| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354 |
- package wrappers
-
- import (
- "crypto/cipher"
- "io"
- )
-
- // StreamCipherReadWriteCloser is a ReadWriteCloser which ciphers
- // incoming and outgoing data with givem cipher.Stream instances.
- type StreamCipherReadWriteCloser struct {
- encryptor cipher.Stream
- decryptor cipher.Stream
- conn io.ReadWriteCloser
- }
-
- // Read reads from connection
- func (c *StreamCipherReadWriteCloser) Read(p []byte) (n int, err error) {
- n, err = c.conn.Read(p)
- c.decryptor.XORKeyStream(p, p[:n])
- return
- }
-
- // Write writes into connection.
- func (c *StreamCipherReadWriteCloser) Write(p []byte) (int, error) {
- // This is to decrease an amount of allocations. Unfortunately, escape
- // analysis in (at least Golang 1.10) is absolutely not perfect. For
- // example, it understands that we want to have a slice locally, right?
- // But since slice is effectively 2 ints + uintptr to [number]byte, the
- // most heavyweight part is placed in heap.
- buf := getBuffer()
- defer putBuffer(buf)
- buf.Grow(len(p))
- buf.Write(p)
-
- encrypted := buf.Bytes()
- c.encryptor.XORKeyStream(encrypted, p)
-
- return c.conn.Write(encrypted)
- }
-
- // Close closes underlying connection.
- func (c *StreamCipherReadWriteCloser) Close() error {
- return c.conn.Close()
- }
-
- // NewStreamCipherRWC returns wrapper which transparently
- // encrypts/decrypts traffic with obfuscated2 protocol.
- func NewStreamCipherRWC(conn io.ReadWriteCloser, encryptor, decryptor cipher.Stream) io.ReadWriteCloser {
- return &StreamCipherReadWriteCloser{
- conn: conn,
- encryptor: encryptor,
- decryptor: decryptor,
- }
- }
|
