Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
Tilo15
/
astrogate
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: e111c832aa
Branche Tagy
astrogate
/
src
/
client
/
client.vala

client.vala 8.9 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233 
  1. 

  2. namespace AstrogateTunnel {
    3. 

  3. 

  4. 

  5.     private static Socket socket;
    6. 

  6.     private static int tun_fd;
    7. 

  7. 

  8.     private static string ifname;
    9. 

  9.     private static InetSocketAddress server_address;
    10. 

  10.     private static InetSocketAddress client_address;
    11. 

  11. 

  12.     private static InetAddress vpn_network;
    13. 

  13.     private static InetAddress vpn_netmask;
    14. 

  14.     private static InetAddress vpn_ip;
    15. 

  15.     private static int mtu = 1500;
    16. 

  16. 

  17.     public static int main(string[] args) {
    18. 

  18.         int client_port = 0;
    19. 

  19.         int server_port = 0;
    20. 

  20.         if(args.length < 6 || !int.try_parse(args[3], out client_port) || !int.try_parse(args[5], out server_port)) {
    21. 

  21.             print(@"USAGE: $(args[0]) interface client_ip client_port server_ip server_port\n");
    22. 

  22.             return -1;
    23. 

  23.         }
    24. 

  24. 

  25.         try {
    26. 

  26.             server_address = new InetSocketAddress.from_string(args[4], server_port);
    27. 

  27.             client_address = new InetSocketAddress.from_string(args[2], client_port);
    28. 

  28.             ifname = args[1];
    29. 

  29. 

  30.             socket = new Socket(server_address.family, SocketType.DATAGRAM, SocketProtocol.UDP);
    31. 

  31.             socket.bind(client_address, false);
    32. 

  32. 

  33.             // Open tun device
    34. 

  34.             tun_fd = handle_posix_error("opening tun device", Posix.open("/dev/net/tun", Posix.O_RDWR));
    35. 

  35. 

  36.             // Create tunnel device
    37. 

  37.             var request = generate_ifreq();
    38. 

  38.             handle_posix_error("creating tun interface", Linux.ioctl(tun_fd, IfTun.Tun.SETIFF, &request));
    39. 

  39. 

  40.             // Register with server
    41. 

  41.             var registration_message = new uint8[] { 'R' };
    42. 

  42.             socket.connect(server_address);
    43. 

  43.             socket.send(registration_message);
    44. 

  44. 

  45.             print(@"Waiting for $(server_address)...\n");
    46. 

  46.             var ack_message = new uint8[1024];
    47. 

  47.             socket.receive(ack_message);
    48. 

  48. 

  49.             if(ack_message[0] != 'A') {
    50. 

  50.                 print("Received invalid reply from server. Exiting.\n");
    51. 

  51.                 return -2;
    52. 

  52.             }
    53. 

  53. 

  54.             var mtu_dat = new uint8[2];
    55. 

  55.             if(ack_message[1] == '4') {
    56. 

  56.                 vpn_network = new InetAddress.from_bytes(ack_message[2:6], SocketFamily.IPV4);
    57. 

  57.                 vpn_netmask = new InetAddress.from_bytes(ack_message[6:10], SocketFamily.IPV4);
    58. 

  58.                 vpn_ip = new InetAddress.from_bytes(ack_message[10:14], SocketFamily.IPV4);
    59. 

  59.                 mtu_dat = ack_message[14:16];
    60. 

  60.             }
    61. 

  61.             else if(ack_message[1] == '6') {
    62. 

  62.                 vpn_network = new InetAddress.from_bytes(ack_message[2:18], SocketFamily.IPV6);
    63. 

  63.                 vpn_netmask = new InetAddress.from_bytes(ack_message[18:34], SocketFamily.IPV6);
    64. 

  64.                 vpn_ip = new InetAddress.from_bytes(ack_message[34:50], SocketFamily.IPV6);
    65. 

  65.                 mtu_dat = ack_message[50:52];
    66. 

  66.             }
    67. 

  67.             else {
    68. 

  68.                 print("Received unsupported network type from server. Exiting.\n");
    69. 

  69.                 return -3;
    70. 

  70.             }
    71. 

  71. 

  72.             uint16 mtu_val = 0;
    73. 

  73.             Memory.copy(&mtu_val, mtu_dat, sizeof(uint16));
    74. 

  74.             mtu = mtu_val.to_big_endian();
    75. 

  75. 

  76.             print(@"Registered with Astrogate server at $server_address:\n");
    77. 

  77.             print(@"  Network: $vpn_network\n");
    78. 

  78.             print(@"  Subnet mask: $vpn_netmask\n");
    79. 

  79.             print(@"  Allocated IP: $vpn_ip\n");
    80. 

  80.             print(@"  MTU: $mtu\n\n");
    81. 

  81.             
    82. 

  82.             request.ifr_flags = 0;
    83. 

  83.             request.ifr_mtu = mtu;
    84. 

  84.             handle_posix_error(@"setting MTU for $ifname", Linux.ioctl(socket.fd, Linux.Network.SIOCSIFMTU, &request));
    85. 

  85. 

  86.             request.ifr_flags |= Linux.Network.IfFlag.UP;
    87. 

  87.             handle_posix_error(@"bringing $ifname up", Linux.ioctl(socket.fd, Linux.Network.SIOCSIFFLAGS, &request));
    88. 

  88.             
    89. 

  89.             address_to_posix(vpn_ip, &request.ifr_addr);
    90. 

  90.             handle_posix_error(@"setting IP address for $ifname", Linux.ioctl(socket.fd, Linux.Network.SIOCSIFADDR, &request));
    91. 

  91. 

  92.             address_to_posix(vpn_netmask, &request.ifr_addr);
    93. 

  93.             handle_posix_error(@"setting subnet mask for $ifname", Linux.ioctl(socket.fd, Linux.Network.SIOCSIFNETMASK, &request));
    94. 

  94. 

  95.             address_to_posix(vpn_network, &request.ifr_addr);
    96. 

  96.             handle_posix_error(@"setting destination network for $ifname", Linux.ioctl(socket.fd, Linux.Network.SIOCSIFDSTADDR, &request));
    97. 

  97.         }
    98. 

  98.         catch(Error e) {
    99. 

  99.             print(@"Fatal error: $(e.message)\n");
    100. 

  100.             return -999;
    101. 

  101.         }
    102. 

  102. 

  103.         new Thread<int>("udp listener", listen_udp);
    104. 

  104.         return listen_tun();
    105. 

  105.     }
    106. 

  106. 

  107.     private int listen_udp() {
    108. 

  108.         while(true) {
    109. 

  109.             try {
    110. 

  110.                 // Receive the next datagram
    111. 

  111.                 var buffer = new uint8[mtu+5];
    112. 

  112.                 var size = socket.receive(buffer);
    113. 

  113.                 buffer.length = (int)size;
    114. 

  114. 

  115.                 if(buffer[0] == 'L') {
    116. 

  116.                     link_ip(buffer);
    117. 

  117.                     continue;
    118. 

  118.                 }
    119. 

  119. 

  120.                 else if(buffer[0] == 'U') {
    121. 

  121.                     unlink_ip(buffer);
    122. 

  122.                     continue;
    123. 

  123.                 }
    124. 

  124. 

  125.                 else if(buffer[0] != 'D') {
    126. 

  126.                     print("Ignoring invalid datagram from server\n");
    127. 

  127.                     continue;
    128. 

  128.                 }
    129. 

  129. 

  130.                 handle_posix_error(@"piping datagram to $ifname", (int)Posix.write(tun_fd, buffer[1:buffer.length], buffer.length));
    131. 

  131.             }
    132. 

  132.             catch(Error e) {
    133. 

  133.                 print(@"Exception handling incoming tunnel server datagram: $(e.message)\n");
    134. 

  134.             }
    135. 

  135.         }
    136. 

  136.     }
    137. 

  137. 

  138.     private int listen_tun() {
    139. 

  139.         while(true) {
    140. 

  140.             var buffer = new uint8[mtu+4];
    141. 

  141.             var size = Posix.read(tun_fd, buffer, buffer.length);
    142. 

  142.             if(size < 0) {
    143. 

  143.                 print(@"Got $(size) from Posix.read.\n");
    144. 

  144.                 continue;
    145. 

  145.             }
    146. 

  146.             buffer.length = (int)size;
    147. 

  147. 

  148.             try {
    149. 

  149.                 var message = new uint8[buffer.length + 1];
    150. 

  150.                 message[0] = 'D';
    151. 

  151.                 Memory.copy(message[1:], buffer, buffer.length);
    152. 

  152.                 socket.send(message);
    153. 

  153.             }
    154. 

  154.             catch (Error e) {
    155. 

  155.                 print(@"Error forwarding datagram to server: $(e.message)\n");
    156. 

  156.             }
    157. 

  157.         }
    158. 

  158.     }
    159. 

  159. 

  160.     private void link_ip(uint8[] buffer) throws Error {
    161. 

  161.         var address = new InetAddress.from_bytes(buffer[1:buffer.length], vpn_ip.family);
    162. 

  162.         print(@"Linking IP $(address)\n");
    163. 

  163.         var route = build_rtentry(address);
    164. 

  164. 

  165.         var res = Linux.ioctl(socket.fd, Linux.Network.SIOCADDRT, &route);
    166. 

  166.         if(res < 0 && errno != Posix.EEXIST) {
    167. 

  167.             handle_posix_error(@"adding route to $address", res);
    168. 

  168.         }
    169. 

  169.         else if(errno == Posix.EEXIST) {
    170. 

  170.             print(@"Already linked to $(address)\n");
    171. 

  171.         }
    172. 

  172.     }
    173. 

  173. 

  174.     private void unlink_ip(uint8[] buffer) throws Error {
    175. 

  175.         var address = new InetAddress.from_bytes(buffer[1:buffer.length], vpn_ip.family);
    176. 

  176.         print(@"Uninking IP $(address)\n");
    177. 

  177.         var route = build_rtentry(address);
    178. 

  178.         handle_posix_error(@"adding route to $address", Linux.ioctl(socket.fd, Linux.Network.SIOCDELRT, &route));
    179. 

  179.     }
    180. 

  180. 

  181.     private Linux.Network.RtEntry build_rtentry(InetAddress address) {
    182. 

  182.         var route = Linux.Network.RtEntry();
    183. 

  183.         route.rt_dev = ifname;
    184. 

  184.         address_to_posix(address, &route.rt_dst);
    185. 

  185.         address_to_posix(new InetAddress.from_string("255.255.255.255"), &route.rt_genmask);
    186. 

  186.         route.rt_flags = Linux.Network.RtFlag.UP;
    187. 

  187.         return route;
    188. 

  188.     }
    189. 

  189. 

  190.     private int handle_posix_error(string task, int result) throws Error {
    191. 

  191.         if(result < 0) {
    192. 

  192.             var code = Posix.errno;
    193. 

  193.             var message = Posix.strerror(code);
    194. 

  194.             throw new Error.literal(Quark.from_string("posix-error"), code, @"Got result $(result) while $(task): $message");
    195. 

  195.         }
    196. 

  196.         return result;
    197. 

  197.     }
    198. 

  198. 

  199.     private void address_to_posix(InetAddress address, Posix.SockAddr *addr) {
    200. 

  200.         var addr_str = address.to_string();
    201. 

  201.         switch (address.family) {
    202. 

  202.             case SocketFamily.IPV4:
    203. 

  203.                 var sin4 = Posix.SockAddrIn();
    204. 

  204.                 sin4.sin_family = Posix.AF_INET;
    205. 

  205.                 Posix.inet_pton(Posix.AF_INET, addr_str, &sin4.sin_addr.s_addr);
    206. 

  206.                 Memory.copy(addr, &sin4, sizeof(Posix.SockAddr));
    207. 

  207.                 break;
    208. 

  208.             case SocketFamily.IPV6:
    209. 

  209.                 var sin6 = Posix.SockAddrIn();
    210. 

  210.                 sin6.sin_family = Posix.AF_INET;
    211. 

  211.                 Posix.inet_pton(Posix.AF_INET, addr_str, &sin6.sin_addr.s_addr);
    212. 

  212.                 Memory.copy(addr, &sin6, sizeof(Posix.SockAddr));
    213. 

  213.                 break;
    214. 

  214.             default:
    215. 

  215.                 assert_not_reached();
    216. 

  216.         }
    217. 

  217.     }
    218. 

  218. 

  219.     private Linux.Network.IfReq generate_ifreq() throws Error {
    220. 

  220.         var request = Linux.Network.IfReq();
    221. 

  221.         request.ifr_flags = IfTun.IfFlag.TUN;
    222. 

  222.         if(ifname.length > request.ifr_name.length) {
    223. 

  223.             error(@"Max length for interface name is $(request.ifr_name.length) characters, provided name is $(ifname.length) characters.");
    224. 

  224.         }
    225. 

  225.         for(int i = 0; i < ifname.length; i++){
    226. 

  226.             request.ifr_name[i] = ifname[i];
    227. 

  227.         }
    228. 

  228.         return request;
    229. 

  229.     }
    230. 

  230. 

  231. 

  232. 

  233. }
    234.