package tcp import ( "errors" "fmt" "github.com/golang/snappy" "github.com/net-byte/vtun/common/cache" "github.com/net-byte/vtun/common/cipher" "github.com/net-byte/vtun/common/config" "github.com/net-byte/vtun/common/counter" "github.com/net-byte/vtun/common/netutil" "github.com/net-byte/vtun/common/xcrypto" "github.com/net-byte/vtun/common/xproto" "github.com/net-byte/water" "log" "net" "time" ) // StartServer starts the tcp server func StartServer(iFace *water.Interface, config config.Config) { log.Printf("vtun h1 server started on %v", config.LocalAddr) listener, err := net.Listen("tcp", config.LocalAddr) if err != nil { panic(err) } defer listener.Close() // server -> client go toClient(config, iFace) // client -> server for { conn, err := listener.Accept() if err != nil { netutil.PrintErr(err, config.Verbose) continue } go toServer(config, conn, iFace) } } // toClient sends packets from iFace to conn func toClient(config config.Config, iFace *water.Interface) { buffer := make([]byte, config.BufferSize) xp := &xcrypto.XCrypto{} err := xp.Init(config.Key) if err != nil { netutil.PrintErr(err, config.Verbose) return } for { n, err := iFace.Read(buffer) if err != nil { netutil.PrintErr(err, config.Verbose) continue } if config.Verbose { fmt.Printf("iface read: %v\n", buffer[:n]) } b := buffer[:n] if key := netutil.GetDstKey(b); key != "" { if v, ok := cache.GetCache().Get(key); ok { if config.Obfs { b = cipher.XOR(b) } b, err = xp.Encode(b) if err != nil { netutil.PrintErr(err, config.Verbose) break } if config.Compress { b = snappy.Encode(nil, b) } ph := &xproto.ServerSendPacketHeader{ ProtocolVersion: xproto.ProtocolVersion, Length: len(b), } conn := v.(net.Conn) _, err := conn.Write(ph.Bytes()) if err != nil { netutil.PrintErr(err, config.Verbose) cache.GetCache().Delete(key) conn.Close() continue } if config.Verbose { fmt.Printf("conn-h write: %v\n", ph.Bytes()) } n, err := conn.Write(b[:]) if err != nil { netutil.PrintErr(err, config.Verbose) cache.GetCache().Delete(key) conn.Close() continue } if config.Verbose { fmt.Printf("conn-p write: %v\n", b) } counter.IncrWrittenBytes(n) } } } } // toServer sends packets from conn to iFace func toServer(config config.Config, conn net.Conn, iFace *water.Interface) { defer conn.Close() handshake := make([]byte, xproto.ClientHandshakePacketLength) header := make([]byte, xproto.ClientSendPacketHeaderLength) packet := make([]byte, config.BufferSize) authKey := xproto.ParseAuthKeyFromString(config.Key) xp := &xcrypto.XCrypto{} err := xp.Init(config.Key) if err != nil { netutil.PrintErr(err, config.Verbose) return } n, err := conn.Read(handshake) if err != nil { netutil.PrintErr(err, config.Verbose) return } if config.Verbose { fmt.Printf("handshake read: %v\n", handshake[:n]) } if n != xproto.ClientHandshakePacketLength { netutil.PrintErr(errors.New(fmt.Sprintf("received handshake length <%d> not equals <%d>!", n, xproto.ClientHandshakePacketLength)), config.Verbose) return } hs := xproto.ParseClientHandshakePacket(handshake[:n]) if hs == nil { netutil.PrintErr(errors.New("hs == nil"), config.Verbose) return } if !hs.Key.Equals(authKey) { netutil.PrintErr(errors.New("authentication failed"), config.Verbose) return } cache.GetCache().Set(hs.CIDRv4.String(), conn, 24*time.Hour) cache.GetCache().Set(hs.CIDRv6.String(), conn, 24*time.Hour) for { n, err := conn.Read(header) if err != nil { netutil.PrintErr(err, config.Verbose) break } if config.Verbose { fmt.Printf("conn-h read: %v\n", header[:n]) } if n != xproto.ClientSendPacketHeaderLength { netutil.PrintErr(errors.New(fmt.Sprintf("received length <%d> not equals <%d>!", n, xproto.ClientSendPacketHeaderLength)), config.Verbose) break } ph := xproto.ParseClientSendPacketHeader(header[:n]) if ph == nil { netutil.PrintErr(errors.New("ph == nil"), config.Verbose) break } if !ph.Key.Equals(authKey) { netutil.PrintErr(errors.New("authentication failed"), config.Verbose) break } n, err = splitRead(conn, ph.Length, packet[:ph.Length]) if err != nil { netutil.PrintErr(err, config.Verbose) break } if config.Verbose { fmt.Printf("conn-p read: %v\n", packet[:ph.Length]) } if n != ph.Length { netutil.PrintErr(errors.New(fmt.Sprintf("received length <%d> not equals <%d>!", n, ph.Length)), config.Verbose) break } b := packet[:n] if config.Compress { b, err = snappy.Decode(nil, b) if err != nil { netutil.PrintErr(err, config.Verbose) break } } b, err = xp.Decode(b) if err != nil { netutil.PrintErr(err, config.Verbose) break } if config.Obfs { b = cipher.XOR(b) } n, err = iFace.Write(b) if err != nil { netutil.PrintErr(err, config.Verbose) break } if config.Verbose { fmt.Printf("iface write: %v\n", b) } counter.IncrReadBytes(n) } }