fix socks password authentication

2024-12-30 05:56:54 -05:00 · 2017-01-29 08:25:01 +01:00 · 2017-01-29 08:25:01 +01:00 · 6629b6dd28
commit 6629b6dd28
parent 20e785fa80
1 changed files with 10 additions and 10 deletions
--- a/proxy/socks/protocol.go
+++ b/proxy/socks/protocol.go
@ -85,7 +85,7 @@ func (s *ServerSession) Handshake(reader io.Reader, writer io.Writer) (*protocol
 	if version == socks5Version {
 		nMethod := int(buffer.Byte(1))
 		if err := buffer.AppendSupplier(buf.ReadFullFrom(reader, nMethod)); err != nil {
-			return nil, err
+			return nil, errors.Base(err).Message("Socks|Server: Failed to read auth methods.")
 		}

 		var expectedAuth byte = authNotRequired
@ -94,12 +94,12 @@ func (s *ServerSession) Handshake(reader io.Reader, writer io.Writer) (*protocol
 		}

 		if !hasAuthMethod(expectedAuth, buffer.BytesRange(2, 2+nMethod)) {
-			writeSocks5AuthenticationResponse(writer, authNoMatchingMethod)
+			writeSocks5AuthenticationResponse(writer, socks5Version, authNoMatchingMethod)
 			return nil, errors.New("Socks|Server: No matching auth method.")
 		}

-		if err := writeSocks5AuthenticationResponse(writer, expectedAuth); err != nil {
-			return nil, err
+		if err := writeSocks5AuthenticationResponse(writer, socks5Version, expectedAuth); err != nil {
+			return nil, errors.Base(err).Message("Socks|Server: Failed to write auth response.")
 		}

 		if expectedAuth == authPassword {
@ -109,17 +109,17 @@ func (s *ServerSession) Handshake(reader io.Reader, writer io.Writer) (*protocol
 			}

 			if !s.config.HasAccount(username, password) {
-				writeSocks5AuthenticationResponse(writer, 0xFF)
+				writeSocks5AuthenticationResponse(writer, 0x01, 0xFF)
 				return nil, errors.New("Socks|Server: Invalid username or password.")
 			}

-			if err := writeSocks5AuthenticationResponse(writer, 0x00); err != nil {
-				return nil, err
+			if err := writeSocks5AuthenticationResponse(writer, 0x01, 0x00); err != nil {
+				return nil, errors.Base(err).Message("Socks|Server: Failed to write auth response.")
 			}
 		}
 		buffer.Clear()
 		if err := buffer.AppendSupplier(buf.ReadFullFrom(reader, 4)); err != nil {
-			return nil, err
+			return nil, errors.Base(err).Message("Socks|Server: Failed to read request.")
 		}

 		cmd := buffer.Byte(1)
@ -244,8 +244,8 @@ func hasAuthMethod(expectedAuth byte, authCandidates []byte) bool {
 	return false
 }

-func writeSocks5AuthenticationResponse(writer io.Writer, auth byte) error {
-	_, err := writer.Write([]byte{socks5Version, auth})
+func writeSocks5AuthenticationResponse(writer io.Writer, version byte, auth byte) error {
+	_, err := writer.Write([]byte{version, auth})
 	return err
 }