Add handshake mechainism

Neko · Neko · commit eb4ae8d56eed · 2016-02-07T08:28:18.000+08:00
diff --git a/build/server/aplvpn/index.js b/build/server/aplvpn/index.js
@@ -38,11 +38,7 @@ function handleAppleVPN(client, handshakeData, options) {
         catch (error) {
             return false;
         }
-        if (addrHelper.isIllegalAddress(handshake.destHost)) {
-            client.dispose();
-            return true;
-        }
-        if (handshake.flags === 0x00) {
+        if (handshake.flags === 0x00 && handshake.destHost === '0.0.0.0' && handshake.destPort === 0) {
             try {
                 yield handleHandshake(client, handshake, options);
             }
@@ -51,6 +47,10 @@ function handleAppleVPN(client, handshakeData, options) {
             }
             return true;
         }
+        if (addrHelper.isIllegalAddress(handshake.destHost)) {
+            client.dispose();
+            return true;
+        }
         switch (handshake.payloadProtocol) {
             case protocols_1.Protocols.TCP:
                 tcp_1.handleTCP(client, handshake, options);
@@ -79,6 +79,6 @@ function handleHandshake(client, handshake, options) {
         let cipher = cryptoEx.createCipher(options.cipherAlgorithm, options.password, handshake.extra).cipher;
         let md5 = crypto.createHash('md5').update(handshake.extra).digest();
         let randomPadding = new Buffer(Number((Math.random() * 128).toFixed()));
-        yield client.writeAsync(Buffer.concat([md5, randomPadding]));
+        yield client.writeAsync(Buffer.concat([cipher.update(md5), cipher.update(randomPadding)]));
     });
 }
diff --git a/server/aplvpn/index.ts b/server/aplvpn/index.ts
@@ -39,13 +39,13 @@ export async function handleAppleVPN(client: net.Socket, handshakeData: Buffer,
     return false;
   }
   
-  if (addrHelper.isIllegalAddress(handshake.destHost)) {
-    client.dispose();
+  if (handshake.flags === 0x00 && handshake.destHost === '0.0.0.0' && handshake.destPort === 0) {
+    try { await handleHandshake(client, handshake, options); } catch (error) { return false; }
     return true;
   }
   
-  if (handshake.flags === 0x00) {
-    try { await handleHandshake(client, handshake, options); } catch (error) { return false; }
+  if (addrHelper.isIllegalAddress(handshake.destHost)) {
+    client.dispose();
     return true;
   }
   
@@ -79,5 +79,6 @@ async function handleHandshake(client: net.Socket, handshake: VpnHandshake, opti
   let cipher = cryptoEx.createCipher(options.cipherAlgorithm, options.password, handshake.extra).cipher;
   let md5 = crypto.createHash('md5').update(handshake.extra).digest();
   let randomPadding = new Buffer(Number((Math.random() * 128).toFixed()));
-  await client.writeAsync(Buffer.concat([md5, randomPadding]));
+  
+  await client.writeAsync(Buffer.concat([cipher.update(md5), cipher.update(randomPadding)]));
 }

Original file line number	Diff line number	Diff line change
`@@ -39,13 +39,13 @@ export async function handleAppleVPN(client: net.Socket, handshakeData: Buffer,`
`39`	`39`	`return false;`
`40`	`40`	`}`
`41`	`41`
`42`		`- if (addrHelper.isIllegalAddress(handshake.destHost)) {`
`43`		`- client.dispose();`
	`42`	`+ if (handshake.flags === 0x00 && handshake.destHost === '0.0.0.0' && handshake.destPort === 0) {`
	`43`	`+ try { await handleHandshake(client, handshake, options); } catch (error) { return false; }`
`44`	`44`	`return true;`
`45`	`45`	`}`
`46`	`46`
`47`		`- if (handshake.flags === 0x00) {`
`48`		`- try { await handleHandshake(client, handshake, options); } catch (error) { return false; }`
	`47`	`+ if (addrHelper.isIllegalAddress(handshake.destHost)) {`
	`48`	`+ client.dispose();`
`49`	`49`	`return true;`
`50`	`50`	`}`
`51`	`51`
`@@ -79,5 +79,6 @@ async function handleHandshake(client: net.Socket, handshake: VpnHandshake, opti`
`79`	`79`	`let cipher = cryptoEx.createCipher(options.cipherAlgorithm, options.password, handshake.extra).cipher;`
`80`	`80`	`let md5 = crypto.createHash('md5').update(handshake.extra).digest();`
`81`	`81`	`let randomPadding = new Buffer(Number((Math.random() * 128).toFixed()));`
`82`		`- await client.writeAsync(Buffer.concat([md5, randomPadding]));`
	`82`	`+`
	`83`	`+ await client.writeAsync(Buffer.concat([cipher.update(md5), cipher.update(randomPadding)]));`
`83`	`84`	`}`