diff options
| author | Nicolas Dufresne <nicolas.dufresne@collabora.co.uk> | 2010-04-29 15:22:55 -0400 |
|---|---|---|
| committer | Nicolas Dufresne <nicolas.dufresne@collabora.co.uk> | 2010-08-19 16:32:37 -0400 |
| commit | 6fa113660057e0e6592b180d1a2aead617e71dec (patch) | |
| tree | b9ee4c8f5a4919f5d3e4bcb29e5aab5955703524 | |
| parent | c32ef1d85e0b7cca02677bbe50fef2ef79a98002 (diff) | |
Implemented SOCKSv5 proxy support
| -rw-r--r-- | gio/Makefile.am | 2 | ||||
| -rw-r--r-- | gio/giomodule.c | 2 | ||||
| -rw-r--r-- | gio/gsocks5proxy.c | 1053 | ||||
| -rw-r--r-- | gio/gsocks5proxy.h | 48 | ||||
| -rw-r--r-- | po/POTFILES.in | 1 |
5 files changed, 1106 insertions, 0 deletions
diff --git a/gio/Makefile.am b/gio/Makefile.am index 30cce039c..20d10c49f 100644 --- a/gio/Makefile.am +++ b/gio/Makefile.am @@ -160,6 +160,8 @@ local_sources = \ glocalfileiostream.h \ glocalvfs.c \ glocalvfs.h \ + gsocks5proxy.c \ + gsocks5proxy.h \ $(NULL) platform_libadd = diff --git a/gio/giomodule.c b/gio/giomodule.c index ee5c3f004..e0abf2f9c 100644 --- a/gio/giomodule.c +++ b/gio/giomodule.c @@ -32,6 +32,7 @@ #include "gnativevolumemonitor.h" #include "gproxyresolver.h" #include "gproxy.h" +#include "gsocks5proxy.h" #include "gvfs.h" #ifdef G_OS_UNIX #include "gdesktopappinfo.h" @@ -602,6 +603,7 @@ _g_io_modules_ensure_loaded (void) #endif _g_local_vfs_get_type (); _g_dummy_proxy_resolver_get_type (); + _g_socks5_proxy_get_type (); } G_UNLOCK (loaded_dirs); diff --git a/gio/gsocks5proxy.c b/gio/gsocks5proxy.c new file mode 100644 index 000000000..3da829e99 --- /dev/null +++ b/gio/gsocks5proxy.c @@ -0,0 +1,1053 @@ + /* GIO - GLib Input, Output and Streaming Library + * + * Copyright (C) 2008, 2010 Collabora, Ltd. + * Copyright (C) 2008 Nokia Corporation. All rights reserved. + * + * This library is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 2 of the License, or (at your option) any later version. + * + * This library is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General + * Public License along with this library; if not, write to the + * Free Software Foundation, Inc., 59 Temple Place, Suite 330, + * Boston, MA 02111-1307, USA. + * + * Author: Youness Alaoui <youness.alaoui@collabora.co.uk + * + * Contributors: + * Nicolas Dufresne <nicolas.dufresne@collabora.co.uk> + */ + +#include "config.h" + +#include "gsocks5proxy.h" + +#include <string.h> + +#include "giomodule.h" +#include "giomodule-priv.h" +#include "giostream.h" +#include "ginetaddress.h" +#include "ginputstream.h" +#include "glibintl.h" +#include "goutputstream.h" +#include "gproxy.h" +#include "gproxyaddress.h" +#include "gsimpleasyncresult.h" + +#define SOCKS5_VERSION 0x05 + +#define SOCKS5_CMD_CONNECT 0x01 +#define SOCKS5_CMD_BIND 0x02 +#define SOCKS5_CMD_UDP_ASSOCIATE 0x03 + +#define SOCKS5_ATYP_IPV4 0x01 +#define SOCKS5_ATYP_DOMAINNAME 0x03 +#define SOCKS5_ATYP_IPV6 0x04 + +#define SOCKS5_AUTH_VERSION 0x01 + +#define SOCKS5_AUTH_NONE 0x00 +#define SOCKS5_AUTH_GSSAPI 0x01 +#define SOCKS5_AUTH_USR_PASS 0x02 +#define SOCKS5_AUTH_NO_ACCEPT 0xff + +#define SOCKS5_MAX_LEN 255 +#define SOCKS5_RESERVED 0x00 + +#define SOCKS5_REP_SUCCEEDED 0x00 +#define SOCKS5_REP_SRV_FAILURE 0x01 +#define SOCKS5_REP_NOT_ALLOWED 0x02 +#define SOCKS5_REP_NET_UNREACH 0x03 +#define SOCKS5_REP_HOST_UNREACH 0x04 +#define SOCKS5_REP_REFUSED 0x05 +#define SOCKS5_REP_TTL_EXPIRED 0x06 +#define SOCKS5_REP_CMD_NOT_SUP 0x07 +#define SOCKS5_REP_ATYPE_NOT_SUP 0x08 + + +struct _GSocks5Proxy +{ + GObject parent; +}; + +struct _GSocks5ProxyClass +{ + GObjectClass parent_class; +}; + +static void g_socks5_proxy_iface_init (GProxyInterface *proxy_iface); + +#define g_socks5_proxy_get_type _g_socks5_proxy_get_type +G_DEFINE_TYPE_WITH_CODE (GSocks5Proxy, g_socks5_proxy, G_TYPE_OBJECT, + G_IMPLEMENT_INTERFACE (G_TYPE_PROXY, + g_socks5_proxy_iface_init) + _g_io_modules_ensure_extension_points_registered (); + g_io_extension_point_implement (G_PROXY_EXTENSION_POINT_NAME, + g_define_type_id, + "socks5", + 0)) + +static void +g_socks5_proxy_finalize (GObject *object) +{ + /* must chain up */ + G_OBJECT_CLASS (g_socks5_proxy_parent_class)->finalize (object); +} + +static void +g_socks5_proxy_init (GSocks5Proxy *proxy) +{ +} + +/* + * +----+----------+----------+ + * |VER | NMETHODS | METHODS | + * +----+----------+----------+ + * | 1 | 1 | 1 to 255 | + * +----+----------+----------+ + */ +#define SOCKS5_NEGO_MSG_LEN 4 +static gint +set_nego_msg (guint8 *msg, gboolean has_auth) +{ + gint len = 3; + + msg[0] = SOCKS5_VERSION; + msg[1] = 0x01; /* number of methods supported */ + msg[2] = SOCKS5_AUTH_NONE; + + /* add support for authentication method */ + if (has_auth) + { + msg[1] = 0x02; /* number of methods supported */ + msg[3] = SOCKS5_AUTH_USR_PASS; + len++; + } + + return len; +} + + +/* + * +----+--------+ + * |VER | METHOD | + * +----+--------+ + * | 1 | 1 | + * +----+--------+ + */ +#define SOCKS5_NEGO_REP_LEN 2 +static gboolean +parse_nego_reply (const guint8 *data, + gboolean has_auth, + gboolean *must_auth, + GError **error) +{ + if (data[0] != SOCKS5_VERSION) + { + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("The server is not a SOCKSv5 proxy server.")); + return FALSE; + } + + switch (data[1]) + { + case SOCKS5_AUTH_NONE: + *must_auth = FALSE; + break; + + case SOCKS5_AUTH_USR_PASS: + if (!has_auth) + { + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_NEED_AUTH, + _("The SOCKSv5 proxy requires authentication.")); + return FALSE; + } + *must_auth = TRUE; + break; + + case SOCKS5_AUTH_GSSAPI: + case SOCKS5_AUTH_NO_ACCEPT: + default: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_AUTH_FAILED, + _("The SOCKSv5 require an authentication method that is not " + "supported by GLib.")); + return FALSE; + break; + } + + return TRUE; +} + +#define SOCKS5_AUTH_MSG_LEN 515 +static gint +set_auth_msg (guint8 *msg, + const gchar *username, + const gchar *password, + GError **error) +{ + gint len = 0; + gint ulen = 0; /* username length */ + gint plen = 0; /* Password length */ + + if (username) + ulen = strlen (username); + + if (password) + plen = strlen (password); + + if (ulen > SOCKS5_MAX_LEN || plen > SOCKS5_MAX_LEN) + { + g_set_error (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("Username or password is too long for SOCKSv5 " + "protocol (max. is %i)."), + SOCKS5_MAX_LEN); + return FALSE; + } + + msg[len++] = SOCKS5_AUTH_VERSION; + msg[len++] = ulen; + + if (ulen > 0) + memcpy (msg + len, username, ulen); + + len += ulen; + msg[len++] = plen; + + if (plen > 0) + memcpy (msg + len, password, plen); + + len += plen; + + return len; +} + + +static gboolean +check_auth_status (const guint8 *data, GError **error) +{ + if (data[0] != SOCKS5_VERSION + || data[1] != SOCKS5_REP_SUCCEEDED) + { + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_AUTH_FAILED, + _("SOCKSv5 authentication failed due to wrong " + "username or password.")); + return FALSE; + } + return TRUE; +} + +/* + * +----+-----+-------+------+----------+----------+ + * |VER | CMD | RSV | ATYP | DST.ADDR | DST.PORT | + * +----+-----+-------+------+----------+----------+ + * | 1 | 1 | X'00' | 1 | Variable | 2 | + * +----+-----+-------+------+----------+----------+ + * DST.ADDR is a string with first byte being the size. So DST.ADDR may not be + * longer then 256 bytes. + */ +#define SOCKS5_CONN_MSG_LEN 262 +static gint +set_connect_msg (guint8 *msg, + const gchar *hostname, + guint16 port, + GError **error) +{ + guint len = 0; + + msg[len++] = SOCKS5_VERSION; + msg[len++] = SOCKS5_CMD_CONNECT; + msg[len++] = SOCKS5_RESERVED; + + if (g_hostname_is_ip_address (hostname)) + { + GInetAddress *addr = g_inet_address_new_from_string (hostname); + gsize addr_len = g_inet_address_get_native_size (addr); + + /* We are cheating for simplicity, here's the logic: + * 1 = IPV4 = 4 bytes / 4 + * 4 = IPV6 = 16 bytes / 4 */ + msg[len++] = addr_len / 4; + memcpy (msg + len, g_inet_address_to_bytes (addr), addr_len); + len += addr_len; + + g_object_unref (addr); + } + else + { + gsize host_len = strlen (hostname); + + if (host_len > SOCKS5_MAX_LEN) + { + g_set_error (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("Hostname '%s' too long for SOCKSv5 protocol " + "(maximum is %i bytes)"), + hostname, SOCKS5_MAX_LEN); + return -1; + } + + msg[len++] = SOCKS5_ATYP_DOMAINNAME; + msg[len++] = (guint8) host_len; + memcpy (msg + len, hostname, host_len); + len += host_len; + } + + { + guint16 hp = g_htons (port); + memcpy (msg + len, &hp, 2); + len += 2; + } + + return len; +} + +/* + * +----+-----+-------+------+----------+----------+ + * |VER | REP | RSV | ATYP | BND.ADDR | BND.PORT | + * +----+-----+-------+------+----------+----------+ + * | 1 | 1 | X'00' | 1 | Variable | 2 | + * +----+-----+-------+------+----------+----------+ + * This reply need to be read by small part to determin size. Buffer + * size is determined in function of the biggest part to read. + * + * The parser only requires 4 bytes. + */ +#define SOCKS5_CONN_REP_LEN 255 +static gboolean +parse_connect_reply (const guint8 *data, gint *atype, GError **error) +{ + if (data[0] != SOCKS5_VERSION) + { + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("The server is not a SOCKSv5 proxy server.")); + return FALSE; + } + + switch (data[1]) + { + case SOCKS5_REP_SUCCEEDED: + if (data[2] != SOCKS5_RESERVED) + { + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("The server is not a SOCKSv5 proxy server.")); + return FALSE; + } + + switch (data[3]) + { + case SOCKS5_ATYP_IPV4: + case SOCKS5_ATYP_IPV6: + case SOCKS5_ATYP_DOMAINNAME: + *atype = data[3]; + break; + + default: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("The SOCKSv5 proxy server uses unkown address type.")); + return FALSE; + } + break; + + case SOCKS5_REP_SRV_FAILURE: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("Internal SOCKSv5 proxy server error.")); + return FALSE; + break; + + case SOCKS5_REP_NOT_ALLOWED: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_NOT_ALLOWED, + _("SOCKSv5 connection not allowed by ruleset.")); + return FALSE; + break; + + case SOCKS5_REP_TTL_EXPIRED: + case SOCKS5_REP_HOST_UNREACH: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_HOST_UNREACHABLE, + _("Host unreachable through SOCKSv5 server.")); + return FALSE; + break; + + case SOCKS5_REP_NET_UNREACH: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_NETWORK_UNREACHABLE, + _("Network unreachable through SOCKSv5 proxy.")); + return FALSE; + break; + + case SOCKS5_REP_REFUSED: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_CONNECTION_REFUSED, + _("Connection refused through SOCKSv5 proxy.")); + return FALSE; + break; + + case SOCKS5_REP_CMD_NOT_SUP: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("SOCKSv5 proxy does not support 'connect' command.")); + return FALSE; + break; + + case SOCKS5_REP_ATYPE_NOT_SUP: + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("SOCKSv5 proxy does not support provided address type.")); + return FALSE; + break; + + default: /* Unknown error */ + g_set_error_literal (error, G_IO_ERROR, G_IO_ERROR_PROXY_FAILED, + _("Unkown SOCKSv5 proxy error.")); + return FALSE; + break; + } + + return TRUE; +} + +static GIOStream * +g_socks5_proxy_connect (GProxy *proxy, + GIOStream *io_stream, + GProxyAddress *proxy_address, + GCancellable *cancellable, + GError **error) +{ + gboolean has_auth; + GInputStream *in; + GOutputStream *out; + const gchar *hostname; + guint16 port; + const gchar *username; + const gchar *password; + + hostname = g_proxy_address_get_destination_hostname (proxy_address); + port = g_proxy_address_get_destination_port (proxy_address); + username = g_proxy_address_get_username (proxy_address); + password = g_proxy_address_get_password (proxy_address); + + has_auth = username || password; + + in = g_io_stream_get_input_stream (io_stream); + out = g_io_stream_get_output_stream (io_stream); + + /* Send SOCKS5 handshake */ + { + guint8 msg[SOCKS5_NEGO_MSG_LEN]; + gint len; + + len = set_nego_msg (msg, has_auth); + + if (!g_output_stream_write_all (out, msg, len, NULL, + cancellable, error)) + goto error; + } + + /* Recieve SOCKS5 response and reply with authentication if required */ + { + guint8 data[SOCKS5_NEGO_REP_LEN]; + gboolean must_auth = FALSE; + + if (!g_input_stream_read_all (in, data, sizeof (data), NULL, + cancellable, error)) + goto error; + + if (!parse_nego_reply (data, has_auth, &must_auth, error)) + goto error; + + if (must_auth) + { + guint8 msg[SOCKS5_AUTH_MSG_LEN]; + gint len; + + len = set_auth_msg (msg, username, password, error); + + if (len < 0) + goto error; + + if (!g_output_stream_write_all (out, msg, len, NULL, + cancellable, error)) + goto error; + + if (!g_input_stream_read_all (in, data, sizeof (data), NULL, + cancellable, error)) + goto error; + + if (!check_auth_status (data, error)) + goto error; + } + } + + /* Send SOCKS5 connection request */ + { + guint8 msg[SOCKS5_CONN_MSG_LEN]; + gint len; + + len = set_connect_msg (msg, hostname, port, error); + + if (len < 0) + goto error; + + if (!g_output_stream_write_all (out, msg, len, NULL, + cancellable, error)) + goto error; + } + + /* Read SOCKS5 response */ + { + guint8 data[SOCKS5_CONN_REP_LEN]; + gint atype; + + if (!g_input_stream_read_all (in, data, 4, NULL, + cancellable, error)) + goto error; + + if (!parse_connect_reply (data, &atype, error)) + goto error; + + switch (atype) + { + case SOCKS5_ATYP_IPV4: + if (!g_input_stream_read_all (in, data, 6, NULL, + cancellable, error)) + goto error; + break; + + case SOCKS5_ATYP_IPV6: + if (!g_input_stream_read_all (in, data, 18, NULL, + cancellable, error)) + goto error; + break; + + case SOCKS5_ATYP_DOMAINNAME: + if (!g_input_stream_read_all (in, data, 1, NULL, + cancellable, error)) + goto error; + if (!g_input_stream_read_all (in, data, data[0] + 2, NULL, + cancellable, error)) + goto error; + break; + } + } + + return g_object_ref (io_stream); + +error: + return NULL; +} + + +typedef struct +{ + GSimpleAsyncResult *simple; + GIOStream *io_stream; + gchar *hostname; + guint16 port; + gchar *username; + gchar *password; + guint8 *buffer; + gssize length; + gssize offset; + GCancellable *cancellable; +} ConnectAsyncData; + +static void nego_msg_write_cb (GObject *source, + GAsyncResult *res, + gpointer user_data); +static void nego_reply_read_cb (GObject *source, + GAsyncResult *res, + gpointer user_data); +static void auth_msg_write_cb (GObject *source, + GAsyncResult *res, + gpointer user_data); +static void auth_reply_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data); +static void send_connect_msg (ConnectAsyncData *data); +static void connect_msg_write_cb (GObject *source, + GAsyncResult *result, + gpointer user_data); +static void connect_reply_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data); +static void connect_addr_len_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data); +static void connect_addr_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data); + +static void +free_connect_data (ConnectAsyncData *data) +{ + if (data->io_stream) + g_object_unref (data->io_stream); + + g_free (data->hostname); + g_free (data->username); + g_free (data->password); + + if (data->cancellable) + g_object_unref (data->cancellable); + + g_slice_free (ConnectAsyncData, data); +} + +static void +complete_async_from_error (ConnectAsyncData *data, GError *error) +{ + GSimpleAsyncResult *simple = data->simple; + g_simple_async_result_set_from_error (data->simple, + error); + g_error_free (error); + g_simple_async_result_set_op_res_gpointer (simple, NULL, NULL); + g_simple_async_result_complete (simple); + g_object_unref (simple); +} + +static void +do_read (GAsyncReadyCallback callback, ConnectAsyncData *data) +{ + GInputStream *in; + in = g_io_stream_get_input_stream (data->io_stream); + g_input_stream_read_async (in, + data->buffer + data->offset, + data->length - data->offset, + G_PRIORITY_DEFAULT, data->cancellable, + callback, data); +} + +static void +do_write (GAsyncReadyCallback callback, ConnectAsyncData *data) +{ + GOutputStream *out; + out = g_io_stream_get_output_stream (data->io_stream); + g_output_stream_write_async (out, + data->buffer + data->offset, + data->length - data->offset, + G_PRIORITY_DEFAULT, data->cancellable, + callback, data); +} + +static void +g_socks5_proxy_connect_async (GProxy *proxy, + GIOStream *io_stream, + GProxyAddress *proxy_address, + GCancellable *cancellable, + GAsyncReadyCallback callback, + gpointer user_data) +{ + GSimpleAsyncResult *simple; + ConnectAsyncData *data; + + simple = g_simple_async_result_new (G_OBJECT (proxy), + callback, user_data, + g_socks5_proxy_connect_async); + + data = g_slice_new0 (ConnectAsyncData); + + data->simple = simple; + data->io_stream = g_object_ref (io_stream); + + if (cancellable) + data->cancellable = g_object_ref (cancellable); + + g_object_get (G_OBJECT (proxy_address), + "destination-hostname", &data->hostname, + "destination-port", &data->port, + "username", &data->username, + "password", &data->password, + NULL); + + g_simple_async_result_set_op_res_gpointer (simple, data, + (GDestroyNotify) free_connect_data); + + data->buffer = g_malloc0 (SOCKS5_NEGO_MSG_LEN); + data->length = set_nego_msg (data->buffer, + data->username || data->password); + data->offset = 0; + + do_write (nego_msg_write_cb, data); +} + + +static void +nego_msg_write_cb (GObject *source, + GAsyncResult *res, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize written; + + written = g_output_stream_write_finish (G_OUTPUT_STREAM (source), + res, &error); + + if (written < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += written; + + if (data->offset == data->length) + { + g_free (data->buffer); + + data->buffer = g_malloc0 (SOCKS5_NEGO_REP_LEN); + data->length = SOCKS5_NEGO_REP_LEN; + data->offset = 0; + + do_read (nego_reply_read_cb, data); + } + else + { + do_write (nego_msg_write_cb, data); + } +} + +static void +nego_reply_read_cb (GObject *source, + GAsyncResult *res, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize read; + + read = g_input_stream_read_finish (G_INPUT_STREAM (source), + res, &error); + + if (read < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += read; + + if (data->offset == data->length) + { + GError *error; + gboolean must_auth = FALSE; + gboolean has_auth = data->username || data->password; + + if (!parse_nego_reply (data->buffer, has_auth, &must_auth, &error)) + { + complete_async_from_error (data, error); + return; + } + + if (must_auth) + { + g_free (data->buffer); + + data->buffer = g_malloc0 (SOCKS5_AUTH_MSG_LEN); + data->length = set_auth_msg (data->buffer, + data->username, + data->password, + &error); + data->offset = 0; + + if (data->length < 0) + { + complete_async_from_error (data, error); + return; + } + + do_write (auth_msg_write_cb, data); + } + else + { + send_connect_msg (data); + } + } + else + { + do_read (nego_reply_read_cb, data); + } +} + +static void +auth_msg_write_cb (GObject *source, + GAsyncResult *result, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize written; + + written = g_output_stream_write_finish (G_OUTPUT_STREAM (source), + result, &error); + + if (written < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += written; + + if (data->offset == data->length) + { + g_free (data->buffer); + + data->buffer = g_malloc0 (SOCKS5_NEGO_REP_LEN); + data->length = SOCKS5_NEGO_REP_LEN; + data->offset = 0; + + do_read (auth_reply_read_cb, data); + } + else + { + do_write (auth_msg_write_cb, data); + } +} + +static void +auth_reply_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize read; + + read = g_input_stream_read_finish (G_INPUT_STREAM (source), + result, &error); + + if (read < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += read; + + if (data->offset == data->length) + { + if (!check_auth_status (data->buffer, &error)) + { + complete_async_from_error (data, error); + return; + } + + send_connect_msg (data); + } + else + { + do_read (auth_reply_read_cb, data); + } +} + +static void +send_connect_msg (ConnectAsyncData *data) +{ + GError *error = NULL; + + g_free (data->buffer); + + data->buffer = g_malloc0 (SOCKS5_CONN_MSG_LEN); + data->length = set_connect_msg (data->buffer, + data->hostname, + data->port, + &error); + data->offset = 0; + + if (data->length < 0) + { + complete_async_from_error (data, error); + return; + } + + do_write (connect_msg_write_cb, data); +} + +static void +connect_msg_write_cb (GObject *source, + GAsyncResult *result, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize written; + + written = g_output_stream_write_finish (G_OUTPUT_STREAM (source), + result, &error); + + if (written < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += written; + + if (data->offset == data->length) + { + g_free (data->buffer); + + data->buffer = g_malloc0 (SOCKS5_CONN_REP_LEN); + data->length = 4; + data->offset = 0; + + do_read (connect_reply_read_cb, data); + } + else + { + do_write (connect_msg_write_cb, data); + } +} + +static void +connect_reply_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize read; + + read = g_input_stream_read_finish (G_INPUT_STREAM (source), + result, &error); + + if (read < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += read; + + if (data->offset == data->length) + { + gint atype; + + if (!parse_connect_reply (data->buffer, &atype, &error)) + { + complete_async_from_error (data, error); + return; + } + + switch (atype) + { + case SOCKS5_ATYP_IPV4: + data->length = 6; + data->offset = 0; + do_read (connect_addr_read_cb, data); + break; + + case SOCKS5_ATYP_IPV6: + data->length = 18; + data->offset = 0; + do_read (connect_addr_read_cb, data); + break; + + case SOCKS5_ATYP_DOMAINNAME: + data->length = 1; + data->offset = 0; + do_read (connect_addr_len_read_cb, data); + break; + } + } + else + { + do_read (connect_reply_read_cb, data); + } +} + +static void +connect_addr_len_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize read; + + read = g_input_stream_read_finish (G_INPUT_STREAM (source), + result, &error); + + if (read < 0) + { + complete_async_from_error (data, error); + return; + } + + data->length = data->buffer[0] + 2; + data->offset = 0; + + do_read (connect_addr_read_cb, data); +} + +static void +connect_addr_read_cb (GObject *source, + GAsyncResult *result, + gpointer user_data) +{ + GError *error = NULL; + ConnectAsyncData *data = user_data; + gssize read; + + read = g_input_stream_read_finish (G_INPUT_STREAM (source), + result, &error); + + if (read < 0) + { + complete_async_from_error (data, error); + return; + } + + data->offset += read; + + if (data->offset == data->length) + { + GSimpleAsyncResult *simple = data->simple; + g_simple_async_result_complete (simple); + g_object_unref (simple); + } + else + { + do_read (connect_reply_read_cb, data); + } +} + +static GIOStream * +g_socks5_proxy_connect_finish (GProxy *proxy, + GAsyncResult *result, + GError **error) +{ + GSimpleAsyncResult *simple = G_SIMPLE_ASYNC_RESULT (result); + ConnectAsyncData *data = g_simple_async_result_get_op_res_gpointer (simple); + + if (g_simple_async_result_propagate_error (simple, error)) + return NULL; + + return g_object_ref (data->io_stream); +} + +static gboolean +g_socks5_proxy_supports_hostname (GProxy *proxy) +{ + return TRUE; +} + +static void +g_socks5_proxy_class_init (GSocks5ProxyClass *class) +{ + GObjectClass *object_class; + + object_class = (GObjectClass *) class; + object_class->finalize = g_socks5_proxy_finalize; +} + +static void +g_socks5_proxy_iface_init (GProxyInterface *proxy_iface) +{ + proxy_iface->connect = g_socks5_proxy_connect; + proxy_iface->connect_async = g_socks5_proxy_connect_async; + proxy_iface->connect_finish = g_socks5_proxy_connect_finish; + proxy_iface->supports_hostname = g_socks5_proxy_supports_hostname; +} diff --git a/gio/gsocks5proxy.h b/gio/gsocks5proxy.h new file mode 100644 index 000000000..c55d603e8 --- /dev/null +++ b/gio/gsocks5proxy.h @@ -0,0 +1,48 @@ + /* GIO - GLib Input, Output and Streaming Library + * + * Copyright (C) 2008, 2010 Collabora, Ltd. + * Copyright (C) 2008 Nokia Corporation. All rights reserved. + * + * This library is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 2 of the License, or (at your option) any later version. + * + * This library is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General + * Public License along with this library; if not, write to the + * Free Software Foundation, Inc., 59 Temple Place, Suite 330, + * Boston, MA 02111-1307, USA. + * + * Author: Youness Alaoui <youness.alaoui@collabora.co.uk + * + * Contributors: + * Nicolas Dufresne <nicolas.dufresne@collabora.co.uk> + */ + +#ifndef __G_SOCKS5_PROXY_H__ +#define __G_SOCKS5_PROXY_H__ + +#include <gio/giotypes.h> + +G_BEGIN_DECLS + +#define G_TYPE_SOCKS5_PROXY (_g_socks5_proxy_get_type ()) +#define G_SOCKS5_PROXY(o) (G_TYPE_CHECK_INSTANCE_CAST ((o), G_TYPE_SOCKS5_PROXY, GSocks5Proxy)) +#define G_SOCKS5_PROXY_CLASS(k) (G_TYPE_CHECK_CLASS_CAST((k), G_TYPE_SOCKS5_PROXY, GSocks5ProxyClass)) +#define G_IS_SOCKS5_PROXY(o) (G_TYPE_CHECK_INSTANCE_TYPE ((o), G_TYPE_SOCKS5_PROXY)) +#define G_IS_SOCKS5_PROXY_CLASS(k) (G_TYPE_CHECK_CLASS_TYPE ((k), G_TYPE_SOCKS5_PROXY)) +#define G_SOCKS5_PROXY_GET_CLASS(o) (G_TYPE_INSTANCE_GET_CLASS ((o), G_TYPE_SOCKS5_PROXY, GSocks5ProxyClass)) + +typedef struct _GSocks5Proxy GSocks5Proxy; +typedef struct _GSocks5ProxyClass GSocks5ProxyClass; + +GType _g_socks5_proxy_get_type (void); + +G_END_DECLS + +#endif /* __SOCKS5_PROXY_H__ */ diff --git a/po/POTFILES.in b/po/POTFILES.in index 060f12230..1861177e5 100644 --- a/po/POTFILES.in +++ b/po/POTFILES.in @@ -102,6 +102,7 @@ gio/gsocketconnection.c gio/gsocketinputstream.c gio/gsocketlistener.c gio/gsocketoutputstream.c +gio/gsocks5proxy.c gio/gtcpconnection.c gio/gthemedicon.c gio/gthreadedsocketservice.c |