mirror of
https://github.com/netbirdio/netbird.git
synced 2025-01-22 05:49:12 +01:00
9203690033
Code cleaning around the util/net package. The goal was to write a more understandable source code but modify nothing on the logic. Protect the WireGuard UDP listeners with marks. The implementation can support the VPN permission revocation events in thread safe way. It will be important if we start to support the running time route and DNS update features. - uniformize the file name convention: [struct_name] _ [functions] _ [os].go - code cleaning in net_linux.go - move env variables to env.go file
43 lines
843 B
Go
43 lines
843 B
Go
package net
|
|
|
|
import (
|
|
"fmt"
|
|
"sync"
|
|
"syscall"
|
|
)
|
|
|
|
var (
|
|
androidProtectSocketLock sync.Mutex
|
|
androidProtectSocket func(fd int32) bool
|
|
)
|
|
|
|
func SetAndroidProtectSocketFn(fn func(fd int32) bool) {
|
|
androidProtectSocketLock.Lock()
|
|
androidProtectSocket = fn
|
|
androidProtectSocketLock.Unlock()
|
|
}
|
|
|
|
// ControlProtectSocket is a Control function that sets the fwmark on the socket
|
|
func ControlProtectSocket(_, _ string, c syscall.RawConn) error {
|
|
var aErr error
|
|
err := c.Control(func(fd uintptr) {
|
|
androidProtectSocketLock.Lock()
|
|
defer androidProtectSocketLock.Unlock()
|
|
|
|
if androidProtectSocket == nil {
|
|
aErr = fmt.Errorf("socket protection function not set")
|
|
return
|
|
}
|
|
|
|
if !androidProtectSocket(int32(fd)) {
|
|
aErr = fmt.Errorf("failed to protect socket via Android")
|
|
}
|
|
})
|
|
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return aErr
|
|
}
|