ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/gvpe/src/connection.C
Revision: 1.84
Committed: Sat Jul 18 05:59:16 2009 UTC (14 years, 10 months ago) by pcg
Content type: text/plain
Branch: MAIN
Changes since 1.83: +32 -7 lines
Log Message: 
riddify us of meta.yml garbage in manifest

File Contents

# Content
1 /*
2 connection.C -- manage a single connection
3 Copyright (C) 2003-2008 Marc Lehmann <gvpe@schmorp.de>
4
5 This file is part of GVPE.
6
7 GVPE is free software; you can redistribute it and/or modify it
8 under the terms of the GNU General Public License as published by the
9 Free Software Foundation; either version 3 of the License, or (at your
10 option) any later version.
11
12 This program is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General
15 Public License for more details.
16
17 You should have received a copy of the GNU General Public License along
18 with this program; if not, see <http://www.gnu.org/licenses/>.
19
20 Additional permission under GNU GPL version 3 section 7
21
22 If you modify this Program, or any covered work, by linking or
23 combining it with the OpenSSL project's OpenSSL library (or a modified
24 version of that library), containing parts covered by the terms of the
25 OpenSSL or SSLeay licenses, the licensors of this Program grant you
26 additional permission to convey the resulting work. Corresponding
27 Source for a non-source form of such a combination shall include the
28 source code for the parts of OpenSSL used as well as that of the
29 covered work.
30 */
31
32 #include "config.h"
33
34 #include <list>
35 #include <queue>
36 #include <utility>
37
38 #include <openssl/rand.h>
39 #include <openssl/evp.h>
40 #include <openssl/rsa.h>
41 #include <openssl/err.h>
42
43 #include "conf.h"
44 #include "slog.h"
45 #include "device.h"
46 #include "vpn.h"
47 #include "connection.h"
48
49 #include "netcompat.h"
50
51 #if !HAVE_RAND_PSEUDO_BYTES
52 # define RAND_pseudo_bytes RAND_bytes
53 #endif
54
55 #define MAGIC "vped\xbd\xc6\xdb\x82" // 8 bytes of magic
56
57 #define ULTRA_FAST 1
58 #define HLOG 15
59 #include "lzf/lzf.h"
60 #include "lzf/lzf_c.c"
61 #include "lzf/lzf_d.c"
62
63 //////////////////////////////////////////////////////////////////////////////
64
65 static std::queue< std::pair<run_script_cb *, const char *> > rs_queue;
66 static ev::child rs_child_ev;
67
68 void // c++ requires external linkage here, apparently :(
69 rs_child_cb (ev::child &w, int revents)
70 {
71 w.stop ();
72
73 if (rs_queue.empty ())
74 return;
75
76 pid_t pid = run_script (*rs_queue.front ().first, false);
77 if (pid)
78 {
79 w.set (pid);
80 w.start ();
81 }
82 else
83 slog (L_WARN, rs_queue.front ().second);
84
85 delete rs_queue.front ().first;
86 rs_queue.pop ();
87 }
88
89 // despite the fancy name, this is quite a hack
90 static void
91 run_script_queued (run_script_cb *cb, const char *warnmsg)
92 {
93 rs_queue.push (std::make_pair (cb, warnmsg));
94
95 if (!rs_child_ev.is_active ())
96 {
97 rs_child_ev.set<rs_child_cb> ();
98 rs_child_ev ();
99 }
100 }
101
102 //////////////////////////////////////////////////////////////////////////////
103
104 struct crypto_ctx
105 {
106 EVP_CIPHER_CTX cctx;
107 HMAC_CTX hctx;
108
109 crypto_ctx (const rsachallenge &challenge, int enc);
110 ~crypto_ctx ();
111 };
112
113 crypto_ctx::crypto_ctx (const rsachallenge &challenge, int enc)
114 {
115 EVP_CIPHER_CTX_init (&cctx);
116 require (EVP_CipherInit_ex (&cctx, CIPHER, 0, &challenge[CHG_CIPHER_KEY], 0, enc));
117 HMAC_CTX_init (&hctx);
118 HMAC_Init_ex (&hctx, &challenge[CHG_HMAC_KEY], HMAC_KEYLEN, DIGEST, 0);
119 }
120
121 crypto_ctx::~crypto_ctx ()
122 {
123 require (EVP_CIPHER_CTX_cleanup (&cctx));
124 HMAC_CTX_cleanup (&hctx);
125 }
126
127 static void
128 rsa_hash (const rsaid &id, const rsachallenge &chg, rsaresponse &h)
129 {
130 EVP_MD_CTX ctx;
131
132 EVP_MD_CTX_init (&ctx);
133 require (EVP_DigestInit (&ctx, RSA_HASH));
134 require (EVP_DigestUpdate(&ctx, &chg, sizeof chg));
135 require (EVP_DigestUpdate(&ctx, &id, sizeof id));
136 require (EVP_DigestFinal (&ctx, (unsigned char *)&h, 0));
137 EVP_MD_CTX_cleanup (&ctx);
138 }
139
140 struct rsa_entry
141 {
142 tstamp expire;
143 rsaid id;
144 rsachallenge chg;
145 };
146
147 struct rsa_cache : list<rsa_entry>
148 {
149 inline void cleaner_cb (ev::timer &w, int revents); ev::timer cleaner;
150
151 bool find (const rsaid &id, rsachallenge &chg)
152 {
153 for (iterator i = begin (); i != end (); ++i)
154 {
155 if (!memcmp (&id, &i->id, sizeof id) && i->expire > ev_now ())
156 {
157 memcpy (&chg, &i->chg, sizeof chg);
158
159 erase (i);
160 return true;
161 }
162 }
163
164 if (!cleaner.is_active ())
165 cleaner.again ();
166
167 return false;
168 }
169
170 void gen (rsaid &id, rsachallenge &chg)
171 {
172 rsa_entry e;
173
174 RAND_bytes ((unsigned char *)&id, sizeof id);
175 RAND_bytes ((unsigned char *)&chg, sizeof chg);
176
177 e.expire = ev_now () + RSA_TTL;
178 e.id = id;
179 memcpy (&e.chg, &chg, sizeof chg);
180
181 push_back (e);
182
183 if (!cleaner.is_active ())
184 cleaner.again ();
185 }
186
187 rsa_cache ()
188 {
189 cleaner.set<rsa_cache, &rsa_cache::cleaner_cb> (this);
190 cleaner.set (RSA_TTL, RSA_TTL);
191 }
192
193 } rsa_cache;
194
195 void rsa_cache::cleaner_cb (ev::timer &w, int revents)
196 {
197 if (empty ())
198 w.stop ();
199 else
200 {
201 for (iterator i = begin (); i != end (); )
202 if (i->expire <= ev_now ())
203 i = erase (i);
204 else
205 ++i;
206 }
207 }
208
209 //////////////////////////////////////////////////////////////////////////////
210
211 pkt_queue::pkt_queue (double max_ttl, int max_queue)
212 : max_ttl (max_ttl), max_queue (max_queue)
213 {
214 queue = new pkt [max_queue];
215
216 i = 0;
217 j = 0;
218
219 expire.set<pkt_queue, &pkt_queue::expire_cb> (this);
220 }
221
222 pkt_queue::~pkt_queue ()
223 {
224 while (net_packet *p = get ())
225 delete p;
226
227 delete [] queue;
228 }
229
230 void pkt_queue::expire_cb (ev::timer &w, int revents)
231 {
232 ev_tstamp expire = ev_now () - max_ttl;
233
234 for (;;)
235 {
236 if (empty ())
237 break;
238
239 double diff = queue[j].tstamp - expire;
240
241 if (diff >= 0.)
242 {
243 w.start (diff > 0.5 ? diff : 0.5);
244 break;
245 }
246
247 delete get ();
248 }
249 }
250
251 void pkt_queue::put (net_packet *p)
252 {
253 ev_tstamp now = ev_now ();
254
255 // start expiry timer
256 if (empty ())
257 expire.start (max_ttl);
258
259 int ni = i + 1 == max_queue ? 0 : i + 1;
260
261 if (ni == j)
262 delete get ();
263
264 queue[i].pkt = p;
265 queue[i].tstamp = now;
266
267 i = ni;
268 }
269
270 net_packet *pkt_queue::get ()
271 {
272 if (empty ())
273 return 0;
274
275 net_packet *p = queue[j].pkt;
276 queue[j].pkt = 0;
277
278 j = j + 1 == max_queue ? 0 : j + 1;
279
280 return p;
281 }
282
283 struct net_rateinfo
284 {
285 u32 host;
286 double pcnt, diff;
287 tstamp last;
288 };
289
290 // only do action once every x seconds per host whole allowing bursts.
291 // this implementation ("splay list" ;) is inefficient,
292 // but low on resources.
293 struct net_rate_limiter : list<net_rateinfo>
294 {
295 # define NRL_ALPHA (1. - 1. / 600.) // allow bursts
296 # define NRL_CUTOFF 10. // one event every CUTOFF seconds
297 # define NRL_EXPIRE (NRL_CUTOFF * 30.) // expire entries after this time
298 # define NRL_MAXDIF (NRL_CUTOFF * (1. / (1. - NRL_ALPHA))) // maximum diff /count value
299
300 bool can (const sockinfo &si) { return can((u32)si.host); }
301 bool can (u32 host);
302 };
303
304 net_rate_limiter auth_rate_limiter, reset_rate_limiter;
305
306 bool net_rate_limiter::can (u32 host)
307 {
308 iterator i;
309
310 for (i = begin (); i != end (); )
311 if (i->host == host)
312 break;
313 else if (i->last < ev_now () - NRL_EXPIRE)
314 i = erase (i);
315 else
316 i++;
317
318 if (i == end ())
319 {
320 net_rateinfo ri;
321
322 ri.host = host;
323 ri.pcnt = 1.;
324 ri.diff = NRL_MAXDIF;
325 ri.last = ev_now ();
326
327 push_front (ri);
328
329 return true;
330 }
331 else
332 {
333 net_rateinfo ri (*i);
334 erase (i);
335
336 ri.pcnt = ri.pcnt * NRL_ALPHA;
337 ri.diff = ri.diff * NRL_ALPHA + (ev_now () - ri.last);
338
339 ri.last = ev_now ();
340
341 double dif = ri.diff / ri.pcnt;
342
343 bool send = dif > NRL_CUTOFF;
344
345 if (dif > NRL_MAXDIF)
346 {
347 ri.pcnt = 1.;
348 ri.diff = NRL_MAXDIF;
349 }
350 else if (send)
351 ri.pcnt++;
352
353 push_front (ri);
354
355 return send;
356 }
357 }
358
359 /////////////////////////////////////////////////////////////////////////////
360
361 unsigned char hmac_packet::hmac_digest[EVP_MAX_MD_SIZE];
362
363 void hmac_packet::hmac_gen (crypto_ctx *ctx)
364 {
365 unsigned int xlen;
366
367 HMAC_CTX *hctx = &ctx->hctx;
368
369 HMAC_Init_ex (hctx, 0, 0, 0, 0);
370 HMAC_Update (hctx, ((unsigned char *) this) + sizeof (hmac_packet),
371 len - sizeof (hmac_packet));
372 HMAC_Final (hctx, (unsigned char *) &hmac_digest, &xlen);
373 }
374
375 void
376 hmac_packet::hmac_set (crypto_ctx *ctx)
377 {
378 hmac_gen (ctx);
379
380 memcpy (hmac, hmac_digest, HMACLENGTH);
381 }
382
383 bool
384 hmac_packet::hmac_chk (crypto_ctx *ctx)
385 {
386 hmac_gen (ctx);
387
388 return !memcmp (hmac, hmac_digest, HMACLENGTH);
389 }
390
391 void vpn_packet::set_hdr (ptype type_, unsigned int dst)
392 {
393 type = type_;
394
395 int src = THISNODE->id;
396
397 src1 = src;
398 srcdst = ((src >> 8) << 4) | (dst >> 8);
399 dst1 = dst;
400 }
401
402 #define MAXVPNDATA (MAX_MTU - 6 - 6)
403 #define DATAHDR (sizeof (u32) + RAND_SIZE)
404
405 struct vpndata_packet : vpn_packet
406 {
407 u8 data[MAXVPNDATA + DATAHDR]; // seqno
408
409 void setup (connection *conn, int dst, u8 *d, u32 len, u32 seqno);
410 tap_packet *unpack (connection *conn, u32 &seqno);
411 private:
412
413 const u32 data_hdr_size () const
414 {
415 return sizeof (vpndata_packet) - sizeof (net_packet) - MAXVPNDATA - DATAHDR;
416 }
417 };
418
419 void
420 vpndata_packet::setup (connection *conn, int dst, u8 *d, u32 l, u32 seqno)
421 {
422 EVP_CIPHER_CTX *cctx = &conn->octx->cctx;
423 int outl = 0, outl2;
424 ptype type = PT_DATA_UNCOMPRESSED;
425
426 #if ENABLE_COMPRESSION
427 u8 cdata[MAX_MTU];
428
429 if (conn->features & ENABLE_COMPRESSION)
430 {
431 u32 cl = lzf_compress (d, l, cdata + 2, (l - 2) & ~7);
432
433 if (cl)
434 {
435 type = PT_DATA_COMPRESSED;
436 d = cdata;
437 l = cl + 2;
438
439 d[0] = cl >> 8;
440 d[1] = cl;
441 }
442 }
443 #endif
444
445 require (EVP_EncryptInit_ex (cctx, 0, 0, 0, 0));
446
447 struct {
448 #if RAND_SIZE
449 u8 rnd[RAND_SIZE];
450 #endif
451 u32 seqno;
452 } datahdr;
453
454 datahdr.seqno = ntohl (seqno);
455 #if RAND_SIZE
456 RAND_pseudo_bytes ((unsigned char *) datahdr.rnd, RAND_SIZE);
457 #endif
458
459 require (EVP_EncryptUpdate (cctx,
460 (unsigned char *) data + outl, &outl2,
461 (unsigned char *) &datahdr, DATAHDR));
462 outl += outl2;
463
464 require (EVP_EncryptUpdate (cctx,
465 (unsigned char *) data + outl, &outl2,
466 (unsigned char *) d, l));
467 outl += outl2;
468
469 require (EVP_EncryptFinal_ex (cctx, (unsigned char *) data + outl, &outl2));
470 outl += outl2;
471
472 len = outl + data_hdr_size ();
473
474 set_hdr (type, dst);
475
476 hmac_set (conn->octx);
477 }
478
479 tap_packet *
480 vpndata_packet::unpack (connection *conn, u32 &seqno)
481 {
482 EVP_CIPHER_CTX *cctx = &conn->ictx->cctx;
483 int outl = 0, outl2;
484 tap_packet *p = new tap_packet;
485 u8 *d;
486 u32 l = len - data_hdr_size ();
487
488 require (EVP_DecryptInit_ex (cctx, 0, 0, 0, 0));
489
490 #if ENABLE_COMPRESSION
491 u8 cdata[MAX_MTU];
492
493 if (type == PT_DATA_COMPRESSED)
494 d = cdata;
495 else
496 #endif
497 d = &(*p)[6 + 6 - DATAHDR];
498
499 /* this overwrites part of the src mac, but we fix that later */
500 require (EVP_DecryptUpdate (cctx,
501 d, &outl2,
502 (unsigned char *)&data, len - data_hdr_size ()));
503 outl += outl2;
504
505 require (EVP_DecryptFinal_ex (cctx, (unsigned char *)d + outl, &outl2));
506 outl += outl2;
507
508 seqno = ntohl (*(u32 *)(d + RAND_SIZE));
509
510 id2mac (dst () ? dst() : THISNODE->id, p->dst);
511 id2mac (src (), p->src);
512
513 #if ENABLE_COMPRESSION
514 if (type == PT_DATA_COMPRESSED)
515 {
516 u32 cl = (d[DATAHDR] << 8) | d[DATAHDR + 1];
517
518 p->len = lzf_decompress (d + DATAHDR + 2, cl < MAX_MTU ? cl : 0,
519 &(*p)[6 + 6], MAX_MTU)
520 + 6 + 6;
521 }
522 else
523 p->len = outl + (6 + 6 - DATAHDR);
524 #endif
525
526 return p;
527 }
528
529 struct ping_packet : vpn_packet
530 {
531 void setup (int dst, ptype type)
532 {
533 set_hdr (type, dst);
534 len = sizeof (*this) - sizeof (net_packet);
535 }
536 };
537
538 struct config_packet : vpn_packet
539 {
540 // actually, hmaclen cannot be checked because the hmac
541 // field comes before this data, so peers with other
542 // hmacs simply will not work.
543 u8 prot_major, prot_minor, randsize, hmaclen;
544 u8 flags, challengelen, features, pad3;
545 u32 cipher_nid, digest_nid, hmac_nid;
546
547 void setup (ptype type, int dst);
548 bool chk_config () const;
549
550 static u8 get_features ()
551 {
552 u8 f = 0;
553 #if ENABLE_COMPRESSION
554 f |= FEATURE_COMPRESSION;
555 #endif
556 #if ENABLE_ROHC
557 f |= FEATURE_ROHC;
558 #endif
559 #if ENABLE_BRIDGING
560 f |= FEATURE_BRIDGING;
561 #endif
562 return f;
563 }
564 };
565
566 void config_packet::setup (ptype type, int dst)
567 {
568 prot_major = PROTOCOL_MAJOR;
569 prot_minor = PROTOCOL_MINOR;
570 randsize = RAND_SIZE;
571 hmaclen = HMACLENGTH;
572 flags = 0;
573 challengelen = sizeof (rsachallenge);
574 features = get_features ();
575
576 cipher_nid = htonl (EVP_CIPHER_nid (CIPHER));
577 digest_nid = htonl (EVP_MD_type (RSA_HASH));
578 hmac_nid = htonl (EVP_MD_type (DIGEST));
579
580 len = sizeof (*this) - sizeof (net_packet);
581 set_hdr (type, dst);
582 }
583
584 bool config_packet::chk_config () const
585 {
586 if (prot_major != PROTOCOL_MAJOR)
587 slog (L_WARN, _("major version mismatch (remote %d <=> local %d)"), prot_major, PROTOCOL_MAJOR);
588 else if (randsize != RAND_SIZE)
589 slog (L_WARN, _("rand size mismatch (remote %d <=> local %d)"), randsize, RAND_SIZE);
590 else if (hmaclen != HMACLENGTH)
591 slog (L_WARN, _("hmac length mismatch (remote %d <=> local %d)"), hmaclen, HMACLENGTH);
592 else if (challengelen != sizeof (rsachallenge))
593 slog (L_WARN, _("challenge length mismatch (remote %d <=> local %d)"), challengelen, sizeof (rsachallenge));
594 else if (cipher_nid != htonl (EVP_CIPHER_nid (CIPHER)))
595 slog (L_WARN, _("cipher mismatch (remote %x <=> local %x)"), ntohl (cipher_nid), EVP_CIPHER_nid (CIPHER));
596 else if (digest_nid != htonl (EVP_MD_type (RSA_HASH)))
597 slog (L_WARN, _("digest mismatch (remote %x <=> local %x)"), ntohl (digest_nid), EVP_MD_type (RSA_HASH));
598 else if (hmac_nid != htonl (EVP_MD_type (DIGEST)))
599 slog (L_WARN, _("hmac mismatch (remote %x <=> local %x)"), ntohl (hmac_nid), EVP_MD_type (DIGEST));
600 else
601 return true;
602
603 return false;
604 }
605
606 struct auth_req_packet : config_packet
607 {
608 char magic[8];
609 u8 initiate; // false if this is just an automatic reply
610 u8 protocols; // supported protocols (will be patched on forward)
611 u8 pad2, pad3;
612 rsaid id;
613 rsaencrdata encr;
614
615 auth_req_packet (int dst, bool initiate_, u8 protocols_)
616 {
617 config_packet::setup (PT_AUTH_REQ, dst);
618 strncpy (magic, MAGIC, 8);
619 initiate = !!initiate_;
620 protocols = protocols_;
621
622 len = sizeof (*this) - sizeof (net_packet);
623 }
624 };
625
626 struct auth_res_packet : config_packet
627 {
628 rsaid id;
629 u8 pad1, pad2, pad3;
630 u8 response_len; // encrypted length
631 rsaresponse response;
632
633 auth_res_packet (int dst)
634 {
635 config_packet::setup (PT_AUTH_RES, dst);
636
637 len = sizeof (*this) - sizeof (net_packet);
638 }
639 };
640
641 struct connect_req_packet : vpn_packet
642 {
643 u8 id, protocols;
644 u8 pad1, pad2;
645
646 connect_req_packet (int dst, int id_, u8 protocols_)
647 : id(id_)
648 , protocols(protocols_)
649 {
650 set_hdr (PT_CONNECT_REQ, dst);
651 len = sizeof (*this) - sizeof (net_packet);
652 }
653 };
654
655 struct connect_info_packet : vpn_packet
656 {
657 u8 id, protocols;
658 u8 pad1, pad2;
659 sockinfo si;
660
661 connect_info_packet (int dst, int id_, const sockinfo &si_, u8 protocols_)
662 : id(id_)
663 , protocols(protocols_)
664 , si(si_)
665 {
666 set_hdr (PT_CONNECT_INFO, dst);
667
668 len = sizeof (*this) - sizeof (net_packet);
669 }
670 };
671
672 /////////////////////////////////////////////////////////////////////////////
673
674 void
675 connection::connection_established ()
676 {
677 slog (L_NOISE, _("%s: possible connection establish (ictx %d, octx %d)"), conf->nodename, !!ictx, !!octx);
678
679 if (ictx && octx)
680 {
681 // make sure rekeying timeouts are slightly asymmetric
682 ev::tstamp rekey_interval = ::conf.rekey + (conf->id > THISNODE->id ? 10 : 0);
683 rekey.start (rekey_interval, rekey_interval);
684 keepalive.start (::conf.keepalive);
685
686 // send queued packets
687 if (ictx && octx)
688 {
689 while (tap_packet *p = (tap_packet *)data_queue.get ())
690 {
691 if (p->len) send_data_packet (p);
692 delete p;
693 }
694
695 while (vpn_packet *p = (vpn_packet *)vpn_queue.get ())
696 {
697 if (p->len) send_vpn_packet (p, si, IPTOS_RELIABILITY);
698 delete p;
699 }
700 }
701
702 vpn->connection_established (this);
703 }
704 else
705 {
706 retry_cnt = 0;
707 establish_connection.start (5);
708 keepalive.stop ();
709 rekey.stop ();
710 }
711 }
712
713 void
714 connection::reset_si ()
715 {
716 if (vpn->can_direct (THISNODE, conf))
717 protocol = best_protocol (THISNODE->protocols & conf->connectable_protocols ());
718 else
719 {
720 slog (L_TRACE, _("%s: direct connection denied by config."), conf->nodename);
721 protocol = 0;
722 }
723
724 si.set (conf, protocol);
725
726 is_direct = si.valid ();
727 }
728
729 // ensure sockinfo is valid, forward if necessary
730 const sockinfo &
731 connection::forward_si (const sockinfo &si) const
732 {
733 if (!si.valid ())
734 {
735 connection *r = vpn->find_router_for (this);
736
737 if (r)
738 {
739 slog (L_DEBUG, _("%s: no common protocol, trying to route through %s."),
740 conf->nodename, r->conf->nodename);
741 return r->si;
742 }
743 else
744 slog (L_DEBUG, _("%s: node unreachable, no common protocol or no router available."),
745 conf->nodename);
746 }
747
748 return si;
749 }
750
751 void
752 connection::send_vpn_packet (vpn_packet *pkt, const sockinfo &si, int tos)
753 {
754 if (!vpn->send_vpn_packet (pkt, si, tos))
755 reset_connection ();
756 }
757
758 void
759 connection::send_ping (const sockinfo &si, u8 pong)
760 {
761 ping_packet *pkt = new ping_packet;
762
763 pkt->setup (conf->id, pong ? ping_packet::PT_PONG : ping_packet::PT_PING);
764
765 slog (L_TRACE, "%s << %s [%s]", conf->nodename, pong ? "PT_PONG" : "PT_PING", (const char *)si);
766
767 send_vpn_packet (pkt, si, IPTOS_LOWDELAY);
768
769 delete pkt;
770 }
771
772 void
773 connection::send_reset (const sockinfo &si)
774 {
775 if (reset_rate_limiter.can (si) && connectmode != conf_node::C_DISABLED)
776 {
777 config_packet *pkt = new config_packet;
778
779 pkt->setup (vpn_packet::PT_RESET, conf->id);
780 send_vpn_packet (pkt, si, IPTOS_MINCOST);
781
782 delete pkt;
783 }
784 }
785
786 void
787 connection::send_auth_request (const sockinfo &si, bool initiate)
788 {
789 auth_req_packet *pkt = new auth_req_packet (conf->id, initiate, THISNODE->protocols);
790
791 rsachallenge chg;
792 rsa_cache.gen (pkt->id, chg);
793 rsa_encrypt (conf->rsa_key, chg, pkt->encr);
794
795 slog (L_TRACE, "%s << PT_AUTH_REQ [%s]", conf->nodename, (const char *)si);
796
797 send_vpn_packet (pkt, si, IPTOS_RELIABILITY | IPTOS_LOWDELAY); // rsa is very very costly
798
799 delete pkt;
800 }
801
802 void
803 connection::send_auth_response (const sockinfo &si, const rsaid &id, const rsachallenge &chg)
804 {
805 auth_res_packet *pkt = new auth_res_packet (conf->id);
806
807 pkt->id = id;
808
809 rsa_hash (id, chg, pkt->response);
810
811 pkt->hmac_set (octx);
812
813 slog (L_TRACE, "%s << PT_AUTH_RES [%s]", conf->nodename, (const char *)si);
814
815 send_vpn_packet (pkt, si, IPTOS_RELIABILITY); // rsa is very very costly
816
817 delete pkt;
818 }
819
820 void
821 connection::send_connect_info (int rid, const sockinfo &rsi, u8 rprotocols)
822 {
823 slog (L_TRACE, "%s << PT_CONNECT_INFO(%s,%s)", conf->nodename,
824 vpn->conns[rid - 1]->conf->nodename, (const char *)rsi);
825
826 connect_info_packet *r = new connect_info_packet (conf->id, rid, rsi, rprotocols);
827
828 r->hmac_set (octx);
829 send_vpn_packet (r, si);
830
831 delete r;
832 }
833
834 inline void
835 connection::establish_connection_cb (ev::timer &w, int revents)
836 {
837 if (!ictx
838 && conf != THISNODE
839 && connectmode != conf_node::C_NEVER
840 && connectmode != conf_node::C_DISABLED
841 && !w.is_active ())
842 {
843 // a bit hacky, if ondemand, and packets are no longer queued, then reset the connection
844 // and stop trying. should probably be handled by a per-connection expire handler.
845 if (connectmode == conf_node::C_ONDEMAND && vpn_queue.empty () && data_queue.empty ())
846 {
847 reset_connection ();
848 return;
849 }
850
851 last_establish_attempt = ev_now ();
852
853 ev::tstamp retry_int = ev::tstamp (retry_cnt & 3
854 ? (retry_cnt & 3) + 1
855 : 1 << (retry_cnt >> 2));
856
857 reset_si ();
858
859 bool slow = si.prot & PROT_SLOW;
860
861 if (si.prot && !si.host && vpn->can_direct (THISNODE, conf))
862 {
863 /*TODO*/ /* start the timer so we don't recurse endlessly */
864 w.start (1);
865 vpn->send_connect_request (this);
866 }
867 else
868 {
869 if (si.valid ())
870 slog (L_DEBUG, _("%s: sending direct connection request to %s."),
871 conf->nodename, (const char *)si);
872
873 const sockinfo &dsi = forward_si (si);
874
875 slow = slow || (dsi.prot & PROT_SLOW);
876
877 if (dsi.valid () && auth_rate_limiter.can (dsi))
878 {
879 if (retry_cnt < 4)
880 send_auth_request (dsi, true);
881 else
882 send_ping (dsi, 0);
883 }
884 }
885
886 retry_int *= slow ? 8. : 0.9;
887
888 if (retry_int < conf->max_retry)
889 retry_cnt++;
890 else
891 retry_int = conf->max_retry;
892
893 w.start (retry_int);
894 }
895 }
896
897 void
898 connection::reset_connection ()
899 {
900 if (ictx && octx)
901 {
902 slog (L_INFO, _("%s(%s): connection lost"),
903 conf->nodename, (const char *)si);
904
905 if (::conf.script_node_down)
906 {
907 run_script_cb *cb = new run_script_cb;
908 cb->set<connection, &connection::script_node_down> (this);
909 run_script_queued (cb, _("node-down command execution failed, continuing."));
910 }
911 }
912
913 delete ictx; ictx = 0;
914 delete octx; octx = 0;
915 #if ENABLE_DNS
916 dnsv4_reset_connection ();
917 #endif
918
919 si.host = 0;
920
921 last_activity = 0.;
922 //last_si_change = 0.;
923 retry_cnt = 0;
924
925 rekey.stop ();
926 keepalive.stop ();
927 establish_connection.stop ();
928 }
929
930 void
931 connection::shutdown ()
932 {
933 if (ictx && octx)
934 send_reset (si);
935
936 reset_connection ();
937 }
938
939 // poor-man's rekeying
940 inline void
941 connection::rekey_cb (ev::timer &w, int revents)
942 {
943 reset_connection ();
944 establish_connection ();
945 }
946
947 void
948 connection::send_data_packet (tap_packet *pkt)
949 {
950 vpndata_packet *p = new vpndata_packet;
951 int tos = 0;
952
953 // I am not hilarious about peeking into packets, but so be it.
954 if (conf->inherit_tos && pkt->is_ipv4 ())
955 tos = (*pkt)[15] & IPTOS_TOS_MASK;
956
957 p->setup (this, conf->id, &((*pkt)[6 + 6]), pkt->len - 6 - 6, ++oseqno); // skip 2 macs
958 send_vpn_packet (p, si, tos);
959
960 delete p;
961
962 if (oseqno > MAX_SEQNO)
963 rekey ();
964 }
965
966 void
967 connection::post_inject_queue ()
968 {
969 // force a connection every now and when when packets are sent (max 1/s)
970 if (ev_now () - last_establish_attempt >= 0.95) // arbitrary
971 establish_connection.stop ();
972
973 establish_connection ();
974 }
975
976 void
977 connection::inject_data_packet (tap_packet *pkt)
978 {
979 if (ictx && octx)
980 send_data_packet (pkt);
981 else
982 {
983 data_queue.put (new tap_packet (*pkt));
984 post_inject_queue ();
985 }
986 }
987
988 void connection::inject_vpn_packet (vpn_packet *pkt, int tos)
989 {
990 if (ictx && octx)
991 send_vpn_packet (pkt, si, tos);
992 else
993 {
994 vpn_queue.put ((vpn_packet *)new data_packet (*(data_packet *)pkt));
995 post_inject_queue ();
996 }
997 }
998
999 void
1000 connection::recv_vpn_packet (vpn_packet *pkt, const sockinfo &rsi)
1001 {
1002 last_activity = ev_now ();
1003
1004 slog (L_NOISE, "%s >> received packet type %d from %d to %d.",
1005 conf->nodename, pkt->typ (), pkt->src (), pkt->dst ());
1006
1007 if (connectmode == conf_node::C_DISABLED)
1008 return;
1009
1010 switch (pkt->typ ())
1011 {
1012 case vpn_packet::PT_PING:
1013 slog (L_TRACE, "%s >> PT_PING", conf->nodename);
1014
1015 // we send pings instead of auth packets after some retries,
1016 // so reset the retry counter and establish a connection
1017 // when we receive a ping.
1018 if (!ictx)
1019 {
1020 if (auth_rate_limiter.can (rsi))
1021 send_auth_request (rsi, true);
1022 }
1023 else
1024 // we would love to change thre socket address here, but ping's aren't
1025 // authenticated, so we best ignore it.
1026 send_ping (rsi, 1); // pong
1027
1028 break;
1029
1030 case vpn_packet::PT_PONG:
1031 slog (L_TRACE, "%s >> PT_PONG", conf->nodename);
1032 break;
1033
1034 case vpn_packet::PT_RESET:
1035 {
1036 reset_connection ();
1037
1038 config_packet *p = (config_packet *) pkt;
1039
1040 if (!p->chk_config ())
1041 {
1042 slog (L_WARN, _("%s(%s): protocol mismatch, disabling node."),
1043 conf->nodename, (const char *)rsi);
1044 connectmode = conf_node::C_DISABLED;
1045 }
1046 else if (connectmode == conf_node::C_ALWAYS)
1047 establish_connection ();
1048 }
1049 break;
1050
1051 case vpn_packet::PT_AUTH_REQ:
1052 if (auth_rate_limiter.can (rsi))
1053 {
1054 auth_req_packet *p = (auth_req_packet *) pkt;
1055
1056 slog (L_TRACE, "%s >> PT_AUTH_REQ(%s)", conf->nodename, p->initiate ? "initiate" : "reply");
1057
1058 if (p->chk_config () && !strncmp (p->magic, MAGIC, 8))
1059 {
1060 if (p->prot_minor != PROTOCOL_MINOR)
1061 slog (L_INFO, _("%s(%s): protocol minor version mismatch: ours is %d, %s's is %d."),
1062 conf->nodename, (const char *)rsi,
1063 PROTOCOL_MINOR, conf->nodename, p->prot_minor);
1064
1065 if (p->initiate)
1066 send_auth_request (rsi, false);
1067
1068 rsachallenge k;
1069
1070 if (!rsa_decrypt (::conf.rsa_key, p->encr, k))
1071 {
1072 slog (L_ERR, _("%s(%s): challenge illegal or corrupted (%s). mismatched key or config file?"),
1073 conf->nodename, (const char *)rsi, ERR_error_string (ERR_get_error (), 0));
1074 break;
1075 }
1076 else
1077 {
1078 delete octx;
1079
1080 octx = new crypto_ctx (k, 1);
1081 oseqno = ntohl (*(u32 *)&k[CHG_SEQNO]) & 0x7fffffff;
1082
1083 conf->protocols = p->protocols;
1084 features = p->features & config_packet::get_features ();
1085
1086 send_auth_response (rsi, p->id, k);
1087
1088 connection_established ();
1089
1090 break;
1091 }
1092 }
1093 else
1094 slog (L_WARN, _("%s(%s): protocol mismatch."),
1095 conf->nodename, (const char *)rsi);
1096
1097 send_reset (rsi);
1098 }
1099
1100 break;
1101
1102 case vpn_packet::PT_AUTH_RES:
1103 {
1104 auth_res_packet *p = (auth_res_packet *)pkt;
1105
1106 slog (L_TRACE, "%s >> PT_AUTH_RES", conf->nodename);
1107
1108 if (p->chk_config ())
1109 {
1110 if (p->prot_minor != PROTOCOL_MINOR)
1111 slog (L_INFO, _("%s(%s): protocol minor version mismatch: ours is %d, %s's is %d."),
1112 conf->nodename, (const char *)rsi,
1113 PROTOCOL_MINOR, conf->nodename, p->prot_minor);
1114
1115 rsachallenge chg;
1116
1117 if (!rsa_cache.find (p->id, chg))
1118 {
1119 slog (L_ERR, _("%s(%s): unrequested auth response, ignoring."),
1120 conf->nodename, (const char *)rsi);
1121 break;
1122 }
1123 else
1124 {
1125 crypto_ctx *cctx = new crypto_ctx (chg, 0);
1126
1127 if (!p->hmac_chk (cctx))
1128 {
1129 slog (L_ERR, _("%s(%s): hmac authentication error on auth response, received invalid packet\n"
1130 "could be an attack, or just corruption or a synchronization error."),
1131 conf->nodename, (const char *)rsi);
1132 break;
1133 }
1134 else
1135 {
1136 rsaresponse h;
1137
1138 rsa_hash (p->id, chg, h);
1139
1140 if (!memcmp ((u8 *)&h, (u8 *)p->response, sizeof h))
1141 {
1142 prot_minor = p->prot_minor;
1143
1144 delete ictx; ictx = cctx;
1145
1146 iseqno.reset (ntohl (*(u32 *)&chg[CHG_SEQNO]) & 0x7fffffff); // at least 2**31 sequence numbers are valid
1147
1148 si = rsi;
1149 protocol = rsi.prot;
1150
1151 slog (L_INFO, _("%s(%s): connection established (%s), protocol version %d.%d."),
1152 conf->nodename, (const char *)rsi,
1153 is_direct ? "direct" : "forwarded",
1154 p->prot_major, p->prot_minor);
1155
1156 connection_established ();
1157
1158 if (::conf.script_node_up)
1159 {
1160 run_script_cb *cb = new run_script_cb;
1161 cb->set<connection, &connection::script_node_up> (this);
1162 run_script_queued (cb, _("node-up command execution failed, continuing."));
1163 }
1164
1165 break;
1166 }
1167 else
1168 slog (L_ERR, _("%s(%s): sent and received challenge do not match."),
1169 conf->nodename, (const char *)rsi);
1170 }
1171
1172 delete cctx;
1173 }
1174 }
1175 }
1176
1177 send_reset (rsi);
1178 break;
1179
1180 case vpn_packet::PT_DATA_COMPRESSED:
1181 #if !ENABLE_COMPRESSION
1182 send_reset (rsi);
1183 break;
1184 #endif
1185
1186 case vpn_packet::PT_DATA_UNCOMPRESSED:
1187
1188 if (ictx && octx)
1189 {
1190 vpndata_packet *p = (vpndata_packet *)pkt;
1191
1192 if (!p->hmac_chk (ictx))
1193 slog (L_ERR, _("%s(%s): hmac authentication error, received invalid packet\n"
1194 "could be an attack, or just corruption or a synchronization error."),
1195 conf->nodename, (const char *)rsi);
1196 else
1197 {
1198 u32 seqno;
1199 tap_packet *d = p->unpack (this, seqno);
1200 int seqclass = iseqno.seqno_classify (seqno);
1201
1202 if (seqclass == 0) // ok
1203 {
1204 vpn->tap->send (d);
1205
1206 if (si != rsi)
1207 {
1208 // fast re-sync on source address changes, useful especially for tcp/ip
1209 //if (last_si_change < ev_now () + 5.)
1210 // {
1211 slog (L_INFO, _("%s(%s): changing socket address to %s."),
1212 conf->nodename, (const char *)si, (const char *)rsi);
1213
1214 si = rsi;
1215
1216 if (::conf.script_node_change)
1217 {
1218 run_script_cb *cb = new run_script_cb;
1219 cb->set<connection, &connection::script_node_change> (this);
1220 run_script_queued (cb, _("node-change command execution failed, continuing."));
1221 }
1222
1223 // }
1224 //else
1225 // slog (L_INFO, _("%s(%s): accepted packet from %s, not (yet) redirecting traffic."),
1226 // conf->nodename, (const char *)si, (const char *)rsi);
1227 }
1228 }
1229 else if (seqclass == 1) // far history
1230 slog (L_ERR, _("received very old packet (received %08lx, expected %08lx). "
1231 "possible replay attack, or just packet duplication/delay, ignoring."), seqno, iseqno.seq + 1);
1232 else if (seqclass == 2) // in-window duplicate, happens often on wireless
1233 slog (L_DEBUG, _("received recent duplicated packet (received %08lx, expected %08lx). "
1234 "possible replay attack, or just packet duplication, ignoring."), seqno, iseqno.seq + 1);
1235 else if (seqclass == 3) // reset
1236 {
1237 slog (L_ERR, _("received out-of-sync (far future) packet (received %08lx, expected %08lx). "
1238 "probably just massive packet loss, sending reset."), seqno, iseqno.seq + 1);
1239 send_reset (rsi);
1240 }
1241
1242 delete d;
1243 break;
1244 }
1245 }
1246
1247 send_reset (rsi);
1248 break;
1249
1250 case vpn_packet::PT_CONNECT_REQ:
1251 if (ictx && octx && rsi == si && pkt->hmac_chk (ictx))
1252 {
1253 connect_req_packet *p = (connect_req_packet *)pkt;
1254
1255 if (p->id > 0 && p->id <= vpn->conns.size ())
1256 {
1257 connection *c = vpn->conns[p->id - 1];
1258 conf->protocols = p->protocols;
1259
1260 slog (L_TRACE, "%s >> PT_CONNECT_REQ(%s) [%d]",
1261 conf->nodename, vpn->conns[p->id - 1]->conf->nodename, c->ictx && c->octx);
1262
1263 if (c->ictx && c->octx)
1264 {
1265 // send connect_info packets to both sides, in case one is
1266 // behind a nat firewall (or both ;)
1267 c->send_connect_info (conf->id, si, conf->protocols);
1268 send_connect_info (c->conf->id, c->si, c->conf->protocols);
1269 }
1270 else
1271 c->establish_connection ();
1272 }
1273 else
1274 slog (L_WARN,
1275 _("received authenticated connection request from unknown node #%d, config file mismatch?"),
1276 p->id);
1277 }
1278
1279 break;
1280
1281 case vpn_packet::PT_CONNECT_INFO:
1282 if (ictx && octx && rsi == si && pkt->hmac_chk (ictx))
1283 {
1284 connect_info_packet *p = (connect_info_packet *)pkt;
1285
1286 if (p->id > 0 && p->id <= vpn->conns.size ())
1287 {
1288 connection *c = vpn->conns[p->id - 1];
1289
1290 c->conf->protocols = p->protocols;
1291 protocol = best_protocol (c->conf->protocols & THISNODE->protocols & p->si.supported_protocols (c->conf));
1292 p->si.upgrade_protocol (protocol, c->conf);
1293
1294 slog (L_TRACE, "%s >> PT_CONNECT_INFO(%s,%s) [%d]",
1295 conf->nodename, vpn->conns[p->id - 1]->conf->nodename,
1296 (const char *)p->si, !c->ictx && !c->octx);
1297
1298 const sockinfo &dsi = forward_si (p->si);
1299
1300 if (dsi.valid ())
1301 c->send_auth_request (dsi, true);
1302 }
1303 else
1304 slog (L_WARN,
1305 _("received authenticated connection request from unknown node #%d, config file mismatch?"),
1306 p->id);
1307 }
1308
1309 break;
1310
1311 default:
1312 send_reset (rsi);
1313 break;
1314 }
1315 }
1316
1317 inline void
1318 connection::keepalive_cb (ev::timer &w, int revents)
1319 {
1320 if (ev_now () >= last_activity + ::conf.keepalive + 15)
1321 {
1322 reset_connection ();
1323 establish_connection ();
1324 }
1325 else if (ev_now () < last_activity + ::conf.keepalive)
1326 w.start (last_activity + ::conf.keepalive - ev::now ());
1327 else if (conf->connectmode != conf_node::C_ONDEMAND
1328 || THISNODE->connectmode != conf_node::C_ONDEMAND)
1329 {
1330 send_ping (si);
1331 w.start (3);
1332 }
1333 else if (ev_now () < last_activity + ::conf.keepalive + 10)
1334 // hold ondemand connections implicitly a few seconds longer
1335 // should delete octx, though, or something like that ;)
1336 w.start (last_activity + ::conf.keepalive + 10 - ev::now ());
1337 else
1338 reset_connection ();
1339 }
1340
1341 void connection::send_connect_request (int id)
1342 {
1343 connect_req_packet *p = new connect_req_packet (conf->id, id, conf->protocols);
1344
1345 slog (L_TRACE, "%s << PT_CONNECT_REQ(%s)",
1346 conf->nodename, vpn->conns[id - 1]->conf->nodename);
1347 p->hmac_set (octx);
1348 send_vpn_packet (p, si);
1349
1350 delete p;
1351 }
1352
1353 void connection::script_init_env (const char *ext)
1354 {
1355 char *env;
1356 asprintf (&env, "IFUPDATA%s=%s", ext, conf->if_up_data); putenv (env);
1357 asprintf (&env, "NODENAME%s=%s", ext, conf->nodename); putenv (env);
1358 asprintf (&env, "MAC%s=%02x:%02x:%02x:%02x:%02x:%02x", ext,
1359 0xfe, 0xfd, 0x80, 0x00, conf->id >> 8,
1360 conf->id & 0xff); putenv (env);
1361 }
1362
1363 void connection::script_init_connect_env ()
1364 {
1365 vpn->script_init_env ();
1366
1367 char *env;
1368 asprintf (&env, "DESTID=%d", conf->id); putenv (env);
1369 asprintf (&env, "DESTSI=%s", (const char *)si); putenv (env);
1370 asprintf (&env, "DESTNODE=%s", conf->nodename); putenv (env);
1371 asprintf (&env, "DESTIP=%s", si.ntoa ()); putenv (env);
1372 asprintf (&env, "DESTPORT=%d", ntohs (si.port)); putenv (env);
1373 }
1374
1375 inline const char *
1376 connection::script_node_up ()
1377 {
1378 script_init_connect_env ();
1379
1380 putenv ((char *)"STATE=up");
1381
1382 char *filename;
1383 asprintf (&filename,
1384 "%s/%s",
1385 confbase,
1386 ::conf.script_node_up ? ::conf.script_node_up : "node-up");
1387
1388 return filename;
1389 }
1390
1391 inline const char *
1392 connection::script_node_change ()
1393 {
1394 script_init_connect_env ();
1395
1396 putenv ((char *)"STATE=change");
1397
1398 char *filename;
1399 asprintf (&filename,
1400 "%s/%s",
1401 confbase,
1402 ::conf.script_node_change ? ::conf.script_node_change : "node-change");
1403
1404 return filename;
1405 }
1406
1407 inline const char *
1408 connection::script_node_down ()
1409 {
1410 script_init_connect_env ();
1411
1412 putenv ((char *)"STATE=down");
1413
1414 char *filename;
1415 asprintf (&filename,
1416 "%s/%s",
1417 confbase,
1418 ::conf.script_node_down ? ::conf.script_node_down : "node-down");
1419
1420 return filename;
1421 }
1422
1423 connection::connection (struct vpn *vpn, conf_node *conf)
1424 : vpn(vpn), conf(conf),
1425 #if ENABLE_DNS
1426 dns (0),
1427 #endif
1428 data_queue(conf->max_ttl, conf->max_queue + 1),
1429 vpn_queue(conf->max_ttl, conf->max_queue + 1)
1430 {
1431 rekey .set<connection, &connection::rekey_cb > (this);
1432 keepalive .set<connection, &connection::keepalive_cb > (this);
1433 establish_connection.set<connection, &connection::establish_connection_cb> (this);
1434
1435 last_establish_attempt = 0.;
1436 octx = ictx = 0;
1437
1438 if (!conf->protocols) // make sure some protocol is enabled
1439 conf->protocols = PROT_UDPv4;
1440
1441 connectmode = conf->connectmode;
1442
1443 // queue a dummy packet to force an initial connection attempt
1444 if (connectmode != conf_node::C_ALWAYS && connectmode != conf_node::C_DISABLED)
1445 vpn_queue.put (new net_packet);
1446
1447 reset_connection ();
1448 }
1449
1450 connection::~connection ()
1451 {
1452 shutdown ();
1453 }
1454
1455 void connection_init ()
1456 {
1457 auth_rate_limiter.clear ();
1458 reset_rate_limiter.clear ();
1459 }
1460