Merge pull request #89 from perara/obfs

Obfs

wg_dashboard_backend/script/obfuscate/__init__.py

@@ -4,12 +4,16 @@ import subprocess
 import shlex
 
 
+class NotInstalledError(Exception):
+    pass
+
+
 class BaseObfuscation(abc.ABC):
 
     def __init__(self, binary_name=None, binary_path=None, algorithm=None):
 
         assert binary_name is not None or binary_path is not None
-        self.binary_name = binary_name if binary_name is not None else Path(self.binary_path).name
+        self.binary_name = binary_name if binary_name is not None else Path(binary_path).name
         self.binary_path = binary_path if binary_path else ""
         self.algorithm = algorithm
 
@@ -23,11 +27,13 @@ class BaseObfuscation(abc.ABC):
             data = [x.decode().strip() for x in proc_which.communicate() if x != b''][0]
 
             if proc_which.returncode != 0:
-                raise RuntimeError("Could not find binary '%s'" % data)
+                raise NotInstalledError("Could not find binary '%s'" % data)
 
             self.binary_path = data
 
-    def execute(self, *args, kill_first=False, override_command=None):
+    def execute(self, *args, kill_first=False, override_command=None, stream=False, prefix=""):
+        if prefix != "":
+            prefix += ": "
 
         if kill_first:
             # TODO try to delete by full name as we dont want to kill other processes.
@@ -38,16 +44,27 @@ class BaseObfuscation(abc.ABC):
             #kill_output, kill_code = self.execute(*[pattern], override_command="pkill")
 
         command = override_command if override_command is not None else self.binary_path
-        print(shlex.join([command] + list(args)))
         proc_which = subprocess.Popen([command] + list(args), stdout=subprocess.PIPE, stderr=subprocess.PIPE)
-        raw_data = proc_which.communicate()
 
-        data = [x.decode().strip() for x in raw_data if x != b'']
-        if len(data) == 0:
-            data = ""
+        if not stream:
+            raw_data = proc_which.communicate()
+
+            data = [x.decode().strip() for x in raw_data if x != b'']
+            if len(data) == 0:
+                data = ""
+            else:
+                data = data[0]
+            return data, proc_which.returncode
+
         else:
-            data = data[0]
-        return data, proc_which.returncode
+            while True:
+                output = proc_which.stdout.readline()
+                if output == '' and proc_which.poll() is not None:
+                    break
+                if output:
+                    print(prefix + output.strip().decode())
+            rc = proc_which.poll()
+            return rc
 
 
 

wg_dashboard_backend/script/obfuscate/shapeshifter.py

@@ -0,0 +1,173 @@
+import os
+from threading import Thread
+
+from script.obfuscate import BaseObfuscation, NotInstalledError
+import re
+import pathlib
+import shutil
+
+current_dir = pathlib.Path(__file__).parent.absolute()
+shapeshifter_path = current_dir.joinpath("binary/shapeshifter-dispatcher")
+shapeshifter_binary = shapeshifter_path.joinpath("shapeshifter-dispatcher")
+
+
+class GoNotFound(Exception):
+    pass
+
+
+class GoVersionIncompatible(Exception):
+    pass
+
+
+class GitNotInstalled(Exception):
+    pass
+
+
+class ShapeShifterBase(BaseObfuscation):
+    MODES_SUPPORTED = ["server", "client"]
+    ALGORITHMS_SUPPORTED = ["obfs4"]
+
+    def __init__(self, mode, algorithm, wireguard_port=None, listen_port=None, client_replicant_port=None, client_options=None):
+        super().__init__(
+            binary_path=shapeshifter_binary,
+            algorithm=algorithm
+        )
+
+        assert mode in ShapeShifterBase.MODES_SUPPORTED, "%s is not a supported mode. Supported: %s" % (
+            mode, ShapeShifterBase.MODES_SUPPORTED
+        )
+
+        self._wireguard_port = wireguard_port
+        self._listen_port = listen_port
+        self._client_replicant_port = client_replicant_port
+        self._mode = mode
+        self._client_options = client_options
+
+        self._go_version_min = (1, 14, 0)
+
+        self.ensure_installed()
+
+    def _verify_go_installed(self):
+        output, code = self.execute("version", override_command="go")
+
+        try:
+            match = re.findall("go([0-9]+.[0-9]+.[0-9]+)", output)
+            match = match[0]
+        except IndexError:
+            raise GoNotFound("Go was not found on the system.")
+
+        major, minor, patch = match.split(".")
+
+        if int(major) < self._go_version_min[0] or int(minor) < self._go_version_min[1] or \
+                int(patch) < self._go_version_min[2]:
+            raise GoVersionIncompatible("Go version is incompatible. %s < %s" % (self._go_version_min, match))
+
+    def _verify_git_installed(self):
+        output, code = self.execute("version", override_command="git")
+        if code == 0:
+            return
+
+        raise GitNotInstalled("Git does not seem to be installed. Code: %s, Output: %s" % (code, output))
+
+    def _verify_shapeshifter_installed(self):
+        output, code = self.execute("version", override_command=shapeshifter_binary)
+        print(output, code)
+
+    def _install_shapeshifter(self):
+
+        if shapeshifter_path.is_dir():
+            shutil.rmtree(shapeshifter_path)
+
+        output, code = self.execute(
+            "clone",
+            "https://github.com/OperatorFoundation/shapeshifter-dispatcher.git",
+            shapeshifter_path,
+            override_command="git")
+
+        assert code == 0, "Git exited with error. %s" % (output,)
+
+        current_working_dir = os.getcwd()
+        os.chdir(shapeshifter_path)
+
+        output, code = self.execute("build", override_command="go")
+        os.chdir(current_working_dir)
+
+        assert code == 0, "Building shapeshifter failed with output: %s" % (output,)
+
+    def ensure_installed(self):
+        try:
+            super().ensure_installed()
+        except NotInstalledError:
+
+            self._verify_go_installed()
+            self._verify_git_installed()
+
+            try:
+                self._verify_shapeshifter_installed()
+            except FileNotFoundError:
+                self._install_shapeshifter()
+
+    def start(self):
+
+        bind_command = "bindaddr" if self._mode == "server" else "proxylistenaddr"
+        bind_port = self._listen_port if self._mode == "server" else self._client_replicant_port
+        bind_value = f"127.0.0.1:{bind_port}"  # TODO
+        if self._mode == "server":
+            bind_value = self.algorithm + "-" + bind_value
+        connect_command = "orport" if self._mode == "server" else "target"
+        connect_port = self._wireguard_port if self._mode == "server" else self._listen_port
+
+        cmd = [
+            "-transparent",
+            "-udp",
+            f"-{self._mode}",
+            "-state", f"state",
+            f"-{connect_command}", f"127.0.0.1:{connect_port}",
+            "-transports", self.algorithm,
+            f"-{bind_command}", bind_value
+        ]
+
+        if self._mode == "client":
+            cmd.extend([
+                "-options", f"{self._client_options}"
+            ])
+
+        cmd.extend([
+            "-logLevel", "DEBUG",
+            "-enableLogging",
+        ])
+        print(*cmd)
+        output, code = self.execute(*cmd, stream=True, prefix=self._mode)
+        print(output, code)
+
+    def start_threaded(self):
+        t = Thread(target=self.start, args=())
+        t.start()
+        return t
+
+
+if __name__ == "__main__":
+    import time
+    x = ShapeShifterBase(
+        mode="server",
+        algorithm="obfs2",
+        wireguard_port=3333,
+        listen_port=2222,
+    )
+    x.start_threaded()
+
+    time.sleep(1)
+
+    x = ShapeShifterBase(
+        mode="client",
+        algorithm="obfs2",
+        listen_port=2222,
+        client_replicant_port=1443,
+        client_options='{"cert": "BWvGMVn3C8daXai2Xo+If23XS94eztZE9Kbtykvy9x5ADWc6YCHdGlWQfDh1fzu7AhuTIA", "iat-mode": "0"}'
+    )
+    x.start_threaded()
+
+
+
+    while True:
+        time.sleep(1)