netbird/iface/tun_unix.go

//go:build (linux || darwin) && !android

package iface

import (
	"net"
	"os"

	log "github.com/sirupsen/logrus"
	"golang.zx2c4.com/wireguard/conn"
	"golang.zx2c4.com/wireguard/device"
	"golang.zx2c4.com/wireguard/ipc"
	"golang.zx2c4.com/wireguard/tun"
)

type tunDevice struct {
	name         string
	address      WGAddress
	mtu          int
	netInterface NetInterface
}

func newTunDevice(name string, address WGAddress, mtu int) *tunDevice {
	return &tunDevice{
		name:    name,
		address: address,
		mtu:     mtu,
	}
}

func (c *tunDevice) UpdateAddr(address WGAddress) error {
	c.address = address
	return c.assignAddr()
}

func (c *tunDevice) WgAddress() WGAddress {
	return c.address
}

func (c *tunDevice) DeviceName() string {
	return c.name
}

func (c *tunDevice) Close() error {
	if c.netInterface == nil {
		return nil
	}
	err := c.netInterface.Close()
	if err != nil {
		return err
	}

	sockPath := "/var/run/wireguard/" + c.name + ".sock"
	if _, statErr := os.Stat(sockPath); statErr == nil {
		statErr = os.Remove(sockPath)
		if statErr != nil {
			return statErr
		}
	}

	return nil
}

// createWithUserspace Creates a new Wireguard interface, using wireguard-go userspace implementation
func (c *tunDevice) createWithUserspace() (NetInterface, error) {
	tunIface, err := tun.CreateTUN(c.name, c.mtu)
	if err != nil {
		return nil, err
	}

	// We need to create a wireguard-go device and listen to configuration requests
	tunDevice := device.NewDevice(tunIface, conn.NewDefaultBind(), device.NewLogger(device.LogLevelSilent, "[wiretrustee] "))
	err = tunDevice.Up()
	if err != nil {
		return tunIface, err
	}

	// todo: after this line in case of error close the tunSock
	uapi, err := c.getUAPI(c.name)
	if err != nil {
		return tunIface, err
	}

	go func() {
		for {
			uapiConn, uapiErr := uapi.Accept()
			if uapiErr != nil {
				log.Traceln("uapi Accept failed with error: ", uapiErr)
				continue
			}
			go tunDevice.IpcHandle(uapiConn)
		}
	}()

	log.Debugln("UAPI listener started")
	return tunIface, nil
}

// getUAPI returns a Listener
func (c *tunDevice) getUAPI(iface string) (net.Listener, error) {
	tunSock, err := ipc.UAPIOpen(iface)
	if err != nil {
		return nil, err
	}
	return ipc.UAPIListen(iface, tunSock)
}
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`//go:build (linux \|\| darwin) && !android`
Add windows support and update wireguard-go deps 2021-06-06 00:40:44 +02:00
			`package iface`

			`import (`
Mobile prerefactor (#680) Small code cleaning in the iface package. These changes necessary to get a clean code in case if we involve more platforms. The OS related functions has been distributed into separate files and it has been mixed with not OS related logic. The goal is to get a clear picture of the layer between WireGuard and business logic. 2023-02-13 18:34:56 +01:00			`"net"`
			`"os"`

Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`log "github.com/sirupsen/logrus"`
			`"golang.zx2c4.com/wireguard/conn"`
			`"golang.zx2c4.com/wireguard/device"`
Add windows support and update wireguard-go deps 2021-06-06 00:40:44 +02:00			`"golang.zx2c4.com/wireguard/ipc"`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`"golang.zx2c4.com/wireguard/tun"`
Add windows support and update wireguard-go deps 2021-06-06 00:40:44 +02:00			`)`

Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`type tunDevice struct {`
			`name string`
			`address WGAddress`
			`mtu int`
			`netInterface NetInterface`
Mobile prerefactor (#680) Small code cleaning in the iface package. These changes necessary to get a clean code in case if we involve more platforms. The OS related functions has been distributed into separate files and it has been mixed with not OS related logic. The goal is to get a clear picture of the layer between WireGuard and business logic. 2023-02-13 18:34:56 +01:00			`}`

Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`func newTunDevice(name string, address WGAddress, mtu int) *tunDevice {`
			`return &tunDevice{`
			`name: name,`
			`address: address,`
			`mtu: mtu,`
			`}`
			`}`

			`func (c *tunDevice) UpdateAddr(address WGAddress) error {`
			`c.address = address`
			`return c.assignAddr()`
			`}`

			`func (c *tunDevice) WgAddress() WGAddress {`
			`return c.address`
			`}`

			`func (c *tunDevice) DeviceName() string {`
			`return c.name`
			`}`

			`func (c *tunDevice) Close() error {`
			`if c.netInterface == nil {`
Mobile prerefactor (#680) Small code cleaning in the iface package. These changes necessary to get a clean code in case if we involve more platforms. The OS related functions has been distributed into separate files and it has been mixed with not OS related logic. The goal is to get a clear picture of the layer between WireGuard and business logic. 2023-02-13 18:34:56 +01:00			`return nil`
			`}`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`err := c.netInterface.Close()`
Mobile prerefactor (#680) Small code cleaning in the iface package. These changes necessary to get a clean code in case if we involve more platforms. The OS related functions has been distributed into separate files and it has been mixed with not OS related logic. The goal is to get a clear picture of the layer between WireGuard and business logic. 2023-02-13 18:34:56 +01:00			`if err != nil {`
			`return err`
			`}`

Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`sockPath := "/var/run/wireguard/" + c.name + ".sock"`
Mobile prerefactor (#680) Small code cleaning in the iface package. These changes necessary to get a clean code in case if we involve more platforms. The OS related functions has been distributed into separate files and it has been mixed with not OS related logic. The goal is to get a clear picture of the layer between WireGuard and business logic. 2023-02-13 18:34:56 +01:00			`if _, statErr := os.Stat(sockPath); statErr == nil {`
			`statErr = os.Remove(sockPath)`
			`if statErr != nil {`
			`return statErr`
			`}`
			`}`

			`return nil`
			`}`

Handle peer interface config change (#348) Before this change, NetBird Agent wasn't handling peer interface configuration changes dynamically. Also, remote peer configuration changes have not been applied (e.g. AllowedIPs changed). Not a very common cause, but still it should be handled. Now, Agent reacts to PeerConfig changes sent from the management service and restarts remote connections if AllowedIps have been changed. 2022-06-04 19:41:01 +02:00			`// createWithUserspace Creates a new Wireguard interface, using wireguard-go userspace implementation`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`func (c *tunDevice) createWithUserspace() (NetInterface, error) {`
			`tunIface, err := tun.CreateTUN(c.name, c.mtu)`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`if err != nil {`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`return nil, err`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`}`

			`// We need to create a wireguard-go device and listen to configuration requests`
			`tunDevice := device.NewDevice(tunIface, conn.NewDefaultBind(), device.NewLogger(device.LogLevelSilent, "[wiretrustee] "))`
			`err = tunDevice.Up()`
			`if err != nil {`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`return tunIface, err`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`}`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00
			`// todo: after this line in case of error close the tunSock`
			`uapi, err := c.getUAPI(c.name)`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`if err != nil {`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`return tunIface, err`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`}`

			`go func() {`
			`for {`
			`uapiConn, uapiErr := uapi.Accept()`
			`if uapiErr != nil {`
			`log.Traceln("uapi Accept failed with error: ", uapiErr)`
			`continue`
			`}`
			`go tunDevice.IpcHandle(uapiConn)`
			`}`
			`}()`

			`log.Debugln("UAPI listener started")`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`return tunIface, nil`
Refactor Interface package and update windows driver (#192) * script to generate syso files * test wireguard-windows driver package * set int log * add windows test * add windows test * verbose bash * use cd * move checkout * exit 0 * removed tty flag * artifact path * fix tags and add cache * fix cache * fix cache * test dir * restore artifacts in the root * try dll file * try dll file * copy dll * typo in copy dll * compile test * checkout first * updated cicd * fix add address issue and gen GUID * psexec typo * accept eula * mod tidy before tests * regular test exec and verbose test with psexec * test all * return WGInterface Interface * use WgIfaceName and timeout after 30 seconds * different ports and validate connect 2 peers * Use time.After for timeout and close interface * Use time.After for testing connect peers * WG Interface struct * Update engine and parse address * refactor Linux create and assignAddress * NewWGIface and configuration methods * Update proxy with interface methods * update up command test * resolve lint warnings * remove psexec test * close copied files * add goos before build * run tests on mac,windows and linux * cache by testing os * run on push * fix indentation * adjust test timeouts * remove parallel flag * mod tidy before test * ignore syso files * removed functions and renamed vars * different IPs for connect peers test * Generate syso with DLL * Single Close method * use port from test constant * test: remove wireguard interfaces after finishing engine test * use load_wgnt_from_rsrc Co-authored-by: braginini <bangvalo@gmail.com> 2022-01-17 14:01:58 +01:00			`}`

Add windows support and update wireguard-go deps 2021-06-06 00:40:44 +02:00			`// getUAPI returns a Listener`
Mobile (#735) Initial modification to support mobile client Export necessary interfaces for Android framework 2023-03-17 10:37:27 +01:00			`func (c *tunDevice) getUAPI(iface string) (net.Listener, error) {`
Add windows support and update wireguard-go deps 2021-06-06 00:40:44 +02:00			`tunSock, err := ipc.UAPIOpen(iface)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return ipc.UAPIListen(iface, tunSock)`
			`}`