如何处理网络操作(socks代理)中未知数据大小的缓冲区大小?

huangapple go评论68阅读模式
英文:

How to handle buffer size for unknown data sizes in network operations (socks proxy)?

问题

I am writing a socks4 proxy in C and everything works well, like I tested the data forwarding with a simple echo server as the remote peer.

但现在我不确定如何处理数据,如果使用其他协议,因为它们具有不同的数据包大小。

我如何知道传输是否完成,或者如何处理确保数据正确传输到远程对等端,反之亦然,传输到客户端?

以下是我的线程连接处理函数:

// 包含成功连接后的客户端套接字和远程对等端套接字:
typedef struct socks_connection {
    int client_sock;
    int target_sock;
} socks_connection;

void *socks_connection_thread(void *sockets) {
    printf("Thread started\n");
    socks_connection conn = *(socks_connection*) sockets;

    uint8_t buf[512];
    int rbytes;
    int wbytes;

    for (;;) {

        rbytes = recv(conn.client_sock, buf, sizeof(buf), 0);
        printf("read: %d\n", rbytes);
        if (rbytes < 0) {
            perror("read");
        }

        wbytes = send(conn.target_sock, buf, rbytes, 0);
        printf("send: %d\n", wbytes);
        if (rbytes < 0) {
            perror("send");
        }

        rbytes = recv(conn.target_sock, buf, sizeof(buf), 0);
        if (rbytes < 0) {
            perror("read");
        }
        printf("read: %d\n", rbytes);

        wbytes = send(conn.client_sock, buf, rbytes, 0);
        printf("send: %d\n", wbytes);
        if (rbytes < 0) {
            perror("send");
        }
    }
}

EDIT: I am trying to use poll() instead of select() and I want to know if it is normal for poll to use less code and additional work like i.e. FD_SET, FD_ISSET etc.

#define MAX_SOCKETS 2
#define DEFAULT_TIMEOUT (3 * 60 * 1000)
#define CLIENT_POLL 0
#define REMOTE_POLL 1

void *socks_connection_thread(void *pipefd) {

    pthread_detach(pthread_self());
    socks_connection *conn = pipefd;
    int rc = 0;
    int timeout = DEFAULT_TIMEOUT;

    struct pollfd pfds[MAX_SOCKETS];
    nfds_t nfds = MAX_SOCKETS;

    uint8_t client_buf[1024];
    size_t client_buf_size = 0;

    uint8_t target_buf[1024];
    size_t target_buf_size = 0;
    
    ssize_t num_bytes;

    memset(&pfds, 0, sizeof(pfds));

    int opt = 1;
    ioctl(conn->client_sock, FIONBIO, &opt);
    ioctl(conn->target_sock, FIONBIO, &opt);

    pfds[CLIENT_POLL].fd = conn->client_sock;
    pfds[CLIENT_POLL].events = POLLIN;

    pfds[REMOTE_POLL].fd = conn->target_sock;
    pfds[REMOTE_POLL].events = POLLIN;

    for (;;) {

        if (socksshutdown) break;

        /* waiting for some events */
        rc = poll(pfds, MAX_SOCKETS, timeout);
        if (rc < 0) {
            fprintf(stderr, "poll() failed: %s\n", strerror(errno));
            break;
        }

        if (rc == 0) {
            fprintf(stderr, "poll() timed out. End Connection\n");
            break;
        }

        /* there is something to read form the client side */
        if (pfds[CLIENT_POLL].revents & POLLIN)
        {

            num_bytes = readFromSocket(conn->client_sock, client_buf, sizeof(client_buf));
            if (num_bytes < 0) break; // client connection lost
            if (num_bytes > 0) {
                printf("read from client: %s (%ld)\n", client_buf, num_bytes);
                client_buf_size += num_bytes;
            }
            num_bytes = sendToSocket(conn->target_sock, client_buf, num_bytes);
            if (num_bytes < 0) break;
            if (num_bytes > 0) {
                printf("forward to remote peer: %s (%ld)\n", client_buf, num_bytes);
            }
            pfds[CLIENT_POLL].revents = 0;

        }
        /* there is something to read from the remote side */
        else if (pfds[REMOTE_POLL].revents & POLLIN)
        {
            //printf("Got data from remote.\n");
            num_bytes = readFromSocket(conn->target_sock, target_buf, sizeof(target_buf));
            if (num_bytes < 0) break; // remote connection lost
            if (num_bytes > 0) {
                printf("read from client: %s (%ld)\n", target_buf, num_bytes);
                target_buf_size += num_bytes;
            }
            num_bytes = sendToSocket(conn->client_sock, target_buf, target_buf_size);
            if (num_bytes < 0) break;
            if (num_bytes > 0) {
                printf("forward to client: %s (%ld)\n", target_buf, num_bytes);
                // remove the sent bytes...
            } 
            pfds[REMOTE_POLL].revents = 0;
        } else {
            // unexpected event result appeared so close the connection
            break;
        }

    }

    // all done
    close(conn->client_sock);
    close(conn->target_sock);
    printf("Thread terminating\n");

}
英文:

I am writing a socks4 proxy in C and everything works well, like I tested the data forwarding with a simple echo server as the remote peer.

But now I am not sure how to handle the data if the other protocols are used as they have different package sizes.

How do I know if the transmission is complete or how do I have to handle that everything is transmitted properly to the remote peer and vice versa to the client?

Here is my thread connection handler function:

// Contains the client socket and remote peer socket after successful connect:
typedef struct socks_connection {
int client_sock;
int target_sock;
} socks_connection;
void *socks_connection_thread(void *sockets) {
printf(&quot;Thread started\n&quot;);
socks_connection conn = *(socks_connection*) sockets;
uint8_t buf[512];
int rbytes;
int wbytes;
for(;;) {
rbytes = recv(conn.client_sock, buf, sizeof(buf), 0);
printf(&quot;read: %d\n&quot;, rbytes);
if(rbytes &lt; 0) {
perror(&quot;read&quot;);
}
wbytes = send(conn.target_sock, buf, rbytes, 0);
printf(&quot;send: %d\n&quot;, wbytes);
if(rbytes &lt; 0) {
perror(&quot;send&quot;);
}
rbytes = recv(conn.target_sock, buf, sizeof(buf), 0);
if(rbytes &lt; 0) {
perror(&quot;read&quot;);
}
printf(&quot;read: %d\n&quot;, rbytes);
wbytes = send(conn.client_sock, buf, rbytes, 0);
printf(&quot;send: %d\n&quot;, wbytes);
if(rbytes &lt; 0) {
perror(&quot;send&quot;);
}
}
}

EDIT: I am trying to use poll() instead of select() and I want to know if it is normal for poll to use less code and additional work like i.e. FD_SET, FD_ISSET etc.


#define MAX_SOCKETS 2
#define DEFAULT_TIMEOUT (3 * 60 * 1000)
#define CLIENT_POLL 0
#define REMOTE_POLL 1
void *socks_connection_thread(void *pipefd) {
pthread_detach(pthread_self());
socks_connection *conn = pipefd;
int rc = 0;
int timeout = DEFAULT_TIMEOUT;
struct pollfd pfds[MAX_SOCKETS];
nfds_t nfds = MAX_SOCKETS;
uint8_t client_buf[1024];
size_t client_buf_size = 0;
uint8_t target_buf[1024];
size_t target_buf_size = 0;
ssize_t num_bytes;
memset(&amp;pfds, 0, sizeof(pfds));
int opt = 1;
ioctl(conn-&gt;client_sock, FIONBIO, &amp;opt);
ioctl(conn-&gt;target_sock, FIONBIO, &amp;opt);
pfds[CLIENT_POLL].fd = conn-&gt;client_sock;
pfds[CLIENT_POLL].events = POLLIN;
pfds[REMOTE_POLL].fd = conn-&gt;target_sock;
pfds[REMOTE_POLL].events = POLLIN;
for(;;) {
if(socksshutdown) break;
/* waiting for some events */
rc = poll(pfds, MAX_SOCKETS, timeout);
if(rc &lt; 0) {
fprintf(stderr, &quot;poll() failed: %s\n&quot;, strerror(errno));
break;
}
if(rc == 0) {
fprintf(stderr, &quot;poll() timed out. End Connection\n&quot;);
break;
}
/* there is something to read form the client side */
if(pfds[CLIENT_POLL].revents &amp; POLLIN)
{
num_bytes = readFromSocket(conn-&gt;client_sock, client_buf, sizeof(client_buf));
if(num_bytes &lt; 0) break; // client connection lost
if(num_bytes &gt; 0) {
printf(&quot;read from client: %s (%ld)\n&quot;, client_buf, num_bytes);
client_buf_size += num_bytes;
}
num_bytes = sendToSocket(conn-&gt;target_sock, client_buf, num_bytes);
if(num_bytes &lt; 0) break;
if(num_bytes &gt; 0) {
printf(&quot;forward to remote peer: %s (%ld)\n&quot;, client_buf, num_bytes);
}
pfds[CLIENT_POLL].revents = 0;
}
/* there is something to read from the remote side */
else if(pfds[REMOTE_POLL].revents &amp; POLLIN)
{
//printf(&quot;Got data from remote.\n&quot;);
num_bytes = readFromSocket(conn-&gt;target_sock, target_buf, sizeof(target_buf));
if (num_bytes &lt; 0) break; // remote connection lost
if (num_bytes &gt; 0) {
printf(&quot;read from client: %s (%ld)\n&quot;, target_buf, num_bytes);
target_buf_size += num_bytes;
}
num_bytes = sendToSocket(conn-&gt;client_sock, target_buf, target_buf_size);
if (num_bytes &lt; 0) break;
if (num_bytes &gt; 0) {
printf(&quot;forward to client: %s (%ld)\n&quot;, target_buf, num_bytes);
// remove the sent bytes...
} 
pfds[REMOTE_POLL].revents = 0;
} else {
// unexpected event result appeared so close the connection
break;
}
}
// all done
close(conn-&gt;client_sock);
close(conn-&gt;target_sock);
printf(&quot;Thread terminating\n&quot;);
}

答案1

得分: 2

SOCKS是一个直通代理。它没有协议概念,只是在隧道建立后转发接收到的字节。

TCP是双向字节流,没有消息/数据包的概念,任何一方都可以随时发送数据,也可以不发送。

不能保证双方会按照您编码的方式协调发送数据。您无法知道会发送多少数据,或者哪一方将发送数据。也许目标会首先发起通信。或者通信甚至可能不是双向的。谁知道呢。

因此,您的逻辑,先从客户端recv(),然后send()到目标,然后从目标recv(),然后send()到客户端,将不起作用。

您需要多路复用套接字操作,例如使用select()epoll(),或使用异步I/O,或为每个连接使用专用线程。无论如何,您可以随时从任何连接中recv(),将接收到的任何数据send()

例如:

ssize_t readFromSocket(int sock, void *buf, size_t size) {
    char *pbuf = (char*) buf;
    ssize_t num_bytes, total = 0;

    while (total < size) {
        num_bytes = recv(sock, &pbuf[total], size-total, 0);
        if (num_bytes <= 0) {
            if ((num_bytes < 0) && ((errno == EAGAIN) || (errno == EWOULDBLOCK))) {
                break;
            }
            return -1;
        }
        total += num_bytes;
    }

    return total;
}

ssize_t sendToSocket(int sock, void *buf, size_t size) {
    char *pbuf = (char*) buf;
    ssize_t num_bytes, ssize_t total = 0;

    while (total < size) {
        num_bytes = send(sock, &pbuf[total], size-total, 0);
        if (num_bytes < 0) {
            if ((errno == EAGAIN) || (errno == EWOULDBLOCK)) {
                break;
            }
            return -1;
        }
        total += num_bytes;
    }

    return total;
}

这段代码描述了从套接字读取和发送数据的功能。

英文:

SOCKS is a straight passthrough proxy. It has no concept of the protocols that pass through its tunnel. Once the tunnel is established, its job is just to forward whatever bytes it receives.

TCP is a bidirectional byte stream, it has no concept of messages/packages, either party can send data at any time, or nothing at all.

There is no guarantee that the parties will send data in a coordinated manner as you have coded for. You won't know how much data will be sent, or which party is going to send data. Maybe the target will initiate communications first. Or maybe the communication might not even be bi-directional at all. Who knows.

So, your logic to recv() from the client first, then send() to the target, then recv() from the target, then send() to the client will simply not work.

You need to multiplex your socket operations, such as with select() or epoll(), or use asynchronous I/O, or use a dedicated thread per connection. Either way, you can recv() from EITHER connection at ANY time, send()'ing along whatever you do happen to receive.

For example:

ssize_t readFromSocket(int sock, void *buf, size_t size) {
char *pbuf = (char*) buf;
ssize_t num_bytes, total = 0;
while (total &lt; size) {
num_bytes = recv(sock, &amp;pbuf[total], size-total, 0);
if (num_bytes &lt;= 0) {
if ((num_bytes &lt; 0) &amp;&amp; ((errno == EAGAIN) || (errno == EWOULDBLOCK))) {
break;
}
return -1;
}
total += num_bytes;
}
return total;
}
ssize_t sendToSocket(int sock, void *buf, size_t size) {
char *pbuf = (char*) buf;
ssize_t num_bytes, ssize_t total = 0;
while (total &lt; size) {
num_bytes = send(sock, &amp;pbuf[total], size-total, 0);
if (num_bytes &lt; 0) {
if ((errno == EAGAIN) || (errno == EWOULDBLOCK)) {
break;
}
return -1;
}
total += num_bytes;
}
return total;
}
void* socks_connection_thread(void* sockets) {
printf(&quot;Thread started\n&quot;);
socks_connection conn = *(socks_connection*) sockets;
uint8_t client_buf[512];
int client_buf_size = 0;
uint8_t target_buf[512];
int target_buf_size = 0;
fd_set rfd, wfd, *prfd, *pwfd;
int res, maxfd;
if (conn.client_sock &gt; conn.target_sock)
maxfd = conn.client_sock;
else
maxfd = conn.target_sock;
++maxfd;
// set the sockets to non-blocking mode...
int opt = 1;
ioctl(conn.client_sock, FIONBIO, &amp;opt);
ioctl(conn.target_sock, FIONBIO, &amp;opt);
while (true) {
FD_ZERO(&amp;rfd);
FD_ZERO(&amp;wfd);
prfd = pwfd = NULL;
// if the client has buffer space, check for more data...
if (client_buf_size &lt; sizeof(client_buf)) {
prfd = &amp;rfd;
FD_SET(conn.client_sock, prfd);
}
// if the target has buffer space, check for more data...
if (target_buf_size &lt; sizeof(target_buf)) {
prfd = &amp;rfd;
FD_SET(conn.target_sock, prfd);
}
// if the client has buffered data, check if the target is writable...
if (client_buf_size &gt; 0) {
pwfd = &amp;wfd;
FD_SET(conn.target_sock, pwfd);
}
// if the target has buffered data, check if the client is writable...
if (target_buf_size &gt; 0) {
pwfd = &amp;wfd;
FD_SET(conn.client_sock, pwfd);
}
// wait for one of the above conditions to be true...
res = select(maxfd, prfd, pwfd, NULL, NULL);
if (res &lt; 0) {
perror(&quot;select&quot;);
break;
}
// does the client have new data?
if (FD_ISSET(conn.client_sock, &amp;rfd)) {
// consume as many bytes as possible...
num_bytes = readFromSocket(conn.client_sock, &amp;client_buf[client_buf_size], sizeof(client_buf)-client_buf_size);
if (num_bytes &lt; 0) break;
if (num_bytes &gt; 0) {
printf(&quot;read from client: %d\n&quot;, num_bytes);
client_buf_size += num_bytes;
// signal pending data for the target...
FD_SET(conn.target_sock, &amp;wfd);
}
}
// does the target have new data?
if (FD_ISSET(conn.target_sock, &amp;rfd)) {
// consume as many bytes as possible...
num_bytes = readFromSocket(conn.target_sock, &amp;target_buf[target_buf_size], sizeof(target_buf)-target_buf_size);
if (num_bytes &lt; 0) break;
if (num_bytes &gt; 0) {
printf(&quot;read from target: %d\n&quot;, num_bytes);
target_buf_size += num_bytes;
// signal pending data for the client...
FD_SET(conn.client_sock, &amp;wfd);
}
}
// send pending data to the client?
if (FD_ISSET(conn.client_sock, &amp;wfd)) {
// send as many bytes as possible...
num_bytes = sendToSocket(conn.client_sock, target_buf, target_buf_size);
if (num_bytes &lt; 0) break;
if (num_bytes &gt; 0) {
printf(&quot;send to client: %d\n&quot;, num_bytes);
// remove the sent bytes...
target_buf_size -= num_bytes;
memmove(target_buf, &amp;target_buf[num_bytes], target_buf_size);
}
}
// send pending data to the target?
if (FD_ISSET(conn.target_sock, &amp;wfd)) {
// send as many bytes as possible...
num_bytes = sendToSocket(conn.target_sock, client_buf, client_buf_size);
if (num_bytes &lt; 0) break;
if (num_bytes &gt; 0) {
printf(&quot;send to target: %d\n&quot;, num_bytes);
// remove the sent bytes...
client_buf_size -= num_bytes;
memmove(client_buf, &amp;client_buf[num_bytes], client_buf_size);
}
}
}
// all done
close(conn.client_sock);
close(conn.target_sock);
return NULL;
}

huangapple
  • 本文由 发表于 2023年4月19日 22:46:46
  • 转载请务必保留本文链接:https://go.coder-hub.com/76055887.html
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定