Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 1 | /* |
Chia-chi Yeh | e9fc376 | 2011-07-07 03:20:34 -0700 | [diff] [blame] | 2 | * Copyright (C) 2011 The Android Open Source Project |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | |
| 17 | #include <stdio.h> |
| 18 | #include <stdlib.h> |
Chia-chi Yeh | bd5fa3c | 2009-07-07 16:24:13 +0800 | [diff] [blame] | 19 | #include <stdarg.h> |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 20 | #include <signal.h> |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 21 | #include <poll.h> |
Chia-chi Yeh | 66d08f4 | 2012-09-17 00:29:46 -0700 | [diff] [blame] | 22 | #include <unistd.h> |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 23 | |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 24 | #include "config.h" |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 25 | #include "gcmalloc.h" |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 26 | #include "schedule.h" |
Chia-chi Yeh | bd5fa3c | 2009-07-07 16:24:13 +0800 | [diff] [blame] | 27 | #include "plog.h" |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 28 | |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 29 | #ifdef ANDROID_CHANGES |
| 30 | |
Kenny Root | c1b51d4 | 2012-03-15 09:42:07 -0700 | [diff] [blame] | 31 | #include <openssl/engine.h> |
| 32 | |
Chia-chi Yeh | 1070097 | 2011-07-12 18:06:57 -0700 | [diff] [blame] | 33 | #include <string.h> |
| 34 | #include <sys/types.h> |
| 35 | #include <sys/socket.h> |
| 36 | #include <sys/ioctl.h> |
| 37 | #include <sys/stat.h> |
| 38 | #include <fcntl.h> |
| 39 | #include <errno.h> |
| 40 | #include <linux/if.h> |
| 41 | #include <linux/if_tun.h> |
| 42 | |
| 43 | #include <android/log.h> |
| 44 | #include <cutils/sockets.h> |
| 45 | #include <private/android_filesystem_config.h> |
| 46 | |
Chia-chi Yeh | cadace4 | 2011-12-08 16:22:51 -0800 | [diff] [blame] | 47 | static void notify_death() |
| 48 | { |
| 49 | creat("/data/misc/vpn/abort", 0); |
| 50 | } |
| 51 | |
Chia-chi Yeh | 4dd8f6b | 2011-07-13 19:18:58 -0700 | [diff] [blame] | 52 | static int android_get_control_and_arguments(int *argc, char ***argv) |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 53 | { |
Chia-chi Yeh | c9ac7d2 | 2011-06-28 18:37:45 -0700 | [diff] [blame] | 54 | static char *args[32]; |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 55 | int control; |
| 56 | int i; |
| 57 | |
Chia-chi Yeh | cadace4 | 2011-12-08 16:22:51 -0800 | [diff] [blame] | 58 | atexit(notify_death); |
| 59 | |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 60 | if ((i = android_get_control_socket("racoon")) == -1) { |
Chia-chi Yeh | e9fc376 | 2011-07-07 03:20:34 -0700 | [diff] [blame] | 61 | return -1; |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 62 | } |
| 63 | do_plog(LLV_DEBUG, "Waiting for control socket"); |
| 64 | if (listen(i, 1) == -1 || (control = accept(i, NULL, 0)) == -1) { |
| 65 | do_plog(LLV_ERROR, "Cannot get control socket"); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 66 | exit(1); |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 67 | } |
| 68 | close(i); |
Chia-chi Yeh | 3724e61 | 2011-08-22 13:05:42 -0700 | [diff] [blame] | 69 | fcntl(control, F_SETFD, FD_CLOEXEC); |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 70 | |
| 71 | args[0] = (*argv)[0]; |
Chia-chi Yeh | c9ac7d2 | 2011-06-28 18:37:45 -0700 | [diff] [blame] | 72 | for (i = 1; i < 32; ++i) { |
| 73 | unsigned char bytes[2]; |
Chia-chi Yeh | 3724e61 | 2011-08-22 13:05:42 -0700 | [diff] [blame] | 74 | if (recv(control, &bytes[0], 1, 0) != 1 || |
| 75 | recv(control, &bytes[1], 1, 0) != 1) { |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 76 | do_plog(LLV_ERROR, "Cannot get argument length"); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 77 | exit(1); |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 78 | } else { |
Chia-chi Yeh | 3724e61 | 2011-08-22 13:05:42 -0700 | [diff] [blame] | 79 | int length = bytes[0] << 8 | bytes[1]; |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 80 | int offset = 0; |
Chia-chi Yeh | c9ac7d2 | 2011-06-28 18:37:45 -0700 | [diff] [blame] | 81 | |
Chia-chi Yeh | 3724e61 | 2011-08-22 13:05:42 -0700 | [diff] [blame] | 82 | if (length == 0xFFFF) { |
| 83 | break; |
| 84 | } |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 85 | args[i] = malloc(length + 1); |
| 86 | while (offset < length) { |
| 87 | int n = recv(control, &args[i][offset], length - offset, 0); |
| 88 | if (n > 0) { |
| 89 | offset += n; |
| 90 | } else { |
| 91 | do_plog(LLV_ERROR, "Cannot get argument value"); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 92 | exit(1); |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 93 | } |
| 94 | } |
| 95 | args[i][length] = 0; |
| 96 | } |
| 97 | } |
| 98 | do_plog(LLV_DEBUG, "Received %d arguments", i - 1); |
| 99 | |
| 100 | *argc = i; |
| 101 | *argv = args; |
Chia-chi Yeh | e9fc376 | 2011-07-07 03:20:34 -0700 | [diff] [blame] | 102 | return control; |
Chia-chi Yeh | c454954 | 2009-07-22 06:46:14 +0800 | [diff] [blame] | 103 | } |
| 104 | |
Chia-chi Yeh | a9a07ac | 2011-07-19 18:29:16 -0700 | [diff] [blame] | 105 | const char *android_hook(char **envp) |
Chia-chi Yeh | 1070097 | 2011-07-12 18:06:57 -0700 | [diff] [blame] | 106 | { |
Chia-chi Yeh | 1070097 | 2011-07-12 18:06:57 -0700 | [diff] [blame] | 107 | struct ifreq ifr = {.ifr_flags = IFF_TUN}; |
Chia-chi Yeh | dc6f5b9 | 2011-07-14 15:29:06 -0700 | [diff] [blame] | 108 | int tun = open("/dev/tun", 0); |
Chia-chi Yeh | 1070097 | 2011-07-12 18:06:57 -0700 | [diff] [blame] | 109 | |
Chia-chi Yeh | a9a07ac | 2011-07-19 18:29:16 -0700 | [diff] [blame] | 110 | /* Android does not support INTERNAL_WINS4_LIST, so we just use it. */ |
Chia-chi Yeh | dc6f5b9 | 2011-07-14 15:29:06 -0700 | [diff] [blame] | 111 | while (*envp && strncmp(*envp, "INTERNAL_WINS4_LIST=", 20)) { |
| 112 | ++envp; |
| 113 | } |
| 114 | if (!*envp) { |
| 115 | do_plog(LLV_ERROR, "Cannot find environment variable\n"); |
| 116 | exit(1); |
| 117 | } |
Chia-chi Yeh | 1070097 | 2011-07-12 18:06:57 -0700 | [diff] [blame] | 118 | if (ioctl(tun, TUNSETIFF, &ifr)) { |
| 119 | do_plog(LLV_ERROR, "Cannot allocate TUN: %s\n", strerror(errno)); |
| 120 | exit(1); |
| 121 | } |
Chia-chi Yeh | dc6f5b9 | 2011-07-14 15:29:06 -0700 | [diff] [blame] | 122 | sprintf(*envp, "INTERFACE=%s", ifr.ifr_name); |
Chia-chi Yeh | a9a07ac | 2011-07-19 18:29:16 -0700 | [diff] [blame] | 123 | return "/etc/ppp/ip-up-vpn"; |
Chia-chi Yeh | 1070097 | 2011-07-12 18:06:57 -0700 | [diff] [blame] | 124 | } |
| 125 | |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 126 | #endif |
| 127 | |
Chia-chi Yeh | c454954 | 2009-07-22 06:46:14 +0800 | [diff] [blame] | 128 | extern void setup(int argc, char **argv); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 129 | |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 130 | static int monitors; |
| 131 | static void (*callbacks[10])(int fd); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 132 | static struct pollfd pollfds[10]; |
Chia-chi Yeh | c454954 | 2009-07-22 06:46:14 +0800 | [diff] [blame] | 133 | |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 134 | char *pname; |
| 135 | |
Chia-chi Yeh | c454954 | 2009-07-22 06:46:14 +0800 | [diff] [blame] | 136 | static void terminate(int signal) |
| 137 | { |
| 138 | exit(1); |
| 139 | } |
| 140 | |
| 141 | static void terminated() |
| 142 | { |
| 143 | do_plog(LLV_INFO, "Bye\n"); |
| 144 | } |
| 145 | |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 146 | void monitor_fd(int fd, void (*callback)(int)) |
| 147 | { |
| 148 | if (fd < 0 || monitors == 10) { |
| 149 | do_plog(LLV_ERROR, "Cannot monitor fd"); |
| 150 | exit(1); |
| 151 | } |
| 152 | callbacks[monitors] = callback; |
| 153 | pollfds[monitors].fd = fd; |
| 154 | pollfds[monitors].events = callback ? POLLIN : 0; |
| 155 | ++monitors; |
| 156 | } |
| 157 | |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 158 | int main(int argc, char **argv) |
| 159 | { |
Chia-chi Yeh | e9fc376 | 2011-07-07 03:20:34 -0700 | [diff] [blame] | 160 | #ifdef ANDROID_CHANGES |
Chia-chi Yeh | 4dd8f6b | 2011-07-13 19:18:58 -0700 | [diff] [blame] | 161 | int control = android_get_control_and_arguments(&argc, &argv); |
Adam Langley | a029281 | 2014-09-30 15:20:01 -0700 | [diff] [blame] | 162 | #if !defined(OPENSSL_IS_BORINGSSL) |
| 163 | ENGINE *engine; |
| 164 | #endif |
| 165 | |
Chia-chi Yeh | e9fc376 | 2011-07-07 03:20:34 -0700 | [diff] [blame] | 166 | if (control != -1) { |
Chia-chi Yeh | 8f3b388 | 2011-07-07 13:43:20 -0700 | [diff] [blame] | 167 | pname = "%p"; |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 168 | monitor_fd(control, NULL); |
Kenny Root | c1b51d4 | 2012-03-15 09:42:07 -0700 | [diff] [blame] | 169 | |
Adam Langley | a029281 | 2014-09-30 15:20:01 -0700 | [diff] [blame] | 170 | #if !defined(OPENSSL_IS_BORINGSSL) |
Kenny Root | c1b51d4 | 2012-03-15 09:42:07 -0700 | [diff] [blame] | 171 | ENGINE_load_dynamic(); |
Adam Langley | a029281 | 2014-09-30 15:20:01 -0700 | [diff] [blame] | 172 | engine = ENGINE_by_id("keystore"); |
| 173 | if (!engine || !ENGINE_init(engine)) { |
Kenny Root | c1b51d4 | 2012-03-15 09:42:07 -0700 | [diff] [blame] | 174 | do_plog(LLV_ERROR, "ipsec-tools: cannot load keystore engine"); |
| 175 | exit(1); |
| 176 | } |
Adam Langley | a029281 | 2014-09-30 15:20:01 -0700 | [diff] [blame] | 177 | #endif |
Chia-chi Yeh | e9fc376 | 2011-07-07 03:20:34 -0700 | [diff] [blame] | 178 | } |
| 179 | #endif |
| 180 | |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 181 | do_plog(LLV_INFO, "ipsec-tools 0.7.3 (http://ipsec-tools.sf.net)\n"); |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 182 | |
Chia-chi Yeh | 7197eb7 | 2009-07-13 16:43:29 +0800 | [diff] [blame] | 183 | signal(SIGHUP, terminate); |
| 184 | signal(SIGINT, terminate); |
| 185 | signal(SIGTERM, terminate); |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 186 | signal(SIGPIPE, SIG_IGN); |
Chia-chi Yeh | 9d271b6 | 2009-07-30 17:23:56 +0800 | [diff] [blame] | 187 | atexit(terminated); |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 188 | |
Chia-chi Yeh | 12f4493 | 2011-07-13 16:40:15 -0700 | [diff] [blame] | 189 | setup(argc, argv); |
| 190 | |
| 191 | #ifdef ANDROID_CHANGES |
Chia-chi Yeh | 3724e61 | 2011-08-22 13:05:42 -0700 | [diff] [blame] | 192 | shutdown(control, SHUT_WR); |
Chia-chi Yeh | 12f4493 | 2011-07-13 16:40:15 -0700 | [diff] [blame] | 193 | setuid(AID_VPN); |
| 194 | #endif |
| 195 | |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 196 | while (1) { |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 197 | struct timeval *tv = schedular(); |
| 198 | int timeout = tv->tv_sec * 1000 + tv->tv_usec / 1000 + 1; |
| 199 | |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 200 | if (poll(pollfds, monitors, timeout) > 0) { |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 201 | int i; |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 202 | for (i = 0; i < monitors; ++i) { |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 203 | if (pollfds[i].revents & POLLHUP) { |
Chia-chi Yeh | 66d08f4 | 2012-09-17 00:29:46 -0700 | [diff] [blame] | 204 | do_plog(LLV_INFO, "Connection is closed\n", pollfds[i].fd); |
| 205 | /* Wait for few seconds to consume late messages. */ |
| 206 | sleep(5); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 207 | exit(1); |
| 208 | } |
| 209 | if (pollfds[i].revents & POLLIN) { |
Chia-chi Yeh | c91307a | 2012-03-26 14:18:52 -0700 | [diff] [blame] | 210 | callbacks[i](pollfds[i].fd); |
Chia-chi Yeh | f8a6a76 | 2011-07-04 17:21:23 -0700 | [diff] [blame] | 211 | } |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 212 | } |
| 213 | } |
| 214 | } |
Adam Langley | a029281 | 2014-09-30 15:20:01 -0700 | [diff] [blame] | 215 | |
| 216 | #if !defined(OPENSSL_IS_BORINGSSL) |
| 217 | if (engine) { |
| 218 | ENGINE_finish(engine); |
| 219 | ENGINE_free(engine); |
Kenny Root | c1b51d4 | 2012-03-15 09:42:07 -0700 | [diff] [blame] | 220 | } |
| 221 | #endif |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 222 | return 0; |
| 223 | } |
| 224 | |
| 225 | /* plog.h */ |
| 226 | |
| 227 | void do_plog(int level, char *format, ...) |
| 228 | { |
Chia-chi Yeh | 458fe1e | 2009-06-26 14:36:17 +0800 | [diff] [blame] | 229 | if (level >= 0 && level <= 5) { |
| 230 | #ifdef ANDROID_CHANGES |
| 231 | static int levels[6] = { |
| 232 | ANDROID_LOG_ERROR, ANDROID_LOG_WARN, ANDROID_LOG_INFO, |
| 233 | ANDROID_LOG_INFO, ANDROID_LOG_DEBUG, ANDROID_LOG_VERBOSE |
| 234 | }; |
| 235 | va_list ap; |
| 236 | va_start(ap, format); |
| 237 | __android_log_vprint(levels[level], "racoon", format, ap); |
| 238 | va_end(ap); |
| 239 | #else |
| 240 | static char *levels = "EWNIDV"; |
| 241 | fprintf(stderr, "%c: ", levels[level]); |
| 242 | va_list ap; |
| 243 | va_start(ap, format); |
| 244 | vfprintf(stderr, format, ap); |
| 245 | va_end(ap); |
| 246 | #endif |
| 247 | } |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 248 | } |
| 249 | |
| 250 | char *binsanitize(char *data, size_t length) |
| 251 | { |
| 252 | char *output = racoon_malloc(length + 1); |
| 253 | if (output) { |
| 254 | size_t i; |
| 255 | for (i = 0; i < length; ++i) { |
Chia-chi Yeh | c454954 | 2009-07-22 06:46:14 +0800 | [diff] [blame] | 256 | output[i] = (data[i] < ' ' || data[i] > '~') ? '?' : data[i]; |
Chia-chi Yeh | 837a1c7 | 2009-06-26 09:40:31 +0800 | [diff] [blame] | 257 | } |
| 258 | output[length] = '\0'; |
| 259 | } |
| 260 | return output; |
| 261 | } |