PageRenderTime 36ms CodeModel.GetById 9ms RepoModel.GetById 0ms app.codeStats 0ms

/lib/socksify.rb

http://github.com/astro/socksify-ruby
Ruby | 364 lines | 324 code | 21 blank | 19 comment | 21 complexity | c6eaef9d4c909523f416d436211e3fa9 MD5 | raw file
Possible License(s): GPL-3.0 
    

  1. #encoding: us-ascii
    2. 

  2. =begin
    3. 

  3.     Copyright (C) 2007 Stephan Maka <stephan@spaceboyz.net>
    4. 

  4. 

  5.     This program is free software: you can redistribute it and/or modify
    6. 

  6.     it under the terms of the GNU General Public License as published by
    7. 

  7.     the Free Software Foundation, either version 3 of the License, or
    8. 

  8.     (at your option) any later version.
    9. 

  9. 

  10.     This program is distributed in the hope that it will be useful,
    11. 

  11.     but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    13. 

  13.     GNU General Public License for more details.
    14. 

  14. 

  15.     You should have received a copy of the GNU General Public License
    16. 

  16.     along with this program.  If not, see <http://www.gnu.org/licenses/>.
    17. 

  17. =end
    18. 

  18. 

  19. require 'socket'
    20. 

  20. require 'resolv'
    21. 

  21. require 'socksify/debug'
    22. 

  22. 

  23. class SOCKSError < RuntimeError
    24. 

  24.   def initialize(msg)
    25. 

  25.     Socksify::debug_error("#{self.class}: #{msg}")
    26. 

  26.     super
    27. 

  27.   end
    28. 

  28. 

  29.   class ServerFailure < SOCKSError
    30. 

  30.     def initialize
    31. 

  31.       super("general SOCKS server failure")
    32. 

  32.     end
    33. 

  33.   end
    34. 

  34.   class NotAllowed < SOCKSError
    35. 

  35.     def initialize
    36. 

  36.       super("connection not allowed by ruleset")
    37. 

  37.     end
    38. 

  38.   end
    39. 

  39.   class NetworkUnreachable < SOCKSError
    40. 

  40.     def initialize
    41. 

  41.       super("Network unreachable")
    42. 

  42.     end
    43. 

  43.   end
    44. 

  44.   class HostUnreachable < SOCKSError
    45. 

  45.     def initialize
    46. 

  46.       super("Host unreachable")
    47. 

  47.     end
    48. 

  48.   end
    49. 

  49.   class ConnectionRefused < SOCKSError
    50. 

  50.     def initialize
    51. 

  51.       super("Connection refused")
    52. 

  52.     end
    53. 

  53.   end
    54. 

  54.   class TTLExpired < SOCKSError
    55. 

  55.     def initialize
    56. 

  56.       super("TTL expired")
    57. 

  57.     end
    58. 

  58.   end
    59. 

  59.   class CommandNotSupported < SOCKSError
    60. 

  60.     def initialize
    61. 

  61.       super("Command not supported")
    62. 

  62.     end
    63. 

  63.   end
    64. 

  64.   class AddressTypeNotSupported < SOCKSError
    65. 

  65.     def initialize
    66. 

  66.       super("Address type not supported")
    67. 

  67.     end
    68. 

  68.   end
    69. 

  69. 

  70.   def self.for_response_code(code)
    71. 

  71.     case code
    72. 

  72.     when 1
    73. 

  73.       ServerFailure
    74. 

  74.     when 2
    75. 

  75.       NotAllowed
    76. 

  76.     when 3
    77. 

  77.       NetworkUnreachable
    78. 

  78.     when 4
    79. 

  79.       HostUnreachable
    80. 

  80.     when 5
    81. 

  81.       ConnectionRefused
    82. 

  82.     when 6
    83. 

  83.       TTLExpired
    84. 

  84.     when 7
    85. 

  85.       CommandNotSupported
    86. 

  86.     when 8
    87. 

  87.       AddressTypeNotSupported
    88. 

  88.     else
    89. 

  89.       self
    90. 

  90.     end
    91. 

  91.   end
    92. 

  92. end
    93. 

  93. 

  94. class TCPSocket
    95. 

  95.   @@socks_version ||= "5"
    96. 

  96.   
    97. 

  97.   def self.socks_version
    98. 

  98.     (@@socks_version == "4a" or @@socks_version == "4") ? "\004" : "\005"
    99. 

  99.   end
    100. 

  100.   def self.socks_version=(version)
    101. 

  101.     @@socks_version = version.to_s
    102. 

  102.   end
    103. 

  103.   def self.socks_server
    104. 

  104.     @@socks_server ||= nil
    105. 

  105.   end
    106. 

  106.   def self.socks_server=(host)
    107. 

  107.     @@socks_server = host
    108. 

  108.   end
    109. 

  109.   def self.socks_port
    110. 

  110.     @@socks_port ||= nil
    111. 

  111.   end
    112. 

  112.   def self.socks_port=(port)
    113. 

  113.     @@socks_port = port
    114. 

  114.   end
    115. 

  115.   def self.socks_username
    116. 

  116.     @@socks_username ||= nil
    117. 

  117.   end
    118. 

  118.   def self.socks_username=(username)
    119. 

  119.     @@socks_username = username
    120. 

  120.   end
    121. 

  121.   def self.socks_password
    122. 

  122.     @@socks_password ||= nil
    123. 

  123.   end
    124. 

  124.   def self.socks_password=(password)
    125. 

  125.     @@socks_password = password
    126. 

  126.   end
    127. 

  127.   def self.socks_ignores
    128. 

  128.     @@socks_ignores ||= %w(localhost)
    129. 

  129.   end
    130. 

  130.   def self.socks_ignores=(ignores)
    131. 

  131.     @@socks_ignores = ignores
    132. 

  132.   end
    133. 

  133. 

  134.   class SOCKSConnectionPeerAddress < String
    135. 

  135.     attr_reader :socks_server, :socks_port
    136. 

  136. 

  137.     def initialize(socks_server, socks_port, peer_host)
    138. 

  138.       @socks_server, @socks_port = socks_server, socks_port
    139. 

  139.       super peer_host
    140. 

  140.     end
    141. 

  141. 

  142.     def inspect
    143. 

  143.       "#{to_s} (via #{@socks_server}:#{@socks_port})"
    144. 

  144.     end
    145. 

  145. 

  146.     def peer_host
    147. 

  147.       to_s
    148. 

  148.     end
    149. 

  149.   end
    150. 

  150. 

  151.   alias :initialize_tcp :initialize
    152. 

  152. 

  153.   # See http://tools.ietf.org/html/rfc1928
    154. 

  154.   def initialize(host=nil, port=0, local_host=nil, local_port=nil)
    155. 

  155.     if host.is_a?(SOCKSConnectionPeerAddress)
    156. 

  156.       socks_peer = host
    157. 

  157.       socks_server = socks_peer.socks_server
    158. 

  158.       socks_port = socks_peer.socks_port
    159. 

  159.       socks_ignores = []
    160. 

  160.       host = socks_peer.peer_host
    161. 

  161.     else
    162. 

  162.       socks_server = self.class.socks_server
    163. 

  163.       socks_port = self.class.socks_port
    164. 

  164.       socks_ignores = self.class.socks_ignores
    165. 

  165.     end
    166. 

  166. 

  167.     if socks_server and socks_port and not socks_ignores.include?(host)
    168. 

  168.       Socksify::debug_notice "Connecting to SOCKS server #{socks_server}:#{socks_port}"
    169. 

  169.       initialize_tcp socks_server, socks_port
    170. 

  170. 

  171.       socks_authenticate unless @@socks_version =~ /^4/
    172. 

  172. 

  173.       if host
    174. 

  174.         socks_connect(host, port)
    175. 

  175.       end
    176. 

  176.     else
    177. 

  177.       Socksify::debug_notice "Connecting directly to #{host}:#{port}"
    178. 

  178.       initialize_tcp host, port, local_host, local_port
    179. 

  179.       Socksify::debug_debug "Connected to #{host}:#{port}"
    180. 

  180.     end
    181. 

  181.   end
    182. 

  182. 

  183.   # Authentication
    184. 

  184.   def socks_authenticate
    185. 

  185.     if self.class.socks_username || self.class.socks_password
    186. 

  186.       Socksify::debug_debug "Sending username/password authentication"
    187. 

  187.       write "\005\001\002"
    188. 

  188.     else
    189. 

  189.       Socksify::debug_debug "Sending no authentication"
    190. 

  190.       write "\005\001\000"
    191. 

  191.     end
    192. 

  192.     Socksify::debug_debug "Waiting for authentication reply"
    193. 

  193.     auth_reply = recv(2)
    194. 

  194.     if auth_reply.empty?
    195. 

  195.       raise SOCKSError.new("Server doesn't reply authentication")
    196. 

  196.     end
    197. 

  197.     if auth_reply[0..0] != "\004" and auth_reply[0..0] != "\005"
    198. 

  198.       raise SOCKSError.new("SOCKS version #{auth_reply[0..0]} not supported")
    199. 

  199.     end
    200. 

  200.     if self.class.socks_username || self.class.socks_password
    201. 

  201.       if auth_reply[1..1] != "\002"
    202. 

  202.         raise SOCKSError.new("SOCKS authentication method #{auth_reply[1..1]} neither requested nor supported")
    203. 

  203.       end
    204. 

  204.       auth = "\001"
    205. 

  205.       auth += self.class.socks_username.to_s.length.chr
    206. 

  206.       auth += self.class.socks_username.to_s
    207. 

  207.       auth += self.class.socks_password.to_s.length.chr
    208. 

  208.       auth += self.class.socks_password.to_s
    209. 

  209.       write auth
    210. 

  210.       auth_reply = recv(2)
    211. 

  211.       if auth_reply[1..1] != "\000"
    212. 

  212.         raise SOCKSError.new("SOCKS authentication failed")
    213. 

  213.       end
    214. 

  214.     else
    215. 

  215.       if auth_reply[1..1] != "\000"
    216. 

  216.         raise SOCKSError.new("SOCKS authentication method #{auth_reply[1..1]} neither requested nor supported")
    217. 

  217.       end
    218. 

  218.     end
    219. 

  219.   end
    220. 

  220. 

  221.   # Connect
    222. 

  222.   def socks_connect(host, port)
    223. 

  223.     port = Socket.getservbyname(port) if port.is_a?(String)
    224. 

  224.     req = String.new
    225. 

  225.     Socksify::debug_debug "Sending destination address"
    226. 

  226.     req << TCPSocket.socks_version
    227. 

  227.     Socksify::debug_debug TCPSocket.socks_version.unpack "H*"
    228. 

  228.     req << "\001"
    229. 

  229.     req << "\000" if @@socks_version == "5"
    230. 

  230.     req << [port].pack('n') if @@socks_version =~ /^4/
    231. 

  231. 

  232.     if @@socks_version == "4"
    233. 

  233.       host = Resolv::DNS.new.getaddress(host).to_s
    234. 

  234.     end
    235. 

  235.     Socksify::debug_debug host
    236. 

  236.     if host =~ /^(\d+)\.(\d+)\.(\d+)\.(\d+)$/  # to IPv4 address
    237. 

  237.       req << "\001" if @@socks_version == "5"
    238. 

  238.       _ip = [$1.to_i,
    239. 

  239.              $2.to_i,
    240. 

  240.              $3.to_i,
    241. 

  241.              $4.to_i
    242. 

  242.             ].pack('CCCC')
    243. 

  243.       req << _ip
    244. 

  244.     elsif host =~ /^[:0-9a-f]+$/  # to IPv6 address
    245. 

  245.       raise "TCP/IPv6 over SOCKS is not yet supported (inet_pton missing in Ruby & not supported by Tor"
    246. 

  246.       req << "\004"
    247. 

  247.     else                          # to hostname
    248. 

  248.       if @@socks_version == "5"
    249. 

  249.         req << "\003" + [host.size].pack('C') + host
    250. 

  250.       else
    251. 

  251.         req << "\000\000\000\001"
    252. 

  252.         req << "\007\000"
    253. 

  253.         Socksify::debug_notice host
    254. 

  254.         req << host
    255. 

  255.         req << "\000"
    256. 

  256.       end
    257. 

  257.     end
    258. 

  258.     req << [port].pack('n') if @@socks_version == "5"
    259. 

  259.     write req
    260. 

  260. 

  261.     socks_receive_reply
    262. 

  262.     Socksify::debug_notice "Connected to #{host}:#{port} over SOCKS"
    263. 

  263.   end
    264. 

  264. 

  265.   # returns [bind_addr: String, bind_port: Fixnum]
    266. 

  266.   def socks_receive_reply
    267. 

  267.     Socksify::debug_debug "Waiting for SOCKS reply"
    268. 

  268.     if @@socks_version == "5"
    269. 

  269.       connect_reply = recv(4)
    270. 

  270.       if connect_reply.empty?
    271. 

  271.         raise SOCKSError.new("Server doesn't reply")
    272. 

  272.       end
    273. 

  273.       Socksify::debug_debug connect_reply.unpack "H*"
    274. 

  274.       if connect_reply[0..0] != "\005"
    275. 

  275.         raise SOCKSError.new("SOCKS version #{connect_reply[0..0]} is not 5")
    276. 

  276.       end
    277. 

  277.       if connect_reply[1..1] != "\000"
    278. 

  278.         raise SOCKSError.for_response_code(connect_reply.bytes.to_a[1])
    279. 

  279.       end
    280. 

  280.       Socksify::debug_debug "Waiting for bind_addr"
    281. 

  281.       bind_addr_len = case connect_reply[3..3]
    282. 

  282.                       when "\001"
    283. 

  283.                         4
    284. 

  284.                       when "\003"
    285. 

  285.                         recv(1).bytes.first
    286. 

  286.                       when "\004"
    287. 

  287.                         16
    288. 

  288.                       else
    289. 

  289.                         raise SOCKSError.for_response_code(connect_reply.bytes.to_a[3])
    290. 

  290.                       end
    291. 

  291.       bind_addr_s = recv(bind_addr_len)
    292. 

  292.       bind_addr = case connect_reply[3..3]
    293. 

  293.                   when "\001"
    294. 

  294.                     bind_addr_s.bytes.to_a.join('.')
    295. 

  295.                   when "\003"
    296. 

  296.                     bind_addr_s
    297. 

  297.                   when "\004"  # Untested!
    298. 

  298.                     i = 0
    299. 

  299.                     ip6 = ""
    300. 

  300.                     bind_addr_s.each_byte do |b|
    301. 

  301.                       if i > 0 and i % 2 == 0
    302. 

  302.                         ip6 += ":"
    303. 

  303.                       end
    304. 

  304.                       i += 1
    305. 

  305. 

  306.                       ip6 += b.to_s(16).rjust(2, '0')
    307. 

  307.                     end
    308. 

  308.                   end
    309. 

  309.       bind_port = recv(bind_addr_len + 2)
    310. 

  310.       [bind_addr, bind_port.unpack('n')]
    311. 

  311.     else
    312. 

  312.       connect_reply = recv(8)
    313. 

  313.       unless connect_reply[0] == "\000" and connect_reply[1] == "\x5A"
    314. 

  314.         Socksify::debug_debug connect_reply.unpack 'H'
    315. 

  315.         raise SOCKSError.new("Failed while connecting througth socks")
    316. 

  316.       end
    317. 

  317.     end
    318. 

  318.   end
    319. 

  319. end
    320. 

  320. 

  321. module Socksify
    322. 

  322.   def self.resolve(host)
    323. 

  323.     s = TCPSocket.new
    324. 

  324. 

  325.     begin
    326. 

  326.       req = String.new
    327. 

  327.       Socksify::debug_debug "Sending hostname to resolve: #{host}"
    328. 

  328.       req << "\005"
    329. 

  329.       if host =~ /^(\d+)\.(\d+)\.(\d+)\.(\d+)$/  # to IPv4 address
    330. 

  330.         req << "\xF1\000\001" + [$1.to_i,
    331. 

  331.                                   $2.to_i,
    332. 

  332.                                   $3.to_i,
    333. 

  333.                                   $4.to_i
    334. 

  334.                                  ].pack('CCCC')
    335. 

  335.       elsif host =~ /^[:0-9a-f]+$/  # to IPv6 address
    336. 

  336.         raise "TCP/IPv6 over SOCKS is not yet supported (inet_pton missing in Ruby & not supported by Tor"
    337. 

  337.         req << "\004"
    338. 

  338.       else                          # to hostname
    339. 

  339.         req << "\xF0\000\003" + [host.size].pack('C') + host
    340. 

  340.       end
    341. 

  341.       req << [0].pack('n')  # Port
    342. 

  342.       s.write req
    343. 

  343.       
    344. 

  344.       addr, _port = s.socks_receive_reply
    345. 

  345.       Socksify::debug_notice "Resolved #{host} as #{addr} over SOCKS"
    346. 

  346.       addr
    347. 

  347.     ensure
    348. 

  348.       s.close
    349. 

  349.     end
    350. 

  350.   end
    351. 

  351. 

  352.   def self.proxy(server, port)
    353. 

  353.     default_server = TCPSocket::socks_server
    354. 

  354.     default_port = TCPSocket::socks_port
    355. 

  355.     begin
    356. 

  356.       TCPSocket::socks_server = server
    357. 

  357.       TCPSocket::socks_port = port
    358. 

  358.       yield
    359. 

  359.     ensure
    360. 

  360.       TCPSocket::socks_server = default_server
    361. 

  361.       TCPSocket::socks_port = default_port
    362. 

  362.     end
    363. 

  363.   end
    364. 

  364. end
    365. 

  365.