2016-08-24 20:49:33 +00:00
|
|
|
{-# LANGUAGE DeriveAnyClass #-}
|
|
|
|
{-# LANGUAGE DuplicateRecordFields #-}
|
|
|
|
{-# LANGUAGE ExistentialQuantification #-}
|
|
|
|
{-# LANGUAGE FlexibleContexts #-}
|
|
|
|
{-# LANGUAGE OverloadedStrings #-}
|
|
|
|
{-# LANGUAGE RankNTypes #-}
|
|
|
|
{-# LANGUAGE StrictData #-}
|
2016-06-14 12:11:57 +00:00
|
|
|
|
|
|
|
module Socks5 where
|
|
|
|
|
|
|
|
|
|
|
|
import ClassyPrelude
|
2016-06-15 12:01:50 +00:00
|
|
|
import Data.Binary
|
|
|
|
import Data.Binary.Get
|
2016-06-20 15:10:48 +00:00
|
|
|
import Data.Binary.Put
|
2016-06-22 21:22:23 +00:00
|
|
|
import qualified Data.ByteString as BC
|
|
|
|
import qualified Data.ByteString.Char8 as BC8
|
2016-06-20 15:10:48 +00:00
|
|
|
import Data.Either
|
2016-06-22 21:22:23 +00:00
|
|
|
import qualified Data.Text as T
|
|
|
|
import qualified Data.Text.Encoding as E
|
|
|
|
import Network.Socket (HostAddress, HostName, PortNumber)
|
|
|
|
import Numeric (showHex)
|
|
|
|
|
|
|
|
import Control.Monad.Except (MonadError)
|
|
|
|
import qualified Data.Streaming.Network as N
|
|
|
|
|
|
|
|
|
|
|
|
socksVersion :: Word8
|
|
|
|
socksVersion = 0x05
|
2016-06-14 12:11:57 +00:00
|
|
|
|
|
|
|
data AuthMethod = NoAuth
|
|
|
|
| GSSAPI
|
|
|
|
| Login
|
|
|
|
| Reserved
|
|
|
|
| NotAllowed
|
|
|
|
deriving (Show, Read)
|
|
|
|
|
|
|
|
data RequestAuth = RequestAuth
|
|
|
|
{ version :: Int
|
|
|
|
, methods :: Vector AuthMethod
|
|
|
|
} deriving (Show, Read)
|
|
|
|
|
2016-06-22 21:22:23 +00:00
|
|
|
data ResponseAuth = ResponseAuth
|
|
|
|
{ version :: Int
|
|
|
|
, method :: AuthMethod
|
|
|
|
} deriving (Show, Read)
|
|
|
|
|
|
|
|
instance Binary ResponseAuth where
|
|
|
|
put ResponseAuth{..} = putWord8 (fromIntegral version) >> put method
|
|
|
|
get = ResponseAuth <$> (fromIntegral <$> getWord8)
|
|
|
|
<*> get
|
|
|
|
|
|
|
|
|
2016-06-15 12:01:50 +00:00
|
|
|
instance Binary AuthMethod where
|
|
|
|
put val = case val of
|
|
|
|
NoAuth -> putWord8 0x00
|
|
|
|
GSSAPI -> putWord8 0x01
|
|
|
|
Login -> putWord8 0x02
|
|
|
|
NotAllowed -> putWord8 0xFF
|
|
|
|
_ {- Reserverd -} -> putWord8 0x03
|
|
|
|
|
|
|
|
get = do
|
|
|
|
method <- getWord8
|
|
|
|
return $ case method of
|
|
|
|
0x00 -> NoAuth
|
|
|
|
0x01 -> GSSAPI
|
|
|
|
0x02 -> Login
|
|
|
|
0xFF -> NotAllowed
|
|
|
|
_ -> Reserved
|
|
|
|
|
|
|
|
|
|
|
|
instance Binary RequestAuth where
|
|
|
|
put RequestAuth{..} = do
|
|
|
|
putWord8 (fromIntegral version)
|
|
|
|
putWord8 (fromIntegral $ length methods)
|
2016-06-20 15:10:48 +00:00
|
|
|
sequence_ (put <$> methods)
|
|
|
|
-- Check length <= 255
|
2016-06-15 12:01:50 +00:00
|
|
|
|
|
|
|
get = do
|
|
|
|
version <- fromIntegral <$> getWord8
|
|
|
|
guard (version == 0x05)
|
|
|
|
nbMethods <- fromIntegral <$> getWord8
|
2016-06-20 15:10:48 +00:00
|
|
|
guard (nbMethods > 0 && nbMethods <= 0xFF)
|
2016-06-15 12:01:50 +00:00
|
|
|
methods <- replicateM nbMethods get
|
|
|
|
return $ RequestAuth version methods
|
|
|
|
|
|
|
|
|
|
|
|
|
2016-06-14 12:11:57 +00:00
|
|
|
data Request = Request
|
|
|
|
{ version :: Int
|
|
|
|
, command :: Command
|
|
|
|
, addr :: HostName
|
|
|
|
, port :: PortNumber
|
|
|
|
} deriving (Show)
|
|
|
|
|
|
|
|
data Command = Connect
|
|
|
|
| Bind
|
|
|
|
| UdpAssociate
|
2016-06-20 15:10:48 +00:00
|
|
|
deriving (Show, Eq, Enum, Bounded)
|
|
|
|
|
|
|
|
|
|
|
|
instance Binary Command where
|
|
|
|
put = putWord8 . (+1) . fromIntegral . fromEnum
|
|
|
|
|
|
|
|
get = do
|
|
|
|
cmd <- (\val -> fromIntegral val - 1) <$> getWord8
|
|
|
|
guard $ cmd >= fromEnum (minBound :: Command) && cmd <= fromEnum (maxBound :: Command)
|
|
|
|
|
|
|
|
return .toEnum $ cmd
|
|
|
|
|
|
|
|
|
|
|
|
instance Binary Request where
|
|
|
|
put Request{..} = do
|
|
|
|
putWord8 (fromIntegral version)
|
|
|
|
put command
|
|
|
|
putWord8 0x00 -- RESERVED
|
|
|
|
putWord8 0x03 -- DOMAINNAME
|
|
|
|
let host = BC8.pack addr
|
|
|
|
putWord8 (fromIntegral . length $ host)
|
|
|
|
traverse_ put host
|
|
|
|
putWord16be (fromIntegral port)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
get = do
|
|
|
|
version <- fromIntegral <$> getWord8
|
|
|
|
guard (version == 5)
|
|
|
|
cmd <- get :: Get Command
|
|
|
|
_ <- getWord8 -- RESERVED
|
|
|
|
|
2018-06-05 22:46:02 +00:00
|
|
|
opCode <- fromIntegral <$> getWord8 -- Addr type, we support only ipv4 and domainame
|
|
|
|
guard (opCode == 0x03 || opCode == 0x01) -- DOMAINNAME OR IPV4
|
|
|
|
|
|
|
|
host <- if opCode == 0x03
|
|
|
|
then do
|
|
|
|
length <- fromIntegral <$> getWord8
|
|
|
|
host <- either (const T.empty) id . E.decodeUtf8' <$> replicateM length getWord8
|
|
|
|
return host
|
|
|
|
else do
|
|
|
|
ipv4 <- replicateM 4 getWord8 :: Get [Word8]
|
|
|
|
let ipv4Str = T.intercalate "." $ fmap (tshow . fromEnum) ipv4
|
|
|
|
return ipv4Str
|
2016-06-20 15:10:48 +00:00
|
|
|
|
|
|
|
guard (not $ null host)
|
|
|
|
port <- fromIntegral <$> getWord16be
|
|
|
|
|
|
|
|
return Request
|
|
|
|
{ version = version
|
|
|
|
, command = cmd
|
|
|
|
, addr = unpack host
|
|
|
|
, port = port
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2016-06-14 12:11:57 +00:00
|
|
|
|
2016-06-20 15:10:48 +00:00
|
|
|
toHex :: LByteString -> String
|
|
|
|
toHex = foldr showHex "" . unpack
|
2016-06-14 12:11:57 +00:00
|
|
|
|
|
|
|
data Response = Response
|
|
|
|
{ version :: Int
|
|
|
|
, returnCode :: RetCode
|
2016-08-24 20:49:33 +00:00
|
|
|
, serverAddr :: HostName
|
2016-06-14 12:11:57 +00:00
|
|
|
, serverPort :: PortNumber
|
|
|
|
} deriving (Show)
|
|
|
|
|
|
|
|
data RetCode = SUCCEEDED
|
|
|
|
| GENERAL_FAILURE
|
|
|
|
| NOT_ALLOWED
|
|
|
|
| NO_NETWORK
|
|
|
|
| HOST_UNREACHABLE
|
|
|
|
| CONNECTION_REFUSED
|
|
|
|
| TTL_EXPIRED
|
|
|
|
| UNSUPPORTED_COMMAND
|
|
|
|
| UNSUPPORTED_ADDRESS_TYPE
|
2016-06-22 21:22:23 +00:00
|
|
|
| UNASSIGNED
|
|
|
|
deriving (Show, Eq, Enum, Bounded)
|
|
|
|
|
|
|
|
instance Binary RetCode where
|
|
|
|
put = putWord8 . fromIntegral . fromEnum
|
|
|
|
get = toEnum . min maxBound . fromIntegral <$> getWord8
|
|
|
|
|
|
|
|
|
|
|
|
instance Binary Response where
|
|
|
|
put Response{..} = do
|
|
|
|
putWord8 socksVersion
|
|
|
|
put returnCode
|
|
|
|
putWord8 0x00 -- Reserved
|
|
|
|
putWord8 0x03 -- DOMAINNAME
|
2016-08-24 20:49:33 +00:00
|
|
|
let host = BC8.pack serverAddr
|
|
|
|
putWord8 (fromIntegral . length $ host)
|
|
|
|
traverse_ put host
|
|
|
|
putWord16be (fromIntegral serverPort)
|
2016-06-22 21:22:23 +00:00
|
|
|
|
|
|
|
|
|
|
|
get = do
|
|
|
|
version <- fromIntegral <$> getWord8
|
|
|
|
guard(version == fromIntegral socksVersion)
|
|
|
|
ret <- toEnum . min maxBound . fromIntegral <$> getWord8
|
|
|
|
getWord8 -- RESERVED
|
|
|
|
opCode <- fromIntegral <$> getWord8 -- Type
|
|
|
|
guard(opCode == 0x03)
|
2016-08-24 20:49:33 +00:00
|
|
|
length <- fromIntegral <$> getWord8
|
|
|
|
host <- either (const T.empty) id . E.decodeUtf8' <$> replicateM length getWord8
|
|
|
|
guard (not $ null host)
|
|
|
|
|
2016-06-22 21:22:23 +00:00
|
|
|
port <- getWord16be
|
|
|
|
|
|
|
|
return Response
|
|
|
|
{ version = version
|
|
|
|
, returnCode = ret
|
2016-08-24 20:49:33 +00:00
|
|
|
, serverAddr = unpack host
|
2016-06-22 21:22:23 +00:00
|
|
|
, serverPort = fromIntegral port
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
2016-08-24 20:49:33 +00:00
|
|
|
data ServerSettings = ServerSettings
|
|
|
|
{ listenOn :: PortNumber
|
|
|
|
, bindOn :: HostName
|
|
|
|
-- , onAuthentification :: (MonadIO m, MonadError IOException m) => RequestAuth -> m ResponseAuth
|
|
|
|
-- , onRequest :: (MonadIO m, MonadError IOException m) => Request -> m Response
|
2016-08-25 09:24:56 +00:00
|
|
|
} deriving (Show)
|
2016-06-22 21:22:23 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
--
|