| blob | f5747117ab394496653c06263b8fb1a39a29d4c8 |
1 /***********************************************************************
2 * connect.c -- Make socket connection using SOCKS4/5 and HTTP tunnel.
3 *
4 * Copyright (c) 2000-2006 Shun-ichi Goto
5 * Copyright (c) 2002, J. Grant (English Corrections)
6 *
7 * This program is free software; you can redistribute it and/or
8 * modify it under the terms of the GNU General Public License
9 * as published by the Free Software Foundation; either version 2
10 * of the License, or (at your option) any later version.
11 *
12 * This program is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
20 *
21 * ---------------------------------------------------------
22 * PROJECT: My Test Program
23 * AUTHOR: Shun-ichi GOTO <gotoh@taiyo.co.jp>
24 * CREATE: Wed Jun 21, 2000
25 * REVISION: $Revision: 100 $
26 * ---------------------------------------------------------
27 *
28 * Getting Source
29 * ==============
30 *
31 * Recent version of 'connect.c' is available from
32 * http://www.taiyo.co.jp/~gotoh/ssh/connect.c
33 *
34 * Related tool, ssh-askpass.exe (alternative ssh-askpass on UNIX)
35 * is available:
36 * http://www.taiyo.co.jp/~gotoh/ssh/ssh-askpass.exe.gz
37 *
38 * See more detail:
39 * http://www.taiyo.co.jp/~gotoh/ssh/connect.html
40 *
41 * How To Compile
42 * ==============
43 *
44 * On UNIX environment:
45 * $ gcc connect.c -o connect
46 *
47 * On SOLARIS:
48 * $ gcc -o connect -lresolv -lsocket -lnsl connect.c
49 *
50 * on Win32 environment:
51 * $ cl connect.c wsock32.lib advapi32.lib
52 * or
53 * $ bcc32 connect.c wsock32.lib advapi32.lib
54 * or
55 * $ gcc connect.c -o connect
56 *
57 * on Mac OS X environment:
58 * $ gcc connect.c -o connect -lresolv
59 * or
60 * $ gcc connect.c -o connect -DBIND_8_COMPAT=1
61 *
62 * How To Use
63 * ==========
64 *
65 * You can specify proxy method in an environment variable or in a
66 * command line option.
67 *
68 * usage: connect [-dnhst45] [-R resolve] [-p local-port] [-w sec]
69 * [-H [user@]proxy-server[:port]]
70 * [-S [user@]socks-server[:port]]
71 * [-T proxy-server[:port]]
72 * [-c telnet proxy command]
73 * host port
74 *
75 * "host" and "port" is for the target hostname and port-number to
76 * connect to.
77 *
78 * The -H option specifys a hostname and port number of the http proxy
79 * server to relay. If port is omitted, 80 is used. You can specify this
80 * value in the environment variable HTTP_PROXY and pass the -h option
81 * to use it.
82 *
83 * The -S option specifys the hostname and port number of the SOCKS
84 * server to relay. Like -H, port number can be omitted and the default
85 * is 1080. You can also specify this value pair in the environment
86 * variable SOCKS5_SERVER and give the -s option to use it.
87 *
88 * The '-4' and the '-5' options are for specifying SOCKS relaying and
89 * indicates protocol version to use. It is valid only when used with
90 * '-s' or '-S'. Default is '-5' (protocol version 5)
91 *
92 * The '-R' option is for specifying method to resolve the
93 * hostname. Three keywords ("local", "remote", "both") or dot-notation
94 * IP address are acceptable. The keyword "both" means, "Try local
95 * first, then remote". If a dot-notation IP address is specified, use
96 * this host as nameserver. The default is "remote" for SOCKS5 or
97 * "local" for others. On SOCKS4 protocol, remote resolving method
98 * ("remote" and "both") requires protocol 4a supported server.
99 *
100 * The '-p' option will forward a local TCP port instead of using the
101 * standard input and output.
102 *
103 * The '-P' option is same to '-p' except keep remote session. The
104 * program repeats waiting the port with holding remote session without
105 * disconnecting. To disconnect the remote session, send EOF to stdin or
106 * kill the program.
107 *
108 * The '-w' option specifys timeout seconds for making connection with
109 * TARGET host.
110 *
111 * The '-d' option is used for debug. If you fail to connect, use this
112 * and check request to and response from server.
113 *
114 * You can omit the "port" argument when program name is special format
115 * containing port number itself. For example,
116 * $ ln -s connect connect-25
117 * means this connect-25 command is spcifying port number 25 already
118 * so you need not 2nd argument (and ignored if specified).
119 *
120 * To use proxy, this example is for SOCKS5 connection to connect to
121 * 'host' at port 25 via SOCKS5 server on 'firewall' host.
122 * $ connect -S firewall host 25
123 * or
124 * $ SOCKS5_SERVER=firewall; export SOCKS5_SERVER
125 * $ connect -s host 25
126 *
127 * For a HTTP-PROXY connection:
128 * $ connect -H proxy-server:8080 host 25
129 * or
130 * $ HTTP_PROXY=proxy-server:8080; export HTTP_PROXY
131 * $ connect -h host 25
132 * To forward a local port, for example to use ssh:
133 * $ connect -p 5550 -H proxy-server:8080 host 22
134 * ($ ssh -l user -p 5550 localhost )
135 *
136 * TIPS
137 * ====
138 *
139 * Connect.c doesn't have any configuration to specify the SOCKS server.
140 * If you are a mobile user, this limitation might bother you. However,
141 * You can compile connect.c and link with other standard SOCKS library
142 * like the NEC SOCKS5 library or Dante. This means connect.c is
143 * socksified and uses a configration file like to other SOCKSified
144 * network commands and you can switch configuration file any time
145 * (ex. when ppp startup) that brings you switching of SOCKS server for
146 * connect.c in same way with other commands. For this case, you can
147 * write ~/.ssh/config like this:
148 *
149 * ProxyCommand connect -n %h %p
150 *
151 * SOCKS5 authentication
152 * =====================
153 *
154 * Only USER/PASS authentication is supported.
155 *
156 * Proxy authentication
157 * ====================
158 *
159 * Only BASIC scheme is supported.
160 *
161 * Authentication informations
162 * ===========================
163 *
164 * User name for authentication is specifed by an environment variable
165 * or system login name. And password is specified from environment
166 * variable or external program (specified in $SSH_ASKPASS) or tty.
167 *
168 * Following environment variable is used for specifying user name.
169 * SOCKS: $SOCKS5_USER, $LOGNAME, $USER
170 * HTTP Proxy: $HTTP_PROXY_USER, $LOGNAME, $USER
171 *
172 * ssh-askpass support
173 * ===================
174 *
175 * You can use ssh-askpass (came from OpenSSH or else) to specify
176 * password on graphical environment (X-Window or MS Windows). To use
177 * this, set program name to environment variable SSH_ASKPASS. On UNIX,
178 * X-Window must be required, so $DISPLAY environment variable is also
179 * needed. On Win32 environment, $DISPLAY is not mentioned.
180 *
181 * Related Informations
182 * ====================
183 *
184 * SOCKS5 -- RFC 1928, RFC 1929, RFC 1961
185 * NEC SOCKS Reference Implementation is available from:
186 * http://www.socks.nec.com
187 * DeleGate version 5 or earlier can be SOCKS4 server,
188 * and version 6 can be SOCKS5 and SOCKS4 server.
189 * and version 7.7.0 or later can be SOCKS5 and SOCKS4a server.
190 * http://www.delegate.org/delegate/
191 *
192 * HTTP-Proxy --
193 * Many http proxy servers supports this, but https should
194 * be allowed as configuration on your host.
195 * For example on DeleGate, you should add "https" to the
196 * "REMITTABLE" parameter to allow HTTP-Proxy like this:
197 * delegated -Pxxxx ...... REMITTABLE="+,https" ...
198 *
199 * Hypertext Transfer Protocol -- HTTP/1.1 -- RFC 2616
200 * HTTP Authentication: Basic and Digest Access Authentication -- RFC 2617
201 * For proxy authentication, refer these documents.
202 *
203 ***********************************************************************/
205 #include <stdio.h>
206 #include <stdlib.h>
207 #include <string.h>
208 #include <ctype.h>
209 #include <memory.h>
210 #include <errno.h>
211 #include <assert.h>
212 #include <sys/types.h>
213 #include <stdarg.h>
214 #include <fcntl.h>
215 #include <signal.h>
217 #ifdef __CYGWIN32__
218 #undef _WIN32
219 #endif
221 #ifdef _WIN32
222 #include <windows.h>
223 #include <winsock.h>
224 #include <sys/stat.h>
225 #include <io.h>
226 #include <conio.h>
228 #include <unistd.h>
229 #include <pwd.h>
230 #include <termios.h>
231 #include <sys/time.h>
232 #ifndef __hpux
233 #include <sys/select.h>
235 #include <sys/socket.h>
236 #include <netinet/in.h>
237 #include <arpa/inet.h>
238 #include <netdb.h>
239 #if !defined(_WIN32) && !defined(__CYGWIN32__)
240 #define WITH_RESOLVER 1
241 #include <arpa/nameser.h>
242 #include <resolv.h>
244 #undef WITH_RESOLVER
248 #ifdef _WIN32
249 #define ECONNRESET WSAECONNRESET
254 #ifndef LINT
256 #endif
258 /* Microsoft Visual C/C++ has _snprintf() and _vsnprintf() */
259 #ifdef _MSC_VER
260 #define snprintf _snprintf
261 #define vsnprintf _vsnprintf
262 #endif
264 /* consider Borland C */
265 #ifdef __BORLANDC__
266 #define _kbhit kbhit
267 #define _setmode setmode
268 #endif
270 /* help message.
271 Win32 environment does not support -R option (vc and cygwin)
272 Win32 native compilers does not support -w option, yet (vc)
273 */
275 #ifdef _WIN32
276 #ifdef __CYGWIN32__
282 /* help message for UNIX */
290 /* name of this program */
298 /* set of character for strspn() */
302 /* options */
305 /* report flag to hide secure information */
310 /* local input type */
311 #define LOCAL_STDIO 0
312 #define LOCAL_SOCKET 1
320 /* utiity types, pair holder of number and string */
326 /* relay method, server and port */
327 #define METHOD_UNDECIDED 0
328 #define METHOD_DIRECT 1
329 #define METHOD_SOCKS 2
330 #define METHOD_HTTP 3
331 #define METHOD_TELNET 4
339 /* destination target host and port */
344 /* informations for SOCKS */
356 LOOKUP_ITEM socks5_rep_names[] = {
368 };
370 /* SOCKS5 authentication methods */
384 LOOKUP_ITEM socks4_rep_names[] = {
390 };
392 #define RESOLVE_UNKNOWN 0
393 #define RESOLVE_LOCAL 1
394 #define RESOLVE_REMOTE 2
395 #define RESOLVE_BOTH 3
403 /* Environment variable names */
436 /* Prefix string of HTTP_PROXY */
438 #define PROXY_AUTH_NONE 0
439 #define PROXY_AUTH_BASIC 1
440 #define PROXY_AUTH_DIGEST 2
443 /* reason of end repeating */
444 #define REASON_UNK -2
445 #define REASON_ERROR -1
446 #define REASON_CLOSED_BY_LOCAL 0
447 #define REASON_CLOSED_BY_REMOTE 1
449 /* return value of relay start function. */
450 #define START_ERROR -1
451 #define START_OK 0
452 #define START_RETRY 1
454 /* socket related definitions */
455 #ifndef _WIN32
456 #define SOCKET int
457 #endif
458 #ifndef SOCKET_ERROR
459 #define SOCKET_ERROR -1
460 #endif
462 #ifdef _WIN32
463 #define socket_errno() WSAGetLastError()
465 #define closesocket close
466 #define socket_errno() (errno)
469 #ifdef _WIN32
470 #define popen _popen
473 /* packet operation macro */
474 #define PUT_BYTE(ptr,data) (*(unsigned char*)ptr = data)
476 /* debug message output */
477 void
479 {
486 }
487 }
489 void
491 {
497 }
498 }
500 /* error message output */
501 void
503 {
509 }
511 void
513 {
520 }
525 {
530 }
534 {
539 buf++;
540 }
542 }
546 {
566 src ++;
568 }
585 src ++;
587 }
589 /* usual */
591 }
593 }
596 }
599 int
601 {
613 #ifndef WITH_RESOLVER
614 fatal("Sorry, you can't specify to resolve the hostname with the -R option on Win32 environment.");
619 }
620 else
624 }
628 {
629 #ifdef _WIN32
641 }
643 /* expect
644 check STR is begin with substr with case-ignored comparison.
645 Return 1 if matched, otherwise 0.
646 */
647 int
649 {
655 }
657 }
660 /** PARAMETER operation **/
667 PARAMETER_ITEM parameter_table[] = {
690 };
692 PARAMETER_ITEM*
694 {
699 }
701 }
703 void
705 {
729 }
746 }
749 }
750 }
751 }
752 }
754 void
756 {
757 #if !defined(_WIN32) || defined(cygwin)
760 #endif
763 #if !defined(_WIN32) || defined(cygwin)
773 }
777 {
783 }
785 }
788 /** DIRECT connection **/
789 #define MAX_DIRECT_ADDR_LIST 256
796 };
801 void
803 {
809 }
811 int
813 {
819 }
832 n_direct_addr_list++;
834 }
837 /* add domain/host name entry to direct name table */
838 int
840 {
844 }
846 name++;
848 name++;
852 n_direct_addr_list++;
854 }
857 int
859 {
860 /* NOTE: */
861 /* Assume already be splitted by separator
862 and formatted as folowing:
863 1) 12.34.56.789/255.255.255.0
864 2) 12.34.56.789/24
865 3) 12.34.56.
866 All above generates same addr/mask pair 12.34.56.0 and 255.255.255.0
867 */
886 ptr++;
888 ptr++;
889 else
891 }
892 /* At this point, *ptr points '/' or EOS ('\0') */
897 /* Now parse mask for format #1 or #2 */
898 ptr++;
902 /* case of format #1 */
909 ptr++;
911 ptr++;
912 else
914 }
915 /* complete as format #1 */
917 /* case of format #2 */
924 /* complete as format #1 */
925 }
927 }
929 void
931 {
940 else
947 }
962 }
970 beg++;
977 }
984 }
986 int
988 {
990 }
992 int
994 {
998 /* Note: assume IPV4 address !! */
1015 }
1016 }
1019 }
1022 /* check s1 is ends with s2.
1023 return 1 if exact match or domain part match.
1024 return 0 if s1 is shorter than s2 or partial match.
1025 For example,
1026 ends_with("bar.com", "bar.com") => 1 (exact match)
1027 ends_with("foo.bar.com", "bar.com") => 1 (domain match)
1028 ends_with("foo.beebar.com", "bar.com") => 0 (partial match)
1029 ends_with("bar", "bar.com") => 0 (shorter)
1030 */
1032 {
1045 }
1048 /* Now exact match, domain match or partial match.
1049 Return true if exact or domain match.
1050 Or continue checking. */
1054 }
1056 /* Check given NAME is ends with one of
1057 registered direct name entry.
1058 Return 1 if matched, or 0.
1059 */
1060 int
1062 {
1085 }
1086 }
1087 }
1089 }
1091 /* check to connect to HOST directyly?
1092 return 1 if to be direct, 0 for else. */
1093 int
1095 {
1099 /* case of IP address */
1103 }
1105 /* case of hostname */
1109 }
1110 }
1113 }
1116 /** TTY operation **/
1120 #ifndef _WIN32
1121 void
1123 {
1125 }
1127 void
1129 {
1136 /* enable echo */
1139 /* resotore sigaction */
1143 /* re-generate signal */
1148 }
1150 /* set SIGINTR handler and break syscall on singal */
1158 /* disable echo */
1164 }
1165 }
1168 }
1171 int
1173 {
1180 }
1195 }
1199 BOOL __stdcall
1201 {
1207 }
1208 }
1210 #define tty_readpass w32_tty_readpass
1211 int
1213 {
1218 DWORD mode;
1237 }
1241 /*** User / Password ***/
1243 /* SOCKS5 and HTTP Proxy authentication may requires username and
1244 password. We ll give it via environment variable or tty.
1245 Username and password for authentication are decided by
1246 following rules:
1248 Username is taken from
1249 1) server location spec (i.e. user@host:port)
1250 2) environment variables (see tables.1)
1251 3) system account name currently logged in.
1253 Table.1 Order of environment variables for username
1255 | SOCKS v5 | SOCKS v4 | HTTP proxy |
1256 --+-------------+-------------+-----------------+
1257 1 | SOCKS45_USER | SOCKS4_USER | HTTP_PROXY_USER |
1258 --+-------------+-------------+ |
1259 2 | SOCKS_USER | |
1260 --+---------------------------+-----------------+
1261 3 | CONNECT_USER |
1262 --+---------------------------------------------+
1264 Password is taken from
1265 1) by environment variables (see table.2)
1266 2) by entering from tty.
1268 Table.2 Order of environment variables for password
1270 | SOCKS v5 | HTTP proxy |
1271 --+-----------------+---------------------+
1272 1 | SOCKS5_PASSWD | |
1273 --+-----------------+ HTTP_PROXY_PASSWORD |
1274 2 | SOCKS5_PASSWORD | |
1275 --+-----------------+---------------------+
1276 3 | CONNECT_PASSWORD |
1277 --+---------------------------------------+
1279 Note: SOCKS5_PASSWD which is added in rev. 1.79
1280 to share value with NEC SOCKS implementation.
1281 */
1285 {
1287 /* get username from environment variable, or system. */
1298 }
1301 /* determine relay user by system call if not yet. */
1305 }
1309 {
1320 }
1323 /*** network operations ***/
1326 /* set_relay()
1327 Determine relay informations:
1328 method, host, port, and username.
1329 1st arg, METHOD should be METHOD_xxx.
1330 2nd arg, SPEC is hostname or hostname:port or user@hostame:port.
1331 hostname is domain name or dot notation.
1332 If port is omitted, use 80 for METHOD_HTTP method,
1333 use 1080 for METHOD_SOCKS method.
1334 Username is also able to given by 3rd. format.
1335 2nd argument SPEC can be NULL. if NULL, use environment variable.
1336 */
1337 int
1339 {
1350 }
1365 }
1366 }
1374 /* determine resolve method */
1385 /* default */
1388 else
1390 }
1391 }
1407 }
1410 /* URL format like: "http://server:port/" */
1411 /* extract server:port part */
1415 /* assume spec is aready "server:port" format */
1417 }
1420 /* check username in spec */
1426 }
1430 /* split out hostname and port number from spec */
1433 /* hostname only, port is already set as default */
1436 /* hostname and port */
1440 }
1443 }
1446 u_short
1448 {
1451 /* all digits, port number */
1454 /* treat as service name */
1463 }
1464 }
1466 }
1468 void
1470 {
1477 }
1479 /* assume subversion's keyword expansion like "Revision: 96". */
1483 }
1485 int
1487 {
1495 /* check optinos */
1522 err++;
1523 }
1533 err++;
1534 }
1543 err++;
1544 }
1553 err++;
1554 }
1559 /* without break */
1567 err++;
1568 }
1571 #ifndef _WIN32
1578 err++;
1579 }
1597 err++;
1598 }
1607 err++;
1608 }
1616 f_debug++;
1621 err++;
1622 }
1623 ptr++;
1624 }
1626 }
1628 /* check error */
1634 /* check destination HOST (MUST) */
1639 }
1641 /* decide port or service name from programname or argument */
1644 ptr++;
1645 else
1648 /* accept only if -P is not specified. */
1650 /* get port number from argument (prior to progname) */
1651 /* NOTE: This way is for cvs ext method. */
1654 /* decide port number from program name */
1659 }
1660 }
1661 /* check port number */
1664 err++;
1666 }
1669 err++;
1671 }
1673 quit:
1674 /* report for debugging */
1681 }
1686 }
1692 }
1698 }
1700 }
1702 #ifndef _WIN32
1703 /* Time-out feature is not allowed for Win32 native compilers. */
1704 /* MSVC and Borland C cannot but Cygwin and UNIXes can. */
1706 /* timeout signal hander */
1707 void
1709 {
1714 }
1716 /* set timeout param = seconds, 0 clears */
1717 void
1719 {
1720 /* This feature is allowed for UNIX or cygwin environments, currently */
1729 }
1730 }
1731 #endif
1733 #if !defined(_WIN32) && !defined(__CYGWIN32__)
1734 void
1736 {
1741 }
1744 /* TODO: IPv6
1745 TODO: fallback if askpass execution failed.
1746 */
1748 int
1750 {
1753 /* given by IPv4 address */
1767 }
1768 }
1770 }
1772 int
1774 {
1775 SOCKET s;
1778 /* resolve address of proxy or direct target */
1782 }
1791 }
1793 }
1795 void
1797 {
1823 }
1824 }
1825 buf++;
1827 }
1829 }
1832 }
1835 void
1837 {
1843 buf++;
1844 len--;
1845 }
1848 }
1850 int
1852 {
1857 /* do atomic out */
1865 }
1872 }
1874 }
1876 int
1878 {
1884 /* do atomic in */
1892 }
1895 }
1902 }
1904 }
1906 int
1908 {
1912 size--;
1922 /* continue reading until last 1 char is EOL? */
1924 /* finished */
1927 /* more... */
1928 size--;
1929 }
1930 dst++;
1931 }
1932 }
1936 }
1938 /* cut_token()
1939 Span token in given string STR until char in DELIM is appeared.
1940 Then replace contiguous DELIMS with '\0' for string termination
1941 and returns next pointer.
1942 If no next token, return NULL.
1943 */
1946 {
1954 }
1958 {
1963 i++;
1964 }
1966 }
1968 /* readpass()
1969 password input routine
1970 Use ssh-askpass (same mechanism to OpenSSH)
1971 */
1974 {
1982 #if !defined(_WIN32) && !defined(__CYGWIN32__)
1985 ) {
1986 /* use ssh-askpass to get password */
2002 }
2005 }
2007 static int
2009 {
2014 /* do User/Password authentication. */
2015 /* This feature requires username and password from
2016 command line argument or environment variable,
2017 or terminal. */
2021 /* get password from environment variable if exists. */
2027 /* make authentication packet */
2040 /* send it and get answer */
2046 /* check status */
2049 else
2051 }
2055 {
2065 }
2066 }
2073 AUTH_METHOD_ITEM socks5_auth_table[] = {
2079 };
2081 int
2088 end++;
2090 }
2091 }
2096 }
2097 }
2100 }
2102 int
2113 }
2114 }
2120 }
2122 }
2124 /* begin SOCKS5 relaying
2125 And no authentication is supported.
2126 */
2127 int
2129 {
2136 /* request authentication */
2143 /* add no-auth authentication */
2145 /* add user/pass authentication */
2149 }
2155 }
2162 }
2173 /* nothing to do */
2185 }
2189 }
2190 /* request to connect */
2196 /* resolved by SOCKS server */
2203 /* resolved localy */
2207 }
2216 }
2229 }
2231 /* Conguraturation, connected via SOCKS5 server! */
2233 }
2235 /* begin SOCKS protocol 4 relaying
2236 And no authentication is supported.
2238 There's SOCKS protocol version 4 and 4a. Protocol version
2239 4a has capability to resolve hostname by SOCKS server, so
2240 we don't need resolving IP address of destination host on
2241 local machine.
2243 Environment variable SOCKS_RESOLVE directs how to resolve
2244 IP addess. There's 3 keywords allowed; "local", "remote"
2245 and "both" (case insensitive). Keyword "local" means taht
2246 target host name is resolved by localhost resolver
2247 (usualy with gethostbyname()), "remote" means by remote
2248 SOCKS server, "both" means to try resolving by localhost
2249 then remote.
2251 SOCKS4 protocol and authentication of SOCKS5 protocol
2252 requires user name on connect request.
2253 User name is determined by following method.
2255 1. If server spec has user@hostname:port format then
2256 user part is used for this SOCKS server.
2258 2. Get user name from environment variable LOGNAME, USER
2259 (in this order).
2261 */
2262 int
2264 {
2269 /* make connect request packet
2270 protocol v4:
2271 VN:1, CD:1, PORT:2, ADDR:4, USER:n, NULL:1
2272 protocol v4a:
2273 VN:1, CD:1, PORT:2, DUMMY:4, USER:n, NULL:1, HOSTNAME:n, NULL:1
2274 */
2280 /* destination IP */
2285 /* username */
2290 /* destination host name (for protocol 4a) */
2294 }
2295 /* send command and get response
2296 response is: VN:1, CD:1, PORT:2, ADDR:4 */
2303 }
2305 /* Conguraturation, connected via SOCKS4 server! */
2307 }
2309 int
2311 {
2323 }
2325 }
2332 {
2337 /* make base64 string */
2349 src++;
2350 }
2353 }
2355 /* fix-up tail padding */
2361 }
2363 }
2366 int
2368 {
2375 /* Get username/password for authentication */
2399 }
2401 /* begin relaying via HTTP proxy
2402 Directs CONNECT method to proxy server to connect to
2403 destination host (and port). It may not be allowed on your
2404 proxy server.
2405 */
2406 int
2408 {
2422 /* get response */
2426 }
2428 /* check status */
2432 }
2437 /* Conguraturation, connected via http proxy server! */
2449 }
2453 /* We handle both 401 and 407 codes here: 401 is WWW-Authenticate, which
2454 * not strictly the correct response, but some proxies do send this (e.g.
2455 * Symantec's Raptor firewall) */
2458 /** NOTE: As easy implementation, we support only BASIC scheme
2459 and ignore realm. */
2460 /* If proxy_auth_type is PROXY_AUTH_BASIC and get
2461 this result code, authentication was failed. */
2465 }
2470 }
2473 /* parse type and realm */
2480 }
2481 /* check supported auth type */
2486 }
2487 }
2494 }
2497 /* Not allowed */
2500 }
2501 /* skip to end of response header */
2506 }
2510 }
2512 /* begin relaying via TELNET proxy.
2513 Sends string specified by telnet_command (-c option) with
2514 replacing host name and port number to the socket. */
2515 int
2517 {
2523 };
2529 /* report phrase */
2536 }
2539 /* make request string with replacing %h by destination hostname
2540 and %p by port number, etc. */
2543 /* Sorry, we send request string now without waiting a prompt. */
2547 }
2550 /* Process answer from proxy until good or bad phrase is detected. We
2551 assume that the good phrase should be appeared only in the final
2552 line of proxy responses. Bad keywods in the line causes operation
2553 fail. First checks a good phrase, then checks bad phrases.
2554 If no match, continue reading line from proxy. */
2557 /* first, check good phrase */
2561 }
2562 /* then, check bad phrase */
2567 }
2568 }
2569 }
2573 }
2576 #ifdef _WIN32
2577 /* ddatalen()
2578 Returns 1 if data is available, otherwise return 0
2579 */
2580 int
2582 {
2587 /* in case of PIPE */
2591 /* PIPE source is closed */
2592 /* read() will detects EOF */
2597 }
2598 }
2600 /* in case of regular file (redirected) */
2603 /* in case of console */
2605 }
2607 }
2610 /* relay byte from stdin to socket and fro socket to stdout.
2611 returns reason of termination */
2612 int
2614 {
2615 /** vars for local input data **/
2619 /** vars for remote input data **/
2624 /** other variables **/
2628 #ifdef _WIN32
2632 /* repeater between stdin/out and socket */
2644 /** prepare for reading local input **/
2646 #ifdef _WIN32
2648 /* select() on Winsock is not accept standard handle.
2649 So use select() with short timeout and checking data
2650 in stdin by another method. */
2657 }
2659 /** prepare for reading remote input **/
2662 }
2664 /* FD_SET( local_out, ofds ); */
2665 /* FD_SET( remote, ofds ); */
2668 /* some error */
2671 }
2672 #ifdef _WIN32
2673 /* fake ifds if local is stdio handle because
2674 select() of Winsock does not accept stdio
2675 handle. */
2678 #endif
2680 /* remote => local */
2690 /* error */
2697 }
2698 }
2700 /* local => remote */
2705 else
2708 /* stdin is EOF */
2715 /* error on reading from stdin */
2723 /* repeat */
2725 }
2726 }
2728 /* flush data in buffer to socket */
2736 /* move data on to top of buffer */
2742 }
2743 }
2745 /* flush data in buffer to local output */
2749 else
2753 }
2758 }
2765 }
2766 }
2769 }
2771 int
2773 {
2779 fd_set ifds;
2783 /* Create the socket. */
2792 /* Give the socket a name. */
2802 /* wait for new connection with watching EOF of stdin. */
2808 #ifdef _WIN32
2816 #ifndef _WIN32
2818 #endif
2823 }
2824 #ifdef _WIN32
2827 n++;
2828 }
2829 #endif
2832 /* EOF */
2835 }
2838 }
2845 }
2849 /** Main of program **/
2850 int
2852 {
2858 #ifdef _WIN32
2859 WSADATA wsadata;
2863 /* initialization */
2868 /* Open local_in and local_out if forwarding a port */
2870 /* Relay between local port and destination */
2873 /* Relay between stdin/stdout and desteination */
2876 #ifdef _WIN32
2879 #endif
2880 }
2882 retry:
2883 #ifndef _WIN32
2890 /* make connection */
2901 }
2903 /** resolve destination host (SOCKS) **/
2904 #if !defined(_WIN32) && !defined(__CYGWIN32__)
2912 }
2914 /** relay negociation **/
2931 /* retry with authentication */
2934 }
2940 }
2943 #ifndef _WIN32
2948 /* main loop */
2950 do_repeater:
2955 f_hold_session) {
2956 /* re-wait at local port without closing remote session */
2961 }
2965 #ifdef _WIN32
2971 }
2973 /* ------------------------------------------------------------
2974 Local Variables:
2975 compile-command: "cc connect.c -o connect"
2976 tab-width: 8
2977 fill-column: 74
2978 comment-column: 48
2979 End:
2980 ------------------------------------------------------------ */
2982 /*** end of connect.c ***/