v2fly/proxy/socks/socks.go

package socks

import (
	"io"
	"net"
	"strconv"
	"sync"

	"github.com/v2ray/v2ray-core"
	"github.com/v2ray/v2ray-core/common/errors"
	"github.com/v2ray/v2ray-core/common/log"
	v2net "github.com/v2ray/v2ray-core/common/net"
	jsonconfig "github.com/v2ray/v2ray-core/proxy/socks/config/json"
	"github.com/v2ray/v2ray-core/proxy/socks/protocol"
)

// SocksServer is a SOCKS 5 proxy server
type SocksServer struct {
	accepting bool
	vPoint    *core.Point
	config    jsonconfig.SocksConfig
}

func NewSocksServer(vp *core.Point, rawConfig []byte) *SocksServer {
	config, err := jsonconfig.Load(rawConfig)
	if err != nil {
		log.Error("Unable to load socks config: %v", err)
		panic(errors.NewConfigurationError())
	}
	return &SocksServer{
		vPoint: vp,
		config: config,
	}
}

func (server *SocksServer) Listen(port uint16) error {
	listener, err := net.Listen("tcp", ":"+strconv.Itoa(int(port)))
	if err != nil {
		log.Error("Socks failed to listen on port %d: %v", port, err)
		return err
	}
	server.accepting = true
	go server.AcceptConnections(listener)
	return nil
}

func (server *SocksServer) AcceptConnections(listener net.Listener) {
	for server.accepting {
		connection, err := listener.Accept()
		if err != nil {
			log.Error("Socks failed to accept new connection %v", err)
			return
		}
		go server.HandleConnection(connection)
	}
}

func (server *SocksServer) HandleConnection(connection net.Conn) error {
	defer connection.Close()

	reader := v2net.NewTimeOutReader(4, connection)

	auth, auth4, err := protocol.ReadAuthentication(reader)
	if err != nil && !errors.HasCode(err, 1000) {
		log.Error("Socks failed to read authentication: %v", err)
		return err
	}

	var dest v2net.Destination

	// TODO refactor this part
	if errors.HasCode(err, 1000) {
		result := protocol.Socks4RequestGranted
		if auth4.Command == protocol.CmdBind {
			result = protocol.Socks4RequestRejected
		}
		socks4Response := protocol.NewSocks4AuthenticationResponse(result, auth4.Port, auth4.IP[:])
		connection.Write(socks4Response.ToBytes(nil))

		if result == protocol.Socks4RequestRejected {
			return errors.NewInvalidOperationError("Socks4 command " + strconv.Itoa(int(auth4.Command)))
		}

		dest = v2net.NewTCPDestination(v2net.IPAddress(auth4.IP[:], auth4.Port))
	} else {
		expectedAuthMethod := protocol.AuthNotRequired
		if server.config.IsPassword() {
			expectedAuthMethod = protocol.AuthUserPass
		}

		if !auth.HasAuthMethod(expectedAuthMethod) {
			authResponse := protocol.NewAuthenticationResponse(protocol.AuthNoMatchingMethod)
			err = protocol.WriteAuthentication(connection, authResponse)
			if err != nil {
				log.Error("Socks failed to write authentication: %v", err)
				return err
			}
			log.Warning("Socks client doesn't support allowed any auth methods.")
			return errors.NewInvalidOperationError("Unsupported auth methods.")
		}

		authResponse := protocol.NewAuthenticationResponse(expectedAuthMethod)
		err = protocol.WriteAuthentication(connection, authResponse)
		if err != nil {
			log.Error("Socks failed to write authentication: %v", err)
			return err
		}
		if server.config.IsPassword() {
			upRequest, err := protocol.ReadUserPassRequest(reader)
			if err != nil {
				log.Error("Socks failed to read username and password: %v", err)
				return err
			}
			status := byte(0)
			if !upRequest.IsValid(server.config.Username, server.config.Password) {
				status = byte(0xFF)
			}
			upResponse := protocol.NewSocks5UserPassResponse(status)
			err = protocol.WriteUserPassResponse(connection, upResponse)
			if err != nil {
				log.Error("Socks failed to write user pass response: %v", err)
				return err
			}
			if status != byte(0) {
				err = errors.NewAuthenticationError(upRequest.AuthDetail())
				log.Warning(err.Error())
				return err
			}
		}

		request, err := protocol.ReadRequest(reader)
		if err != nil {
			log.Error("Socks failed to read request: %v", err)
			return err
		}

		response := protocol.NewSocks5Response()

		if request.Command == protocol.CmdBind || request.Command == protocol.CmdUdpAssociate {
			response := protocol.NewSocks5Response()
			response.Error = protocol.ErrorCommandNotSupported
			err = protocol.WriteResponse(connection, response)
			if err != nil {
				log.Error("Socks failed to write response: %v", err)
				return err
			}
			log.Warning("Unsupported socks command %d", request.Command)
			return errors.NewInvalidOperationError("Socks command " + strconv.Itoa(int(request.Command)))
		}

		response.Error = protocol.ErrorSuccess
		response.Port = request.Port
		response.AddrType = request.AddrType
		switch response.AddrType {
		case protocol.AddrTypeIPv4:
			copy(response.IPv4[:], request.IPv4[:])
		case protocol.AddrTypeIPv6:
			copy(response.IPv6[:], request.IPv6[:])
		case protocol.AddrTypeDomain:
			response.Domain = request.Domain
		}
		err = protocol.WriteResponse(connection, response)
		if err != nil {
			log.Error("Socks failed to write response: %v", err)
			return err
		}

		dest = request.Destination()
	}

	ray := server.vPoint.DispatchToOutbound(v2net.NewPacket(dest, nil, true))
	input := ray.InboundInput()
	output := ray.InboundOutput()
	var readFinish, writeFinish sync.Mutex
	readFinish.Lock()
	writeFinish.Lock()

	go dumpInput(reader, input, &readFinish)
	go dumpOutput(connection, output, &writeFinish)
	writeFinish.Lock()

	return nil
}

func dumpInput(reader io.Reader, input chan<- []byte, finish *sync.Mutex) {
	v2net.ReaderToChan(input, reader)
	finish.Unlock()
	close(input)
}

func dumpOutput(writer io.Writer, output <-chan []byte, finish *sync.Mutex) {
	v2net.ChanToWriter(writer, output)
	finish.Unlock()
}
Full implementation of Socks5 protocol, proxying is on the way 2015-09-08 07:18:55 -04:00			`package socks`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00
			`import (`
format code 2015-09-15 18:06:22 -04:00			`"io"`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`"net"`
format code 2015-09-11 08:12:26 -04:00			`"strconv"`
Switch to Mutex for better readability 2015-09-23 08:14:53 -04:00			`"sync"`
socks5 server implementation 2015-09-09 06:13:52 -04:00
connecting dots 2015-09-10 18:24:18 -04:00			`"github.com/v2ray/v2ray-core"`
Unify error checking by introducing error codes 2015-09-24 18:17:44 -04:00			`"github.com/v2ray/v2ray-core/common/errors"`
Move log into common 2015-09-19 18:50:21 -04:00			`"github.com/v2ray/v2ray-core/common/log"`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`v2net "github.com/v2ray/v2ray-core/common/net"`
Move socks config into a sparate folder 2015-09-25 15:00:51 -04:00			`jsonconfig "github.com/v2ray/v2ray-core/proxy/socks/config/json"`
Unify error checking by introducing error codes 2015-09-24 18:17:44 -04:00			`"github.com/v2ray/v2ray-core/proxy/socks/protocol"`
socks5 server implementation 2015-09-09 06:13:52 -04:00			`)`

Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`// SocksServer is a SOCKS 5 proxy server`
			`type SocksServer struct {`
			`accepting bool`
Remove prefix 'V' in struct names 2015-09-12 16:11:54 -04:00			`vPoint *core.Point`
Move socks config into a sparate folder 2015-09-25 15:00:51 -04:00			`config jsonconfig.SocksConfig`
connecting dots 2015-09-10 18:24:18 -04:00			`}`

Remove prefix 'V' in struct names 2015-09-12 16:11:54 -04:00			`func NewSocksServer(vp core.Point, rawConfig []byte) SocksServer {`
Move socks config into a sparate folder 2015-09-25 15:00:51 -04:00			`config, err := jsonconfig.Load(rawConfig)`
massive refactoring for configuration 2015-09-12 05:51:42 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Unable to load socks config: %v", err)`
			`panic(errors.NewConfigurationError())`
massive refactoring for configuration 2015-09-12 05:51:42 -04:00			`}`
Use &struct{} instead of new 2015-09-16 10:27:36 -04:00			`return &SocksServer{`
			`vPoint: vp,`
			`config: config,`
			`}`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`}`

sample socks proxy 2015-09-11 08:12:09 -04:00			`func (server *SocksServer) Listen(port uint16) error {`
			`listener, err := net.Listen("tcp", ":"+strconv.Itoa(int(port)))`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to listen on port %d: %v", port, err)`
Version 1.0 alpha 2015-09-12 14:36:21 -04:00			`return err`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`}`
			`server.accepting = true`
Fix build breaks 2015-09-07 11:46:17 -04:00			`go server.AcceptConnections(listener)`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`return nil`
			`}`

Add more error check and declare the field name in composite literal. 2015-09-16 11:07:05 -04:00			`func (server *SocksServer) AcceptConnections(listener net.Listener) {`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`for server.accepting {`
			`connection, err := listener.Accept()`
			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to accept new connection %v", err)`
			`return`
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`}`
			`go server.HandleConnection(connection)`
			`}`
			`}`

Fix build breaks 2015-09-07 11:46:17 -04:00			`func (server *SocksServer) HandleConnection(connection net.Conn) error {`
socks5 server implementation 2015-09-09 06:13:52 -04:00			`defer connection.Close()`
format code 2015-09-15 18:06:22 -04:00
Close connection more aggressively. 2015-09-24 08:51:19 -04:00			`reader := v2net.NewTimeOutReader(4, connection)`
socks5 server implementation 2015-09-09 06:13:52 -04:00
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`auth, auth4, err := protocol.ReadAuthentication(reader)`
Unify error checking by introducing error codes 2015-09-24 18:17:44 -04:00			`if err != nil && !errors.HasCode(err, 1000) {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to read authentication: %v", err)`
Version 1.0 alpha 2015-09-12 14:36:21 -04:00			`return err`
socks5 server implementation 2015-09-09 06:13:52 -04:00			`}`

prefer interface over struct 2015-09-20 12:22:29 -04:00			`var dest v2net.Destination`
massive refactoring for configuration 2015-09-12 05:51:42 -04:00
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`// TODO refactor this part`
Unify error checking by introducing error codes 2015-09-24 18:17:44 -04:00			`if errors.HasCode(err, 1000) {`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`result := protocol.Socks4RequestGranted`
			`if auth4.Command == protocol.CmdBind {`
			`result = protocol.Socks4RequestRejected`
Add more error check and declare the field name in composite literal. 2015-09-16 11:07:05 -04:00			`}`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`socks4Response := protocol.NewSocks4AuthenticationResponse(result, auth4.Port, auth4.IP[:])`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`connection.Write(socks4Response.ToBytes(nil))`
socks5 server implementation 2015-09-09 06:13:52 -04:00
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`if result == protocol.Socks4RequestRejected {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`return errors.NewInvalidOperationError("Socks4 command " + strconv.Itoa(int(auth4.Command)))`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`}`

prefer interface over struct 2015-09-20 12:22:29 -04:00			`dest = v2net.NewTCPDestination(v2net.IPAddress(auth4.IP[:], auth4.Port))`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`} else {`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`expectedAuthMethod := protocol.AuthNotRequired`
Move socks config into a sparate folder 2015-09-25 15:00:51 -04:00			`if server.config.IsPassword() {`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`expectedAuthMethod = protocol.AuthUserPass`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`}`

			`if !auth.HasAuthMethod(expectedAuthMethod) {`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`authResponse := protocol.NewAuthenticationResponse(protocol.AuthNoMatchingMethod)`
			`err = protocol.WriteAuthentication(connection, authResponse)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to write authentication: %v", err)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`return err`
			`}`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Warning("Socks client doesn't support allowed any auth methods.")`
			`return errors.NewInvalidOperationError("Unsupported auth methods.")`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`}`

Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`authResponse := protocol.NewAuthenticationResponse(expectedAuthMethod)`
			`err = protocol.WriteAuthentication(connection, authResponse)`
format code 2015-09-15 18:06:22 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to write authentication: %v", err)`
format code 2015-09-15 18:06:22 -04:00			`return err`
			`}`
Move socks config into a sparate folder 2015-09-25 15:00:51 -04:00			`if server.config.IsPassword() {`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`upRequest, err := protocol.ReadUserPassRequest(reader)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to read username and password: %v", err)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`return err`
			`}`
			`status := byte(0)`
			`if !upRequest.IsValid(server.config.Username, server.config.Password) {`
			`status = byte(0xFF)`
			`}`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`upResponse := protocol.NewSocks5UserPassResponse(status)`
			`err = protocol.WriteUserPassResponse(connection, upResponse)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to write user pass response: %v", err)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`return err`
			`}`
			`if status != byte(0) {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`err = errors.NewAuthenticationError(upRequest.AuthDetail())`
			`log.Warning(err.Error())`
			`return err`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`}`
format code 2015-09-15 18:06:22 -04:00			`}`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`request, err := protocol.ReadRequest(reader)`
Add more error check and declare the field name in composite literal. 2015-09-16 11:07:05 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to read request: %v", err)`
Add more error check and declare the field name in composite literal. 2015-09-16 11:07:05 -04:00			`return err`
			`}`
socks5 server implementation 2015-09-09 06:13:52 -04:00
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`response := protocol.NewSocks5Response()`
format code 2015-09-11 08:12:26 -04:00
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`if request.Command == protocol.CmdBind \|\| request.Command == protocol.CmdUdpAssociate {`
			`response := protocol.NewSocks5Response()`
			`response.Error = protocol.ErrorCommandNotSupported`
			`err = protocol.WriteResponse(connection, response)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to write response: %v", err)`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`return err`
			`}`
			`log.Warning("Unsupported socks command %d", request.Command)`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`return errors.NewInvalidOperationError("Socks command " + strconv.Itoa(int(request.Command)))`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`}`
socks5 server implementation 2015-09-09 06:13:52 -04:00
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`response.Error = protocol.ErrorSuccess`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`response.Port = request.Port`
			`response.AddrType = request.AddrType`
			`switch response.AddrType {`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`case protocol.AddrTypeIPv4:`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`copy(response.IPv4[:], request.IPv4[:])`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`case protocol.AddrTypeIPv6:`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`copy(response.IPv6[:], request.IPv6[:])`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`case protocol.AddrTypeDomain:`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`response.Domain = request.Domain`
			`}`
Massive refactoring for better code structure 2015-09-19 17:54:36 -04:00			`err = protocol.WriteResponse(connection, response)`
Add more error check and declare the field name in composite literal. 2015-09-16 11:07:05 -04:00			`if err != nil {`
Update error handling in socks proxy 2015-09-25 11:59:45 -04:00			`log.Error("Socks failed to write response: %v", err)`
Add more error check and declare the field name in composite literal. 2015-09-16 11:07:05 -04:00			`return err`
			`}`
format code 2015-09-11 08:12:26 -04:00
Add SOCKS4 support 2015-09-17 11:37:04 -04:00			`dest = request.Destination()`
format code 2015-09-11 08:12:26 -04:00			`}`
Add SOCKS4 support 2015-09-17 11:37:04 -04:00
simplify udp handling 2015-10-02 09:32:26 -04:00			`ray := server.vPoint.DispatchToOutbound(v2net.NewPacket(dest, nil, true))`
connecting dots 2015-09-10 18:24:18 -04:00			`input := ray.InboundInput()`
			`output := ray.InboundOutput()`
Switch to Mutex for better readability 2015-09-23 08:14:53 -04:00			`var readFinish, writeFinish sync.Mutex`
			`readFinish.Lock()`
			`writeFinish.Lock()`
connecting dots 2015-09-10 18:24:18 -04:00
Fix usage of Mutex 2015-09-23 11:13:50 -04:00			`go dumpInput(reader, input, &readFinish)`
			`go dumpOutput(connection, output, &writeFinish)`
Switch to Mutex for better readability 2015-09-23 08:14:53 -04:00			`writeFinish.Lock()`
socks5 server implementation 2015-09-09 06:13:52 -04:00
Prototype for socks5 proxy server 2015-09-07 08:49:40 -04:00			`return nil`
			`}`
connecting dots 2015-09-10 18:24:18 -04:00
Fix usage of Mutex 2015-09-23 11:13:50 -04:00			`func dumpInput(reader io.Reader, input chan<- []byte, finish *sync.Mutex) {`
fix build break 2015-09-15 15:45:04 -04:00			`v2net.ReaderToChan(input, reader)`
Switch to Mutex for better readability 2015-09-23 08:14:53 -04:00			`finish.Unlock()`
Simplify channel operations 2015-09-13 14:01:50 -04:00			`close(input)`
connecting dots 2015-09-10 18:24:18 -04:00			`}`

Fix usage of Mutex 2015-09-23 11:13:50 -04:00			`func dumpOutput(writer io.Writer, output <-chan []byte, finish *sync.Mutex) {`
fix build break 2015-09-15 15:45:04 -04:00			`v2net.ChanToWriter(writer, output)`
Switch to Mutex for better readability 2015-09-23 08:14:53 -04:00			`finish.Unlock()`
connecting dots 2015-09-10 18:24:18 -04:00			`}`