ei
/
mtg
miroir de https://github.com/9seconds/mtg
Suivre 1
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Versions 48 Wiki Activité
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
411 Révisions
4 Branches
Aborescence: 44cea68e83
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '44cea68e83'
${ noResults }
mtg/obfuscated2/client_protocol.go

client_protocol.go 3.1KB
Historique Brut

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114 
  1. package obfuscated2

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/sha256"

  6. 	"encoding/binary"

  7. 	"errors"

  8. 	"fmt"

  9. 	"io"

  10. 	"time"

  11. 

  12. 	"github.com/9seconds/mtg/antireplay"

  13. 	"github.com/9seconds/mtg/config"

  14. 	"github.com/9seconds/mtg/conntypes"

  15. 	"github.com/9seconds/mtg/protocol"

  16. 	"github.com/9seconds/mtg/stats"

  17. 	"github.com/9seconds/mtg/utils"

  18. 	"github.com/9seconds/mtg/wrappers/stream"

  19. )

  20. 

  21. const clientProtocolHandshakeTimeout = 10 * time.Second

  22. 

  23. type ClientProtocol struct {

  24. 	connectionType     conntypes.ConnectionType

  25. 	connectionProtocol conntypes.ConnectionProtocol

  26. 	dc                 conntypes.DC

  27. }

  28. 

  29. func (c *ClientProtocol) ConnectionType() conntypes.ConnectionType {

  30. 	return c.connectionType

  31. }

  32. 

  33. func (c *ClientProtocol) ConnectionProtocol() conntypes.ConnectionProtocol {

  34. 	return c.connectionProtocol

  35. }

  36. 

  37. func (c *ClientProtocol) DC() conntypes.DC {

  38. 	return c.dc

  39. }

  40. 

  41. func (c *ClientProtocol) Handshake(socket conntypes.StreamReadWriteCloser) (conntypes.StreamReadWriteCloser, error) {

  42. 	fm, err := c.ReadFrame(socket)

  43. 	if err != nil {

  44. 		return nil, fmt.Errorf("cannot make a client handshake: %w", err)

  45. 	}

  46. 

  47. 	decHasher := sha256.New()

  48. 	decHasher.Write(fm.Key())        // nolint: errcheck

  49. 	decHasher.Write(config.C.Secret) // nolint: errcheck

  50. 	decryptor := utils.MakeStreamCipher(decHasher.Sum(nil), fm.IV())

  51. 

  52. 	invertedFrame := fm.Invert()

  53. 	encHasher := sha256.New()

  54. 	encHasher.Write(invertedFrame.Key()) // nolint: errcheck

  55. 	encHasher.Write(config.C.Secret)     // nolint: errcheck

  56. 	encryptor := utils.MakeStreamCipher(encHasher.Sum(nil), invertedFrame.IV())

  57. 

  58. 	decryptedFrame := Frame{}

  59. 	decryptor.XORKeyStream(decryptedFrame.Bytes(), fm.Bytes())

  60. 

  61. 	magic := decryptedFrame.Magic()

  62. 

  63. 	switch {

  64. 	case bytes.Equal(magic, conntypes.ConnectionTagAbridged):

  65. 		c.connectionType = conntypes.ConnectionTypeAbridged

  66. 	case bytes.Equal(magic, conntypes.ConnectionTagIntermediate):

  67. 		c.connectionType = conntypes.ConnectionTypeIntermediate

  68. 	case bytes.Equal(magic, conntypes.ConnectionTagSecure):

  69. 		c.connectionType = conntypes.ConnectionTypeSecure

  70. 	default:

  71. 		return nil, errors.New("unknown connection type")

  72. 	}

  73. 

  74. 	c.connectionProtocol = conntypes.ConnectionProtocolIPv4

  75. 	if socket.LocalAddr().IP.To4() == nil {

  76. 		c.connectionProtocol = conntypes.ConnectionProtocolIPv6

  77. 	}

  78. 

  79. 	buf := bytes.NewReader(decryptedFrame.DC())

  80. 	if err := binary.Read(buf, binary.LittleEndian, &c.dc); err != nil {

  81. 		c.dc = conntypes.DCDefaultIdx

  82. 	}

  83. 

  84. 	replayKey := decryptedFrame.Unique()

  85. 	if antireplay.Cache.HasObfuscated2(replayKey) {

  86. 		stats.Stats.ReplayDetected()

  87. 

  88. 		return nil, errors.New("replay attack is detected")

  89. 	}

  90. 

  91. 	antireplay.Cache.AddObfuscated2(replayKey)

  92. 

  93. 	return stream.NewObfuscated2(socket, encryptor, decryptor), nil

  94. }

  95. 

  96. func (c *ClientProtocol) ReadFrame(socket conntypes.StreamReader) (fm Frame, err error) {

  97. 	if _, err = io.ReadFull(handshakeReader{socket}, fm.Bytes()); err != nil {

  98. 		err = fmt.Errorf("cannot extract obfuscated2 frame: %w", err)

  99. 	}

  100. 

  101. 	return

  102. }

  103. 

  104. type handshakeReader struct {

  105. 	parent conntypes.StreamReader

  106. }

  107. 

  108. func (h handshakeReader) Read(p []byte) (int, error) {

  109. 	return h.parent.ReadTimeout(p, clientProtocolHandshakeTimeout)

  110. }

  111. 

  112. func MakeClientProtocol() protocol.ClientProtocol {

  113. 	return &ClientProtocol{}

  114. }