ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/gvpe/src/connection.C
Revision: 1.67
Committed: Thu Aug 7 16:34:21 2008 UTC (15 years, 9 months ago) by pcg
Content type: text/plain
Branch: MAIN
Changes since 1.66: +79 -29 lines
Log Message: 
*** empty log message ***

File Contents

# Content
1 /*
2 connection.C -- manage a single connection
3 Copyright (C) 2003-2005 Marc Lehmann <gvpe@schmorp.de>
4
5 This file is part of GVPE.
6
7 GVPE is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
11
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
16
17 You should have received a copy of the GNU General Public License
18 along with gvpe; if not, write to the Free Software
19 Foundation, Inc. 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
20 */
21
22 #include "config.h"
23
24 #include <list>
25
26 #include <openssl/rand.h>
27 #include <openssl/evp.h>
28 #include <openssl/rsa.h>
29 #include <openssl/err.h>
30
31 #include "conf.h"
32 #include "slog.h"
33 #include "device.h"
34 #include "vpn.h"
35 #include "connection.h"
36
37 #include "netcompat.h"
38
39 #if !HAVE_RAND_PSEUDO_BYTES
40 # define RAND_pseudo_bytes RAND_bytes
41 #endif
42
43 #define MAGIC "vped\xbd\xc6\xdb\x82" // 8 bytes of magic
44
45 #define ULTRA_FAST 1
46 #define HLOG 15
47 #include "lzf/lzf.h"
48 #include "lzf/lzf_c.c"
49 #include "lzf/lzf_d.c"
50
51 struct crypto_ctx
52 {
53 EVP_CIPHER_CTX cctx;
54 HMAC_CTX hctx;
55
56 crypto_ctx (const rsachallenge &challenge, int enc);
57 ~crypto_ctx ();
58 };
59
60 crypto_ctx::crypto_ctx (const rsachallenge &challenge, int enc)
61 {
62 EVP_CIPHER_CTX_init (&cctx);
63 require (EVP_CipherInit_ex (&cctx, CIPHER, 0, &challenge[CHG_CIPHER_KEY], 0, enc));
64 HMAC_CTX_init (&hctx);
65 HMAC_Init_ex (&hctx, &challenge[CHG_HMAC_KEY], HMAC_KEYLEN, DIGEST, 0);
66 }
67
68 crypto_ctx::~crypto_ctx ()
69 {
70 require (EVP_CIPHER_CTX_cleanup (&cctx));
71 HMAC_CTX_cleanup (&hctx);
72 }
73
74 static void
75 rsa_hash (const rsaid &id, const rsachallenge &chg, rsaresponse &h)
76 {
77 EVP_MD_CTX ctx;
78
79 EVP_MD_CTX_init (&ctx);
80 require (EVP_DigestInit (&ctx, RSA_HASH));
81 require (EVP_DigestUpdate(&ctx, &chg, sizeof chg));
82 require (EVP_DigestUpdate(&ctx, &id, sizeof id));
83 require (EVP_DigestFinal (&ctx, (unsigned char *)&h, 0));
84 EVP_MD_CTX_cleanup (&ctx);
85 }
86
87 struct rsa_entry
88 {
89 tstamp expire;
90 rsaid id;
91 rsachallenge chg;
92 };
93
94 struct rsa_cache : list<rsa_entry>
95 {
96 inline void cleaner_cb (ev::timer &w, int revents); ev::timer cleaner;
97
98 bool find (const rsaid &id, rsachallenge &chg)
99 {
100 for (iterator i = begin (); i != end (); ++i)
101 {
102 if (!memcmp (&id, &i->id, sizeof id) && i->expire > ev_now ())
103 {
104 memcpy (&chg, &i->chg, sizeof chg);
105
106 erase (i);
107 return true;
108 }
109 }
110
111 if (!cleaner.is_active ())
112 cleaner.again ();
113
114 return false;
115 }
116
117 void gen (rsaid &id, rsachallenge &chg)
118 {
119 rsa_entry e;
120
121 RAND_bytes ((unsigned char *)&id, sizeof id);
122 RAND_bytes ((unsigned char *)&chg, sizeof chg);
123
124 e.expire = ev_now () + RSA_TTL;
125 e.id = id;
126 memcpy (&e.chg, &chg, sizeof chg);
127
128 push_back (e);
129
130 if (!cleaner.is_active ())
131 cleaner.again ();
132 }
133
134 rsa_cache ()
135 {
136 cleaner.set<rsa_cache, &rsa_cache::cleaner_cb> (this);
137 cleaner.set (RSA_TTL, RSA_TTL);
138 }
139
140 } rsa_cache;
141
142 void rsa_cache::cleaner_cb (ev::timer &w, int revents)
143 {
144 if (empty ())
145 w.stop ();
146 else
147 {
148 for (iterator i = begin (); i != end (); )
149 if (i->expire <= ev_now ())
150 i = erase (i);
151 else
152 ++i;
153 }
154 }
155
156 //////////////////////////////////////////////////////////////////////////////
157
158 pkt_queue::pkt_queue (double max_ttl, int max_queue)
159 : max_ttl (max_ttl), max_queue (max_queue)
160 {
161 queue = new pkt [max_queue];
162
163 i = 0;
164 j = 0;
165
166 expire.set<pkt_queue, &pkt_queue::expire_cb> (this);
167 }
168
169 pkt_queue::~pkt_queue ()
170 {
171 while (net_packet *p = get ())
172 delete p;
173
174 delete [] queue;
175 }
176
177 void pkt_queue::expire_cb (ev::timer &w, int revents)
178 {
179 ev_tstamp expire = ev_now () - max_ttl;
180
181 for (;;)
182 {
183 if (empty ())
184 break;
185
186 double diff = queue[j].tstamp - expire;
187
188 if (diff >= 0.)
189 {
190 w.start (diff > 0.5 ? diff : 0.5);
191 break;
192 }
193
194 delete get ();
195 }
196 }
197
198 void pkt_queue::put (net_packet *p)
199 {
200 ev_tstamp now = ev_now ();
201
202 // start expiry timer
203 if (empty ())
204 expire.start (max_ttl);
205
206 int ni = i + 1 == max_queue ? 0 : i + 1;
207
208 if (ni == j)
209 delete get ();
210
211 queue[i].pkt = p;
212 queue[i].tstamp = now;
213
214 i = ni;
215 }
216
217 net_packet *pkt_queue::get ()
218 {
219 if (empty ())
220 return 0;
221
222 net_packet *p = queue[j].pkt;
223 queue[j].pkt = 0;
224
225 j = j + 1 == max_queue ? 0 : j + 1;
226
227 return p;
228 }
229
230 struct net_rateinfo
231 {
232 u32 host;
233 double pcnt, diff;
234 tstamp last;
235 };
236
237 // only do action once every x seconds per host whole allowing bursts.
238 // this implementation ("splay list" ;) is inefficient,
239 // but low on resources.
240 struct net_rate_limiter : list<net_rateinfo>
241 {
242 # define NRL_ALPHA (1. - 1. / 600.) // allow bursts
243 # define NRL_CUTOFF 10. // one event every CUTOFF seconds
244 # define NRL_EXPIRE (NRL_CUTOFF * 30.) // expire entries after this time
245 # define NRL_MAXDIF (NRL_CUTOFF * (1. / (1. - NRL_ALPHA))) // maximum diff /count value
246
247 bool can (const sockinfo &si) { return can((u32)si.host); }
248 bool can (u32 host);
249 };
250
251 net_rate_limiter auth_rate_limiter, reset_rate_limiter;
252
253 bool net_rate_limiter::can (u32 host)
254 {
255 iterator i;
256
257 for (i = begin (); i != end (); )
258 if (i->host == host)
259 break;
260 else if (i->last < ev_now () - NRL_EXPIRE)
261 i = erase (i);
262 else
263 i++;
264
265 if (i == end ())
266 {
267 net_rateinfo ri;
268
269 ri.host = host;
270 ri.pcnt = 1.;
271 ri.diff = NRL_MAXDIF;
272 ri.last = ev_now ();
273
274 push_front (ri);
275
276 return true;
277 }
278 else
279 {
280 net_rateinfo ri (*i);
281 erase (i);
282
283 ri.pcnt = ri.pcnt * NRL_ALPHA;
284 ri.diff = ri.diff * NRL_ALPHA + (ev_now () - ri.last);
285
286 ri.last = ev_now ();
287
288 double dif = ri.diff / ri.pcnt;
289
290 bool send = dif > NRL_CUTOFF;
291
292 if (dif > NRL_MAXDIF)
293 {
294 ri.pcnt = 1.;
295 ri.diff = NRL_MAXDIF;
296 }
297 else if (send)
298 ri.pcnt++;
299
300 push_front (ri);
301
302 return send;
303 }
304 }
305
306 /////////////////////////////////////////////////////////////////////////////
307
308 unsigned char hmac_packet::hmac_digest[EVP_MAX_MD_SIZE];
309
310 void hmac_packet::hmac_gen (crypto_ctx *ctx)
311 {
312 unsigned int xlen;
313
314 HMAC_CTX *hctx = &ctx->hctx;
315
316 HMAC_Init_ex (hctx, 0, 0, 0, 0);
317 HMAC_Update (hctx, ((unsigned char *) this) + sizeof (hmac_packet),
318 len - sizeof (hmac_packet));
319 HMAC_Final (hctx, (unsigned char *) &hmac_digest, &xlen);
320 }
321
322 void
323 hmac_packet::hmac_set (crypto_ctx *ctx)
324 {
325 hmac_gen (ctx);
326
327 memcpy (hmac, hmac_digest, HMACLENGTH);
328 }
329
330 bool
331 hmac_packet::hmac_chk (crypto_ctx *ctx)
332 {
333 hmac_gen (ctx);
334
335 return !memcmp (hmac, hmac_digest, HMACLENGTH);
336 }
337
338 void vpn_packet::set_hdr (ptype type_, unsigned int dst)
339 {
340 type = type_;
341
342 int src = THISNODE->id;
343
344 src1 = src;
345 srcdst = ((src >> 8) << 4) | (dst >> 8);
346 dst1 = dst;
347 }
348
349 #define MAXVPNDATA (MAX_MTU - 6 - 6)
350 #define DATAHDR (sizeof (u32) + RAND_SIZE)
351
352 struct vpndata_packet : vpn_packet
353 {
354 u8 data[MAXVPNDATA + DATAHDR]; // seqno
355
356 void setup (connection *conn, int dst, u8 *d, u32 len, u32 seqno);
357 tap_packet *unpack (connection *conn, u32 &seqno);
358 private:
359
360 const u32 data_hdr_size () const
361 {
362 return sizeof (vpndata_packet) - sizeof (net_packet) - MAXVPNDATA - DATAHDR;
363 }
364 };
365
366 void
367 vpndata_packet::setup (connection *conn, int dst, u8 *d, u32 l, u32 seqno)
368 {
369 EVP_CIPHER_CTX *cctx = &conn->octx->cctx;
370 int outl = 0, outl2;
371 ptype type = PT_DATA_UNCOMPRESSED;
372
373 #if ENABLE_COMPRESSION
374 u8 cdata[MAX_MTU];
375
376 if (conn->features & ENABLE_COMPRESSION)
377 {
378 u32 cl = lzf_compress (d, l, cdata + 2, (l - 2) & ~7);
379
380 if (cl)
381 {
382 type = PT_DATA_COMPRESSED;
383 d = cdata;
384 l = cl + 2;
385
386 d[0] = cl >> 8;
387 d[1] = cl;
388 }
389 }
390 #endif
391
392 require (EVP_EncryptInit_ex (cctx, 0, 0, 0, 0));
393
394 struct {
395 #if RAND_SIZE
396 u8 rnd[RAND_SIZE];
397 #endif
398 u32 seqno;
399 } datahdr;
400
401 datahdr.seqno = ntohl (seqno);
402 #if RAND_SIZE
403 RAND_pseudo_bytes ((unsigned char *) datahdr.rnd, RAND_SIZE);
404 #endif
405
406 require (EVP_EncryptUpdate (cctx,
407 (unsigned char *) data + outl, &outl2,
408 (unsigned char *) &datahdr, DATAHDR));
409 outl += outl2;
410
411 require (EVP_EncryptUpdate (cctx,
412 (unsigned char *) data + outl, &outl2,
413 (unsigned char *) d, l));
414 outl += outl2;
415
416 require (EVP_EncryptFinal_ex (cctx, (unsigned char *) data + outl, &outl2));
417 outl += outl2;
418
419 len = outl + data_hdr_size ();
420
421 set_hdr (type, dst);
422
423 hmac_set (conn->octx);
424 }
425
426 tap_packet *
427 vpndata_packet::unpack (connection *conn, u32 &seqno)
428 {
429 EVP_CIPHER_CTX *cctx = &conn->ictx->cctx;
430 int outl = 0, outl2;
431 tap_packet *p = new tap_packet;
432 u8 *d;
433 u32 l = len - data_hdr_size ();
434
435 require (EVP_DecryptInit_ex (cctx, 0, 0, 0, 0));
436
437 #if ENABLE_COMPRESSION
438 u8 cdata[MAX_MTU];
439
440 if (type == PT_DATA_COMPRESSED)
441 d = cdata;
442 else
443 #endif
444 d = &(*p)[6 + 6 - DATAHDR];
445
446 /* this overwrites part of the src mac, but we fix that later */
447 require (EVP_DecryptUpdate (cctx,
448 d, &outl2,
449 (unsigned char *)&data, len - data_hdr_size ()));
450 outl += outl2;
451
452 require (EVP_DecryptFinal_ex (cctx, (unsigned char *)d + outl, &outl2));
453 outl += outl2;
454
455 seqno = ntohl (*(u32 *)(d + RAND_SIZE));
456
457 id2mac (dst () ? dst() : THISNODE->id, p->dst);
458 id2mac (src (), p->src);
459
460 #if ENABLE_COMPRESSION
461 if (type == PT_DATA_COMPRESSED)
462 {
463 u32 cl = (d[DATAHDR] << 8) | d[DATAHDR + 1];
464
465 p->len = lzf_decompress (d + DATAHDR + 2, cl < MAX_MTU ? cl : 0,
466 &(*p)[6 + 6], MAX_MTU)
467 + 6 + 6;
468 }
469 else
470 p->len = outl + (6 + 6 - DATAHDR);
471 #endif
472
473 return p;
474 }
475
476 struct ping_packet : vpn_packet
477 {
478 void setup (int dst, ptype type)
479 {
480 set_hdr (type, dst);
481 len = sizeof (*this) - sizeof (net_packet);
482 }
483 };
484
485 struct config_packet : vpn_packet
486 {
487 // actually, hmaclen cannot be checked because the hmac
488 // field comes before this data, so peers with other
489 // hmacs simply will not work.
490 u8 prot_major, prot_minor, randsize, hmaclen;
491 u8 flags, challengelen, features, pad3;
492 u32 cipher_nid, digest_nid, hmac_nid;
493
494 void setup (ptype type, int dst);
495 bool chk_config () const;
496
497 static u8 get_features ()
498 {
499 u8 f = 0;
500 #if ENABLE_COMPRESSION
501 f |= FEATURE_COMPRESSION;
502 #endif
503 #if ENABLE_ROHC
504 f |= FEATURE_ROHC;
505 #endif
506 #if ENABLE_BRIDGING
507 f |= FEATURE_BRIDGING;
508 #endif
509 return f;
510 }
511 };
512
513 void config_packet::setup (ptype type, int dst)
514 {
515 prot_major = PROTOCOL_MAJOR;
516 prot_minor = PROTOCOL_MINOR;
517 randsize = RAND_SIZE;
518 hmaclen = HMACLENGTH;
519 flags = 0;
520 challengelen = sizeof (rsachallenge);
521 features = get_features ();
522
523 cipher_nid = htonl (EVP_CIPHER_nid (CIPHER));
524 digest_nid = htonl (EVP_MD_type (RSA_HASH));
525 hmac_nid = htonl (EVP_MD_type (DIGEST));
526
527 len = sizeof (*this) - sizeof (net_packet);
528 set_hdr (type, dst);
529 }
530
531 bool config_packet::chk_config () const
532 {
533 if (prot_major != PROTOCOL_MAJOR)
534 slog (L_WARN, _("major version mismatch (remote %d <=> local %d)"), prot_major, PROTOCOL_MAJOR);
535 else if (randsize != RAND_SIZE)
536 slog (L_WARN, _("rand size mismatch (remote %d <=> local %d)"), randsize, RAND_SIZE);
537 else if (hmaclen != HMACLENGTH)
538 slog (L_WARN, _("hmac length mismatch (remote %d <=> local %d)"), hmaclen, HMACLENGTH);
539 else if (challengelen != sizeof (rsachallenge))
540 slog (L_WARN, _("challenge length mismatch (remote %d <=> local %d)"), challengelen, sizeof (rsachallenge));
541 else if (cipher_nid != htonl (EVP_CIPHER_nid (CIPHER)))
542 slog (L_WARN, _("cipher mismatch (remote %x <=> local %x)"), ntohl (cipher_nid), EVP_CIPHER_nid (CIPHER));
543 else if (digest_nid != htonl (EVP_MD_type (RSA_HASH)))
544 slog (L_WARN, _("digest mismatch (remote %x <=> local %x)"), ntohl (digest_nid), EVP_MD_type (RSA_HASH));
545 else if (hmac_nid != htonl (EVP_MD_type (DIGEST)))
546 slog (L_WARN, _("hmac mismatch (remote %x <=> local %x)"), ntohl (hmac_nid), EVP_MD_type (DIGEST));
547 else
548 return true;
549
550 return false;
551 }
552
553 struct auth_req_packet : config_packet
554 {
555 char magic[8];
556 u8 initiate; // false if this is just an automatic reply
557 u8 protocols; // supported protocols (will be patched on forward)
558 u8 pad2, pad3;
559 rsaid id;
560 rsaencrdata encr;
561
562 auth_req_packet (int dst, bool initiate_, u8 protocols_)
563 {
564 config_packet::setup (PT_AUTH_REQ, dst);
565 strncpy (magic, MAGIC, 8);
566 initiate = !!initiate_;
567 protocols = protocols_;
568
569 len = sizeof (*this) - sizeof (net_packet);
570 }
571 };
572
573 struct auth_res_packet : config_packet
574 {
575 rsaid id;
576 u8 pad1, pad2, pad3;
577 u8 response_len; // encrypted length
578 rsaresponse response;
579
580 auth_res_packet (int dst)
581 {
582 config_packet::setup (PT_AUTH_RES, dst);
583
584 len = sizeof (*this) - sizeof (net_packet);
585 }
586 };
587
588 struct connect_req_packet : vpn_packet
589 {
590 u8 id, protocols;
591 u8 pad1, pad2;
592
593 connect_req_packet (int dst, int id_, u8 protocols_)
594 : id(id_)
595 , protocols(protocols_)
596 {
597 set_hdr (PT_CONNECT_REQ, dst);
598 len = sizeof (*this) - sizeof (net_packet);
599 }
600 };
601
602 struct connect_info_packet : vpn_packet
603 {
604 u8 id, protocols;
605 u8 pad1, pad2;
606 sockinfo si;
607
608 connect_info_packet (int dst, int id_, const sockinfo &si_, u8 protocols_)
609 : id(id_)
610 , protocols(protocols_)
611 , si(si_)
612 {
613 set_hdr (PT_CONNECT_INFO, dst);
614
615 len = sizeof (*this) - sizeof (net_packet);
616 }
617 };
618
619 /////////////////////////////////////////////////////////////////////////////
620
621 void
622 connection::connection_established ()
623 {
624 slog (L_TRACE, _("%s: possible connection establish (ictx %d, octx %d)"), conf->nodename, !!ictx, !!octx);
625
626 if (ictx && octx)
627 {
628 // make sure rekeying timeouts are slightly asymmetric
629 ev::tstamp rekey_interval = ::conf.rekey + (conf->id > THISNODE->id ? 10 : 0);
630 rekey.start (rekey_interval, rekey_interval);
631 keepalive.start (::conf.keepalive);
632
633 // send queued packets
634 if (ictx && octx)
635 {
636 while (tap_packet *p = (tap_packet *)data_queue.get ())
637 {
638 if (p->len) send_data_packet (p);
639 delete p;
640 }
641
642 while (vpn_packet *p = (vpn_packet *)vpn_queue.get ())
643 {
644 if (p->len) send_vpn_packet (p, si, IPTOS_RELIABILITY);
645 delete p;
646 }
647 }
648 }
649 else
650 {
651 retry_cnt = 0;
652 establish_connection.start (5);
653 keepalive.stop ();
654 rekey.stop ();
655 }
656 }
657
658 void
659 connection::reset_si ()
660 {
661 protocol = best_protocol (THISNODE->protocols & conf->protocols);
662
663 // mask out protocols we cannot establish
664 if (!conf->udp_port) protocol &= ~PROT_UDPv4;
665 if (!conf->tcp_port) protocol &= ~PROT_TCPv4;
666 if (!conf->dns_port) protocol &= ~PROT_DNSv4;
667
668 if (protocol
669 && (!conf->can_direct (THISNODE)
670 || !THISNODE->can_direct (conf)))
671 {
672 slog (L_DEBUG, _("%s: direct connection denied"), conf->nodename);
673 protocol = 0;
674 }
675
676 si.set (conf, protocol);
677 }
678
679 // ensure sockinfo is valid, forward if necessary
680 const sockinfo &
681 connection::forward_si (const sockinfo &si) const
682 {
683 if (!si.valid ())
684 {
685 connection *r = vpn->find_router ();
686
687 if (r)
688 {
689 slog (L_DEBUG, _("%s: no common protocol, trying indirectly through %s (%s)"),
690 conf->nodename, r->conf->nodename, (const char *)r->si);
691 return r->si;
692 }
693 else
694 slog (L_DEBUG, _("%s: node unreachable, no common protocol"),
695 conf->nodename);
696 }
697
698 return si;
699 }
700
701 void
702 connection::send_vpn_packet (vpn_packet *pkt, const sockinfo &si, int tos)
703 {
704 if (!vpn->send_vpn_packet (pkt, si, tos))
705 reset_connection ();
706 }
707
708 void
709 connection::send_ping (const sockinfo &si, u8 pong)
710 {
711 ping_packet *pkt = new ping_packet;
712
713 pkt->setup (conf->id, pong ? ping_packet::PT_PONG : ping_packet::PT_PING);
714 send_vpn_packet (pkt, si, IPTOS_LOWDELAY);
715
716 delete pkt;
717 }
718
719 void
720 connection::send_reset (const sockinfo &si)
721 {
722 if (reset_rate_limiter.can (si) && connectmode != conf_node::C_DISABLED)
723 {
724 config_packet *pkt = new config_packet;
725
726 pkt->setup (vpn_packet::PT_RESET, conf->id);
727 send_vpn_packet (pkt, si, IPTOS_MINCOST);
728
729 delete pkt;
730 }
731 }
732
733 void
734 connection::send_auth_request (const sockinfo &si, bool initiate)
735 {
736 auth_req_packet *pkt = new auth_req_packet (conf->id, initiate, THISNODE->protocols);
737
738 rsachallenge chg;
739 rsa_cache.gen (pkt->id, chg);
740 rsa_encrypt (conf->rsa_key, chg, pkt->encr);
741
742 slog (L_TRACE, ">>%d PT_AUTH_REQ [%s]", conf->id, (const char *)si);
743
744 send_vpn_packet (pkt, si, IPTOS_RELIABILITY | IPTOS_LOWDELAY); // rsa is very very costly
745
746 delete pkt;
747 }
748
749 void
750 connection::send_auth_response (const sockinfo &si, const rsaid &id, const rsachallenge &chg)
751 {
752 auth_res_packet *pkt = new auth_res_packet (conf->id);
753
754 pkt->id = id;
755
756 rsa_hash (id, chg, pkt->response);
757
758 pkt->hmac_set (octx);
759
760 slog (L_TRACE, ">>%d PT_AUTH_RES [%s]", conf->id, (const char *)si);
761
762 send_vpn_packet (pkt, si, IPTOS_RELIABILITY); // rsa is very very costly
763
764 delete pkt;
765 }
766
767 void
768 connection::send_connect_info (int rid, const sockinfo &rsi, u8 rprotocols)
769 {
770 slog (L_TRACE, ">>%d PT_CONNECT_INFO(%d,%s)",
771 conf->id, rid, (const char *)rsi);
772
773 connect_info_packet *r = new connect_info_packet (conf->id, rid, rsi, rprotocols);
774
775 r->hmac_set (octx);
776 send_vpn_packet (r, si);
777
778 delete r;
779 }
780
781 inline void
782 connection::establish_connection_cb (ev::timer &w, int revents)
783 {
784 if (!ictx
785 && conf != THISNODE
786 && connectmode != conf_node::C_NEVER
787 && connectmode != conf_node::C_DISABLED
788 && !w.is_active ())
789 {
790 // a bit hacky, if ondemand, and packets are no longer queued, then reset the connection
791 // and stop trying. should probably be handled by a per-connection expire handler.
792 if (connectmode == conf_node::C_ONDEMAND && vpn_queue.empty () && data_queue.empty ())
793 {
794 reset_connection ();
795 return;
796 }
797
798 ev::tstamp retry_int = ev::tstamp (retry_cnt & 3
799 ? (retry_cnt & 3) + 1
800 : 1 << (retry_cnt >> 2));
801
802 reset_si ();
803
804 bool slow = si.prot & PROT_SLOW;
805
806 if (si.prot && !si.host)
807 {
808 slog (L_TRACE, _("%s: connection request (indirect)"), conf->nodename);
809 /*TODO*/ /* start the timer so we don't recurse endlessly */
810 w.start (1);
811 vpn->send_connect_request (conf->id);
812 }
813 else
814 {
815 slog (L_TRACE, _("%s: connection request (direct)"), conf->nodename, !!ictx, !!octx);
816
817 const sockinfo &dsi = forward_si (si);
818
819 slow = slow || (dsi.prot & PROT_SLOW);
820
821 if (dsi.valid () && auth_rate_limiter.can (dsi))
822 {
823 if (retry_cnt < 4)
824 send_auth_request (dsi, true);
825 else
826 send_ping (dsi, 0);
827 }
828 }
829
830 retry_int *= slow ? 8. : 0.7;
831
832 if (retry_int < conf->max_retry)
833 retry_cnt++;
834 else
835 retry_int = conf->max_retry;
836
837 w.start (retry_int);
838 }
839 }
840
841 void
842 connection::reset_connection ()
843 {
844 if (ictx && octx)
845 {
846 slog (L_INFO, _("%s(%s): connection lost"),
847 conf->nodename, (const char *)si);
848
849 if (::conf.script_node_down)
850 {
851 run_script_cb cb;
852 cb.set<connection, &connection::script_node_down> (this);
853 if (!run_script (cb, false))
854 slog (L_WARN, _("node-down command execution failed, continuing."));
855 }
856 }
857
858 delete ictx; ictx = 0;
859 delete octx; octx = 0;
860 #if ENABLE_DNS
861 dnsv4_reset_connection ();
862 #endif
863
864 si.host = 0;
865
866 last_activity = 0;
867 retry_cnt = 0;
868
869 rekey.stop ();
870 keepalive.stop ();
871 establish_connection.stop ();
872 }
873
874 void
875 connection::shutdown ()
876 {
877 if (ictx && octx)
878 send_reset (si);
879
880 reset_connection ();
881 }
882
883 inline void
884 connection::rekey_cb (ev::timer &w, int revents)
885 {
886 reset_connection ();
887 establish_connection ();
888 }
889
890 void
891 connection::send_data_packet (tap_packet *pkt)
892 {
893 vpndata_packet *p = new vpndata_packet;
894 int tos = 0;
895
896 // I am not hilarious about peeking into packets, but so be it.
897 if (conf->inherit_tos && pkt->is_ipv4 ())
898 tos = (*pkt)[15] & IPTOS_TOS_MASK;
899
900 p->setup (this, conf->id, &((*pkt)[6 + 6]), pkt->len - 6 - 6, ++oseqno); // skip 2 macs
901 send_vpn_packet (p, si, tos);
902
903 delete p;
904
905 if (oseqno > MAX_SEQNO)
906 rekey ();
907 }
908
909 void
910 connection::inject_data_packet (tap_packet *pkt, bool broadcast/*TODO DDD*/)
911 {
912 if (ictx && octx)
913 send_data_packet (pkt);
914 else
915 {
916 if (!broadcast)
917 data_queue.put (new tap_packet (*pkt));
918
919 establish_connection ();
920 }
921 }
922
923 void connection::inject_vpn_packet (vpn_packet *pkt, int tos)
924 {
925 if (ictx && octx)
926 send_vpn_packet (pkt, si, tos);
927 else
928 {
929 vpn_queue.put ((vpn_packet *)new data_packet (*(data_packet *)pkt));
930
931 establish_connection ();
932 }
933 }
934
935 void
936 connection::recv_vpn_packet (vpn_packet *pkt, const sockinfo &rsi)
937 {
938 last_activity = ev_now ();
939
940 slog (L_NOISE, "<<%d received packet type %d from %d to %d",
941 conf->id, pkt->typ (), pkt->src (), pkt->dst ());
942
943 if (connectmode == conf_node::C_DISABLED)
944 return;
945
946 switch (pkt->typ ())
947 {
948 case vpn_packet::PT_PING:
949 // we send pings instead of auth packets after some retries,
950 // so reset the retry counter and establish a connection
951 // when we receive a ping.
952 if (!ictx)
953 {
954 if (auth_rate_limiter.can (rsi))
955 send_auth_request (rsi, true);
956 }
957 else
958 send_ping (rsi, 1); // pong
959
960 break;
961
962 case vpn_packet::PT_PONG:
963 break;
964
965 case vpn_packet::PT_RESET:
966 {
967 reset_connection ();
968
969 config_packet *p = (config_packet *) pkt;
970
971 if (!p->chk_config ())
972 {
973 slog (L_WARN, _("%s(%s): protocol mismatch, disabling node"),
974 conf->nodename, (const char *)rsi);
975 connectmode = conf_node::C_DISABLED;
976 }
977 else if (connectmode == conf_node::C_ALWAYS)
978 establish_connection ();
979 }
980 break;
981
982 case vpn_packet::PT_AUTH_REQ:
983 if (auth_rate_limiter.can (rsi))
984 {
985 auth_req_packet *p = (auth_req_packet *) pkt;
986
987 slog (L_TRACE, "<<%d PT_AUTH_REQ(%d)", conf->id, p->initiate);
988
989 if (p->chk_config () && !strncmp (p->magic, MAGIC, 8))
990 {
991 if (p->prot_minor != PROTOCOL_MINOR)
992 slog (L_INFO, _("%s(%s): protocol minor version mismatch: ours is %d, %s's is %d."),
993 conf->nodename, (const char *)rsi,
994 PROTOCOL_MINOR, conf->nodename, p->prot_minor);
995
996 if (p->initiate)
997 send_auth_request (rsi, false);
998
999 rsachallenge k;
1000
1001 if (!rsa_decrypt (::conf.rsa_key, p->encr, k))
1002 {
1003 slog (L_ERR, _("%s(%s): challenge illegal or corrupted (%s). mismatched key or config file?"),
1004 conf->nodename, (const char *)rsi, ERR_error_string (ERR_get_error (), 0));
1005 break;
1006 }
1007 else
1008 {
1009 delete octx;
1010
1011 octx = new crypto_ctx (k, 1);
1012 oseqno = ntohl (*(u32 *)&k[CHG_SEQNO]) & 0x7fffffff;
1013
1014 conf->protocols = p->protocols;
1015 features = p->features & config_packet::get_features ();
1016
1017 send_auth_response (rsi, p->id, k);
1018
1019 connection_established ();
1020
1021 break;
1022 }
1023 }
1024 else
1025 slog (L_WARN, _("%s(%s): protocol mismatch"),
1026 conf->nodename, (const char *)rsi);
1027
1028 send_reset (rsi);
1029 }
1030
1031 break;
1032
1033 case vpn_packet::PT_AUTH_RES:
1034 {
1035 auth_res_packet *p = (auth_res_packet *) pkt;
1036
1037 slog (L_TRACE, "<<%d PT_AUTH_RES", conf->id);
1038
1039 if (p->chk_config ())
1040 {
1041 if (p->prot_minor != PROTOCOL_MINOR)
1042 slog (L_INFO, _("%s(%s): protocol minor version mismatch: ours is %d, %s's is %d."),
1043 conf->nodename, (const char *)rsi,
1044 PROTOCOL_MINOR, conf->nodename, p->prot_minor);
1045
1046 rsachallenge chg;
1047
1048 if (!rsa_cache.find (p->id, chg))
1049 {
1050 slog (L_ERR, _("%s(%s): unrequested auth response ignored"),
1051 conf->nodename, (const char *)rsi);
1052 break;
1053 }
1054 else
1055 {
1056 crypto_ctx *cctx = new crypto_ctx (chg, 0);
1057
1058 if (!p->hmac_chk (cctx))
1059 {
1060 slog (L_ERR, _("%s(%s): hmac authentication error on auth response, received invalid packet\n"
1061 "could be an attack, or just corruption or a synchronization error"),
1062 conf->nodename, (const char *)rsi);
1063 break;
1064 }
1065 else
1066 {
1067 rsaresponse h;
1068
1069 rsa_hash (p->id, chg, h);
1070
1071 if (!memcmp ((u8 *)&h, (u8 *)p->response, sizeof h))
1072 {
1073 prot_minor = p->prot_minor;
1074
1075 delete ictx; ictx = cctx;
1076
1077 iseqno.reset (ntohl (*(u32 *)&chg[CHG_SEQNO]) & 0x7fffffff); // at least 2**31 sequence numbers are valid
1078
1079 si = rsi;
1080 protocol = rsi.prot;
1081
1082 connection_established ();
1083
1084 slog (L_INFO, _("%s(%s): connection established, protocol version %d.%d"),
1085 conf->nodename, (const char *)rsi,
1086 p->prot_major, p->prot_minor);
1087
1088 if (::conf.script_node_up)
1089 {
1090 run_script_cb cb;
1091 cb.set<connection, &connection::script_node_up> (this);
1092 if (!run_script (cb, false))
1093 slog (L_WARN, _("node-up command execution failed, continuing."));
1094 }
1095
1096 break;
1097 }
1098 else
1099 slog (L_ERR, _("%s(%s): sent and received challenge do not match"),
1100 conf->nodename, (const char *)rsi);
1101 }
1102
1103 delete cctx;
1104 }
1105 }
1106 }
1107
1108 send_reset (rsi);
1109 break;
1110
1111 case vpn_packet::PT_DATA_COMPRESSED:
1112 #if !ENABLE_COMPRESSION
1113 send_reset (rsi);
1114 break;
1115 #endif
1116
1117 case vpn_packet::PT_DATA_UNCOMPRESSED:
1118
1119 if (ictx && octx)
1120 {
1121 vpndata_packet *p = (vpndata_packet *)pkt;
1122
1123 if (!p->hmac_chk (ictx))
1124 slog (L_ERR, _("%s(%s): hmac authentication error, received invalid packet\n"
1125 "could be an attack, or just corruption or a synchronization error"),
1126 conf->nodename, (const char *)rsi);
1127 else
1128 {
1129 u32 seqno;
1130 tap_packet *d = p->unpack (this, seqno);
1131
1132 if (iseqno.recv_ok (seqno))
1133 {
1134 vpn->tap->send (d);
1135
1136 if (si != rsi)
1137 {
1138 // fast re-sync on source address changes, useful especially for tcp/ip
1139 si = rsi;
1140
1141 slog (L_INFO, _("%s(%s): socket address changed to %s"),
1142 conf->nodename, (const char *)si, (const char *)rsi);
1143 }
1144 }
1145
1146 delete d;
1147 break;
1148 }
1149 }
1150
1151 send_reset (rsi);
1152 break;
1153
1154 case vpn_packet::PT_CONNECT_REQ:
1155 if (ictx && octx && rsi == si && pkt->hmac_chk (ictx))
1156 {
1157 connect_req_packet *p = (connect_req_packet *) pkt;
1158
1159 if (p->id > 0 && p->id <= vpn->conns.size ())
1160 {
1161 connection *c = vpn->conns[p->id - 1];
1162 conf->protocols = p->protocols;
1163
1164 slog (L_TRACE, "<<%d PT_CONNECT_REQ(%d) [%d]",
1165 conf->id, p->id, c->ictx && c->octx);
1166
1167 if (c->ictx && c->octx)
1168 {
1169 // send connect_info packets to both sides, in case one is
1170 // behind a nat firewall (or both ;)
1171 c->send_connect_info (conf->id, si, conf->protocols);
1172 send_connect_info (c->conf->id, c->si, c->conf->protocols);
1173 }
1174 else
1175 c->establish_connection ();
1176 }
1177 else
1178 slog (L_WARN,
1179 _("received authenticated connection request from unknown node #%d, config file mismatch?"),
1180 p->id);
1181 }
1182
1183 break;
1184
1185 case vpn_packet::PT_CONNECT_INFO:
1186 if (ictx && octx && rsi == si && pkt->hmac_chk (ictx))
1187 {
1188 connect_info_packet *p = (connect_info_packet *)pkt;
1189
1190 if (p->id > 0 && p->id <= vpn->conns.size ())
1191 {
1192 connection *c = vpn->conns[p->id - 1];
1193
1194 c->conf->protocols = p->protocols;
1195 protocol = best_protocol (c->conf->protocols & THISNODE->protocols & p->si.supported_protocols (c->conf));
1196 p->si.upgrade_protocol (protocol, c->conf);
1197
1198 slog (L_TRACE, "<<%d PT_CONNECT_INFO(%d,%s) (%d)",
1199 conf->id, p->id, (const char *)p->si, !c->ictx && !c->octx);
1200
1201 const sockinfo &dsi = forward_si (p->si);
1202
1203 if (dsi.valid ())
1204 c->send_auth_request (dsi, true);
1205 }
1206 else
1207 slog (L_WARN,
1208 _("received authenticated connection request from unknown node #%d, config file mismatch?"),
1209 p->id);
1210 }
1211
1212 break;
1213
1214 default:
1215 send_reset (rsi);
1216 break;
1217 }
1218 }
1219
1220 inline void
1221 connection::keepalive_cb (ev::timer &w, int revents)
1222 {
1223 if (ev_now () >= last_activity + ::conf.keepalive + 30)
1224 {
1225 reset_connection ();
1226 establish_connection ();
1227 }
1228 else if (ev_now () < last_activity + ::conf.keepalive)
1229 w.start (last_activity + ::conf.keepalive - ev::now ());
1230 else if (conf->connectmode != conf_node::C_ONDEMAND
1231 || THISNODE->connectmode != conf_node::C_ONDEMAND)
1232 {
1233 send_ping (si);
1234 w.start (5);
1235 }
1236 else if (ev_now () < last_activity + ::conf.keepalive + 10)
1237 // hold ondemand connections implicitly a few seconds longer
1238 // should delete octx, though, or something like that ;)
1239 w.start (last_activity + ::conf.keepalive + 10 - ev::now ());
1240 else
1241 reset_connection ();
1242 }
1243
1244 void connection::send_connect_request (int id)
1245 {
1246 connect_req_packet *p = new connect_req_packet (conf->id, id, conf->protocols);
1247
1248 slog (L_TRACE, ">>%d PT_CONNECT_REQ(%d)", conf->id, id);
1249 p->hmac_set (octx);
1250 send_vpn_packet (p, si);
1251
1252 delete p;
1253 }
1254
1255 void connection::script_init_env (const char *ext)
1256 {
1257 char *env;
1258 asprintf (&env, "IFUPDATA%s=%s", ext, conf->if_up_data); putenv (env);
1259 asprintf (&env, "NODENAME%s=%s", ext, conf->nodename); putenv (env);
1260 asprintf (&env, "MAC%s=%02x:%02x:%02x:%02x:%02x:%02x", ext,
1261 0xfe, 0xfd, 0x80, 0x00, conf->id >> 8,
1262 conf->id & 0xff); putenv (env);
1263 }
1264
1265 void connection::script_init_connect_env ()
1266 {
1267 vpn->script_init_env ();
1268
1269 char *env;
1270 asprintf (&env, "DESTID=%d", conf->id); putenv (env);
1271 asprintf (&env, "DESTNODE=%s", conf->nodename); putenv (env);
1272 asprintf (&env, "DESTIP=%s", si.ntoa ()); putenv (env);
1273 asprintf (&env, "DESTPORT=%d", ntohs (si.port)); putenv (env);
1274 }
1275
1276 inline const char *
1277 connection::script_node_up ()
1278 {
1279 script_init_connect_env ();
1280
1281 putenv ((char *)"STATE=up");
1282
1283 char *filename;
1284 asprintf (&filename,
1285 "%s/%s",
1286 confbase,
1287 ::conf.script_node_up ? ::conf.script_node_up : "node-up");
1288
1289 return filename;
1290 }
1291
1292 inline const char *
1293 connection::script_node_down ()
1294 {
1295 script_init_connect_env ();
1296
1297 putenv ((char *)"STATE=down");
1298
1299 char *filename;
1300 asprintf (&filename,
1301 "%s/%s",
1302 confbase,
1303 ::conf.script_node_down ? ::conf.script_node_down : "node-down");
1304
1305 return filename;
1306 }
1307
1308 connection::connection (struct vpn *vpn, conf_node *conf)
1309 : vpn(vpn), conf(conf),
1310 #if ENABLE_DNS
1311 dns (0),
1312 #endif
1313 data_queue(conf->max_ttl, conf->max_queue),
1314 vpn_queue(conf->max_ttl, conf->max_queue)
1315 {
1316 rekey .set<connection, &connection::rekey_cb > (this);
1317 keepalive .set<connection, &connection::keepalive_cb > (this);
1318 establish_connection.set<connection, &connection::establish_connection_cb> (this);
1319
1320 octx = ictx = 0;
1321 retry_cnt = 0;
1322
1323 if (!conf->protocols) // make sure some protocol is enabled
1324 conf->protocols = PROT_UDPv4;
1325
1326 connectmode = conf->connectmode;
1327
1328 // queue a dummy packet to force an initial connection attempt
1329 if (connectmode != conf_node::C_ALWAYS && connectmode != conf_node::C_DISABLED)
1330 {
1331 net_packet *p = new net_packet;
1332 p->len = 0;
1333 vpn_queue.put (p);
1334 }
1335
1336 reset_connection ();
1337 }
1338
1339 connection::~connection ()
1340 {
1341 shutdown ();
1342 }
1343
1344 void connection_init ()
1345 {
1346 auth_rate_limiter.clear ();
1347 reset_rate_limiter.clear ();
1348 }
1349