/*
* Copyright (C) 2011 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package de.blinkt.openvpn;import java.io.IOException;
import java.lang.reflect.InvocationTargetException;
import java.lang.reflect.Method;
import java.util.Locale;
import java.util.Vector;
import android.annotation.TargetApi;
import android.app.Notification;
import android.app.NotificationManager;
import android.app.PendingIntent;
import android.content.Context;
import android.content.Intent;
import android.content.IntentFilter;
import android.content.SharedPreferences;
import android.net.ConnectivityManager;
import android.net.LocalServerSocket;
import android.net.LocalSocket;
import android.net.LocalSocketAddress;
import android.net.VpnService;
import android.os.Binder;
import android.os.Build;
import android.os.Handler.Callback;
import android.os.IBinder;
import android.os.Message;
import android.os.ParcelFileDescriptor;
import android.preference.PreferenceManager;
import de.blinkt.openvpn.OpenVPN.ByteCountListener;
import de.blinkt.openvpn.OpenVPN.ConnectionStatus;
import de.blinkt.openvpn.OpenVPN.StateListener;
public class OpenVpnService extends VpnService implements StateListener, Callback, ByteCountListener {
public static final String START_SERVICE = "de.blinkt.openvpn.START_SERVICE";
public static final String START_SERVICE_STICKY = "de.blinkt.openvpn.START_SERVICE_STICKY";
public static final String ALWAYS_SHOW_NOTIFICATION = "de.blinkt.openvpn.NOTIFICATION_ALWAYS_VISIBLE";
private Thread mProcessThread=null;
private Vector<String> mDnslist=new Vector<String>();
private VpnProfile mProfile;
private String mDomain=null;
private Vector<CIDRIP> mRoutes=new Vector<CIDRIP>();
private Vector<String> mRoutesv6=new Vector<String>();
private CIDRIP mLocalIP=null;
private int mMtu;
private String mLocalIPv6=null;
private NetworkSateReceiver mNetworkStateReceiver;
private boolean mDisplayBytecount=false;
private boolean mStarting=false;
private long mConnecttime;
private static final int OPENVPN_STATUS = 1;
public static final int PROTECT_FD = 0;
private static boolean mNotificationalwaysVisible=false;
private final IBinder mBinder = new LocalBinder();
private boolean mOvpn3;
private Thread mSocketManagerThread;
private OpenVPNMangement mManagement;
public class LocalBinder extends Binder {
public OpenVpnService getService() {
// Return this instance of LocalService so clients can call public methods
return OpenVpnService.this;
}
}
@Override
public IBinder onBind(Intent intent) {
String action = intent.getAction();
if( action !=null && action.equals(START_SERVICE))
return mBinder;
else
return super.onBind(intent);
}
@Override
public void onRevoke() {
mManagement.stopVPN();
endVpnService();
}
// Similar to revoke but do not try to stop process
public void processDied() {
endVpnService();
}
private void endVpnService() {
mProcessThread=null;
OpenVPN.logBuilderConfig(null);
OpenVPN.removeByteCountListener(this);
unregisterNetworkStateReceiver();
ProfileManager.setConntectedVpnProfileDisconnected(this);
if(!mStarting) {
stopForeground(!mNotificationalwaysVisible);
if( !mNotificationalwaysVisible) {
stopSelf();
OpenVPN.removeStateListener(this);
}
}
}
private void showNotification(String msg, String tickerText, boolean lowpriority, long when, ConnectionStatus level) {
String ns = Context.NOTIFICATION_SERVICE;
NotificationManager mNotificationManager = (NotificationManager) getSystemService(ns);
int icon = R.drawable.ic_notification_icon;
android.app.Notification.Builder nbuilder = new Notification.Builder(this);
if(mProfile!=null)
nbuilder.setContentTitle(getString(R.string.notifcation_title,mProfile.mName));
else
nbuilder.setContentTitle(getString(R.string.notifcation_title_notconnect));
nbuilder.setContentText(msg);
nbuilder.setOnlyAlertOnce(true);
nbuilder.setOngoing(true);
nbuilder.setContentIntent(getLogPendingIntent());
nbuilder.setSmallIcon(icon,level.level);
if(when !=0)
nbuilder.setWhen(when);
// Try to set the priority available since API 16 (Jellybean)
jbNotificationExtras(lowpriority, nbuilder);
if(tickerText!=null && !tickerText.equals(""))
nbuilder.setTicker(tickerText);
@SuppressWarnings("deprecation")
Notification notification = nbuilder.getNotification();
mNotificationManager.notify(OPENVPN_STATUS, notification);
startForeground(OPENVPN_STATUS, notification);
}
@TargetApi(Build.VERSION_CODES.JELLY_BEAN)
private void jbNotificationExtras(boolean lowpriority,
android.app.Notification.Builder nbuilder) {
try {
if(lowpriority) {
Method setpriority = nbuilder.getClass().getMethod("setPriority", int.class);
// PRIORITY_MIN == -2
setpriority.invoke(nbuilder, -2 );
Method setUsesChronometer = nbuilder.getClass().getMethod("setUsesChronometer", boolean.class);
setUsesChronometer.invoke(nbuilder,true);
/* PendingIntent cancelconnet=null;
nbuilder.addAction(android.R.drawable.ic_menu_close_clear_cancel,
getString(R.string.cancel_connection),cancelconnet); */
}
//ignore exception
} catch (NoSuchMethodException nsm) {
} catch (IllegalArgumentException e) {
} catch (IllegalAccessException e) {
} catch (InvocationTargetException e) {
}
}
PendingIntent getLogPendingIntent() {
// Let the configure Button show the Log
Intent intent = new Intent(getBaseContext(),LogWindow.class);
intent.addFlags(Intent.FLAG_ACTIVITY_REORDER_TO_FRONT);
PendingIntent startLW = PendingIntent.getActivity(getApplicationContext(), 0, intent, 0);
intent.addFlags(Intent.FLAG_ACTIVITY_REORDER_TO_FRONT);
return startLW;
}
private LocalServerSocket openManagmentInterface(int tries) {
// Could take a while to open connection
String socketname = (getCacheDir().getAbsolutePath() + "/" + "mgmtsocket");
// The sock is transfered to the LocalServerSocket, ignore warning
@SuppressWarnings("resource")
LocalSocket sock = new LocalSocket();
while(tries > 0 && !sock.isConnected()) {
try {
sock.bind(new LocalSocketAddress(socketname,
LocalSocketAddress.Namespace.FILESYSTEM));
} catch (IOException e) {
// wait 300 ms before retrying
try { Thread.sleep(300);
} catch (InterruptedException e1) {}
}
tries--;
}
try {
LocalServerSocket lss = new LocalServerSocket(sock.getFileDescriptor());
return lss;
} catch (IOException e) {
e.printStackTrace();
}
return null;
}
void registerNetworkStateReceiver(OpenVPNMangement magnagement) {
// Registers BroadcastReceiver to track network connection changes.
IntentFilter filter = new IntentFilter(ConnectivityManager.CONNECTIVITY_ACTION);
mNetworkStateReceiver = new NetworkSateReceiver(magnagement);
this.registerReceiver(mNetworkStateReceiver, filter);
}
void unregisterNetworkStateReceiver() {
if(mNetworkStateReceiver!=null)
this.unregisterReceiver(mNetworkStateReceiver);
mNetworkStateReceiver=null;
}
@Override
public int onStartCommand(Intent intent, int flags, int startId) {
if(intent != null && intent.getBooleanExtra(ALWAYS_SHOW_NOTIFICATION, false))
mNotificationalwaysVisible=true;
OpenVPN.addStateListener(this);
OpenVPN.addByteCountListener(this);
if(intent != null && intent.getAction() !=null &&intent.getAction().equals(START_SERVICE))
return START_NOT_STICKY;
if(intent != null && intent.getAction() !=null &&intent.getAction().equals(START_SERVICE_STICKY)) {
return START_REDELIVER_INTENT;
}
// Extract information from the intent.
String prefix = getPackageName();
String[] argv = intent.getStringArrayExtra(prefix + ".ARGV");
String nativelibdir = intent.getStringExtra(prefix + ".nativelib");
String profileUUID = intent.getStringExtra(prefix + ".profileUUID");
mProfile = ProfileManager.get(profileUUID);
showNotification("Starting VPN " + mProfile.mName,"Starting VPN " + mProfile.mName,
false,0,ConnectionStatus.LEVEL_CONNECTING_NO_SERVER_REPLY_YET);
// Set a flag that we are starting a new VPN
mStarting=true;
// Stop the previous session by interrupting the thread.
if(mManagement!=null && mManagement.stopVPN())
// an old was asked to exit, wait 1s
try {
Thread.sleep(1000);
} catch (InterruptedException e) {
}
if (mProcessThread!=null) {
mProcessThread.interrupt();
try {
Thread.sleep(1000);
} catch (InterruptedException e) {
}
}
// An old running VPN should now be exited
mStarting=false;
// Open the Management Interface
if(!mOvpn3) {
LocalServerSocket mgmtsocket = openManagmentInterface(8);
if(mgmtsocket!=null) {
// start a Thread that handles incoming messages of the managment socket
OpenVpnManagementThread ovpnmgmthread = new OpenVpnManagementThread(mProfile,mgmtsocket,this);
mSocketManagerThread = new Thread(ovpnmgmthread,"OpenVPNMgmtThread");
mSocketManagerThread.start();
mManagement= ovpnmgmthread;
OpenVPN.logInfo("started Socket Thread");
}
}
// Start a new session by creating a new thread.
SharedPreferences prefs = PreferenceManager.getDefaultSharedPreferences(this);
mOvpn3 = prefs.getBoolean("ovpn3", false);
mOvpn3 = false;
Runnable processThread;
if(mOvpn3) {
OpenVPNMangement mOpenVPN3 = instantiateOpenVPN3Core();
processThread = (Runnable) mOpenVPN3;
mManagement = mOpenVPN3;
} else {
processThread = new OpenVPNThread(this, argv,nativelibdir);
}
mProcessThread = new Thread(processThread, "OpenVPNProcessThread");
mProcessThread.start();
registerNetworkStateReceiver(mManagement);
ProfileManager.setConnectedVpnProfile(this, mProfile);
return START_NOT_STICKY;
}
private OpenVPNMangement instantiateOpenVPN3Core() {
return null;
}
@Override
public void onDestroy() {
if (mProcessThread != null) {
mManagement.stopVPN();
mProcessThread.interrupt();
}
if (mNetworkStateReceiver!= null) {
this.unregisterReceiver(mNetworkStateReceiver);
}
// Just in case unregister for state
OpenVPN.removeStateListener(this);
}
public ParcelFileDescriptor openTun() {
Builder builder = new Builder();
if(mLocalIP==null && mLocalIPv6==null) {
OpenVPN.logMessage(0, "", getString(R.string.opentun_no_ipaddr));
return null;
}
if(mLocalIP!=null) {
builder.addAddress(mLocalIP.mIp, mLocalIP.len);
}
if(mLocalIPv6!=null) {
String[] ipv6parts = mLocalIPv6.split("/");
builder.addAddress(ipv6parts[0],Integer.parseInt(ipv6parts[1]));
}
for (String dns : mDnslist ) {
try {
builder.addDnsServer(dns);
} catch (IllegalArgumentException iae) {
OpenVPN.logError(R.string.dns_add_error, dns,iae.getLocalizedMessage());
}
}
builder.setMtu(mMtu);
for (CIDRIP route:mRoutes) {
try {
builder.addRoute(route.mIp, route.len);
} catch (IllegalArgumentException ia) {
OpenVPN.logMessage(0, "", getString(R.string.route_rejected) + route + " " + ia.getLocalizedMessage());
}
}
for(String v6route:mRoutesv6) {
try {
String[] v6parts = v6route.split("/");
builder.addRoute(v6parts[0],Integer.parseInt(v6parts[1]));
} catch (IllegalArgumentException ia) {
OpenVPN.logMessage(0, "", getString(R.string.route_rejected) + v6route + " " + ia.getLocalizedMessage());
}
}
if(mDomain!=null)
builder.addSearchDomain(mDomain);
String bconfig[] = new String[6];
bconfig[0]= getString(R.string.last_openvpn_tun_config);
bconfig[1] = getString(R.string.local_ip_info,mLocalIP.mIp,mLocalIP.len,mLocalIPv6, mMtu);
bconfig[2] = getString(R.string.dns_server_info, joinString(mDnslist));
bconfig[3] = getString(R.string.dns_domain_info, mDomain);
bconfig[4] = getString(R.string.routes_info, joinString(mRoutes));
bconfig[5] = getString(R.string.routes_info6, joinString(mRoutesv6));
String session = mProfile.mName;
if(mLocalIP!=null && mLocalIPv6!=null)
session = getString(R.string.session_ipv6string,session, mLocalIP, mLocalIPv6);
else if (mLocalIP !=null)
session= getString(R.string.session_ipv4string, session, mLocalIP);
builder.setSession(session);
OpenVPN.logBuilderConfig(bconfig);
// No DNS Server, log a warning
if(mDnslist.size()==0)
OpenVPN.logInfo(R.string.warn_no_dns);
// Reset information
mDnslist.clear();
mRoutes.clear();
mRoutesv6.clear();
mLocalIP=null;
mLocalIPv6=null;
mDomain=null;
builder.setConfigureIntent(getLogPendingIntent());
try {
ParcelFileDescriptor pfd = builder.establish();
return pfd;
} catch (Exception e) {
OpenVPN.logMessage(0, "", getString(R.string.tun_open_error));
OpenVPN.logMessage(0, "", getString(R.string.error) + e.getLocalizedMessage());
OpenVPN.logMessage(0, "", getString(R.string.tun_error_helpful));
return null;
}
}
// Ugly, but java has no such method
private <T> String joinString(Vector<T> vec) {
String ret = "";
if(vec.size() > 0){
ret = vec.get(0).toString();
for(int i=1;i < vec.size();i++) {
ret = ret + ", " + vec.get(i).toString();
}
}
return ret;
}
public void addDNS(String dns) {
mDnslist.add(dns);
}
public void setDomain(String domain) {
if(mDomain==null) {
mDomain=domain;
}
}
public void addRoute(CIDRIP route)
{
mRoutes.add(route );
}
public void addRoute(String dest, String mask) {
CIDRIP route = new CIDRIP(dest, mask);
if(route.len == 32 && !mask.equals("255.255.255.255")) {
OpenVPN.logMessage(0, "", getString(R.string.route_not_cidr,dest,mask));
}
if(route.normalise())
OpenVPN.logMessage(0, "", getString(R.string.route_not_netip,dest,route.len,route.mIp));
mRoutes.add(route);
}
public void addRoutev6(String extra) {
mRoutesv6.add(extra);
}
public void setMtu(int mtu) {
mMtu=mtu;
}
public void setLocalIP(CIDRIP cdrip)
{
mLocalIP=cdrip;
}
public void setLocalIP(String local, String netmask,int mtu, String mode) {
mLocalIP = new CIDRIP(local, netmask);
mMtu = mtu;
if(mLocalIP.len == 32 && !netmask.equals("255.255.255.255")) {
// get the netmask as IP
long netint = CIDRIP.getInt(netmask);
if(Math.abs(netint - mLocalIP.getInt()) ==1) {
if("net30".equals(mode))
mLocalIP.len=30;
else
mLocalIP.len=31;
} else {
OpenVPN.logMessage(0, "", getString(R.string.ip_not_cidr, local,netmask,mode));
}
}
}
public void setLocalIPv6(String ipv6addr) {
mLocalIPv6 = ipv6addr;
}
@Override
public void updateState(String state,String logmessage, int resid, ConnectionStatus level) {
// If the process is not running, ignore any state,
// Notification should be invisible in this state
if(mProcessThread==null && !mNotificationalwaysVisible)
return;
// Display byte count only after being connected
{
if(level == ConnectionStatus.LEVEL_CONNECTED) {
mDisplayBytecount = true;
mConnecttime = System.currentTimeMillis();
} else {
mDisplayBytecount = false;
}
// Other notifications are shown,
// This also mean we are no longer connected, ignore bytecount messages until next
// CONNECTED
String ticker = getString(resid);
showNotification(getString(resid) +" " + logmessage,ticker,false,0, level);
}
}
@Override
public void updateByteCount(long in, long out, long diffin, long diffout) {
if(mDisplayBytecount) {
String netstat = String.format(getString(R.string.statusline_bytecount),
humanReadableByteCount(in, false),
humanReadableByteCount(diffin/OpenVPNMangement.mBytecountinterval, true),
humanReadableByteCount(out, false),
humanReadableByteCount(diffout/OpenVPNMangement.mBytecountinterval, true));
boolean lowpriority = !mNotificationalwaysVisible;
showNotification(netstat,null,lowpriority,mConnecttime, ConnectionStatus.LEVEL_CONNECTED);
}
}
// From: http://stackoverflow.com/questions/3758606/how-to-convert-byte-size-into-human-readable-format-in-java
public static String humanReadableByteCount(long bytes, boolean mbit) {
if(mbit)
bytes = bytes *8;
int unit = mbit ? 1000 : 1024;
if (bytes < unit)
return bytes + (mbit ? " bit" : " B");
int exp = (int) (Math.log(bytes) / Math.log(unit));
String pre = (mbit ? "kMGTPE" : "KMGTPE").charAt(exp-1) + (mbit ? "" : "");
if(mbit)
return String.format(Locale.getDefault(),"%.1f %sbit", bytes / Math.pow(unit, exp), pre);
else
return String.format(Locale.getDefault(),"%.1f %sB", bytes / Math.pow(unit, exp), pre);
}
@Override
public boolean handleMessage(Message msg) {
Runnable r = msg.getCallback();
if(r!=null){
r.run();
return true;
} else {
return false;
}
}
public OpenVPNMangement getManagement() {
return mManagement;
}
}