Cloak/cmd/ck-client/ck-client.go

// +build go1.11

package main

import (
	"encoding/base64"
	"encoding/binary"
	"flag"
	"fmt"
	"github.com/cbeuw/Cloak/internal/common"
	"net"
	"os"

	"github.com/cbeuw/Cloak/internal/client"
	mux "github.com/cbeuw/Cloak/internal/multiplex"
	log "github.com/sirupsen/logrus"
)

var version string

func main() {
	// Should be 127.0.0.1 to listen to a proxy client on this machine
	var localHost string
	// port used by proxy clients to communicate with cloak client
	var localPort string
	// The ip of the proxy server
	var remoteHost string
	// The proxy port,should be 443
	var remotePort string
	var proxyMethod string
	var udp bool
	var config string
	var b64AdminUID string
	var vpnMode bool
	var tcpFastOpen bool

	log_init()

	ssPluginMode := os.Getenv("SS_LOCAL_HOST") != ""

	verbosity := flag.String("verbosity", "info", "verbosity level")
	if ssPluginMode {
		config = os.Getenv("SS_PLUGIN_OPTIONS")
		flag.BoolVar(&vpnMode, "V", false, "ignored.")
		flag.BoolVar(&tcpFastOpen, "fast-open", false, "ignored.")
		flag.Parse() // for verbosity only
	} else {
		flag.StringVar(&localHost, "i", "127.0.0.1", "localHost: Cloak listens to proxy clients on this ip")
		flag.StringVar(&localPort, "l", "1984", "localPort: Cloak listens to proxy clients on this port")
		flag.StringVar(&remoteHost, "s", "", "remoteHost: IP of your proxy server")
		flag.StringVar(&remotePort, "p", "443", "remotePort: proxy port, should be 443")
		flag.BoolVar(&udp, "u", false, "udp: set this flag if the underlying proxy is using UDP protocol")
		flag.StringVar(&config, "c", "ckclient.json", "config: path to the configuration file or options separated with semicolons")
		flag.StringVar(&proxyMethod, "proxy", "", "proxy: the proxy method's name. It must match exactly with the corresponding entry in server's ProxyBook")
		flag.StringVar(&b64AdminUID, "a", "", "adminUID: enter the adminUID to serve the admin api")
		askVersion := flag.Bool("v", false, "Print the version number")
		printUsage := flag.Bool("h", false, "Print this message")

		// commandline arguments overrides json

		flag.Parse()

		if *askVersion {
			fmt.Printf("ck-client %s", version)
			return
		}

		if *printUsage {
			flag.Usage()
			return
		}

		log.Info("Starting standalone mode")
	}

	lvl, err := log.ParseLevel(*verbosity)
	if err != nil {
		log.Fatal(err)
	}
	log.SetLevel(lvl)

	rawConfig, err := client.ParseConfig(config)
	if err != nil {
		log.Fatal(err)
	}

	if ssPluginMode {
		if rawConfig.ProxyMethod == "" {
			rawConfig.ProxyMethod = "shadowsocks"
		}
		// json takes precedence over environment variables
		// i.e. if json field isn't empty, use that
		if rawConfig.RemoteHost == "" {
			rawConfig.RemoteHost = os.Getenv("SS_REMOTE_HOST")
		}
		if rawConfig.RemotePort == "" {
			rawConfig.RemotePort = os.Getenv("SS_REMOTE_PORT")
		}
		if rawConfig.LocalHost == "" {
			rawConfig.LocalHost = os.Getenv("SS_LOCAL_HOST")
		}
		if rawConfig.LocalPort == "" {
			rawConfig.LocalPort = os.Getenv("SS_LOCAL_PORT")
		}
	} else {
		// commandline argument takes precedence over json
		// if commandline argument is set, use commandline
		flag.Visit(func(f *flag.Flag) {
			// manually set ones
			switch f.Name {
			case "i":
				rawConfig.LocalHost = localHost
			case "l":
				rawConfig.LocalPort = localPort
			case "s":
				rawConfig.RemoteHost = remoteHost
			case "p":
				rawConfig.RemotePort = remotePort
			case "u":
				rawConfig.UDP = udp
			case "proxy":
				rawConfig.ProxyMethod = proxyMethod
			}
		})
		// ones with default values
		if rawConfig.LocalHost == "" {
			rawConfig.LocalHost = localHost
		}
		if rawConfig.LocalPort == "" {
			rawConfig.LocalPort = localPort
		}
		if rawConfig.RemotePort == "" {
			rawConfig.RemotePort = remotePort
		}
	}

	localConfig, remoteConfig, authInfo, err := rawConfig.ProcessRawConfig(common.RealWorldState)
	if err != nil {
		log.Fatal(err)
	}

	var adminUID []byte
	if b64AdminUID != "" {
		adminUID, err = base64.StdEncoding.DecodeString(b64AdminUID)
		if err != nil {
			log.Fatal(err)
		}
	}

	var seshMaker func() *mux.Session

	d := &net.Dialer{Control: protector, KeepAlive: remoteConfig.KeepAlive}

	if adminUID != nil {
		log.Infof("API base is %v", localConfig.LocalAddr)
		authInfo.UID = adminUID
		authInfo.SessionId = 0
		remoteConfig.NumConn = 1

		seshMaker = func() *mux.Session {
			return client.MakeSession(remoteConfig, authInfo, d)
		}
	} else {
		var network string
		if authInfo.Unordered {
			network = "UDP"
		} else {
			network = "TCP"
		}
		log.Infof("Listening on %v %v for %v client", network, localConfig.LocalAddr, authInfo.ProxyMethod)
		seshMaker = func() *mux.Session {
			authInfo := authInfo // copy the struct because we are overwriting SessionId
			// sessionID is usergenerated. There shouldn't be a security concern because the scope of
			// sessionID is limited to its UID.
			quad := make([]byte, 4)
			common.RandRead(authInfo.WorldState.Rand, quad)
			authInfo.SessionId = binary.BigEndian.Uint32(quad)
			return client.MakeSession(remoteConfig, authInfo, d)
		}
	}

	if authInfo.Unordered {
		acceptor := func() (*net.UDPConn, error) {
			udpAddr, _ := net.ResolveUDPAddr("udp", localConfig.LocalAddr)
			return net.ListenUDP("udp", udpAddr)
		}

		client.RouteUDP(acceptor, localConfig.Timeout, remoteConfig.Singleplex, seshMaker)
	} else {
		listener, err := net.Listen("tcp", localConfig.LocalAddr)
		if err != nil {
			log.Fatal(err)
		}
		client.RouteTCP(listener, localConfig.Timeout, remoteConfig.Singleplex, seshMaker)
	}
}
Untested client 2018-10-07 17:09:45 +00:00			`// +build go1.11`

			`package main`

			`import (`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`"encoding/base64"`
MakeSession no longer needs to know if the Session should be admin 2020-10-15 22:02:51 +00:00			`"encoding/binary"`
Untested client 2018-10-07 17:09:45 +00:00			`"flag"`
			`"fmt"`
Purge impurity 2020-04-09 21:11:12 +00:00			`"github.com/cbeuw/Cloak/internal/common"`
Refactor out Dialer 2020-04-08 23:34:02 +00:00			`"net"`
Fix incorrect config field name for remote port in plugin mode 2020-04-07 06:05:44 +00:00			`"os"`

Untested client 2018-10-07 17:09:45 +00:00			`"github.com/cbeuw/Cloak/internal/client"`
			`mux "github.com/cbeuw/Cloak/internal/multiplex"`
Improve logging 2019-08-02 14:45:33 +00:00			`log "github.com/sirupsen/logrus"`
Untested client 2018-10-07 17:09:45 +00:00			`)`

			`var version string`

			`func main() {`
Cloak 2: generalising cloak as a universal pluggable transport for arbitary proxies 2019-06-09 06:10:22 +00:00			`// Should be 127.0.0.1 to listen to a proxy client on this machine`
Untested client 2018-10-07 17:09:45 +00:00			`var localHost string`
Cloak 2: generalising cloak as a universal pluggable transport for arbitary proxies 2019-06-09 06:10:22 +00:00			`// port used by proxy clients to communicate with cloak client`
Untested client 2018-10-07 17:09:45 +00:00			`var localPort string`
			`// The ip of the proxy server`
			`var remoteHost string`
			`// The proxy port,should be 443`
			`var remotePort string`
Allow ProxyMethod to be set as command line argument 2019-08-30 21:45:42 +00:00			`var proxyMethod string`
Experimental support for UDP 2019-08-14 09:04:27 +00:00			`var udp bool`
Cloak 2: generalising cloak as a universal pluggable transport for arbitary proxies 2019-06-09 06:10:22 +00:00			`var config string`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`var b64AdminUID string`
Accept and ignore 2 parameters passed by shadowsocks-android in shadowsocks plugin mode. (#115) 2020-05-27 00:06:30 +00:00			`var vpnMode bool`
			`var tcpFastOpen bool`
Basic remote control 2018-11-22 21:55:23 +00:00
Untested client 2018-10-07 17:09:45 +00:00			`log_init()`

Refactor client config 2020-04-06 12:07:16 +00:00			`ssPluginMode := os.Getenv("SS_LOCAL_HOST") != ""`

Refactor verbosity flag parsing 2020-04-04 14:29:06 +00:00			`verbosity := flag.String("verbosity", "info", "verbosity level")`
Refactor client config 2020-04-06 12:07:16 +00:00			`if ssPluginMode {`
Cloak 2: generalising cloak as a universal pluggable transport for arbitary proxies 2019-06-09 06:10:22 +00:00			`config = os.Getenv("SS_PLUGIN_OPTIONS")`
Accept and ignore 2 parameters passed by shadowsocks-android in shadowsocks plugin mode. (#115) 2020-05-27 00:06:30 +00:00			`flag.BoolVar(&vpnMode, "V", false, "ignored.")`
			`flag.BoolVar(&tcpFastOpen, "fast-open", false, "ignored.")`
Refactor verbosity flag parsing 2020-04-04 14:29:06 +00:00			`flag.Parse() // for verbosity only`
Untested client 2018-10-07 17:09:45 +00:00			`} else {`
Add verbosity arguments 2019-08-09 21:51:17 +00:00			`flag.StringVar(&localHost, "i", "127.0.0.1", "localHost: Cloak listens to proxy clients on this ip")`
Add default client listening port 2019-07-31 18:27:05 +00:00			`flag.StringVar(&localPort, "l", "1984", "localPort: Cloak listens to proxy clients on this port")`
Untested client 2018-10-07 17:09:45 +00:00			`flag.StringVar(&remoteHost, "s", "", "remoteHost: IP of your proxy server")`
			`flag.StringVar(&remotePort, "p", "443", "remotePort: proxy port, should be 443")`
Experimental support for UDP 2019-08-14 09:04:27 +00:00			`flag.BoolVar(&udp, "u", false, "udp: set this flag if the underlying proxy is using UDP protocol")`
Linting 2020-08-17 16:56:05 +00:00			`flag.StringVar(&config, "c", "ckclient.json", "config: path to the configuration file or options separated with semicolons")`
Allow ProxyMethod to be set as command line argument 2019-08-30 21:45:42 +00:00			`flag.StringVar(&proxyMethod, "proxy", "", "proxy: the proxy method's name. It must match exactly with the corresponding entry in server's ProxyBook")`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`flag.StringVar(&b64AdminUID, "a", "", "adminUID: enter the adminUID to serve the admin api")`
Untested client 2018-10-07 17:09:45 +00:00			`askVersion := flag.Bool("v", false, "Print the version number")`
			`printUsage := flag.Bool("h", false, "Print this message")`
Refactor client config 2020-04-06 12:07:16 +00:00
			`// commandline arguments overrides json`

Untested client 2018-10-07 17:09:45 +00:00			`flag.Parse()`

			`if *askVersion {`
Improve logging 2019-08-02 14:45:33 +00:00			`fmt.Printf("ck-client %s", version)`
Untested client 2018-10-07 17:09:45 +00:00			`return`
			`}`

			`if *printUsage {`
			`flag.Usage()`
			`return`
			`}`

Improve logging 2019-08-02 14:45:33 +00:00			`log.Info("Starting standalone mode")`
Untested client 2018-10-07 17:09:45 +00:00			`}`

Refactor verbosity flag parsing 2020-04-04 14:29:06 +00:00			`lvl, err := log.ParseLevel(*verbosity)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
			`log.SetLevel(lvl)`

Refactor client config 2020-04-06 12:07:16 +00:00			`rawConfig, err := client.ParseConfig(config)`
Untested client 2018-10-07 17:09:45 +00:00			`if err != nil {`
			`log.Fatal(err)`
			`}`

Refactor client config 2020-04-06 12:07:16 +00:00			`if ssPluginMode {`
Respect user choice of ProxyMethod in shadowsocks plugin mode. 2020-12-07 20:28:03 +00:00			`if rawConfig.ProxyMethod == "" {`
			`rawConfig.ProxyMethod = "shadowsocks"`
			`}`
Refactor client config 2020-04-06 12:07:16 +00:00			`// json takes precedence over environment variables`
			`// i.e. if json field isn't empty, use that`
			`if rawConfig.RemoteHost == "" {`
			`rawConfig.RemoteHost = os.Getenv("SS_REMOTE_HOST")`
			`}`
			`if rawConfig.RemotePort == "" {`
Fix incorrect config field name for remote port in plugin mode 2020-04-07 06:05:44 +00:00			`rawConfig.RemotePort = os.Getenv("SS_REMOTE_PORT")`
Refactor client config 2020-04-06 12:07:16 +00:00			`}`
			`if rawConfig.LocalHost == "" {`
			`rawConfig.LocalHost = os.Getenv("SS_LOCAL_HOST")`
			`}`
			`if rawConfig.LocalPort == "" {`
			`rawConfig.LocalPort = os.Getenv("SS_LOCAL_PORT")`
			`}`
			`} else {`
			`// commandline argument takes precedence over json`
			`// if commandline argument is set, use commandline`
			`flag.Visit(func(f *flag.Flag) {`
			`// manually set ones`
			`switch f.Name {`
			`case "i":`
			`rawConfig.LocalHost = localHost`
			`case "l":`
			`rawConfig.LocalPort = localPort`
			`case "s":`
			`rawConfig.RemoteHost = remoteHost`
			`case "p":`
			`rawConfig.RemotePort = remotePort`
Allow UDP option to be set in both commandline and json 2020-04-06 12:11:19 +00:00			`case "u":`
			`rawConfig.UDP = udp`
Refactor client config 2020-04-06 12:07:16 +00:00			`case "proxy":`
			`rawConfig.ProxyMethod = proxyMethod`
			`}`
			`})`
			`// ones with default values`
			`if rawConfig.LocalHost == "" {`
			`rawConfig.LocalHost = localHost`
			`}`
			`if rawConfig.LocalPort == "" {`
			`rawConfig.LocalPort = localPort`
			`}`
			`if rawConfig.RemotePort == "" {`
			`rawConfig.RemotePort = remotePort`
			`}`
Set ProxyMethod to shadowsocks automatically if started as a shadowsocks plugin 2019-06-16 13:59:49 +00:00			`}`

Rename SplitConfigs to ProcessRawConfig to better reflect its behaviour 2020-10-15 21:51:59 +00:00			`localConfig, remoteConfig, authInfo, err := rawConfig.ProcessRawConfig(common.RealWorldState)`
Refactor client config 2020-04-06 12:07:16 +00:00			`if err != nil {`
			`log.Fatal(err)`
Untested client 2018-10-07 17:09:45 +00:00			`}`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00
			`var adminUID []byte`
			`if b64AdminUID != "" {`
			`adminUID, err = base64.StdEncoding.DecodeString(b64AdminUID)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
			`}`

Refactor client config 2020-04-06 12:07:16 +00:00			`var seshMaker func() *mux.Session`

Refactor out Dialer 2020-04-08 23:34:02 +00:00			`d := &net.Dialer{Control: protector, KeepAlive: remoteConfig.KeepAlive}`

Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`if adminUID != nil {`
Refactor client config 2020-04-06 12:07:16 +00:00			`log.Infof("API base is %v", localConfig.LocalAddr)`
			`authInfo.UID = adminUID`
MakeSession no longer needs to know if the Session should be admin 2020-10-15 22:02:51 +00:00			`authInfo.SessionId = 0`
Refactor client config 2020-04-06 12:07:16 +00:00			`remoteConfig.NumConn = 1`

			`seshMaker = func() *mux.Session {`
MakeSession no longer needs to know if the Session should be admin 2020-10-15 22:02:51 +00:00			`return client.MakeSession(remoteConfig, authInfo, d)`
Refactor client config 2020-04-06 12:07:16 +00:00			`}`
Improve logging 2019-08-02 14:45:33 +00:00			`} else {`
Refactor routing 2019-08-14 10:46:33 +00:00			`var network string`
Allow UDP option to be set in both commandline and json 2020-04-06 12:11:19 +00:00			`if authInfo.Unordered {`
Move Unordered field around 2019-08-16 22:20:24 +00:00			`network = "UDP"`
Refactor routing 2019-08-14 10:46:33 +00:00			`} else {`
Move Unordered field around 2019-08-16 22:20:24 +00:00			`network = "TCP"`
Refactor client config 2020-04-06 12:07:16 +00:00			`}`
			`log.Infof("Listening on %v %v for %v client", network, localConfig.LocalAddr, authInfo.ProxyMethod)`
			`seshMaker = func() *mux.Session {`
Fix critical bugs in session opening for TCP and UDP in case of Singleplex mode. (#145) * Fix critical bugs in session opening for TCP and UDP in case of Singleplex mode. - In case of TCP, don't open the session in the listener accept thread. This causes resource exhaustion of the tcp listener backlog queue in case of internet connection disruption or timeout. - In case of UDP, don't create a new session for every UDP packet. * Fix race in integration test. * Fix race condition in session maker * Code style improvements * Explicit session.Close() call is indeed needed Co-authored-by: Andy Wang <cbeuw.andy@gmail.com> 2020-12-19 14:42:10 +00:00			`authInfo := authInfo // copy the struct because we are overwriting SessionId`
MakeSession no longer needs to know if the Session should be admin 2020-10-15 22:02:51 +00:00			`// sessionID is usergenerated. There shouldn't be a security concern because the scope of`
			`// sessionID is limited to its UID.`
			`quad := make([]byte, 4)`
			`common.RandRead(authInfo.WorldState.Rand, quad)`
			`authInfo.SessionId = binary.BigEndian.Uint32(quad)`
			`return client.MakeSession(remoteConfig, authInfo, d)`
Refactor routing 2019-08-14 10:46:33 +00:00			`}`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`}`

Allow UDP option to be set in both commandline and json 2020-04-06 12:11:19 +00:00			`if authInfo.Unordered {`
Acceptor function 2020-05-23 21:25:17 +00:00			`acceptor := func() (*net.UDPConn, error) {`
			`udpAddr, _ := net.ResolveUDPAddr("udp", localConfig.LocalAddr)`
			`return net.ListenUDP("udp", udpAddr)`
			`}`

Fix critical bugs in session opening for TCP and UDP in case of Singleplex mode. (#145) * Fix critical bugs in session opening for TCP and UDP in case of Singleplex mode. - In case of TCP, don't open the session in the listener accept thread. This causes resource exhaustion of the tcp listener backlog queue in case of internet connection disruption or timeout. - In case of UDP, don't create a new session for every UDP packet. * Fix race in integration test. * Fix race condition in session maker * Code style improvements * Explicit session.Close() call is indeed needed Co-authored-by: Andy Wang <cbeuw.andy@gmail.com> 2020-12-19 14:42:10 +00:00			`client.RouteUDP(acceptor, localConfig.Timeout, remoteConfig.Singleplex, seshMaker)`
Experimental support for UDP 2019-08-14 09:04:27 +00:00			`} else {`
Refactor for easier testing 2020-04-10 10:07:38 +00:00			`listener, err := net.Listen("tcp", localConfig.LocalAddr)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
Fix critical bugs in session opening for TCP and UDP in case of Singleplex mode. (#145) * Fix critical bugs in session opening for TCP and UDP in case of Singleplex mode. - In case of TCP, don't open the session in the listener accept thread. This causes resource exhaustion of the tcp listener backlog queue in case of internet connection disruption or timeout. - In case of UDP, don't create a new session for every UDP packet. * Fix race in integration test. * Fix race condition in session maker * Code style improvements * Explicit session.Close() call is indeed needed Co-authored-by: Andy Wang <cbeuw.andy@gmail.com> 2020-12-19 14:42:10 +00:00			`client.RouteTCP(listener, localConfig.Timeout, remoteConfig.Singleplex, seshMaker)`
Untested client 2018-10-07 17:09:45 +00:00			`}`
			`}`