From 1b1c1fbac6eb83ec9edf4294e8fcca6ddc464adf Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=E7=A0=B4=E5=A8=83=E9=85=B1?= Date: Sat, 25 Mar 2017 01:53:11 +0800 Subject: [PATCH] improve rand size --- shadowsocks/obfsplugin/auth.py | 27 ++++++++++++++------------- 1 file changed, 14 insertions(+), 13 deletions(-) diff --git a/shadowsocks/obfsplugin/auth.py b/shadowsocks/obfsplugin/auth.py index 70f4023..83be824 100755 --- a/shadowsocks/obfsplugin/auth.py +++ b/shadowsocks/obfsplugin/auth.py @@ -1185,8 +1185,8 @@ class auth_aes128_sha1(auth_base): max_client = 64 self.server_info.data.set_max_client(max_client) - def rnd_data_len(self, buf_size): - if buf_size > 1300 or self.last_rnd_len > 1300: + def rnd_data_len(self, buf_size, full_buf_size): + if buf_size > 1300 or self.last_rnd_len > 1300 or full_buf_size > 1492: return 0 if buf_size > 1100: return common.ord(os.urandom(1)[0]) % 128 @@ -1196,17 +1196,16 @@ class auth_aes128_sha1(auth_base): else: return struct.unpack('>H', os.urandom(2))[0] % 1024 - def rnd_data(self, buf_size): - data_len = self.rnd_data_len(buf_size) - self.last_rnd_len = data_len + def rnd_data(self, buf_size, full_buf_size): + data_len = self.rnd_data_len(buf_size, full_buf_size) if data_len < 128: return common.chr(data_len + 1) + os.urandom(data_len) return common.chr(255) + struct.pack(' self.unit_len: - ret += self.pack_data(buf[:self.unit_len]) + ret += self.pack_data(buf[:self.unit_len], ogn_data_len) buf = buf[self.unit_len:] - ret += self.pack_data(buf) + ret += self.pack_data(buf, ogn_data_len) + self.last_rnd_len = ogn_data_len return ret def client_post_decrypt(self, buf): @@ -1311,11 +1311,12 @@ class auth_aes128_sha1(auth_base): if self.raw_trans: return buf ret = b'' - self.last_rnd_len = 0 + ogn_data_len = len(buf) while len(buf) > self.unit_len: - ret += self.pack_data(buf[:self.unit_len]) + ret += self.pack_data(buf[:self.unit_len], ogn_data_len) buf = buf[self.unit_len:] - ret += self.pack_data(buf) + ret += self.pack_data(buf, ogn_data_len) + self.last_rnd_len = ogn_data_len return ret def server_post_decrypt(self, buf):