2 This file is part of GNUnet.
3 (C) 2010 Christian Grothoff
5 GNUnet is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published
7 by the Free Software Foundation; either version 3, or (at your
8 option) any later version.
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with GNUnet; see the file COPYING. If not, write to the
17 Free Software Foundation, Inc., 59 Temple Place - Suite 330,
18 Boston, MA 02111-1307, USA.
22 * @file vpn/gnunet-daemon-vpn-helper.c
24 * @author Philipp Toelke
27 #include <gnunet_common.h>
28 #include <gnunet_client_lib.h>
29 #include <gnunet_os_lib.h>
30 #include <gnunet_mesh_service.h>
31 #include <gnunet_protocols.h>
32 #include <gnunet_server_lib.h>
33 #include <gnunet_container_lib.h>
34 #include <block_dns.h>
36 #include "gnunet-daemon-vpn-dns.h"
37 #include "gnunet-daemon-vpn.h"
38 #include "gnunet-daemon-vpn-helper.h"
39 #include "gnunet-service-dns-p.h"
40 #include "gnunet-vpn-packet.h"
43 * PipeHandle to receive data from the helper
45 static struct GNUNET_DISK_PipeHandle* helper_in;
48 * PipeHandle to send data to the helper
50 static struct GNUNET_DISK_PipeHandle* helper_out;
53 * FileHandle to receive data from the helper
55 static const struct GNUNET_DISK_FileHandle* fh_from_helper;
58 * FileHandle to send data to the helper
60 static const struct GNUNET_DISK_FileHandle* fh_to_helper;
63 * Start the helper-process
67 start_helper_and_schedule(void *cls,
68 const struct GNUNET_SCHEDULER_TaskContext *tc) {
69 if (0 != (tc->reason & GNUNET_SCHEDULER_REASON_SHUTDOWN))
72 helper_in = GNUNET_DISK_pipe (GNUNET_YES, GNUNET_YES, GNUNET_NO);
73 helper_out = GNUNET_DISK_pipe (GNUNET_YES, GNUNET_NO, GNUNET_YES);
75 if (helper_in == NULL || helper_out == NULL) return;
78 GNUNET_OS_start_process (helper_in, helper_out, "gnunet-helper-vpn",
79 "gnunet-helper-vpn", "1234::1", "16", "10.10.10.1",
82 fh_from_helper = GNUNET_DISK_pipe_handle (helper_out, GNUNET_DISK_PIPE_END_READ);
83 fh_to_helper = GNUNET_DISK_pipe_handle (helper_in, GNUNET_DISK_PIPE_END_WRITE);
85 GNUNET_DISK_pipe_close_end(helper_out, GNUNET_DISK_PIPE_END_WRITE);
86 GNUNET_DISK_pipe_close_end(helper_in, GNUNET_DISK_PIPE_END_READ);
88 /* Tell the dns-service to rehijack the dns-port
89 * The routing-table gets flushed if an interface disappears.
92 GNUNET_CLIENT_notify_transmit_ready(dns_connection, sizeof(struct GNUNET_MessageHeader), GNUNET_TIME_UNIT_FOREVER_REL, GNUNET_YES, &send_query, NULL);
94 GNUNET_SCHEDULER_add_read_file (GNUNET_TIME_UNIT_FOREVER_REL, fh_from_helper, &helper_read, NULL);
98 * Restart the helper-process
102 restart_helper(void* cls, const struct GNUNET_SCHEDULER_TaskContext* tskctx) {
104 GNUNET_OS_process_kill (helper_proc, SIGKILL);
105 GNUNET_OS_process_wait (helper_proc);
106 GNUNET_OS_process_close (helper_proc);
109 GNUNET_DISK_pipe_close(helper_in);
110 GNUNET_DISK_pipe_close(helper_out);
112 /* Restart the helper */
113 GNUNET_SCHEDULER_add_delayed (GNUNET_TIME_UNIT_SECONDS, start_helper_and_schedule, NULL);
118 * Read from the helper-process
122 helper_read(void* cls, const struct GNUNET_SCHEDULER_TaskContext* tsdkctx) {
123 /* no message can be bigger then 64k */
126 if (tsdkctx->reason & GNUNET_SCHEDULER_REASON_SHUTDOWN)
129 int t = GNUNET_DISK_file_read(fh_from_helper, &buf, 65535);
131 /* On read-error, restart the helper */
133 GNUNET_log(GNUNET_ERROR_TYPE_WARNING, "Read error for header from vpn-helper: %m\n");
134 GNUNET_SCHEDULER_add_now(restart_helper, cls);
138 /* FIXME */ GNUNET_SERVER_mst_receive(mst, NULL, buf, t, 0, 0);
140 GNUNET_SCHEDULER_add_read_file (GNUNET_TIME_UNIT_FOREVER_REL, fh_from_helper, &helper_read, NULL);
145 * Send an dns-answer-packet to the helper
148 helper_write(void* cls, const struct GNUNET_SCHEDULER_TaskContext* tsdkctx) {
149 if (tsdkctx->reason & GNUNET_SCHEDULER_REASON_SHUTDOWN)
152 struct answer_packet_list* ans = answer_proc_head;
153 size_t len = ntohs(ans->pkt.hdr.size);
155 GNUNET_assert(ans->pkt.subtype == GNUNET_DNS_ANSWER_TYPE_IP);
157 GNUNET_assert (20 == sizeof (struct ip_hdr));
158 GNUNET_assert (8 == sizeof (struct udp_pkt));
159 size_t data_len = len - sizeof(struct answer_packet) + 1;
160 size_t net_len = sizeof(struct ip_hdr) + sizeof(struct udp_dns) + data_len;
161 size_t pkt_len = sizeof(struct GNUNET_MessageHeader) + sizeof(struct pkt_tun) + net_len;
163 struct ip_udp_dns* pkt = alloca(pkt_len);
164 GNUNET_assert(pkt != NULL);
165 memset(pkt, 0, pkt_len);
167 /* set the gnunet-header */
168 pkt->shdr.size = htons(pkt_len);
169 pkt->shdr.type = htons(GNUNET_MESSAGE_TYPE_VPN_HELPER);
171 /* set the tun-header (no flags and ethertype of IPv4) */
173 pkt->tun.type = htons(0x0800);
175 /* set the ip-header */
176 pkt->ip_hdr.version = 4;
177 pkt->ip_hdr.hdr_lngth = 5;
178 pkt->ip_hdr.diff_serv = 0;
179 pkt->ip_hdr.tot_lngth = htons(net_len);
180 pkt->ip_hdr.ident = 0;
181 pkt->ip_hdr.flags = 0;
182 pkt->ip_hdr.frag_off = 0;
183 pkt->ip_hdr.ttl = 255;
184 pkt->ip_hdr.proto = 0x11; /* UDP */
185 pkt->ip_hdr.chks = 0; /* Will be calculated later*/
186 pkt->ip_hdr.sadr = ans->pkt.from;
187 pkt->ip_hdr.dadr = ans->pkt.to;
189 pkt->ip_hdr.chks = calculate_ip_checksum((uint16_t*)&pkt->ip_hdr, 5*4);
191 /* set the udp-header */
192 pkt->udp_dns.udp_hdr.spt = htons(53);
193 pkt->udp_dns.udp_hdr.dpt = ans->pkt.dst_port;
194 pkt->udp_dns.udp_hdr.len = htons(net_len - sizeof(struct ip_hdr));
195 pkt->udp_dns.udp_hdr.crc = 0; /* Optional for IPv4 */
197 memcpy(&pkt->udp_dns.data, ans->pkt.data, data_len);
199 GNUNET_CONTAINER_DLL_remove (answer_proc_head, answer_proc_tail, ans);
202 /* FIXME */ GNUNET_DISK_file_write(fh_to_helper, pkt, pkt_len);
204 /* if more packets are available, reschedule */
205 if (answer_proc_head != NULL)
206 GNUNET_SCHEDULER_add_write_file (GNUNET_TIME_UNIT_FOREVER_REL,
212 * Receive packets from the helper-process
215 message_token(void *cls,
217 const struct GNUNET_MessageHeader *message) {
218 GNUNET_assert(ntohs(message->type) == GNUNET_MESSAGE_TYPE_VPN_HELPER);
220 struct tun_pkt *pkt_tun = (struct tun_pkt*) message;
222 /* ethertype is ipv6 */
223 if (ntohs(pkt_tun->tun.type) == 0x86dd)
225 struct ip6_pkt *pkt6 = (struct ip6_pkt*) message;
226 GNUNET_assert(pkt6->ip6_hdr.version == 6);
227 struct ip6_tcp *pkt6_tcp;
228 struct ip6_udp *pkt6_udp;
229 struct ip6_icmp *pkt6_icmp;
230 GNUNET_HashCode* key;
232 switch(pkt6->ip6_hdr.nxthdr)
235 pkt6_tcp = (struct ip6_tcp*)pkt6;
238 pkt6_udp = (struct ip6_udp*)pkt6;
239 if ((key = address_mapping_exists(pkt6->ip6_hdr.dadr)) != NULL)
241 struct map_entry* me = GNUNET_CONTAINER_multihashmap_get(hashmap, key);
242 GNUNET_assert(me != NULL);
243 GNUNET_log(GNUNET_ERROR_TYPE_DEBUG, "Mapping exists; type: %d; UDP is %d; port: %x/%x!\n", me->desc.service_type, htonl(GNUNET_DNS_SERVICE_TYPE_UDP), pkt6_udp->udp_hdr.dpt, me->desc.ports);
245 if (me->desc.service_type & htonl(GNUNET_DNS_SERVICE_TYPE_UDP) &&
246 (port_in_ports(me->desc.ports, pkt6_udp->udp_hdr.dpt) ||
247 port_in_ports(me->additional_ports, pkt6_udp->udp_hdr.dpt)))
249 size_t size = sizeof(struct GNUNET_MESH_Tunnel*) + sizeof(struct GNUNET_MessageHeader) + sizeof(GNUNET_HashCode) + ntohs(pkt6_udp->udp_hdr.len);
250 struct GNUNET_MESH_Tunnel **cls = GNUNET_malloc(size);
251 struct GNUNET_MessageHeader *hdr = (struct GNUNET_MessageHeader*)(cls+1);
252 GNUNET_HashCode* hc = (GNUNET_HashCode*)(hdr + 1);
254 memcpy(hc, &me->desc.service_descriptor, sizeof(GNUNET_HashCode));
255 memcpy(hc+1, &pkt6_udp->udp_hdr, ntohs(pkt6_udp->udp_hdr.len));
257 if (me->tunnel == NULL)
259 *cls = GNUNET_MESH_peer_request_connect_all(mesh_handle,
260 GNUNET_TIME_UNIT_FOREVER_REL,
262 (struct GNUNET_PeerIdentity*)&me->desc.peer,
271 send_udp_to_peer(cls, (struct GNUNET_PeerIdentity*)1, NULL);
273 GNUNET_log(GNUNET_ERROR_TYPE_DEBUG, "Queued to send to peer %x\n", *((unsigned int*)&me->desc.peer));
279 pkt6_icmp = (struct ip6_icmp*)pkt6;
280 /* If this packet is an icmp-echo-request and a mapping exists, answer */
281 if (pkt6_icmp->icmp_hdr.type == 0x80 && (key = address_mapping_exists(pkt6->ip6_hdr.dadr)) != NULL)
284 pkt6_icmp = GNUNET_malloc(ntohs(pkt6->shdr.size));
285 memcpy(pkt6_icmp, pkt6, ntohs(pkt6->shdr.size));
286 GNUNET_SCHEDULER_add_now(&send_icmp_response, pkt6_icmp);
291 /* ethertype is ipv4 */
292 else if (ntohs(pkt_tun->tun.type) == 0x0800)
294 struct ip_pkt *pkt = (struct ip_pkt*) message;
295 struct ip_udp *udp = (struct ip_udp*) message;
296 GNUNET_assert(pkt->ip_hdr.version == 4);
298 /* Send dns-packets to the service-dns */
299 if (pkt->ip_hdr.proto == 0x11 && ntohs(udp->udp_hdr.dpt) == 53 )
301 /* 9 = 8 for the udp-header + 1 for the unsigned char data[1]; */
302 size_t len = sizeof(struct query_packet) + ntohs(udp->udp_hdr.len) - 9;
304 struct query_packet_list* query = GNUNET_malloc(len + 2*sizeof(struct query_packet_list*));
305 query->pkt.hdr.type = htons(GNUNET_MESSAGE_TYPE_LOCAL_QUERY_DNS);
306 query->pkt.hdr.size = htons(len);
307 query->pkt.orig_to = pkt->ip_hdr.dadr;
308 query->pkt.orig_from = pkt->ip_hdr.sadr;
309 query->pkt.src_port = udp->udp_hdr.spt;
310 memcpy(query->pkt.data, udp->data, ntohs(udp->udp_hdr.len) - 8);
312 GNUNET_CONTAINER_DLL_insert_after(head, tail, tail, query);
314 GNUNET_assert(head != NULL);
316 if (dns_connection != NULL)
317 GNUNET_CLIENT_notify_transmit_ready(dns_connection,
319 GNUNET_TIME_UNIT_FOREVER_REL,
327 void write_to_helper(void* buf, size_t len)
329 (void)GNUNET_DISK_file_write(fh_to_helper, buf, len);
332 void schedule_helper_write(struct GNUNET_TIME_Relative time, void* cls)
334 GNUNET_SCHEDULER_add_write_file (time, fh_to_helper, &helper_write, cls);