| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 |
- package wrappers
-
- import (
- "crypto/cipher"
- "net"
-
- "github.com/juju/errors"
- "go.uber.org/zap"
- )
-
- // StreamCipher is a wrapper which encrypts/decrypts stream with AES-CTR
- // (as a part of obfuscated2 protocol).
- type StreamCipher struct {
- encryptor cipher.Stream
- decryptor cipher.Stream
- conn StreamReadWriteCloser
- logger *zap.SugaredLogger
- }
-
- func (s *StreamCipher) Read(p []byte) (int, error) {
- n, err := s.conn.Read(p)
- if err != nil {
- return 0, errors.Annotate(err, "Cannot read stream ciphered data")
- }
- s.decryptor.XORKeyStream(p, p[:n])
-
- return n, nil
- }
-
- func (s *StreamCipher) Write(p []byte) (int, error) {
- encrypted := make([]byte, len(p))
- s.encryptor.XORKeyStream(encrypted, p)
-
- return s.conn.Write(encrypted)
- }
-
- // Logger returns an instance of the logger for this wrapper.
- func (s *StreamCipher) Logger() *zap.SugaredLogger {
- return s.logger
- }
-
- // LocalAddr returns local address of the underlying net.Conn.
- func (s *StreamCipher) LocalAddr() *net.TCPAddr {
- return s.conn.LocalAddr()
- }
-
- // RemoteAddr returns remote address of the underlying net.Conn.
- func (s *StreamCipher) RemoteAddr() *net.TCPAddr {
- return s.conn.RemoteAddr()
- }
-
- // Close closes underlying net.Conn instance.
- func (s *StreamCipher) Close() error {
- return s.conn.Close()
- }
-
- // NewStreamCipher creates new stream cipher wrapper.
- func NewStreamCipher(conn StreamReadWriteCloser, encryptor, decryptor cipher.Stream) StreamReadWriteCloser {
- return &StreamCipher{
- conn: conn,
- logger: conn.Logger().Named("stream-cipher"),
- encryptor: encryptor,
- decryptor: decryptor,
- }
- }
|
