dnscrypt-proxy/vendor/github.com/jedisct1/go-dnsstamps/dnsstamps.go

369 lines
10 KiB
Go
Raw Normal View History

2018-04-18 18:47:10 +02:00
package dnsstamps
import (
"encoding/base64"
"encoding/binary"
"encoding/hex"
2018-01-20 14:13:11 +01:00
"errors"
"fmt"
"net"
2018-02-02 15:07:12 +01:00
"strconv"
2018-01-20 14:13:11 +01:00
"strings"
)
2018-04-14 15:03:21 +02:00
const DefaultPort = 443
type ServerInformalProperties uint64
const (
ServerInformalPropertyDNSSEC = ServerInformalProperties(1) << 0
ServerInformalPropertyNoLog = ServerInformalProperties(1) << 1
ServerInformalPropertyNoFilter = ServerInformalProperties(1) << 2
)
type StampProtoType uint8
const (
2019-10-14 02:23:12 +02:00
StampProtoTypePlain = StampProtoType(0x00)
StampProtoTypeDNSCrypt = StampProtoType(0x01)
StampProtoTypeDoH = StampProtoType(0x02)
StampProtoTypeTLS = StampProtoType(0x03)
StampProtoTypeDNSCryptRelay = StampProtoType(0x81)
)
func (stampProtoType *StampProtoType) String() string {
switch *stampProtoType {
case StampProtoTypePlain:
return "Plain"
case StampProtoTypeDNSCrypt:
return "DNSCrypt"
case StampProtoTypeDoH:
return "DoH"
2019-10-14 02:23:12 +02:00
case StampProtoTypeDNSCryptRelay:
return "Anonymized DNSCrypt"
default:
panic("Unexpected protocol")
}
}
type ServerStamp struct {
2018-04-14 15:03:21 +02:00
ServerAddrStr string
ServerPk []uint8
Hashes [][]uint8
ProviderName string
Path string
Props ServerInformalProperties
Proto StampProtoType
}
func NewDNSCryptServerStampFromLegacy(serverAddrStr string, serverPkStr string, providerName string, props ServerInformalProperties) (ServerStamp, error) {
if net.ParseIP(serverAddrStr) != nil {
serverAddrStr = fmt.Sprintf("%s:%d", serverAddrStr, DefaultPort)
}
serverPk, err := hex.DecodeString(strings.Replace(serverPkStr, ":", "", -1))
2018-04-18 19:06:50 +02:00
if err != nil || len(serverPk) != 32 {
return ServerStamp{}, fmt.Errorf("Unsupported public key: [%s]", serverPkStr)
}
return ServerStamp{
2018-04-14 15:03:21 +02:00
ServerAddrStr: serverAddrStr,
ServerPk: serverPk,
ProviderName: providerName,
Props: props,
Proto: StampProtoTypeDNSCrypt,
}, nil
}
func NewServerStampFromString(stampStr string) (ServerStamp, error) {
if !strings.HasPrefix(stampStr, "sdns:") {
return ServerStamp{}, errors.New("Stamps are expected to start with sdns:")
2018-01-20 14:13:11 +01:00
}
stampStr = stampStr[5:]
if strings.HasPrefix(stampStr, "//") {
stampStr = stampStr[2:]
}
2019-09-07 11:04:40 +02:00
bin, err := base64.RawURLEncoding.Strict().DecodeString(stampStr)
2018-01-20 14:13:11 +01:00
if err != nil {
2018-01-26 20:38:31 +01:00
return ServerStamp{}, err
2018-01-20 14:13:11 +01:00
}
2018-01-26 20:38:31 +01:00
if len(bin) < 1 {
return ServerStamp{}, errors.New("Stamp is too short")
2018-01-20 14:13:11 +01:00
}
if bin[0] == uint8(StampProtoTypeDNSCrypt) {
return newDNSCryptServerStamp(bin)
} else if bin[0] == uint8(StampProtoTypeDoH) {
2018-01-26 22:59:16 +01:00
return newDoHServerStamp(bin)
2019-10-14 02:23:12 +02:00
} else if bin[0] == uint8(StampProtoTypeDNSCryptRelay) {
return newDNSCryptRelayStamp(bin)
2018-01-26 20:38:31 +01:00
}
return ServerStamp{}, errors.New("Unsupported stamp version or protocol")
}
// id(u8)=0x01 props addrLen(1) serverAddr pkStrlen(1) pkStr providerNameLen(1) providerName
func newDNSCryptServerStamp(bin []byte) (ServerStamp, error) {
2018-04-14 15:03:21 +02:00
stamp := ServerStamp{Proto: StampProtoTypeDNSCrypt}
if len(bin) < 66 {
return stamp, errors.New("Stamp is too short")
}
2018-04-14 15:03:21 +02:00
stamp.Props = ServerInformalProperties(binary.LittleEndian.Uint64(bin[1:9]))
binLen := len(bin)
pos := 9
2019-07-06 18:03:41 +02:00
length := int(bin[pos])
if 1+length >= binLen-pos {
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
stamp.ServerAddrStr = string(bin[pos : pos+length])
pos += length
colIndex := strings.LastIndex(stamp.ServerAddrStr, ":")
bracketIndex := strings.LastIndex(stamp.ServerAddrStr, "]")
if colIndex < bracketIndex {
colIndex = -1
}
if colIndex < 0 {
colIndex = len(stamp.ServerAddrStr)
2018-04-14 15:03:21 +02:00
stamp.ServerAddrStr = fmt.Sprintf("%s:%d", stamp.ServerAddrStr, DefaultPort)
}
2019-07-06 18:03:41 +02:00
if colIndex >= len(stamp.ServerAddrStr)-1 {
return stamp, errors.New("Invalid stamp (empty port)")
}
ipOnly := stamp.ServerAddrStr[:colIndex]
portOnly := stamp.ServerAddrStr[colIndex+1:]
if _, err := strconv.ParseUint(portOnly, 10, 16); err != nil {
return stamp, errors.New("Invalid stamp (port range)")
}
if net.ParseIP(strings.TrimRight(strings.TrimLeft(ipOnly, "["), "]")) == nil {
return stamp, errors.New("Invalid stamp (IP address)")
}
2019-07-06 18:03:41 +02:00
length = int(bin[pos])
if 1+length >= binLen-pos {
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
stamp.ServerPk = bin[pos : pos+length]
pos += length
2019-07-06 18:03:41 +02:00
length = int(bin[pos])
if length >= binLen-pos {
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
stamp.ProviderName = string(bin[pos : pos+length])
pos += length
if pos != binLen {
return stamp, errors.New("Invalid stamp (garbage after end)")
}
return stamp, nil
}
2018-01-26 20:38:31 +01:00
// id(u8)=0x02 props addrLen(1) serverAddr hashLen(1) hash providerNameLen(1) providerName pathLen(1) path
func newDoHServerStamp(bin []byte) (ServerStamp, error) {
2018-04-14 15:03:21 +02:00
stamp := ServerStamp{Proto: StampProtoTypeDoH}
2018-02-04 11:04:29 +01:00
if len(bin) < 22 {
2018-03-02 02:17:07 +01:00
return stamp, errors.New("Stamp is too short")
2018-02-04 11:04:29 +01:00
}
2018-04-14 15:03:21 +02:00
stamp.Props = ServerInformalProperties(binary.LittleEndian.Uint64(bin[1:9]))
2018-01-26 20:38:31 +01:00
binLen := len(bin)
pos := 9
2019-07-06 18:03:41 +02:00
length := int(bin[pos])
if 1+length >= binLen-pos {
2018-01-26 20:38:31 +01:00
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
stamp.ServerAddrStr = string(bin[pos : pos+length])
pos += length
2018-01-26 20:38:31 +01:00
for {
vlen := int(bin[pos])
2019-07-06 18:03:41 +02:00
length = vlen & ^0x80
if 1+length >= binLen-pos {
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
if length > 0 {
stamp.Hashes = append(stamp.Hashes, bin[pos:pos+length])
}
2019-07-06 18:03:41 +02:00
pos += length
if vlen&0x80 != 0x80 {
break
}
2018-01-26 20:38:31 +01:00
}
2019-07-06 18:03:41 +02:00
length = int(bin[pos])
if 1+length >= binLen-pos {
2018-01-26 20:38:31 +01:00
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
stamp.ProviderName = string(bin[pos : pos+length])
pos += length
2018-01-26 20:38:31 +01:00
2019-07-06 18:03:41 +02:00
length = int(bin[pos])
if length >= binLen-pos {
2018-01-26 20:38:31 +01:00
return stamp, errors.New("Invalid stamp")
}
pos++
2019-07-06 18:03:41 +02:00
stamp.Path = string(bin[pos : pos+length])
pos += length
2018-01-26 20:38:31 +01:00
if pos != binLen {
return stamp, errors.New("Invalid stamp (garbage after end)")
}
2019-07-06 18:03:41 +02:00
if len(stamp.ServerAddrStr) > 0 {
colIndex := strings.LastIndex(stamp.ServerAddrStr, ":")
bracketIndex := strings.LastIndex(stamp.ServerAddrStr, "]")
if colIndex < bracketIndex {
colIndex = -1
}
if colIndex < 0 {
colIndex = len(stamp.ServerAddrStr)
stamp.ServerAddrStr = fmt.Sprintf("%s:%d", stamp.ServerAddrStr, DefaultPort)
}
if colIndex >= len(stamp.ServerAddrStr)-1 {
return stamp, errors.New("Invalid stamp (empty port)")
}
ipOnly := stamp.ServerAddrStr[:colIndex]
portOnly := stamp.ServerAddrStr[colIndex+1:]
if _, err := strconv.ParseUint(portOnly, 10, 16); err != nil {
return stamp, errors.New("Invalid stamp (port range)")
}
if net.ParseIP(strings.TrimRight(strings.TrimLeft(ipOnly, "["), "]")) == nil {
return stamp, errors.New("Invalid stamp (IP address)")
}
}
2018-01-26 20:38:31 +01:00
return stamp, nil
}
2019-10-14 02:23:12 +02:00
// id(u8)=0x81 addrLen(1) serverAddr
func newDNSCryptRelayStamp(bin []byte) (ServerStamp, error) {
stamp := ServerStamp{Proto: StampProtoTypeDNSCryptRelay}
if len(bin) < 13 {
return stamp, errors.New("Stamp is too short")
}
binLen := len(bin)
2019-10-14 10:50:09 +02:00
pos := 1
2019-10-14 02:23:12 +02:00
length := int(bin[pos])
2019-10-14 10:50:09 +02:00
if 1+length > binLen-pos {
2019-10-14 02:23:12 +02:00
return stamp, errors.New("Invalid stamp")
}
pos++
stamp.ServerAddrStr = string(bin[pos : pos+length])
pos += length
colIndex := strings.LastIndex(stamp.ServerAddrStr, ":")
bracketIndex := strings.LastIndex(stamp.ServerAddrStr, "]")
if colIndex < bracketIndex {
colIndex = -1
}
if colIndex < 0 {
colIndex = len(stamp.ServerAddrStr)
stamp.ServerAddrStr = fmt.Sprintf("%s:%d", stamp.ServerAddrStr, DefaultPort)
}
if colIndex >= len(stamp.ServerAddrStr)-1 {
return stamp, errors.New("Invalid stamp (empty port)")
}
ipOnly := stamp.ServerAddrStr[:colIndex]
portOnly := stamp.ServerAddrStr[colIndex+1:]
if _, err := strconv.ParseUint(portOnly, 10, 16); err != nil {
return stamp, errors.New("Invalid stamp (port range)")
}
if net.ParseIP(strings.TrimRight(strings.TrimLeft(ipOnly, "["), "]")) == nil {
return stamp, errors.New("Invalid stamp (IP address)")
}
if pos != binLen {
return stamp, errors.New("Invalid stamp (garbage after end)")
}
return stamp, nil
}
func (stamp *ServerStamp) String() string {
2018-04-14 15:03:21 +02:00
if stamp.Proto == StampProtoTypeDNSCrypt {
return stamp.dnsCryptString()
2018-04-14 15:03:21 +02:00
} else if stamp.Proto == StampProtoTypeDoH {
2018-01-26 20:38:31 +01:00
return stamp.dohString()
2019-10-14 02:23:12 +02:00
} else if stamp.Proto == StampProtoTypeDNSCryptRelay {
return stamp.dnsCryptRelayString()
2018-01-26 20:38:31 +01:00
}
2018-04-14 16:30:22 +02:00
panic("Unsupported protocol")
2018-01-26 20:38:31 +01:00
}
func (stamp *ServerStamp) dnsCryptString() string {
bin := make([]uint8, 9)
bin[0] = uint8(StampProtoTypeDNSCrypt)
2018-04-14 15:03:21 +02:00
binary.LittleEndian.PutUint64(bin[1:9], uint64(stamp.Props))
2018-04-14 15:03:21 +02:00
serverAddrStr := stamp.ServerAddrStr
if strings.HasSuffix(serverAddrStr, ":"+strconv.Itoa(DefaultPort)) {
serverAddrStr = serverAddrStr[:len(serverAddrStr)-1-len(strconv.Itoa(DefaultPort))]
}
bin = append(bin, uint8(len(serverAddrStr)))
bin = append(bin, []uint8(serverAddrStr)...)
2018-04-14 15:03:21 +02:00
bin = append(bin, uint8(len(stamp.ServerPk)))
bin = append(bin, stamp.ServerPk...)
2018-04-14 15:03:21 +02:00
bin = append(bin, uint8(len(stamp.ProviderName)))
bin = append(bin, []uint8(stamp.ProviderName)...)
str := base64.RawURLEncoding.EncodeToString(bin)
return "sdns://" + str
}
2018-01-26 20:38:31 +01:00
func (stamp *ServerStamp) dohString() string {
bin := make([]uint8, 9)
bin[0] = uint8(StampProtoTypeDoH)
2018-04-14 15:03:21 +02:00
binary.LittleEndian.PutUint64(bin[1:9], uint64(stamp.Props))
2018-01-26 20:38:31 +01:00
2018-04-14 15:03:21 +02:00
serverAddrStr := stamp.ServerAddrStr
2018-02-02 15:07:12 +01:00
if strings.HasSuffix(serverAddrStr, ":"+strconv.Itoa(DefaultPort)) {
serverAddrStr = serverAddrStr[:len(serverAddrStr)-1-len(strconv.Itoa(DefaultPort))]
2018-01-30 16:10:46 +01:00
}
bin = append(bin, uint8(len(serverAddrStr)))
bin = append(bin, []uint8(serverAddrStr)...)
2018-01-26 20:38:31 +01:00
2018-04-14 15:03:21 +02:00
last := len(stamp.Hashes) - 1
for i, hash := range stamp.Hashes {
vlen := len(hash)
if i < last {
vlen |= 0x80
}
bin = append(bin, uint8(vlen))
bin = append(bin, hash...)
}
2018-01-26 20:38:31 +01:00
2018-04-14 15:03:21 +02:00
bin = append(bin, uint8(len(stamp.ProviderName)))
bin = append(bin, []uint8(stamp.ProviderName)...)
2018-01-26 20:38:31 +01:00
2018-04-14 15:03:21 +02:00
bin = append(bin, uint8(len(stamp.Path)))
bin = append(bin, []uint8(stamp.Path)...)
2018-01-26 20:38:31 +01:00
str := base64.RawURLEncoding.EncodeToString(bin)
return "sdns://" + str
}
2019-10-14 02:23:12 +02:00
func (stamp *ServerStamp) dnsCryptRelayString() string {
bin := make([]uint8, 1)
bin[0] = uint8(StampProtoTypeDNSCryptRelay)
serverAddrStr := stamp.ServerAddrStr
if strings.HasSuffix(serverAddrStr, ":"+strconv.Itoa(DefaultPort)) {
serverAddrStr = serverAddrStr[:len(serverAddrStr)-1-len(strconv.Itoa(DefaultPort))]
}
bin = append(bin, uint8(len(serverAddrStr)))
bin = append(bin, []uint8(serverAddrStr)...)
str := base64.RawURLEncoding.EncodeToString(bin)
return "sdns://" + str
}