10

私はvpn用のandroids toyvpnサンプルプロジェクトを編集してきましたが、サンプルアプリ用にこれを入手しました

ここに画像の説明を入力

Android設定を介してvpnを手動で設定すると、パケット受信があるため、コードに何か問題がある/不足していることを知っています。そのため、パケットを受信する方法を探していて、これを機能させる方法がわかりません。

VpnService を拡張する VCLのソース コードを次に示します。

import android.app.PendingIntent;
import android.net.VpnService;
import android.os.ParcelFileDescriptor;
import android.util.Log;

import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.net.InetSocketAddress;
import java.nio.ByteBuffer;
import java.nio.channels.DatagramChannel;

/**
 * Created by Jameshwart Lopez on 8/18/15.
 */
public class VCL extends VpnService {

    private static final String TAG = "VpnClientLibrary";
    private Thread mThread;
    private ParcelFileDescriptor mInterface;

    private String mServerAddress;
    private String mServerPort;
    private PendingIntent mConfigureIntent;
    private String mParameters;

    //a. Configure a builder for the interface.
    Builder builder = new Builder();

    public  void vclRun(){
        try {
            //a. Configure the TUN and get the interface.
            mInterface = builder.setSession("thesessionname")
                    .addAddress("192.168.0.1",24)
                    .addDnsServer("8.8.8.8")
                    .addRoute("0.0.0.0", 0).establish();
            //b. Packets to be sent are queued in this input stream.
            FileInputStream in = new FileInputStream(mInterface.getFileDescriptor());

            //b. Packets received need to be written to this output stream.
            FileOutputStream out = new FileOutputStream(mInterface.getFileDescriptor());

            // Allocate the buffer for a single packet.
            ByteBuffer packet = ByteBuffer.allocate(32767);

            //c. The UDP channel can be used to pass/get ip package to/from server
            DatagramChannel tunnel = DatagramChannel.open();

            // Connect to the server, localhost is used for demonstration only.
            mServerAddress="";//some of the vpn ip address here
            mServerPort="1723";
            InetSocketAddress server = new InetSocketAddress(mServerAddress, Integer.parseInt(mServerPort) );
            tunnel.connect(server);

            // For simplicity, we use the same thread for both reading and
            // writing. Here we put the tunnel into non-blocking mode.
            tunnel.configureBlocking(false);


            // Authenticate and configure the virtual network interface.
            handshake(tunnel);

            //d. Protect this socket, so package send by it will not be feedback to the vpn service.
            protect(tunnel.socket());

            int timer = 0;
            //e. Use a loop to pass packets.
            while (true) {
                //get packet with in
                //put packet to tunnel
                //get packet form tunnel
                //return packet with out
                //sleep is a must

                // Assume that we did not make any progress in this iteration.
                boolean idle = true;

                // Read the outgoing packet from the input stream.
                int length = in.read(packet.array());
                if (length > 0) {
                    // Write the outgoing packet to the tunnel.
                    packet.limit(length);
                    tunnel.write(packet);
                    packet.clear();

                    // There might be more outgoing packets.
                    idle = false;

                    // If we were receiving, switch to sending.
                    if (timer < 1) {
                        timer = 1;
                    }
                }

                // Read the incoming packet from the tunnel.
                length = tunnel.read(packet);
                if (length > 0) {
                    // Ignore control messages, which start with zero.
                    if (packet.get(0) != 0) {
                        // Write the incoming packet to the output stream.
                        out.write(packet.array(), 0, length);
                    }
                    packet.clear();

                    // There might be more incoming packets.
                    idle = false;

                    // If we were sending, switch to receiving.
                    if (timer > 0) {
                        timer = 0;
                    }
                }

                // If we are idle or waiting for the network, sleep for a
                // fraction of time to avoid busy looping.
                if (idle) {
                    Thread.sleep(100);

                    // Increase the timer. This is inaccurate but good enough,
                    // since everything is operated in non-blocking mode.
                    timer += (timer > 0) ? 100 : -100;

                    // We are receiving for a long time but not sending.
                    if (timer < -15000) {
                        // Send empty control messages.
                        packet.put((byte) 0).limit(1);
                        for (int i = 0; i < 3; ++i) {
                            packet.position(0);
                            tunnel.write(packet);
                        }
                        packet.clear();

                        // Switch to sending.
                        timer = 1;
                    }

                    // We are sending for a long time but not receiving.
                    //if (timer > 20000) {
                    //    throw new IllegalStateException("Timed out");
                    //}
                }


            }
        } catch (Exception e) {
            // Catch any exception
            e.printStackTrace();
        } finally {
            try {
                if (mInterface != null) {
                    mInterface.close();
                    mInterface = null;
                }
            } catch (Exception e) {
            }
        }
    }

    private void handshake(DatagramChannel tunnel) throws Exception {
        // To build a secured tunnel, we should perform mutual authentication
        // and exchange session keys for encryption. To keep things simple in
        // this demo, we just send the shared secret in plaintext and wait
        // for the server to send the parameters.
        // Allocate the buffer for handshaking.
        ByteBuffer packet = ByteBuffer.allocate(1024);

        // Control messages always start with zero.
        String password = "";//vpn password here
        packet.put((byte) 0).put(password.getBytes()).flip();

        // Send the secret several times in case of packet loss.
        for (int i = 0; i < 3; ++i) {
            Log.e("packetsdata", packet.toString());
            packet.position(0);
            tunnel.write(packet);
        }
        packet.clear();

        // Wait for the parameters within a limited time.
        for (int i = 0; i < 50; ++i) {
            Thread.sleep(100);

            // Normally we should not receive random packets.
            int length = tunnel.read(packet);
            if (length > 0 && packet.get(0) == 0) {
                configure(new String(packet.array(), 1, length - 1).trim());
                return;
            }
        }
        //throw new IllegalStateException("Timed out");
    }
    private void configure(String parameters) throws Exception {
        // If the old interface has exactly the same parameters, use it!
        if (mInterface != null) {
            Log.i(TAG, "Using the previous interface");
            return;
        }

        // Configure a builder while parsing the parameters.
        Builder builder = new Builder();
        for (String parameter : parameters.split(" ")) {
            String[] fields = parameter.split(",");
            try {
                switch (fields[0].charAt(0)) {
                    case 'm':
                        builder.setMtu(Short.parseShort(fields[1]));
                        break;
                    case 'a':
                        builder.addAddress(fields[1], Integer.parseInt(fields[2]));
                        break;
                    case 'r':
                        builder.addRoute(fields[1], Integer.parseInt(fields[2]));
                        break;
                    case 'd':
                        builder.addDnsServer(fields[1]);
                        break;
                    case 's':
                        builder.addSearchDomain(fields[1]);
                        break;
                }
            } catch (Exception e) {
                throw new IllegalArgumentException("Bad parameter: " + parameter);
            }
        }

        // Close the old interface since the parameters have been changed.
        try {
            mInterface.close();
        } catch (Exception e) {
            // ignore
        }

        // Create a new interface using the builder and save the parameters.
        mInterface = builder.setSession(mServerAddress)
                .setConfigureIntent(mConfigureIntent)
                .establish();
        mParameters = parameters;
        Log.i(TAG, "New interface: " + parameters);
    }
}

これは私が上記のクラスを使用する方法です

private Thread mThread;

    /*
    * Services interface
    * */
    @Override
    public int onStartCommand(Intent intent, int flags, int startId) {
        // Start a new session by creating a new thread.
        mThread = new Thread(this, "VpnRunnable");
        //start the service
        mThread.start();
        /*
         *service is left "started" and will later be restarted by the system
         * http://android-developers.blogspot.com.au/2010/02/service-api-changes-starting-with.html
         */
        return START_STICKY;
    }
    @Override
    public void onDestroy() {

        if (mThread != null) {
            mThread.interrupt();
        }
        super.onDestroy();
    }


    @Override
    public synchronized void run() {
        /*
        * to run the vpn interface call the vclRun method inside VCL class
        * */
       this.vclRun();
    }
4

1 に答える 1

1

まず、Android デバイスに送信されているバイトがあることを確認します。受け取るものがない場合は何も読み取らないためです。

次に、これを見てください。接続が台無しになっている可能性があります。

これをに含める必要がありますonStartCommand

// The handler is only used to show messages.
if (mHandler == null) {
    mHandler = new Handler(this);
}
// Stop the previous session by interrupting the thread.
if (mThread != null) {
    mThread.interrupt();
}
// Extract information from the intent.
String prefix = getPackageName();
mServerAddress = intent.getStringExtra(prefix + ".ADDRESS");
mServerPort = intent.getStringExtra(prefix + ".PORT");
mSharedSecret = intent.getStringExtra(prefix + ".SECRET").getBytes();
// Start a new session by creating a new thread.
mThread = new Thread(this, "ToyVpnThread");
mThread.start();
return START_STICKY;

また、 の詳細 (一部を以下に示します) sychronized void

@Override
public synchronized void run() {
    try {
        Log.i(TAG, "Starting");


        // If anything needs to be obtained using the network, get it now.
        // This greatly reduces the complexity of seamless handover, which
        // tries to recreate the tunnel without shutting down everything.
        // In this demo, all we need to know is the server address.


        InetSocketAddress server = new InetSocketAddress(
                mServerAddress, Integer.parseInt(mServerPort));
        // We try to create the tunnel for several times. The better way
        // is to work with ConnectivityManager, such as trying only when
        // the network is avaiable. Here we just use a counter to keep
        // things simple.
        for (int attempt = 0; attempt < 10; ++attempt) {
            mHandler.sendEmptyMessage(R.string.connecting);
            // Reset the counter if we were connected.

            // See BELOW 
            if (run(server)) { 
                attempt = 0;
            }

            // Sleep for a while. This also checks if we got interrupted.
            Thread.sleep(3000);
        } /..../

スレッド アクションを適切に管理していません。実行を試みる前に、受信する必要があるバイトを受信することをお勧めします。そうしないと、問題が発生する可能性があります。
私はあなたのコードに戻って、あなたが取り出したものを入れます。ここでコードを変更することもお勧めします。

packet.put((byte) 0).put(password.getBytes()).flip();

明示的なエンコーディングを使用してみてください:

packet.put((byte) 0).put(password.getBytes("UTF-8")).flip();

それがないとデータが失われる可能性があるためです。この回答を参照してください:
https://stackoverflow.com/a/7947911/3956566

確認したところ、あなたのプロジェクトは「UTF-8」を使用しています。

これで問題が解決しない場合はお知らせください。

于 2015-09-01T09:34:41.057 に答える