiphers()[method.ToLower()];

  35.             cipherFamily = CipherInfo.Type;

  36.             var parameter = (StreamCipherParameter)CipherInfo.CipherParameter;

  37.             keyLen = parameter.KeySize;

  38.             ivLen = parameter.IvSize;

  39. 

  40.             InitKey(password);

  41. 

  42.             logger.Dump($"key {instanceId}", key, keyLen);

  43.         }

  44. 

  45.         protected abstract Dictionary<string, CipherInfo> getCiphers();

  46. 

  47.         private void InitKey(string password)

  48.         {

  49.             byte[] passbuf = Encoding.UTF8.GetBytes(password);

  50.             key ??= new byte[keyLen];

  51.             if (key.Length != keyLen) Array.Resize(ref key, keyLen);

  52.             LegacyDeriveKey(passbuf, key, keyLen);

  53.         }

  54. 

  55.         public static void LegacyDeriveKey(byte[] password, byte[] key, int keylen)

  56.         {

  57.             byte[] result = new byte[password.Length + MD5_LEN];

  58.             int i = 0;

  59.             byte[] md5sum = Array.Empty<byte>();

  60.             while (i < keylen)

  61.             {

  62.                 if (i == 0)

  63.                 {

  64.                     md5sum = CryptoUtils.MD5(password);

  65.                 }

  66.                 else

  67.                 {

  68.                     Array.Copy(md5sum, 0, result, 0, MD5_LEN);

  69.                     Array.Copy(password, 0, result, MD5_LEN, password.Length);

  70.                     md5sum = CryptoUtils.MD5(result);

  71.                 }

  72.                 Array.Copy(md5sum, 0, key, i, Math.Min(MD5_LEN, keylen - i));

  73.                 i += MD5_LEN;

  74.             }

  75.         }

  76. 

  77.         protected virtual void initCipher(byte[] iv, bool isEncrypt)

  78.         {

  79.             if (ivLen == 0) return;

  80.             this.iv = new byte[ivLen];

  81.             Array.Copy(iv, this.iv, ivLen);

  82.         }

  83. 

  84.         protected abstract void cipherUpdate(bool isEncrypt, int length, byte[] buf, byte[] outbuf);

  85. 

  86.         protected abstract int CipherEncrypt(Span<byte> plain, Span<byte> cipher);

  87.         protected abstract int CipherDecrypt(Span<byte> plain, Span<byte> cipher);

  88. 

  89.         //protected static void randBytes(byte[] buf, int length) { RNG.GetBytes(buf, length); }

  90. 

  91.         #region TCP

  92. 

  93.         public override void Encrypt(byte[] buf, int length, byte[] outbuf, out int outlength)

  94.         {

  95.             int cipherOffset = 0;

  96.             Debug.Assert(buffer != null, "_encCircularBuffer != null");

  97.             buffer.Put(buf, 0, length);

  98.             logger.Trace($"{instanceId} encrypt TCP, generate iv: {!ivReady}");

  99.             if (!ivReady)

  100.             {

  101.                 // Generate IV

  102.                 byte[] ivBytes = RNG.GetBytes(ivLen);

  103.                 initCipher(ivBytes, true);

  104. 

  105.                 Array.Copy(ivBytes, 0, outbuf, 0, ivLen);

  106.                 cipherOffset = ivLen;

  107.                 ivReady = true;

  108.             }

  109.             int size = buffer.Size;

  110.             byte[] plain = buffer.Get(size);

  111.             byte[] cipher = new byte[size];

  112.             cipherUpdate(true, size, plain, cipher);

  113.             logger.DumpBase64($"plain {instanceId}", plain, size);

  114.             logger.DumpBase64($"cipher {instanceId}", cipher, cipher.Length);

  115.             logger.Dump($"iv {instanceId}", iv, ivLen);

  116.             Buffer.BlockCopy(cipher, 0, outbuf, cipherOffset, size);

  117.             outlength = size + cipherOffset;

  118.         }

  119. 

  120.         public override void Decrypt(byte[] buf, int length, byte[] outbuf, out int outlength)

  121.         {

  122.             Debug.Assert(buffer != null, "_circularBuffer != null");

  123.             buffer.Put(buf, 0, length);

  124.             logger.Trace($"{instanceId} decrypt TCP, read iv: {!ivReady}");

  125.             if (!ivReady)

  126.             {

  127.                 if (buffer.Size <= ivLen)

  128.                 {

  129.                     // we need more data

  130.                     outlength = 0;

  131.                     return;

  132.                 }

  133.                 // start decryption

  134.                 ivReady = true;

  135.                 if (ivLen > 0)

  136.                 {

  137.                     byte[] iv = buffer.Get(ivLen);

  138.                     initCipher(iv, false);

  139.                 }

  140.                 else initCipher(Array.Empty<byte>(), false);

  141.             }

  142.             byte[] cipher = buffer.ToArray();

  143.             cipherUpdate(false, cipher.Length, cipher, outbuf);

  144.             logger.DumpBase64($"cipher {instanceId}", cipher, cipher.Length);

  145.             logger.DumpBase64($"plain {instanceId}", outbuf, cipher.Length);

  146.             logger.Dump($"iv {instanceId}", iv, ivLen);

  147. 

  148.             // move pointer only

  149.             buffer.Skip(buffer.Size);

  150.             outlength = cipher.Length;

  151.             // done the decryption

  152.         }

  153. 

  154.         #endregion

  155. 

  156.         #region UDP

  157. 

  158.         public override void EncryptUDP(byte[] buf, int length, byte[] outbuf, out int outlength)

  159.         {

  160.             // Generate IV

  161.             RNG.GetBytes(outbuf, ivLen);

  162.             initCipher(outbuf, true);

  163.             lock (udpBuffer)

  164.             {

  165.                 cipherUpdate(true, length, buf, udpBuffer);

  166.                 outlength = length + ivLen;

  167.                 Buffer.BlockCopy(udpBuffer, 0, outbuf, ivLen, length);

  168.             }

  169.         }

  170. 

  171.         public override void DecryptUDP(byte[] buf, int length, byte[] outbuf, out int outlength)

  172.         {

  173.             // Get IV from first pos

  174.             initCipher(buf, false);

  175.             outlength = length - ivLen;

  176.             lock (udpBuffer)

  177.             {

  178.                 // C# could be multi-threaded

  179.                 Buffer.BlockCopy(buf, ivLen, udpBuffer, 0, length - ivLen);

  180.                 cipherUpdate(false, length - ivLen, udpBuffer, outbuf);

  181.             }

  182.         }

  183. 

  184.         #endregion

  185.     }

  186. }