ei
/
mtg
의 미러 https://github.com/9seconds/mtg
보기 1
좋아요 0
포크 0
코드 이슈 0 릴리즈 48 위키 Activity
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
106 커밋
4 브랜치
트리: 388f7a23d3
브랜치 태그
${ item.name }
Create branch ${ searchTerm }
from '388f7a23d3'
${ noResults }
mtg/wrappers/mtproto_cipher.go

mtproto_cipher.go 2.3KB
히스토리 Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. package wrappers

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/aes"

  6. 	"crypto/cipher"

  7. 	"crypto/md5"

  8. 	"crypto/sha1"

  9. 	"encoding/binary"

  10. 	"net"

  11. 

  12. 	"github.com/9seconds/mtg/mtproto/rpc"

  13. 	"github.com/9seconds/mtg/utils"

  14. )

  15. 

  16. type CipherPurpose uint8

  17. 

  18. const (

  19. 	CipherPurposeClient CipherPurpose = iota

  20. 	CipherPurposeServer

  21. )

  22. 

  23. var emptyIP = [4]byte{0x00, 0x00, 0x00, 0x00}

  24. 

  25. func NewMiddleProxyCipher(conn StreamReadWriteCloser, req *rpc.NonceRequest, resp *rpc.NonceResponse, secret []byte) StreamReadWriteCloser {

  26. 	localAddr := conn.LocalAddr()

  27. 	remoteAddr := conn.RemoteAddr()

  28. 

  29. 	encKey, encIV := deriveKeys(CipherPurposeClient, req, resp, localAddr, remoteAddr, secret)

  30. 	decKey, decIV := deriveKeys(CipherPurposeServer, req, resp, localAddr, remoteAddr, secret)

  31. 

  32. 	enc, _ := makeEncrypterDecrypter(encKey, encIV)

  33. 	_, dec := makeEncrypterDecrypter(decKey, decIV)

  34. 

  35. 	return NewBlockCipher(conn, enc, dec)

  36. }

  37. 

  38. func deriveKeys(purpose CipherPurpose, req *rpc.NonceRequest, resp *rpc.NonceResponse, client *net.TCPAddr, remote *net.TCPAddr, secret []byte) ([]byte, []byte) {

  39. 	message := bytes.Buffer{}

  40. 	message.Write(resp.Nonce[:])

  41. 	message.Write(req.Nonce[:])

  42. 	message.Write(req.CryptoTS[:])

  43. 

  44. 	clientIPv4 := emptyIP[:]

  45. 	serverIPv4 := emptyIP[:]

  46. 	if client.IP.To4() != nil {

  47. 		clientIPv4 = utils.ReverseBytes(client.IP.To4())

  48. 		serverIPv4 = utils.ReverseBytes(remote.IP.To4())

  49. 	}

  50. 	message.Write(serverIPv4)

  51. 

  52. 	var port [2]byte

  53. 	binary.LittleEndian.PutUint16(port[:], uint16(client.Port))

  54. 	message.Write(port[:])

  55. 

  56. 	switch purpose {

  57. 	case CipherPurposeClient:

  58. 		message.WriteString("CLIENT")

  59. 	case CipherPurposeServer:

  60. 		message.WriteString("SERVER")

  61. 	default:

  62. 		panic("Unexpected cipher purpose")

  63. 	}

  64. 

  65. 	message.Write(clientIPv4)

  66. 	binary.LittleEndian.PutUint16(port[:], uint16(remote.Port))

  67. 	message.Write(port[:])

  68. 	message.Write(secret)

  69. 	message.Write(resp.Nonce[:])

  70. 

  71. 	if client.IP.To4() == nil {

  72. 		message.Write(client.IP.To16())

  73. 		message.Write(remote.IP.To16())

  74. 	}

  75. 	message.Write(req.Nonce[:])

  76. 

  77. 	data := message.Bytes()

  78. 	md5sum := md5.Sum(data[1:])

  79. 	sha1sum := sha1.Sum(data)

  80. 

  81. 	key := append(md5sum[:12], sha1sum[:]...)

  82. 	iv := md5.Sum(data[2:])

  83. 

  84. 	return key, iv[:]

  85. }

  86. 

  87. func makeEncrypterDecrypter(key, iv []byte) (cipher.BlockMode, cipher.BlockMode) {

  88. 	block, err := aes.NewCipher(key)

  89. 	if err != nil {

  90. 		panic(err)

  91. 	}

  92. 

  93. 	return cipher.NewCBCEncrypter(block, iv), cipher.NewCBCDecrypter(block, iv)

  94. }