@@ -83,13 +83,20 @@ impl Socks5 {
8383 pub fn advance ( & mut self , input : & [ u8 ] ) -> Result < Vec < u8 > , Error > {
8484 eprintln ! ( "SOCKS5 now {self:?}" ) ;
8585 eprintln ! ( "> Input is {input:02x?}" ) ;
86+ if !input. is_empty ( ) && input[ 0 ] != 0x05 {
87+ * self = Socks5 :: Failed ( Error :: VersionNotSupported ( input[ 0 ] ) ) ;
88+ return Err ( Error :: VersionNotSupported ( input[ 0 ] ) ) ;
89+ }
8690 match self {
8791 Socks5 :: Initial ( addr, false ) if !addr. requires_proxy ( ) => {
8892 * self = Socks5 :: Active ( addr. clone ( ) ) ;
8993 Ok ( vec ! [ ] )
9094 }
9195 Socks5 :: Initial ( addr, _) => {
92- debug_assert ! ( input. is_empty( ) ) ;
96+ if !input. is_empty ( ) {
97+ * self = Socks5 :: Failed ( Error :: InvalidReply ) ;
98+ return Err ( Error :: InvalidReply ) ;
99+ }
93100 let out = vec ! [ 0x05 , 0x01 , 0x00 ] ;
94101 * self = Socks5 :: Connected ( addr. clone ( ) ) ;
95102 Ok ( out)
@@ -99,10 +106,6 @@ impl Socks5 {
99106 * self = Socks5 :: Failed ( Error :: InvalidReply ) ;
100107 return Err ( Error :: InvalidReply ) ;
101108 }
102- if input[ 0 ] != 0x05 {
103- * self = Socks5 :: Failed ( Error :: VersionNotSupported ( input[ 0 ] ) ) ;
104- return Err ( Error :: VersionNotSupported ( input[ 0 ] ) ) ;
105- }
106109 if input[ 1 ] != 0x00 {
107110 * self = Socks5 :: Failed ( Error :: AuthRequired ) ;
108111 return Err ( Error :: AuthRequired ) ;
@@ -114,8 +117,11 @@ impl Socks5 {
114117 Ok ( out)
115118 }
116119 Socks5 :: Awaiting => {
117- debug_assert_eq ! ( input. len( ) , 3 ) ;
118- if input[ 0 ] != 0x00 {
120+ if input. len ( ) != 3 {
121+ * self = Socks5 :: Failed ( Error :: InvalidReply ) ;
122+ return Err ( Error :: InvalidReply ) ;
123+ }
124+ if input[ 1 ] != 0x00 {
119125 let err = ServerError :: from ( input[ 1 ] ) ;
120126 * self = Socks5 :: Rejected ( err) ;
121127 return Err ( Error :: Closed ) ;
0 commit comments