Главная Обзор Помощь
Вход
txlyre
/
3x-ui
зеркало из https://github.com/MHSanaei/3x-ui
1
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 4915d6b18d
Ветки Метки
3x-ui
/
internal
/
web
/
service
/
shadowsocks_client_key_test.go

shadowsocks_client_key_test.go 1.9 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849 
  1. package service
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/base64"
    5. 

  5. 	"encoding/json"
    6. 

  6. 	"testing"
    7. 

  7. )
    8. 

  8. 

  9. // A method switch between SS-2022 ciphers of different key sizes must regenerate
    10. 

  10. // client PSKs whose length no longer matches; otherwise xray rejects the user.
    11. 

  11. func TestNormalizeShadowsocksClientKeys_RegeneratesOnMethodResize(t *testing.T) {
    12. 

  12. 	// 32-byte (aes-256-sized) client key under an aes-128 (16-byte) method.
    13. 

  13. 	oversized := base64.StdEncoding.EncodeToString(make([]byte, 32))
    14. 

  14. 	settings := `{"method":"2022-blake3-aes-128-gcm","password":"` +
    15. 

  15. 		base64.StdEncoding.EncodeToString(make([]byte, 16)) +
    16. 

  16. 		`","clients":[{"email":"a","password":"` + oversized + `"}]}`
    17. 

  17. 

  18. 	out, changed := normalizeShadowsocksClientKeys(settings)
    19. 

  19. 	if !changed {
    20. 

  20. 		t.Fatalf("expected mismatched client key to be regenerated")
    21. 

  21. 	}
    22. 

  22. 

  23. 	var m map[string]any
    24. 

  24. 	if err := json.Unmarshal([]byte(out), &m); err != nil {
    25. 

  25. 		t.Fatalf("unmarshal: %v", err)
    26. 

  26. 	}
    27. 

  27. 	clients := m["clients"].([]any)
    28. 

  28. 	pw := clients[0].(map[string]any)["password"].(string)
    29. 

  29. 	if pw == oversized {
    30. 

  30. 		t.Fatalf("client key was not regenerated")
    31. 

  31. 	}
    32. 

  32. 	if decoded, err := base64.StdEncoding.DecodeString(pw); err != nil || len(decoded) != 16 {
    33. 

  33. 		t.Fatalf("regenerated key must be 16 bytes for aes-128, got len=%d err=%v", len(decoded), err)
    34. 

  34. 	}
    35. 

  35. }
    36. 

  36. 

  37. // A correctly-sized key (and non-2022 / legacy settings) must pass through untouched.
    38. 

  38. func TestNormalizeShadowsocksClientKeys_NoChangeWhenValid(t *testing.T) {
    39. 

  39. 	valid := base64.StdEncoding.EncodeToString(make([]byte, 32))
    40. 

  40. 	settings := `{"method":"2022-blake3-aes-256-gcm","clients":[{"email":"a","password":"` + valid + `"}]}`
    41. 

  41. 	if out, changed := normalizeShadowsocksClientKeys(settings); changed || out != settings {
    42. 

  42. 		t.Fatalf("valid aes-256 key must be left unchanged")
    43. 

  43. 	}
    44. 

  44. 

  45. 	legacy := `{"method":"aes-256-gcm","clients":[{"email":"a","password":"anything"}]}`
    46. 

  46. 	if out, changed := normalizeShadowsocksClientKeys(legacy); changed || out != legacy {
    47. 

  47. 		t.Fatalf("legacy (non-2022) SS settings must be left unchanged")
    48. 

  48. 	}
    49. 

  49. }
    50.