| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 |
- package securedload
- import (
- "bytes"
- "crypto/sha256"
- "encoding/hex"
- "strings"
- "github.com/v2fly/VSign/insmgr"
- "github.com/v2fly/VSign/signerVerify"
- "github.com/v2fly/v2ray-core/v4/common/platform"
- "github.com/v2fly/v2ray-core/v4/common/platform/filesystem"
- )
- type EmbeddedHashProtectedLoader struct {
- checkedFile map[string]string
- }
- func (e EmbeddedHashProtectedLoader) VerifyAndLoad(filename string) ([]byte, error) {
- filecontent, err := filesystem.ReadFile(platform.GetAssetLocation(filename))
- if err != nil {
- return nil, newError("Cannot find file", filename).Base(err)
- }
- fileHash := sha256.Sum256(filecontent)
- fileHashAsString := hex.EncodeToString(fileHash[:])
- if filenameverified, ok := e.checkedFile[fileHashAsString]; ok {
- for _, filenameVerifiedIndividual := range strings.Split(filenameverified, ";") {
- if strings.HasSuffix(filenameVerifiedIndividual, filename) {
- return filecontent, nil
- }
- }
- }
- return nil, newError("Unrecognized file at ", filename, " can not be loaded for execution")
- }
- func NewEmbeddedHashProtectedLoader() *EmbeddedHashProtectedLoader {
- instructions := insmgr.ReadAllIns(bytes.NewReader([]byte(allowedHashes)))
- checkedFile, _, ok := signerVerify.CheckAsClient(instructions, "v2fly", true)
- if !ok {
- panic("Embedded Hash data is invalid")
- }
- return &EmbeddedHashProtectedLoader{checkedFile: checkedFile}
- }
- func init() {
- RegisterProtectedLoader("embedded", NewEmbeddedHashProtectedLoader())
- }
|
