ProxyLoginHandlerpublic class ProxyLoginHandler extends Object | Handles the process of proxy login/authentication/setup. |
| Fields Summary |
|---|
| private static final int | READ_DONE | | private static final int | READ_NOT_DONE | | private static final int | READ_NO_PROGRESS | | public static InetSocketAddress | DEFAULT_SOCKS_SERVER_ADDRESS | | private static String | default_socks_version | | private static String | default_socks_user | | private static String | default_socks_password | | private final TCPTransportImpl | proxy_connection | | private final InetSocketAddress | remote_address | | private final ProxyListener | proxy_listener | | private final String | mapped_ip | | private int | socks5_handshake_phase | | private int | socks5_address_length | | private long | read_start_time | | private final String | socks_version | | private final String | socks_user | | private final String | socks_password |
| Constructors Summary |
|---|
public ProxyLoginHandler(TCPTransportImpl proxy_connection, InetSocketAddress remote_address, ProxyListener listener)Do proxy login.
this( proxy_connection, remote_address, listener, default_socks_version, default_socks_user, default_socks_password );
| public ProxyLoginHandler(TCPTransportImpl _proxy_connection, InetSocketAddress _remote_address, ProxyListener _listener, String _socks_version, String _socks_user, String _socks_password)
proxy_connection = _proxy_connection;
remote_address = _remote_address;
proxy_listener = _listener;
socks_version = _socks_version;
socks_user = _socks_user;
socks_password = _socks_password;
if ( remote_address.isUnresolved() || remote_address.getAddress() == null ){
// deal with long "hostnames" that we get for, e.g., I2P destinations
mapped_ip = AEProxyFactory.getAddressMapper().internalise( remote_address.getHostName() );
}
else{
mapped_ip = remote_address.getAddress().getHostName();
}
if( socks_version.equals( "V4" ) ) {
try{
doSocks4Login( createSocks4Message() );
}
catch( Throwable t ) {
Debug.out( t );
proxy_listener.connectFailure( t );
}
}
else if( socks_version.equals( "V4a" ) ) {
try{
doSocks4Login( createSocks4aMessage() );
}
catch( Throwable t ) {
Debug.out( t );
proxy_listener.connectFailure( t );
}
}
else { //"V5"
doSocks5Login();
}
|
| Methods Summary |
|---|
| private java.nio.ByteBuffer[] | createSocks4Message()
ByteBuffer handshake = ByteBuffer.allocate( 256 + mapped_ip.length() ); //TODO convert to direct?
handshake.put( (byte)4 ); // socks 4(a)
handshake.put( (byte)1 ); // command = CONNECT
handshake.putShort( (short)remote_address.getPort() );
byte[] ip_bytes = HostNameToIPResolver.syncResolve( remote_address.getAddress().getHostAddress() ).getAddress();
handshake.put( ip_bytes[ 0 ] );
handshake.put( ip_bytes[ 1 ] );
handshake.put( ip_bytes[ 2 ] );
handshake.put( ip_bytes[ 3 ] );
if( socks_user.length() > 0 ) {
handshake.put( socks_user.getBytes() );
}
handshake.put( (byte)0 );
handshake.flip();
return new ByteBuffer[] { handshake, ByteBuffer.allocate( 8 ) }; //TODO convert to direct?
| | private java.nio.ByteBuffer[] | createSocks4aMessage()
ByteBuffer handshake = ByteBuffer.allocate( 256 + mapped_ip.length() ); //TODO convert to direct?
handshake.put( (byte)4 ); // socks 4(a)
handshake.put( (byte)1 ); // command = CONNECT
handshake.putShort( (short)remote_address.getPort() ); // port
handshake.put( (byte)0 );
handshake.put( (byte)0 );
handshake.put( (byte)0 );
handshake.put( (byte)1 ); // indicates socks 4a
if( socks_user.length() > 0 ) {
handshake.put( socks_user.getBytes() );
}
handshake.put( (byte)0 );
handshake.put( mapped_ip.getBytes() );
handshake.put( (byte)0 );
handshake.flip();
return new ByteBuffer[] { handshake, ByteBuffer.allocate( 8 ) }; //TODO convert to direct?
| | private java.nio.ByteBuffer[] | createSocks5Message()
ByteBuffer handshake = ByteBuffer.allocate( 256 + mapped_ip.length() ); //TODO convert to direct?
if( socks5_handshake_phase == 0 ) { // say hello
//System.out.println( "socks5 write phase 0" );
handshake.put( (byte)5 ); // socks 5
handshake.put( (byte)2 ); // 2 methods
handshake.put( (byte)0 ); // no auth
handshake.put( (byte)2 ); // user/pw
handshake.flip();
socks5_handshake_phase = 1;
return new ByteBuffer[] { handshake, ByteBuffer.allocate( 2 ) }; //TODO convert to direct?
}
if( socks5_handshake_phase == 1 ) { // user/password auth
//System.out.println( "socks5 write phase 1" );
handshake.put( (byte)1 ); // user/pw version
handshake.put( (byte)socks_user.length() ); // user length
handshake.put( socks_user.getBytes() );
handshake.put( (byte)socks_password.length() ); // password length
handshake.put( socks_password.getBytes() );
handshake.flip();
socks5_handshake_phase = 2;
return new ByteBuffer[] { handshake, ByteBuffer.allocate( 2 ) }; //TODO convert to direct?
}
if( socks5_handshake_phase == 2 ) { // request
//System.out.println( "socks5 write phase 2" );
handshake.put( (byte)5 ); // version
handshake.put( (byte)1 ); // connect
handshake.put( (byte)0 ); // reserved
// use the maped ip for dns resolution so we don't leak the
// actual address if this is a secure one (e.g. I2P one)
try {
byte[] ip_bytes = HostNameToIPResolver.syncResolve( mapped_ip ).getAddress();
handshake.put( (byte)1 ); // IP4
handshake.put( ip_bytes[ 0 ] );
handshake.put( ip_bytes[ 1 ] );
handshake.put( ip_bytes[ 2 ] );
handshake.put( ip_bytes[ 3 ] );
}
catch (Throwable e) {
handshake.put( (byte)3 ); // address type = domain name
handshake.put( (byte)mapped_ip.length() ); // address type = domain name
handshake.put( mapped_ip.getBytes() );
}
handshake.putShort( (short)remote_address.getPort() ); // port
handshake.flip();
socks5_handshake_phase = 3;
return new ByteBuffer[] { handshake, ByteBuffer.allocate( 5 ) }; //TODO convert to direct?
}
//System.out.println( "socks5 write phase 3..." );
//reply has to be processed in two parts as it has variable length component at the end
//socks5_handshake_phase == 3, part two
socks5_handshake_phase = 4;
return new ByteBuffer[] { null, ByteBuffer.allocate( socks5_address_length ) }; //TODO convert to direct?
| | private void | doSocks4Login(java.nio.ByteBuffer[] data)
try {
sendMessage( data[0] ); //send initial handshake to get things started
//register for read ops
TCPNetworkManager.getSingleton().getReadSelector().register( proxy_connection.getSocketChannel(), new VirtualChannelSelector.VirtualSelectorListener() {
public boolean selectSuccess( VirtualChannelSelector selector, SocketChannel sc,Object attachment ) {
try {
int result = readMessage( data[1] );
if( result == READ_DONE ) {
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
parseSocks4Reply( data[1] ); //will throw exception on error
proxy_listener.connectSuccess();
}
else {
TCPNetworkManager.getSingleton().getReadSelector().resumeSelects( proxy_connection.getSocketChannel() ); //resume read ops
}
return( result != READ_NO_PROGRESS );
}
catch( Throwable t ) {
//Debug.out( t );
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
proxy_listener.connectFailure( t );
return false;
}
}
public void selectFailure( VirtualChannelSelector selector, SocketChannel sc,Object attachment, Throwable msg ) {
Debug.out( msg );
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
proxy_listener.connectFailure( msg );
}
}, null );
}
catch( Throwable t ) {
Debug.out( t );
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
proxy_listener.connectFailure( t );
}
| | private void | doSocks5Login()
try {
final ArrayList data = new ArrayList(2);
ByteBuffer[] header = createSocks5Message();
data.add( header[0] ); //message
data.add( header[1] ); //reply buff
sendMessage( (ByteBuffer)data.get(0) ); //send initial handshake to get things started
//register for read ops
TCPNetworkManager.getSingleton().getReadSelector().register( proxy_connection.getSocketChannel(), new VirtualChannelSelector.VirtualSelectorListener() {
public boolean selectSuccess( VirtualChannelSelector selector, SocketChannel sc,Object attachment ) {
try {
int result = readMessage( (ByteBuffer)data.get(1) );
if( result == READ_DONE ) {
boolean done = parseSocks5Reply( (ByteBuffer)data.get(1) ); //will throw exception on error
if( done ) {
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
proxy_listener.connectSuccess();
}
else {
ByteBuffer[] raw = createSocks5Message();
data.set( 0, raw[0] );
data.set( 1, raw[1] );
if( raw[0] != null ) sendMessage( raw[0] );
TCPNetworkManager.getSingleton().getReadSelector().resumeSelects( proxy_connection.getSocketChannel() ); //resume read ops
}
}
else {
TCPNetworkManager.getSingleton().getReadSelector().resumeSelects( proxy_connection.getSocketChannel() ); //resume read ops
}
return( result != READ_NO_PROGRESS );
}
catch( Throwable t ) {
//Debug.out( t );
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
proxy_listener.connectFailure( t );
return false;
}
}
public void selectFailure( VirtualChannelSelector selector, SocketChannel sc,Object attachment, Throwable msg ) {
Debug.out( msg );
TCPNetworkManager.getSingleton().getReadSelector().cancel( proxy_connection.getSocketChannel() );
proxy_listener.connectFailure( msg );
}
}, null );
}
catch( Throwable t ) {
Debug.out( t );
SocketChannel chan = proxy_connection.getSocketChannel();
if ( chan != null ){
TCPNetworkManager.getSingleton().getReadSelector().cancel( chan );
}
proxy_listener.connectFailure( t );
}
| | private void | parseSocks4Reply(java.nio.ByteBuffer reply)
byte ver = reply.get();
byte resp = reply.get();
if( ver != 0 || resp != 90 ) {
throw new IOException( "SOCKS 4(a): connection declined [" +ver+ "/" + resp + "]" );
}
| | private boolean | parseSocks5Reply(java.nio.ByteBuffer reply)
if( socks5_handshake_phase == 1 ) { // reply from hello
//System.out.println( "socks5 read phase 1" );
reply.get(); // version byte
byte method = reply.get();
if( method != 0 && method != 2 ) {
throw new IOException( "SOCKS 5: no valid method [" + method + "]" );
}
// no auth -> go to request phase
if( method == 0 ) {
socks5_handshake_phase = 2;
}
return false;
}
if( socks5_handshake_phase == 2 ) { // reply from auth
//System.out.println( "socks5 read phase 2" );
reply.get(); // version byte
byte status = reply.get();
if( status != 0 ) {
throw new IOException( "SOCKS 5: authentication fails [status=" +status+ "]" );
}
return false;
}
if( socks5_handshake_phase == 3 ) { // reply from request, first part
//System.out.println( "socks5 read phase 3" );
reply.get(); // version byte
byte rep = reply.get();
if( rep != 0 ) {
String error_msgs[] = {
"",
"General SOCKS server failure",
"connection not allowed by ruleset",
"Network unreachable",
"Host unreachable",
"Connection refused",
"TTL expired",
"Command not supported",
"Address type not supported" };
String error_msg = rep < error_msgs.length ? error_msgs[ rep ] : "Unknown error";
throw new IOException( "SOCKS request failure [" + error_msg + "/" + rep + "]" );
}
reply.get(); // reserved byte
byte atype = reply.get();
byte first_address_byte = reply.get();
if( atype == 1 ) {
socks5_address_length = 3; // already read one
}
else if( atype == 3 ) {
socks5_address_length = first_address_byte; // domain name, first byte gives length of remainder
}
else {
socks5_address_length = 15; // already read one
}
socks5_address_length += 2; // 2 bytes for port
return false;
}
//System.out.println( "socks5 read phase 4..." );
//socks5_handshake_phase 4
//reply from request, last part
return true; //only done AFTER last part of request reply has been read from stream
| | static void | readConfig()
COConfigurationManager.addListener(
new COConfigurationListener()
{
public void
configurationSaved()
{
readConfig();
}
});
readConfig();
boolean socks_same = COConfigurationManager.getBooleanParameter( "Proxy.Data.Same" );
String socks_host = COConfigurationManager.getStringParameter( socks_same ? "Proxy.Host" : "Proxy.Data.Host" );
int socks_port = 0;
try{
String socks_port_str = COConfigurationManager.getStringParameter( socks_same ? "Proxy.Port" : "Proxy.Data.Port" );
socks_port_str = socks_port_str.trim();
if ( socks_port_str.length() > 0 ){
socks_port = Integer.parseInt( COConfigurationManager.getStringParameter( socks_same ? "Proxy.Port" : "Proxy.Data.Port" ) );
}
}catch( Throwable e ){ Debug.printStackTrace(e); }
DEFAULT_SOCKS_SERVER_ADDRESS = new InetSocketAddress( socks_host, socks_port );
default_socks_version = COConfigurationManager.getStringParameter( "Proxy.Data.SOCKS.version" );
default_socks_user = COConfigurationManager.getStringParameter( socks_same ? "Proxy.Username" : "Proxy.Data.Username" );
if ( default_socks_user.trim().equalsIgnoreCase("<none>")){
default_socks_user = "";
}
default_socks_password = COConfigurationManager.getStringParameter( socks_same ? "Proxy.Password" : "Proxy.Data.Password" );
| | private int | readMessage(java.nio.ByteBuffer msg)
if( read_start_time == 0 ) read_start_time = SystemTime.getCurrentTime();
long bytes_read = proxy_connection.read( new ByteBuffer[]{ msg }, 0, 1 );
if( !msg.hasRemaining() ) {
msg.position( 0 );
read_start_time = 0; //reset for next round
return READ_DONE;
}
if( SystemTime.getCurrentTime() - read_start_time > 30*1000 ) {
String error = "proxy message read timed out after 30sec";
Debug.out( error );
throw new IOException( error );
}
return( bytes_read==0?READ_NO_PROGRESS:READ_NOT_DONE);
| | private void | sendMessage(java.nio.ByteBuffer msg)
long start_time = SystemTime.getCurrentTime();
while( msg.hasRemaining() ) {
if( proxy_connection.write( new ByteBuffer[]{ msg }, 0, 1 ) < 1 ) {
if( SystemTime.getCurrentTime() - start_time > 30*1000 ) {
String error = "proxy handshake message send timed out after 30sec";
Debug.out( error );
throw new IOException( error );
}
try { Thread.sleep( 10 ); }catch( Throwable t ) {t.printStackTrace();}
}
}
|
|
