def process_message(self, peer, mailfrom, rcpttos, data):
global cur, con
try:
pri_sha1, pubkey = parse(data)
pub_sha1 = certloader(pubkey).getSHA1()
cur.execute('INSERT INTO certs VALUES (?,?,?)',
(pub_sha1, pri_sha1, pubkey))
con.commit()
logging.info("Adding client with public sha1 " + pub_sha1)
except CorruptMail:
logging.warning("Ignoring a malformed email.")
except Exception:
logging.warning("Error processing an email.")
def process_message(self, peer, mailfrom, rcpttos, data):
global cur, con
try:
pri_sha1, pubkey = parse(data)
pub_sha1 = certloader(pubkey).getSHA1()
cur.execute(
'INSERT INTO certs VALUES (?,?,?)', (pub_sha1, pri_sha1, pubkey))
con.commit()
logging.info("Adding client with public sha1 " + pub_sha1)
except CorruptMail:
logging.warning("Ignoring a malformed email.")
except Exception:
logging.warning("Error processing an email.")
server_cert_txt = f.read()
remote_cert = RSA.importKey(server_cert_txt)
serverlist[sha1(server_cert_txt).hexdigest()] = \
ServerInfo(remote_cert, (server[0], server[1]))
except KeyError as e:
logging.error(e.tostring() +
"is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print("Fatal error while loading servers' certificate.")
print(err)
sys.exit()
try:
localpri_data = open(data["local_cert"], "r").read()
localpri = certloader(localpri_data).importKey()
if not localpri.has_private():
print("Fatal error, no private key included in local certificate.")
except KeyError as e:
logging.error(e.tostring() +
"is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print("Fatal error while loading local certificate.")
print(err)
sys.exit()
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
s.bind(('127.0.0.1', 53))
httpSession = requests.Session()
if args.v:
if "dns_servers" not in data:
data["dns_servers"] = DEFAULT_DNS_SERVERS
if "pt_exec" not in data:
data["pt_exec"] = DEFAULT_OBFS4_EXECADDR
if "debug_ip" not in data:
data["debug_ip"] = None
if "obfs_level" not in data:
data["obfs_level"] = 0
# Load certificates
try:
remotecert_data = open(data["remote_cert"], "r").read()
remotecert = certloader(remotecert_data).importKey()
except KeyError as e:
logging.error(
e.tostring() + "is not found in the config file. Quitting.")
quit()
except Exception as err:
print ("Fatal error while loading remote host certificate.")
print (err)
quit()
try:
localpri_data = open(data["local_cert"], "r").read()
localpri = certloader(localpri_data).importKey()
localpri_sha1 = certloader(localpri_data).getSHA1()
if not localpri.has_private():
print(
def main():
global Mode
parser = argparse.ArgumentParser(description=None)
try:
# Load arguments
parser.add_argument(
"-v", dest="v", action="store_true", help="show detailed logs")
parser.add_argument(
"-vv", dest="vv", action="store_true", help="show debug logs")
# TODO: use native function
parser.add_argument(
"--version", dest="version", action="store_true", help="show version number")
parser.add_argument('-kg', '--keygen', dest="kg", action='store_true',
help="Generate a key string and quit, overriding other options.")
parser.add_argument('--kg-path', '--keygen-path', dest="kg_save_path",
help="Where to store a key string, if not set, use default.")
parser.add_argument('-reg', '--keygen-email-register', dest="email_dest",
help="Email destination to register the key.")
parser.add_argument('--get-meek', dest="dlmeek", action="store_true",
help="Download meek to home directory, overriding normal options")
parser.add_argument('-c', '--config', dest="config", default=None,
help="Specify a configuration files, REQUIRED for ArkC Client to start")
parser.add_argument('-g', '--gae', dest="gae", action='store_true',
help="Use GAE mode")
parser.add_argument('-fs', '--frequent-swap', dest="fs", action="store_true",
help="Use frequent connection swapping")
parser.add_argument('-pn', '--public-addr', dest="pn", action="store_true",
help="Disable UPnP when you have public network IP address (or NAT has been manually configured)")
parser.add_argument("-v6", dest="ipv6", default="",
help="Enable this option to use IPv6 address (only use it if you have one)")
print("""ArkC Client V""" + VERSION + """, by ArkC Technology.
The programs is distributed under GNU General Public License Version 2.
""")
options = parser.parse_args()
if options.vv:
logging.basicConfig(
stream=sys.stdout, level=logging.DEBUG, format="%(levelname)s: %(asctime)s; %(message)s")
elif options.v:
logging.basicConfig(
stream=sys.stdout, level=logging.INFO, format="%(levelname)s: %(asctime)s; %(message)s")
else:
logging.basicConfig(
stream=sys.stdout, level=logging.WARNING, format="%(levelname)s: %(asctime)s; %(message)s")
if options.gae:
Mode = "GAE"
logging.info("Using GAE mode.")
else:
Mode = "VPS"
logging.info("Using VPS mode.")
if options.version:
print("ArkC Client Version " + VERSION)
sys.exit()
elif options.kg:
genkey(options)
elif options.dlmeek:
dlmeek()
elif options.config is None:
logging.fatal("Config file (-c or --config) must be specified.\n")
parser.print_help()
sys.exit()
data = {}
# Load json configuration file
try:
data_file = open(options.config)
data = json.load(data_file)
data_file.close()
except Exception as err:
logging.fatal(
"Fatal error while loading configuration file.\n" + err)
sys.exit()
if "control_domain" not in data:
logging.fatal("missing control domain")
sys.exit()
# Apply default values
if "local_host" not in data:
data["local_host"] = DEFAULT_LOCAL_HOST
if "local_port" not in data:
data["local_port"] = DEFAULT_LOCAL_PORT
if "remote_host" not in data:
data["remote_host"] = DEFAULT_REMOTE_HOST
if "remote_port" not in data:
data["remote_port"] = random.randint(20000, 60000)
logging.info(
"Using random port " + str(data["remote_port"]) + " as remote listening port")
if "number" not in data:
data["number"] = DEFAULT_REQUIRED
elif data["number"] > 20:
logging.warning(
"Requesting " + str(data["number"]) + " connections. Note: most servers impose a limit of 20. You may not receive response at all.")
if data["number"] > 100:
data["number"] = 100
if "dns_servers" not in data:
if "dns_server" in data:
data["dns_servers"] = data["dns_server"]
else:
data["dns_servers"] = DEFAULT_DNS_SERVERS
if "pt_exec" not in data:
data["pt_exec"] = DEFAULT_OBFS4_EXECADDR
if "debug_ip" not in data:
data["debug_ip"] = None
if Mode == "VPS":
if "obfs_level" not in data:
data["obfs_level"] = 0
elif 1 <= int(data["obfs_level"]) <= 2:
logging.error(
"Support for obfs4proxy is experimental with known bugs. Run this mode at your own risk.")
else:
data["obfs_level"] = 3
# Load certificates
try:
serverpub_data = open(data["remote_cert"], "r").read()
serverpub = certloader(serverpub_data).importKey()
except KeyError as e:
logging.fatal(
e.tostring() + "is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print ("Fatal error while loading remote host certificate.")
print (err)
sys.exit()
try:
clientpri_data = open(data["local_cert"], "r").read()
clientpri_data = clientpri_data.strip(' ').lstrip('\n')
clientpri = certloader(clientpri_data).importKey()
clientpri_sha1 = certloader(clientpri_data).getSHA1()
print("Using private key with SHA1: " + clientpri_sha1 +
". Please make sure it is identical the string in server-side config.")
if not clientpri.has_private():
print(
"Fatal error, no private key included in local certificate.")
except KeyError as e:
logging.fatal(
e.tostring() + "is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print ("Fatal error while loading local certificate.")
print (err)
sys.exit()
try:
clientpub_data = open(data["local_cert_pub"], "r").read()
clientpub_data = clientpub_data.strip(' ').lstrip('\n')
clientpub_sha1 = certloader(clientpub_data).getSHA1()
except KeyError as e:
logging.fatal(
e.tostring() + "is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print ("Fatal error while calculating SHA1 digest.")
print (err)
sys.exit()
# TODO: make it more elegant
if options.fs:
swapfq = 3
else:
swapfq = 8
except IOError as e:
print ("An error occurred: \n")
print(e)
# Start the main event loop
try:
ctl = Coordinate(
data["control_domain"],
clientpri,
clientpri_sha1,
serverpub,
clientpub_sha1,
data["number"],
data["remote_host"],
data["remote_port"],
data["dns_servers"],
data["debug_ip"],
swapfq,
data["pt_exec"],
data["obfs_level"],
options.ipv6,
options.pn
)
sctl = ServerControl(
data["remote_host"],
ctl.remote_port,
ctl,
pt=bool(data["obfs_level"])
)
cctl = ClientControl(
ctl,
data["local_host"],
data["local_port"]
)
except KeyError as e:
print(e)
logging.fatal("Bad config file. Quitting.")
sys.exit()
except Exception as e:
print ("An error occurred: \n")
print(e)
logging.info("Listening to local services at " +
data["local_host"] + ":" + str(data["local_port"]))
logging.info("Listening to remote server at " +
data["remote_host"] + ":" + str(ctl.remote_port))
try:
asyncore.loop(use_poll=1)
except KeyboardInterrupt:
pass
def main():
global Mode
parser = argparse.ArgumentParser(description=None)
try:
# Load arguments
parser.add_argument("-v",
dest="v",
action="store_true",
help="show detailed logs")
parser.add_argument("-vv",
dest="vv",
action="store_true",
help="show debug logs")
# TODO: use native function
parser.add_argument("--version",
dest="version",
action="store_true",
help="show version number")
parser.add_argument(
'-kg',
'--keygen',
dest="kg",
action='store_true',
help="Generate a key string and quit, overriding other options.")
parser.add_argument(
'--kg-path',
'--keygen-path',
dest="kg_save_path",
help="Where to store a key string, if not set, use default.")
parser.add_argument('-reg',
'--keygen-email-register',
dest="email_dest",
help="Email destination to register the key.")
parser.add_argument(
'--get-meek',
dest="dlmeek",
action="store_true",
help="Download meek to home directory, overriding normal options")
parser.add_argument(
'-c',
'--config',
dest="config",
default=None,
help=
"Specify a configuration files, REQUIRED for ArkC Client to start")
parser.add_argument('-g',
'--gae',
dest="gae",
action='store_true',
help="Use GAE mode")
parser.add_argument('-fs',
'--frequent-swap',
dest="fs",
action="store_true",
help="Use frequent connection swapping")
parser.add_argument(
'-pn',
'--public-addr',
dest="pn",
action="store_true",
help=
"Disable UPnP when you have public network IP address (or NAT has been manually configured)"
)
parser.add_argument(
"-v6",
dest="ipv6",
default="",
help=
"Enable this option to use IPv6 address (only use it if you have one)"
)
print("""ArkC Client V""" + VERSION + """, by ArkC Technology.
The programs is distributed under GNU General Public License Version 2.
""")
options = parser.parse_args()
if options.vv:
logging.basicConfig(
stream=sys.stdout,
level=logging.DEBUG,
format="%(levelname)s: %(asctime)s; %(message)s")
elif options.v:
logging.basicConfig(
stream=sys.stdout,
level=logging.INFO,
format="%(levelname)s: %(asctime)s; %(message)s")
else:
logging.basicConfig(
stream=sys.stdout,
level=logging.WARNING,
format="%(levelname)s: %(asctime)s; %(message)s")
if options.gae:
Mode = "GAE"
logging.info("Using GAE mode.")
else:
Mode = "VPS"
logging.info("Using VPS mode.")
if options.version:
print("ArkC Client Version " + VERSION)
sys.exit()
elif options.kg:
genkey(options)
elif options.dlmeek:
dlmeek()
elif options.config is None:
logging.fatal("Config file (-c or --config) must be specified.\n")
parser.print_help()
sys.exit()
data = {}
# Load json configuration file
try:
data_file = open(options.config)
data = json.load(data_file)
data_file.close()
except Exception as err:
logging.fatal("Fatal error while loading configuration file.\n" +
err)
sys.exit()
if "control_domain" not in data:
logging.fatal("missing control domain")
sys.exit()
# Apply default values
if "local_host" not in data:
data["local_host"] = DEFAULT_LOCAL_HOST
if "local_port" not in data:
data["local_port"] = DEFAULT_LOCAL_PORT
if "remote_host" not in data:
data["remote_host"] = DEFAULT_REMOTE_HOST
if "remote_port" not in data:
data["remote_port"] = random.randint(20000, 60000)
logging.info("Using random port " + str(data["remote_port"]) +
" as remote listening port")
if "number" not in data:
data["number"] = DEFAULT_REQUIRED
elif data["number"] > 20:
logging.warning(
"Requesting " + str(data["number"]) +
" connections. Note: most servers impose a limit of 20. You may not receive response at all."
)
if data["number"] > 100:
data["number"] = 100
if "dns_servers" not in data:
if "dns_server" in data:
data["dns_servers"] = data["dns_server"]
else:
data["dns_servers"] = DEFAULT_DNS_SERVERS
if "pt_exec" not in data:
data["pt_exec"] = DEFAULT_OBFS4_EXECADDR
if "debug_ip" not in data:
data["debug_ip"] = None
if Mode == "VPS":
if "obfs_level" not in data:
data["obfs_level"] = 0
elif 1 <= int(data["obfs_level"]) <= 2:
logging.error(
"Support for obfs4proxy is experimental with known bugs. Run this mode at your own risk."
)
else:
data["obfs_level"] = 3
# Load certificates
try:
serverpub_data = open(data["remote_cert"], "r").read()
serverpub = certloader(serverpub_data).importKey()
except KeyError as e:
logging.fatal(e.tostring() +
"is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print("Fatal error while loading remote host certificate.")
print(err)
sys.exit()
try:
clientpri_data = open(data["local_cert"], "r").read()
clientpri_data = clientpri_data.strip(' ').lstrip('\n')
clientpri = certloader(clientpri_data).importKey()
clientpri_sha1 = certloader(clientpri_data).getSHA1()
print(
"Using private key with SHA1: " + clientpri_sha1 +
". Please make sure it is identical the string in server-side config."
)
if not clientpri.has_private():
print(
"Fatal error, no private key included in local certificate."
)
except KeyError as e:
logging.fatal(e.tostring() +
"is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print("Fatal error while loading local certificate.")
print(err)
sys.exit()
try:
clientpub_data = open(data["local_cert_pub"], "r").read()
clientpub_data = clientpub_data.strip(' ').lstrip('\n')
clientpub_sha1 = certloader(clientpub_data).getSHA1()
except KeyError as e:
logging.fatal(e.tostring() +
"is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print("Fatal error while calculating SHA1 digest.")
print(err)
sys.exit()
# TODO: make it more elegant
if options.fs:
swapfq = 3
else:
swapfq = 8
except IOError as e:
print("An error occurred: \n")
print(e)
# Start the main event loop
try:
ctl = Coordinate(data["control_domain"], clientpri, clientpri_sha1,
serverpub, clientpub_sha1, data["number"],
data["remote_host"], data["remote_port"],
data["dns_servers"], data["debug_ip"], swapfq,
data["pt_exec"], data["obfs_level"], options.ipv6,
options.pn)
sctl = ServerControl(data["remote_host"],
ctl.remote_port,
ctl,
pt=bool(data["obfs_level"]))
cctl = ClientControl(ctl, data["local_host"], data["local_port"])
except KeyError as e:
print(e)
logging.fatal("Bad config file. Quitting.")
sys.exit()
except Exception as e:
print("An error occurred: \n")
print(e)
logging.info("Listening to local services at " + data["local_host"] + ":" +
str(data["local_port"]))
logging.info("Listening to remote server at " + data["remote_host"] + ":" +
str(ctl.remote_port))
try:
asyncore.loop(use_poll=1)
except KeyboardInterrupt:
pass
server_cert_txt = f.read()
remote_cert = RSA.importKey(server_cert_txt)
serverlist[sha1(server_cert_txt).hexdigest()] = \
ServerInfo(remote_cert, (server[0], server[1]))
except KeyError as e:
logging.error(
e.tostring() + "is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print ("Fatal error while loading servers' certificate.")
print (err)
sys.exit()
try:
localpri_data = open(data["local_cert"], "r").read()
localpri = certloader(localpri_data).importKey()
if not localpri.has_private():
print("Fatal error, no private key included in local certificate.")
except KeyError as e:
logging.error(
e.tostring() + "is not found in the config file. Quitting.")
sys.exit()
except Exception as err:
print ("Fatal error while loading local certificate.")
print (err)
sys.exit()
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
s.bind(('127.0.0.1', 53))
httpSession = requests.Session()
if args.v:
