github.com/yaling888/clash@v1.53.0/transport/shadowsocks/shadowstream/cipher.go (about) 1 package shadowstream 2 3 import ( 4 "crypto/aes" 5 "crypto/cipher" 6 "crypto/md5" 7 "crypto/rc4" 8 "strconv" 9 10 "golang.org/x/crypto/chacha20" 11 ) 12 13 // Cipher generates a pair of stream ciphers for encryption and decryption. 14 type Cipher interface { 15 IVSize() int 16 Encrypter(iv []byte) cipher.Stream 17 Decrypter(iv []byte) cipher.Stream 18 } 19 20 type KeySizeError int 21 22 func (e KeySizeError) Error() string { 23 return "key size error: need " + strconv.Itoa(int(e)) + " bytes" 24 } 25 26 // CTR mode 27 type ctrStream struct{ cipher.Block } 28 29 func (b *ctrStream) IVSize() int { return b.BlockSize() } 30 func (b *ctrStream) Decrypter(iv []byte) cipher.Stream { return b.Encrypter(iv) } 31 func (b *ctrStream) Encrypter(iv []byte) cipher.Stream { return cipher.NewCTR(b, iv) } 32 33 func AESCTR(key []byte) (Cipher, error) { 34 blk, err := aes.NewCipher(key) 35 if err != nil { 36 return nil, err 37 } 38 return &ctrStream{blk}, nil 39 } 40 41 // CFB mode 42 type cfbStream struct{ cipher.Block } 43 44 func (b *cfbStream) IVSize() int { return b.BlockSize() } 45 func (b *cfbStream) Decrypter(iv []byte) cipher.Stream { return cipher.NewCFBDecrypter(b, iv) } 46 func (b *cfbStream) Encrypter(iv []byte) cipher.Stream { return cipher.NewCFBEncrypter(b, iv) } 47 48 func AESCFB(key []byte) (Cipher, error) { 49 blk, err := aes.NewCipher(key) 50 if err != nil { 51 return nil, err 52 } 53 return &cfbStream{blk}, nil 54 } 55 56 // IETF-variant of chacha20 57 type chacha20ietfkey []byte 58 59 func (k chacha20ietfkey) IVSize() int { return chacha20.NonceSize } 60 func (k chacha20ietfkey) Decrypter(iv []byte) cipher.Stream { return k.Encrypter(iv) } 61 func (k chacha20ietfkey) Encrypter(iv []byte) cipher.Stream { 62 ciph, err := chacha20.NewUnauthenticatedCipher(k, iv) 63 if err != nil { 64 panic(err) // should never happen 65 } 66 return ciph 67 } 68 69 func Chacha20IETF(key []byte) (Cipher, error) { 70 if len(key) != chacha20.KeySize { 71 return nil, KeySizeError(chacha20.KeySize) 72 } 73 return chacha20ietfkey(key), nil 74 } 75 76 type xchacha20key []byte 77 78 func (k xchacha20key) IVSize() int { return chacha20.NonceSizeX } 79 func (k xchacha20key) Decrypter(iv []byte) cipher.Stream { return k.Encrypter(iv) } 80 func (k xchacha20key) Encrypter(iv []byte) cipher.Stream { 81 ciph, err := chacha20.NewUnauthenticatedCipher(k, iv) 82 if err != nil { 83 panic(err) // should never happen 84 } 85 return ciph 86 } 87 88 func Xchacha20(key []byte) (Cipher, error) { 89 if len(key) != chacha20.KeySize { 90 return nil, KeySizeError(chacha20.KeySize) 91 } 92 return xchacha20key(key), nil 93 } 94 95 type rc4Md5Key []byte 96 97 func (k rc4Md5Key) IVSize() int { 98 return 16 99 } 100 101 func (k rc4Md5Key) Encrypter(iv []byte) cipher.Stream { 102 h := md5.New() 103 h.Write([]byte(k)) 104 h.Write(iv) 105 rc4key := h.Sum(nil) 106 c, _ := rc4.NewCipher(rc4key) 107 return c 108 } 109 110 func (k rc4Md5Key) Decrypter(iv []byte) cipher.Stream { 111 return k.Encrypter(iv) 112 } 113 114 func RC4MD5(key []byte) (Cipher, error) { 115 return rc4Md5Key(key), nil 116 }