jmg
/
ntunnel
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 1 Wiki Activity
An stunnel like program that utilizes the Noise protocol.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21 Commits
2 Branches
375 KiB
 
 
Tree: beb82c02e5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'beb82c02e5'
${ noResults }
ntunnel/ntunnel.py

416 lines
11 KiB
Raw Blame History 

  1. from noise.connection import NoiseConnection, Keypair

  2. from cryptography.hazmat.primitives.kdf.hkdf import HKDF

  3. from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes

  4. from cryptography.hazmat.primitives import hashes

  5. from twistednoise import genkeypair

  6. from cryptography.hazmat.backends import default_backend

  7. 

  8. import asyncio

  9. import os.path

  10. import shutil

  11. import socket

  12. import tempfile

  13. import threading

  14. import unittest

  15. 

  16. _backend = default_backend()

  17. 

  18. def _makeunix(path):

  19. 	'''Make a properly formed unix path socket string.'''

  20. 

  21. 	return 'unix:%s' % path

  22. 

  23. def _parsesockstr(sockstr):

  24. 	proto, rem = sockstr.split(':', 1)

  25. 

  26. 	return proto, rem

  27. 

  28. async def connectsockstr(sockstr):

  29. 	proto, rem = _parsesockstr(sockstr)

  30. 

  31. 	reader, writer = await asyncio.open_unix_connection(rem)

  32. 

  33. 	return reader, writer

  34. 

  35. async def listensockstr(sockstr, cb):

  36. 	'''Wrapper for asyncio.start_x_server.

  37. 

  38. 	The format of sockstr is: 'proto:param=value[,param2=value2]'.

  39. 	If the proto has a default parameter, the value can be used

  40. 	directly, like: 'proto:value'.  This is only allowed when the

  41. 	value can unambiguously be determined not to be a param.

  42. 

  43. 	The characters that define 'param' must be all lower case ascii

  44. 	characters and may contain an underscore.  The first character

  45. 	must not be and underscore.

  46. 

  47. 	Supported protocols:

  48. 		unix:

  49. 			Default parameter is path.

  50. 			The path parameter specifies the path to the

  51. 			unix domain socket.  The path MUST start w/ a

  52. 			slash if it is used as a default parameter.

  53. 	'''

  54. 

  55. 	proto, rem = _parsesockstr(sockstr)

  56. 

  57. 	server = await asyncio.start_unix_server(cb, path=rem)

  58. 

  59. 	return server

  60. 

  61. # !!python makemessagelengths.py

  62. _handshakelens = \

  63. [72, 72, 88]

  64. 

  65. def _genciphfun(hash, ad):

  66. 	hkdf = HKDF(algorithm=hashes.SHA256(), length=32,

  67. 	    salt=b'asdoifjsldkjdsf', info=ad, backend=_backend)

  68. 

  69. 	key = hkdf.derive(hash)

  70. 	cipher = Cipher(algorithms.AES(key), modes.ECB(),

  71. 	    backend=_backend)

  72. 	enctor = cipher.encryptor()

  73. 

  74. 	def encfun(data):

  75. 		# Returns the two bytes for length

  76. 		val = len(data)

  77. 		encbytes = enctor.update(data[:16])

  78. 		mask = int.from_bytes(encbytes[:2], byteorder='big') & 0xff

  79. 

  80. 		return (val ^ mask).to_bytes(length=2, byteorder='big')

  81. 

  82. 	def decfun(data):

  83. 		# takes off the data and returns the total

  84. 		# length

  85. 		val = int.from_bytes(data[:2], byteorder='big')

  86. 		encbytes = enctor.update(data[2:2 + 16])

  87. 		mask = int.from_bytes(encbytes[:2], byteorder='big') & 0xff

  88. 

  89. 		return val ^ mask

  90. 

  91. 	return encfun, decfun

  92. 

  93. async def NoiseForwarder(mode, rdrwrr, ptpair, priv_key, pub_key=None):

  94. 	rdr, wrr = rdrwrr

  95. 

  96. 	proto = NoiseConnection.from_name(b'Noise_XK_448_ChaChaPoly_SHA256')

  97. 

  98. 	proto.set_keypair_from_private_bytes(Keypair.STATIC, priv_key)

  99. 	if pub_key is not None:

  100. 		proto.set_keypair_from_public_bytes(Keypair.REMOTE_STATIC, pub_key)

  101. 

  102. 	if mode == 'resp':

  103. 		proto.set_as_responder()

  104. 	elif mode == 'init':

  105. 		proto.set_as_initiator()

  106. 

  107. 	proto.start_handshake()

  108. 

  109. 	if mode == 'resp':

  110. 		proto.read_message(await rdr.readexactly(_handshakelens[0]))

  111. 

  112. 		wrr.write(proto.write_message())

  113. 

  114. 		proto.read_message(await rdr.readexactly(_handshakelens[2]))

  115. 	elif mode == 'init':

  116. 		wrr.write(proto.write_message())

  117. 

  118. 		proto.read_message(await rdr.readexactly(_handshakelens[1]))

  119. 

  120. 		wrr.write(proto.write_message())

  121. 

  122. 	if not proto.handshake_finished:	# pragma: no cover

  123. 		raise RuntimeError('failed to finish handshake')

  124. 

  125. 	# generate the keys for lengths

  126. 	if mode == 'resp':

  127. 		_, declenfun = _genciphfun(proto.get_handshake_hash(), b'toresp')

  128. 		enclenfun, _ = _genciphfun(proto.get_handshake_hash(), b'toinit')

  129. 	elif mode == 'init':

  130. 		enclenfun, _ = _genciphfun(proto.get_handshake_hash(), b'toresp')

  131. 		_, declenfun = _genciphfun(proto.get_handshake_hash(), b'toinit')

  132. 

  133. 	reader, writer = await ptpair

  134. 

  135. 	async def decses():

  136. 		try:

  137. 			while True:

  138. 				try:

  139. 					msg = await rdr.readexactly(2 + 16)

  140. 				except asyncio.streams.IncompleteReadError:

  141. 					if rdr.at_eof():

  142. 						return 'dec'

  143. 

  144. 				tlen = declenfun(msg)

  145. 				rmsg = await rdr.readexactly(tlen - 16)

  146. 				tmsg = msg[2:] + rmsg

  147. 				writer.write(proto.decrypt(tmsg))

  148. 				await writer.drain()

  149. 		#except:

  150. 		#	import traceback

  151. 		#	traceback.print_exc()

  152. 		#	raise

  153. 		finally:

  154. 			writer.write_eof()

  155. 

  156. 	async def encses():

  157. 		try:

  158. 			while True:

  159. 				ptmsg = await reader.read(65535 - 16) # largest message

  160. 				if not ptmsg:

  161. 					# eof

  162. 					return 'enc'

  163. 

  164. 				encmsg = proto.encrypt(ptmsg)

  165. 				wrr.write(enclenfun(encmsg))

  166. 				wrr.write(encmsg)

  167. 				await wrr.drain()

  168. 		#except:

  169. 		#	import traceback

  170. 		#	traceback.print_exc()

  171. 		#	raise

  172. 		finally:

  173. 			wrr.write_eof()

  174. 

  175. 	return await asyncio.gather(decses(), encses())

  176. 

  177. # https://stackoverflow.com/questions/23033939/how-to-test-python-3-4-asyncio-code

  178. # Slightly modified to timeout

  179. def async_test(f):

  180. 	def wrapper(*args, **kwargs):

  181. 		coro = asyncio.coroutine(f)

  182. 		future = coro(*args, **kwargs)

  183. 		loop = asyncio.get_event_loop()

  184. 

  185. 		# timeout after 2 seconds

  186. 		loop.run_until_complete(asyncio.wait_for(future, 2))

  187. 	return wrapper

  188. 

  189. class Tests_misc(unittest.TestCase):

  190. 	def test_listensockstr(self):

  191. 		# XXX write test

  192. 		pass

  193. 

  194. 	def test_genciphfun(self):

  195. 		enc, dec = _genciphfun(b'0' * 32, b'foobar')

  196. 

  197. 		msg = b'this is a bunch of data'

  198. 

  199. 		tb = enc(msg)

  200. 

  201. 		self.assertEqual(len(msg), dec(tb + msg))

  202. 

  203. 		for i in [ 20, 1384, 64000, 23839, 65535 ]:

  204. 			msg = os.urandom(i)

  205. 			self.assertEqual(len(msg), dec(enc(msg) + msg))

  206. 

  207. def _asyncsockpair():

  208. 	'''Create a pair of sockets that are bound to each other.

  209. 	The function will return a tuple of two coroutine's, that

  210. 	each, when await'ed upon, will return the reader/writer pair.'''

  211. 

  212. 	socka, sockb = socket.socketpair()

  213. 

  214. 	return asyncio.open_connection(sock=socka), asyncio.open_connection(sock=sockb)

  215. 

  216. class Tests(unittest.TestCase):

  217. 	def setUp(self):

  218. 		# setup temporary directory

  219. 		d = os.path.realpath(tempfile.mkdtemp())

  220. 		self.basetempdir = d

  221. 		self.tempdir = os.path.join(d, 'subdir')

  222. 		os.mkdir(self.tempdir)

  223. 

  224. 		# Generate key pairs

  225. 		self.server_key_pair = genkeypair()

  226. 		self.client_key_pair = genkeypair()

  227. 

  228. 	def tearDown(self):

  229. 		shutil.rmtree(self.basetempdir)

  230. 		self.tempdir = None

  231. 

  232. 	@async_test

  233. 	async def test_server(self):

  234. 		# Test is plumbed:

  235. 		#   (reader, writer) -> servsock ->

  236. 		#     (rdr, wrr) NoiseForward (reader, writer) ->

  237. 		#     servptsock -> (ptsock[0], ptsock[1])

  238. 		# Path that the server will sit on

  239. 		servsockpath = os.path.join(self.tempdir, 'servsock')

  240. 		servarg = _makeunix(servsockpath)

  241. 

  242. 		# Path that the server will send pt data to

  243. 		servptpath = os.path.join(self.tempdir, 'servptsock')

  244. 

  245. 		# Setup pt target listener

  246. 		pttarg = _makeunix(servptpath)

  247. 		ptsock = []

  248. 		def ptsockaccept(reader, writer, ptsock=ptsock):

  249. 			ptsock.append((reader, writer))

  250. 

  251. 		# Bind to pt listener

  252. 		lsock = await listensockstr(pttarg, ptsockaccept)

  253. 

  254. 		nfs = []

  255. 		event = asyncio.Event()

  256. 

  257. 		async def runnf(rdr, wrr):

  258. 			ptpair = asyncio.create_task(connectsockstr(pttarg))

  259. 			a = await NoiseForwarder('resp', (rdr, wrr), ptpair, priv_key=self.server_key_pair[1])

  260. 

  261. 			nfs.append(a)

  262. 			event.set()

  263. 

  264. 		# Setup server listener

  265. 		ssock = await listensockstr(servarg, runnf)

  266. 

  267. 		# Connect to server

  268. 		reader, writer = await connectsockstr(servarg)

  269. 

  270. 		# Create client

  271. 		proto = NoiseConnection.from_name(b'Noise_XK_448_ChaChaPoly_SHA256')

  272. 		proto.set_as_initiator()

  273. 

  274. 		# Setup required keys

  275. 		proto.set_keypair_from_private_bytes(Keypair.STATIC, self.client_key_pair[1])

  276. 		proto.set_keypair_from_public_bytes(Keypair.REMOTE_STATIC, self.server_key_pair[0])

  277. 

  278. 		proto.start_handshake()

  279. 

  280. 		# Send first message

  281. 		message = proto.write_message()

  282. 		self.assertEqual(len(message), _handshakelens[0])

  283. 		writer.write(message)

  284. 

  285. 		# Get response

  286. 		respmsg = await reader.readexactly(_handshakelens[1])

  287. 		proto.read_message(respmsg)

  288. 

  289. 		# Send final reply

  290. 		message = proto.write_message()

  291. 		writer.write(message)

  292. 

  293. 		# Make sure handshake has completed

  294. 		self.assertTrue(proto.handshake_finished)

  295. 

  296. 		# generate the keys for lengths

  297. 		enclenfun, _ = _genciphfun(proto.get_handshake_hash(), b'toresp')

  298. 		_, declenfun = _genciphfun(proto.get_handshake_hash(), b'toinit')

  299. 

  300. 		# write a test message

  301. 		ptmsg = b'this is a test message that should be a little in length'

  302. 		encmsg = proto.encrypt(ptmsg)

  303. 		writer.write(enclenfun(encmsg))

  304. 		writer.write(encmsg)

  305. 

  306. 		# XXX - how to sync?

  307. 		await asyncio.sleep(.1)

  308. 

  309. 		ptreader, ptwriter = ptsock[0]

  310. 		# read the test message

  311. 		rptmsg = await ptreader.readexactly(len(ptmsg))

  312. 

  313. 		self.assertEqual(rptmsg, ptmsg)

  314. 

  315. 		# write a different message

  316. 		ptmsg = os.urandom(2843)

  317. 		encmsg = proto.encrypt(ptmsg)

  318. 		writer.write(enclenfun(encmsg))

  319. 		writer.write(encmsg)

  320. 

  321. 		# XXX - how to sync?

  322. 		await asyncio.sleep(.1)

  323. 

  324. 		# read the test message

  325. 		rptmsg = await ptreader.readexactly(len(ptmsg))

  326. 

  327. 		self.assertEqual(rptmsg, ptmsg)

  328. 

  329. 		# now try the other way

  330. 		ptmsg = os.urandom(912)

  331. 		ptwriter.write(ptmsg)

  332. 

  333. 		# find out how much we need to read

  334. 		encmsg = await reader.readexactly(2 + 16)

  335. 		tlen = declenfun(encmsg)

  336. 

  337. 		# read the rest of the message

  338. 		rencmsg = await reader.readexactly(tlen - 16)

  339. 		tmsg = encmsg[2:] + rencmsg

  340. 		rptmsg = proto.decrypt(tmsg)

  341. 

  342. 		self.assertEqual(rptmsg, ptmsg)

  343. 

  344. 		# shut down sending

  345. 		writer.write_eof()

  346. 

  347. 		# so pt reader should be shut down

  348. 		r = await ptreader.read(1)

  349. 		self.assertTrue(ptreader.at_eof())

  350. 

  351. 		# shut down pt

  352. 		ptwriter.write_eof()

  353. 

  354. 		# make sure the enc reader is eof

  355. 		r = await reader.read(1)

  356. 		self.assertTrue(reader.at_eof())

  357. 

  358. 		await event.wait()

  359. 

  360. 		self.assertEqual(nfs[0], [ 'dec', 'enc' ])

  361. 

  362. 	@async_test

  363. 	async def test_serverclient(self):

  364. 		# plumbing:

  365. 		#

  366. 		#   ptca -> ptcb NF client clsa -> clsb NF server ptsa -> ptsb

  367. 		#

  368. 

  369. 		ptcsockapair, ptcsockbpair = _asyncsockpair()

  370. 		ptcareader, ptcawriter = await ptcsockapair

  371. 		#ptcsockbpair passed directly

  372. 		clssockapair, clssockbpair = _asyncsockpair()

  373. 		clsapair = await clssockapair

  374. 		clsbpair = await clssockbpair

  375. 		ptssockapair, ptssockbpair = _asyncsockpair()

  376. 		#ptssockapair passed directly

  377. 		ptsbreader, ptsbwriter = await ptssockbpair

  378. 

  379. 		clientnf = asyncio.create_task(NoiseForwarder('init', clsapair, ptcsockbpair, priv_key=self.client_key_pair[1], pub_key=self.server_key_pair[0]))

  380. 		servnf = asyncio.create_task(NoiseForwarder('resp', clsbpair, ptssockapair, priv_key=self.server_key_pair[1]))

  381. 

  382. 		# send a message

  383. 		msga = os.urandom(183)

  384. 		ptcawriter.write(msga)

  385. 

  386. 		# make sure we get the same message

  387. 		self.assertEqual(msga, await ptsbreader.readexactly(len(msga)))

  388. 

  389. 		# send a second message

  390. 		msga = os.urandom(2834)

  391. 		ptcawriter.write(msga)

  392. 

  393. 		# make sure we get the same message

  394. 		self.assertEqual(msga, await ptsbreader.readexactly(len(msga)))

  395. 

  396. 		# send a message larger than the block size

  397. 		msga = os.urandom(103958)

  398. 		ptcawriter.write(msga)

  399. 

  400. 		# make sure we get the same message

  401. 		self.assertEqual(msga, await ptsbreader.readexactly(len(msga)))

  402. 

  403. 		# send a message the other direction

  404. 		msga = os.urandom(103958)

  405. 		ptsbwriter.write(msga)

  406. 

  407. 		# make sure we get the same message

  408. 		self.assertEqual(msga, await ptcareader.readexactly(len(msga)))

  409. 

  410. 		# close down the pt writers, the rest should follow

  411. 		ptsbwriter.write_eof()

  412. 		ptcawriter.write_eof()

  413. 

  414. 		self.assertEqual([ 'dec', 'enc' ], await clientnf)

  415. 		self.assertEqual([ 'dec', 'enc' ], await servnf)