vtun 隧道建立分析

一、下面分析client端的认证函数(认证过程就是隧道建立过程)

函数client和server分别在文件client.c和server.c中,先分析client.

if( (s = socket(AF_INET,SOCK_STREAM,0))==-1 )。。。

隧道使用sock_STREAM建立的,但是隧道中数据的传输可用TCP也可用UDP。

if( bind(s,(struct sockaddr *)&my_addr,sizeof(my_addr)) )。。。

if( connect_t(s,(struct sockaddr *) &svr_addr, host->timeout) )。。。

看connect_t函数,在netlib.c函数中定义,

/* Connect with timeout */
int connect_t(int s, struct sockaddr *svr, time_t timeout)
{
#if defined(VTUN_SOCKS) && VTUN_SOCKS == 2
     /* Some SOCKS implementations don't support
      * non blocking connect */
     return connect(s,svr,sizeof(struct sockaddr));
#else
     int sock_flags;
     fd_set fdset;
     struct timeval tv;

     tv.tv_usec=0; tv.tv_sec=timeout;

     sock_flags=fcntl(s,F_GETFL);
     if( fcntl(s,F_SETFL,O_NONBLOCK) < 0 )
        return -1;

     if( connect(s,svr,sizeof(struct sockaddr)) < 0 && errno != EINPROGRESS)
        return -1;

     FD_ZERO(&fdset);
     FD_SET(s,&fdset);
     if( select(s+1,NULL,&fdset,NULL,timeout?&tv:NULL) > 0 ){
        int l=sizeof(errno);    
        errno=0;
        getsockopt(s,SOL_SOCKET,SO_ERROR,&errno,&l);
     } else
        errno=ETIMEDOUT;     

     fcntl(s,F_SETFL,sock_flags);

     if( errno )
        return -1;

     return 0;
#endif
}//end connect_t

 

看黑体字部分,fcntl函数。

fcntl功能是获取或设置文件描述符状态,这里讲socket设置为非阻塞,O_NONBLOCK.

 

上面是建立连接的过程,下面分析svr_addr是如何获得的,

回到client.c,

if( connect_t(s,(struct sockaddr *) &svr_addr, host->timeout) )…

找到下面代码,

/* Set server address */
        if( server_addr(&svr_addr, host) < 0 )
            continue;

server_addr在netlib.h中,

int server_addr(struct sockaddr_in *addr, struct vtun_host *host)
{
     struct hostent * hent;

     memset(addr,0,sizeof(struct sockaddr_in));
     addr->sin_family = AF_INET;
     addr->sin_port = htons(vtun.bind_addr.port);

     /* Lookup server's IP address.
      * We do it on every reconnect because server's IP
      * address can be dynamic.
      */
     if( !(hent = gethostbyname(vtun.svr_name)) ){
        vtun_syslog(LOG_ERR, "Can't resolv server address: %s", vtun.svr_name);
        return -1;
     }
     addr->sin_addr.s_addr = *(unsigned long *)hent->h_addr;

     host->sopt.raddr = strdup(inet_ntoa(addr->sin_addr));
     host->sopt.rport = vtun.bind_addr.port;

     return 0;
}

需找到vtun,在main.c中,全局变量,

/* Global options for the server and client */
struct vtun_opts vtun;

/*如果不是服务器端,再根据输入参数进行客户端配置*/
    if(!svr)
    {
        if( argc - optind < 2 ){
            usage();
            exit(1);
        }

        hst = argv[optind++];//vtund server [ip]的第二个参数给hst,这个参数是服务器给客户端定义的名字。

        if( !(host = find_host(hst)) )    //find_host就是从配置文件返回的host
        {
            vtun_syslog(LOG_ERR,"Host %s not found in %s", hst, vtun.cfg_file);
            exit(1);
        }

       vtun.svr_name = strdup(argv[optind]);//vtund server [ip]的ip给vtun.srv_name
    }

 

svr_addr就是客户端命令行参数中的那个IP!(也可是配置文件中的)

 

建立连接之后,是通过auth.c文件进行最后隧道的建立,再次说明,隧道建立的过程使用的是tcp,并没有封装解封操作。

主要涉及两个函数:

struct vtun_host * auth_server(int fd)

int auth_client(int fd, struct vtun_host *host)

我们来看一下,客户端认证时干了什么,分析auth_client,

/* Authentication (Client side) */
int auth_client(int fd, struct vtun_host *host)
{
    char buf[VTUN_MESG_SIZE], chal[VTUN_CHAL_SIZE];
    int stage, success=0 ;
    stage = ST_INIT;

    while( readn_t(fd, buf, VTUN_MESG_SIZE, vtun.timeout) > 0 )
    {
        buf[sizeof(buf)-1]='\0';
        switch( stage )
        {
            case ST_INIT:
                if( !strncmp(buf,"VTUN",4) )
                {
                   stage = ST_HOST;
                    print_p(fd,"HOST: %s\n",host->host);
                    continue;
                }
                break;
            case ST_HOST:
                if( !strncmp(buf,"OK",2) && cs2cl(buf,chal))
                {
                    stage = ST_CHAL;

                   encrypt_chal(chal,host->passwd);
                   print_p(fd,"CHAL: %s\n", cl2cs(chal));
                    continue;
                }
                break;
            case ST_CHAL:
                if( !strncmp(buf,"OK",2) && cf2bf(buf,host) )
                    success = 1;
                break;
        }
        break;
    }//end while
    return success;
}

auth_client的参数fd是什么,就是客户端认证套接字描述符。

print_p就是向server发送认证消息——host和passwd.

 

int print_p(int fd,const char *fmt, ...)
{
    char buf[VTUN_MESG_SIZE];
    va_list ap;

    memset(buf,0,sizeof(buf));

    /* print the argument string */
    va_start(ap, fmt);
    vsnprintf(buf,sizeof(buf)-1, fmt, ap);
    va_end(ap);
    return write_n(fd, buf, sizeof(buf));
}

 

二、下面分析server端的认证函数

if( (host=auth_server(sock)) )

/* Authentication (Server side) */
struct vtun_host * auth_server(int fd)
{
        char chal_req[VTUN_CHAL_SIZE], chal_res[VTUN_CHAL_SIZE];   
    char buf[VTUN_MESG_SIZE], *str1, *str2;
        struct vtun_host *h = NULL;
    char *host = NULL;
    int  stage;

        set_title("authentication");

    print_p(fd,"VTUN server ver %s\n",VTUN_VER);

    stage = ST_HOST;

    while( readn_t(fd, buf, VTUN_MESG_SIZE, vtun.timeout) > 0 ){
       buf[sizeof(buf)-1]='\0';
       strtok(buf,"\r\n");

       if( !(str1=strtok(buf," :")) )
          break;
       if( !(str2=strtok(NULL," :")) )
          break;

       switch( stage ){
         case ST_HOST:
            if( !strcmp(str1,"HOST") ){
           host = strdup(str2);

           gen_chal(chal_req);
           print_p(fd,"OK CHAL: %s\n", cl2cs(chal_req));

           stage = ST_CHAL;
           continue;
            }
        break;
         case ST_CHAL:
            if( !strcmp(str1,"CHAL") ){
           if( !cs2cl(str2,chal_res) )
              break;
           if( !(h = find_host(host)) )
              break;

           decrypt_chal(chal_res, h->passwd);          
           if( !memcmp(chal_req, chal_res, VTUN_CHAL_SIZE) ){
              /* Auth successeful. */

              /* Lock host */   
              if( lock_host(h) < 0 ){
                 /* Multiple connections are denied */
                 h = NULL;
                 break;
              }   
              print_p(fd,"OK FLAGS: %s\n", bf2cf(h));
            } else
              h = NULL;
            }
        break;
        }
       break;
    }

    if( host )
       free(host);

    if( !h )
       print_p(fd,"ERR\n");   

    return h;
}

 

认证成功后用print_p想client发送认证成功信息即——ok字符串。

你可能感兴趣的:(分析)