Exemplo n.º 1
0
 def process_message(self, peer, mailfrom, rcpttos, data):
     global cur, con
     try:
         pri_sha1, pubkey = parse(data)
         pub_sha1 = certloader(pubkey).getSHA1()
         cur.execute('INSERT INTO certs VALUES (?,?,?)',
                     (pub_sha1, pri_sha1, pubkey))
         con.commit()
         logging.info("Adding client with public sha1 " + pub_sha1)
     except CorruptMail:
         logging.warning("Ignoring a malformed email.")
     except Exception:
         logging.warning("Error processing an email.")
Exemplo n.º 2
0
 def process_message(self, peer, mailfrom, rcpttos, data):
     global cur, con
     try:
         pri_sha1, pubkey = parse(data)
         pub_sha1 = certloader(pubkey).getSHA1()
         cur.execute(
             'INSERT INTO certs VALUES (?,?,?)', (pub_sha1, pri_sha1, pubkey))
         con.commit()
         logging.info("Adding client with public sha1 " + pub_sha1)
     except CorruptMail:
         logging.warning("Ignoring a malformed email.")
     except Exception:
         logging.warning("Error processing an email.")
Exemplo n.º 3
0
                server_cert_txt = f.read()
                remote_cert = RSA.importKey(server_cert_txt)
                serverlist[sha1(server_cert_txt).hexdigest()] = \
                    ServerInfo(remote_cert, (server[0], server[1]))
    except KeyError as e:
        logging.error(e.tostring() +
                      "is not found in the config file. Quitting.")
        sys.exit()
    except Exception as err:
        print("Fatal error while loading servers' certificate.")
        print(err)
        sys.exit()

    try:
        localpri_data = open(data["local_cert"], "r").read()
        localpri = certloader(localpri_data).importKey()
        if not localpri.has_private():
            print("Fatal error, no private key included in local certificate.")
    except KeyError as e:
        logging.error(e.tostring() +
                      "is not found in the config file. Quitting.")
        sys.exit()
    except Exception as err:
        print("Fatal error while loading local certificate.")
        print(err)
        sys.exit()

    s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
    s.bind(('127.0.0.1', 53))
    httpSession = requests.Session()
    if args.v:
Exemplo n.º 4
0
        if "dns_servers" not in data:
            data["dns_servers"] = DEFAULT_DNS_SERVERS

        if "pt_exec" not in data:
            data["pt_exec"] = DEFAULT_OBFS4_EXECADDR

        if "debug_ip" not in data:
            data["debug_ip"] = None

        if "obfs_level" not in data:
            data["obfs_level"] = 0

        # Load certificates
        try:
            remotecert_data = open(data["remote_cert"], "r").read()
            remotecert = certloader(remotecert_data).importKey()
        except KeyError as e:
            logging.error(
                e.tostring() + "is not found in the config file. Quitting.")
            quit()
        except Exception as err:
            print ("Fatal error while loading remote host certificate.")
            print (err)
            quit()

        try:
            localpri_data = open(data["local_cert"], "r").read()
            localpri = certloader(localpri_data).importKey()
            localpri_sha1 = certloader(localpri_data).getSHA1()
            if not localpri.has_private():
                print(
Exemplo n.º 5
0
def main():
    global Mode
    parser = argparse.ArgumentParser(description=None)
    try:
        # Load arguments
        parser.add_argument(
            "-v", dest="v", action="store_true", help="show detailed logs")
        parser.add_argument(
            "-vv", dest="vv", action="store_true", help="show debug logs")
        # TODO: use native function
        parser.add_argument(
            "--version", dest="version", action="store_true", help="show version number")
        parser.add_argument('-kg', '--keygen', dest="kg", action='store_true',
                            help="Generate a key string and quit, overriding other options.")
        parser.add_argument('--kg-path', '--keygen-path', dest="kg_save_path",
                            help="Where to store a key string, if not set, use default.")
        parser.add_argument('-reg', '--keygen-email-register', dest="email_dest",
                            help="Email destination to register the key.")
        parser.add_argument('--get-meek', dest="dlmeek", action="store_true",
                            help="Download meek to home directory, overriding normal options")
        parser.add_argument('-c', '--config', dest="config", default=None,
                            help="Specify a configuration files, REQUIRED for ArkC Client to start")
        parser.add_argument('-g', '--gae', dest="gae", action='store_true',
                            help="Use GAE mode")
        parser.add_argument('-fs', '--frequent-swap', dest="fs", action="store_true",
                            help="Use frequent connection swapping")
        parser.add_argument('-pn', '--public-addr', dest="pn", action="store_true",
                            help="Disable UPnP when you have public network IP address (or NAT has been manually configured)")

        parser.add_argument("-v6", dest="ipv6", default="",
                            help="Enable this option to use IPv6 address (only use it if you have one)")
        print("""ArkC Client V""" + VERSION + """,  by ArkC Technology.
The programs is distributed under GNU General Public License Version 2.
""")

        options = parser.parse_args()

        if options.vv:
            logging.basicConfig(
                stream=sys.stdout, level=logging.DEBUG, format="%(levelname)s: %(asctime)s; %(message)s")
        elif options.v:
            logging.basicConfig(
                stream=sys.stdout, level=logging.INFO, format="%(levelname)s: %(asctime)s; %(message)s")
        else:
            logging.basicConfig(
                stream=sys.stdout, level=logging.WARNING, format="%(levelname)s: %(asctime)s; %(message)s")

        if options.gae:
            Mode = "GAE"
            logging.info("Using GAE mode.")
        else:
            Mode = "VPS"
            logging.info("Using VPS mode.")

        if options.version:
            print("ArkC Client Version " + VERSION)
            sys.exit()
        elif options.kg:
            genkey(options)
        elif options.dlmeek:
            dlmeek()
        elif options.config is None:
            logging.fatal("Config file (-c or --config) must be specified.\n")
            parser.print_help()
            sys.exit()

        data = {}

        # Load json configuration file
        try:
            data_file = open(options.config)
            data = json.load(data_file)
            data_file.close()
        except Exception as err:
            logging.fatal(
                "Fatal error while loading configuration file.\n" + err)
            sys.exit()

        if "control_domain" not in data:
            logging.fatal("missing control domain")
            sys.exit()

        # Apply default values
        if "local_host" not in data:
            data["local_host"] = DEFAULT_LOCAL_HOST

        if "local_port" not in data:
            data["local_port"] = DEFAULT_LOCAL_PORT

        if "remote_host" not in data:
            data["remote_host"] = DEFAULT_REMOTE_HOST

        if "remote_port" not in data:
            data["remote_port"] = random.randint(20000, 60000)
            logging.info(
                "Using random port " + str(data["remote_port"]) + " as remote listening port")

        if "number" not in data:
            data["number"] = DEFAULT_REQUIRED
        elif data["number"] > 20:
            logging.warning(
                "Requesting " + str(data["number"]) + " connections. Note: most servers impose a limit of 20. You may not receive response at all.")

        if data["number"] > 100:
            data["number"] = 100

        if "dns_servers" not in data:
            if "dns_server" in data:
                data["dns_servers"] = data["dns_server"]
            else:
                data["dns_servers"] = DEFAULT_DNS_SERVERS

        if "pt_exec" not in data:
            data["pt_exec"] = DEFAULT_OBFS4_EXECADDR

        if "debug_ip" not in data:
            data["debug_ip"] = None

        if Mode == "VPS":
            if "obfs_level" not in data:
                data["obfs_level"] = 0
            elif 1 <= int(data["obfs_level"]) <= 2:
                logging.error(
                    "Support for obfs4proxy is experimental with known bugs. Run this mode at your own risk.")
        else:
            data["obfs_level"] = 3

        # Load certificates
        try:
            serverpub_data = open(data["remote_cert"], "r").read()
            serverpub = certloader(serverpub_data).importKey()
        except KeyError as e:
            logging.fatal(
                e.tostring() + "is not found in the config file. Quitting.")
            sys.exit()
        except Exception as err:
            print ("Fatal error while loading remote host certificate.")
            print (err)
            sys.exit()

        try:
            clientpri_data = open(data["local_cert"], "r").read()
            clientpri_data = clientpri_data.strip(' ').lstrip('\n')
            clientpri = certloader(clientpri_data).importKey()
            clientpri_sha1 = certloader(clientpri_data).getSHA1()
            print("Using private key with SHA1: " + clientpri_sha1 +
                  ". Please make sure it is identical the string in server-side config.")
            if not clientpri.has_private():
                print(
                    "Fatal error, no private key included in local certificate.")
        except KeyError as e:
            logging.fatal(
                e.tostring() + "is not found in the config file. Quitting.")
            sys.exit()
        except Exception as err:
            print ("Fatal error while loading local certificate.")
            print (err)
            sys.exit()

        try:
            clientpub_data = open(data["local_cert_pub"], "r").read()
            clientpub_data = clientpub_data.strip(' ').lstrip('\n')
            clientpub_sha1 = certloader(clientpub_data).getSHA1()
        except KeyError as e:
            logging.fatal(
                e.tostring() + "is not found in the config file. Quitting.")
            sys.exit()
        except Exception as err:
            print ("Fatal error while calculating SHA1 digest.")
            print (err)
            sys.exit()

        # TODO: make it more elegant

        if options.fs:
            swapfq = 3
        else:
            swapfq = 8

    except IOError as e:
        print ("An error occurred: \n")
        print(e)

    # Start the main event loop

    try:
        ctl = Coordinate(
            data["control_domain"],
            clientpri,
            clientpri_sha1,
            serverpub,
            clientpub_sha1,
            data["number"],
            data["remote_host"],
            data["remote_port"],
            data["dns_servers"],
            data["debug_ip"],
            swapfq,
            data["pt_exec"],
            data["obfs_level"],
            options.ipv6,
            options.pn
        )
        sctl = ServerControl(
            data["remote_host"],
            ctl.remote_port,
            ctl,
            pt=bool(data["obfs_level"])
        )
        cctl = ClientControl(
            ctl,
            data["local_host"],
            data["local_port"]
        )
    except KeyError as e:
        print(e)
        logging.fatal("Bad config file. Quitting.")
        sys.exit()

    except Exception as e:
        print ("An error occurred: \n")
        print(e)

    logging.info("Listening to local services at " +
                 data["local_host"] + ":" + str(data["local_port"]))
    logging.info("Listening to remote server at " +
                 data["remote_host"] + ":" + str(ctl.remote_port))

    try:
        asyncore.loop(use_poll=1)
    except KeyboardInterrupt:
        pass
Exemplo n.º 6
0
def main():
    global Mode
    parser = argparse.ArgumentParser(description=None)
    try:
        # Load arguments
        parser.add_argument("-v",
                            dest="v",
                            action="store_true",
                            help="show detailed logs")
        parser.add_argument("-vv",
                            dest="vv",
                            action="store_true",
                            help="show debug logs")
        # TODO: use native function
        parser.add_argument("--version",
                            dest="version",
                            action="store_true",
                            help="show version number")
        parser.add_argument(
            '-kg',
            '--keygen',
            dest="kg",
            action='store_true',
            help="Generate a key string and quit, overriding other options.")
        parser.add_argument(
            '--kg-path',
            '--keygen-path',
            dest="kg_save_path",
            help="Where to store a key string, if not set, use default.")
        parser.add_argument('-reg',
                            '--keygen-email-register',
                            dest="email_dest",
                            help="Email destination to register the key.")
        parser.add_argument(
            '--get-meek',
            dest="dlmeek",
            action="store_true",
            help="Download meek to home directory, overriding normal options")
        parser.add_argument(
            '-c',
            '--config',
            dest="config",
            default=None,
            help=
            "Specify a configuration files, REQUIRED for ArkC Client to start")
        parser.add_argument('-g',
                            '--gae',
                            dest="gae",
                            action='store_true',
                            help="Use GAE mode")
        parser.add_argument('-fs',
                            '--frequent-swap',
                            dest="fs",
                            action="store_true",
                            help="Use frequent connection swapping")
        parser.add_argument(
            '-pn',
            '--public-addr',
            dest="pn",
            action="store_true",
            help=
            "Disable UPnP when you have public network IP address (or NAT has been manually configured)"
        )

        parser.add_argument(
            "-v6",
            dest="ipv6",
            default="",
            help=
            "Enable this option to use IPv6 address (only use it if you have one)"
        )
        print("""ArkC Client V""" + VERSION + """,  by ArkC Technology.
The programs is distributed under GNU General Public License Version 2.
""")

        options = parser.parse_args()

        if options.vv:
            logging.basicConfig(
                stream=sys.stdout,
                level=logging.DEBUG,
                format="%(levelname)s: %(asctime)s; %(message)s")
        elif options.v:
            logging.basicConfig(
                stream=sys.stdout,
                level=logging.INFO,
                format="%(levelname)s: %(asctime)s; %(message)s")
        else:
            logging.basicConfig(
                stream=sys.stdout,
                level=logging.WARNING,
                format="%(levelname)s: %(asctime)s; %(message)s")

        if options.gae:
            Mode = "GAE"
            logging.info("Using GAE mode.")
        else:
            Mode = "VPS"
            logging.info("Using VPS mode.")

        if options.version:
            print("ArkC Client Version " + VERSION)
            sys.exit()
        elif options.kg:
            genkey(options)
        elif options.dlmeek:
            dlmeek()
        elif options.config is None:
            logging.fatal("Config file (-c or --config) must be specified.\n")
            parser.print_help()
            sys.exit()

        data = {}

        # Load json configuration file
        try:
            data_file = open(options.config)
            data = json.load(data_file)
            data_file.close()
        except Exception as err:
            logging.fatal("Fatal error while loading configuration file.\n" +
                          err)
            sys.exit()

        if "control_domain" not in data:
            logging.fatal("missing control domain")
            sys.exit()

        # Apply default values
        if "local_host" not in data:
            data["local_host"] = DEFAULT_LOCAL_HOST

        if "local_port" not in data:
            data["local_port"] = DEFAULT_LOCAL_PORT

        if "remote_host" not in data:
            data["remote_host"] = DEFAULT_REMOTE_HOST

        if "remote_port" not in data:
            data["remote_port"] = random.randint(20000, 60000)
            logging.info("Using random port " + str(data["remote_port"]) +
                         " as remote listening port")

        if "number" not in data:
            data["number"] = DEFAULT_REQUIRED
        elif data["number"] > 20:
            logging.warning(
                "Requesting " + str(data["number"]) +
                " connections. Note: most servers impose a limit of 20. You may not receive response at all."
            )

        if data["number"] > 100:
            data["number"] = 100

        if "dns_servers" not in data:
            if "dns_server" in data:
                data["dns_servers"] = data["dns_server"]
            else:
                data["dns_servers"] = DEFAULT_DNS_SERVERS

        if "pt_exec" not in data:
            data["pt_exec"] = DEFAULT_OBFS4_EXECADDR

        if "debug_ip" not in data:
            data["debug_ip"] = None

        if Mode == "VPS":
            if "obfs_level" not in data:
                data["obfs_level"] = 0
            elif 1 <= int(data["obfs_level"]) <= 2:
                logging.error(
                    "Support for obfs4proxy is experimental with known bugs. Run this mode at your own risk."
                )
        else:
            data["obfs_level"] = 3

        # Load certificates
        try:
            serverpub_data = open(data["remote_cert"], "r").read()
            serverpub = certloader(serverpub_data).importKey()
        except KeyError as e:
            logging.fatal(e.tostring() +
                          "is not found in the config file. Quitting.")
            sys.exit()
        except Exception as err:
            print("Fatal error while loading remote host certificate.")
            print(err)
            sys.exit()

        try:
            clientpri_data = open(data["local_cert"], "r").read()
            clientpri_data = clientpri_data.strip(' ').lstrip('\n')
            clientpri = certloader(clientpri_data).importKey()
            clientpri_sha1 = certloader(clientpri_data).getSHA1()
            print(
                "Using private key with SHA1: " + clientpri_sha1 +
                ". Please make sure it is identical the string in server-side config."
            )
            if not clientpri.has_private():
                print(
                    "Fatal error, no private key included in local certificate."
                )
        except KeyError as e:
            logging.fatal(e.tostring() +
                          "is not found in the config file. Quitting.")
            sys.exit()
        except Exception as err:
            print("Fatal error while loading local certificate.")
            print(err)
            sys.exit()

        try:
            clientpub_data = open(data["local_cert_pub"], "r").read()
            clientpub_data = clientpub_data.strip(' ').lstrip('\n')
            clientpub_sha1 = certloader(clientpub_data).getSHA1()
        except KeyError as e:
            logging.fatal(e.tostring() +
                          "is not found in the config file. Quitting.")
            sys.exit()
        except Exception as err:
            print("Fatal error while calculating SHA1 digest.")
            print(err)
            sys.exit()

        # TODO: make it more elegant

        if options.fs:
            swapfq = 3
        else:
            swapfq = 8

    except IOError as e:
        print("An error occurred: \n")
        print(e)

    # Start the main event loop

    try:
        ctl = Coordinate(data["control_domain"], clientpri, clientpri_sha1,
                         serverpub, clientpub_sha1, data["number"],
                         data["remote_host"], data["remote_port"],
                         data["dns_servers"], data["debug_ip"], swapfq,
                         data["pt_exec"], data["obfs_level"], options.ipv6,
                         options.pn)
        sctl = ServerControl(data["remote_host"],
                             ctl.remote_port,
                             ctl,
                             pt=bool(data["obfs_level"]))
        cctl = ClientControl(ctl, data["local_host"], data["local_port"])
    except KeyError as e:
        print(e)
        logging.fatal("Bad config file. Quitting.")
        sys.exit()

    except Exception as e:
        print("An error occurred: \n")
        print(e)

    logging.info("Listening to local services at " + data["local_host"] + ":" +
                 str(data["local_port"]))
    logging.info("Listening to remote server at " + data["remote_host"] + ":" +
                 str(ctl.remote_port))

    try:
        asyncore.loop(use_poll=1)
    except KeyboardInterrupt:
        pass
Exemplo n.º 7
0
                server_cert_txt = f.read()
                remote_cert = RSA.importKey(server_cert_txt)
                serverlist[sha1(server_cert_txt).hexdigest()] = \
                    ServerInfo(remote_cert, (server[0], server[1]))
    except KeyError as e:
        logging.error(
            e.tostring() + "is not found in the config file. Quitting.")
        sys.exit()
    except Exception as err:
        print ("Fatal error while loading servers' certificate.")
        print (err)
        sys.exit()

    try:
        localpri_data = open(data["local_cert"], "r").read()
        localpri = certloader(localpri_data).importKey()
        if not localpri.has_private():
            print("Fatal error, no private key included in local certificate.")
    except KeyError as e:
        logging.error(
            e.tostring() + "is not found in the config file. Quitting.")
        sys.exit()
    except Exception as err:
        print ("Fatal error while loading local certificate.")
        print (err)
        sys.exit()

    s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
    s.bind(('127.0.0.1', 53))
    httpSession = requests.Session()
    if args.v: