wpetit
/
go-tunnel
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

feat: enhanced configuration options

This commit is contained in:
wpetit 2020-10-23 18:26:50 +02:00
parent a209260778
commit 6994ab23ab
5 changed files with 67 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
client.go
View File

@ -35,7 +35,11 @@ func (c *Client) Connect(ctx context.Context) error {
return errors.WithStack(err) return errors.WithStack(err)
} }
conn.SetWriteDelay(false) if c.conf.ConfigureConn != nil {
if err := c.conf.ConfigureConn(conn); err != nil {
return errors.WithStack(err)
}
}
config := smux.DefaultConfig() config := smux.DefaultConfig()
config.Version = 2 config.Version = 2

17
client_config.go
View File

@ -14,6 +14,7 @@ type ClientConfig struct {
DataShards int DataShards int
ParityShards int ParityShards int
Credentials interface{} Credentials interface{}
ConfigureConn ConfigureConnFunc
} }
func DefaultClientConfig() *ClientConfig { func DefaultClientConfig() *ClientConfig {
@ -31,6 +32,8 @@ func DefaultClientConfig() *ClientConfig {
} }
} }
type ClientConfigFunc func(c *ClientConfig)
func WithClientServerAddress(addr string) ClientConfigFunc { func WithClientServerAddress(addr string) ClientConfigFunc {
return func(conf *ClientConfig) { return func(conf *ClientConfig) {
conf.ServerAddress = addr conf.ServerAddress = addr
@ -43,17 +46,21 @@ func WithClientCredentials(credentials interface{}) ClientConfigFunc {
} }
} }
func WithClientAESBlockCrypt(pass, salt string) ClientConfigFunc { func WithClientBlockCrypt(alg string, pass, salt string, iterations, keyLen int) ClientConfigFunc {
return func(conf *ClientConfig) { return func(conf *ClientConfig) {
key := pbkdf2.Key([]byte(pass), []byte(salt), 1024, 32, sha1.New) key := pbkdf2.Key([]byte(pass), []byte(salt), iterations, keyLen, sha1.New)
block, err := kcp.NewAESBlockCrypt(key) block, err := createBlockCrypt(alg, key)
if err != nil { if err != nil {
panic(errors.WithStack(err)) panic(errors.Wrap(err, "could not create block crypt"))
} }
conf.BlockCrypt = block conf.BlockCrypt = block
} }
} }
type ClientConfigFunc func(c *ClientConfig) func WithClientConfigureConn(fn ConfigureConnFunc) ClientConfigFunc {
return func(conf *ClientConfig) {
conf.ConfigureConn = fn
}
}

32
helper.go
View File

@ -6,6 +6,7 @@ import (
"net" "net"
"github.com/pkg/errors" "github.com/pkg/errors"
"github.com/xtaci/kcp-go/v5"
"gitlab.com/wpetit/goweb/logger" "gitlab.com/wpetit/goweb/logger"
) )
@ -47,3 +48,34 @@ func relay(src net.Conn, dst net.Conn, stop chan bool) (err error) {
return return
} }
func createBlockCrypt(algorithm string, pass []byte) (kcp.BlockCrypt, error) {
switch algorithm {
case "sm4":
return kcp.NewSM4BlockCrypt(pass[:16])
case "tea":
return kcp.NewTEABlockCrypt(pass[:16])
case "xor":
return kcp.NewSimpleXORBlockCrypt(pass)
case "none":
return kcp.NewNoneBlockCrypt(pass)
case "aes-128":
return kcp.NewAESBlockCrypt(pass[:16])
case "aes-192":
return kcp.NewAESBlockCrypt(pass[:24])
case "blowfish":
return kcp.NewBlowfishBlockCrypt(pass)
case "twofish":
return kcp.NewTwofishBlockCrypt(pass)
case "cast5":
return kcp.NewCast5BlockCrypt(pass[:16])
case "3des":
return kcp.NewTripleDESBlockCrypt(pass[:24])
case "xtea":
return kcp.NewXTEABlockCrypt(pass[:16])
case "salsa20":
return kcp.NewSalsa20BlockCrypt(pass)
default:
return nil, errors.Errorf("unknown algorithm '%s'", algorithm)
}
}

5
remote_client.go
View File

@ -4,7 +4,6 @@ import (
"context" "context"
"io" "io"
"net" "net"
"time"
"forge.cadoles.com/wpetit/go-tunnel/control" "forge.cadoles.com/wpetit/go-tunnel/control"
@ -42,10 +41,6 @@ func (c *RemoteClient) Accept(ctx context.Context, conn *kcp.UDPSession) error {
logger.Debug(ctx, "accepting control stream") logger.Debug(ctx, "accepting control stream")
if err := sess.SetDeadline(time.Now().Add(30 * time.Second)); err != nil {
return errors.WithStack(err)
}
controlStream, err := sess.AcceptStream() controlStream, err := sess.AcceptStream()
if err != nil { if err != nil {
return errors.WithStack(err) return errors.WithStack(err)

27
server_config.go
View File

@ -8,12 +8,15 @@ import (
"golang.org/x/crypto/pbkdf2" "golang.org/x/crypto/pbkdf2"
) )
type ConfigureConnFunc func(conn *kcp.UDPSession) error
type ServerConfig struct { type ServerConfig struct {
Address string Address string
BlockCrypt kcp.BlockCrypt BlockCrypt kcp.BlockCrypt
DataShards int DataShards int
ParityShards int ParityShards int
Hooks *ServerHooks Hooks *ServerHooks
ConfigureConn ConfigureConnFunc
} }
func DefaultServerConfig() *ServerConfig { func DefaultServerConfig() *ServerConfig {
@ -43,13 +46,13 @@ func WithServerAddress(address string) ServerConfigFunc {
} }
} }
func WithServerAESBlockCrypt(pass, salt string) ServerConfigFunc { func WithServerBlockCrypt(alg string, pass, salt string, iterations, keyLen int) ServerConfigFunc {
return func(conf *ServerConfig) { return func(conf *ServerConfig) {
key := pbkdf2.Key([]byte(pass), []byte(salt), 1024, 32, sha1.New) key := pbkdf2.Key([]byte(pass), []byte(salt), iterations, keyLen, sha1.New)
block, err := kcp.NewAESBlockCrypt(key) block, err := createBlockCrypt(alg, key)
if err != nil { if err != nil {
panic(errors.WithStack(err)) panic(errors.Wrap(err, "could not create block crypt"))
} }
conf.BlockCrypt = block conf.BlockCrypt = block
@ -73,3 +76,9 @@ func WithServerOnClientDisconnect(fn OnClientDisconnectFunc) ServerConfigFunc {
conf.Hooks.onClientDisconnect = fn conf.Hooks.onClientDisconnect = fn
} }
} }
func WithServerConfigureConn(fn ConfigureConnFunc) ServerConfigFunc {
return func(conf *ServerConfig) {
conf.ConfigureConn = fn
}
}