1
0
mirror of https://github.com/yarrick/iodine.git synced 2024-11-23 05:26:07 +03:00
iodine/src/iodined.c

600 lines
14 KiB
C
Raw Normal View History

2006-06-05 22:47:09 +04:00
/*
2007-03-21 03:00:27 +03:00
* Copyright (c) 2006-2007 Bjorn Andersson <flex@kryo.se>, Erik Ekman <yarrick@kryo.se>
2006-06-05 22:47:09 +04:00
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
#include <stdio.h>
#include <stdint.h>
#include <stdlib.h>
#include <string.h>
#include <signal.h>
#include <unistd.h>
#include <sys/types.h>
2007-06-17 15:46:05 +04:00
#include <sys/time.h>
2006-06-11 23:54:38 +04:00
#include <sys/socket.h>
2006-06-06 02:36:05 +04:00
#include <fcntl.h>
2006-06-05 22:47:09 +04:00
#include <err.h>
2006-11-19 03:41:42 +03:00
#include <time.h>
#include <pwd.h>
2006-06-06 04:17:28 +04:00
#include <arpa/inet.h>
2006-06-24 14:17:16 +04:00
#include <netinet/in.h>
2007-02-11 13:47:31 +03:00
#include <netinet/in_systm.h>
#include <netinet/ip.h>
2006-06-06 21:59:24 +04:00
#include <zlib.h>
2006-06-05 22:47:09 +04:00
#include "common.h"
2006-06-05 22:47:09 +04:00
#include "dns.h"
2007-06-09 20:18:59 +04:00
#include "encoding.h"
#include "base32.h"
2007-02-11 14:21:18 +03:00
#include "user.h"
2006-11-18 19:08:47 +03:00
#include "login.h"
#include "tun.h"
2006-11-18 19:08:47 +03:00
#include "version.h"
2006-06-05 22:47:09 +04:00
int running = 1;
char *topdomain;
2006-11-18 19:08:47 +03:00
char password[33];
2007-06-09 20:18:59 +04:00
struct encoder *b32;
int my_mtu;
in_addr_t my_ip;
static int read_dns(int, struct query *, char *, int);
static void write_dns(int, struct query *, char *, int);
2006-06-05 22:47:09 +04:00
static void
2007-02-04 20:00:20 +03:00
sigint(int sig)
{
2006-06-05 22:47:09 +04:00
running = 0;
}
static int
2007-02-04 20:00:20 +03:00
tunnel_tun(int tun_fd, int dns_fd)
{
unsigned long outlen;
2007-02-11 13:42:57 +03:00
struct ip *header;
2007-02-04 20:00:20 +03:00
char out[64*1024];
char in[64*1024];
int userid;
2007-02-04 20:00:20 +03:00
int read;
if ((read = read_tun(tun_fd, in, sizeof(in))) <= 0)
return 0;
/* find target ip in packet, in is padded with 4 bytes TUN header */
2007-02-11 13:42:57 +03:00
header = (struct ip*) (in + 4);
userid = find_user_by_ip(header->ip_dst.s_addr);
if (userid < 0)
return 0;
2007-02-04 20:00:20 +03:00
outlen = sizeof(out);
compress2((uint8_t*)out, &outlen, (uint8_t*)in, read, 9);
2007-02-04 20:00:20 +03:00
/* if another packet is queued, throw away this one. TODO build queue */
if (users[userid].outpacket.len == 0) {
memcpy(users[userid].outpacket.data, out, outlen);
users[userid].outpacket.len = outlen;
return outlen;
} else {
return 0;
}
2007-02-04 20:00:20 +03:00
}
typedef enum {
VERSION_ACK,
VERSION_NACK,
VERSION_FULL
} version_ack_t;
static void
send_version_response(int fd, version_ack_t ack, uint32_t payload, struct user *u)
{
char out[9];
switch (ack) {
case VERSION_ACK:
strncpy(out, "VACK", sizeof(out));
break;
case VERSION_NACK:
strncpy(out, "VNAK", sizeof(out));
break;
case VERSION_FULL:
strncpy(out, "VFUL", sizeof(out));
break;
}
out[4] = ((payload >> 24) & 0xff);
out[5] = ((payload >> 16) & 0xff);
out[6] = ((payload >> 8) & 0xff);
out[7] = ((payload) & 0xff);
out[8] = u->id;
write_dns(fd, &u->q, out, sizeof(out));
}
static int
cmp_remote_ip(int userid, struct query *q) {
struct sockaddr_in *tempin;
tempin = (struct sockaddr_in *) &(q->from);
return memcmp(&(users[userid].host), &(tempin->sin_addr), sizeof(struct in_addr));
}
2007-02-04 20:00:20 +03:00
static int
tunnel_dns(int tun_fd, int dns_fd)
2006-06-05 22:47:09 +04:00
{
struct in_addr tempip;
struct sockaddr_in *tempin;
2007-02-11 04:30:41 +03:00
struct user dummy;
struct ip *hdr;
unsigned long outlen;
2007-02-06 19:01:09 +03:00
char logindata[16];
2006-08-25 01:23:29 +04:00
char out[64*1024];
char in[64*1024];
2007-06-09 20:18:59 +04:00
char unpacked[64*1024];
2006-08-25 01:23:29 +04:00
char *tmp[2];
int userid;
int touser;
int version;
2006-08-25 01:23:29 +04:00
int read;
int code;
2007-02-04 20:00:20 +03:00
userid = -1;
2007-02-11 04:30:41 +03:00
if ((read = read_dns(dns_fd, &(dummy.q), in, sizeof(in))) <= 0)
2007-02-04 20:00:20 +03:00
return 0;
if(in[0] == 'V' || in[0] == 'v') {
2007-06-09 20:18:59 +04:00
read = unpack_data(unpacked, sizeof(unpacked), &(in[1]), read - 1, b32);
2007-02-04 20:00:20 +03:00
/* Version greeting, compare and send ack/nak */
if (read > 4) {
2007-02-04 20:00:20 +03:00
/* Received V + 32bits version */
2007-06-09 20:18:59 +04:00
version = (((unpacked[0] & 0xff) << 24) |
((unpacked[1] & 0xff) << 16) |
((unpacked[2] & 0xff) << 8) |
((unpacked[3] & 0xff)));
2007-02-04 20:00:20 +03:00
if (version == VERSION) {
userid = find_available_user();
if (userid >= 0) {
users[userid].seed = rand();
/* Store remote IP number */
tempin = (struct sockaddr_in *) &(dummy.q.from);
memcpy(&(users[userid].host), &(tempin->sin_addr), sizeof(struct in_addr));
2007-02-11 04:30:41 +03:00
memcpy(&(users[userid].q), &(dummy.q), sizeof(struct query));
2007-06-09 20:18:59 +04:00
users[userid].encoder = get_base32_encoder();
send_version_response(dns_fd, VERSION_ACK, users[userid].seed, &users[userid]);
2007-02-11 16:39:32 +03:00
users[userid].q.id = 0;
} else {
/* No space for another user */
2007-02-11 04:30:41 +03:00
send_version_response(dns_fd, VERSION_FULL, USERS, &dummy);
}
2007-02-04 20:00:20 +03:00
} else {
2007-02-11 04:30:41 +03:00
send_version_response(dns_fd, VERSION_NACK, VERSION, &dummy);
2007-02-04 20:00:20 +03:00
}
} else {
2007-02-11 04:30:41 +03:00
send_version_response(dns_fd, VERSION_NACK, VERSION, &dummy);
2007-02-04 20:00:20 +03:00
}
} else if(in[0] == 'L' || in[0] == 'l') {
2007-06-09 20:18:59 +04:00
read = unpack_data(unpacked, sizeof(unpacked), &(in[1]), read - 1, b32);
2007-02-04 20:00:20 +03:00
/* Login phase, handle auth */
2007-06-09 20:18:59 +04:00
userid = unpacked[0];
if (userid < 0 || userid >= USERS) {
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), "BADIP", 5);
return 0; /* illegal id */
}
users[userid].last_pkt = time(NULL);
login_calculate(logindata, 16, password, users[userid].seed);
2007-02-04 20:00:20 +03:00
if (cmp_remote_ip(userid, &(dummy.q)) != 0) {
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), "BADIP", 5);
} else {
2007-06-09 20:18:59 +04:00
if (read >= 18 && (memcmp(logindata, unpacked+1, 16) == 0)) {
/* Login ok, send ip/mtu info */
2007-02-04 20:00:20 +03:00
tempip.s_addr = my_ip;
tmp[0] = strdup(inet_ntoa(tempip));
tempip.s_addr = users[userid].tun_ip;
tmp[1] = strdup(inet_ntoa(tempip));
2007-02-04 20:00:20 +03:00
read = snprintf(out, sizeof(out), "%s-%s-%d",
tmp[0], tmp[1], my_mtu);
2007-02-04 20:00:20 +03:00
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), out, read);
dummy.q.id = 0;
2007-02-04 20:00:20 +03:00
free(tmp[1]);
free(tmp[0]);
} else {
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), "LNAK", 4);
}
}
} else if(in[0] == 'P' || in[0] == 'p') {
2007-06-09 20:18:59 +04:00
read = unpack_data(unpacked, sizeof(unpacked), &(in[1]), read - 1, b32);
/* Ping packet, store userid */
2007-06-09 20:18:59 +04:00
userid = unpacked[0];
if (userid < 0 || userid >= USERS) {
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), "BADIP", 5);
return 0; /* illegal id */
2007-02-04 20:00:20 +03:00
}
if (cmp_remote_ip(userid, &(dummy.q)) != 0) {
memcpy(&(users[userid].q), &(dummy.q), sizeof(struct query));
users[userid].last_pkt = time(NULL);
}
} else if(in[0] == 'Z' || in[0] == 'z') {
/* Case conservation check */
/* Reply with received hostname as data */
write_dns(dns_fd, &(dummy.q), in, read);
return 0;
2007-02-04 20:00:20 +03:00
} else if((in[0] >= '0' && in[0] <= '9')
|| (in[0] >= 'a' && in[0] <= 'f')
|| (in[0] >= 'A' && in[0] <= 'F')) {
if ((in[0] >= '0' && in[0] <= '9'))
code = in[0] - '0';
if ((in[0] >= 'a' && in[0] <= 'f'))
code = in[0] - 'a' + 10;
if ((in[0] >= 'A' && in[0] <= 'F'))
code = in[0] - 'A' + 10;
userid = code >> 1;
if (userid < 0 || userid >= USERS) {
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), "BADIP", 5);
return 0; /* illegal id */
}
2007-02-04 20:00:20 +03:00
/* Check sending ip number */
if (cmp_remote_ip(userid, &(dummy.q)) != 0) {
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), "BADIP", 5);
2007-02-04 20:00:20 +03:00
} else {
2007-06-09 20:18:59 +04:00
/* decode with this users encoding */
read = unpack_data(unpacked, sizeof(unpacked), &(in[1]), read - 1,
users[userid].encoder);
2007-02-11 04:30:41 +03:00
users[userid].last_pkt = time(NULL);
memcpy(&(users[userid].q), &(dummy.q), sizeof(struct query));
2007-06-09 20:18:59 +04:00
memcpy(users[userid].inpacket.data + users[userid].inpacket.offset, unpacked, read);
users[userid].inpacket.len += read;
users[userid].inpacket.offset += read;
2007-02-04 20:00:20 +03:00
if (code & 1) {
outlen = sizeof(out);
uncompress((uint8_t*)out, &outlen,
(uint8_t*)users[userid].inpacket.data, users[userid].inpacket.len);
2007-02-04 20:00:20 +03:00
hdr = (struct ip*) (out + 4);
touser = find_user_by_ip(hdr->ip_dst.s_addr);
2007-02-04 20:00:20 +03:00
if (touser == -1) {
/* send the uncompressed packet to tun device */
write_tun(tun_fd, out, outlen);
} else {
/* send the compressed packet to other client
* if another packet is queued, throw away this one. TODO build queue */
if (users[touser].outpacket.len == 0) {
memcpy(users[touser].outpacket.data, users[userid].inpacket.data, users[userid].inpacket.len);
users[touser].outpacket.len = users[userid].inpacket.len;
}
}
users[userid].inpacket.len = users[userid].inpacket.offset = 0;
2007-02-04 20:00:20 +03:00
}
}
}
/* userid must be set for a reply to be sent */
if (userid >= 0 && userid < USERS &&
cmp_remote_ip(userid, &(dummy.q)) != 0 &&
users[userid].outpacket.len > 0) {
2007-02-04 20:00:20 +03:00
2007-02-11 04:30:41 +03:00
write_dns(dns_fd, &(dummy.q), users[userid].outpacket.data, users[userid].outpacket.len);
users[userid].outpacket.len = 0;
2007-02-11 16:39:32 +03:00
users[userid].q.id = 0;
2007-02-04 20:00:20 +03:00
}
return 0;
}
static int
tunnel(int tun_fd, int dns_fd)
{
struct timeval tv;
fd_set fds;
2006-08-25 01:23:29 +04:00
int i;
int j;
2006-08-25 01:23:29 +04:00
2006-06-05 22:47:09 +04:00
while (running) {
2007-02-11 04:30:41 +03:00
if (users_waiting_on_reply()) {
2006-06-06 16:36:12 +04:00
tv.tv_sec = 0;
2006-06-11 23:17:20 +04:00
tv.tv_usec = 5000;
2007-02-11 04:30:41 +03:00
} else {
2006-06-06 16:36:12 +04:00
tv.tv_sec = 1;
tv.tv_usec = 0;
2007-02-11 04:30:41 +03:00
}
2006-06-05 22:47:09 +04:00
FD_ZERO(&fds);
/* TODO : use some kind of packet queue */
2007-02-11 16:39:32 +03:00
if(!all_users_waiting_to_send()) {
2006-06-06 02:36:05 +04:00
FD_SET(tun_fd, &fds);
2007-02-11 16:39:32 +03:00
}
2006-06-05 22:47:09 +04:00
FD_SET(dns_fd, &fds);
i = select(MAX(tun_fd, dns_fd) + 1, &fds, NULL, NULL, &tv);
if(i < 0) {
2006-06-06 17:47:51 +04:00
if (running)
2006-06-05 22:47:09 +04:00
warn("select");
return 1;
}
2006-06-06 20:08:02 +04:00
if (i==0) {
for (j = 0; j < USERS; j++) {
if (users[j].q.id != 0) {
write_dns(dns_fd, &(users[j].q), users[j].outpacket.data, users[j].outpacket.len);
users[j].outpacket.len = 0;
users[j].q.id = 0;
}
2006-06-23 15:50:33 +04:00
}
2006-06-06 20:08:02 +04:00
} else {
2006-06-05 22:47:09 +04:00
if(FD_ISSET(tun_fd, &fds)) {
2007-02-04 20:00:20 +03:00
tunnel_tun(tun_fd, dns_fd);
continue;
2006-06-05 22:47:09 +04:00
}
if(FD_ISSET(dns_fd, &fds)) {
2007-02-04 20:00:20 +03:00
tunnel_dns(tun_fd, dns_fd);
continue;
2006-06-05 22:47:09 +04:00
}
}
}
return 0;
}
static int
read_dns(int fd, struct query *q, char *buf, int buflen)
{
struct sockaddr_in from;
char packet[64*1024];
char *domain;
socklen_t addrlen;
int rv;
int r;
addrlen = sizeof(struct sockaddr);
r = recvfrom(fd, packet, sizeof(packet), 0, (struct sockaddr*)&from, &addrlen);
if (r > 0) {
dns_decode(buf, buflen, q, QR_QUERY, packet, r);
domain = strstr(q->name, topdomain);
if (domain) {
rv = (int) (domain - q->name);
memcpy(buf, q->name, MIN(rv, buflen));
q->fromlen = addrlen;
memcpy((struct sockaddr*)&q->from, (struct sockaddr*)&from, addrlen);
} else {
rv = 0;
}
2007-06-09 20:18:59 +04:00
} else if (r < 0) {
2007-02-04 20:00:20 +03:00
/* Error */
warn("read dns");
rv = 0;
}
return rv;
}
static void
write_dns(int fd, struct query *q, char *data, int datalen)
{
char buf[64*1024];
int len;
len = dns_encode(buf, sizeof(buf), q, QR_ANSWER, data, datalen);
sendto(fd, buf, len, 0, (struct sockaddr*)&q->from, q->fromlen);
}
static void
usage() {
2006-08-25 01:26:40 +04:00
extern char *__progname;
2006-11-18 19:08:47 +03:00
printf("Usage: %s [-v] [-h] [-f] [-u user] [-t chrootdir] [-d device] [-m mtu] "
"[-l ip address to listen on] [-p port] [-P password]"
" tunnel_ip topdomain\n", __progname);
exit(2);
}
2006-06-11 17:14:57 +04:00
static void
help() {
2006-08-25 01:26:40 +04:00
extern char *__progname;
2006-06-11 17:39:38 +04:00
printf("iodine IP over DNS tunneling server\n");
2006-11-18 19:08:47 +03:00
printf("Usage: %s [-v] [-h] [-f] [-u user] [-t chrootdir] [-d device] [-m mtu] "
"[-l ip address to listen on] [-p port] [-P password]"
" tunnel_ip topdomain\n", __progname);
2006-06-12 02:02:26 +04:00
printf(" -v to print version info and exit\n");
printf(" -h to print this help and exit\n");
2006-06-11 17:14:57 +04:00
printf(" -f to keep running in foreground\n");
printf(" -u name to drop privileges and run as user 'name'\n");
2006-06-11 18:34:27 +04:00
printf(" -t dir to chroot to directory dir\n");
2006-06-24 14:28:24 +04:00
printf(" -d device to set tunnel device name\n");
printf(" -m mtu to set tunnel device mtu\n");
printf(" -l ip address to listen on for incoming dns traffic (default 0.0.0.0)\n");
printf(" -p port to listen on for incoming dns traffic (default 53)\n");
2006-11-18 19:08:47 +03:00
printf(" -P password used for authentication (max 32 chars will be used)\n");
2006-06-11 19:24:20 +04:00
printf("tunnel_ip is the IP number of the local tunnel interface.\n");
printf("topdomain is the FQDN that is delegated to this server.\n");
2006-06-11 17:14:57 +04:00
exit(0);
}
2006-06-11 17:27:48 +04:00
static void
version() {
2006-06-11 17:37:44 +04:00
char *svnver = "$Rev$ from $Date$";
2006-06-11 17:27:48 +04:00
printf("iodine IP over DNS tunneling server\n");
printf("SVN version: %s\n", svnver);
exit(0);
}
2006-06-05 22:47:09 +04:00
int
main(int argc, char **argv)
{
2006-06-11 18:29:36 +04:00
int choice;
2006-06-05 22:47:09 +04:00
int tun_fd;
int dnsd_fd;
2006-06-11 18:29:36 +04:00
char *newroot;
char *username;
2006-06-24 14:28:24 +04:00
char *device;
2006-06-11 17:05:41 +04:00
int foreground;
2006-06-11 19:24:20 +04:00
int mtu;
2006-06-11 18:29:36 +04:00
struct passwd *pw;
in_addr_t listen_ip;
int port;
username = NULL;
2006-06-11 19:24:20 +04:00
newroot = NULL;
2006-06-24 14:28:24 +04:00
device = NULL;
2006-06-11 17:05:41 +04:00
foreground = 0;
2006-06-11 19:24:20 +04:00
mtu = 1024;
listen_ip = INADDR_ANY;
port = 53;
2007-06-09 20:18:59 +04:00
b32 = get_base32_encoder();
2006-11-18 19:08:47 +03:00
memset(password, 0, 33);
2006-11-19 03:41:42 +03:00
srand(time(NULL));
2006-06-11 16:45:46 +04:00
2006-11-18 19:08:47 +03:00
while ((choice = getopt(argc, argv, "vfhu:t:d:m:l:p:P:")) != -1) {
switch(choice) {
2006-06-11 17:27:48 +04:00
case 'v':
version();
break;
2006-06-11 17:05:41 +04:00
case 'f':
foreground = 1;
break;
2006-06-11 17:14:57 +04:00
case 'h':
help();
break;
case 'u':
username = optarg;
break;
2006-06-11 18:29:36 +04:00
case 't':
newroot = optarg;
break;
2006-06-24 14:28:24 +04:00
case 'd':
device = optarg;
break;
2006-06-11 19:24:20 +04:00
case 'm':
mtu = atoi(optarg);
break;
case 'l':
listen_ip = inet_addr(optarg);
break;
case 'p':
port = atoi(optarg);
2006-11-13 01:43:03 +03:00
if (port) {
printf("ALERT! Other dns servers expect you to run on port 53.\n");
printf("You must manually forward port 53 to port %d for things to work.\n", port);
}
break;
2006-11-18 19:08:47 +03:00
case 'P':
strncpy(password, optarg, 32);
password[32] = 0;
break;
default:
usage();
2006-06-11 18:33:59 +04:00
break;
}
}
argc -= optind;
argv += optind;
2006-06-11 17:59:55 +04:00
if (geteuid() != 0) {
printf("Run as root and you'll be happy.\n");
usage();
}
2006-06-05 22:47:09 +04:00
2006-06-11 19:24:20 +04:00
if (argc != 2)
usage();
2006-06-05 22:47:09 +04:00
topdomain = strdup(argv[1]);
if (strlen(topdomain) > 128 || topdomain[0] == '.') {
printf("Use a topdomain max 128 chars long. Do not start it with a dot.\n");
usage();
}
2006-06-11 16:18:49 +04:00
if (username) {
pw = getpwnam(username);
if (!pw) {
printf("User %s does not exist!\n", username);
usage();
}
}
2006-06-11 19:24:20 +04:00
if (mtu == 0) {
printf("Bad MTU given.\n");
usage();
}
if (listen_ip == INADDR_NONE) {
printf("Bad IP address to listen on.\n");
usage();
}
2006-11-18 19:08:47 +03:00
if (strlen(password) == 0) {
printf("Enter password on stdin:\n");
scanf("%32s", password);
password[32] = 0;
}
2006-06-24 14:28:24 +04:00
if ((tun_fd = open_tun(device)) == -1)
2006-06-11 19:24:20 +04:00
goto cleanup0;
if (tun_setip(argv[0]) != 0 || tun_setmtu(mtu) != 0)
2006-06-11 18:42:19 +04:00
goto cleanup1;
if ((dnsd_fd = open_dns(port, listen_ip)) == -1)
2006-06-11 18:42:19 +04:00
goto cleanup2;
my_ip = inet_addr(argv[0]);
my_mtu = mtu;
2007-02-11 14:21:18 +03:00
init_users(my_ip);
2006-06-11 23:54:23 +04:00
printf("Listening to dns for domain %s\n", argv[1]);
2006-06-11 18:42:19 +04:00
2007-03-02 00:14:51 +03:00
do_chroot(newroot);
2006-06-11 17:05:41 +04:00
2006-06-05 22:47:09 +04:00
signal(SIGINT, sigint);
if (username) {
if (setgid(pw->pw_gid) < 0 || setuid(pw->pw_uid) < 0) {
printf("Could not switch to user %s!\n", username);
usage();
}
}
2006-06-05 22:47:09 +04:00
2007-03-02 00:41:17 +03:00
if (!foreground) {
do_detach();
}
2006-06-05 22:47:09 +04:00
tunnel(tun_fd, dnsd_fd);
2006-06-11 18:42:19 +04:00
cleanup2:
2006-06-11 23:54:23 +04:00
close_dns(dnsd_fd);
2006-06-11 18:42:19 +04:00
cleanup1:
2006-06-05 22:47:09 +04:00
close_tun(tun_fd);
2006-06-11 19:24:20 +04:00
cleanup0:
2006-06-05 22:47:09 +04:00
return 0;
}