PageRenderTime 32ms CodeModel.GetById 11ms RepoModel.GetById 0ms app.codeStats 1ms

/src/Cedar/Nat.c

https://gitlab.com/benjdag/SoftEtherVPN
C | 1922 lines | 1387 code | 284 blank | 251 comment | 293 complexity | 9ce5db2df04db4a06858fd9e14cbbead MD5 | raw file
    

  1. // SoftEther VPN Source Code

    2. 

  2. // Cedar Communication Module

    3. 

  3. // 

    4. 

  4. // SoftEther VPN Server, Client and Bridge are free software under GPLv2.

    5. 

  5. // 

    6. 

  6. // Copyright (c) 2012-2016 Daiyuu Nobori.

    7. 

  7. // Copyright (c) 2012-2016 SoftEther VPN Project, University of Tsukuba, Japan.

    8. 

  8. // Copyright (c) 2012-2016 SoftEther Corporation.

    9. 

  9. // 

    10. 

  10. // All Rights Reserved.

    11. 

  11. // 

    12. 

  12. // http://www.softether.org/

    13. 

  13. // 

    14. 

  14. // Author: Daiyuu Nobori

    15. 

  15. // Comments: Tetsuo Sugiyama, Ph.D.

    16. 

  16. // 

    17. 

  17. // This program is free software; you can redistribute it and/or

    18. 

  18. // modify it under the terms of the GNU General Public License

    19. 

  19. // version 2 as published by the Free Software Foundation.

    20. 

  20. // 

    21. 

  21. // This program is distributed in the hope that it will be useful,

    22. 

  22. // but WITHOUT ANY WARRANTY; without even the implied warranty of

    23. 

  23. // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

    24. 

  24. // GNU General Public License for more details.

    25. 

  25. // 

    26. 

  26. // You should have received a copy of the GNU General Public License version 2

    27. 

  27. // along with this program; if not, write to the Free Software

    28. 

  28. // Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.

    29. 

  29. // 

    30. 

  30. // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,

    31. 

  31. // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF

    32. 

  32. // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.

    33. 

  33. // IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY

    34. 

  34. // CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,

    35. 

  35. // TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE

    36. 

  36. // SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

    37. 

  37. // 

    38. 

  38. // THE LICENSE AGREEMENT IS ATTACHED ON THE SOURCE-CODE PACKAGE

    39. 

  39. // AS "LICENSE.TXT" FILE. READ THE TEXT FILE IN ADVANCE TO USE THE SOFTWARE.

    40. 

  40. // 

    41. 

  41. // 

    42. 

  42. // THIS SOFTWARE IS DEVELOPED IN JAPAN, AND DISTRIBUTED FROM JAPAN,

    43. 

  43. // UNDER JAPANESE LAWS. YOU MUST AGREE IN ADVANCE TO USE, COPY, MODIFY,

    44. 

  44. // MERGE, PUBLISH, DISTRIBUTE, SUBLICENSE, AND/OR SELL COPIES OF THIS

    45. 

  45. // SOFTWARE, THAT ANY JURIDICAL DISPUTES WHICH ARE CONCERNED TO THIS

    46. 

  46. // SOFTWARE OR ITS CONTENTS, AGAINST US (SOFTETHER PROJECT, SOFTETHER

    47. 

  47. // CORPORATION, DAIYUU NOBORI OR OTHER SUPPLIERS), OR ANY JURIDICAL

    48. 

  48. // DISPUTES AGAINST US WHICH ARE CAUSED BY ANY KIND OF USING, COPYING,

    49. 

  49. // MODIFYING, MERGING, PUBLISHING, DISTRIBUTING, SUBLICENSING, AND/OR

    50. 

  50. // SELLING COPIES OF THIS SOFTWARE SHALL BE REGARDED AS BE CONSTRUED AND

    51. 

  51. // CONTROLLED BY JAPANESE LAWS, AND YOU MUST FURTHER CONSENT TO

    52. 

  52. // EXCLUSIVE JURISDICTION AND VENUE IN THE COURTS SITTING IN TOKYO,

    53. 

  53. // JAPAN. YOU MUST WAIVE ALL DEFENSES OF LACK OF PERSONAL JURISDICTION

    54. 

  54. // AND FORUM NON CONVENIENS. PROCESS MAY BE SERVED ON EITHER PARTY IN

    55. 

  55. // THE MANNER AUTHORIZED BY APPLICABLE LAW OR COURT RULE.

    56. 

  56. // 

    57. 

  57. // USE ONLY IN JAPAN. DO NOT USE THIS SOFTWARE IN ANOTHER COUNTRY UNLESS

    58. 

  58. // YOU HAVE A CONFIRMATION THAT THIS SOFTWARE DOES NOT VIOLATE ANY

    59. 

  59. // CRIMINAL LAWS OR CIVIL RIGHTS IN THAT PARTICULAR COUNTRY. USING THIS

    60. 

  60. // SOFTWARE IN OTHER COUNTRIES IS COMPLETELY AT YOUR OWN RISK. THE

    61. 

  61. // SOFTETHER VPN PROJECT HAS DEVELOPED AND DISTRIBUTED THIS SOFTWARE TO

    62. 

  62. // COMPLY ONLY WITH THE JAPANESE LAWS AND EXISTING CIVIL RIGHTS INCLUDING

    63. 

  63. // PATENTS WHICH ARE SUBJECTS APPLY IN JAPAN. OTHER COUNTRIES' LAWS OR

    64. 

  64. // CIVIL RIGHTS ARE NONE OF OUR CONCERNS NOR RESPONSIBILITIES. WE HAVE

    65. 

  65. // NEVER INVESTIGATED ANY CRIMINAL REGULATIONS, CIVIL LAWS OR

    66. 

  66. // INTELLECTUAL PROPERTY RIGHTS INCLUDING PATENTS IN ANY OF OTHER 200+

    67. 

  67. // COUNTRIES AND TERRITORIES. BY NATURE, THERE ARE 200+ REGIONS IN THE

    68. 

  68. // WORLD, WITH DIFFERENT LAWS. IT IS IMPOSSIBLE TO VERIFY EVERY

    69. 

  69. // COUNTRIES' LAWS, REGULATIONS AND CIVIL RIGHTS TO MAKE THE SOFTWARE

    70. 

  70. // COMPLY WITH ALL COUNTRIES' LAWS BY THE PROJECT. EVEN IF YOU WILL BE

    71. 

  71. // SUED BY A PRIVATE ENTITY OR BE DAMAGED BY A PUBLIC SERVANT IN YOUR

    72. 

  72. // COUNTRY, THE DEVELOPERS OF THIS SOFTWARE WILL NEVER BE LIABLE TO

    73. 

  73. // RECOVER OR COMPENSATE SUCH DAMAGES, CRIMINAL OR CIVIL

    74. 

  74. // RESPONSIBILITIES. NOTE THAT THIS LINE IS NOT LICENSE RESTRICTION BUT

    75. 

  75. // JUST A STATEMENT FOR WARNING AND DISCLAIMER.

    76. 

  76. // 

    77. 

  77. // 

    78. 

  78. // SOURCE CODE CONTRIBUTION

    79. 

  79. // ------------------------

    80. 

  80. // 

    81. 

  81. // Your contribution to SoftEther VPN Project is much appreciated.

    82. 

  82. // Please send patches to us through GitHub.

    83. 

  83. // Read the SoftEther VPN Patch Acceptance Policy in advance:

    84. 

  84. // http://www.softether.org/5-download/src/9.patch

    85. 

  85. // 

    86. 

  86. // 

    87. 

  87. // DEAR SECURITY EXPERTS

    88. 

  88. // ---------------------

    89. 

  89. // 

    90. 

  90. // If you find a bug or a security vulnerability please kindly inform us

    91. 

  91. // about the problem immediately so that we can fix the security problem

    92. 

  92. // to protect a lot of users around the world as soon as possible.

    93. 

  93. // 

    94. 

  94. // Our e-mail address for security reports is:

    95. 

  95. // softether-vpn-security [at] softether.org

    96. 

  96. // 

    97. 

  97. // Please note that the above e-mail address is not a technical support

    98. 

  98. // inquiry address. If you need technical assistance, please visit

    99. 

  99. // http://www.softether.org/ and ask your question on the users forum.

    100. 

  100. // 

    101. 

  101. // Thank you for your cooperation.

    102. 

  102. // 

    103. 

  103. // 

    104. 

  104. // NO MEMORY OR RESOURCE LEAKS

    105. 

  105. // ---------------------------

    106. 

  106. // 

    107. 

  107. // The memory-leaks and resource-leaks verification under the stress

    108. 

  108. // test has been passed before release this source code.

    109. 

  109. 

    110. 

  110. 

    111. 

  111. // Nat.c

    112. 

  112. // User-mode Router

    113. 

  113. 

    114. 

  114. #include "CedarPch.h"

    115. 

  115. 

    116. 

  116. static LOCK *nat_lock = NULL;

    117. 

  117. static NAT *nat = NULL;

    118. 

  118. 

    119. 

  119. 

    120. 

  120. // Disconnect the connection for the NAT administrator

    121. 

  121. void NatAdminDisconnect(RPC *r)

    122. 

  122. {

    123. 

  123. 	// Validate arguments

    124. 

  124. 	if (r == NULL)

    125. 

  125. 	{

    126. 

  126. 		return;

    127. 

  127. 	}

    128. 

  128. 

    129. 

  129. 	EndRpc(r);

    130. 

  130. }

    131. 

  131. 

    132. 

  132. // Connection for NAT administrator

    133. 

  133. RPC *NatAdminConnect(CEDAR *cedar, char *hostname, UINT port, void *hashed_password, UINT *err)

    134. 

  134. {

    135. 

  135. 	UCHAR secure_password[SHA1_SIZE];

    136. 

  136. 	UCHAR random[SHA1_SIZE];

    137. 

  137. 	SOCK *sock;

    138. 

  138. 	RPC *rpc;

    139. 

  139. 	PACK *p;

    140. 

  140. 	UINT error;

    141. 

  141. 	// Validate arguments

    142. 

  142. 	if (cedar == NULL || hostname == NULL || port == 0 || hashed_password == NULL || err == NULL)

    143. 

  143. 	{

    144. 

  144. 		if (err != NULL)

    145. 

  145. 		{

    146. 

  146. 			*err = ERR_INTERNAL_ERROR;

    147. 

  147. 		}

    148. 

  148. 		return NULL;

    149. 

  149. 	}

    150. 

  150. 

    151. 

  151. 	// Connection

    152. 

  152. 	sock = Connect(hostname, port);

    153. 

  153. 	if (sock == NULL)

    154. 

  154. 	{

    155. 

  155. 		*err = ERR_CONNECT_FAILED;

    156. 

  156. 		return NULL;

    157. 

  157. 	}

    158. 

  158. 

    159. 

  159. 	if (StartSSL(sock, NULL, NULL) == false)

    160. 

  160. 	{

    161. 

  161. 		*err = ERR_PROTOCOL_ERROR;

    162. 

  162. 		ReleaseSock(sock);

    163. 

  163. 		return NULL;

    164. 

  164. 	}

    165. 

  165. 

    166. 

  166. 	SetTimeout(sock, 5000);

    167. 

  167. 

    168. 

  168. 	p = HttpClientRecv(sock);

    169. 

  169. 	if (p == NULL)

    170. 

  170. 	{

    171. 

  171. 		*err = ERR_DISCONNECTED;

    172. 

  172. 		ReleaseSock(sock);

    173. 

  173. 		return NULL;

    174. 

  174. 	}

    175. 

  175. 

    176. 

  176. 	if (PackGetData2(p, "auth_random", random, SHA1_SIZE) == false)

    177. 

  177. 	{

    178. 

  178. 		FreePack(p);

    179. 

  179. 		*err = ERR_PROTOCOL_ERROR;

    180. 

  180. 		ReleaseSock(sock);

    181. 

  181. 		return NULL;

    182. 

  182. 	}

    183. 

  183. 

    184. 

  184. 	FreePack(p);

    185. 

  185. 

    186. 

  186. 	SecurePassword(secure_password, hashed_password, random);

    187. 

  187. 

    188. 

  188. 	p = NewPack();

    189. 

  189. 	PackAddData(p, "secure_password", secure_password, SHA1_SIZE);

    190. 

  190. 

    191. 

  191. 	if (HttpClientSend(sock, p) == false)

    192. 

  192. 	{

    193. 

  193. 		FreePack(p);

    194. 

  194. 		*err = ERR_DISCONNECTED;

    195. 

  195. 		ReleaseSock(sock);

    196. 

  196. 		return NULL;

    197. 

  197. 	}

    198. 

  198. 

    199. 

  199. 	FreePack(p);

    200. 

  200. 

    201. 

  201. 	p = HttpClientRecv(sock);

    202. 

  202. 	if (p == NULL)

    203. 

  203. 	{

    204. 

  204. 		*err = ERR_DISCONNECTED;

    205. 

  205. 		ReleaseSock(sock);

    206. 

  206. 		return NULL;

    207. 

  207. 	}

    208. 

  208. 

    209. 

  209. 	error = GetErrorFromPack(p);

    210. 

  210. 

    211. 

  211. 	FreePack(p);

    212. 

  212. 

    213. 

  213. 	if (error != ERR_NO_ERROR)

    214. 

  214. 	{

    215. 

  215. 		*err = error;

    216. 

  216. 		ReleaseSock(sock);

    217. 

  217. 		return NULL;

    218. 

  218. 	}

    219. 

  219. 

    220. 

  220. 	SetTimeout(sock, TIMEOUT_INFINITE);

    221. 

  221. 

    222. 

  222. 	rpc = StartRpcClient(sock, NULL);

    223. 

  223. 	ReleaseSock(sock);

    224. 

  224. 

    225. 

  225. 	return rpc;

    226. 

  226. }

    227. 

  227. 

    228. 

  228. // RPC functional related macro

    229. 

  229. #define	DECLARE_RPC_EX(rpc_name, data_type, function, in_rpc, out_rpc, free_rpc)		\

    230. 

  230. 	else if (StrCmpi(name, rpc_name) == 0)								\

    231. 

  231. 	{																	\

    232. 

  232. 		data_type t;													\

    233. 

  233. 		Zero(&t, sizeof(t));											\

    234. 

  234. 		in_rpc(&t, p);													\

    235. 

  235. 		err = function(n, &t);											\

    236. 

  236. 		if (err == ERR_NO_ERROR)										\

    237. 

  237. 		{																\

    238. 

  238. 			out_rpc(ret, &t);											\

    239. 

  239. 		}																\

    240. 

  240. 		free_rpc(&t);													\

    241. 

  241. 		ok = true;														\

    242. 

  242. 	}

    243. 

  243. #define	DECLARE_RPC(rpc_name, data_type, function, in_rpc, out_rpc)		\

    244. 

  244. 	else if (StrCmpi(name, rpc_name) == 0)								\

    245. 

  245. 	{																	\

    246. 

  246. 		data_type t;													\

    247. 

  247. 		Zero(&t, sizeof(t));											\

    248. 

  248. 		in_rpc(&t, p);													\

    249. 

  249. 		err = function(n, &t);											\

    250. 

  250. 		if (err == ERR_NO_ERROR)										\

    251. 

  251. 		{																\

    252. 

  252. 			out_rpc(ret, &t);											\

    253. 

  253. 		}																\

    254. 

  254. 		ok = true;														\

    255. 

  255. 	}

    256. 

  256. #define	DECLARE_SC_EX(rpc_name, data_type, function, in_rpc, out_rpc, free_rpc)	\

    257. 

  257. 	UINT function(RPC *r, data_type *t)									\

    258. 

  258. 	{																	\

    259. 

  259. 		PACK *p, *ret;													\

    260. 

  260. 		UINT err;														\

    261. 

  261. 		if (r == NULL || t == NULL)										\

    262. 

  262. 		{																\

    263. 

  263. 			return ERR_INTERNAL_ERROR;									\

    264. 

  264. 		}																\

    265. 

  265. 		p = NewPack();													\

    266. 

  266. 		out_rpc(p, t);													\

    267. 

  267. 		free_rpc(t);													\

    268. 

  268. 		Zero(t, sizeof(data_type));										\

    269. 

  269. 		ret = AdminCall(r, rpc_name, p);								\

    270. 

  270. 		err = GetErrorFromPack(ret);									\

    271. 

  271. 		if (err == ERR_NO_ERROR)										\

    272. 

  272. 		{																\

    273. 

  273. 			in_rpc(t, ret);												\

    274. 

  274. 		}																\

    275. 

  275. 		FreePack(ret);													\

    276. 

  276. 		return err;														\

    277. 

  277. 	}

    278. 

  278. #define	DECLARE_SC(rpc_name, data_type, function, in_rpc, out_rpc)		\

    279. 

  279. 	UINT function(RPC *r, data_type *t)									\

    280. 

  280. 	{																	\

    281. 

  281. 		PACK *p, *ret;													\

    282. 

  282. 		UINT err;														\

    283. 

  283. 		if (r == NULL || t == NULL)										\

    284. 

  284. 		{																\

    285. 

  285. 			return ERR_INTERNAL_ERROR;									\

    286. 

  286. 		}																\

    287. 

  287. 		p = NewPack();													\

    288. 

  288. 		out_rpc(p, t);													\

    289. 

  289. 		ret = AdminCall(r, rpc_name, p);								\

    290. 

  290. 		err = GetErrorFromPack(ret);									\

    291. 

  291. 		if (err == ERR_NO_ERROR)										\

    292. 

  292. 		{																\

    293. 

  293. 			in_rpc(t, ret);												\

    294. 

  294. 		}																\

    295. 

  295. 		FreePack(ret);													\

    296. 

  296. 		return err;														\

    297. 

  297. 	}

    298. 

  298. 

    299. 

  299. // RPC server function

    300. 

  300. PACK *NiRpcServer(RPC *r, char *name, PACK *p)

    301. 

  301. {

    302. 

  302. 	NAT *n = (NAT *)r->Param;

    303. 

  303. 	PACK *ret;

    304. 

  304. 	UINT err;

    305. 

  305. 	bool ok;

    306. 

  306. 	// Validate arguments

    307. 

  307. 	if (r == NULL || name == NULL || p == NULL)

    308. 

  308. 	{

    309. 

  309. 		return NULL;

    310. 

  310. 	}

    311. 

  311. 

    312. 

  312. 	ret = NewPack();

    313. 

  313. 	err = ERR_NO_ERROR;

    314. 

  314. 	ok = false;

    315. 

  315. 

    316. 

  316. 	if (0) {}

    317. 

  317. 

    318. 

  318. 	// RPC function definition: From here

    319. 

  319. 

    320. 

  320. //	DECLARE_RPC("Online", RPC_DUMMY, NtOnline, InRpcDummy, OutRpcDummy)

    321. 

  321. //	DECLARE_RPC("Offline", RPC_DUMMY, NtOffline, InRpcDummy, OutRpcDummy)

    322. 

  322. 	DECLARE_RPC("SetHostOption", VH_OPTION, NtSetHostOption, InVhOption, OutVhOption)

    323. 

  323. 	DECLARE_RPC("GetHostOption", VH_OPTION, NtGetHostOption, InVhOption, OutVhOption)

    324. 

  324. //	DECLARE_RPC_EX("SetClientConfig", RPC_CREATE_LINK, NtSetClientConfig, InRpcCreateLink, OutRpcCreateLink, FreeRpcCreateLink)

    325. 

  325. //	DECLARE_RPC_EX("GetClientConfig", RPC_CREATE_LINK, NtGetClientConfig, InRpcCreateLink, OutRpcCreateLink, FreeRpcCreateLink)

    326. 

  326. 	DECLARE_RPC_EX("GetStatus", RPC_NAT_STATUS, NtGetStatus, InRpcNatStatus, OutRpcNatStatus, FreeRpcNatStatus)

    327. 

  327. //	DECLARE_RPC_EX("GetInfo", RPC_NAT_INFO, NtGetInfo, InRpcNatInfo, OutRpcNatInfo, FreeRpcNatInfo)

    328. 

  328. 	DECLARE_RPC_EX("EnumNatList", RPC_ENUM_NAT, NtEnumNatList, InRpcEnumNat, OutRpcEnumNat, FreeRpcEnumNat)

    329. 

  329. 	DECLARE_RPC_EX("EnumDhcpList", RPC_ENUM_DHCP, NtEnumDhcpList, InRpcEnumDhcp, OutRpcEnumDhcp, FreeRpcEnumDhcp)

    330. 

  330. //	DECLARE_RPC("SetPassword", RPC_SET_PASSWORD, NtSetPassword, InRpcSetPassword, OutRpcSetPassword)

    331. 

  331. 

    332. 

  332. 	// RPC function definition: To here

    333. 

  333. 

    334. 

  334. 	if (ok == false)

    335. 

  335. 	{

    336. 

  336. 		err = ERR_NOT_SUPPORTED;

    337. 

  337. 	}

    338. 

  338. 

    339. 

  339. 	PackAddInt(ret, "error", err);

    340. 

  340. 

    341. 

  341. 	return ret;

    342. 

  342. }

    343. 

  343. 

    344. 

  344. 

    345. 

  345. 

    346. 

  346. 

    347. 

  347. // RPC call definition: From here

    348. 

  348. 

    349. 

  349. DECLARE_SC("Online", RPC_DUMMY, NcOnline, InRpcDummy, OutRpcDummy)

    350. 

  350. DECLARE_SC("Offline", RPC_DUMMY, NcOffline, InRpcDummy, OutRpcDummy)

    351. 

  351. DECLARE_SC("SetHostOption", VH_OPTION, NcSetHostOption, InVhOption, OutVhOption)

    352. 

  352. DECLARE_SC("GetHostOption", VH_OPTION, NcGetHostOption, InVhOption, OutVhOption)

    353. 

  353. DECLARE_SC_EX("SetClientConfig", RPC_CREATE_LINK, NcSetClientConfig, InRpcCreateLink, OutRpcCreateLink, FreeRpcCreateLink)

    354. 

  354. DECLARE_SC_EX("GetClientConfig", RPC_CREATE_LINK, NcGetClientConfig, InRpcCreateLink, OutRpcCreateLink, FreeRpcCreateLink)

    355. 

  355. DECLARE_SC_EX("GetStatus", RPC_NAT_STATUS, NcGetStatus, InRpcNatStatus, OutRpcNatStatus, FreeRpcNatStatus)

    356. 

  356. DECLARE_SC_EX("GetInfo", RPC_NAT_INFO, NcGetInfo, InRpcNatInfo, OutRpcNatInfo, FreeRpcNatInfo)

    357. 

  357. DECLARE_SC_EX("EnumNatList", RPC_ENUM_NAT, NcEnumNatList, InRpcEnumNat, OutRpcEnumNat, FreeRpcEnumNat)

    358. 

  358. DECLARE_SC_EX("EnumDhcpList", RPC_ENUM_DHCP, NcEnumDhcpList, InRpcEnumDhcp, OutRpcEnumDhcp, FreeRpcEnumDhcp)

    359. 

  359. DECLARE_SC("SetPassword", RPC_SET_PASSWORD, NcSetPassword, InRpcSetPassword, OutRpcSetPassword)

    360. 

  360. 

    361. 

  361. // RPC call definition: To here

    362. 

  362. 

    363. 

  363. 

    364. 

  364. 

    365. 

  365. // Set a password

    366. 

  366. UINT NtSetPassword(NAT *n, RPC_SET_PASSWORD *t)

    367. 

  367. {

    368. 

  368. 	Copy(n->HashedPassword, t->HashedPassword, SHA1_SIZE);

    369. 

  369. 

    370. 

  370. 	NiWriteConfig(n);

    371. 

  371. 

    372. 

  372. 	return ERR_NO_ERROR;

    373. 

  373. }

    374. 

  374. 

    375. 

  375. // Online

    376. 

  376. UINT NtOnline(NAT *n, RPC_DUMMY *t)

    377. 

  377. {

    378. 

  378. 	UINT ret = ERR_NO_ERROR;

    379. 

  379. 

    380. 

  380. 	Lock(n->lock);

    381. 

  381. 	{

    382. 

  382. 		if (n->Online)

    383. 

  383. 		{

    384. 

  384. 			// It is already online

    385. 

  385. 			ret = ERR_ALREADY_ONLINE;

    386. 

  386. 		}

    387. 

  387. 		else

    388. 

  388. 		{

    389. 

  389. 			if (n->ClientOption == NULL || n->ClientAuth == NULL)

    390. 

  390. 			{

    391. 

  391. 				// Setting is not yet done

    392. 

  392. 				ret = ERR_ACCOUNT_NOT_PRESENT;

    393. 

  393. 			}

    394. 

  394. 			else

    395. 

  395. 			{

    396. 

  396. 				// OK

    397. 

  397. 				n->Online = true;

    398. 

  398. 

    399. 

  399. 				// Start connection

    400. 

  400. 				n->Virtual = NewVirtualHostEx(n->Cedar, n->ClientOption, n->ClientAuth,

    401. 

  401. 					&n->Option, n);

    402. 

  402. 			}

    403. 

  403. 		}

    404. 

  404. 	}

    405. 

  405. 	Unlock(n->lock);

    406. 

  406. 

    407. 

  407. 	NiWriteConfig(n);

    408. 

  408. 

    409. 

  409. 	return ret;

    410. 

  410. }

    411. 

  411. 

    412. 

  412. // Offline

    413. 

  413. UINT NtOffline(NAT *n, RPC_DUMMY *t)

    414. 

  414. {

    415. 

  415. 	UINT ret = ERR_NO_ERROR;

    416. 

  416. 

    417. 

  417. 	Lock(n->lock);

    418. 

  418. 	{

    419. 

  419. 		if (n->Online == false)

    420. 

  420. 		{

    421. 

  421. 			// It is offline

    422. 

  422. 			ret = ERR_OFFLINE;

    423. 

  423. 		}

    424. 

  424. 		else

    425. 

  425. 		{

    426. 

  426. 			// Offline

    427. 

  427. 			StopVirtualHost(n->Virtual);

    428. 

  428. 			ReleaseVirtual(n->Virtual);

    429. 

  429. 			n->Virtual = NULL;

    430. 

  430. 

    431. 

  431. 			n->Online = false;

    432. 

  432. 		}

    433. 

  433. 	}

    434. 

  434. 	Unlock(n->lock);

    435. 

  435. 

    436. 

  436. 	NiWriteConfig(n);

    437. 

  437. 

    438. 

  438. 	return ret;

    439. 

  439. }

    440. 

  440. 

    441. 

  441. // Set host options

    442. 

  442. UINT NtSetHostOption(NAT *n, VH_OPTION *t)

    443. 

  443. {

    444. 

  444. 	UINT ret = ERR_NO_ERROR;

    445. 

  445. 

    446. 

  446. 	Lock(n->lock);

    447. 

  447. 	{

    448. 

  448. 		Copy(&n->Option, t, sizeof(VH_OPTION));

    449. 

  449. 	}

    450. 

  450. 	Unlock(n->lock);

    451. 

  451. 

    452. 

  452. 	SetVirtualHostOption(n->Virtual, t);

    453. 

  453. 

    454. 

  454. 	NiWriteConfig(n);

    455. 

  455. 

    456. 

  456. 	return ret;

    457. 

  457. }

    458. 

  458. 

    459. 

  459. // Get host options

    460. 

  460. UINT NtGetHostOption(NAT *n, VH_OPTION *t)

    461. 

  461. {

    462. 

  462. 	UINT ret = ERR_NO_ERROR;

    463. 

  463. 

    464. 

  464. 	Lock(n->lock);

    465. 

  465. 	{

    466. 

  466. 		Copy(t, &n->Option, sizeof(VH_OPTION));

    467. 

  467. 	}

    468. 

  468. 	Unlock(n->lock);

    469. 

  469. 

    470. 

  470. 	return ret;

    471. 

  471. }

    472. 

  472. 

    473. 

  473. // Set the connection settings

    474. 

  474. UINT NtSetClientConfig(NAT *n, RPC_CREATE_LINK *t)

    475. 

  475. {

    476. 

  476. 	Lock(n->lock);

    477. 

  477. 	{

    478. 

  478. 		if (n->ClientOption != NULL || n->ClientAuth != NULL)

    479. 

  479. 		{

    480. 

  480. 			Free(n->ClientOption);

    481. 

  481. 			CiFreeClientAuth(n->ClientAuth);

    482. 

  482. 		}

    483. 

  483. 

    484. 

  484. 		n->ClientOption = ZeroMalloc(sizeof(CLIENT_OPTION));

    485. 

  485. 		Copy(n->ClientOption, t->ClientOption, sizeof(CLIENT_OPTION));

    486. 

  486. 		n->ClientAuth = CopyClientAuth(t->ClientAuth);

    487. 

  487. 	}

    488. 

  488. 	Unlock(n->lock);

    489. 

  489. 

    490. 

  490. 	NiWriteConfig(n);

    491. 

  491. 

    492. 

  492. 	if (n->Online)

    493. 

  493. 	{

    494. 

  494. 		NtOffline(n, NULL);

    495. 

  495. 		NtOnline(n, NULL);

    496. 

  496. 	}

    497. 

  497. 

    498. 

  498. 	return ERR_NO_ERROR;

    499. 

  499. }

    500. 

  500. 

    501. 

  501. // Get the connection settings

    502. 

  502. UINT NtGetClientConfig(NAT *n, RPC_CREATE_LINK *t)

    503. 

  503. {

    504. 

  504. 	UINT err = ERR_NO_ERROR;

    505. 

  505. 

    506. 

  506. 	Lock(n->lock);

    507. 

  507. 	{

    508. 

  508. 		if (n->ClientOption == NULL || n->ClientAuth == NULL)

    509. 

  509. 		{

    510. 

  510. 			err = ERR_ACCOUNT_NOT_PRESENT;

    511. 

  511. 		}

    512. 

  512. 		else

    513. 

  513. 		{

    514. 

  514. 			FreeRpcCreateLink(t);

    515. 

  515. 

    516. 

  516. 			Zero(t, sizeof(RPC_CREATE_LINK));

    517. 

  517. 			t->ClientOption = ZeroMalloc(sizeof(CLIENT_OPTION));

    518. 

  518. 			Copy(t->ClientOption, n->ClientOption, sizeof(CLIENT_OPTION));

    519. 

  519. 			t->ClientAuth = CopyClientAuth(n->ClientAuth);

    520. 

  520. 		}

    521. 

  521. 	}

    522. 

  522. 	Unlock(n->lock);

    523. 

  523. 

    524. 

  524. 	return err;

    525. 

  525. }

    526. 

  526. 

    527. 

  527. // Get the state

    528. 

  528. UINT NtGetStatus(NAT *n, RPC_NAT_STATUS *t)

    529. 

  529. {

    530. 

  530. 	Lock(n->lock);

    531. 

  531. 	{

    532. 

  532. 		VH *v = n->Virtual;

    533. 

  533. 		FreeRpcNatStatus(t);

    534. 

  534. 		Zero(t, sizeof(RPC_NAT_STATUS));

    535. 

  535. 

    536. 

  536. 		LockVirtual(v);

    537. 

  537. 		{

    538. 

  538. 			UINT i;

    539. 

  539. 

    540. 

  540. 			LockList(v->NatTable);

    541. 

  541. 			{

    542. 

  542. 				for (i = 0;i < LIST_NUM(v->NatTable);i++)

    543. 

  543. 				{

    544. 

  544. 					NAT_ENTRY *e = LIST_DATA(v->NatTable, i);

    545. 

  545. 

    546. 

  546. 					switch (e->Protocol)

    547. 

  547. 					{

    548. 

  548. 					case NAT_TCP:

    549. 

  549. 						t->NumTcpSessions++;

    550. 

  550. 						break;

    551. 

  551. 

    552. 

  552. 					case NAT_UDP:

    553. 

  553. 						t->NumUdpSessions++;

    554. 

  554. 						break;

    555. 

  555. 

    556. 

  556. 					case NAT_ICMP:

    557. 

  557. 						t->NumIcmpSessions++;

    558. 

  558. 						break;

    559. 

  559. 

    560. 

  560. 					case NAT_DNS:

    561. 

  561. 						t->NumDnsSessions++;

    562. 

  562. 						break;

    563. 

  563. 					}

    564. 

  564. 				}

    565. 

  565. 

    566. 

  566. 				if (NnIsActive(v) && v->NativeNat != NULL)

    567. 

  567. 				{

    568. 

  568. 					NATIVE_NAT *nn = v->NativeNat;

    569. 

  569. 

    570. 

  570. 					for (i = 0;i < LIST_NUM(nn->NatTableForSend->AllList);i++)

    571. 

  571. 					{

    572. 

  572. 						NATIVE_NAT_ENTRY *e = LIST_DATA(nn->NatTableForSend->AllList, i);

    573. 

  573. 

    574. 

  574. 						switch (e->Protocol)

    575. 

  575. 						{

    576. 

  576. 						case NAT_TCP:

    577. 

  577. 							t->NumTcpSessions++;

    578. 

  578. 							break;

    579. 

  579. 

    580. 

  580. 						case NAT_UDP:

    581. 

  581. 							t->NumUdpSessions++;

    582. 

  582. 							break;

    583. 

  583. 

    584. 

  584. 						case NAT_ICMP:

    585. 

  585. 							t->NumIcmpSessions++;

    586. 

  586. 							break;

    587. 

  587. 

    588. 

  588. 						case NAT_DNS:

    589. 

  589. 							t->NumDnsSessions++;

    590. 

  590. 							break;

    591. 

  591. 						}

    592. 

  592. 					}

    593. 

  593. 				}

    594. 

  594. 			}

    595. 

  595. 			UnlockList(v->NatTable);

    596. 

  596. 

    597. 

  597. 			t->NumDhcpClients = LIST_NUM(v->DhcpLeaseList);

    598. 

  598. 

    599. 

  599. 			t->IsKernelMode = NnIsActiveEx(v, &t->IsRawIpMode);

    600. 

  600. 		}

    601. 

  601. 		UnlockVirtual(v);

    602. 

  602. 	}

    603. 

  603. 	Unlock(n->lock);

    604. 

  604. 

    605. 

  605. 	return ERR_NO_ERROR;

    606. 

  606. }

    607. 

  607. 

    608. 

  608. // Get the information

    609. 

  609. UINT NtGetInfo(NAT *n, RPC_NAT_INFO *t)

    610. 

  610. {

    611. 

  611. 	OS_INFO *info;

    612. 

  612. 	FreeRpcNatInfo(t);

    613. 

  613. 	Zero(t, sizeof(RPC_NAT_INFO));

    614. 

  614. 

    615. 

  615. 	StrCpy(t->NatProductName, sizeof(t->NatProductName), CEDAR_ROUTER_STR);

    616. 

  616. 	StrCpy(t->NatVersionString, sizeof(t->NatVersionString), n->Cedar->VerString);

    617. 

  617. 	StrCpy(t->NatBuildInfoString, sizeof(t->NatBuildInfoString), n->Cedar->BuildInfo);

    618. 

  618. 	t->NatVerInt = n->Cedar->Build;

    619. 

  619. 	t->NatBuildInt = n->Cedar->Build;

    620. 

  620. 

    621. 

  621. 	GetMachineName(t->NatHostName, sizeof(t->NatHostName));

    622. 

  622. 

    623. 

  623. 	info = GetOsInfo();

    624. 

  624. 

    625. 

  625. 	CopyOsInfo(&t->OsInfo, info);

    626. 

  626. 

    627. 

  627. 	GetMemInfo(&t->MemInfo);

    628. 

  628. 

    629. 

  629. 	return ERR_NO_ERROR;

    630. 

  630. }

    631. 

  631. 

    632. 

  632. // Get the NAT list

    633. 

  633. UINT NtEnumNatList(NAT *n, RPC_ENUM_NAT *t)

    634. 

  634. {

    635. 

  635. 	UINT ret = ERR_NO_ERROR;

    636. 

  636. 	VH *v = NULL;

    637. 

  637. 

    638. 

  638. 	Lock(n->lock);

    639. 

  639. 	{

    640. 

  640. 		v = n->Virtual;

    641. 

  641. 

    642. 

  642. 		if (n->Online == false || v == NULL)

    643. 

  643. 		{

    644. 

  644. 			ret = ERR_OFFLINE;

    645. 

  645. 		}

    646. 

  646. 		else

    647. 

  647. 		{

    648. 

  648. 			LockVirtual(v);

    649. 

  649. 			{

    650. 

  650. 				if (v->Active == false)

    651. 

  651. 				{

    652. 

  652. 					ret = ERR_OFFLINE;

    653. 

  653. 				}

    654. 

  654. 				else

    655. 

  655. 				{

    656. 

  656. 					FreeRpcEnumNat(t);

    657. 

  657. 					Zero(t, sizeof(RPC_ENUM_NAT));

    658. 

  658. 

    659. 

  659. 					LockList(v->NatTable);

    660. 

  660. 					{

    661. 

  661. 						UINT i;

    662. 

  662. 						UINT num_usermode_nat = LIST_NUM(v->NatTable);

    663. 

  663. 						UINT num_kernel_mode_nat = 0;

    664. 

  664. 						NATIVE_NAT *native = NULL;

    665. 

  665. 

    666. 

  666. 						if (NnIsActive(v) && (v->NativeNat != NULL))

    667. 

  667. 						{

    668. 

  668. 							native = v->NativeNat;

    669. 

  669. 

    670. 

  670. 							num_kernel_mode_nat = LIST_NUM(native->NatTableForSend->AllList);

    671. 

  671. 						}

    672. 

  672. 

    673. 

  673. 						t->NumItem = num_usermode_nat + num_kernel_mode_nat;

    674. 

  674. 						t->Items = ZeroMalloc(sizeof(RPC_ENUM_NAT_ITEM) * t->NumItem);

    675. 

  675. 

    676. 

  676. 						// Enumerate entries of the user mode NAT

    677. 

  677. 						for (i = 0;i < num_usermode_nat;i++)

    678. 

  678. 						{

    679. 

  679. 							NAT_ENTRY *nat = LIST_DATA(v->NatTable, i);

    680. 

  680. 							RPC_ENUM_NAT_ITEM *e = &t->Items[i];

    681. 

  681. 

    682. 

  682. 							e->Id = nat->Id;

    683. 

  683. 							e->Protocol = nat->Protocol;

    684. 

  684. 							e->SrcIp = nat->SrcIp;

    685. 

  685. 							e->DestIp = nat->DestIp;

    686. 

  686. 							e->SrcPort = nat->SrcPort;

    687. 

  687. 							e->DestPort = nat->DestPort;

    688. 

  688. 

    689. 

  689. 							e->CreatedTime = TickToTime(nat->CreatedTime);

    690. 

  690. 							e->LastCommTime = TickToTime(nat->LastCommTime);

    691. 

  691. 

    692. 

  692. 							IPToStr32(e->SrcHost, sizeof(e->SrcHost), e->SrcIp);

    693. 

  693. 							IPToStr32(e->DestHost, sizeof(e->DestHost), e->DestIp);

    694. 

  694. 

    695. 

  695. 							if (nat->Sock != NULL)

    696. 

  696. 							{

    697. 

  697. 								e->SendSize = nat->Sock->SendSize;

    698. 

  698. 								e->RecvSize = nat->Sock->RecvSize;

    699. 

  699. 

    700. 

  700. 								if (nat->Sock->Type == SOCK_TCP)

    701. 

  701. 								{

    702. 

  702. 									StrCpy(e->DestHost, sizeof(e->DestHost), nat->Sock->RemoteHostname);

    703. 

  703. 								}

    704. 

  704. 							}

    705. 

  705. 

    706. 

  706. 							e->TcpStatus = nat->TcpStatus;

    707. 

  707. 						}

    708. 

  708. 

    709. 

  709. 						// Enumerate the entries in the kernel-mode NAT

    710. 

  710. 						if (native != NULL)

    711. 

  711. 						{

    712. 

  712. 							for (i = 0;i < num_kernel_mode_nat;i++)

    713. 

  713. 							{

    714. 

  714. 								NATIVE_NAT_ENTRY *nat = LIST_DATA(native->NatTableForSend->AllList, i);

    715. 

  715. 								RPC_ENUM_NAT_ITEM *e = &t->Items[num_usermode_nat + i];

    716. 

  716. 

    717. 

  717. 								e->Id = nat->Id;

    718. 

  718. 								e->Protocol = nat->Protocol;

    719. 

  719. 								e->SrcIp = nat->SrcIp;

    720. 

  720. 								e->DestIp = nat->DestIp;

    721. 

  721. 								e->SrcPort = nat->SrcPort;

    722. 

  722. 								e->DestPort = nat->DestPort;

    723. 

  723. 								e->CreatedTime = TickToTime(nat->CreatedTime);

    724. 

  724. 								e->LastCommTime = TickToTime(nat->LastCommTime);

    725. 

  725. 

    726. 

  726. 								IPToStr32(e->SrcHost, sizeof(e->SrcHost), e->SrcIp);

    727. 

  727. 								IPToStr32(e->DestHost, sizeof(e->DestHost), e->DestIp);

    728. 

  728. 

    729. 

  729. 								e->SendSize = nat->TotalSent;

    730. 

  730. 								e->RecvSize = nat->TotalRecv;

    731. 

  731. 

    732. 

  732. 								e->TcpStatus = nat->Status;

    733. 

  733. 							}

    734. 

  734. 						}

    735. 

  735. 					}

    736. 

  736. 					UnlockList(v->NatTable);

    737. 

  737. 				}

    738. 

  738. 			}

    739. 

  739. 			UnlockVirtual(v);

    740. 

  740. 		}

    741. 

  741. 	}

    742. 

  742. 	Unlock(n->lock);

    743. 

  743. 

    744. 

  744. 	return ret;

    745. 

  745. }

    746. 

  746. 

    747. 

  747. UINT NtEnumDhcpList(NAT *n, RPC_ENUM_DHCP *t)

    748. 

  748. {

    749. 

  749. 	UINT ret = ERR_NO_ERROR;

    750. 

  750. 	VH *v = NULL;

    751. 

  751. 

    752. 

  752. 	Lock(n->lock);

    753. 

  753. 	{

    754. 

  754. 		v = n->Virtual;

    755. 

  755. 

    756. 

  756. 		if (n->Online == false || v == NULL)

    757. 

  757. 		{

    758. 

  758. 			ret = ERR_OFFLINE;

    759. 

  759. 		}

    760. 

  760. 		else

    761. 

  761. 		{

    762. 

  762. 			LockVirtual(v);

    763. 

  763. 			{

    764. 

  764. 				if (v->Active == false)

    765. 

  765. 				{

    766. 

  766. 					ret = ERR_OFFLINE;

    767. 

  767. 				}

    768. 

  768. 				else

    769. 

  769. 				{

    770. 

  770. 					FreeRpcEnumDhcp(t);

    771. 

  771. 					Zero(t, sizeof(RPC_ENUM_DHCP));

    772. 

  772. 

    773. 

  773. 					LockList(v->DhcpLeaseList);

    774. 

  774. 					{

    775. 

  775. 						UINT i;

    776. 

  776. 						t->NumItem = LIST_NUM(v->DhcpLeaseList);

    777. 

  777. 						t->Items = ZeroMalloc(sizeof(RPC_ENUM_DHCP_ITEM) * t->NumItem);

    778. 

  778. 

    779. 

  779. 						for (i = 0;i < t->NumItem;i++)

    780. 

  780. 						{

    781. 

  781. 							DHCP_LEASE *dhcp = LIST_DATA(v->DhcpLeaseList, i);

    782. 

  782. 							RPC_ENUM_DHCP_ITEM *e = &t->Items[i];

    783. 

  783. 

    784. 

  784. 							e->Id = dhcp->Id;

    785. 

  785. 							e->LeasedTime = TickToTime(dhcp->LeasedTime);

    786. 

  786. 							e->ExpireTime = TickToTime(dhcp->ExpireTime);

    787. 

  787. 							Copy(e->MacAddress, dhcp->MacAddress, 6);

    788. 

  788. 							e->IpAddress = dhcp->IpAddress;

    789. 

  789. 							e->Mask = dhcp->Mask;

    790. 

  790. 							StrCpy(e->Hostname, sizeof(e->Hostname), dhcp->Hostname);

    791. 

  791. 						}

    792. 

  792. 					}

    793. 

  793. 					UnlockList(v->DhcpLeaseList);

    794. 

  794. 				}

    795. 

  795. 			}

    796. 

  796. 			UnlockVirtual(v);

    797. 

  797. 		}

    798. 

  798. 	}

    799. 

  799. 	Unlock(n->lock);

    800. 

  800. 

    801. 

  801. 	return ret;

    802. 

  802. }

    803. 

  803. 

    804. 

  804. // VH_OPTION

    805. 

  805. void InVhOption(VH_OPTION *t, PACK *p)

    806. 

  806. {

    807. 

  807. 	// Validate arguments

    808. 

  808. 	if (t == NULL || p == NULL)

    809. 

  809. 	{

    810. 

  810. 		return;

    811. 

  811. 	}

    812. 

  812. 

    813. 

  813. 	Zero(t, sizeof(VH_OPTION));

    814. 

  814. 	PackGetData2(p, "MacAddress", t->MacAddress, 6);

    815. 

  815. 	PackGetIp(p, "Ip", &t->Ip);

    816. 

  816. 	PackGetIp(p, "Mask", &t->Mask);

    817. 

  817. 	t->UseNat = PackGetBool(p, "UseNat");

    818. 

  818. 	t->Mtu = PackGetInt(p, "Mtu");

    819. 

  819. 	t->NatTcpTimeout = PackGetInt(p, "NatTcpTimeout");

    820. 

  820. 	t->NatUdpTimeout = PackGetInt(p, "NatUdpTimeout");

    821. 

  821. 	t->UseDhcp = PackGetBool(p, "UseDhcp");

    822. 

  822. 	PackGetIp(p, "DhcpLeaseIPStart", &t->DhcpLeaseIPStart);

    823. 

  823. 	PackGetIp(p, "DhcpLeaseIPEnd", &t->DhcpLeaseIPEnd);

    824. 

  824. 	PackGetIp(p, "DhcpSubnetMask", &t->DhcpSubnetMask);

    825. 

  825. 	t->DhcpExpireTimeSpan = PackGetInt(p, "DhcpExpireTimeSpan");

    826. 

  826. 	PackGetIp(p, "DhcpGatewayAddress", &t->DhcpGatewayAddress);

    827. 

  827. 	PackGetIp(p, "DhcpDnsServerAddress", &t->DhcpDnsServerAddress);

    828. 

  828. 	PackGetIp(p, "DhcpDnsServerAddress2", &t->DhcpDnsServerAddress2);

    829. 

  829. 	PackGetStr(p, "DhcpDomainName", t->DhcpDomainName, sizeof(t->DhcpDomainName));

    830. 

  830. 	t->SaveLog = PackGetBool(p, "SaveLog");

    831. 

  831. 	PackGetStr(p, "RpcHubName", t->HubName, sizeof(t->HubName));

    832. 

  832. 	t->ApplyDhcpPushRoutes = PackGetBool(p, "ApplyDhcpPushRoutes");

    833. 

  833. 	PackGetStr(p, "DhcpPushRoutes", t->DhcpPushRoutes, sizeof(t->DhcpPushRoutes));

    834. 

  834. }

    835. 

  835. void OutVhOption(PACK *p, VH_OPTION *t)

    836. 

  836. {

    837. 

  837. 	// Validate arguments

    838. 

  838. 	if (t == NULL || p == NULL)

    839. 

  839. 	{

    840. 

  840. 		return;

    841. 

  841. 	}

    842. 

  842. 

    843. 

  843. 	PackAddData(p, "MacAddress", t->MacAddress, 6);

    844. 

  844. 	PackAddIp(p, "Ip", &t->Ip);

    845. 

  845. 	PackAddIp(p, "Mask", &t->Mask);

    846. 

  846. 	PackAddBool(p, "UseNat", t->UseNat);

    847. 

  847. 	PackAddInt(p, "Mtu", t->Mtu);

    848. 

  848. 	PackAddInt(p, "NatTcpTimeout", t->NatTcpTimeout);

    849. 

  849. 	PackAddInt(p, "NatUdpTimeout", t->NatUdpTimeout);

    850. 

  850. 	PackAddBool(p, "UseDhcp", t->UseDhcp);

    851. 

  851. 	PackAddIp(p, "DhcpLeaseIPStart", &t->DhcpLeaseIPStart);

    852. 

  852. 	PackAddIp(p, "DhcpLeaseIPEnd", &t->DhcpLeaseIPEnd);

    853. 

  853. 	PackAddIp(p, "DhcpSubnetMask", &t->DhcpSubnetMask);

    854. 

  854. 	PackAddInt(p, "DhcpExpireTimeSpan", t->DhcpExpireTimeSpan);

    855. 

  855. 	PackAddIp(p, "DhcpGatewayAddress", &t->DhcpGatewayAddress);

    856. 

  856. 	PackAddIp(p, "DhcpDnsServerAddress", &t->DhcpDnsServerAddress);

    857. 

  857. 	PackAddIp(p, "DhcpDnsServerAddress2", &t->DhcpDnsServerAddress2);

    858. 

  858. 	PackAddStr(p, "DhcpDomainName", t->DhcpDomainName);

    859. 

  859. 	PackAddBool(p, "SaveLog", t->SaveLog);

    860. 

  860. 	PackAddStr(p, "RpcHubName", t->HubName);

    861. 

  861. 	PackAddBool(p, "ApplyDhcpPushRoutes", true);

    862. 

  862. 	PackAddStr(p, "DhcpPushRoutes", t->DhcpPushRoutes);

    863. 

  863. }

    864. 

  864. 

    865. 

  865. // RPC_ENUM_DHCP

    866. 

  866. void InRpcEnumDhcp(RPC_ENUM_DHCP *t, PACK *p)

    867. 

  867. {

    868. 

  868. 	UINT i;

    869. 

  869. 	// Validate arguments

    870. 

  870. 	if (t == NULL || p == NULL)

    871. 

  871. 	{

    872. 

  872. 		return;

    873. 

  873. 	}

    874. 

  874. 

    875. 

  875. 	Zero(t, sizeof(RPC_ENUM_DHCP));

    876. 

  876. 	t->NumItem = PackGetInt(p, "NumItem");

    877. 

  877. 	t->Items = ZeroMalloc(sizeof(RPC_ENUM_DHCP_ITEM) * t->NumItem);

    878. 

  878. 	PackGetStr(p, "HubName", t->HubName, sizeof(t->HubName));

    879. 

  879. 

    880. 

  880. 	for (i = 0;i < t->NumItem;i++)

    881. 

  881. 	{

    882. 

  882. 		RPC_ENUM_DHCP_ITEM *e = &t->Items[i];

    883. 

  883. 

    884. 

  884. 		e->Id = PackGetIntEx(p, "Id", i);

    885. 

  885. 		e->LeasedTime = PackGetInt64Ex(p, "LeasedTime", i);

    886. 

  886. 		e->ExpireTime = PackGetInt64Ex(p, "ExpireTime", i);

    887. 

  887. 		PackGetDataEx2(p, "MacAddress", e->MacAddress, 6, i);

    888. 

  888. 		e->IpAddress = PackGetIp32Ex(p, "IpAddress", i);

    889. 

  889. 		e->Mask = PackGetIntEx(p, "Mask", i);

    890. 

  890. 		PackGetStrEx(p, "Hostname", e->Hostname, sizeof(e->Hostname), i);

    891. 

  891. 	}

    892. 

  892. }

    893. 

  893. void OutRpcEnumDhcp(PACK *p, RPC_ENUM_DHCP *t)

    894. 

  894. {

    895. 

  895. 	UINT i;

    896. 

  896. 	// Validate arguments

    897. 

  897. 	if (p == NULL || t == NULL)

    898. 

  898. 	{

    899. 

  899. 		return;

    900. 

  900. 	}

    901. 

  901. 

    902. 

  902. 	PackAddInt(p, "NumItem", t->NumItem);

    903. 

  903. 	PackAddStr(p, "HubName", t->HubName);

    904. 

  904. 

    905. 

  905. 	for (i = 0;i < t->NumItem;i++)

    906. 

  906. 	{

    907. 

  907. 		RPC_ENUM_DHCP_ITEM *e = &t->Items[i];

    908. 

  908. 

    909. 

  909. 		PackAddIntEx(p, "Id", e->Id, i, t->NumItem);

    910. 

  910. 		PackAddInt64Ex(p, "LeasedTime", e->LeasedTime, i, t->NumItem);

    911. 

  911. 		PackAddInt64Ex(p, "ExpireTime", e->ExpireTime, i, t->NumItem);

    912. 

  912. 		PackAddDataEx(p, "MacAddress", e->MacAddress, 6, i, t->NumItem);

    913. 

  913. 		PackAddIp32Ex(p, "IpAddress", e->IpAddress, i, t->NumItem);

    914. 

  914. 		PackAddIntEx(p, "Mask", e->Mask, i, t->NumItem);

    915. 

  915. 		PackAddStrEx(p, "Hostname", e->Hostname, i, t->NumItem);

    916. 

  916. 	}

    917. 

  917. }

    918. 

  918. void FreeRpcEnumDhcp(RPC_ENUM_DHCP *t)

    919. 

  919. {

    920. 

  920. 	// Validate arguments

    921. 

  921. 	if (t == NULL)

    922. 

  922. 	{

    923. 

  923. 		return;

    924. 

  924. 	}

    925. 

  925. 

    926. 

  926. 	Free(t->Items);

    927. 

  927. }

    928. 

  928. 

    929. 

  929. // RPC_ENUM_NAT

    930. 

  930. void InRpcEnumNat(RPC_ENUM_NAT *t, PACK *p)

    931. 

  931. {

    932. 

  932. 	UINT i;

    933. 

  933. 	// Validate arguments

    934. 

  934. 	if (t == NULL || p == NULL)

    935. 

  935. 	{

    936. 

  936. 		return;

    937. 

  937. 	}

    938. 

  938. 

    939. 

  939. 	Zero(t, sizeof(RPC_ENUM_NAT));

    940. 

  940. 	t->NumItem = PackGetInt(p, "NumItem");

    941. 

  941. 	PackGetStr(p, "HubName", t->HubName, sizeof(t->HubName));

    942. 

  942. 	t->Items = ZeroMalloc(sizeof(RPC_ENUM_NAT_ITEM) * t->NumItem);

    943. 

  943. 	for (i = 0;i < t->NumItem;i++)

    944. 

  944. 	{

    945. 

  945. 		RPC_ENUM_NAT_ITEM *e = &t->Items[i];

    946. 

  946. 

    947. 

  947. 		e->Id = PackGetIntEx(p, "Id", i);

    948. 

  948. 		e->Protocol = PackGetIntEx(p, "Protocol", i);

    949. 

  949. 		e->SrcIp = PackGetIntEx(p, "SrcIp", i);

    950. 

  950. 		PackGetStrEx(p, "SrcHost", e->SrcHost, sizeof(e->SrcHost), i);

    951. 

  951. 		e->SrcPort = PackGetIntEx(p, "SrcPort", i);

    952. 

  952. 		e->DestIp = PackGetIntEx(p, "DestIp", i);

    953. 

  953. 		PackGetStrEx(p, "DestHost", e->DestHost, sizeof(e->DestHost), i);

    954. 

  954. 		e->DestPort = PackGetIntEx(p, "DestPort", i);

    955. 

  955. 		e->CreatedTime = PackGetInt64Ex(p, "CreatedTime", i);

    956. 

  956. 		e->LastCommTime = PackGetInt64Ex(p, "LastCommTime", i);

    957. 

  957. 		e->SendSize = PackGetInt64Ex(p, "SendSize", i);

    958. 

  958. 		e->RecvSize = PackGetInt64Ex(p, "RecvSize", i);

    959. 

  959. 		e->TcpStatus = PackGetIntEx(p, "TcpStatus", i);

    960. 

  960. 	}

    961. 

  961. }

    962. 

  962. void OutRpcEnumNat(PACK *p, RPC_ENUM_NAT *t)

    963. 

  963. {

    964. 

  964. 	UINT i;

    965. 

  965. 	// Validate arguments

    966. 

  966. 	if (t == NULL || p == NULL)

    967. 

  967. 	{

    968. 

  968. 		return;

    969. 

  969. 	}

    970. 

  970. 

    971. 

  971. 	PackAddInt(p, "NumItem", t->NumItem);

    972. 

  972. 	PackAddStr(p, "HubName", t->HubName);

    973. 

  973. 	for (i = 0;i < t->NumItem;i++)

    974. 

  974. 	{

    975. 

  975. 		RPC_ENUM_NAT_ITEM *e = &t->Items[i];

    976. 

  976. 

    977. 

  977. 		PackAddIntEx(p, "Id", e->Id, i, t->NumItem);

    978. 

  978. 		PackAddIntEx(p, "Protocol", e->Protocol, i, t->NumItem);

    979. 

  979. 		PackAddIp32Ex(p, "SrcIp", e->SrcIp, i, t->NumItem);

    980. 

  980. 		PackAddStrEx(p, "SrcHost", e->SrcHost, i, t->NumItem);

    981. 

  981. 		PackAddIntEx(p, "SrcPort", e->SrcPort, i, t->NumItem);

    982. 

  982. 		PackAddIp32Ex(p, "DestIp", e->DestIp, i, t->NumItem);

    983. 

  983. 		PackAddStrEx(p, "DestHost", e->DestHost, i, t->NumItem);

    984. 

  984. 		PackAddIntEx(p, "DestPort", e->DestPort, i, t->NumItem);

    985. 

  985. 		PackAddInt64Ex(p, "CreatedTime", e->CreatedTime, i, t->NumItem);

    986. 

  986. 		PackAddInt64Ex(p, "LastCommTime", e->LastCommTime, i, t->NumItem);

    987. 

  987. 		PackAddInt64Ex(p, "SendSize", e->SendSize, i, t->NumItem);

    988. 

  988. 		PackAddInt64Ex(p, "RecvSize", e->RecvSize, i, t->NumItem);

    989. 

  989. 		PackAddIntEx(p, "TcpStatus", e->TcpStatus, i, t->NumItem);

    990. 

  990. 	}

    991. 

  991. }

    992. 

  992. void FreeRpcEnumNat(RPC_ENUM_NAT *t)

    993. 

  993. {

    994. 

  994. 	// Validate arguments

    995. 

  995. 	if (t == NULL)

    996. 

  996. 	{

    997. 

  997. 		return;

    998. 

  998. 	}

    999. 

  999. 

    1000. 

  1000. 	Free(t->Items);

    1001. 

  1001. }

    1002. 

  1002. 

    1003. 

  1003. // RPC_NAT_INFO

    1004. 

  1004. void InRpcNatInfo(RPC_NAT_INFO *t, PACK *p)

    1005. 

  1005. {

    1006. 

  1006. 	// Validate arguments

    1007. 

  1007. 	if (t == NULL || p == NULL)

    1008. 

  1008. 	{

    1009. 

  1009. 		return;

    1010. 

  1010. 	}

    1011. 

  1011. 

    1012. 

  1012. 	Zero(t, sizeof(RPC_NAT_INFO));

    1013. 

  1013. 	PackGetStr(p, "NatProductName", t->NatProductName, sizeof(t->NatProductName));

    1014. 

  1014. 	PackGetStr(p, "NatVersionString", t->NatVersionString, sizeof(t->NatVersionString));

    1015. 

  1015. 	PackGetStr(p, "NatBuildInfoString", t->NatBuildInfoString, sizeof(t->NatBuildInfoString));

    1016. 

  1016. 	t->NatVerInt = PackGetInt(p, "NatVerInt");

    1017. 

  1017. 	t->NatBuildInt = PackGetInt(p, "NatBuildInt");

    1018. 

  1018. 	PackGetStr(p, "NatHostName", t->NatHostName, sizeof(t->NatHostName));

    1019. 

  1019. 	InRpcOsInfo(&t->OsInfo, p);

    1020. 

  1020. 	InRpcMemInfo(&t->MemInfo, p);

    1021. 

  1021. }

    1022. 

  1022. void OutRpcNatInfo(PACK *p, RPC_NAT_INFO *t)

    1023. 

  1023. {

    1024. 

  1024. 	// Validate arguments

    1025. 

  1025. 	if (t == NULL || p == NULL)

    1026. 

  1026. 	{

    1027. 

  1027. 		return;

    1028. 

  1028. 	}

    1029. 

  1029. 

    1030. 

  1030. 	PackAddStr(p, "NatProductName", t->NatProductName);

    1031. 

  1031. 	PackAddStr(p, "NatVersionString", t->NatVersionString);

    1032. 

  1032. 	PackAddStr(p, "NatBuildInfoString", t->NatBuildInfoString);

    1033. 

  1033. 	PackAddInt(p, "NatVerInt", t->NatVerInt);

    1034. 

  1034. 	PackAddInt(p, "NatBuildInt", t->NatBuildInt);

    1035. 

  1035. 	PackAddStr(p, "NatHostName", t->NatHostName);

    1036. 

  1036. 	OutRpcOsInfo(p, &t->OsInfo);

    1037. 

  1037. 	OutRpcMemInfo(p, &t->MemInfo);

    1038. 

  1038. }

    1039. 

  1039. void FreeRpcNatInfo(RPC_NAT_INFO *t)

    1040. 

  1040. {

    1041. 

  1041. 	// Validate arguments

    1042. 

  1042. 	if (t == NULL)

    1043. 

  1043. 	{

    1044. 

  1044. 		return;

    1045. 

  1045. 	}

    1046. 

  1046. 

    1047. 

  1047. 	FreeRpcOsInfo(&t->OsInfo);

    1048. 

  1048. }

    1049. 

  1049. 

    1050. 

  1050. // RPC_NAT_STATUS

    1051. 

  1051. void InRpcNatStatus(RPC_NAT_STATUS *t, PACK *p)

    1052. 

  1052. {

    1053. 

  1053. 	// Validate arguments

    1054. 

  1054. 	if (t == NULL || p == NULL)

    1055. 

  1055. 	{

    1056. 

  1056. 		return;

    1057. 

  1057. 	}

    1058. 

  1058. 

    1059. 

  1059. 	Zero(t, sizeof(RPC_NAT_STATUS));

    1060. 

  1060. 	t->NumTcpSessions = PackGetInt(p, "NumTcpSessions");

    1061. 

  1061. 	t->NumUdpSessions = PackGetInt(p, "NumUdpSessions");

    1062. 

  1062. 	t->NumIcmpSessions = PackGetInt(p, "NumIcmpSessions");

    1063. 

  1063. 	t->NumDnsSessions = PackGetInt(p, "NumDnsSessions");

    1064. 

  1064. 	t->NumDhcpClients = PackGetInt(p, "NumDhcpClients");

    1065. 

  1065. 	t->IsKernelMode = PackGetBool(p, "IsKernelMode");

    1066. 

  1066. 	t->IsRawIpMode = PackGetBool(p, "IsRawIpMode");

    1067. 

  1067. 	PackGetStr(p, "HubName", t->HubName, sizeof(t->HubName));

    1068. 

  1068. }

    1069. 

  1069. void OutRpcNatStatus(PACK *p, RPC_NAT_STATUS *t)

    1070. 

  1070. {

    1071. 

  1071. 	// Validate arguments

    1072. 

  1072. 	if (p == NULL || t == NULL)

    1073. 

  1073. 	{

    1074. 

  1074. 		return;

    1075. 

  1075. 	}

    1076. 

  1076. 

    1077. 

  1077. 	PackAddStr(p, "HubName", t->HubName);

    1078. 

  1078. 	PackAddInt(p, "NumTcpSessions", t->NumTcpSessions);

    1079. 

  1079. 	PackAddInt(p, "NumUdpSessions", t->NumUdpSessions);

    1080. 

  1080. 	PackAddInt(p, "NumIcmpSessions", t->NumIcmpSessions);

    1081. 

  1081. 	PackAddInt(p, "NumDnsSessions", t->NumDnsSessions);

    1082. 

  1082. 	PackAddInt(p, "NumDhcpClients", t->NumDhcpClients);

    1083. 

  1083. 	PackAddBool(p, "IsKernelMode", t->IsKernelMode);

    1084. 

  1084. 	PackAddBool(p, "IsRawIpMode", t->IsRawIpMode);

    1085. 

  1085. }

    1086. 

  1086. void FreeRpcNatStatus(RPC_NAT_STATUS *t)

    1087. 

  1087. {

    1088. 

  1088. }

    1089. 

  1089. 

    1090. 

  1090. // RPC_DUMMY

    1091. 

  1091. void InRpcDummy(RPC_DUMMY *t, PACK *p)

    1092. 

  1092. {

    1093. 

  1093. 	// Validate arguments

    1094. 

  1094. 	if (t == NULL || p == NULL)

    1095. 

  1095. 	{

    1096. 

  1096. 		return;

    1097. 

  1097. 	}

    1098. 

  1098. 

    1099. 

  1099. 	Zero(t, sizeof(RPC_DUMMY));

    1100. 

  1100. 	t->DummyValue = PackGetInt(p, "DummyValue");

    1101. 

  1101. }

    1102. 

  1102. void OutRpcDummy(PACK *p, RPC_DUMMY *t)

    1103. 

  1103. {

    1104. 

  1104. 	// Validate arguments

    1105. 

  1105. 	if (t == NULL || p == NULL)

    1106. 

  1106. 	{

    1107. 

  1107. 		return;

    1108. 

  1108. 	}

    1109. 

  1109. 

    1110. 

  1110. 	PackAddInt(p, "DummyValue", t->DummyValue);

    1111. 

  1111. }

    1112. 

  1112. 

    1113. 

  1113. // Main procedure for management

    1114. 

  1114. void NiAdminMain(NAT *n, SOCK *s)

    1115. 

  1115. {

    1116. 

  1116. 	RPC *r;

    1117. 

  1117. 	PACK *p;

    1118. 

  1118. 	// Validate arguments

    1119. 

  1119. 	if (n == NULL || s == NULL)

    1120. 

  1120. 	{

    1121. 

  1121. 		return;

    1122. 

  1122. 	}

    1123. 

  1123. 

    1124. 

  1124. 	p = NewPack();

    1125. 

  1125. 	HttpServerSend(s, p);

    1126. 

  1126. 	FreePack(p);

    1127. 

  1127. 

    1128. 

  1128. 	r = StartRpcServer(s, NiRpcServer, n);

    1129. 

  1129. 

    1130. 

  1130. 	RpcServer(r);

    1131. 

  1131. 

    1132. 

  1132. 	RpcFree(r);

    1133. 

  1133. }

    1134. 

  1134. 

    1135. 

  1135. // Management thread

    1136. 

  1136. void NiAdminThread(THREAD *thread, void *param)

    1137. 

  1137. {

    1138. 

  1138. 	NAT_ADMIN *a = (NAT_ADMIN *)param;

    1139. 

  1139. 	NAT *n;

    1140. 

  1140. 	SOCK *s;

    1141. 

  1141. 	UCHAR random[SHA1_SIZE];

    1142. 

  1142. 	UINT err;

    1143. 

  1143. 	// Validate arguments

    1144. 

  1144. 	if (thread == NULL || param == NULL)

    1145. 

  1145. 	{

    1146. 

  1146. 		return;

    1147. 

  1147. 	}

    1148. 

  1148. 

    1149. 

  1149. 	// Random number generation

    1150. 

  1150. 	Rand(random, sizeof(random));

    1151. 

  1151. 

    1152. 

  1152. 	a->Thread = thread;

    1153. 

  1153. 	AddRef(a->Thread->ref);

    1154. 

  1154. 	s = a->Sock;

    1155. 

  1155. 	AddRef(s->ref);

    1156. 

  1156. 

    1157. 

  1157. 	n = a->Nat;

    1158. 

  1158. 

    1159. 

  1159. 	LockList(n->AdminList);

    1160. 

  1160. 	{

    1161. 

  1161. 		Add(n->AdminList, a);

    1162. 

  1162. 	}

    1163. 

  1163. 	UnlockList(n->AdminList);

    1164. 

  1164. 

    1165. 

  1165. 	NoticeThreadInit(thread);

    1166. 

  1166. 

    1167. 

  1167. 	err = ERR_AUTH_FAILED;

    1168. 

  1168. 

    1169. 

  1169. 	if (StartSSL(s, n->AdminX, n->AdminK))

    1170. 

  1170. 	{

    1171. 

  1171. 		PACK *p;

    1172. 

  1172. 

    1173. 

  1173. 		// Send the random number

    1174. 

  1174. 		p = NewPack();

    1175. 

  1175. 		PackAddData(p, "auth_random", random, sizeof(random));

    1176. 

  1176. 

    1177. 

  1177. 		if (HttpServerSend(s, p))

    1178. 

  1178. 		{

    1179. 

  1179. 			PACK *p;

    1180. 

  1180. 			// Receive a password

    1181. 

  1181. 			p = HttpServerRecv(s);

    1182. 

  1182. 			if (p != NULL)

    1183. 

  1183. 			{

    1184. 

  1184. 				UCHAR secure_password[SHA1_SIZE];

    1185. 

  1185. 				UCHAR secure_check[SHA1_SIZE];

    1186. 

  1186. 

    1187. 

  1187. 				if (PackGetData2(p, "secure_password", secure_password, sizeof(secure_password)))

    1188. 

  1188. 				{

    1189. 

  1189. 					SecurePassword(secure_check, n->HashedPassword, random);

    1190. 

  1190. 

    1191. 

  1191. 					if (Cmp(secure_check, secure_password, SHA1_SIZE) == 0)

    1192. 

  1192. 					{

    1193. 

  1193. 						UCHAR test[SHA1_SIZE];

    1194. 

  1194. 						// Password match

    1195. 

  1195. 						Hash(test, "", 0, true);

    1196. 

  1196. 						SecurePassword(test, test, random);

    1197. 

  1197. 

    1198. 

  1198. #if	0

    1199. 

  1199. 						if (Cmp(test, secure_check, SHA1_SIZE) == 0 && s->RemoteIP.addr[0] != 127)

    1200. 

  1200. 						{

    1201. 

  1201. 							// A client can not connect from the outside with blank password

    1202. 

  1202. 							err = ERR_NULL_PASSWORD_LOCAL_ONLY;

    1203. 

  1203. 						}

    1204. 

  1204. 						else

    1205. 

  1205. #endif

    1206. 

  1206. 

    1207. 

  1207. 						{

    1208. 

  1208. 							// Successful connection

    1209. 

  1209. 							err = ERR_NO_ERROR;

    1210. 

  1210. 							NiAdminMain(n, s);

    1211. 

  1211. 						}

    1212. 

  1212. 					}

    1213. 

  1213. 				}

    1214. 

  1214. 

    1215. 

  1215. 				FreePack(p);

    1216. 

  1216. 			}

    1217. 

  1217. 		}

    1218. 

  1218. 

    1219. 

  1219. 		FreePack(p);

    1220. 

  1220. 

    1221. 

  1221. 		if (err != ERR_NO_ERROR)

    1222. 

  1222. 		{

    1223. 

  1223. 			p = PackError(err);

    1224. 

  1224. 			HttpServerSend(s, p);

    1225. 

  1225. 			FreePack(p);

    1226. 

  1226. 		}

    1227. 

  1227. 	}

    1228. 

  1228. 

    1229. 

  1229. 	Disconnect(s);

    1230. 

  1230. 	ReleaseSock(s);

    1231. 

  1231. }

    1232. 

  1232. 

    1233. 

  1233. // Management port Listen thread

    1234. 

  1234. void NiListenThread(THREAD *thread, void *param)

    1235. 

  1235. {

    1236. 

  1236. 	NAT *n = (NAT *)param;

    1237. 

  1237. 	SOCK *a;

    1238. 

  1238. 	UINT i;

    1239. 

  1239. 	bool b = false;

    1240. 

  1240. 	// Validate arguments

    1241. 

  1241. 	if (thread == NULL || param == NULL)

    1242. 

  1242. 	{

    1243. 

  1243. 		return;

    1244. 

  1244. 	}

    1245. 

  1245. 

    1246. 

  1246. 	// Initialize the management list

    1247. 

  1247. 	n->AdminList = NewList(NULL);

    1248. 

  1248. 

    1249. 

  1249. 	while (true)

    1250. 

  1250. 	{

    1251. 

  1251. 		a = Listen(DEFAULT_NAT_ADMIN_PORT);

    1252. 

  1252. 		if (b == false)

    1253. 

  1253. 		{

    1254. 

  1254. 			b = true;

    1255. 

  1255. 			NoticeThreadInit(thread);

    1256. 

  1256. 		}

    1257. 

  1257. 		if (a != NULL)

    1258. 

  1258. 		{

    1259. 

  1259. 			break;

    1260. 

  1260. 		}

    1261. 

  1261. 

    1262. 

  1262. 		Wait(n->HaltEvent, NAT_ADMIN_PORT_LISTEN_INTERVAL);

    1263. 

  1263. 		if (n->Halt)

    1264. 

  1264. 		{

    1265. 

  1265. 			return;

    1266. 

  1266. 		}

    1267. 

  1267. 	}

    1268. 

  1268. 

    1269. 

  1269. 	n->AdminListenSock = a;

    1270. 

  1270. 	AddRef(a->ref);

    1271. 

  1271. 

    1272. 

  1272. 	// Waiting

    1273. 

  1273. 	while (true)

    1274. 

  1274. 	{

    1275. 

  1275. 		SOCK *s = Accept(a);

    1276. 

  1276. 		THREAD *t;

    1277. 

  1277. 		NAT_ADMIN *admin;

    1278. 

  1278. 		if (s == NULL)

    1279. 

  1279. 		{

    1280. 

  1280. 			break;

    1281. 

  1281. 		}

    1282. 

  1282. 		if (n->Halt)

    1283. 

  1283. 		{

    1284. 

  1284. 			ReleaseSock(s);

    1285. 

  1285. 			break;

    1286. 

  1286. 		}

    1287. 

  1287. 

    1288. 

  1288. 		admin = ZeroMalloc(sizeof(NAT_ADMIN));

    1289. 

  1289. 		admin->Nat = n;

    1290. 

  1290. 		admin->Sock = s;

    1291. 

  1291. 		t = NewThread(NiAdminThread, admin);

    1292. 

  1292. 		WaitThreadInit(t);

    1293. 

  1293. 		ReleaseThread(t);

    1294. 

  1294. 	}

    1295. 

  1295. 

    1296. 

  1296. 	// Disconnect all management connections

    1297. 

  1297. 	LockList(n->AdminList);

    1298. 

  1298. 	{

    1299. 

  1299. 		for (i = 0;i < LIST_NUM(n->AdminList);i++)

    1300. 

  1300. 		{

    1301. 

  1301. 			NAT_ADMIN *a = LIST_DATA(n->AdminList, i);

    1302. 

  1302. 			Disconnect(a->Sock);

    1303. 

  1303. 			WaitThread(a->Thread, INFINITE);

    1304. 

  1304. 			ReleaseThread(a->Thread);

    1305. 

  1305. 			ReleaseSock(a->Sock);

    1306. 

  1306. 			Free(a);

    1307. 

  1307. 		}

    1308. 

  1308. 	}

    1309. 

  1309. 	UnlockList(n->AdminList);

    1310. 

  1310. 

    1311. 

  1311. 	ReleaseList(n->AdminList);

    1312. 

  1312. 

    1313. 

  1313. 	ReleaseSock(a);

    1314. 

  1314. }

    1315. 

  1315. 

    1316. 

  1316. // Initialize receiving management command

    1317. 

  1317. void NiInitAdminAccept(NAT *n)

    1318. 

  1318. {

    1319. 

  1319. 	THREAD *t;

    1320. 

  1320. 	// Validate arguments

    1321. 

  1321. 	if (n == NULL)

    1322. 

  1322. 	{

    1323. 

  1323. 		return;

    1324. 

  1324. 	}

    1325. 

  1325. 

    1326. 

  1326. 	t = NewThread(NiListenThread, n);

    1327. 

  1327. 	WaitThreadInit(t);

    1328. 

  1328. 	n->AdminAcceptThread = t;

    1329. 

  1329. }

    1330. 

  1330. 

    1331. 

  1331. // Complete receiving management command

    1332. 

  1332. void NiFreeAdminAccept(NAT *n)

    1333. 

  1333. {

    1334. 

  1334. 	// Validate arguments

    1335. 

  1335. 	if (n == NULL)

    1336. 

  1336. 	{

    1337. 

  1337. 		return;

    1338. 

  1338. 	}

    1339. 

  1339. 

    1340. 

  1340. 	n->Halt = true;

    1341. 

  1341. 	Disconnect(n->AdminListenSock);

    1342. 

  1342. 	Set(n->HaltEvent);

    1343. 

  1343. 

    1344. 

  1344. 	while (true)

    1345. 

  1345. 	{

    1346. 

  1346. 		if (WaitThread(n->AdminAcceptThread, 1000) == false)

    1347. 

  1347. 		{

    1348. 

  1348. 			Disconnect(n->AdminListenSock);

    1349. 

  1349. 		}

    1350. 

  1350. 		else

    1351. 

  1351. 		{

    1352. 

  1352. 			break;

    1353. 

  1353. 		}

    1354. 

  1354. 	}

    1355. 

  1355. 	ReleaseThread(n->AdminAcceptThread);

    1356. 

  1356. 

    1357. 

  1357. 	ReleaseSock(n->AdminListenSock);

    1358. 

  1358. }

    1359. 

  1359. 

    1360. 

  1360. // Clear the DHCP options that are not supported by the dynamic Virtual HUB

    1361. 

  1361. void NiClearUnsupportedVhOptionForDynamicHub(VH_OPTION *o, bool initial)

    1362. 

  1362. {

    1363. 

  1363. 	// Validate arguments

    1364. 

  1364. 	if (o == NULL)

    1365. 

  1365. 	{

    1366. 

  1366. 		return;

    1367. 

  1367. 	}

    1368. 

  1368. 

    1369. 

  1369. 	o->UseNat = false;

    1370. 

  1370. 

    1371. 

  1371. 	if (initial)

    1372. 

  1372. 	{

    1373. 

  1373. 		Zero(&o->DhcpGatewayAddress, sizeof(IP));

    1374. 

  1374. 		Zero(&o->DhcpDnsServerAddress, sizeof(IP));

    1375. 

  1375. 		Zero(&o->DhcpDnsServerAddress2, sizeof(IP));

    1376. 

  1376. 		StrCpy(o->DhcpDomainName, sizeof(o->DhcpDomainName), "");

    1377. 

  1377. 	}

    1378. 

  1378. }

    1379. 

  1379. 

    1380. 

  1380. // Initialize the options for the virtual host

    1381. 

  1381. void NiSetDefaultVhOption(NAT *n, VH_OPTION *o)

    1382. 

  1382. {

    1383. 

  1383. 	// Validate arguments

    1384. 

  1384. 	if (o == NULL)

    1385. 

  1385. 	{

    1386. 

  1386. 		return;

    1387. 

  1387. 	}

    1388. 

  1388. 

    1389. 

  1389. 	Zero(o, sizeof(VH_OPTION));

    1390. 

  1390. 	GenMacAddress(o->MacAddress);

    1391. 

  1391. 

    1392. 

  1392. 	// Set the virtual IP to 192.168.30.1/24

    1393. 

  1393. 	SetIP(&o->Ip, 192, 168, 30, 1);

    1394. 

  1394. 	SetIP(&o->Mask, 255, 255, 255, 0);

    1395. 

  1395. 	o->UseNat = true;

    1396. 

  1396. 	o->Mtu = 1500;

    1397. 

  1397. 	o->NatTcpTimeout = 1800;

    1398. 

  1398. 	o->NatUdpTimeout = 60;

    1399. 

  1399. 	o->UseDhcp = true;

    1400. 

  1400. 	SetIP(&o->DhcpLeaseIPStart, 192, 168, 30, 10);

    1401. 

  1401. 	SetIP(&o->DhcpLeaseIPEnd, 192, 168, 30, 200);

    1402. 

  1402. 	SetIP(&o->DhcpSubnetMask, 255, 255, 255, 0);

    1403. 

  1403. 	o->DhcpExpireTimeSpan = 7200;

    1404. 

  1404. 	o->SaveLog = true;

    1405. 

  1405. 

    1406. 

  1406. 	SetIP(&o->DhcpGatewayAddress, 192, 168, 30, 1);

    1407. 

  1407. 	SetIP(&o->DhcpDnsServerAddress, 192, 168, 30, 1);

    1408. 

  1408. 

    1409. 

  1409. 	GetDomainName(o->DhcpDomainName, sizeof(o->DhcpDomainName));

    1410. 

  1410. }

    1411. 

  1411. 

    1412. 

  1412. // Reset the setting of NAT to the default

    1413. 

  1413. void NiInitDefaultConfig(NAT *n)

    1414. 

  1414. {

    1415. 

  1415. 	// Validate arguments

    1416. 

  1416. 	if (n == NULL)

    1417. 

  1417. 	{

    1418. 

  1418. 		return;

    1419. 

  1419. 	}

    1420. 

  1420. 

    1421. 

  1421. 	// Initialize the virtual host option

    1422. 

  1422. 	NiSetDefaultVhOption(n, &n->Option);

    1423. 

  1423. 

    1424. 

  1424. 	// Initialize management port

    1425. 

  1425. 	n->AdminPort = DEFAULT_NAT_ADMIN_PORT;

    1426. 

  1426. 

    1427. 

  1427. 	// Offline

    1428. 

  1428. 	n->Online = false;

    1429. 

  1429. 

    1430. 

  1430. 	// Save the log

    1431. 

  1431. 	n->Option.SaveLog = true;

    1432. 

  1432. }

    1433. 

  1433. 

    1434. 

  1434. // Initialize the NAT configuration

    1435. 

  1435. void NiInitConfig(NAT *n)

    1436. 

  1436. {

    1437. 

  1437. 	// Validate arguments

    1438. 

  1438. 	if (n == NULL)

    1439. 

  1439. 	{

    1440. 

  1440. 		return;

    1441. 

  1441. 	}

    1442. 

  1442. 

    1443. 

  1443. 	// Initial state

    1444. 

  1444. 	NiInitDefaultConfig(n);

    1445. 

  1445. }

    1446. 

  1446. 

    1447. 

  1447. // Read the virtual host option (extended)

    1448. 

  1448. void NiLoadVhOptionEx(VH_OPTION *o, FOLDER *root)

    1449. 

  1449. {

    1450. 

  1450. 	FOLDER *host, *nat, *dhcp;

    1451. 

  1451. 	char mac_address[MAX_SIZE];

    1452. 

  1452. 	// Validate arguments

    1453. 

  1453. 	if (o == NULL || root == NULL)

    1454. 

  1454. 	{

    1455. 

  1455. 		return;

    1456. 

  1456. 	}

    1457. 

  1457. 

    1458. 

  1458. 	host = CfgGetFolder(root, "VirtualHost");

    1459. 

  1459. 	nat = CfgGetFolder(root, "VirtualRouter");

    1460. 

  1460. 	dhcp = CfgGetFolder(root, "VirtualDhcpServer");

    1461. 

  1461. 

    1462. 

  1462. 	Zero(o, sizeof(VH_OPTION));

    1463. 

  1463. 

    1464. 

  1464. 	GenMacAddress(o->MacAddress);

    1465. 

  1465. 	if (CfgGetStr(host, "VirtualHostMacAddress", mac_address, sizeof(mac_address)))

    1466. 

  1466. 	{

    1467. 

  1467. 		BUF *b = StrToBin(mac_address);

    1468. 

  1468. 		if (b != NULL)

    1469. 

  1469. 		{

    1470. 

  1470. 			if (b->Size == 6)

    1471. 

  1471. 			{

    1472. 

  1472. 				Copy(o->MacAddress, b->Buf, 6);

    1473. 

  1473. 			}

    1474. 

  1474. 		}

    1475. 

  1475. 		FreeBuf(b);

    1476. 

  1476. 	}

    1477. 

  1477. 	CfgGetIp(host, "VirtualHostIp", &o->Ip);

    1478. 

  1478. 	CfgGetIp(host, "VirtualHostIpSubnetMask", &o->Mask);

    1479. 

  1479. 

    1480. 

  1480. 	o->UseNat = CfgGetBool(nat, "NatEnabled");

    1481. 

  1481. 	o->Mtu = CfgGetInt(nat, "NatMtu");

    1482. 

  1482. 	o->NatTcpTimeout = CfgGetInt(nat, "NatTcpTimeout");

    1483. 

  1483. 	o->NatUdpTimeout = CfgGetInt(nat, "NatUdpTimeout");

    1484. 

  1484. 

    1485. 

  1485. 	o->UseDhcp = CfgGetBool(dhcp, "DhcpEnabled");

    1486. 

  1486. 	CfgGetIp(dhcp, "DhcpLeaseIPStart", &o->DhcpLeaseIPStart);

    1487. 

  1487. 	CfgGetIp(dhcp, "DhcpLeaseIPEnd", &o->DhcpLeaseIPEnd);

    1488. 

  1488. 	CfgGetIp(dhcp, "DhcpSubnetMask", &o->DhcpSubnetMask);

    1489. 

  1489. 	o->DhcpExpireTimeSpan = CfgGetInt(dhcp, "DhcpExpireTimeSpan");

    1490. 

  1490. 	CfgGetIp(dhcp, "DhcpGatewayAddress", &o->DhcpGatewayAddress);

    1491. 

  1491. 	CfgGetIp(dhcp, "DhcpDnsServerAddress", &o->DhcpDnsServerAddress);

    1492. 

  1492. 	CfgGetIp(dhcp, "DhcpDnsServerAddress2", &o->DhcpDnsServerAddress2);

    1493. 

  1493. 	CfgGetStr(dhcp, "DhcpDomainName", o->DhcpDomainName, sizeof(o->DhcpDomainName));

    1494. 

  1494. 

    1495. 

  1495. 	CfgGetStr(dhcp, "DhcpPushRoutes", o->DhcpPushRoutes, sizeof(o->DhcpPushRoutes));

    1496. 

  1496. 

    1497. 

  1497. // Test code

    1498. 

  1498. //	StrCpy(o->DhcpPushRoutes, sizeof(o->DhcpPushRoutes),

    1499. 

  1499. //		"130.158.6.0/24/192.168.9.2 130.158.80.244/255.255.255.255/192.168.9.2");

    1500. 

  1500. 

    1501. 

  1501. 	NormalizeClasslessRouteTableStr(o->DhcpPushRoutes, sizeof(o->DhcpPushRoutes), o->DhcpPushRoutes);

    1502. 

  1502. 	o->ApplyDhcpPushRoutes = true;

    1503. 

  1503. 

    1504. 

  1504. 	Trim(o->DhcpDomainName);

    1505. 

  1505. 	if (StrLen(o->DhcpDomainName) == 0)

    1506. 

  1506. 	{

    1507. 

  1507. 		//GetDomainName(o->DhcpDomainName, sizeof(o->DhcpDomainName));

    1508. 

  1508. 	}

    1509. 

  1509. 

    1510. 

  1510. 	o->SaveLog = CfgGetBool(root, "SaveLog");

    1511. 

  1511. }

    1512. 

  1512. 

    1513. 

  1513. // Read the virtual host option

    1514. 

  1514. void NiLoadVhOption(NAT *n, FOLDER *root)

    1515. 

  1515. {

    1516. 

  1516. 	VH_OPTION *o;

    1517. 

  1517. 	FOLDER *host, *nat, *dhcp;

    1518. 

  1518. 	char mac_address[MAX_SIZE];

    1519. 

  1519. 	// Validate arguments

    1520. 

  1520. 	if (n == NULL || root == NULL)

    1521. 

  1521. 	{

    1522. 

  1522. 		return;

    1523. 

  1523. 	}

    1524. 

  1524. 

    1525. 

  1525. 	host = CfgGetFolder(root, "VirtualHost");

    1526. 

  1526. 	nat = CfgGetFolder(root, "VirtualRouter");

    1527. 

  1527. 	dhcp = CfgGetFolder(root, "VirtualDhcpServer");

    1528. 

  1528. 

    1529. 

  1529. 	o = &n->Option;

    1530. 

  1530. 	Zero(o, sizeof(VH_OPTION));

    1531. 

  1531. 

    1532. 

  1532. 	GenMacAddress(o->MacAddress);

    1533. 

  1533. 	if (CfgGetStr(host, "VirtualHostMacAddress", mac_address, sizeof(mac_address)))

    1534. 

  1534. 	{

    1535. 

  1535. 		BUF *b = StrToBin(mac_address);

    1536. 

  1536. 		if (b != NULL)

    1537. 

  1537. 		{

    1538. 

  1538. 			if (b->Size == 6)

    1539. 

  1539. 			{

    1540. 

  1540. 				Copy(o->MacAddress, b->Buf, 6);

    1541. 

  1541. 			}

    1542. 

  1542. 		}

    1543. 

  1543. 		FreeBuf(b);

    1544. 

  1544. 	}

    1545. 

  1545. 	CfgGetIp(host, "VirtualHostIp", &o->Ip);

    1546. 

  1546. 	CfgGetIp(host, "VirtualHostIpSubnetMask", &o->Mask);

    1547. 

  1547. 

    1548. 

  1548. 	o->UseNat = CfgGetBool(nat, "NatEnabled");

    1549. 

  1549. 	o->Mtu = CfgGetInt(nat, "NatMtu");

    1550. 

  1550. 	o->NatTcpTimeout = CfgGetInt(nat, "NatTcpTimeout");

    1551. 

  1551. 	o->NatUdpTimeout = CfgGetInt(nat, "NatUdpTimeout");

    1552. 

  1552. 

    1553. 

  1553. 	o->UseDhcp = CfgGetBool(dhcp, "DhcpEnabled");

    1554. 

  1554. 	CfgGetIp(dhcp, "DhcpLeaseIPStart", &o->DhcpLeaseIPStart);

    1555. 

  1555. 	CfgGetIp(dhcp, "DhcpLeaseIPEnd", &o->DhcpLeaseIPEnd);

    1556. 

  1556. 	CfgGetIp(dhcp, "DhcpSubnetMask", &o->DhcpSubnetMask);

    1557. 

  1557. 	o->DhcpExpireTimeSpan = CfgGetInt(dhcp, "DhcpExpireTimeSpan");

    1558. 

  1558. 	CfgGetIp(dhcp, "DhcpGatewayAddress", &o->DhcpGatewayAddress);

    1559. 

  1559. 	CfgGetIp(dhcp, "DhcpDnsServerAddress", &o->DhcpDnsServerAddress);

    1560. 

  1560. 	CfgGetIp(dhcp, "DhcpDnsServerAddress2", &o->DhcpDnsServerAddress2);

    1561. 

  1561. 	CfgGetStr(dhcp, "DhcpDomainName", o->DhcpDomainName, sizeof(o->DhcpDomainName));

    1562. 

  1562. 

    1563. 

  1563. 	o->SaveLog = CfgGetBool(root, "SaveLog");

    1564. 

  1564. }

    1565. 

  1565. 

    1566. 

  1566. // Read connection options from the VPN server

    1567. 

  1567. void NiLoadClientData(NAT *n, FOLDER *root)

    1568. 

  1568. {

    1569. 

  1569. 	FOLDER *co, *ca;

    1570. 

  1570. 	// Validate arguments

    1571. 

  1571. 	if (n == NULL || root == NULL)

    1572. 

  1572. 	{

    1573. 

  1573. 		return;

    1574. 

  1574. 	}

    1575. 

  1575. 

    1576. 

  1576. 	co = CfgGetFolder(root, "VpnClientOption");

    1577. 

  1577. 	ca = CfgGetFolder(root, "VpnClientAuth");

    1578. 

  1578. 	if (co == NULL || ca == NULL)

    1579. 

  1579. 	{

    1580. 

  1580. 		return;

    1581. 

  1581. 	}

    1582. 

  1582. 

    1583. 

  1583. 	n->ClientOption = CiLoadClientOption(co);

    1584. 

  1584. 	n->ClientAuth = CiLoadClientAuth(ca);

    1585. 

  1585. }

    1586. 

  1586. 

    1587. 

  1587. // Write connection options to the VPN server

    1588. 

  1588. void NiWriteClientData(NAT *n, FOLDER *root)

    1589. 

  1589. {

    1590. 

  1590. 	// Validate arguments

    1591. 

  1591. 	if (n == NULL || root == NULL || n->ClientOption == NULL || n->ClientAuth == NULL)

    1592. 

  1592. 	{

    1593. 

  1593. 		return;

    1594. 

  1594. 	}

    1595. 

  1595. 

    1596. 

  1596. 	CiWriteClientOption(CfgCreateFolder(root, "VpnClientOption"), n->ClientOption);

    1597. 

  1597. 	CiWriteClientAuth(CfgCreateFolder(root, "VpnClientAuth"), n->ClientAuth);

    1598. 

  1598. }

    1599. 

  1599. 

    1600. 

  1600. // Write the virtual host option (extended)

    1601. 

  1601. void NiWriteVhOptionEx(VH_OPTION *o, FOLDER *root)

    1602. 

  1602. {

    1603. 

  1603. 	FOLDER *host, *nat, *dhcp;

    1604. 

  1604. 	char mac_address[MAX_SIZE];

    1605. 

  1605. 	// Validate arguments

    1606. 

  1606. 	if (o == NULL || root == NULL)

    1607. 

  1607. 	{

    1608. 

  1608. 		return;

    1609. 

  1609. 	}

    1610. 

  1610. 

    1611. 

  1611. 	host = CfgCreateFolder(root, "VirtualHost");

    1612. 

  1612. 	nat = CfgCreateFolder(root, "VirtualRouter");

    1613. 

  1613. 	dhcp = CfgCreateFolder(root, "VirtualDhcpServer");

    1614. 

  1614. 

    1615. 

  1615. 	MacToStr(mac_address, sizeof(mac_address), o->MacAddress);

    1616. 

  1616. 	CfgAddStr(host, "VirtualHostMacAddress", mac_address);

    1617. 

  1617. 	CfgAddIp(host, "VirtualHostIp", &o->Ip);

    1618. 

  1618. 	CfgAddIp(host, "VirtualHostIpSubnetMask", &o->Mask);

    1619. 

  1619. 

    1620. 

  1620. 	CfgAddBool(nat, "NatEnabled", o->UseNat);

    1621. 

  1621. 	CfgAddInt(nat, "NatMtu", o->Mtu);

    1622. 

  1622. 	CfgAddInt(nat, "NatTcpTimeout", o->NatTcpTimeout);

    1623. 

  1623. 	CfgAddInt(nat, "NatUdpTimeout", o->NatUdpTimeout);

    1624. 

  1624. 

    1625. 

  1625. 	CfgAddBool(dhcp, "DhcpEnabled", o->UseDhcp);

    1626. 

  1626. 	CfgAddIp(dhcp, "DhcpLeaseIPStart", &o->DhcpLeaseIPStart);

    1627. 

  1627. 	CfgAddIp(dhcp, "DhcpLeaseIPEnd", &o->DhcpLeaseIPEnd);

    1628. 

  1628. 	CfgAddIp(dhcp, "DhcpSubnetMask", &o->DhcpSubnetMask);

    1629. 

  1629. 	CfgAddInt(dhcp, "DhcpExpireTimeSpan", o->DhcpExpireTimeSpan);

    1630. 

  1630. 	CfgAddIp(dhcp, "DhcpGatewayAddress", &o->DhcpGatewayAddress);

    1631. 

  1631. 	CfgAddIp(dhcp, "DhcpDnsServerAddress", &o->DhcpDnsServerAddress);

    1632. 

  1632. 	CfgAddIp(dhcp, "DhcpDnsServerAddress2", &o->DhcpDnsServerAddress2);

    1633. 

  1633. 	CfgAddStr(dhcp, "DhcpDomainName", o->DhcpDomainName);

    1634. 

  1634. 	CfgAddStr(dhcp, "DhcpPushRoutes", o->DhcpPushRoutes);

    1635. 

  1635. 

    1636. 

  1636. 	CfgAddBool(root, "SaveLog", o->SaveLog);

    1637. 

  1637. }

    1638. 

  1638. 

    1639. 

  1639. // Write the virtual host option

    1640. 

  1640. void NiWriteVhOption(NAT *n, FOLDER *root)

    1641. 

  1641. {

    1642. 

  1642. 	VH_OPTION *o;

    1643. 

  1643. 	FOLDER *host, *nat, *dhcp;

    1644. 

  1644. 	char mac_address[MAX_SIZE];

    1645. 

  1645. 	// Validate arguments

    1646. 

  1646. 	if (n == NULL || root == NULL)

    1647. 

  1647. 	{

    1648. 

  1648. 		return;

    1649. 

  1649. 	}

    1650. 

  1650. 

    1651. 

  1651. 	host = CfgCreateFolder(root, "VirtualHost");

    1652. 

  1652. 	nat = CfgCreateFolder(root, "VirtualRouter");

    1653. 

  1653. 	dhcp = CfgCreateFolder(root, "VirtualDhcpServer");

    1654. 

  1654. 

    1655. 

  1655. 	o = &n->Option;

    1656. 

  1656. 

    1657. 

  1657. 	MacToStr(mac_address, sizeof(mac_address), o->MacAddress);

    1658. 

  1658. 	CfgAddStr(host, "VirtualHostMacAddress", mac_address);

    1659. 

  1659. 	CfgAddIp(host, "VirtualHostIp", &o->Ip);

    1660. 

  1660. 	CfgAddIp(host, "VirtualHostIpSubnetMask", &o->Mask);

    1661. 

  1661. 

    1662. 

  1662. 	CfgAddBool(nat, "NatEnabled", o->UseNat);

    1663. 

  1663. 	CfgAddInt(nat, "NatMtu", o->Mtu);

    1664. 

  1664. 	CfgAddInt(nat, "NatTcpTimeout", o->NatTcpTimeout);

    1665. 

  1665. 	CfgAddInt(nat, "NatUdpTimeout", o->NatUdpTimeout);

    1666. 

  1666. 

    1667. 

  1667. 	CfgAddBool(dhcp, "DhcpEnabled", o->UseDhcp);

    1668. 

  1668. 	CfgAddIp(dhcp, "DhcpLeaseIPStart", &o->DhcpLeaseIPStart);

    1669. 

  1669. 	CfgAddIp(dhcp, "DhcpLeaseIPEnd", &o->DhcpLeaseIPEnd);

    1670. 

  1670. 	CfgAddIp(dhcp, "DhcpSubnetMask", &o->DhcpSubnetMask);

    1671. 

  1671. 	CfgAddInt(dhcp, "DhcpExpireTimeSpan", o->DhcpExpireTimeSpan);

    1672. 

  1672. 	CfgAddIp(dhcp, "DhcpGatewayAddress", &o->DhcpGatewayAddress);

    1673. 

  1673. 	CfgAddIp(dhcp, "DhcpDnsServerAddress", &o->DhcpDnsServerAddress);

    1674. 

  1674. 	CfgAddIp(dhcp, "DhcpDnsServerAddress2", &o->DhcpDnsServerAddress2);

    1675. 

  1675. 	CfgAddStr(dhcp, "DhcpDomainName", o->DhcpDomainName);

    1676. 

  1676. 

    1677. 

  1677. 	CfgAddBool(root, "SaveLog", o->SaveLog);

    1678. 

  1678. }

    1679. 

  1679. 

    1680. 

  1680. // Read the configuration file

    1681. 

  1681. bool NiLoadConfig(NAT *n, FOLDER *root)

    1682. 

  1682. {

    1683. 

  1683. 	FOLDER *host;

    1684. 

  1684. 	BUF *b;

    1685. 

  1685. 	// Validate arguments

    1686. 

  1686. 	if (n == NULL || root == NULL)

    1687. 

  1687. 	{

    1688. 

  1688. 		return false;

    1689. 

  1689. 	}

    1690. 

  1690. 

    1691. 

  1691. 	host = CfgGetFolder(root, "VirtualHost");

    1692. 

  1692. 	if (host == NULL)

    1693. 

  1693. 	{

    1694. 

  1694. 		return false;

    1695. 

  1695. 	}

    1696. 

  1696. 

    1697. 

  1697. 	CfgGetByte(root, "HashedPassword", n->HashedPassword, sizeof(n->HashedPassword));

    1698. 

  1698. 	n->AdminPort = CfgGetInt(root, "AdminPort");

    1699. 

  1699. 	n->Online = CfgGetBool(root, "Online");

    1700. 

  1700. 

    1701. 

  1701. 	b = CfgGetBuf(root, "AdminCert");

    1702. 

  1702. 	if (b != NULL)

    1703. 

  1703. 	{

    1704. 

  1704. 		n->AdminX = BufToX(b, false);

    1705. 

  1705. 		FreeBuf(b);

    1706. 

  1706. 	}

    1707. 

  1707. 

    1708. 

  1708. 	b = CfgGetBuf(root, "AdminKey");

    1709. 

  1709. 	if (b != NULL)

    1710. 

  1710. 	{

    1711. 

  1711. 		n->AdminK = BufToK(b, true, false, NULL);

    1712. 

  1712. 		FreeBuf(b);

    1713. 

  1713. 	}

    1714. 

  1714. 

    1715. 

  1715. 	NiLoadVhOption(n, root);

    1716. 

  1716. 

    1717. 

  1717. 	NiLoadClientData(n, root);

    1718. 

  1718. 

    1719. 

  1719. 	return true;

    1720. 

  1720. }

    1721. 

  1721. 

    1722. 

  1722. // Write the configuration to a file

    1723. 

  1723. void NiWriteConfig(NAT *n)

    1724. 

  1724. {

    1725. 

  1725. 	// Validate arguments

    1726. 

  1726. 	if (n == NULL)

    1727. 

  1727. 	{

    1728. 

  1728. 		return;

    1729. 

  1729. 	}

    1730. 

  1730. 

    1731. 

  1731. 	Lock(n->lock);

    1732. 

  1732. 	{

    1733. 

  1733. 		FOLDER *root = CfgCreateFolder(NULL, TAG_ROOT);

    1734. 

  1734. 		BUF *b;

    1735. 

  1735. 

    1736. 

  1736. 		// Certificate

    1737. 

  1737. 		b = XToBuf(n->AdminX, false);

    1738. 

  1738. 		CfgAddBuf(root, "AdminCert", b);

    1739. 

  1739. 		FreeBuf(b);

    1740. 

  1740. 

    1741. 

  1741. 		// Secret key

    1742. 

  1742. 		b = KToBuf(n->AdminK, false, NULL);

    1743. 

  1743. 		CfgAddBuf(root, "AdminKey", b);

    1744. 

  1744. 		FreeBuf(b);

    1745. 

  1745. 

    1746. 

  1746. 		// Password

    1747. 

  1747. 		CfgAddByte(root, "HashedPassword", n->HashedPassword, sizeof(n->HashedPassword));

    1748. 

  1748. 		CfgAddInt(root, "AdminPort", n->AdminPort);

    1749. 

  1749. 		CfgAddBool(root, "Online", n->Online);

    1750. 

  1750. 

    1751. 

  1751. 		// Virtual host option

    1752. 

  1752. 		NiWriteVhOption(n, root);

    1753. 

  1753. 

    1754. 

  1754. 		// Connection options

    1755. 

  1755. 		if (n->ClientOption != NULL && n->ClientAuth != NULL)

    1756. 

  1756. 		{

    1757. 

  1757. 			NiWriteClientData(n, root);

    1758. 

  1758. 		}

    1759. 

  1759. 

    1760. 

  1760. 		SaveCfgRw(n->CfgRw, root);

    1761. 

  1761. 		CfgDeleteFolder(root);

    1762. 

  1762. 	}

    1763. 

  1763. 	Unlock(n->lock);

    1764. 

  1764. }

    1765. 

  1765. 

    1766. 

  1766. // Release the NAT configuration

    1767. 

  1767. void NiFreeConfig(NAT *n)

    1768. 

  1768. {

    1769. 

  1769. 	// Validate arguments

    1770. 

  1770. 	if (n == NULL)

    1771. 

  1771. 	{

    1772. 

  1772. 		return;

    1773. 

  1773. 	}

    1774. 

  1774. 

    1775. 

  1775. 	// Write the latest configuration

    1776. 

  1776. 	NiWriteConfig(n);

    1777. 

  1777. 

    1778. 

  1778. 	// Release the configuration R/W

    1779. 

  1779. 	FreeCfgRw(n->CfgRw);

    1780. 

  1780. 	n->CfgRw = NULL;

    1781. 

  1781. 

    1782. 

  1782. 	Free(n->ClientOption);

    1783. 

  1783. 	CiFreeClientAuth(n->ClientAuth);

    1784. 

  1784. 

    1785. 

  1785. 	FreeX(n->AdminX);

    1786. 

  1786. 	FreeK(n->AdminK);

    1787. 

  1787. }

    1788. 

  1788. 

    1789. 

  1789. // Create a NAT

    1790. 

  1790. NAT *NiNewNatEx(SNAT *snat, VH_OPTION *o)

    1791. 

  1791. {

    1792. 

  1792. 	NAT *n = ZeroMalloc(sizeof(NAT));

    1793. 

  1793. 

    1794. 

  1794. 	n->lock = NewLock();

    1795. 

  1795. 	Hash(n->HashedPassword, "", 0, true);

    1796. 

  1796. 	n->HaltEvent = NewEvent();

    1797. 

  1797. 

    1798. 

  1798. 	//n->Cedar = NewCedar(NULL, NULL);

    1799. 

  1799. 

    1800. 

  1800. 	n->SecureNAT = snat;

    1801. 

  1801. 

    1802. 

  1802. 	// Raise the priority

    1803. 

  1803. 	//OSSetHighPriority();

    1804. 

  1804. 

    1805. 

  1805. 	// Initialize the settings

    1806. 

  1806. 	NiInitConfig(n);

    1807. 

  1807. 

    1808. 

  1808. #if	0

    1809. 

  1809. 	// Start the operation of the virtual host

    1810. 

  1810. 	if (n->Online && n->ClientOption != NULL)

    1811. 

  1811. 	{

    1812. 

  1812. 		n->Virtual = NewVirtualHostEx(n->Cedar, n->ClientOption, n->ClientAuth, &n->Option, n);

    1813. 

  1813. 	}

    1814. 

  1814. 	else

    1815. 

  1815. 	{

    1816. 

  1816. 		n->Online = false;

    1817. 

  1817. 		n->Virtual = NULL;

    1818. 

  1818. 	}

    1819. 

  1819. #else

    1820. 

  1820. 	n->Virtual = NewVirtualHostEx(n->Cedar, NULL, NULL, o, n);

    1821. 

  1821. 	n->Online = true;

    1822. 

  1822. #endif

    1823. 

  1823. 

    1824. 

  1824. 	// Start management command

    1825. 

  1825. 	//NiInitAdminAccept(n);

    1826. 

  1826. 

    1827. 

  1827. 	return n;

    1828. 

  1828. }

    1829. 

  1829. NAT *NiNewNat()

    1830. 

  1830. {

    1831. 

  1831. 	return NiNewNatEx(NULL, NULL);

    1832. 

  1832. }

    1833. 

  1833. 

    1834. 

  1834. // Release the NAT

    1835. 

  1835. void NiFreeNat(NAT *n)

    1836. 

  1836. {

    1837. 

  1837. 	// Validate arguments

    1838. 

  1838. 	if (n == NULL)

    1839. 

  1839. 	{

    1840. 

  1840. 		return;

    1841. 

  1841. 	}

    1842. 

  1842. 

    1843. 

  1843. 	// Complete management command

    1844. 

  1844. 	//NiFreeAdminAccept(n);

    1845. 

  1845. 

    1846. 

  1846. 	// Stop if the virtual host is running

    1847. 

  1847. 	Lock(n->lock);

    1848. 

  1848. 	{

    1849. 

  1849. 		if (n->Virtual != NULL)

    1850. 

  1850. 		{

    1851. 

  1851. 			StopVirtualHost(n->Virtual);

    1852. 

  1852. 			ReleaseVirtual(n->Virtual);

    1853. 

  1853. 			n->Virtual = NULL;

    1854. 

  1854. 		}

    1855. 

  1855. 	}

    1856. 

  1856. 	Unlock(n->lock);

    1857. 

  1857. 

    1858. 

  1858. 	// Release the settings

    1859. 

  1859. 	NiFreeConfig(n);

    1860. 

  1860. 

    1861. 

  1861. 	// Delete the object

    1862. 

  1862. 	ReleaseCedar(n->Cedar);

    1863. 

  1863. 	ReleaseEvent(n->HaltEvent);

    1864. 

  1864. 	DeleteLock(n->lock);

    1865. 

  1865. 

    1866. 

  1866. 	Free(n);

    1867. 

  1867. }

    1868. 

  1868. 

    1869. 

  1869. // Stop the NAT

    1870. 

  1870. void NtStopNat()

    1871. 

  1871. {

    1872. 

  1872. 	Lock(nat_lock);

    1873. 

  1873. 	{

    1874. 

  1874. 		if (nat != NULL)

    1875. 

  1875. 		{

    1876. 

  1876. 			NiFreeNat(nat);

    1877. 

  1877. 			nat = NULL;

    1878. 

  1878. 		}

    1879. 

  1879. 	}

    1880. 

  1880. 	Unlock(nat_lock);

    1881. 

  1881. }

    1882. 

  1882. 

    1883. 

  1883. // Start the NAT

    1884. 

  1884. void NtStartNat()

    1885. 

  1885. {

    1886. 

  1886. 	Lock(nat_lock);

    1887. 

  1887. 	{

    1888. 

  1888. 		if (nat == NULL)

    1889. 

  1889. 		{

    1890. 

  1890. 			nat = NiNewNat();

    1891. 

  1891. 		}

    1892. 

  1892. 	}

    1893. 

  1893. 	Unlock(nat_lock);

    1894. 

  1894. }

    1895. 

  1895. 

    1896. 

  1896. // Initialize the NtXxx function

    1897. 

  1897. void NtInit()

    1898. 

  1898. {

    1899. 

  1899. 	if (nat_lock != NULL)

    1900. 

  1900. 	{

    1901. 

  1901. 		return;

    1902. 

  1902. 	}

    1903. 

  1903. 

    1904. 

  1904. 	nat_lock = NewLock();

    1905. 

  1905. }

    1906. 

  1906. 

    1907. 

  1907. // Release the NtXxx function

    1908. 

  1908. void NtFree()

    1909. 

  1909. {

    1910. 

  1910. 	if (nat_lock == NULL)

    1911. 

  1911. 	{

    1912. 

  1912. 		return;

    1913. 

  1913. 	}

    1914. 

  1914. 

    1915. 

  1915. 	DeleteLock(nat_lock);

    1916. 

  1916. 	nat_lock = NULL;

    1917. 

  1917. }

    1918. 

  1918. 

    1919. 

  1919. 

    1920. 

  1920. // Developed by SoftEther VPN Project at University of Tsukuba in Japan.

    1921. 

  1921. // Department of Computer Science has dozens of overly-enthusiastic geeks.

    1922. 

  1922. // Join us: http://www.tsukuba.ac.jp/english/admission/

    1923. 

  1923.