netbird/client/internal/routemanager/systemops_bsd.go

//go:build darwin || dragonfly || freebsd || netbsd || openbsd
// +build darwin dragonfly freebsd netbsd openbsd

package routemanager

import (
	"fmt"
	"net"
	"net/netip"
	"syscall"

	"golang.org/x/net/route"
)

// selected BSD Route flags.
const (
	RTF_UP        = 0x1
	RTF_GATEWAY   = 0x2
	RTF_HOST      = 0x4
	RTF_REJECT    = 0x8
	RTF_DYNAMIC   = 0x10
	RTF_MODIFIED  = 0x20
	RTF_STATIC    = 0x800
	RTF_BLACKHOLE = 0x1000
	RTF_LOCAL     = 0x200000
	RTF_BROADCAST = 0x400000
	RTF_MULTICAST = 0x800000
)

func getRoutesFromTable() ([]netip.Prefix, error) {
	tab, err := route.FetchRIB(syscall.AF_UNSPEC, route.RIBTypeRoute, 0)
	if err != nil {
		return nil, err
	}
	msgs, err := route.ParseRIB(route.RIBTypeRoute, tab)
	if err != nil {
		return nil, err
	}
	var prefixList []netip.Prefix
	for _, msg := range msgs {
		m := msg.(*route.RouteMessage)

		if m.Version < 3 || m.Version > 5 {
			return nil, fmt.Errorf("unexpected RIB message version: %d", m.Version)
		}
		if m.Type != 4 /* RTM_GET */ {
			return nil, fmt.Errorf("unexpected RIB message type: %d", m.Type)
		}

		if m.Flags&RTF_UP == 0 ||
			m.Flags&(RTF_REJECT|RTF_BLACKHOLE) != 0 {
			continue
		}

		addr, ok := toNetIPAddr(m.Addrs[0])
		if !ok {
			continue
		}

		mask, ok := toNetIPMASK(m.Addrs[2])
		if !ok {
			continue
		}
		cidr, _ := mask.Size()

		routePrefix := netip.PrefixFrom(addr, cidr)
		if routePrefix.IsValid() {
			prefixList = append(prefixList, routePrefix)
		}
	}
	return prefixList, nil
}

func toNetIPAddr(a route.Addr) (netip.Addr, bool) {
	switch t := a.(type) {
	case *route.Inet4Addr:
		ip := net.IPv4(t.IP[0], t.IP[1], t.IP[2], t.IP[3])
		addr := netip.MustParseAddr(ip.String())
		return addr, true
	default:
		return netip.Addr{}, false
	}
}

func toNetIPMASK(a route.Addr) (net.IPMask, bool) {
	switch t := a.(type) {
	case *route.Inet4Addr:
		mask := net.IPv4Mask(t.IP[0], t.IP[1], t.IP[2], t.IP[3])
		return mask, true
	default:
		return nil, false
	}
}
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`//go:build darwin \|\| dragonfly \|\| freebsd \|\| netbsd \|\| openbsd`
			`// +build darwin dragonfly freebsd netbsd openbsd`

			`package routemanager`

			`import (`
			`"fmt"`
			`"net"`
			`"net/netip"`
			`"syscall"`

			`"golang.org/x/net/route"`
			`)`

			`// selected BSD Route flags.`
			`const (`
			`RTF_UP = 0x1`
			`RTF_GATEWAY = 0x2`
			`RTF_HOST = 0x4`
			`RTF_REJECT = 0x8`
			`RTF_DYNAMIC = 0x10`
			`RTF_MODIFIED = 0x20`
			`RTF_STATIC = 0x800`
			`RTF_BLACKHOLE = 0x1000`
			`RTF_LOCAL = 0x200000`
			`RTF_BROADCAST = 0x400000`
			`RTF_MULTICAST = 0x800000`
			`)`

Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`func getRoutesFromTable() ([]netip.Prefix, error) {`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`tab, err := route.FetchRIB(syscall.AF_UNSPEC, route.RIBTypeRoute, 0)`
			`if err != nil {`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`return nil, err`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`
			`msgs, err := route.ParseRIB(route.RIBTypeRoute, tab)`
			`if err != nil {`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`return nil, err`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`var prefixList []netip.Prefix`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`for _, msg := range msgs {`
			`m := msg.(*route.RouteMessage)`

			`if m.Version < 3 \|\| m.Version > 5 {`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`return nil, fmt.Errorf("unexpected RIB message version: %d", m.Version)`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`
			`if m.Type != 4 /* RTM_GET */ {`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`return nil, fmt.Errorf("unexpected RIB message type: %d", m.Type)`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`

			`if m.Flags&RTF_UP == 0 \|\|`
			`m.Flags&(RTF_REJECT\|RTF_BLACKHOLE) != 0 {`
			`continue`
			`}`

Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`addr, ok := toNetIPAddr(m.Addrs[0])`
			`if !ok {`
			`continue`
			`}`

			`mask, ok := toNetIPMASK(m.Addrs[2])`
			`if !ok {`
			`continue`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`cidr, _ := mask.Size()`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`routePrefix := netip.PrefixFrom(addr, cidr)`
			`if routePrefix.IsValid() {`
			`prefixList = append(prefixList, routePrefix)`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`
			`}`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`return prefixList, nil`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`

Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`func toNetIPAddr(a route.Addr) (netip.Addr, bool) {`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`switch t := a.(type) {`
			`case *route.Inet4Addr:`
			`ip := net.IPv4(t.IP[0], t.IP[1], t.IP[2], t.IP[3])`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`addr := netip.MustParseAddr(ip.String())`
			`return addr, true`
			`default:`
			`return netip.Addr{}, false`
			`}`
			`}`

			`func toNetIPMASK(a route.Addr) (net.IPMask, bool) {`
			`switch t := a.(type) {`
			`case *route.Inet4Addr:`
			`mask := net.IPv4Mask(t.IP[0], t.IP[1], t.IP[2], t.IP[3])`
			`return mask, true`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`default:`
Remove the gateway check for routes (#1317) Most operating systems add a /32 route for the default gateway address to its routing table This will allow routes to be configured into the system even when the incoming range contains the default gateway. In case a range is a sub-range of an existing route and this range happens to contain the default gateway it attempts to create a default gateway route to prevent loop issues 2023-11-24 11:31:22 +01:00			`return nil, false`
split systemops for operating systems and add linux 2023-06-09 18:27:09 +02:00			`}`
			`}`