v2fly/proxy/shadowsocks/protocol.go

package shadowsocks

import (
	"io"

	"github.com/v2ray/v2ray-core/common/alloc"
	"github.com/v2ray/v2ray-core/common/log"
	v2net "github.com/v2ray/v2ray-core/common/net"
	"github.com/v2ray/v2ray-core/common/serial"
	"github.com/v2ray/v2ray-core/proxy"
	"github.com/v2ray/v2ray-core/transport"
)

const (
	AddrTypeIPv4   = 1
	AddrTypeIPv6   = 4
	AddrTypeDomain = 3
)

type Request struct {
	Address    v2net.Address
	Port       v2net.Port
	OTA        bool
	UDPPayload *alloc.Buffer
}

func ReadRequest(reader io.Reader, auth *Authenticator, udp bool) (*Request, error) {
	buffer := alloc.NewSmallBuffer()
	defer buffer.Release()

	_, err := io.ReadFull(reader, buffer.Value[:1])
	if err != nil {
		log.Error("Shadowsocks: Failed to read address type: ", err)
		return nil, transport.ErrorCorruptedPacket
	}
	lenBuffer := 1

	request := new(Request)

	addrType := (buffer.Value[0] & 0x0F)
	if (buffer.Value[0] & 0x10) == 0x10 {
		request.OTA = true
	}
	switch addrType {
	case AddrTypeIPv4:
		_, err := io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+4])
		if err != nil {
			log.Error("Shadowsocks: Failed to read IPv4 address: ", err)
			return nil, transport.ErrorCorruptedPacket
		}
		request.Address = v2net.IPAddress(buffer.Value[lenBuffer : lenBuffer+4])
		lenBuffer += 4
	case AddrTypeIPv6:
		_, err := io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+16])
		if err != nil {
			log.Error("Shadowsocks: Failed to read IPv6 address: ", err)
			return nil, transport.ErrorCorruptedPacket
		}
		request.Address = v2net.IPAddress(buffer.Value[lenBuffer : lenBuffer+16])
		lenBuffer += 16
	case AddrTypeDomain:
		_, err := io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+1])
		if err != nil {
			log.Error("Shadowsocks: Failed to read domain lenth: ", err)
			return nil, transport.ErrorCorruptedPacket
		}
		domainLength := int(buffer.Value[lenBuffer])
		lenBuffer++
		_, err = io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+domainLength])
		if err != nil {
			log.Error("Shadowsocks: Failed to read domain: ", err)
			return nil, transport.ErrorCorruptedPacket
		}
		request.Address = v2net.DomainAddress(string(buffer.Value[lenBuffer : lenBuffer+domainLength]))
		lenBuffer += domainLength
	default:
		log.Error("Shadowsocks: Unknown address type: ", addrType)
		return nil, transport.ErrorCorruptedPacket
	}

	_, err = io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+2])
	if err != nil {
		log.Error("Shadowsocks: Failed to read port: ", err)
		return nil, transport.ErrorCorruptedPacket
	}

	request.Port = v2net.PortFromBytes(buffer.Value[lenBuffer : lenBuffer+2])
	lenBuffer += 2

	var authBytes []byte

	if udp {
		nBytes, err := reader.Read(buffer.Value[lenBuffer:])
		if err != nil {
			log.Error("Shadowsocks: Failed to read UDP payload: ", err)
			return nil, transport.ErrorCorruptedPacket
		}
		buffer.Slice(0, lenBuffer+nBytes)
		if request.OTA {
			authBytes = buffer.Value[lenBuffer+nBytes-AuthSize:]
			request.UDPPayload = alloc.NewSmallBuffer().Clear().Append(buffer.Value[lenBuffer : lenBuffer+nBytes-AuthSize])
			lenBuffer = lenBuffer + nBytes - AuthSize
		} else {
			request.UDPPayload = alloc.NewSmallBuffer().Clear().Append(buffer.Value[lenBuffer:])
		}
	} else {
		if request.OTA {
			authBytes = buffer.Value[lenBuffer : lenBuffer+AuthSize]
			_, err = io.ReadFull(reader, authBytes)
			if err != nil {
				log.Error("Shadowsocks: Failed to read OTA: ", err)
				return nil, transport.ErrorCorruptedPacket
			}
		}
	}

	if request.OTA {
		actualAuth := auth.Authenticate(nil, buffer.Value[0:lenBuffer])
		if !serial.BytesLiteral(actualAuth).Equals(serial.BytesLiteral(authBytes)) {
			log.Debug("Shadowsocks: Invalid OTA. Expecting ", actualAuth, ", but got ", authBytes)
			log.Warning("Shadowsocks: Invalid OTA.")
			return nil, proxy.ErrorInvalidAuthentication
		}
	}

	return request, nil
}
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`package shadowsocks`

			`import (`
			`"io"`

			`"github.com/v2ray/v2ray-core/common/alloc"`
			`"github.com/v2ray/v2ray-core/common/log"`
			`v2net "github.com/v2ray/v2ray-core/common/net"`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`"github.com/v2ray/v2ray-core/common/serial"`
return ErrorInvalidAuthentication when OTA is not valid 2016-02-04 21:52:42 +00:00			`"github.com/v2ray/v2ray-core/proxy"`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`"github.com/v2ray/v2ray-core/transport"`
			`)`

			`const (`
			`AddrTypeIPv4 = 1`
			`AddrTypeIPv6 = 4`
			`AddrTypeDomain = 3`
			`)`

			`type Request struct {`
fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`Address v2net.Address`
			`Port v2net.Port`
			`OTA bool`
			`UDPPayload *alloc.Buffer`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`

fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`func ReadRequest(reader io.Reader, auth Authenticator, udp bool) (Request, error) {`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`buffer := alloc.NewSmallBuffer()`
			`defer buffer.Release()`

remove ReadAllBytes in favor of io.ReadFull 2016-01-28 22:58:23 +00:00			`_, err := io.ReadFull(reader, buffer.Value[:1])`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read address type: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`lenBuffer := 1`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00
			`request := new(Request)`

understand OTA bit 2016-01-29 14:09:51 +00:00			`addrType := (buffer.Value[0] & 0x0F)`
			`if (buffer.Value[0] & 0x10) == 0x10 {`
			`request.OTA = true`
			`}`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`switch addrType {`
			`case AddrTypeIPv4:`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`_, err := io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+4])`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read IPv4 address: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`request.Address = v2net.IPAddress(buffer.Value[lenBuffer : lenBuffer+4])`
			`lenBuffer += 4`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`case AddrTypeIPv6:`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`_, err := io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+16])`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read IPv6 address: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`request.Address = v2net.IPAddress(buffer.Value[lenBuffer : lenBuffer+16])`
			`lenBuffer += 16`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`case AddrTypeDomain:`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`_, err := io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+1])`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read domain lenth: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`domainLength := int(buffer.Value[lenBuffer])`
			`lenBuffer++`
			`_, err = io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+domainLength])`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read domain: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`request.Address = v2net.DomainAddress(string(buffer.Value[lenBuffer : lenBuffer+domainLength]))`
			`lenBuffer += domainLength`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`default:`
			`log.Error("Shadowsocks: Unknown address type: ", addrType)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`

complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`_, err = io.ReadFull(reader, buffer.Value[lenBuffer:lenBuffer+2])`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read port: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`}`

complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`request.Port = v2net.PortFromBytes(buffer.Value[lenBuffer : lenBuffer+2])`
			`lenBuffer += 2`

fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`var authBytes []byte`

			`if udp {`
			`nBytes, err := reader.Read(buffer.Value[lenBuffer:])`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`if err != nil {`
fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`log.Error("Shadowsocks: Failed to read UDP payload: ", err)`
clean up after error 2016-02-03 20:44:20 +00:00			`return nil, transport.ErrorCorruptedPacket`
fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`}`
			`buffer.Slice(0, lenBuffer+nBytes)`
			`if request.OTA {`
			`authBytes = buffer.Value[lenBuffer+nBytes-AuthSize:]`
			`request.UDPPayload = alloc.NewSmallBuffer().Clear().Append(buffer.Value[lenBuffer : lenBuffer+nBytes-AuthSize])`
			`lenBuffer = lenBuffer + nBytes - AuthSize`
			`} else {`
			`request.UDPPayload = alloc.NewSmallBuffer().Clear().Append(buffer.Value[lenBuffer:])`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`}`
fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`} else {`
			`if request.OTA {`
			`authBytes = buffer.Value[lenBuffer : lenBuffer+AuthSize]`
			`_, err = io.ReadFull(reader, authBytes)`
			`if err != nil {`
			`log.Error("Shadowsocks: Failed to read OTA: ", err)`
rename CorruptedPacket to ErrorCorruptedPacket 2016-01-30 16:20:30 +00:00			`return nil, transport.ErrorCorruptedPacket`
fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`}`
			`}`
			`}`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00
fix shadowsocks udp ota 2016-01-29 20:55:42 +00:00			`if request.OTA {`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`actualAuth := auth.Authenticate(nil, buffer.Value[0:lenBuffer])`
			`if !serial.BytesLiteral(actualAuth).Equals(serial.BytesLiteral(authBytes)) {`
better log 2016-02-28 20:02:03 +00:00			`log.Debug("Shadowsocks: Invalid OTA. Expecting ", actualAuth, ", but got ", authBytes)`
			`log.Warning("Shadowsocks: Invalid OTA.")`
return ErrorInvalidAuthentication when OTA is not valid 2016-02-04 21:52:42 +00:00			`return nil, proxy.ErrorInvalidAuthentication`
complete implementation of shadowsocks ota 2016-01-29 15:43:45 +00:00			`}`
			`}`

tcp handler for shadowsocks 2016-01-28 11:33:58 +00:00			`return request, nil`
			`}`