/* * anytun * * The secure anycast tunneling protocol (satp) defines a protocol used * for communication between any combination of unicast and anycast * tunnel endpoints. It has less protocol overhead than IPSec in Tunnel * mode and allows tunneling of every ETHER TYPE protocol (e.g. * ethernet, ip, arp ...). satp directly includes cryptography and * message authentication based on the methodes used by SRTP. It is * intended to deliver a generic, scaleable and secure solution for * tunneling and relaying of packets of any protocol. * * * Copyright (C) 2007-2008 Othmar Gsenger, Erwin Nindl, * Christian Pointner * * This file is part of Anytun. * * Anytun is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License version 3 as * published by the Free Software Foundation. * * Anytun is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with anytun. If not, see . */ #include #include #include #include #include "../endian.h" #include "../tunDevice.h" #include "../threadUtils.hpp" #include "../log.h" #include "registryKey.h" #include "common.h" TunDevice::TunDevice(std::string dev_name, std::string dev_type, std::string ifcfg_lp, std::string ifcfg_rnmp) : conf_(dev_name, dev_type, ifcfg_lp, ifcfg_rnmp, 1400) { if(conf_.type_ != TYPE_TUN && conf_.type_ != TYPE_TAP) throw std::runtime_error("unable to recognize type of device (tun or tap)"); handle_ = INVALID_HANDLE_VALUE; if(!getAdapter(dev_name)) throw std::runtime_error("can't find any suitable device"); if(handle_ == INVALID_HANDLE_VALUE) { std::stringstream tapname; tapname << USERMODEDEVICEDIR << actual_node_ << TAPSUFFIX; handle_ = CreateFile(tapname.str().c_str(), GENERIC_WRITE | GENERIC_READ, 0, 0, OPEN_EXISTING, FILE_ATTRIBUTE_SYSTEM | FILE_FLAG_OVERLAPPED, 0); if(handle_ == INVALID_HANDLE_VALUE) { std::stringstream msg; msg << "Unable to open device: " << actual_node_ << " (" << actual_name_ << "): " << LogErrno(GetLastError()); throw std::runtime_error(msg.str()); } } DWORD err; if(conf_.type_ == TYPE_TUN) { u_long ep[2]; ep[0] = htonl(conf_.local_.getNetworkAddressV4().to_ulong()); ep[1] = htonl(conf_.remote_netmask_.getNetworkAddressV4().to_ulong()); err = performIoControl(TAP_IOCTL_CONFIG_POINT_TO_POINT, ep, sizeof(ep), ep, sizeof(ep)); if(err != ERROR_SUCCESS) { CloseHandle(handle_); std::stringstream msg; msg << "Unable to set device point-to-point mode: " << LogErrno(err); } } int status = true; err = performIoControl(TAP_IOCTL_SET_MEDIA_STATUS, &status, sizeof(status), &status, sizeof(status)); if(err != ERROR_SUCCESS) { CloseHandle(handle_); std::stringstream msg; msg << "Unable to set device media status: " << LogErrno(err); throw std::runtime_error(msg.str()); } if(ifcfg_lp != "" && ifcfg_rnmp != "") do_ifconfig(); roverlapped_.hEvent = CreateEvent(NULL, TRUE, FALSE, NULL); woverlapped_.hEvent = CreateEvent(NULL, TRUE, FALSE, NULL); } bool TunDevice::getAdapter(std::string const& dev_name) { RegistryKey key; DWORD err = key.open(HKEY_LOCAL_MACHINE, NETWORK_CONNECTIONS_KEY, KEY_ENUMERATE_SUB_KEYS); if(err != ERROR_SUCCESS) { std::stringstream msg; msg << "Unable to open registry key: " << LogErrno(err); throw std::runtime_error(msg.str()); } bool found = false; for(int i=0; ; ++i) { RegistryKey key2; DWORD err = key.getSubKey(i, key2, KEY_QUERY_VALUE); if(err == ERROR_NO_MORE_ITEMS) break; if(err != ERROR_SUCCESS) { std::stringstream msg; msg << "Unable to read registry: " << LogErrno(err); throw std::runtime_error(msg.str()); } actual_node_ = key2.getName(); RegistryKey key3; key2.getSubKey("Connection", key3, KEY_QUERY_VALUE); try { actual_name_ = key3["Name"]; } catch(LogErrno& e) { continue; } if(dev_name != "") { if(dev_name == actual_name_) { found = true; break; } } else { std::stringstream tapname; tapname << USERMODEDEVICEDIR << actual_node_ << TAPSUFFIX; handle_ = CreateFile(tapname.str().c_str(), GENERIC_WRITE | GENERIC_READ, 0, 0, OPEN_EXISTING, FILE_ATTRIBUTE_SYSTEM | FILE_FLAG_OVERLAPPED, 0); if(handle_ == INVALID_HANDLE_VALUE) continue; found = true; break; } } if(!found) { actual_node_ = ""; actual_name_ = ""; } return found; } DWORD TunDevice::performIoControl(DWORD controlCode, LPVOID inBuffer, DWORD inBufferSize, LPVOID outBuffer, DWORD outBufferSize) { OVERLAPPED overlapped; overlapped.hEvent = CreateEvent(NULL, TRUE, FALSE, NULL); overlapped.Offset = 0; overlapped.OffsetHigh = 0; DWORD len; if(!DeviceIoControl(handle_, controlCode, inBuffer, inBufferSize, outBuffer, outBufferSize, &len, &overlapped)) { DWORD err = GetLastError(); if(err == ERROR_IO_PENDING) { WaitForSingleObject(overlapped.hEvent, INFINITE); if(!GetOverlappedResult(handle_, &overlapped, &len, FALSE)) return GetLastError(); } else return GetLastError(); } return ERROR_SUCCESS; } TunDevice::~TunDevice() { if(handle_ != INVALID_HANDLE_VALUE) CloseHandle(handle_); if(roverlapped_.hEvent != INVALID_HANDLE_VALUE) CloseHandle(roverlapped_.hEvent); if(woverlapped_.hEvent != INVALID_HANDLE_VALUE) CloseHandle(woverlapped_.hEvent); } int TunDevice::fix_return(int ret, size_t pi_length) { // nothing to be done here return 0; } int TunDevice::read(u_int8_t* buf, u_int32_t len) { DWORD lenout; roverlapped_.Offset = 0; roverlapped_.OffsetHigh = 0; ResetEvent(roverlapped_.hEvent); if(!ReadFile(handle_, buf, len, &lenout, &roverlapped_)) { DWORD err = GetLastError(); if(err == ERROR_IO_PENDING) { WaitForSingleObject(roverlapped_.hEvent, INFINITE); if(!GetOverlappedResult(handle_, &roverlapped_, &lenout, FALSE)) { cLog.msg(Log::PRIO_ERR) << "Error while trying to get overlapped result: " << LogErrno(GetLastError()); return -1; } } else { cLog.msg(Log::PRIO_ERR) << "Error while reading from device: " << LogErrno(GetLastError()); return -1; } } return lenout; } int TunDevice::write(u_int8_t* buf, u_int32_t len) { DWORD lenout; woverlapped_.Offset = 0; woverlapped_.OffsetHigh = 0; ResetEvent(woverlapped_.hEvent); if(!WriteFile(handle_, buf, len, &lenout, &woverlapped_)) { DWORD err = GetLastError(); if(err == ERROR_IO_PENDING) { WaitForSingleObject(woverlapped_.hEvent, INFINITE); if(!GetOverlappedResult(handle_, &woverlapped_, &lenout, FALSE)) { cLog.msg(Log::PRIO_ERR) << "Error while trying to get overlapped result: " << LogErrno(GetLastError()); return -1; } } else { cLog.msg(Log::PRIO_ERR) << "Error while writing to device: " << LogErrno(GetLastError()); return -1; } } return lenout; } void TunDevice::init_post() { // nothing to be done here } void TunDevice::do_ifconfig() { u_long remote_netmask = conf_.remote_netmask_.getNetworkAddressV4().to_ulong(); u_long adapter_mask = (conf_.type_ == TYPE_TUN) ? ~3 : remote_netmask; u_long local = conf_.local_.getNetworkAddressV4().to_ulong(); u_long ep[4]; ep[0] = htonl(local); ep[1] = htonl(adapter_mask); ep[2] = (conf_.type_ == TYPE_TUN) ? htonl(remote_netmask) : htonl(local & adapter_mask); ep[3] = 365 * 24 * 3600; // lease time in seconds DWORD err = performIoControl(TAP_IOCTL_CONFIG_DHCP_MASQ, ep, sizeof(ep), ep, sizeof(ep)); if(err != ERROR_SUCCESS) { CloseHandle(handle_); std::stringstream msg; msg << "Unable to set device dhcp masq mode: " << LogErrno(err); throw std::runtime_error(msg.str()); } }