oblivion 2.2.1

A fast, lightweight, and secure end-to-end encryption protocol based on ECDHE
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232

use std::sync::Arc;

use anyhow::{anyhow, Result};
use arc_swap::ArcSwap;
use chrono::{DateTime, Local};
use serde_json::Value;

use ring::agreement::{EphemeralPrivateKey, PublicKey, UnparsedPublicKey, X25519};
use tokio::task::JoinHandle;

use crate::exceptions::Exception;
use crate::types::Callback;
use crate::utils::gear::Socket;
use crate::utils::generator::generate_key_pair;
use crate::utils::parser::{length, OblivionRequest};

use super::client::Response;
use super::packet::{OED, OKE, OSC};
use super::render::BaseResponse;

/// Oblivion Full Duplex Session
///
/// This struct represents a full duplex session between the client and the server.
/// It contains all the necessary information to handle the communication between the two.
pub struct Session {
    pub header: String,
    pub(crate) private_key: Option<EphemeralPrivateKey>,
    pub(crate) public_key: PublicKey,
    pub(crate) aes_key: [u8; 16],
    pub request_time: DateTime<Local>,
    pub request: OblivionRequest,
    pub socket: Arc<Socket>,
    closed: ArcSwap<bool>,
    callback: Arc<Option<Callback>>,
}

impl Session {
    pub fn new(socket: Socket) -> Result<Self> {
        let (private_key, public_key) = generate_key_pair();
        Ok(Self {
            header: String::new(),
            private_key: Some(private_key),
            public_key,
            aes_key: Default::default(),
            request_time: Local::now(),
            request: Default::default(),
            socket: Arc::new(socket),
            closed: ArcSwap::new(Arc::new(false)),
            callback: Arc::new(None),
        })
    }

    pub fn new_with_header(header: String, socket: Socket) -> Result<Self> {
        let (private_key, public_key) = generate_key_pair();
        Ok(Self {
            header,
            private_key: Some(private_key),
            public_key,
            aes_key: Default::default(),
            request_time: Local::now(),
            request: Default::default(),
            socket: Arc::new(socket),
            closed: ArcSwap::new(Arc::new(false)),
            callback: Arc::new(None),
        })
    }

    #[inline]
    async fn first_hand(&mut self) -> Result<()> {
        let socket = Arc::clone(&self.socket);
        let header = self.header.as_bytes();
        #[cfg(feature = "perf")]
        let now = tokio::time::Instant::now();
        socket.send(&length(header)?).await?;
        socket.send(header).await?;
        #[cfg(feature = "perf")]
        println!("发送头时长: {}μs", now.elapsed().as_micros().to_string());

        let public_key = UnparsedPublicKey::new(&X25519, self.public_key.as_ref().to_vec());
        let mut oke = OKE::new(self.private_key.take(), public_key);
        oke.from_stream_with_salt(&socket).await?;
        self.aes_key = oke.get_aes_key();
        oke.to_stream(&socket).await?;
        Ok(())
    }

    #[inline]
    async fn second_hand(&mut self) -> Result<()> {
        #[cfg(feature = "perf")]
        let now = tokio::time::Instant::now();
        #[cfg(feature = "perf")]
        use colored::Colorize;
        let socket = Arc::clone(&self.socket);
        let peer = socket.peer_addr().await?;
        #[cfg(feature = "perf")]
        println!(
            "开始入站时长: {}μs",
            now.elapsed().as_micros().to_string().bright_magenta()
        );
        let len_header = socket.recv_usize().await?;
        #[cfg(feature = "perf")]
        println!(
            "捕获头长度时长: {}μs",
            now.elapsed().as_micros().to_string().bright_magenta()
        );
        let header = socket.recv_str(len_header).await?;
        #[cfg(feature = "perf")]
        println!(
            "入站时长: {}μs",
            now.elapsed().as_micros().to_string().bright_magenta()
        );
        let mut request = OblivionRequest::new(&header)?;
        request.set_remote_peer(&peer);

        #[cfg(feature = "perf")]
        let now = std::time::Instant::now();
        let public_key = UnparsedPublicKey::new(&X25519, self.public_key.as_ref().to_vec());
        let mut oke = OKE::new(self.private_key.take(), public_key);
        oke.to_stream_with_salt(&socket).await?;
        oke.from_stream(&socket).await?;
        #[cfg(feature = "perf")]
        println!(
            "密钥交互时长: {}μs",
            now.elapsed().as_micros().to_string().bright_magenta()
        );

        request.aes_key = Some(oke.get_aes_key());
        self.aes_key = oke.get_aes_key();

        self.request = request;
        self.header = header;
        Ok(())
    }

    pub async fn handshake(&mut self, flag: u8) -> Result<()> {
        match flag {
            0 => self.first_hand().await?,
            1 => self.second_hand().await?,
            _ => return Err(anyhow!("Unknown handshake flag")),
        };
        Ok(())
    }

    pub async fn send(&self, data: Vec<u8>) -> Result<()> {
        if self.closed().await {
            return Err(Exception::ConnectionClosed.into());
        }

        let socket = &self.socket;

        OSC::from_u32(0).to_stream(socket).await?;
        OED::new(&self.aes_key)
            .from_bytes(data)?
            .to_stream(socket)
            .await?;
        Ok(())
    }

    pub async fn send_json(&self, json: Value) -> Result<()> {
        self.send(json.to_string().into_bytes()).await
    }

    pub async fn response(&self, response: BaseResponse) -> Result<()> {
        self.send(response.as_bytes()?)
            .await
    }

    pub async fn recv(&self) -> Result<Response> {
        if self.closed().await {
            return Err(Exception::ConnectionClosed.into());
        }

        let socket = &self.socket;

        let flag = OSC::from_stream(socket).await?.status_code;
        let content = OED::new(&self.aes_key).from_stream(socket).await?.take();
        let response = Response::new(None, content, None, flag);

        if flag == 1 {
            socket.close().await?;
        }
        Ok(response)
    }

    pub fn set_callback(&mut self, callback: Callback) {
        self.callback = Arc::new(Some(callback));
    }

    pub async fn listen(self: Arc<Self>) -> Result<JoinHandle<()>> {
        let callback = Arc::clone(&self.callback);
        let future = tokio::spawn(async move {
            while !self.closed().await {
                let response = self.recv().await.unwrap();
                if let Some(callback) = &*callback {
                    if !callback(response, self.clone()).await {
                        break;
                    };
                }
            }
        });
        Ok(future)
    }

    pub async fn recv_json(&self) -> Result<Value> {
        let response = self.recv().await?;
        Ok(serde_json::from_slice(&response.content)?)
    }

    pub async fn close(&self) -> Result<()> {
        if !self.closed().await {
            self.closed.store(Arc::new(true));
            self.socket.close().await
        } else {
            Ok(())
        }
    }

    #[inline]
    pub async fn closed(&self) -> bool {
        **self.closed.load()
    }

    #[inline]
    pub fn header(&self) -> &str {
        &self.header
    }

    #[inline]
    pub fn get_ip(&self) -> &str {
        self.request.get_ip()
    }
}