ei
/
mtg
огледало од https://github.com/9seconds/mtg
Прати 1
Волим 0
Креирај огранак 0
Код Дискусије 0 Издања 48 Вики Activity
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
448 Комити
4 Гране
Дрво: b976e74fc0
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from 'b976e74fc0'
${ noResults }
mtg/wrappers/stream/mtproto_cipher.go

mtproto_cipher.go 2.5KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119 
  1. package stream

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/aes"

  6. 	"crypto/cipher"

  7. 	"crypto/md5"

  8. 	"crypto/sha1"

  9. 	"encoding/binary"

  10. 	"net"

  11. 

  12. 	"github.com/9seconds/mtg/conntypes"

  13. 	"github.com/9seconds/mtg/mtproto/rpc"

  14. 	"github.com/9seconds/mtg/utils"

  15. )

  16. 

  17. type mtprotoCipherPurpose uint8

  18. 

  19. const (

  20. 	mtprotoCipherPurposeClient mtprotoCipherPurpose = iota

  21. 	mtprotoCipherPurposeServer

  22. )

  23. 

  24. var mtprotoEmptyIP = [4]byte{0x00, 0x00, 0x00, 0x00}

  25. 

  26. func NewMiddleProxyCipher(parent conntypes.StreamReadWriteCloser,

  27. 	req *rpc.NonceRequest,

  28. 	resp *rpc.NonceResponse,

  29. 	secret []byte,

  30. ) conntypes.StreamReadWriteCloser {

  31. 	localAddr := parent.LocalAddr()

  32. 	remoteAddr := parent.RemoteAddr()

  33. 

  34. 	encKey, encIV := mtprotoDeriveKeys(mtprotoCipherPurposeClient,

  35. 		req,

  36. 		resp,

  37. 		localAddr,

  38. 		remoteAddr,

  39. 		secret)

  40. 	decKey, decIV := mtprotoDeriveKeys(mtprotoCipherPurposeServer,

  41. 		req,

  42. 		resp,

  43. 		localAddr,

  44. 		remoteAddr,

  45. 		secret)

  46. 

  47. 	enc, _ := mtprotoMakeEncrypterDecrypter(encKey, encIV)

  48. 	_, dec := mtprotoMakeEncrypterDecrypter(decKey, decIV)

  49. 

  50. 	return newBlockCipher(parent, enc, dec)

  51. }

  52. 

  53. func mtprotoDeriveKeys(purpose mtprotoCipherPurpose,

  54. 	req *rpc.NonceRequest,

  55. 	resp *rpc.NonceResponse,

  56. 	client, remote *net.TCPAddr,

  57. 	secret []byte,

  58. ) ([]byte, []byte) {

  59. 	message := bytes.Buffer{}

  60. 

  61. 	message.Write(resp.Nonce)

  62. 	message.Write(req.Nonce)

  63. 	message.Write(req.CryptoTS)

  64. 

  65. 	clientIPv4 := mtprotoEmptyIP[:]

  66. 	serverIPv4 := mtprotoEmptyIP[:]

  67. 

  68. 	if client.IP.To4() != nil {

  69. 		clientIPv4 = utils.ReverseBytes(client.IP.To4())

  70. 		serverIPv4 = utils.ReverseBytes(remote.IP.To4())

  71. 	}

  72. 

  73. 	message.Write(serverIPv4)

  74. 

  75. 	var port [2]byte

  76. 

  77. 	binary.LittleEndian.PutUint16(port[:], uint16(client.Port))

  78. 	message.Write(port[:])

  79. 

  80. 	switch purpose {

  81. 	case mtprotoCipherPurposeClient:

  82. 		message.WriteString("CLIENT")

  83. 	case mtprotoCipherPurposeServer:

  84. 		message.WriteString("SERVER")

  85. 	default:

  86. 		panic("Unexpected cipher purpose")

  87. 	}

  88. 

  89. 	message.Write(clientIPv4)

  90. 	binary.LittleEndian.PutUint16(port[:], uint16(remote.Port))

  91. 	message.Write(port[:])

  92. 	message.Write(secret)

  93. 	message.Write(resp.Nonce)

  94. 

  95. 	if client.IP.To4() == nil {

  96. 		message.Write(client.IP.To16())

  97. 		message.Write(remote.IP.To16())

  98. 	}

  99. 

  100. 	message.Write(req.Nonce)

  101. 

  102. 	data := message.Bytes()

  103. 	md5sum := md5.Sum(data[1:]) // nolint: gas

  104. 	sha1sum := sha1.Sum(data)   // nolint: gosec

  105. 

  106. 	key := append(md5sum[:12], sha1sum[:]...)

  107. 	iv := md5.Sum(data[2:]) // nolint: gas

  108. 

  109. 	return key, iv[:]

  110. }

  111. 

  112. func mtprotoMakeEncrypterDecrypter(key, iv []byte) (cipher.BlockMode, cipher.BlockMode) {

  113. 	block, err := aes.NewCipher(key)

  114. 	if err != nil {

  115. 		panic(err)

  116. 	}

  117. 

  118. 	return cipher.NewCBCEncrypter(block, iv), cipher.NewCBCDecrypter(block, iv)

  119. }