From d7b723c6b132a504a837aa528ca0a66b618e3c6c Mon Sep 17 00:00:00 2001 From: Mikhail Osipov Date: Tue, 25 Feb 2020 01:12:00 +0300 Subject: add aes module --- pkg/server/module/aes.go | 86 ++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 86 insertions(+) create mode 100644 pkg/server/module/aes.go (limited to 'pkg/server/module') diff --git a/pkg/server/module/aes.go b/pkg/server/module/aes.go new file mode 100644 index 0000000..68dcc7c --- /dev/null +++ b/pkg/server/module/aes.go @@ -0,0 +1,86 @@ +package module + +import ( + "crypto/aes" + "crypto/cipher" + "crypto/md5" + "crypto/rand" + "io" + "tunnel/pkg/server/env" + "tunnel/pkg/server/opts" + "tunnel/pkg/server/queue" +) + +type aesInfo struct { + key []byte +} + +type aesModule struct{} + +func (a *aesInfo) Send(rq, wq queue.Q) error { + block, err := aes.NewCipher(a.key) + if err != nil { + return err + } + + iv := make([]byte, aes.BlockSize) + + if _, err := rand.Read(iv); err != nil { + return err + } + + writer := &cipher.StreamWriter{ + S: cipher.NewOFB(block, iv), + W: wq.Writer(), + } + + wq <- iv + + return queue.IoCopy(rq.Reader(), writer) +} + +func (a *aesInfo) Recv(rq, wq queue.Q) error { + block, err := aes.NewCipher(a.key) + if err != nil { + return err + } + + r := rq.Reader() + + iv := make([]byte, aes.BlockSize) + + if _, err := io.ReadFull(r, iv); err != nil { + if err == io.EOF { + return nil + } + return err + } + + reader := &cipher.StreamReader{ + S: cipher.NewOFB(block, iv), + R: r, + } + + return queue.IoCopy(reader, wq.Writer()) +} + +func newAes(env env.Env) *aesInfo { + s := getAuthSecret(env) + h := md5.Sum([]byte(s)) + + a := &aesInfo{key: make([]byte, 16)} + copy(a.key, h[:]) + + return a +} + +func (m aesModule) Open(env env.Env) (Pipe, Pipe) { + a := newAes(env) + return a.Send, a.Recv +} + +func init() { + register("aes", func(opts.Opts, env.Env) (module, error) { + return aesModule{}, nil + }) +} -- cgit v1.2.3-70-g09d2