Página inicial Explorar Ajuda
Entrar
yosoyhendrix
/
psiphon-tunnel-core
1
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: v2.0.35
Branches Tags
psiphon-tunnel-...
/
vendor
/
github.com
/
Psiphon-Labs
/
quic-go
/
stateless_reset.go

stateless_reset.go 970 B
Link permanente Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142 
  1. package quic
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/hmac"
    5. 

  5. 	"crypto/rand"
    6. 

  6. 	"crypto/sha256"
    7. 

  7. 	"hash"
    8. 

  8. 	"sync"
    9. 

  9. 

  10. 	"github.com/Psiphon-Labs/quic-go/internal/protocol"
    11. 

  11. )
    12. 

  12. 

  13. type statelessResetter struct {
    14. 

  14. 	mx sync.Mutex
    15. 

  15. 	h  hash.Hash
    16. 

  16. }
    17. 

  17. 

  18. // newStatelessRetter creates a new stateless reset generator.
    19. 

  19. // It is valid to use a nil key. In that case, a random key will be used.
    20. 

  20. // This makes is impossible for on-path attackers to shut down established connections.
    21. 

  21. func newStatelessResetter(key *StatelessResetKey) *statelessResetter {
    22. 

  22. 	var h hash.Hash
    23. 

  23. 	if key != nil {
    24. 

  24. 		h = hmac.New(sha256.New, key[:])
    25. 

  25. 	} else {
    26. 

  26. 		b := make([]byte, 32)
    27. 

  27. 		_, _ = rand.Read(b)
    28. 

  28. 		h = hmac.New(sha256.New, b)
    29. 

  29. 	}
    30. 

  30. 	return &statelessResetter{h: h}
    31. 

  31. }
    32. 

  32. 

  33. func (r *statelessResetter) GetStatelessResetToken(connID protocol.ConnectionID) protocol.StatelessResetToken {
    34. 

  34. 	r.mx.Lock()
    35. 

  35. 	defer r.mx.Unlock()
    36. 

  36. 

  37. 	var token protocol.StatelessResetToken
    38. 

  38. 	r.h.Write(connID.Bytes())
    39. 

  39. 	copy(token[:], r.h.Sum(nil))
    40. 

  40. 	r.h.Reset()
    41. 

  41. 	return token
    42. 

  42. }
    43.