Xray-core/proxy/vmess/validator.go

package vmess

import (
	"crypto/hmac"
	"crypto/sha256"
	"hash/crc64"
	"strings"
	"sync"
	"sync/atomic"
	"time"

	"github.com/xtls/xray-core/common"
	"github.com/xtls/xray-core/common/dice"
	"github.com/xtls/xray-core/common/protocol"
	"github.com/xtls/xray-core/common/serial"
	"github.com/xtls/xray-core/common/task"
	"github.com/xtls/xray-core/proxy/vmess/aead"
)

const (
	updateInterval   = 10 * time.Second
	cacheDurationSec = 120
)

type user struct {
	user    protocol.MemoryUser
	lastSec protocol.Timestamp
}

// TimedUserValidator is a user Validator based on time.
type TimedUserValidator struct {
	sync.RWMutex
	users    []*user
	userHash map[[16]byte]indexTimePair
	hasher   protocol.IDHash
	baseTime protocol.Timestamp
	task     *task.Periodic

	behaviorSeed  uint64
	behaviorFused bool

	aeadDecoderHolder *aead.AuthIDDecoderHolder

	legacyWarnShown bool
}

type indexTimePair struct {
	user    *user
	timeInc uint32

	taintedFuse *uint32
}

// NewTimedUserValidator creates a new TimedUserValidator.
func NewTimedUserValidator(hasher protocol.IDHash) *TimedUserValidator {
	tuv := &TimedUserValidator{
		users:             make([]*user, 0, 16),
		userHash:          make(map[[16]byte]indexTimePair, 1024),
		hasher:            hasher,
		baseTime:          protocol.Timestamp(time.Now().Unix() - cacheDurationSec*2),
		aeadDecoderHolder: aead.NewAuthIDDecoderHolder(),
	}
	tuv.task = &task.Periodic{
		Interval: updateInterval,
		Execute: func() error {
			tuv.updateUserHash()
			return nil
		},
	}
	common.Must(tuv.task.Start())
	return tuv
}

// visible for testing
func (v *TimedUserValidator) GetBaseTime() protocol.Timestamp {
	return v.baseTime
}

func (v *TimedUserValidator) generateNewHashes(nowSec protocol.Timestamp, user *user) {
	var hashValue [16]byte
	genEndSec := nowSec + cacheDurationSec
	genHashForID := func(id *protocol.ID) {
		idHash := v.hasher(id.Bytes())
		genBeginSec := user.lastSec
		if genBeginSec < nowSec-cacheDurationSec {
			genBeginSec = nowSec - cacheDurationSec
		}
		for ts := genBeginSec; ts <= genEndSec; ts++ {
			common.Must2(serial.WriteUint64(idHash, uint64(ts)))
			idHash.Sum(hashValue[:0])
			idHash.Reset()

			v.userHash[hashValue] = indexTimePair{
				user:        user,
				timeInc:     uint32(ts - v.baseTime),
				taintedFuse: new(uint32),
			}
		}
	}

	account := user.user.Account.(*MemoryAccount)

	genHashForID(account.ID)
	for _, id := range account.AlterIDs {
		genHashForID(id)
	}
	user.lastSec = genEndSec
}

func (v *TimedUserValidator) removeExpiredHashes(expire uint32) {
	for key, pair := range v.userHash {
		if pair.timeInc < expire {
			delete(v.userHash, key)
		}
	}
}

func (v *TimedUserValidator) updateUserHash() {
	now := time.Now()
	nowSec := protocol.Timestamp(now.Unix())

	v.Lock()
	defer v.Unlock()

	for _, user := range v.users {
		v.generateNewHashes(nowSec, user)
	}

	expire := protocol.Timestamp(now.Unix() - cacheDurationSec)
	if expire > v.baseTime {
		v.removeExpiredHashes(uint32(expire - v.baseTime))
	}
}

func (v *TimedUserValidator) Add(u *protocol.MemoryUser) error {
	v.Lock()
	defer v.Unlock()

	nowSec := time.Now().Unix()

	uu := &user{
		user:    *u,
		lastSec: protocol.Timestamp(nowSec - cacheDurationSec),
	}
	v.users = append(v.users, uu)
	v.generateNewHashes(protocol.Timestamp(nowSec), uu)

	account := uu.user.Account.(*MemoryAccount)
	if !v.behaviorFused {
		hashkdf := hmac.New(sha256.New, []byte("VMESSBSKDF"))
		hashkdf.Write(account.ID.Bytes())
		v.behaviorSeed = crc64.Update(v.behaviorSeed, crc64.MakeTable(crc64.ECMA), hashkdf.Sum(nil))
	}

	var cmdkeyfl [16]byte
	copy(cmdkeyfl[:], account.ID.CmdKey())
	v.aeadDecoderHolder.AddUser(cmdkeyfl, u)

	return nil
}

func (v *TimedUserValidator) Get(userHash []byte) (*protocol.MemoryUser, protocol.Timestamp, bool, error) {
	v.RLock()
	defer v.RUnlock()

	v.behaviorFused = true

	var fixedSizeHash [16]byte
	copy(fixedSizeHash[:], userHash)
	pair, found := v.userHash[fixedSizeHash]
	if found {
		user := pair.user.user
		if atomic.LoadUint32(pair.taintedFuse) == 0 {
			return &user, protocol.Timestamp(pair.timeInc) + v.baseTime, true, nil
		}
		return nil, 0, false, ErrTainted
	}
	return nil, 0, false, ErrNotFound
}

func (v *TimedUserValidator) GetAEAD(userHash []byte) (*protocol.MemoryUser, bool, error) {
	v.RLock()
	defer v.RUnlock()

	var userHashFL [16]byte
	copy(userHashFL[:], userHash)

	userd, err := v.aeadDecoderHolder.Match(userHashFL)
	if err != nil {
		return nil, false, err
	}
	return userd.(*protocol.MemoryUser), true, err
}

func (v *TimedUserValidator) Remove(email string) bool {
	v.Lock()
	defer v.Unlock()

	email = strings.ToLower(email)
	idx := -1
	for i, u := range v.users {
		if strings.EqualFold(u.user.Email, email) {
			idx = i
			var cmdkeyfl [16]byte
			copy(cmdkeyfl[:], u.user.Account.(*MemoryAccount).ID.CmdKey())
			v.aeadDecoderHolder.RemoveUser(cmdkeyfl)
			break
		}
	}
	if idx == -1 {
		return false
	}
	ulen := len(v.users)

	v.users[idx] = v.users[ulen-1]
	v.users[ulen-1] = nil
	v.users = v.users[:ulen-1]

	return true
}

// Close implements common.Closable.
func (v *TimedUserValidator) Close() error {
	return v.task.Close()
}

func (v *TimedUserValidator) GetBehaviorSeed() uint64 {
	v.Lock()
	defer v.Unlock()

	v.behaviorFused = true
	if v.behaviorSeed == 0 {
		v.behaviorSeed = dice.RollUint64()
	}
	return v.behaviorSeed
}

func (v *TimedUserValidator) BurnTaintFuse(userHash []byte) error {
	v.RLock()
	defer v.RUnlock()

	var userHashFL [16]byte
	copy(userHashFL[:], userHash)

	pair, found := v.userHash[userHashFL]
	if found {
		if atomic.CompareAndSwapUint32(pair.taintedFuse, 0, 1) {
			return nil
		}
		return ErrTainted
	}
	return ErrNotFound
}

/* ShouldShowLegacyWarn will return whether a Legacy Warning should be shown
Not guaranteed to only return true once for every inbound, but it is okay.
*/
func (v *TimedUserValidator) ShouldShowLegacyWarn() bool {
	if v.legacyWarnShown {
		return false
	}
	v.legacyWarnShown = true
	return true
}

var ErrNotFound = newError("Not Found")

var ErrTainted = newError("ErrTainted")
v1.0.0 2020-11-25 13:01:53 +02:00			`package vmess`

			`import (`
			`"crypto/hmac"`
			`"crypto/sha256"`
			`"hash/crc64"`
			`"strings"`
			`"sync"`
			`"sync/atomic"`
			`"time"`

v1.1.0 2020-12-04 03:36:16 +02:00			`"github.com/xtls/xray-core/common"`
			`"github.com/xtls/xray-core/common/dice"`
			`"github.com/xtls/xray-core/common/protocol"`
			`"github.com/xtls/xray-core/common/serial"`
			`"github.com/xtls/xray-core/common/task"`
			`"github.com/xtls/xray-core/proxy/vmess/aead"`
v1.0.0 2020-11-25 13:01:53 +02:00			`)`

			`const (`
			`updateInterval = 10 * time.Second`
			`cacheDurationSec = 120`
			`)`

			`type user struct {`
			`user protocol.MemoryUser`
			`lastSec protocol.Timestamp`
			`}`

			`// TimedUserValidator is a user Validator based on time.`
			`type TimedUserValidator struct {`
			`sync.RWMutex`
			`users []*user`
			`userHash map[[16]byte]indexTimePair`
			`hasher protocol.IDHash`
			`baseTime protocol.Timestamp`
			`task *task.Periodic`

			`behaviorSeed uint64`
			`behaviorFused bool`

			`aeadDecoderHolder *aead.AuthIDDecoderHolder`
Deprecate legacy VMess header with a planned decommission (#712) * Deprecate legacy VMess header with a planned decommission * show legacy warning only once Co-authored-by: Xiaokang Wang <xiaokangwang@outlook.com> Co-authored-by: hmol233 <82594500+hmol233@users.noreply.github.com> 2021-09-20 09:46:05 +03:00
			`legacyWarnShown bool`
v1.0.0 2020-11-25 13:01:53 +02:00			`}`

			`type indexTimePair struct {`
			`user *user`
			`timeInc uint32`

			`taintedFuse *uint32`
			`}`

			`// NewTimedUserValidator creates a new TimedUserValidator.`
			`func NewTimedUserValidator(hasher protocol.IDHash) *TimedUserValidator {`
			`tuv := &TimedUserValidator{`
			`users: make([]*user, 0, 16),`
			`userHash: make(map[[16]byte]indexTimePair, 1024),`
			`hasher: hasher,`
			`baseTime: protocol.Timestamp(time.Now().Unix() - cacheDurationSec*2),`
			`aeadDecoderHolder: aead.NewAuthIDDecoderHolder(),`
			`}`
			`tuv.task = &task.Periodic{`
			`Interval: updateInterval,`
			`Execute: func() error {`
			`tuv.updateUserHash()`
			`return nil`
			`},`
			`}`
			`common.Must(tuv.task.Start())`
			`return tuv`
			`}`

Fix some tests and format code (#830) * Increase some tls test timeout * Fix TestUserValidator * Change all tests to VMessAEAD Old VMess MD5 tests will be rejected and fail in 2022 * Chore: auto format code 2021-12-15 02:28:47 +02:00			`// visible for testing`
			`func (v *TimedUserValidator) GetBaseTime() protocol.Timestamp {`
			`return v.baseTime`
			`}`

v1.0.0 2020-11-25 13:01:53 +02:00			`func (v TimedUserValidator) generateNewHashes(nowSec protocol.Timestamp, user user) {`
			`var hashValue [16]byte`
			`genEndSec := nowSec + cacheDurationSec`
			`genHashForID := func(id *protocol.ID) {`
			`idHash := v.hasher(id.Bytes())`
			`genBeginSec := user.lastSec`
			`if genBeginSec < nowSec-cacheDurationSec {`
			`genBeginSec = nowSec - cacheDurationSec`
			`}`
			`for ts := genBeginSec; ts <= genEndSec; ts++ {`
			`common.Must2(serial.WriteUint64(idHash, uint64(ts)))`
			`idHash.Sum(hashValue[:0])`
			`idHash.Reset()`

			`v.userHash[hashValue] = indexTimePair{`
			`user: user,`
			`timeInc: uint32(ts - v.baseTime),`
			`taintedFuse: new(uint32),`
			`}`
			`}`
			`}`

			`account := user.user.Account.(*MemoryAccount)`

			`genHashForID(account.ID)`
			`for _, id := range account.AlterIDs {`
			`genHashForID(id)`
			`}`
			`user.lastSec = genEndSec`
			`}`

			`func (v *TimedUserValidator) removeExpiredHashes(expire uint32) {`
			`for key, pair := range v.userHash {`
			`if pair.timeInc < expire {`
			`delete(v.userHash, key)`
			`}`
			`}`
			`}`

			`func (v *TimedUserValidator) updateUserHash() {`
			`now := time.Now()`
			`nowSec := protocol.Timestamp(now.Unix())`

			`v.Lock()`
			`defer v.Unlock()`

			`for _, user := range v.users {`
			`v.generateNewHashes(nowSec, user)`
			`}`

			`expire := protocol.Timestamp(now.Unix() - cacheDurationSec)`
			`if expire > v.baseTime {`
			`v.removeExpiredHashes(uint32(expire - v.baseTime))`
			`}`
			`}`

			`func (v TimedUserValidator) Add(u protocol.MemoryUser) error {`
			`v.Lock()`
			`defer v.Unlock()`

			`nowSec := time.Now().Unix()`

			`uu := &user{`
			`user: *u,`
			`lastSec: protocol.Timestamp(nowSec - cacheDurationSec),`
			`}`
			`v.users = append(v.users, uu)`
			`v.generateNewHashes(protocol.Timestamp(nowSec), uu)`

			`account := uu.user.Account.(*MemoryAccount)`
			`if !v.behaviorFused {`
			`hashkdf := hmac.New(sha256.New, []byte("VMESSBSKDF"))`
			`hashkdf.Write(account.ID.Bytes())`
			`v.behaviorSeed = crc64.Update(v.behaviorSeed, crc64.MakeTable(crc64.ECMA), hashkdf.Sum(nil))`
			`}`

			`var cmdkeyfl [16]byte`
			`copy(cmdkeyfl[:], account.ID.CmdKey())`
			`v.aeadDecoderHolder.AddUser(cmdkeyfl, u)`

			`return nil`
			`}`

			`func (v TimedUserValidator) Get(userHash []byte) (protocol.MemoryUser, protocol.Timestamp, bool, error) {`
			`v.RLock()`
			`defer v.RUnlock()`

			`v.behaviorFused = true`

			`var fixedSizeHash [16]byte`
			`copy(fixedSizeHash[:], userHash)`
			`pair, found := v.userHash[fixedSizeHash]`
			`if found {`
			`user := pair.user.user`
			`if atomic.LoadUint32(pair.taintedFuse) == 0 {`
			`return &user, protocol.Timestamp(pair.timeInc) + v.baseTime, true, nil`
			`}`
			`return nil, 0, false, ErrTainted`
			`}`
			`return nil, 0, false, ErrNotFound`
			`}`

			`func (v TimedUserValidator) GetAEAD(userHash []byte) (protocol.MemoryUser, bool, error) {`
			`v.RLock()`
			`defer v.RUnlock()`

			`var userHashFL [16]byte`
			`copy(userHashFL[:], userHash)`

			`userd, err := v.aeadDecoderHolder.Match(userHashFL)`
			`if err != nil {`
			`return nil, false, err`
			`}`
			`return userd.(*protocol.MemoryUser), true, err`
			`}`

			`func (v *TimedUserValidator) Remove(email string) bool {`
			`v.Lock()`
			`defer v.Unlock()`

			`email = strings.ToLower(email)`
			`idx := -1`
			`for i, u := range v.users {`
			`if strings.EqualFold(u.user.Email, email) {`
			`idx = i`
			`var cmdkeyfl [16]byte`
			`copy(cmdkeyfl[:], u.user.Account.(*MemoryAccount).ID.CmdKey())`
			`v.aeadDecoderHolder.RemoveUser(cmdkeyfl)`
			`break`
			`}`
			`}`
			`if idx == -1 {`
			`return false`
			`}`
			`ulen := len(v.users)`

			`v.users[idx] = v.users[ulen-1]`
			`v.users[ulen-1] = nil`
			`v.users = v.users[:ulen-1]`

			`return true`
			`}`

			`// Close implements common.Closable.`
			`func (v *TimedUserValidator) Close() error {`
			`return v.task.Close()`
			`}`

			`func (v *TimedUserValidator) GetBehaviorSeed() uint64 {`
			`v.Lock()`
			`defer v.Unlock()`

			`v.behaviorFused = true`
			`if v.behaviorSeed == 0 {`
			`v.behaviorSeed = dice.RollUint64()`
			`}`
			`return v.behaviorSeed`
			`}`

			`func (v *TimedUserValidator) BurnTaintFuse(userHash []byte) error {`
			`v.RLock()`
			`defer v.RUnlock()`

			`var userHashFL [16]byte`
			`copy(userHashFL[:], userHash)`

			`pair, found := v.userHash[userHashFL]`
			`if found {`
			`if atomic.CompareAndSwapUint32(pair.taintedFuse, 0, 1) {`
			`return nil`
			`}`
			`return ErrTainted`
			`}`
			`return ErrNotFound`
			`}`

Deprecate legacy VMess header with a planned decommission (#712) * Deprecate legacy VMess header with a planned decommission * show legacy warning only once Co-authored-by: Xiaokang Wang <xiaokangwang@outlook.com> Co-authored-by: hmol233 <82594500+hmol233@users.noreply.github.com> 2021-09-20 09:46:05 +03:00			`/* ShouldShowLegacyWarn will return whether a Legacy Warning should be shown`
			`Not guaranteed to only return true once for every inbound, but it is okay.`
			`*/`
			`func (v *TimedUserValidator) ShouldShowLegacyWarn() bool {`
			`if v.legacyWarnShown {`
			`return false`
			`}`
			`v.legacyWarnShown = true`
			`return true`
			`}`

v1.0.0 2020-11-25 13:01:53 +02:00			`var ErrNotFound = newError("Not Found")`

			`var ErrTainted = newError("ErrTainted")`