[Pkg-privacy-commits] [onioncat] 03/241: changing tun setup to ifconfig

Intrigeri intrigeri at moszumanska.debian.org
Wed Aug 26 16:16:12 UTC 2015

This is an automated email from the git hooks/post-receive script.

intrigeri pushed a commit to branch upstream-master
in repository onioncat.

commit 6fe0e51aead65e5819d070074db1b005c2bf928f
Author: eagle <eagle at 58e1ccc2-750e-0410-8d0d-f93ca75ab447>
Date:   Thu Feb 7 12:36:41 2008 +0000

    changing tun setup to ifconfig
    git-svn-id: https://www.cypherpunk.at/svn/onioncat/trunk@117 58e1ccc2-750e-0410-8d0d-f93ca75ab447
 ocatroute.c | 60 +++++++++++++++++++++++++++++++++++++++++++-----------------
 ocattun.c   | 42 ++++++++++++++++++++++++++++++++----------
 2 files changed, 75 insertions(+), 27 deletions(-)

diff --git a/ocatroute.c b/ocatroute.c
index 77c4ddc..3910f33 100644
--- a/ocatroute.c
+++ b/ocatroute.c
@@ -13,6 +13,7 @@
 #include <fcntl.h>
 #include <pthread.h>
 #include <netinet/in.h>
+#include <netinet/ip6.h>
 #include <arpa/inet.h>
 #include <errno.h>
 #include <sys/select.h>
@@ -86,7 +87,7 @@ void delete_peer(OnionPeer_t *peer)
-const OnionPeer_t *forward_packet(const struct in6_addr *addr, const char *buf, int buflen)
+const OnionPeer_t *forward_packet(const struct in6_addr *addr, const struct ip6_hdr *buf, int buflen)
    OnionPeer_t *peer;
@@ -103,7 +104,7 @@ const OnionPeer_t *forward_packet(const struct in6_addr *addr, const char *buf,
-void queue_packet(const struct in6_addr *addr, const char *buf, int buflen)
+void queue_packet(const struct in6_addr *addr, const struct ip6_hdr *buf, int buflen)
    PacketQueue_t *queue;
@@ -215,25 +216,27 @@ void hex_code_header(const char *frame, int len, char *buf)
 // do some packet validation
-int validate_frame(const char *frame, int len)
+int validate_frame(const struct ip6_hdr *ihd, int len)
    char buf[INET6_ADDRSTRLEN];
-   struct ip6_hdr *ihd = (struct ip6_hdr*) (frame + 4);
-   char hexbuf[(IP6HLEN + 4) * 3 + 1];
+   //struct ip6_hdr *ihd = (struct ip6_hdr*) (frame + 4);
+   char hexbuf[IP6HLEN * 3 + 1];
-   hex_code_header(frame, len > IP6HLEN + 4 ? IP6HLEN + 4 : len, hexbuf);
+   hex_code_header((char*) ihd, len > IP6HLEN ? IP6HLEN : len, hexbuf);
    log_msg(L_DEBUG, "[validate_frame] header \"%s\"", hexbuf);
+   /*
    if (len < IP6HLEN + 4)
       log_msg(L_ERROR, "[validate_frame] frame too short: %d bytes", len);
       return 0;
-   if (/*(buf[2] != (char)0x86) || (buf[3] != (char)0xdd)*/ *((uint16_t*) &frame[2]) != htons(0x86dd))
+   if (*((uint16_t*) &frame[2]) != htons(0x86dd))
       log_msg(L_ERROR, "[validate_frame] ethertype is not IPv6");
       return 0;
+   */
    if (!has_tor_prefix(&ihd->ip6_dst))
       log_msg(L_ERROR, "[validate_frame] destination %s unreachable", inet_ntop(AF_INET6, &ihd->ip6_dst, buf, INET6_ADDRSTRLEN));
@@ -261,10 +264,16 @@ void cleanup_socket(int fd, OnionPeer_t *peer)
 void *socket_receiver(void *p)
    int i, fd, maxfd, len, state, plen, rlen;
-   char buf[FRAME_SIZE];
+   char buf[FRAME_SIZE + 4];
    char addr[INET6_ADDRSTRLEN];
    fd_set rset;
-//   struct ip6_hdr *ihd;
+   struct ip6_hdr *ihd;
+#ifndef linux
+   ihd = (struct ip6_hdr*) &buf[4];
+   ihd = (struct ip6_hdr*) buf;
    log_msg(L_DEBUG, "[socket_receiver] running");
    for (;;)
@@ -403,7 +412,7 @@ void *socket_receiver(void *p)
             // *** unframed receiver
             // write reordered after IP validation
             // this might happen on linux, see SELECT(2)
-            if ((len = read(fd, buf, FRAME_SIZE)) == -1)
+            if ((len = read(fd, ihd, FRAME_SIZE)) == -1)
                log_msg(L_DEBUG, "[socket_receiver] spurious wakup of %d: \"%s\"", fd, strerror(errno));
@@ -419,7 +428,7 @@ void *socket_receiver(void *p)
             // check frame
-            plen = validate_frame(buf, len);
+            plen = validate_frame(ihd, len);
             if (vrec_ && !plen)
                log_msg(L_ERROR, "[socket_receiver] dropping frame");
@@ -432,13 +441,24 @@ void *socket_receiver(void *p)
             // set IP address if it is not set yet and frame is valid
             if (plen && !memcmp(&peer_[i].addr, &in6addr_any, sizeof(struct in6_addr)))
-               memcpy(&peer_[i].addr, &((struct ip6_hdr*) (buf + 4))->ip6_src, sizeof(struct in6_addr));
+               memcpy(&peer_[i].addr, &ihd->ip6_src, sizeof(struct in6_addr));
                log_msg(L_NOTICE, "[socket_receiver] incoming connection on %d from %s is now identified", fd,
                      inet_ntop(AF_INET6, &peer_[i].addr, addr, INET6_ADDRSTRLEN));
             log_msg(L_DEBUG, "[socket_receiver] writing to tun %d framesize %d", tunfd_[1], len);
-            write(tunfd_[1], buf, len);
+#ifndef linux
+            while (len > 0)
+            {
+               *(((uint32_t*) ihd) - 1) = htonl(AF_INET6);
+               write(tunfd_[1], ((uint32_t*) ihd) - 1, plen + 4 + IP6HLEN);
+               ihd = (char*) ihd + plen + IP6HLEN;
+               len -= plen + IP6HLEN;
+               plen = validate_frame(ihd);
+            }
+            write(tunfd_[1], ihd, len);
@@ -682,16 +702,22 @@ void packet_forwarder(void)
    char buf[FRAME_SIZE];
    char addr[INET6_ADDRSTRLEN];
-   struct ip6_hdr *ihd = (struct ip6_hdr*) &buf[4];
+   struct ip6_hdr *ihd;
    int rlen;
+#ifndef linux
+   ihd = (struct ip6_hdr*) &buf[4];
+   ihd = (struct ip6_hdr*) buf;
    for (;;)
       //rlen = receive_packet(tunfd_, data);
       rlen = read(tunfd_[0], buf, FRAME_SIZE);
       log_msg(L_DEBUG, "[packet_forwarder] received on tunfd %d, framesize %d", tunfd_[0], rlen);
-      if (!validate_frame(buf, rlen))
+      if (!validate_frame(ihd, rlen))
          log_msg(L_ERROR, "[packet_forwarder] dropping frame");
@@ -715,14 +741,14 @@ void packet_forwarder(void)
-      if (!forward_packet(&ihd->ip6_dst, buf, rlen))
+      if (!forward_packet(&ihd->ip6_dst, ihd, rlen))
          log_msg(L_NOTICE, "[packet_forwarder] establishing new socks peer");
          log_msg(L_DEBUG, "[packet_forwarder] writing %s to socks connector pipe %d", inet_ntop(AF_INET6, &ihd->ip6_dst, addr, INET6_ADDRSTRLEN), cpfd_[1]);
          write(cpfd_[1], &ihd->ip6_dst, sizeof(struct in6_addr));
          log_msg(L_DEBUG, "[packet_forwarder] queuing packet");
-         queue_packet(&ihd->ip6_dst, buf, rlen);
+         queue_packet(&ihd->ip6_dst, ihd, rlen);
diff --git a/ocattun.c b/ocattun.c
index b3f2f6c..0843b64 100644
--- a/ocattun.c
+++ b/ocattun.c
@@ -19,10 +19,18 @@
 #include <arpa/inet.h>
 #include <netinet/ip6.h>
 #include <net/if.h>
+#include <errno.h>
+#ifdef linux
 #include <linux/if_tun.h>
+#include <net/if_tun.h>
 #include "ocat.h"
+#ifdef SET_TUN_IP
 /* FIXME: this is defined in linux/ipv6.h but including
  * it conflicts with other headers. */
 struct in6_ifreq 
@@ -31,6 +39,7 @@ struct in6_ifreq
    uint32_t ifr6_prefixlen;
    int ifr6_ifindex;
 char *tun_dev_ = TUN_DEV;
@@ -38,35 +47,37 @@ char *tun_dev_ = TUN_DEV;
 int tun_alloc(char *dev, struct in6_addr addr)
    struct ifreq ifr;
+   int fd;
+#ifdef SET_TUN_IP
+   int sfd;
    struct in6_ifreq ifr6;
-//   struct sockaddr_in6 addr;
-   int fd, sfd;
+   char astr[INET6_ADDRSTRLEN];
+   char buf[FRAME_SIZE];
    if( (fd = open(tun_dev_, O_RDWR)) < 0 )
       perror("open tun"), exit(1);
+#ifdef linux
    memset(&ifr, 0, sizeof(ifr));
-   ifr.ifr_flags = IFF_TUN /*| IFF_NO_PI*/;
+   ifr.ifr_flags = IFF_TUN | IFF_NO_PI;
       strncpy(ifr.ifr_name, dev, IFNAMSIZ);
    if(ioctl(fd, TUNSETIFF, (void *) &ifr) < 0)
       perror("TUNSETIFF"), exit(1);
    strcpy(dev, ifr.ifr_name);
+#ifdef SET_TUN_IP
    if ((sfd = socket(PF_INET6, SOCK_DGRAM, 0)) < 0)
       perror("socket"), exit(1);
    if (ioctl(sfd, SIOCGIFINDEX, &ifr ) < 0)
       perror("SIOCGIFINDEX"), exit(1);
-   /*
-   memset(&addr, 0, sizeof(addr));
-   addr.sin6_family = AF_INET6;
-   if (inet_pton(AF_INET6, ipv6, &addr.sin6_addr) < 0)
-      perror("inet_pton"), exit(1);
-   ifr6.ifr6_addr = addr.sin6_addr;*/
    ifr6.ifr6_addr = addr;
    ifr6.ifr6_ifindex = ifr.ifr_ifindex;
    ifr6.ifr6_prefixlen = TOR_PREFIX_LEN;
@@ -81,6 +92,17 @@ int tun_alloc(char *dev, struct in6_addr addr)
       perror("SIOCSIFFLAGS"), exit(1);
+   inet_ntop(AF_INET6, &addr, astr, INET6_ADDRSTRLEN);
+#ifdef linux
+   sprintf(buf, "ifconfig tun0 add %s/%d up", astr, TOR_PREFIX_LEN);
+   sprintf(buf, "ifconfig tun0 inet6 %s/%d up", astr, TOR_PREFIX_LEN);
+   if (system(buf) == -1)
+      log_msg(L_ERROR, "could not exec \"%s\": \"%s\"", buf, strerror(errno));
    return fd;

Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-privacy/packages/onioncat.git

More information about the Pkg-privacy-commits mailing list