/* * Copyright (c) 2014, Yawning Angel * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are met: * * * Redistributions of source code must retain the above copyright notice, * this list of conditions and the following disclaimer. * * * Redistributions in binary form must reproduce the above copyright notice, * this list of conditions and the following disclaimer in the documentation * and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE * POSSIBILITY OF SUCH DAMAGE. */ package obfs4 import ( "encoding/binary" "fmt" "io" "syscall" "github.com/yawning/obfs4/framing" ) const ( packetOverhead = 2 + 1 maxPacketPayloadLength = framing.MaximumFramePayloadLength - packetOverhead maxPacketPaddingLength = maxPacketPayloadLength consumeReadSize = framing.MaximumSegmentLength * 16 ) const ( packetTypePayload = iota packetTypePrngSeed ) // InvalidPacketLengthError is the error returned when decodePacket detects a // invalid packet length/ type InvalidPacketLengthError int func (e InvalidPacketLengthError) Error() string { return fmt.Sprintf("packet: Invalid packet length: %d", int(e)) } // InvalidPayloadLengthError is the error returned when decodePacket rejects the // payload length. type InvalidPayloadLengthError int func (e InvalidPayloadLengthError) Error() string { return fmt.Sprintf("packet: Invalid payload length: %d", int(e)) } var zeroPadBytes [maxPacketPaddingLength]byte func makePacket(pkt []byte, pktType uint8, data []byte, padLen uint16) int { pktLen := packetOverhead + len(data) + int(padLen) if len(data)+int(padLen) > maxPacketPayloadLength { panic(fmt.Sprintf("BUG: makePacket() len(data) + padLen > maxPacketPayloadLength: %d + %d > %d", len(data), padLen, maxPacketPayloadLength)) } // Packets are: // uint8_t type packetTypePayload (0x00) // uint16_t length Length of the payload (Big Endian). // uint8_t[] payload Data payload. // uint8_t[] padding Padding. pkt[0] = pktType binary.BigEndian.PutUint16(pkt[1:], uint16(len(data))) if len(data) > 0 { copy(pkt[3:], data[:]) } copy(pkt[3+len(data):], zeroPadBytes[:padLen]) return pktLen } func (c *Obfs4Conn) makeAndEncryptPacket(pktType uint8, data []byte, padLen uint16) (int, []byte, error) { var pkt [framing.MaximumFramePayloadLength]byte // Wrap the payload in a packet. n := makePacket(pkt[:], pktType, data[:], padLen) // Encode the packet in an AEAD frame. n, frame, err := c.encoder.Encode(pkt[:n]) return n, frame, err } func (c *Obfs4Conn) consumeFramedPackets(w io.Writer) (n int, err error) { if !c.isOk { return n, syscall.EINVAL } var buf [consumeReadSize]byte rdLen, err := c.conn.Read(buf[:]) if err != nil { return } c.receiveBuffer.Write(buf[:rdLen]) for c.receiveBuffer.Len() > 0 { // Decrypt an AEAD frame. // TODO: Change decode to write into packet directly var pkt []byte _, pkt, err = c.decoder.Decode(&c.receiveBuffer) if err == framing.ErrAgain { // The accumulated payload does not make up a full frame. return } else if err != nil { break } else if len(pkt) < packetOverhead { err = InvalidPacketLengthError(len(pkt)) break } // Decode the packet. pktType := pkt[0] payloadLen := binary.BigEndian.Uint16(pkt[1:]) if int(payloadLen) > len(pkt)-packetOverhead { err = InvalidPayloadLengthError(int(payloadLen)) break } payload := pkt[3 : 3+payloadLen] switch pktType { case packetTypePayload: if payloadLen > 0 { if w != nil { // c.WriteTo() skips buffering in c.receiveDecodedBuffer wrLen, err := w.Write(payload) n += wrLen if wrLen < int(payloadLen) { err = io.ErrShortWrite break } else if err != nil { break } } else { // c.Read() stashes decoded payload in receiveDecodedBuffer c.receiveDecodedBuffer.Write(payload) n += int(payloadLen) } } case packetTypePrngSeed: // Only regenerate the distribution if we are the client. if len(payload) >= distSeedLength && !c.isServer { c.lenProbDist.reset(payload[:distSeedLength]) } default: // Ignore unrecognised packet types. } } // All errors that reach this point are fatal. if err != nil { c.isOk = false } return } /* vim :set ts=4 sw=4 sts=4 noet : */