2006-06-05 21:47:09 +03:00
|
|
|
/*
|
|
|
|
|
* Copyright (c) 2006 Bjorn Andersson <flex@kryo.se>, Erik Ekman <yarrick@kryo.se>
|
|
|
|
|
*
|
|
|
|
|
* Permission to use, copy, modify, and distribute this software for any
|
|
|
|
|
* purpose with or without fee is hereby granted, provided that the above
|
|
|
|
|
* copyright notice and this permission notice appear in all copies.
|
|
|
|
|
*
|
|
|
|
|
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
|
|
|
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
|
|
|
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
|
|
|
|
|
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
|
|
|
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
|
|
|
|
|
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
|
|
|
|
|
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <stdint.h>
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
#include <string.h>
|
2006-08-13 21:58:54 +03:00
|
|
|
#include <netinet/in.h>
|
2006-06-05 21:47:09 +03:00
|
|
|
#include <signal.h>
|
|
|
|
|
#include <unistd.h>
|
|
|
|
|
#include <sys/types.h>
|
2006-06-11 22:54:38 +03:00
|
|
|
#include <sys/socket.h>
|
2006-06-06 01:36:05 +03:00
|
|
|
#include <sys/stat.h>
|
|
|
|
|
#include <fcntl.h>
|
2006-06-05 21:47:09 +03:00
|
|
|
#include <err.h>
|
2006-11-19 02:41:42 +02:00
|
|
|
#include <time.h>
|
2006-06-09 23:35:26 +03:00
|
|
|
#include <pwd.h>
|
2006-06-06 03:17:28 +03:00
|
|
|
#include <arpa/inet.h>
|
2006-06-24 13:17:16 +03:00
|
|
|
#include <netinet/in.h>
|
2006-06-06 20:59:24 +03:00
|
|
|
#include <zlib.h>
|
2006-06-05 21:47:09 +03:00
|
|
|
|
2007-02-04 17:21:55 +02:00
|
|
|
#include "common.h"
|
2006-06-05 21:47:09 +03:00
|
|
|
#include "dns.h"
|
2006-11-18 18:08:47 +02:00
|
|
|
#include "login.h"
|
2007-02-04 17:21:55 +02:00
|
|
|
#include "tun.h"
|
2007-02-05 01:08:09 +02:00
|
|
|
#include "encoding.h"
|
2006-11-18 18:08:47 +02:00
|
|
|
#include "version.h"
|
2006-06-05 21:47:09 +03:00
|
|
|
|
|
|
|
|
int running = 1;
|
|
|
|
|
|
2006-06-11 21:07:26 +03:00
|
|
|
struct packet packetbuf;
|
2006-06-11 22:17:20 +03:00
|
|
|
struct packet outpacket;
|
|
|
|
|
int outid;
|
2006-06-11 21:07:26 +03:00
|
|
|
|
2007-02-05 00:38:07 +02:00
|
|
|
char *topdomain;
|
2007-02-04 22:37:36 +02:00
|
|
|
|
2006-06-11 22:34:34 +03:00
|
|
|
struct query q;
|
|
|
|
|
|
2006-11-18 18:08:47 +02:00
|
|
|
struct user u;
|
|
|
|
|
char password[33];
|
|
|
|
|
|
2006-06-23 10:58:36 +03:00
|
|
|
int my_mtu;
|
|
|
|
|
in_addr_t my_ip;
|
|
|
|
|
|
2007-02-04 17:46:06 +02:00
|
|
|
static int read_dns(int, struct query *, char *, int);
|
2007-02-05 19:49:30 +02:00
|
|
|
static void write_dns(int, struct query *, char *, int);
|
2007-02-04 17:46:06 +02:00
|
|
|
|
2006-06-05 21:47:09 +03:00
|
|
|
static void
|
2007-02-04 19:00:20 +02:00
|
|
|
sigint(int sig)
|
|
|
|
|
{
|
2006-06-05 21:47:09 +03:00
|
|
|
running = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2007-02-04 19:00:20 +02:00
|
|
|
tunnel_tun(int tun_fd, int dns_fd)
|
|
|
|
|
{
|
|
|
|
|
char out[64*1024];
|
|
|
|
|
char in[64*1024];
|
|
|
|
|
long outlen;
|
|
|
|
|
int read;
|
|
|
|
|
|
|
|
|
|
if ((read = read_tun(tun_fd, in, sizeof(in))) <= 0)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
outlen = sizeof(out);
|
|
|
|
|
compress2(out, &outlen, in, read, 9);
|
|
|
|
|
memcpy(outpacket.data, out, outlen);
|
|
|
|
|
outpacket.len = outlen;
|
|
|
|
|
|
|
|
|
|
return outlen;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
tunnel_dns(int tun_fd, int dns_fd)
|
2006-06-05 21:47:09 +03:00
|
|
|
{
|
2006-08-25 00:23:29 +03:00
|
|
|
struct in_addr clientip;
|
|
|
|
|
struct in_addr myip;
|
2007-02-06 18:01:09 +02:00
|
|
|
char logindata[16];
|
2006-08-25 00:23:29 +03:00
|
|
|
char out[64*1024];
|
2006-06-11 16:49:36 +03:00
|
|
|
char in[64*1024];
|
2006-08-25 00:23:29 +03:00
|
|
|
char *tmp[2];
|
2006-06-11 16:49:36 +03:00
|
|
|
long outlen;
|
2006-08-25 00:23:29 +03:00
|
|
|
int read;
|
|
|
|
|
int code;
|
2006-11-18 18:08:47 +02:00
|
|
|
int version;
|
|
|
|
|
int seed;
|
|
|
|
|
int nseed;
|
2007-02-04 19:00:20 +02:00
|
|
|
|
|
|
|
|
if ((read = read_dns(dns_fd, &q, in, sizeof(in))) <= 0)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
if(in[0] == 'V' || in[0] == 'v') {
|
|
|
|
|
/* Version greeting, compare and send ack/nak */
|
|
|
|
|
if (read >= 5) {
|
|
|
|
|
/* Received V + 32bits version */
|
|
|
|
|
memcpy(&version, in + 1, 4);
|
|
|
|
|
version = ntohl(version);
|
|
|
|
|
if (version == VERSION) {
|
|
|
|
|
seed = rand();
|
|
|
|
|
nseed = htonl(seed);
|
|
|
|
|
strncpy(out, "VACK", sizeof(out));
|
|
|
|
|
memcpy(out+4, &nseed, 4);
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, out, 8);
|
2007-02-04 19:00:20 +02:00
|
|
|
} else {
|
|
|
|
|
version = htonl(VERSION);
|
|
|
|
|
strncpy(out, "VNAK", sizeof(out));
|
|
|
|
|
memcpy(out+4, &version, 4);
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, out, 8);
|
2007-02-04 19:00:20 +02:00
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
version = htonl(VERSION);
|
|
|
|
|
strncpy(out, "VNAK", sizeof(out));
|
|
|
|
|
memcpy(out+4, &version, 4);
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, out, 8);
|
2007-02-04 19:00:20 +02:00
|
|
|
}
|
|
|
|
|
} else if(in[0] == 'L' || in[0] == 'l') {
|
|
|
|
|
/* Login phase, handle auth */
|
|
|
|
|
login_calculate(logindata, 16, password, seed);
|
|
|
|
|
if (read >= 17 && (memcmp(logindata, in+1, 16) == 0)) {
|
|
|
|
|
/* Login ok, send ip/mtu info */
|
|
|
|
|
myip.s_addr = my_ip;
|
|
|
|
|
clientip.s_addr = my_ip + inet_addr("0.0.0.1");
|
|
|
|
|
|
|
|
|
|
tmp[0] = strdup(inet_ntoa(myip));
|
|
|
|
|
tmp[1] = strdup(inet_ntoa(clientip));
|
|
|
|
|
|
|
|
|
|
read = snprintf(out, sizeof(out), "%s-%s-%d",
|
|
|
|
|
tmp[0], tmp[1], my_mtu);
|
|
|
|
|
|
|
|
|
|
/* Store user ip */
|
|
|
|
|
memcpy(&(u.host), &(q.from), q.fromlen);
|
|
|
|
|
u.addrlen = q.fromlen;
|
|
|
|
|
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, out, read);
|
2007-02-04 19:00:20 +02:00
|
|
|
q.id = 0;
|
|
|
|
|
|
|
|
|
|
free(tmp[1]);
|
|
|
|
|
free(tmp[0]);
|
|
|
|
|
} else {
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, "LNAK", 4);
|
2007-02-04 19:00:20 +02:00
|
|
|
}
|
|
|
|
|
} else if((in[0] >= '0' && in[0] <= '9')
|
|
|
|
|
|| (in[0] >= 'a' && in[0] <= 'f')
|
|
|
|
|
|| (in[0] >= 'A' && in[0] <= 'F')) {
|
|
|
|
|
if ((in[0] >= '0' && in[0] <= '9'))
|
|
|
|
|
code = in[0] - '0';
|
|
|
|
|
if ((in[0] >= 'a' && in[0] <= 'f'))
|
|
|
|
|
code = in[0] - 'a' + 10;
|
|
|
|
|
if ((in[0] >= 'A' && in[0] <= 'F'))
|
|
|
|
|
code = in[0] - 'A' + 10;
|
|
|
|
|
|
|
|
|
|
/* Check sending ip number */
|
|
|
|
|
if (q.fromlen != u.addrlen ||
|
|
|
|
|
memcmp(&(u.host), &(q.from), q.fromlen) != 0) {
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, "BADIP", 5);
|
2007-02-04 19:00:20 +02:00
|
|
|
} else {
|
|
|
|
|
memcpy(packetbuf.data + packetbuf.offset, in + 1, read - 1);
|
|
|
|
|
packetbuf.len += read - 1;
|
|
|
|
|
packetbuf.offset += read - 1;
|
|
|
|
|
|
|
|
|
|
if (code & 1) {
|
|
|
|
|
outlen = sizeof(out);
|
|
|
|
|
uncompress(out, &outlen, packetbuf.data, packetbuf.len);
|
|
|
|
|
|
|
|
|
|
write_tun(tun_fd, out, outlen);
|
|
|
|
|
|
|
|
|
|
packetbuf.len = packetbuf.offset = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (q.fromlen == u.addrlen &&
|
|
|
|
|
memcmp(&(u.host), &(q.from), q.fromlen) == 0 &&
|
|
|
|
|
outpacket.len > 0) {
|
|
|
|
|
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, outpacket.data, outpacket.len);
|
2007-02-04 19:00:20 +02:00
|
|
|
outpacket.len = 0;
|
|
|
|
|
q.id = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
tunnel(int tun_fd, int dns_fd)
|
|
|
|
|
{
|
|
|
|
|
struct timeval tv;
|
|
|
|
|
fd_set fds;
|
2006-08-25 00:23:29 +03:00
|
|
|
int i;
|
|
|
|
|
|
2006-06-05 21:47:09 +03:00
|
|
|
while (running) {
|
2006-06-11 22:34:34 +03:00
|
|
|
if (q.id != 0) {
|
2006-06-06 15:36:12 +03:00
|
|
|
tv.tv_sec = 0;
|
2006-06-11 22:17:20 +03:00
|
|
|
tv.tv_usec = 5000;
|
2006-06-06 15:36:12 +03:00
|
|
|
} else {
|
|
|
|
|
tv.tv_sec = 1;
|
|
|
|
|
tv.tv_usec = 0;
|
|
|
|
|
}
|
2006-06-05 21:47:09 +03:00
|
|
|
|
|
|
|
|
FD_ZERO(&fds);
|
2006-06-11 22:17:20 +03:00
|
|
|
if(outpacket.len == 0)
|
2006-06-06 01:36:05 +03:00
|
|
|
FD_SET(tun_fd, &fds);
|
2006-06-05 21:47:09 +03:00
|
|
|
FD_SET(dns_fd, &fds);
|
|
|
|
|
|
|
|
|
|
i = select(MAX(tun_fd, dns_fd) + 1, &fds, NULL, NULL, &tv);
|
|
|
|
|
|
|
|
|
|
if(i < 0) {
|
2006-06-06 16:47:51 +03:00
|
|
|
if (running)
|
2006-06-05 21:47:09 +03:00
|
|
|
warn("select");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
2006-06-06 19:08:02 +03:00
|
|
|
|
|
|
|
|
if (i==0) {
|
2006-06-23 14:50:33 +03:00
|
|
|
if (q.id != 0) {
|
2007-02-05 19:49:30 +02:00
|
|
|
write_dns(dns_fd, &q, outpacket.data, outpacket.len);
|
2006-06-11 22:17:20 +03:00
|
|
|
outpacket.len = 0;
|
2006-06-11 22:34:34 +03:00
|
|
|
q.id = 0;
|
2006-06-23 14:50:33 +03:00
|
|
|
}
|
2006-06-06 19:08:02 +03:00
|
|
|
} else {
|
2006-06-05 21:47:09 +03:00
|
|
|
if(FD_ISSET(tun_fd, &fds)) {
|
2007-02-04 19:00:20 +02:00
|
|
|
tunnel_tun(tun_fd, dns_fd);
|
|
|
|
|
continue;
|
2006-06-05 21:47:09 +03:00
|
|
|
}
|
|
|
|
|
if(FD_ISSET(dns_fd, &fds)) {
|
2007-02-04 19:00:20 +02:00
|
|
|
tunnel_dns(tun_fd, dns_fd);
|
|
|
|
|
continue;
|
2006-06-05 21:47:09 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2007-02-04 17:46:06 +02:00
|
|
|
static int
|
|
|
|
|
read_dns(int fd, struct query *q, char *buf, int buflen)
|
|
|
|
|
{
|
|
|
|
|
struct sockaddr_in from;
|
|
|
|
|
char packet[64*1024];
|
2007-02-05 01:08:09 +02:00
|
|
|
char *domain;
|
2007-02-04 17:46:06 +02:00
|
|
|
socklen_t addrlen;
|
|
|
|
|
int rv;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
addrlen = sizeof(struct sockaddr);
|
|
|
|
|
r = recvfrom(fd, packet, sizeof(packet), 0, (struct sockaddr*)&from, &addrlen);
|
|
|
|
|
|
|
|
|
|
if (r > 0) {
|
2007-02-05 01:08:09 +02:00
|
|
|
dns_decode(buf, buflen, q, QR_QUERY, packet, r);
|
|
|
|
|
domain = strstr(q->name, topdomain);
|
|
|
|
|
rv = decode_data(buf, buflen, q->name, domain);
|
2007-02-04 17:46:06 +02:00
|
|
|
q->fromlen = addrlen;
|
|
|
|
|
memcpy((struct sockaddr*)&q->from, (struct sockaddr*)&from, addrlen);
|
2007-02-04 19:00:20 +02:00
|
|
|
} else if (r < 0) {
|
|
|
|
|
/* Error */
|
2007-02-04 17:46:06 +02:00
|
|
|
perror("recvfrom");
|
|
|
|
|
rv = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return rv;
|
|
|
|
|
}
|
|
|
|
|
|
2007-02-05 19:49:30 +02:00
|
|
|
static void
|
|
|
|
|
write_dns(int fd, struct query *q, char *data, int datalen)
|
|
|
|
|
{
|
|
|
|
|
char buf[64*1024];
|
|
|
|
|
int len;
|
|
|
|
|
|
|
|
|
|
len = dns_encode(buf, sizeof(buf), q, QR_ANSWER, data, datalen);
|
|
|
|
|
|
|
|
|
|
sendto(fd, buf, len, 0, (struct sockaddr*)&q->from, q->fromlen);
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-09 23:35:26 +03:00
|
|
|
static void
|
|
|
|
|
usage() {
|
2006-08-25 00:26:40 +03:00
|
|
|
extern char *__progname;
|
|
|
|
|
|
2006-11-18 18:08:47 +02:00
|
|
|
printf("Usage: %s [-v] [-h] [-f] [-u user] [-t chrootdir] [-d device] [-m mtu] "
|
|
|
|
|
"[-l ip address to listen on] [-p port] [-P password]"
|
|
|
|
|
" tunnel_ip topdomain\n", __progname);
|
2006-06-09 23:35:26 +03:00
|
|
|
exit(2);
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-11 16:14:57 +03:00
|
|
|
static void
|
|
|
|
|
help() {
|
2006-08-25 00:26:40 +03:00
|
|
|
extern char *__progname;
|
|
|
|
|
|
2006-06-11 16:39:38 +03:00
|
|
|
printf("iodine IP over DNS tunneling server\n");
|
2006-11-18 18:08:47 +02:00
|
|
|
printf("Usage: %s [-v] [-h] [-f] [-u user] [-t chrootdir] [-d device] [-m mtu] "
|
|
|
|
|
"[-l ip address to listen on] [-p port] [-P password]"
|
|
|
|
|
" tunnel_ip topdomain\n", __progname);
|
2006-06-12 01:02:26 +03:00
|
|
|
printf(" -v to print version info and exit\n");
|
|
|
|
|
printf(" -h to print this help and exit\n");
|
2006-06-11 16:14:57 +03:00
|
|
|
printf(" -f to keep running in foreground\n");
|
|
|
|
|
printf(" -u name to drop privileges and run as user 'name'\n");
|
2006-06-11 17:34:27 +03:00
|
|
|
printf(" -t dir to chroot to directory dir\n");
|
2006-06-24 13:28:24 +03:00
|
|
|
printf(" -d device to set tunnel device name\n");
|
|
|
|
|
printf(" -m mtu to set tunnel device mtu\n");
|
2006-08-12 01:52:36 +03:00
|
|
|
printf(" -l ip address to listen on for incoming dns traffic (default 0.0.0.0)\n");
|
2006-11-05 15:18:57 +02:00
|
|
|
printf(" -p port to listen on for incoming dns traffic (default 53)\n");
|
2006-11-18 18:08:47 +02:00
|
|
|
printf(" -P password used for authentication (max 32 chars will be used)\n");
|
2006-06-11 18:24:20 +03:00
|
|
|
printf("tunnel_ip is the IP number of the local tunnel interface.\n");
|
|
|
|
|
printf("topdomain is the FQDN that is delegated to this server.\n");
|
2006-06-11 16:14:57 +03:00
|
|
|
exit(0);
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-11 16:27:48 +03:00
|
|
|
static void
|
|
|
|
|
version() {
|
2006-06-11 16:37:44 +03:00
|
|
|
char *svnver = "$Rev$ from $Date$";
|
2006-06-11 16:27:48 +03:00
|
|
|
printf("iodine IP over DNS tunneling server\n");
|
|
|
|
|
printf("SVN version: %s\n", svnver);
|
|
|
|
|
exit(0);
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-05 21:47:09 +03:00
|
|
|
int
|
|
|
|
|
main(int argc, char **argv)
|
|
|
|
|
{
|
2006-06-11 17:29:36 +03:00
|
|
|
int choice;
|
2006-06-05 21:47:09 +03:00
|
|
|
int tun_fd;
|
|
|
|
|
int dnsd_fd;
|
2006-06-11 17:29:36 +03:00
|
|
|
char *newroot;
|
2006-06-09 23:35:26 +03:00
|
|
|
char *username;
|
2006-06-24 13:28:24 +03:00
|
|
|
char *device;
|
2006-06-11 16:05:41 +03:00
|
|
|
int foreground;
|
2006-06-11 18:24:20 +03:00
|
|
|
int mtu;
|
2006-06-11 17:29:36 +03:00
|
|
|
struct passwd *pw;
|
2006-08-12 01:52:36 +03:00
|
|
|
in_addr_t listen_ip;
|
2006-11-05 15:18:57 +02:00
|
|
|
int port;
|
2006-06-09 23:35:26 +03:00
|
|
|
|
|
|
|
|
username = NULL;
|
2006-06-11 18:24:20 +03:00
|
|
|
newroot = NULL;
|
2006-06-24 13:28:24 +03:00
|
|
|
device = NULL;
|
2006-06-11 16:05:41 +03:00
|
|
|
foreground = 0;
|
2006-06-11 18:24:20 +03:00
|
|
|
mtu = 1024;
|
2006-08-12 01:52:36 +03:00
|
|
|
listen_ip = INADDR_ANY;
|
2006-11-05 15:18:57 +02:00
|
|
|
port = 53;
|
2006-06-11 21:43:37 +03:00
|
|
|
|
|
|
|
|
packetbuf.len = 0;
|
|
|
|
|
packetbuf.offset = 0;
|
2006-06-11 22:17:20 +03:00
|
|
|
outpacket.len = 0;
|
2006-06-11 22:34:34 +03:00
|
|
|
q.id = 0;
|
2006-11-18 18:08:47 +02:00
|
|
|
memset(password, 0, 33);
|
2006-11-19 02:41:42 +02:00
|
|
|
srand(time(NULL));
|
2006-06-11 15:45:46 +03:00
|
|
|
|
2006-11-18 18:08:47 +02:00
|
|
|
while ((choice = getopt(argc, argv, "vfhu:t:d:m:l:p:P:")) != -1) {
|
2006-06-09 23:35:26 +03:00
|
|
|
switch(choice) {
|
2006-06-11 16:27:48 +03:00
|
|
|
case 'v':
|
|
|
|
|
version();
|
|
|
|
|
break;
|
2006-06-11 16:05:41 +03:00
|
|
|
case 'f':
|
|
|
|
|
foreground = 1;
|
|
|
|
|
break;
|
2006-06-11 16:14:57 +03:00
|
|
|
case 'h':
|
|
|
|
|
help();
|
|
|
|
|
break;
|
2006-06-09 23:35:26 +03:00
|
|
|
case 'u':
|
|
|
|
|
username = optarg;
|
|
|
|
|
break;
|
2006-06-11 17:29:36 +03:00
|
|
|
case 't':
|
|
|
|
|
newroot = optarg;
|
|
|
|
|
break;
|
2006-06-24 13:28:24 +03:00
|
|
|
case 'd':
|
|
|
|
|
device = optarg;
|
|
|
|
|
break;
|
2006-06-11 18:24:20 +03:00
|
|
|
case 'm':
|
|
|
|
|
mtu = atoi(optarg);
|
|
|
|
|
break;
|
2006-08-12 01:52:36 +03:00
|
|
|
case 'l':
|
|
|
|
|
listen_ip = inet_addr(optarg);
|
|
|
|
|
break;
|
2006-11-05 15:18:57 +02:00
|
|
|
case 'p':
|
|
|
|
|
port = atoi(optarg);
|
2006-11-13 00:43:03 +02:00
|
|
|
if (port) {
|
|
|
|
|
printf("ALERT! Other dns servers expect you to run on port 53.\n");
|
|
|
|
|
printf("You must manually forward port 53 to port %d for things to work.\n", port);
|
|
|
|
|
}
|
2006-11-05 15:18:57 +02:00
|
|
|
break;
|
2006-11-18 18:08:47 +02:00
|
|
|
case 'P':
|
|
|
|
|
strncpy(password, optarg, 32);
|
|
|
|
|
password[32] = 0;
|
|
|
|
|
break;
|
2006-06-09 23:35:26 +03:00
|
|
|
default:
|
|
|
|
|
usage();
|
2006-06-11 17:33:59 +03:00
|
|
|
break;
|
2006-06-09 23:35:26 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
argc -= optind;
|
|
|
|
|
argv += optind;
|
2007-02-04 22:37:36 +02:00
|
|
|
|
2006-06-11 16:59:55 +03:00
|
|
|
if (geteuid() != 0) {
|
|
|
|
|
printf("Run as root and you'll be happy.\n");
|
|
|
|
|
usage();
|
|
|
|
|
}
|
2006-06-05 21:47:09 +03:00
|
|
|
|
2006-06-11 18:24:20 +03:00
|
|
|
if (argc != 2)
|
2006-06-09 23:35:26 +03:00
|
|
|
usage();
|
2006-06-05 21:47:09 +03:00
|
|
|
|
2007-02-04 22:37:36 +02:00
|
|
|
topdomain = strdup(argv[1]);
|
|
|
|
|
|
2006-06-11 15:18:49 +03:00
|
|
|
if (username) {
|
|
|
|
|
pw = getpwnam(username);
|
|
|
|
|
if (!pw) {
|
|
|
|
|
printf("User %s does not exist!\n", username);
|
|
|
|
|
usage();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-11 18:24:20 +03:00
|
|
|
if (mtu == 0) {
|
|
|
|
|
printf("Bad MTU given.\n");
|
|
|
|
|
usage();
|
|
|
|
|
}
|
|
|
|
|
|
2006-08-12 01:52:36 +03:00
|
|
|
if (listen_ip == INADDR_NONE) {
|
|
|
|
|
printf("Bad IP address to listen on.\n");
|
|
|
|
|
usage();
|
|
|
|
|
}
|
|
|
|
|
|
2006-11-18 18:08:47 +02:00
|
|
|
if (strlen(password) == 0) {
|
|
|
|
|
printf("Enter password on stdin:\n");
|
|
|
|
|
scanf("%32s", password);
|
|
|
|
|
password[32] = 0;
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-24 13:28:24 +03:00
|
|
|
if ((tun_fd = open_tun(device)) == -1)
|
2006-06-11 18:24:20 +03:00
|
|
|
goto cleanup0;
|
|
|
|
|
if (tun_setip(argv[0]) != 0 || tun_setmtu(mtu) != 0)
|
2006-06-11 17:42:19 +03:00
|
|
|
goto cleanup1;
|
2007-01-28 13:52:36 +02:00
|
|
|
if ((dnsd_fd = open_dns(port, listen_ip)) == -1)
|
2006-06-11 17:42:19 +03:00
|
|
|
goto cleanup2;
|
2006-06-23 10:58:36 +03:00
|
|
|
|
|
|
|
|
my_ip = inet_addr(argv[0]);
|
|
|
|
|
my_mtu = mtu;
|
|
|
|
|
|
2006-06-11 22:54:23 +03:00
|
|
|
printf("Listening to dns for domain %s\n", argv[1]);
|
2006-06-11 17:42:19 +03:00
|
|
|
|
2006-06-11 17:29:36 +03:00
|
|
|
if (newroot) {
|
|
|
|
|
if (chroot(newroot) != 0 || chdir("/") != 0)
|
|
|
|
|
err(1, "%s", newroot);
|
|
|
|
|
seteuid(geteuid());
|
|
|
|
|
setuid(getuid());
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-11 16:05:41 +03:00
|
|
|
if (!foreground) {
|
2006-06-11 20:41:39 +03:00
|
|
|
printf("Detaching from terminal...\n");
|
2006-06-11 16:05:41 +03:00
|
|
|
daemon(0, 0);
|
|
|
|
|
umask(0);
|
|
|
|
|
alarm(0);
|
|
|
|
|
}
|
|
|
|
|
|
2006-06-05 21:47:09 +03:00
|
|
|
signal(SIGINT, sigint);
|
2006-06-09 23:35:26 +03:00
|
|
|
if (username) {
|
|
|
|
|
if (setgid(pw->pw_gid) < 0 || setuid(pw->pw_uid) < 0) {
|
|
|
|
|
printf("Could not switch to user %s!\n", username);
|
|
|
|
|
usage();
|
|
|
|
|
}
|
|
|
|
|
}
|
2006-06-05 21:47:09 +03:00
|
|
|
|
|
|
|
|
tunnel(tun_fd, dnsd_fd);
|
|
|
|
|
|
2006-06-11 17:42:19 +03:00
|
|
|
cleanup2:
|
2006-06-11 22:54:23 +03:00
|
|
|
close_dns(dnsd_fd);
|
2006-06-11 17:42:19 +03:00
|
|
|
cleanup1:
|
2006-06-05 21:47:09 +03:00
|
|
|
close_tun(tun_fd);
|
2006-06-11 18:24:20 +03:00
|
|
|
cleanup0:
|
2006-06-05 21:47:09 +03:00
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
