static void socks4_read_cb(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
assert(client->state >= socks4_request_sent);
redsocks_touch_client(client);
if (client->state == socks4_request_sent) {
socks4_reply reply;
if (redsocks_read_expected(client, bufferevent_get_input(buffev), &reply, sizes_greater_equal, sizeof(reply)) < 0)
return;
client->state = socks4_reply_came;
if (reply.ver != 0) {
redsocks_log_error(client, LOG_NOTICE, "Socks4 server reported unexpected reply version...");
redsocks_drop_client(client);
}
else if (reply.status == socks4_status_ok)
redsocks_start_relay(client);
else {
redsocks_log_error(client, LOG_NOTICE, "Socks4 server status: %s (%i)",
reply.status == socks4_status_fail ? "fail" :
reply.status == socks4_status_no_ident ? "no ident" :
reply.status == socks4_status_fake_ident ? "fake ident" : "?",
reply.status);
redsocks_drop_client(client);
}
}
}
static void httpr_client_read_content(struct bufferevent *buffev, redsocks_client *client)
{
httpr_client *httpr = (void*)(client + 1);
static int post_buffer_len = 64 * 1024;
char *post_buffer = calloc(post_buffer_len, 1);
if (!post_buffer) {
redsocks_log_error(client, LOG_ERR, "run out of memory");
redsocks_drop_client(client);
return;
}
int error;
while (true) {
error = evbuffer_remove(buffev->input, post_buffer, post_buffer_len);
if (error < 0) {
free(post_buffer);
redsocks_log_error(client, LOG_ERR, "evbuffer_remove");
redsocks_drop_client(client);
return;
}
if (error == 0)
break;
httpr_buffer_append(&httpr->client_buffer, post_buffer, error);
if (client->relay && client->state >= httpr_request_sent) {
if (bufferevent_write(client->relay, post_buffer, error) != 0) {
free(post_buffer);
redsocks_log_error(client, LOG_ERR, "bufferevent_write");
redsocks_drop_client(client);
return;
}
}
}
free(post_buffer);
}
static void ss_relay_connected(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
ss_header_ipv4 header;
size_t len = 0;
assert(buffev == client->relay);
assert(client->state == ss_new);
redsocks_touch_client(client);
if (!red_is_socket_connected_ok(buffev)) {
redsocks_log_error(client, LOG_DEBUG, "failed to connect to destination");
redsocks_drop_client(client);
return;
}
client->relay_connected = 1;
/* We do not need to detect timeouts any more.
The two peers will handle it. */
bufferevent_set_timeouts(client->relay, NULL, NULL);
if (!redsocks_start_relay(client))
{
/* overwrite theread callback to my function */
bufferevent_setcb(client->client, ss_client_readcb,
ss_client_writecb,
redsocks_event_error,
client);
bufferevent_setcb(client->relay, ss_relay_readcb,
ss_relay_writecb,
redsocks_event_error,
client);
}
else
{
redsocks_log_error(client, LOG_DEBUG, "failed to start relay");
redsocks_drop_client(client);
return;
}
/* build and send header */
// TODO: Better implementation and IPv6 Support
header.addr_type = ss_addrtype_ipv4;
header.addr = client->destaddr.sin_addr.s_addr;
header.port = client->destaddr.sin_port;
len += sizeof(header);
encrypt_mem(client, (char *)&header, len, client->relay, 0);
client->state = ss_connected;
// Write any data received from client side to relay.
if (evbuffer_get_length(bufferevent_get_input(client->client)))
ss_relay_writecb(client->relay, client);
return;
}
static void auto_retry(redsocks_client * client, int updcache)
{
autoproxy_client * aclient = (void*)(client + 1) + client->instance->relay_ss->payload_len;
if (aclient->state == AUTOPROXY_CONNECTED)
bufferevent_disable(client->client, EV_READ| EV_WRITE);
/* drop relay and update state, then retry with specified relay */
if (updcache)
{
/* only add IP to cache when the IP is not in cache */
if (get_addr_time_in_cache(&client->destaddr) == NULL)
{
add_addr_to_cache(&client->destaddr);
redsocks_log_error(client, LOG_DEBUG, "ADD IP to cache: %s",
inet_ntoa(client->destaddr.sin_addr));
}
}
auto_drop_relay(client);
// restore callbacks for ordinary client.
bufferevent_setcb(client->client, NULL, NULL, client->client->errorcb, client);
// enable reading to handle EOF from client
bufferevent_enable(client->client, EV_READ);
/* connect to relay */
if (client->instance->relay_ss->connect_relay)
client->instance->relay_ss->connect_relay(client);
else
redsocks_connect_relay(client);
//
if (EVBUFFER_LENGTH(client->client->input) && client->client->readcb)
client->client->readcb(client->client, client);
}
void socks4_client_init(redsocks_client *client)
{
if (client->instance->config.password)
redsocks_log_error(client, LOG_WARNING, "password is ignored for socks4 connections");
client->state = socks4_new;
}
static void socks5_read_auth_methods(struct bufferevent *buffev, redsocks_client *client, socks5_client *socks5)
{
socks5_method_reply reply;
const char *error = NULL;
if (redsocks_read_expected(client, buffev->input, &reply, sizes_equal, sizeof(reply)) < 0)
return;
error = socks5_is_known_auth_method(&reply, socks5->do_password);
if (error) {
redsocks_log_error(client, LOG_NOTICE, "socks5_is_known_auth_method: %s", error);
redsocks_drop_client(client);
}
else if (reply.method == socks5_auth_none) {
redsocks_write_helper(
buffev, client,
socks5_mkconnect, socks5_request_sent, sizeof(socks5_reply)
);
}
else if (reply.method == socks5_auth_password) {
redsocks_write_helper(
buffev, client,
socks5_mkpassword, socks5_auth_sent, sizeof(socks5_auth_reply)
);
}
}
static void auto_connect_relay(redsocks_client *client)
{
socks5_client *socks5 = (void*)(client + 1);
struct timeval tv;
tv.tv_sec = CONNECT_TIMEOUT_SECONDS;
tv.tv_usec = 0;
if (client->state == socks5_pre_detect)
{
if (is_addr_in_cache(&client->destaddr))
{
client->state = socks5_new; /* Connect SOCKS5 */
redsocks_log_error(client, LOG_DEBUG, "Found in cache");
}
}
client->relay = red_connect_relay2( client->state == socks5_pre_detect
? &client->destaddr : &client->instance->config.relayaddr,
auto_relay_connected, auto_event_error, client,
client->state == socks5_pre_detect ? &tv: NULL);
socks5->time_connect_relay = redsocks_time(NULL);
if (!client->relay) {
redsocks_log_errno(client, LOG_ERR, "auto_connect_relay");
redsocks_drop_client(client);
}
}
static void auto_relay_connected(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
assert(buffev == client->relay);
redsocks_touch_client(client);
if (!red_is_socket_connected_ok(buffev)) {
if (client->state == socks5_pre_detect && !auto_retry_or_drop(client))
return;
redsocks_log_error(client, LOG_DEBUG, "failed to connect to proxy");
goto fail;
}
/* We do not need to detect timeouts any more.
The two peers will handle it. */
bufferevent_set_timeouts(client->relay, NULL, NULL);
client->relay->readcb = client->instance->relay_ss->readcb;
client->relay->writecb = client->instance->relay_ss->writecb;
client->relay->writecb(buffev, _arg);
return;
fail:
redsocks_drop_client(client);
}
static void socks5_read_reply(struct bufferevent *buffev, redsocks_client *client, socks5_client *socks5)
{
socks5_reply reply;
if (redsocks_read_expected(client, buffev->input, &reply, sizes_greater_equal, sizeof(reply)) < 0)
return;
if (reply.ver != socks5_ver) {
redsocks_log_error(client, LOG_NOTICE, "Socks5 server reported unexpected reply version...");
redsocks_drop_client(client);
}
else if (reply.status == socks5_status_succeeded) {
socks5_state nextstate;
size_t len;
if (reply.addrtype == socks5_addrtype_ipv4) {
len = socks5->to_skip = sizeof(socks5_addr_ipv4);
nextstate = socks5_skip_address;
}
else if (reply.addrtype == socks5_addrtype_ipv6) {
len = socks5->to_skip = sizeof(socks5_addr_ipv6);
nextstate = socks5_skip_address;
}
else if (reply.addrtype == socks5_addrtype_domain) {
socks5_addr_domain domain;
len = sizeof(domain.size);
nextstate = socks5_skip_domain;
}
else {
redsocks_log_error(client, LOG_NOTICE, "Socks5 server reported unexpected address type...");
redsocks_drop_client(client);
return;
}
redsocks_write_helper(
buffev, client,
NULL, nextstate, len
);
}
else {
redsocks_log_error(client, LOG_NOTICE, "Socks5 server status: %s (%i)",
/* 0 <= reply.status && */ reply.status < SIZEOF_ARRAY(socks5_strstatus)
? socks5_strstatus[reply.status] : "?", reply.status);
redsocks_drop_client(client);
}
}
static int httpr_toss_http_firstline(redsocks_client *client)
{
httpr_client *httpr = (void*)(client + 1);
char *uri = NULL;
char *host = httpr->has_host ? httpr->host : fmt_http_host(client->destaddr);
assert(httpr->firstline);
uri = strchr(httpr->firstline, ' ');
if (uri)
uri += 1; // one char further
else {
redsocks_log_error(client, LOG_NOTICE, "malformed request came");
goto fail;
}
httpr_buffer nbuff;
if (httpr_buffer_init(&nbuff) != 0) {
redsocks_log_error(client, LOG_ERR, "httpr_buffer_init");
goto fail;
}
if (httpr_buffer_append(&nbuff, httpr->firstline, uri - httpr->firstline) != 0)
goto addition_fail;
if (httpr_buffer_append(&nbuff, "http://", 7) != 0)
goto addition_fail;
if (httpr_buffer_append(&nbuff, host, strlen(host)) != 0)
goto addition_fail;
if (httpr_buffer_append(&nbuff, uri, strlen(uri)) != 0)
goto addition_fail;
if (httpr_buffer_append(&nbuff, "\x0d\x0a", 2) != 0)
goto addition_fail;
free(httpr->firstline);
httpr->firstline = calloc(nbuff.len + 1, 1);
strcpy(httpr->firstline, nbuff.buff);
httpr_buffer_fini(&nbuff);
return 0;
addition_fail:
httpr_buffer_fini(&nbuff);
fail:
redsocks_log_error(client, LOG_ERR, "httpr_toss_http_firstline");
return -1;
}
static void auto_drop_relay(redsocks_client *client)
{
if (client->relay) {
redsocks_log_error(client, LOG_DEBUG, "dropping relay only");
redsocks_close(EVENT_FD(&client->relay->ev_write));
bufferevent_free(client->relay);
client->relay = NULL;
}
}
static void auto_relay_connected(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
autoproxy_client * aclient = (void*)(client + 1) + client->instance->relay_ss->payload_len;
assert(buffev == client->relay);
redsocks_touch_client(client);
if (!red_is_socket_connected_ok(buffev)) {
if (aclient->state == AUTOPROXY_NEW && !auto_retry_or_drop(client))
return;
redsocks_log_error(client, LOG_DEBUG, "failed to connect to proxy");
goto fail;
}
/* update client state */
aclient->state = AUTOPROXY_CONNECTED;
/* We do not need to detect timeouts any more.
The two peers will handle it. */
bufferevent_set_timeouts(client->relay, NULL, NULL);
if (!redsocks_start_relay(client))
{
/* overwrite theread callback to my function */
client->client->readcb = direct_relay_clientreadcb;
client->client->writecb = direct_relay_clientwritecb;
client->relay->readcb = direct_relay_relayreadcb;
client->relay->writecb = direct_relay_relaywritecb;
}
else
{
redsocks_log_error(client, LOG_DEBUG, "failed to start relay");
goto fail;
}
client->relay->writecb(buffev, _arg);
return;
fail:
redsocks_drop_client(client);
}
static void auto_connect_relay(redsocks_client *client)
{
autoproxy_client * aclient = (void*)(client + 1) + client->instance->relay_ss->payload_len;
struct timeval tv;
tv.tv_sec = client->instance->config.timeout;
tv.tv_usec = 0;
time_t * acc_time = NULL;
time_t now = redsocks_time(NULL);
/* use default timeout if timeout is not configured */
if (tv.tv_sec == 0)
tv.tv_sec = DEFAULT_CONNECT_TIMEOUT_SECONDS;
if (aclient->state == AUTOPROXY_NEW)
{
acc_time = get_addr_time_in_cache(&client->destaddr);
if (acc_time)
{
if (now - *acc_time < CACHE_ITEM_STALE_SECONDS )
{
redsocks_log_error(client, LOG_DEBUG, "Found dest IP in cache");
auto_retry(client, 0);
return ;
}
else
{
/* stale this address in cache */
del_addr_from_cache(&client->destaddr);
/* update timeout value for quick detection */
tv.tv_sec = QUICK_CONNECT_TIMEOUT_SECONDS;
}
}
/* connect to target directly without going through proxy */
client->relay = red_connect_relay2(&client->destaddr,
auto_relay_connected, auto_event_error, client,
&tv);
aclient->time_connect_relay = redsocks_time(NULL);
if (!client->relay) {
redsocks_log_errno(client, LOG_ERR, "auto_connect_relay");
redsocks_drop_client(client);
}
}
else
{
redsocks_log_errno(client, LOG_ERR, "invalid state: %d", aclient->state);
}
}
static void auto_retry(redsocks_client * client, int updcache)
{
if (client->state == socks5_direct)
bufferevent_disable(client->client, EV_READ| EV_WRITE);
/* drop relay and update state, then retry with socks5 relay */
if (updcache)
{
add_addr_to_cache(&client->destaddr);
redsocks_log_error(client, LOG_DEBUG, "ADD IP to cache: %x", client->destaddr.sin_addr.s_addr);
}
auto_drop_relay(client);
client->state = socks5_new;
auto_connect_relay(client); /* Retry SOCKS5 proxy relay */
}
static void socks5_read_auth_reply(struct bufferevent *buffev, redsocks_client *client, socks5_client *socks5)
{
socks5_auth_reply reply;
if (redsocks_read_expected(client, buffev->input, &reply, sizes_equal, sizeof(reply)) < 0)
return;
if (reply.ver != socks5_password_ver) {
redsocks_log_error(client, LOG_NOTICE, "Socks5 server reported unexpected auth reply version...");
redsocks_drop_client(client);
}
else if (reply.status == socks5_password_passed)
redsocks_write_helper(
buffev, client,
socks5_mkconnect, socks5_request_sent, sizeof(socks5_reply)
);
else
redsocks_drop_client(client);
}
static void auto_write_cb(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
redsocks_touch_client(client);
if (client->state == socks5_pre_detect) {
client->state = socks5_direct;
if (!redsocks_start_relay(client))
{
/* overwrite theread callback to my function */
client->client->readcb = direct_relay_clientreadcb;
client->client->writecb = direct_relay_clientwritecb;
client->relay->readcb = direct_relay_relayreadcb;
client->relay->writecb = direct_relay_relaywritecb;
}
}
else if (client->state == socks5_direct)
redsocks_log_error(client, LOG_DEBUG, "Should not be here!");
else
socks5_write_cb(buffev, _arg);
}
static void httpc_read_cb(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
assert(client->relay == buffev);
assert(client->state == httpc_request_sent || client->state == httpc_reply_came);
redsocks_touch_client(client);
// evbuffer_add() triggers callbacks, so we can't write to client->client
// till we know that we're going to ONFAIL_FORWARD_HTTP_ERR.
// And the decision is made when all the headers are processed.
struct evbuffer* tee = NULL;
const bool do_errtee = client->instance->config.on_proxy_fail == ONFAIL_FORWARD_HTTP_ERR;
if (client->state == httpc_request_sent) {
size_t len = evbuffer_get_length(buffev->input);
char *line = redsocks_evbuffer_readline(buffev->input);
if (line) {
unsigned int code;
if (sscanf(line, "HTTP/%*u.%*u %u", &code) == 1) { // 1 == one _assigned_ match
if (code == 407) { // auth failed
http_auth *auth = red_http_auth(client->instance);
if (auth->last_auth_query != NULL && auth->last_auth_count == 1) {
redsocks_log_error(client, LOG_NOTICE, "HTTP Proxy auth failed: %s", line);
client->state = httpc_no_way;
} else if (client->instance->config.login == NULL || client->instance->config.password == NULL) {
redsocks_log_error(client, LOG_NOTICE, "HTTP Proxy auth required, but no login/password configured: %s", line);
client->state = httpc_no_way;
} else {
if (do_errtee)
tee = evbuffer_new();
char *auth_request = http_auth_request_header(buffev->input, tee);
if (!auth_request) {
redsocks_log_error(client, LOG_NOTICE, "HTTP Proxy auth required, but no <%s> header found: %s", auth_request_header, line);
client->state = httpc_no_way;
} else {
free(line);
if (tee)
evbuffer_free(tee);
free(auth->last_auth_query);
char *ptr = auth_request;
ptr += strlen(auth_request_header);
while (isspace(*ptr))
ptr++;
size_t last_auth_query_len = strlen(ptr) + 1;
auth->last_auth_query = calloc(last_auth_query_len, 1);
memcpy(auth->last_auth_query, ptr, last_auth_query_len);
auth->last_auth_count = 0;
free(auth_request);
if (bufferevent_disable(client->relay, EV_WRITE)) {
redsocks_log_errno(client, LOG_ERR, "bufferevent_disable");
return;
}
/* close relay tunnel */
redsocks_bufferevent_free(client->relay);
/* set to initial state*/
client->state = httpc_new;
/* and reconnect */
redsocks_connect_relay(client);
return;
}
}
} else if (200 <= code && code <= 299) {
client->state = httpc_reply_came;
} else {
redsocks_log_error(client, LOG_NOTICE, "HTTP Proxy error: %s", line);
client->state = httpc_no_way;
}
} else {
redsocks_log_error(client, LOG_NOTICE, "HTTP Proxy bad firstline: %s", line);
client->state = httpc_no_way;
}
if (do_errtee && client->state == httpc_no_way) {
if (bufferevent_write(client->client, line, strlen(line)) != 0 ||
bufferevent_write(client->client, "\r\n", 2) != 0)
{
redsocks_log_errno(client, LOG_NOTICE, "bufferevent_write");
goto fail;
}
}
free(line);
}
else if (len >= HTTP_HEAD_WM_HIGH) {
redsocks_log_error(client, LOG_NOTICE, "HTTP Proxy reply is too long, %zu bytes", len);
client->state = httpc_no_way;
}
}
if (do_errtee && client->state == httpc_no_way) {
if (tee) {
if (bufferevent_write_buffer(client->client, tee) != 0) {
redsocks_log_errno(client, LOG_NOTICE, "bufferevent_write_buffer");
goto fail;
}
}
redsocks_shutdown(client, client->client, SHUT_RD);
const size_t avail = evbuffer_get_length(client->client->input);
if (avail) {
if (evbuffer_drain(client->client->input, avail) != 0) {
redsocks_log_errno(client, LOG_NOTICE, "evbuffer_drain");
goto fail;
}
}
redsocks_shutdown(client, client->relay, SHUT_WR);
client->state = httpc_headers_skipped;
}
fail:
if (tee) {
evbuffer_free(tee);
}
if (client->state == httpc_no_way) {
redsocks_drop_client(client);
return;
}
while (client->state == httpc_reply_came) {
char *line = redsocks_evbuffer_readline(buffev->input);
if (line) {
if (strlen(line) == 0) {
client->state = httpc_headers_skipped;
}
free(line);
}
else {
break;
}
}
if (client->state == httpc_headers_skipped) {
redsocks_start_relay(client);
}
}
static void httpr_relay_write_cb(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
httpr_client *httpr = (void*)(client + 1);
int len = 0;
assert(client->state >= httpr_recv_request_headers);
redsocks_touch_client(client);
if (client->state == httpr_recv_request_headers) {
if (httpr->firstline) {
len = bufferevent_write(client->relay, httpr->firstline, strlen(httpr->firstline));
if (len < 0) {
redsocks_log_errno(client, LOG_ERR, "bufferevent_write");
redsocks_drop_client(client);
return;
}
}
http_auth *auth = (void*)(client->instance + 1);
++auth->last_auth_count;
const char *auth_scheme = NULL;
char *auth_string = NULL;
if (auth->last_auth_query != NULL) {
/* find previous auth challange */
if (strncasecmp(auth->last_auth_query, "Basic", 5) == 0) {
auth_string = basic_authentication_encode(client->instance->config.login, client->instance->config.password);
auth_scheme = "Basic";
} else if (strncasecmp(auth->last_auth_query, "Digest", 6) == 0 && httpr->firstline) {
/* calculate method & uri */
char *ptr = strchr(httpr->firstline, ' '), *ptr2;
char *method = calloc(ptr - httpr->firstline + 1, 1);
memcpy(method, httpr->firstline, ptr - httpr->firstline);
method[ptr - httpr->firstline] = 0;
ptr = strchr(httpr->firstline, '/');
if (!ptr || *++ptr != '/') {
free(method);
redsocks_log_error(client, LOG_NOTICE, "malformed request came");
redsocks_drop_client(client);
return;
}
if (!(ptr = strchr(++ptr, '/')) || !(ptr2 = strchr(ptr, ' '))) {
free(method);
redsocks_log_error(client, LOG_NOTICE, "malformed request came");
redsocks_drop_client(client);
return;
}
char *uri = calloc(ptr2 - ptr + 1, 1);
memcpy(uri, ptr, ptr2 - ptr);
uri[ptr2 - ptr] = 0;
/* prepare an random string for cnounce */
char cnounce[17];
snprintf(cnounce, sizeof(cnounce), "%08x%08x", red_randui32(), red_randui32());
auth_string = digest_authentication_encode(auth->last_auth_query + 7, //line
client->instance->config.login, client->instance->config.password, //user, pass
method, uri, auth->last_auth_count, cnounce); // method, path, nc, cnounce
free(method);
free(uri);
auth_scheme = "Digest";
}
}
if (auth_string != NULL) {
len = 0;
len |= bufferevent_write(client->relay, auth_response_header, strlen(auth_response_header));
len |= bufferevent_write(client->relay, " ", 1);
len |= bufferevent_write(client->relay, auth_scheme, strlen(auth_scheme));
len |= bufferevent_write(client->relay, " ", 1);
len |= bufferevent_write(client->relay, auth_string, strlen(auth_string));
len |= bufferevent_write(client->relay, "\r\n", 2);
if (len) {
redsocks_log_errno(client, LOG_ERR, "bufferevent_write");
redsocks_drop_client(client);
return;
}
}
free(auth_string);
len = bufferevent_write(client->relay, httpr->client_buffer.buff, httpr->client_buffer.len);
if (len < 0) {
redsocks_log_errno(client, LOG_ERR, "bufferevent_write");
redsocks_drop_client(client);
return;
}
client->state = httpr_request_sent;
buffev->wm_read.low = 1;
buffev->wm_read.high = HTTP_HEAD_WM_HIGH;
bufferevent_enable(buffev, EV_READ);
}
}
static void httpr_relay_read_cb(struct bufferevent *buffev, void *_arg)
{
redsocks_client *client = _arg;
httpr_client *httpr = (void*)(client + 1);
int dropped = 0;
assert(client->state >= httpr_request_sent);
redsocks_touch_client(client);
httpr_buffer_fini(&httpr->relay_buffer);
httpr_buffer_init(&httpr->relay_buffer);
if (client->state == httpr_request_sent) {
size_t len = EVBUFFER_LENGTH(buffev->input);
char *line = redsocks_evbuffer_readline(buffev->input);
if (line) {
httpr_buffer_append(&httpr->relay_buffer, line, strlen(line));
httpr_buffer_append(&httpr->relay_buffer, "\r\n", 2);
unsigned int code;
if (sscanf(line, "HTTP/%*u.%*u %u", &code) == 1) { // 1 == one _assigned_ match
if (code == 407) { // auth failed
http_auth *auth = (void*)(client->instance + 1);
if (auth->last_auth_query != NULL && auth->last_auth_count == 1) {
redsocks_log_error(client, LOG_NOTICE, "proxy auth failed");
redsocks_drop_client(client);
dropped = 1;
} else if (client->instance->config.login == NULL || client->instance->config.password == NULL) {
redsocks_log_error(client, LOG_NOTICE, "proxy auth required, but no login information provided");
redsocks_drop_client(client);
dropped = 1;
} else {
free(line);
char *auth_request = get_auth_request_header(buffev->input);
if (!auth_request) {
redsocks_log_error(client, LOG_NOTICE, "403 found, but no proxy auth challenge");
redsocks_drop_client(client);
dropped = 1;
} else {
free(auth->last_auth_query);
char *ptr = auth_request;
ptr += strlen(auth_request_header);
while (isspace(*ptr))
ptr++;
auth->last_auth_query = calloc(strlen(ptr) + 1, 1);
strcpy(auth->last_auth_query, ptr);
auth->last_auth_count = 0;
free(auth_request);
httpr_buffer_fini(&httpr->relay_buffer);
if (bufferevent_disable(client->relay, EV_WRITE)) {
redsocks_log_errno(client, LOG_ERR, "bufferevent_disable");
return;
}
/* close relay tunnel */
redsocks_close(EVENT_FD(&client->relay->ev_write));
bufferevent_free(client->relay);
/* set to initial state*/
client->state = httpr_recv_request_headers;
/* and reconnect */
redsocks_connect_relay(client);
return;
}
}
} else if (100 <= code && code <= 999) {
client->state = httpr_reply_came;
} else {
redsocks_log_error(client, LOG_NOTICE, "%s", line);
redsocks_drop_client(client);
dropped = 1;
}
}
free(line);
}
else if (len >= HTTP_HEAD_WM_HIGH) {
redsocks_drop_client(client);
dropped = 1;
}
}
if (dropped)
return;
while (client->state == httpr_reply_came) {
char *line = redsocks_evbuffer_readline(buffev->input);
if (line) {
httpr_buffer_append(&httpr->relay_buffer, line, strlen(line));
httpr_buffer_append(&httpr->relay_buffer, "\r\n", 2);
if (strlen(line) == 0) {
client->state = httpr_headers_skipped;
}
free(line);
}
else {
break;
}
}
if (client->state == httpr_headers_skipped) {
if (bufferevent_write(client->client, httpr->relay_buffer.buff, httpr->relay_buffer.len) != 0) {
redsocks_log_error(client, LOG_NOTICE, "bufferevent_write");
redsocks_drop_client(client);
return;
}
redsocks_start_relay(client);
}
}
static void on_connection_blocked(redsocks_client *client)
{
redsocks_log_error(client, LOG_DEBUG, "IP Blocked");
}
static void direct_relay_relaywritecb(struct bufferevent *to, void *_client)
{
redsocks_client *client = _client;
autoproxy_client * aclient = (void*)(client + 1) + client->instance->relay_ss->payload_len;
struct bufferevent * from = client->client;
redsocks_touch_client(client);
if (EVBUFFER_LENGTH(from->input) == 0 && (client->client_evshut & EV_READ)) {
redsocks_shutdown(client, to, SHUT_WR);
return;
}
else if (aclient->state == AUTOPROXY_CONNECTED )
{
/* Not send or receive data. */
if (!aclient->data_sent && !aclient->data_recv)
{
/* Ensure we have data to send */
if (EVBUFFER_LENGTH(from->input))
{
/* copy data from input to output of relay */
aclient->data_sent = copy_evbuffer (to, from, 0);
redsocks_log_error(client, LOG_DEBUG, "not sent, not got %d", EVBUFFER_LENGTH(from->input));
}
}
/*
* Relay reaceived data before writing to relay.
*/
else if (!aclient->data_sent && aclient->data_recv)
{
redsocks_log_error(client, LOG_DEBUG, "not sent, got");
aclient->data_sent = copy_evbuffer(to, from, 0);
}
/* aclient->state = AUTOPROXY_CONFIRMED; */
/* We have writen data to relay, but got nothing until we are requested to
* write to it again.
*/
else if (aclient->data_sent && !aclient->data_recv)
{
/* No response from relay and no CONNECTION RESET,
Send more data.
*/
redsocks_log_error(client, LOG_DEBUG, "sent, not got in:%d out:%d high:%d sent:%d",
evbuffer_get_length(from->input),
evbuffer_get_length(to->output),
to->wm_write.high, aclient->data_sent );
/* Write more data util input buffer is full */
if (EVBUFFER_LENGTH(from->input)- aclient->data_sent > 0) /* we have more data waiting to be sent */
{
aclient->data_sent += copy_evbuffer(to, from, aclient->data_sent);
}
else if (EVBUFFER_LENGTH(to->output) < aclient->data_sent /* data is sent out, more or less */
&& EVBUFFER_LENGTH(from->input) == from->wm_read.high /* do not confirm unless read buffer is full */
&& EVBUFFER_LENGTH(from->input) == aclient->data_sent /* all data in read buffer is sent */
)
{
evbuffer_drain(from->input, aclient->data_sent);
aclient->data_sent = 0;
aclient->state = AUTOPROXY_CONFIRMED;
on_connection_confirmed(client);
}
}
/* We sent data to and got data from relay. */
else if (aclient->data_sent && aclient->data_recv)
{
/* No CONNECTION RESET error occur after sending data, good. */
aclient->state = AUTOPROXY_CONFIRMED;
on_connection_confirmed(client);
redsocks_log_error(client, LOG_DEBUG, "sent, got %d ", aclient->data_recv);
if (evbuffer_get_length(from->input))
{
evbuffer_drain(from->input, aclient->data_sent);
aclient->data_sent = 0;
}
}
}
if (aclient->state == AUTOPROXY_CONFIRMED)
{
if (EVBUFFER_LENGTH(to->output) < to->wm_write.high) {
if (bufferevent_write_buffer(to, from->input) == -1)
redsocks_log_errno(client, LOG_ERR, "bufferevent_write_buffer");
if (bufferevent_enable(from, EV_READ) == -1)
redsocks_log_errno(client, LOG_ERR, "bufferevent_enable");
}
}
}
static void direct_relay_relaywritecb(struct bufferevent *to, void *_client)
{
redsocks_client *client = _client;
socks5_client *socks5 = (void*)(client + 1);
struct bufferevent * from = client->client;
redsocks_touch_client(client);
if (EVBUFFER_LENGTH(from->input) == 0 && (client->client_evshut & EV_READ)) {
redsocks_shutdown(client, to, SHUT_WR);
return;
}
else if (client->state == socks5_direct )
{
/* Not send or receive data. */
if (!socks5->data_sent && !socks5->got_data)
{
/* Ensure we have data to send */
if (EVBUFFER_LENGTH(from->input))
{
/* copy data from input to output of relay */
socks5->data_sent = copy_evbuffer (to, from);
redsocks_log_error(client, LOG_DEBUG, "not sent, not got %d", EVBUFFER_LENGTH(from->input));
}
}
/*
* Relay reaceived data before writing to relay.
*/
else if (!socks5->data_sent && socks5->got_data)
{
redsocks_log_error(client, LOG_DEBUG, "not sent, got");
socks5->data_sent = copy_evbuffer(to, from);
}
/* client->state = socks5_direct_confirmed; */
/* We have writen data to relay, but got nothing until we are requested to
* write to it again.
*/
else if (socks5->data_sent && !socks5->got_data)
{
/* No response from relay and no CONNECTION RESET,
Send more data.
*/
redsocks_log_error(client, LOG_DEBUG, "sent, not got in:%d out:%d high:%d sent:%d",
evbuffer_get_length(from->input),
evbuffer_get_length(to->output),
to->wm_write.high, socks5->data_sent );
/* TODO: Write more data? */
if (EVBUFFER_LENGTH(to->output) < socks5->data_sent /* data is sent out, more or less */
&& EVBUFFER_LENGTH(from->input) == from->wm_read.high /* read buffer is full */
&& EVBUFFER_LENGTH(from->input) == socks5->data_sent /* all data in read buffer is sent */
)
{
evbuffer_drain(from->input, socks5->data_sent);
socks5->data_sent = 0;
client->state = socks5_direct_confirmed;
}
}
/* We sent data to and got data from relay. */
else if (socks5->data_sent && socks5->got_data)
{
/* No CONNECTION RESET error occur after sending data, good. */
client->state = socks5_direct_confirmed;
redsocks_log_error(client, LOG_DEBUG, "sent, got %d ", socks5->got_data);
if (evbuffer_get_length(from->input))
{
evbuffer_drain(from->input, socks5->data_sent);
socks5->data_sent = 0;
}
}
}
if (client->state == socks5_direct_confirmed)
{
if (EVBUFFER_LENGTH(to->output) < to->wm_write.high) {
if (bufferevent_write_buffer(to, from->input) == -1)
redsocks_log_errno(client, LOG_ERR, "bufferevent_write_buffer");
if (bufferevent_enable(from, EV_READ) == -1)
redsocks_log_errno(client, LOG_ERR, "bufferevent_enable");
}
}
}
