ei
/
mtg
Mirror von https://github.com/9seconds/mtg
Beobachten 1
Favorisieren 0
Fork 0
Code Issues 0 Releases 48 Wiki Aktivität
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
Du kannst nicht mehr als 25 Themen auswählen Themen müssen mit entweder einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
76 Commits
4 Branches
Struktur: 812b5e6e0b
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „812b5e6e0b“
${ noResults }
mtg/mtproto/wrappers/crypt.go

crypt.go 2.4KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. package wrappers

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/aes"

  6. 	"crypto/cipher"

  7. 	"crypto/md5"

  8. 	"crypto/sha1"

  9. 	"encoding/binary"

  10. 	"net"

  11. 

  12. 	"github.com/9seconds/mtg/mtproto/rpc"

  13. 	"github.com/9seconds/mtg/wrappers"

  14. )

  15. 

  16. type CipherPurpose uint8

  17. 

  18. const (

  19. 	CipherPurposeClient CipherPurpose = iota

  20. 	CipherPurposeServer

  21. )

  22. 

  23. var emptyIP = [4]byte{0x00, 0x00, 0x00, 0x00}

  24. 

  25. func NewMiddleProxyCipherRWC(conn wrappers.ReadWriteCloserWithAddr, req *rpc.RPCNonceRequest,

  26. 	resp *rpc.RPCNonceResponse, client *net.TCPAddr, secret []byte) wrappers.ReadWriteCloserWithAddr {

  27. 	remote := conn.Addr()

  28. 	encryptor, _ := newCBCCipher(CipherPurposeClient, req, resp, client, remote, secret)

  29. 	_, decryptor := newCBCCipher(CipherPurposeServer, req, resp, client, remote, secret)

  30. 

  31. 	return wrappers.NewBlockCipherRWC(conn, encryptor, decryptor)

  32. }

  33. 

  34. func newCBCCipher(purpose CipherPurpose, req *rpc.RPCNonceRequest, resp *rpc.RPCNonceResponse,

  35. 	client *net.TCPAddr, remote *net.TCPAddr, secret []byte) (cipher.BlockMode, cipher.BlockMode) {

  36. 	message := bytes.Buffer{}

  37. 	message.Write(resp.Nonce[:])

  38. 	message.Write(req.Nonce[:])

  39. 	message.Write(req.CryptoTS[:])

  40. 

  41. 	clientIPv4 := emptyIP[:]

  42. 	serverIPv4 := emptyIP[:]

  43. 	if client.IP.To4() != nil {

  44. 		clientIPv4 = reverseBytes(client.IP.To4())

  45. 		serverIPv4 = reverseBytes(remote.IP.To4())

  46. 	}

  47. 	message.Write(serverIPv4)

  48. 

  49. 	var port [2]byte

  50. 	binary.LittleEndian.PutUint16(port[:], uint16(client.Port))

  51. 	message.Write(port[:])

  52. 

  53. 	switch purpose {

  54. 	case CipherPurposeClient:

  55. 		message.WriteString("CLIENT")

  56. 	case CipherPurposeServer:

  57. 		message.WriteString("SERVER")

  58. 	default:

  59. 		panic("Unexpected cipher purpose")

  60. 	}

  61. 

  62. 	message.Write(clientIPv4)

  63. 	binary.LittleEndian.PutUint16(port[:], uint16(remote.Port))

  64. 	message.Write(port[:])

  65. 	message.Write(secret)

  66. 	message.Write(resp.Nonce[:])

  67. 

  68. 	if client.IP.To4() == nil {

  69. 		message.Write(client.IP.To16())

  70. 		message.Write(remote.IP.To16())

  71. 	}

  72. 	message.Write(req.Nonce[:])

  73. 

  74. 	return makeCipher(message.Bytes())

  75. }

  76. 

  77. func makeCipher(message []byte) (cipher.BlockMode, cipher.BlockMode) {

  78. 	md5sum := md5.Sum(message[1:])

  79. 	sha1sum := sha1.Sum(message)

  80. 

  81. 	key := append(md5sum[12:], sha1sum[:]...)

  82. 	iv := md5.Sum(message[2:])

  83. 

  84. 	block, err := aes.NewCipher(key)

  85. 	if err != nil {

  86. 		panic("Cannot create cipher from the given key")

  87. 	}

  88. 

  89. 	return cipher.NewCBCEncrypter(block, iv[:]), cipher.NewCBCDecrypter(block, iv[:])

  90. }

  91. 

  92. func reverseBytes(data []byte) []byte {

  93. 	rv := make([]byte, len(data))

  94. 	for k, v := range data {

  95. 		rv[len(data)-1-k] = v

  96. 	}

  97. 

  98. 	return rv

  99. }