Clean up session creation, so it either works or fails explicitly

pimterry · pimterry · commit 6a8c1de7ff55 · 2020-05-25T15:25:37.000+02:00
diff --git a/app/src/main/java/tech/httptoolkit/android/ProxyVpnRunnable.kt b/app/src/main/java/tech/httptoolkit/android/ProxyVpnRunnable.kt
@@ -7,7 +7,6 @@ import tech.httptoolkit.android.vpn.ClientPacketWriter
 import tech.httptoolkit.android.vpn.SessionHandler
 import tech.httptoolkit.android.vpn.SessionManager
 import tech.httptoolkit.android.vpn.socket.SocketNIODataService
-import tech.httptoolkit.android.vpn.transport.PacketHeaderException
 import io.sentry.Sentry
 import java.io.FileInputStream
 import java.io.FileOutputStream
diff --git a/app/src/main/java/tech/httptoolkit/android/vpn/SessionHandler.java b/app/src/main/java/tech/httptoolkit/android/vpn/SessionHandler.java
@@ -91,29 +91,24 @@ public void handlePacket(@NonNull ByteBuffer stream) throws PacketHeaderExceptio
 			handleICMPPacket(stream, ipHeader);
 		} else {
 			Log.w(TAG, "Unsupported IP protocol: " + ipHeader.getProtocol());
-			return;
 		}
 	}
 
-	private void handleUDPPacket(ByteBuffer clientPacketData, IPv4Header ipHeader) throws PacketHeaderException {
+	private void handleUDPPacket(ByteBuffer clientPacketData, IPv4Header ipHeader) throws PacketHeaderException, IOException {
 		UDPHeader udpheader = UDPPacketFactory.createUDPHeader(clientPacketData);
 
 		Session session = manager.getSession(
 			ipHeader.getDestinationIP(), udpheader.getDestinationPort(),
 			ipHeader.getSourceIP(), udpheader.getSourcePort()
 		);
 
-		if (session == null){
+		if (session == null) {
 			session = manager.createNewUDPSession(
 				ipHeader.getDestinationIP(), udpheader.getDestinationPort(),
 				ipHeader.getSourceIP(), udpheader.getSourcePort()
 			);
 		}
 
-		if(session == null){
-			return;
-		}
-
 		synchronized (session) {
 			session.setLastIpHeader(ipHeader);
 			session.setLastUdpHeader(udpheader);
@@ -130,15 +125,15 @@ private void handleUDPPacket(ByteBuffer clientPacketData, IPv4Header ipHeader) t
 		manager.keepSessionAlive(session);
 	}
 
-	private void handleTCPPacket(ByteBuffer clientPacketData, IPv4Header ipHeader) throws PacketHeaderException {
+	private void handleTCPPacket(ByteBuffer clientPacketData, IPv4Header ipHeader) throws PacketHeaderException, IOException {
 		TCPHeader tcpheader = TCPPacketFactory.createTCPHeader(clientPacketData);
 		int dataLength = clientPacketData.limit() - clientPacketData.position();
 		int sourceIP = ipHeader.getSourceIP();
 		int destinationIP = ipHeader.getDestinationIP();
 		int sourcePort = tcpheader.getSourcePort();
 		int destinationPort = tcpheader.getDestinationPort();
 
-		if(tcpheader.isSYN()) {
+		if (tcpheader.isSYN()) {
 			// 3-way handshake + create new session
 			replySynAck(ipHeader,tcpheader);
 		} else if(tcpheader.isACK()) {
@@ -373,18 +368,16 @@ private void resetConnection(IPv4Header ip, TCPHeader tcp){
 	 * @param ip IP
 	 * @param tcp TCP
 	 */
-	private void replySynAck(IPv4Header ip, TCPHeader tcp){
+	private void replySynAck(IPv4Header ip, TCPHeader tcp) throws IOException {
 		ip.setIdentification(0);
 		Packet packet = TCPPacketFactory.createSynAckPacketData(ip, tcp);
 		
 		TCPHeader tcpheader = (TCPHeader) packet.getTransportHeader();
 		
 		Session session = manager.createNewTCPSession(
-				ip.getDestinationIP(), tcp.getDestinationPort(),
-				ip.getSourceIP(), tcp.getSourcePort()
+			ip.getDestinationIP(), tcp.getDestinationPort(),
+			ip.getSourceIP(), tcp.getSourcePort()
 		);
-		if(session == null)
-			return;
 
 		synchronized (session) {
 			session.setMaxSegmentSize(tcpheader.getMaxSegmentSize());
diff --git a/app/src/main/java/tech/httptoolkit/android/vpn/SessionManager.java b/app/src/main/java/tech/httptoolkit/android/vpn/SessionManager.java
@@ -21,6 +21,8 @@
 import android.util.Log;
 import android.util.SparseArray;
 
+import org.jetbrains.annotations.NotNull;
+
 import tech.httptoolkit.android.TagKt;
 import tech.httptoolkit.android.vpn.socket.DataConst;
 import tech.httptoolkit.android.vpn.socket.ICloseSession;
@@ -89,7 +91,7 @@ public Session getSession(int ip, int port, int srcIp, int srcPort) {
 
 	@Nullable
 	public Session getSessionByKey(String key) {
-		if(table.containsKey(key)){
+		if (table.containsKey(key)) {
 			return table.get(key);
 		}
 
@@ -126,92 +128,64 @@ public void closeSession(@NonNull Session session){
 				session.getSourcePort());
 	}
 
-	@Nullable
-	public Session createNewUDPSession(int ip, int port, int srcIp, int srcPort) {
+	@NotNull
+	public Session createNewUDPSession(int ip, int port, int srcIp, int srcPort) throws IOException {
 		String keys = Session.getSessionKey(ip, port, srcIp, srcPort);
 
-		if (table.containsKey(keys))
+		if (table.containsKey(keys)) {
+			// For TCP, we freak out if you try to create an already existing session.
+			// With UDP though, it's totally fine:
 			return table.get(keys);
+		}
 
 		Session session = new Session(srcIp, srcPort, ip, port, this);
 
 		DatagramChannel channel;
 
-		try {
-			channel = DatagramChannel.open();
-			channel.socket().setSoTimeout(0);
-			channel.configureBlocking(false);
-		} catch (IOException e) {
-			e.printStackTrace();
-			return null;
-		}
+		channel = DatagramChannel.open();
+		channel.socket().setSoTimeout(0);
+		channel.configureBlocking(false);
 		protector.protect(channel.socket());
 
 		session.setChannel(channel);
 
-		//initiate connection to reduce latency
+		// Initiate connection early to reduce latency
 		String ips = PacketUtil.intToIPAddress(ip);
 		String sourceIpAddress = PacketUtil.intToIPAddress(srcIp);
 		SocketAddress socketAddress = new InetSocketAddress(ips, port);
 		Log.d(TAG,"initialized connection to remote UDP server: " + ips + ":" +
 				port + " from " + sourceIpAddress + ":" + srcPort);
 
-		try {
-			channel.connect(socketAddress);
-			session.setConnected(channel.isConnected());
-		} catch(IOException e) {
-			e.printStackTrace();
-			return null;
-		}
-
-		try {
-			nioService.registerSession(session);
-		} catch (ClosedChannelException e) {
-			e.printStackTrace();
-			Log.e(TAG,"failed to register udp channel with selector: "+ e.getMessage());
-			return null;
-		}
+		channel.connect(socketAddress);
+		session.setConnected(channel.isConnected());
 
-		if (table.containsKey(keys)) {
-			try {
-				channel.close();
-			} catch (IOException e) {
-				e.printStackTrace();
-				return null;
-			}
-		} else {
-			table.put(keys, session);
-		}
+		nioService.registerSession(session);
+		table.put(keys, session);
 
 		Log.d(TAG,"new UDP session successfully created.");
 		return session;
 	}
 
-	@Nullable
-	public Session createNewTCPSession(int ip, int port, int srcIp, int srcPort){
+	@NotNull
+	public Session createNewTCPSession(int ip, int port, int srcIp, int srcPort) throws IOException {
 		String key = Session.getSessionKey(ip, port, srcIp, srcPort);
 		if (table.containsKey(key)) {
-			Log.e(TAG, "Session " + key + " was already created.");
-			return null;
+			// This can happen if we receive two SYN packets somehow. That shouldn't happen, especially
+			// given that our connection is local & should be 100% reliable, but it does. We probably
+			// should RST, for now we just throw here (and so drop the packet entirely).
+			throw new IllegalArgumentException("Can't create duplicate session");
 		}
 
 		Session session = new Session(srcIp, srcPort, ip, port, this);
 
 		SocketChannel channel;
-		try {
-			channel = SocketChannel.open();
-			channel.socket().setKeepAlive(true);
-			channel.socket().setTcpNoDelay(true);
-			channel.socket().setSoTimeout(0);
-			channel.socket().setReceiveBufferSize(DataConst.MAX_RECEIVE_BUFFER_SIZE);
-			channel.configureBlocking(false);
-		} catch(SocketException e) {
-			Log.e(TAG, e.toString());
-			return null;
-		} catch (IOException e) {
-			Log.e(TAG,"Failed to create SocketChannel: "+ e.getMessage());
-			return null;
-		}
+		channel = SocketChannel.open();
+		channel.socket().setKeepAlive(true);
+		channel.socket().setTcpNoDelay(true);
+		channel.socket().setSoTimeout(0);
+		channel.socket().setReceiveBufferSize(DataConst.MAX_RECEIVE_BUFFER_SIZE);
+		channel.configureBlocking(false);
+
 		String ips = PacketUtil.intToIPAddress(ip);
 		Log.d(TAG,"created new SocketChannel for " + key);
 
@@ -220,42 +194,20 @@ public Session createNewTCPSession(int ip, int port, int srcIp, int srcPort){
 
 		session.setChannel(channel);
 
-		//initiate connection to reduce latency
-		// Use the real address, unless tcpPortRedirection defines a different
+		// Initiate connection straight away, to reduce latency
+		// We use the real address, unless tcpPortRedirection redirects us to a different
 		// target address for traffic on this port.
 		SocketAddress socketAddress = tcpPortRedirection.get(port) != null
 			? tcpPortRedirection.get(port)
 			: new InetSocketAddress(ips, port);
 
-		Log.d(TAG,"initiate connecting to remote tcp server: " + socketAddress.toString());
-		boolean connected;
-		try{
-			connected = channel.connect(socketAddress);
-		} catch(IOException e) {
-			Log.e(TAG, e.toString());
-			return null;
-		}
-
+		Log.d(TAG,"Initiate connecting to remote tcp server: " + socketAddress.toString());
+		boolean connected = channel.connect(socketAddress);
 		session.setConnected(connected);
 
-		try {
-			nioService.registerSession(session);
-		} catch (ClosedChannelException e) {
-			e.printStackTrace();
-			Log.e(TAG,"Failed to register channel with selector: " + e.getMessage());
-			return null;
-		}
+		nioService.registerSession(session);
+		table.put(key, session);
 
-		if (table.containsKey(key)) {
-			try {
-				channel.close();
-			} catch (IOException e) {
-				e.printStackTrace();
-			}
-			return null;
-		} else {
-			table.put(key, session);
-		}
 		return session;
 	}
 
