github.com/yaling888/clash@v1.53.0/transport/ssr/obfs/tls1.2_ticket_auth.go (about)

     1  package obfs
     2  
     3  import (
     4  	"bytes"
     5  	"crypto/hmac"
     6  	R "crypto/rand"
     7  	"encoding/binary"
     8  	"math/rand/v2"
     9  	"net"
    10  	"strings"
    11  	"time"
    12  
    13  	"github.com/yaling888/clash/common/pool"
    14  	"github.com/yaling888/clash/transport/ssr/tools"
    15  )
    16  
    17  func init() {
    18  	register("tls1.2_ticket_auth", newTLS12Ticket, 5)
    19  	register("tls1.2_ticket_fastauth", newTLS12Ticket, 5)
    20  }
    21  
    22  type tls12Ticket struct {
    23  	*Base
    24  	*authData
    25  }
    26  
    27  func newTLS12Ticket(b *Base) Obfs {
    28  	r := &tls12Ticket{Base: b, authData: &authData{}}
    29  	R.Read(r.clientID[:])
    30  	return r
    31  }
    32  
    33  type tls12TicketConn struct {
    34  	net.Conn
    35  	*tls12Ticket
    36  	handshakeStatus int
    37  	decoded         bytes.Buffer
    38  	underDecoded    bytes.Buffer
    39  	sendBuf         bytes.Buffer
    40  }
    41  
    42  func (t *tls12Ticket) StreamConn(c net.Conn) net.Conn {
    43  	return &tls12TicketConn{Conn: c, tls12Ticket: t}
    44  }
    45  
    46  func (c *tls12TicketConn) Read(b []byte) (int, error) {
    47  	if c.decoded.Len() > 0 {
    48  		return c.decoded.Read(b)
    49  	}
    50  
    51  	bufP := pool.GetNetBuf()
    52  	defer pool.PutNetBuf(bufP)
    53  	n, err := c.Conn.Read(*bufP)
    54  	if err != nil {
    55  		return 0, err
    56  	}
    57  
    58  	if c.handshakeStatus == 8 {
    59  		c.underDecoded.Write((*bufP)[:n])
    60  		for c.underDecoded.Len() > 5 {
    61  			if !bytes.Equal(c.underDecoded.Bytes()[:3], []byte{0x17, 3, 3}) {
    62  				c.underDecoded.Reset()
    63  				return 0, errTLS12TicketAuthIncorrectMagicNumber
    64  			}
    65  			size := int(binary.BigEndian.Uint16(c.underDecoded.Bytes()[3:5]))
    66  			if c.underDecoded.Len() < 5+size {
    67  				break
    68  			}
    69  			c.underDecoded.Next(5)
    70  			c.decoded.Write(c.underDecoded.Next(size))
    71  		}
    72  		n, _ = c.decoded.Read(b)
    73  		return n, nil
    74  	}
    75  
    76  	if n < 11+32+1+32 {
    77  		return 0, errTLS12TicketAuthTooShortData
    78  	}
    79  
    80  	if !hmac.Equal((*bufP)[33:43], c.hmacSHA1((*bufP)[11:33])[:10]) || !hmac.Equal((*bufP)[n-10:n], c.hmacSHA1((*bufP)[:n-10])[:10]) {
    81  		return 0, errTLS12TicketAuthHMACError
    82  	}
    83  
    84  	_, _ = c.Write(nil)
    85  	return 0, nil
    86  }
    87  
    88  func (c *tls12TicketConn) Write(b []byte) (int, error) {
    89  	length := len(b)
    90  	if c.handshakeStatus == 8 {
    91  		buf := pool.GetBuffer()
    92  		defer pool.PutBuffer(buf)
    93  		for len(b) > 2048 {
    94  			size := rand.IntN(4096) + 100
    95  			if len(b) < size {
    96  				size = len(b)
    97  			}
    98  			packData(buf, b[:size])
    99  			b = b[size:]
   100  		}
   101  		if len(b) > 0 {
   102  			packData(buf, b)
   103  		}
   104  		_, err := c.Conn.Write(buf.Bytes())
   105  		if err != nil {
   106  			return 0, err
   107  		}
   108  		return length, nil
   109  	}
   110  
   111  	if len(b) > 0 {
   112  		packData(&c.sendBuf, b)
   113  	}
   114  
   115  	if c.handshakeStatus == 0 {
   116  		c.handshakeStatus = 1
   117  
   118  		data := pool.GetBuffer()
   119  		defer pool.PutBuffer(data)
   120  
   121  		data.Write([]byte{3, 3})
   122  		c.packAuthData(data)
   123  		data.WriteByte(0x20)
   124  		data.Write(c.clientID[:])
   125  		data.Write([]byte{0x00, 0x1c, 0xc0, 0x2b, 0xc0, 0x2f, 0xcc, 0xa9, 0xcc, 0xa8, 0xcc, 0x14, 0xcc, 0x13, 0xc0, 0x0a, 0xc0, 0x14, 0xc0, 0x09, 0xc0, 0x13, 0x00, 0x9c, 0x00, 0x35, 0x00, 0x2f, 0x00, 0x0a})
   126  		data.Write([]byte{0x1, 0x0})
   127  
   128  		ext := pool.GetBuffer()
   129  		defer pool.PutBuffer(ext)
   130  
   131  		host := c.getHost()
   132  		ext.Write([]byte{0xff, 0x01, 0x00, 0x01, 0x00})
   133  		packSNIData(ext, host)
   134  		ext.Write([]byte{0, 0x17, 0, 0})
   135  		c.packTicketBuf(ext, host)
   136  		ext.Write([]byte{0x00, 0x0d, 0x00, 0x16, 0x00, 0x14, 0x06, 0x01, 0x06, 0x03, 0x05, 0x01, 0x05, 0x03, 0x04, 0x01, 0x04, 0x03, 0x03, 0x01, 0x03, 0x03, 0x02, 0x01, 0x02, 0x03})
   137  		ext.Write([]byte{0x00, 0x05, 0x00, 0x05, 0x01, 0x00, 0x00, 0x00, 0x00})
   138  		ext.Write([]byte{0x00, 0x12, 0x00, 0x00})
   139  		ext.Write([]byte{0x75, 0x50, 0x00, 0x00})
   140  		ext.Write([]byte{0x00, 0x0b, 0x00, 0x02, 0x01, 0x00})
   141  		ext.Write([]byte{0x00, 0x0a, 0x00, 0x06, 0x00, 0x04, 0x00, 0x17, 0x00, 0x18})
   142  
   143  		binary.Write(data, binary.BigEndian, uint16(ext.Len()))
   144  		data.ReadFrom(ext)
   145  
   146  		ret := pool.GetBuffer()
   147  		defer pool.PutBuffer(ret)
   148  
   149  		ret.Write([]byte{0x16, 3, 1})
   150  		binary.Write(ret, binary.BigEndian, uint16(data.Len()+4))
   151  		ret.Write([]byte{1, 0})
   152  		binary.Write(ret, binary.BigEndian, uint16(data.Len()))
   153  		ret.ReadFrom(data)
   154  
   155  		_, err := c.Conn.Write(ret.Bytes())
   156  		if err != nil {
   157  			return 0, err
   158  		}
   159  		return length, nil
   160  	} else if c.handshakeStatus == 1 && len(b) == 0 {
   161  		buf := pool.GetBuffer()
   162  		defer pool.PutBuffer(buf)
   163  
   164  		buf.Write([]byte{0x14, 3, 3, 0, 1, 1, 0x16, 3, 3, 0, 0x20})
   165  		tools.AppendRandBytes(buf, 22)
   166  		buf.Write(c.hmacSHA1(buf.Bytes())[:10])
   167  		buf.ReadFrom(&c.sendBuf)
   168  
   169  		c.handshakeStatus = 8
   170  
   171  		_, err := c.Conn.Write(buf.Bytes())
   172  		return 0, err
   173  	}
   174  	return length, nil
   175  }
   176  
   177  func packData(buf *bytes.Buffer, data []byte) {
   178  	buf.Write([]byte{0x17, 3, 3})
   179  	binary.Write(buf, binary.BigEndian, uint16(len(data)))
   180  	buf.Write(data)
   181  }
   182  
   183  func (t *tls12Ticket) packAuthData(buf *bytes.Buffer) {
   184  	binary.Write(buf, binary.BigEndian, uint32(time.Now().Unix()))
   185  	tools.AppendRandBytes(buf, 18)
   186  	buf.Write(t.hmacSHA1(buf.Bytes()[buf.Len()-22:])[:10])
   187  }
   188  
   189  func packSNIData(buf *bytes.Buffer, u string) {
   190  	l := uint16(len(u))
   191  	buf.Write([]byte{0, 0})
   192  	binary.Write(buf, binary.BigEndian, l+5)
   193  	binary.Write(buf, binary.BigEndian, l+3)
   194  	buf.WriteByte(0)
   195  	binary.Write(buf, binary.BigEndian, l)
   196  	buf.WriteString(u)
   197  }
   198  
   199  func (c *tls12TicketConn) packTicketBuf(buf *bytes.Buffer, u string) {
   200  	length := 16 * (rand.IntN(17) + 8)
   201  	buf.Write([]byte{0, 0x23})
   202  	binary.Write(buf, binary.BigEndian, uint16(length))
   203  	tools.AppendRandBytes(buf, length)
   204  }
   205  
   206  func (t *tls12Ticket) hmacSHA1(data []byte) []byte {
   207  	key := pool.GetBufferWriter()
   208  	defer pool.PutBufferWriter(key)
   209  	key.PutSlice(t.Key)
   210  	key.PutSlice(t.clientID[:])
   211  
   212  	sha1Data := tools.HmacSHA1(key.Bytes(), data)
   213  	return sha1Data[:10]
   214  }
   215  
   216  func (t *tls12Ticket) getHost() string {
   217  	host := t.Param
   218  	if len(host) == 0 {
   219  		host = t.Host
   220  	}
   221  	if len(host) > 0 && host[len(host)-1] >= '0' && host[len(host)-1] <= '9' {
   222  		host = ""
   223  	}
   224  	hosts := strings.Split(host, ",")
   225  	host = hosts[rand.IntN(len(hosts))]
   226  	return host
   227  }