xfrpc/proxy_tcp.c

/* vim: set et ts=4 sts=4 sw=4 : */
/********************************************************************\
 * This program is free software; you can redistribute it and/or    *
 * modify it under the terms of the GNU General Public License as   *
 * published by the Free Software Foundation; either version 2 of   *
 * the License, or (at your option) any later version.              *
 *                                                                  *
 * This program is distributed in the hope that it will be useful,  *
 * but WITHOUT ANY WARRANTY; without even the implied warranty of   *
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the    *
 * GNU General Public License for more details.                     *
 *                                                                  *
 * You should have received a copy of the GNU General Public License*
 * along with this program; if not, contact:                        *
 *                                                                  *
 * Free Software Foundation           Voice:  +1-617-542-5942       *
 * 59 Temple Place - Suite 330        Fax:    +1-617-542-2652       *
 * Boston, MA  02111-1307,  USA       gnu@gnu.org                   *
 *                                                                  *
\********************************************************************/

/** @file proxy_tcp.c
    @brief xfrp proxy tcp implemented
    @author Copyright (C) 2016 Dengfeng Liu <liu_df@qq.com>
*/

#include <stdlib.h>
#include <stdio.h>
#include <assert.h>
#include <string.h>

#include <sys/socket.h>
#include <netinet/in.h>
#include <errno.h>
#include <syslog.h>
#include <unistd.h>
#include <arpa/inet.h>

#include <event2/bufferevent.h>
#include <event2/buffer.h>
#include <event2/listener.h>
#include <event2/event.h>

#include "debug.h"
#include "uthash.h"
#include "common.h"
#include "proxy.h"
#include "config.h"
#include "tcpmux.h"
#include "control.h"

#define	BUF_LEN	2*1024

static int
is_socks5(uint8_t *buf, int len)
{
	if (len < 3)
		return 0;
	if (buf[0] != 0x05)
		return 0;
	if (buf[1] != 0x01)
		return 0;
	if (buf[2] != 0x00)
		return 0;
	return 1;
}

static int
parse_socks5_addr(struct ring_buffer *rb, int len, int *offset, struct socks5_addr *addr)
{
	assert(addr);
	assert(len > 0);
	memset(addr, 0, sizeof(struct socks5_addr));
	uint8_t buf[22] = {0};
	rx_ring_buffer_pop(rb, buf, 1);
	*offset = 1;
	if (buf[0] == 0x01) {
		if (len < 7)
			return 0;
		addr->type = 0x01;
		rx_ring_buffer_pop(rb, buf+1, 6);
		memcpy(addr->addr, buf+1, 4);
		memcpy(&addr->port, buf+5, 2);
		*offset = 7;
	} else if (buf[0] == 0x04) { // ipv6
		if (len < 19)
			return 0;
		addr->type = 0x04;
		rx_ring_buffer_pop(rb, buf+1, 18);
		memcpy(addr->addr, buf+1, 16);
		memcpy(&addr->port, buf+17, 2);
		*offset = 19;
	} else if (buf[0] == 0x03) { // domain
		if (len < 2)
			return 0;
		rx_ring_buffer_pop(rb, buf+1, 1);
		if (len < 2 + buf[1])
			return 0;
		addr->type = 0x03;
		rx_ring_buffer_pop(rb, buf+2, buf[1] + 2);
		memcpy(addr->addr, buf+2, buf[1]);
		memcpy(&addr->port, buf+2+buf[1], 2);
		*offset = 2 + buf[1] + 2;
	} else {
		return 0;
	}
	return 1;
}

static struct bufferevent *
socks5_proxy_connect(struct proxy_client *client, struct socks5_addr *addr)
{
	struct bufferevent *bev = NULL;
	// check addr's type
	switch(addr->type) {
		case 0x01: // ipv4
		{
			struct sockaddr_in sin;
			memset(&sin, 0, sizeof(sin));
			sin.sin_family = AF_INET;
			sin.sin_port = addr->port;
			memcpy(&sin.sin_addr, addr->addr, 4);
			// print addr->addr in ipv4 format
			char ip[INET_ADDRSTRLEN] = {0};
			inet_ntop(AF_INET, addr->addr, ip, INET_ADDRSTRLEN);
			debug(LOG_DEBUG, "socks5_proxy_connect, type: %d, ip: %s, port: %d", addr->type, ip, ntohs(addr->port));
			bev = bufferevent_socket_new(client->base, -1, BEV_OPT_CLOSE_ON_FREE);
			if (!bev) {
				debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
				return NULL;
			}
			if (bufferevent_socket_connect(bev, (struct sockaddr *)&sin, sizeof(sin)) < 0) {
				debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
				bufferevent_free(bev);
				return NULL;
			}
			break;
		}	
		case 0x03: // domain
			// connect  domain by bufferevent_socket_connect_hostname function
			bev = bufferevent_socket_new(client->base, -1, BEV_OPT_CLOSE_ON_FREE);
			if (!bev) {
				debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
				return NULL;
			}
			if (bufferevent_socket_connect_hostname(
					bev, get_main_control()->dnsbase, AF_INET, (char *)addr->addr, ntohs(addr->port)) < 0) {
				debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
				bufferevent_free(bev);
				return NULL;
			}
			break;
		case 0x04: // ipv6
		{
			// connect target with ipv6 addr
			struct sockaddr_in6 sin6;
			memset(&sin6, 0, sizeof(sin6));
			sin6.sin6_family = AF_INET6;
			sin6.sin6_port = addr->port;
			memcpy(&sin6.sin6_addr, addr->addr, 16);
			bev = bufferevent_socket_new(client->base, -1, BEV_OPT_CLOSE_ON_FREE);
			if (!bev) {
				debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
				return NULL;
			}
			if (bufferevent_socket_connect(bev, (struct sockaddr *)&sin6, sizeof(sin6)) < 0) {
				debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
				bufferevent_free(bev);
				return NULL;
			}
			break;
		}
		default:
			debug(LOG_ERR, "socks5_proxy_connect failed, type: %d", addr->type);
			return NULL;
	}
	
	bufferevent_setcb(bev, tcp_proxy_c2s_cb, NULL, xfrp_proxy_event_cb, client);
	bufferevent_enable(bev, EV_READ | EV_WRITE);
	
	return bev;
}

uint32_t
handle_ss5(struct proxy_client *client, struct ring_buffer *rb, int len)
{
	uint32_t nret = 0;
	if (client->state == SOCKS5_ESTABLISHED) {
		assert(client->local_proxy_bev);
		tx_ring_buffer_write(client->local_proxy_bev, rb, len);
		return len;
	} else if (client->state == SOCKS5_INIT && len >= 7) {
		debug(LOG_DEBUG, "handle client ss5 handshake : SOCKS5_INIT len: %d", len);
		int offset = 0;
		if (!parse_socks5_addr(rb, len, &offset, &client->remote_addr)) {
			debug(LOG_ERR, "parse_ss5_addr failed");
			return nret;
		}

		client->local_proxy_bev = socks5_proxy_connect(client, &client->remote_addr);
		if (client->local_proxy_bev == NULL) {
			debug(LOG_ERR, "socks5_proxy_connect failed");
			return 0;
		}
		debug(LOG_DEBUG, "socks5_proxy_connect success: offset: %d, len is %d rb size is %d", 
			offset, len, rb->sz);
		
		return offset;
	} 
	return nret;
}

uint32_t 
handle_socks5(struct proxy_client *client, struct ring_buffer *rb, int len)
{
	uint32_t nret = 0;
	// if client's local_bev is not NULL, then we should forward rb's data to local_bev
	if (client->state == SOCKS5_CONNECT) {
		assert(client->local_proxy_bev);
		tx_ring_buffer_write(client->local_proxy_bev, rb, len);
		return len;
	} else if (client->state == SOCKS5_INIT && len >= 3) {
		debug(LOG_DEBUG, "handle client socks5 handshake : SOCKS5_INIT len: %d", len);
		// consume rb->buf three bytes
		uint8_t buf[3] = {0};
		rx_ring_buffer_pop(rb, buf, 3);
		if (buf[0] != 0x5 || buf[1] != 0x1 || buf[2] != 0x0) {
			debug(LOG_ERR, "handle client socks5 handshake failed");
			return nret;
		}
		buf[0] = 0x5;
		buf[1] = 0x0;
		buf[2] = 0x0;
		tmux_stream_write(client->ctl_bev, buf, 3, &client->stream);
		client->state = SOCKS5_HANDSHAKE;
		return 3;
	} else if (client->state == SOCKS5_HANDSHAKE && len >= 10) {
		debug(LOG_DEBUG, "handle client socks5 request: SOCKS5_HANDSHAKE len: %d", len);
		uint8_t buf[3] = {0};
		rx_ring_buffer_pop(rb, buf, 3);
		if (!is_socks5(buf, 3)) {
			debug(LOG_ERR, "handle client socks5 request failed");
			return nret;
		}
		int offset = 0;
		if (!parse_socks5_addr(rb, len, &offset, &client->remote_addr)) {
			debug(LOG_ERR, "parse_socks5_addr failed");
			return nret;
		}
		client->local_proxy_bev = socks5_proxy_connect(client, &client->remote_addr);
		if (client->local_proxy_bev == NULL) {
			debug(LOG_ERR, "socks5_proxy_connect failed");
			return 0;
		}
		assert(len == offset+3);
		//tx_ring_buffer_write(client->local_bev, rb, len - offset);
		return len;
	} else {
		debug(LOG_ERR, "not socks5 protocol, close client");
		// close client->local_proxy_bev
		bufferevent_free(client->local_proxy_bev);
		return nret;
	}
}

// read data from local service
void tcp_proxy_c2s_cb(struct bufferevent *bev, void *ctx)
{
	struct common_conf  *c_conf = get_common_config();
	struct proxy_client *client = (struct proxy_client *)ctx;
	assert(client);
	struct bufferevent *partner = client->ctl_bev;
	assert(partner);
	struct evbuffer *src = bufferevent_get_input(bev);
	size_t len = evbuffer_get_length(src);
	assert(len > 0);
	if (!c_conf->tcp_mux) {
		struct evbuffer *dst = bufferevent_get_output(partner);
		evbuffer_add_buffer(dst, src);
		return;
	}

	uint8_t *buf = (uint8_t *)malloc(len);
	assert(buf != NULL);
	memset(buf, 0, len);
	uint32_t nr = bufferevent_read(bev, buf, len);
	assert(nr == len);

	nr = tmux_stream_write(partner, buf, len, &client->stream);
	if (nr < len) {
		debug(LOG_DEBUG, "stream_id [%d] len is %d tmux_stream_write %d data, disable read", client->stream.id, len, nr);
		bufferevent_disable(bev, EV_READ);
	}
	free(buf);
}

// read data from frps
// when tcp mux enable this function will not be used
void tcp_proxy_s2c_cb(struct bufferevent *bev, void *ctx)
{
	struct proxy_client *client = (struct proxy_client *)ctx;
	assert(client);
	struct bufferevent *partner = client->local_proxy_bev;
	assert(partner);
	struct evbuffer *src, *dst;
	src = bufferevent_get_input(bev);
	size_t len = evbuffer_get_length(src);
	assert(len > 0);
	dst = bufferevent_get_output(partner);
	evbuffer_add_buffer(dst, src);
}