obfssh/obfsshd/config.go

package main

import (
	"bytes"
	"io/ioutil"

	"github.com/fangdingjun/go-log/v5"
	"github.com/go-yaml/yaml"
	"golang.org/x/crypto/ssh"
)

type listen struct {
	Port int
	Key  string
	Cert string
}

type serverConfig struct {
	Listen  []listen     `yaml:"listen"`
	Debug   bool         `yaml:"debug"`
	HostKey string       `yaml:"host_key_file"`
	Users   []serverUser `yaml:"users"`
}

type serverUser struct {
	Username          string `yaml:"username"`
	Password          string `yaml:"password"`
	AuthorizedKeyFile string `yaml:"authorized_key_file"`
	publicKeys        []ssh.PublicKey
}

func (c *serverConfig) getUser(user string) (serverUser, error) {
	for _, u := range c.Users {
		if u.Username == user {
			return u, nil
		}
	}
	return serverUser{}, nil
}

func loadConfig(f string) (*serverConfig, error) {
	buf, err := ioutil.ReadFile(f)
	if err != nil {
		return nil, err
	}

	var c serverConfig
	if err := yaml.Unmarshal(buf, &c); err != nil {
		return nil, err
	}

	for i := range c.Users {
		buf1, err := ioutil.ReadFile(c.Users[i].AuthorizedKeyFile)
		if err != nil {
			log.Warnf("read publickey for %s failed, ignore", c.Users[i].Username)
			continue
		}

		// parse authorized_key
		//var err error
		var p1 ssh.PublicKey
		r := bytes.Trim(buf1, " \r\n")
		for {
			p1, _, _, r, err = ssh.ParseAuthorizedKey(r)
			if err != nil {
				//log.Println(err)
				//log.Printf("%+v %+v", r, p1)
				return nil, err
			}
			c.Users[i].publicKeys = append(c.Users[i].publicKeys, p1)
			if len(r) == 0 {
				break
			}
		}
	}
	return &c, nil
}
first version 8 years ago			`package main`

			`import (`
			`"bytes"`
change level for log message 6 years ago			`"io/ioutil"`

update dep 4 years ago			`"github.com/fangdingjun/go-log/v5"`
first version 8 years ago			`"github.com/go-yaml/yaml"`
correct import path 8 years ago			`"golang.org/x/crypto/ssh"`
first version 8 years ago			`)`

remove obfsucation, use tls instead 7 years ago			`type listen struct {`
			`Port int`
			`Key string`
			`Cert string`
			`}`

first version 8 years ago			`type serverConfig struct {`
remove obfsucation, use tls instead 7 years ago			Listen []listen `yaml:"listen"`
			Debug bool `yaml:"debug"`
			HostKey string `yaml:"host_key_file"`
			Users []serverUser `yaml:"users"`
first version 8 years ago			`}`

			`type serverUser struct {`
			Username string `yaml:"username"`
			Password string `yaml:"password"`
			AuthorizedKeyFile string `yaml:"authorized_key_file"`
			`publicKeys []ssh.PublicKey`
			`}`

			`func (c *serverConfig) getUser(user string) (serverUser, error) {`
			`for _, u := range c.Users {`
			`if u.Username == user {`
			`return u, nil`
			`}`
			`}`
			`return serverUser{}, nil`
			`}`

			`func loadConfig(f string) (*serverConfig, error) {`
			`buf, err := ioutil.ReadFile(f)`
			`if err != nil {`
			`return nil, err`
			`}`

			`var c serverConfig`
			`if err := yaml.Unmarshal(buf, &c); err != nil {`
			`return nil, err`
			`}`

			`for i := range c.Users {`
			`buf1, err := ioutil.ReadFile(c.Users[i].AuthorizedKeyFile)`
			`if err != nil {`
change level for log message 6 years ago			`log.Warnf("read publickey for %s failed, ignore", c.Users[i].Username)`
first version 8 years ago			`continue`
			`}`

			`// parse authorized_key`
			`//var err error`
			`var p1 ssh.PublicKey`
			`r := bytes.Trim(buf1, " \r\n")`
			`for {`
			`p1, _, _, r, err = ssh.ParseAuthorizedKey(r)`
			`if err != nil {`
			`//log.Println(err)`
			`//log.Printf("%+v %+v", r, p1)`
			`return nil, err`
			`}`
			`c.Users[i].publicKeys = append(c.Users[i].publicKeys, p1)`
			`if len(r) == 0 {`
			`break`
			`}`
			`}`
			`}`
			`return &c, nil`
			`}`