2019-02-04 16:29:52 +00:00
|
|
|
/* SPDX-License-Identifier: MIT
|
|
|
|
*
|
|
|
|
* Copyright (C) 2018-2019 WireGuard LLC. All Rights Reserved.
|
|
|
|
*/
|
|
|
|
|
|
|
|
package tun
|
|
|
|
|
|
|
|
import (
|
|
|
|
"errors"
|
|
|
|
"os"
|
|
|
|
"unsafe"
|
|
|
|
|
|
|
|
"golang.org/x/sys/windows"
|
2019-02-19 17:49:24 +00:00
|
|
|
"golang.zx2c4.com/wireguard/tun/wintun"
|
2019-02-04 16:29:52 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
const (
|
2019-02-19 17:49:24 +00:00
|
|
|
packetSizeMax uint32 = 0xeffc // Maximum packet size: 4 + packetSizeMax == 0xf000
|
|
|
|
packetExchangeMax uint32 = 256 // Number of packets that may be written at a time
|
|
|
|
packetExchangeAlignment uint32 = 16 // Number of bytes packets are aligned to in exchange buffers
|
|
|
|
packetExchangeSize uint32 = 0x100000 // Exchange buffer size (defaults to 1MiB)
|
2019-02-04 16:29:52 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
const (
|
2019-02-08 07:55:23 +00:00
|
|
|
signalClose = iota
|
|
|
|
signalDataAvail
|
2019-02-04 16:29:52 +00:00
|
|
|
|
2019-02-08 07:55:23 +00:00
|
|
|
signalMax
|
2019-02-04 16:29:52 +00:00
|
|
|
)
|
|
|
|
|
2019-02-19 17:49:24 +00:00
|
|
|
type nativeTun struct {
|
|
|
|
wt *wintun.Wintun
|
|
|
|
tunName string
|
|
|
|
signalName *uint16
|
|
|
|
tunFile *os.File
|
|
|
|
wrBuff [packetExchangeSize]byte
|
|
|
|
rdBuff [packetExchangeSize]byte
|
|
|
|
signals [signalMax]windows.Handle
|
|
|
|
wrOffset uint32
|
|
|
|
wrPacketNum uint32
|
|
|
|
rdOffset uint32
|
|
|
|
rdAvailabe uint32
|
|
|
|
events chan TUNEvent
|
|
|
|
errors chan error
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
|
2019-02-19 17:49:24 +00:00
|
|
|
func packetAlign(size uint32) uint32 {
|
|
|
|
return (size + (packetExchangeAlignment - 1)) &^ (packetExchangeAlignment - 1)
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func CreateTUN(ifname string) (TUNDevice, error) {
|
2019-02-06 21:30:14 +00:00
|
|
|
// Does an interface with this name already exist?
|
2019-02-07 03:18:27 +00:00
|
|
|
wt, err := wintun.GetInterface(ifname, 0)
|
2019-02-07 21:02:51 +00:00
|
|
|
if wt == nil {
|
2019-02-06 21:30:14 +00:00
|
|
|
// Interface does not exist or an error occured. Create one.
|
2019-02-07 03:18:27 +00:00
|
|
|
wt, _, err = wintun.CreateInterface("WireGuard Tunnel Adapter", 0)
|
2019-02-06 21:30:14 +00:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
2019-02-07 21:02:51 +00:00
|
|
|
} else if err != nil {
|
|
|
|
// Foreign interface with the same name found.
|
|
|
|
// We could create a Wintun interface under a temporary name. But, should our
|
|
|
|
// proces die without deleting this interface first, the interface would remain
|
|
|
|
// orphaned.
|
|
|
|
return nil, err
|
|
|
|
}
|
2019-02-06 21:30:14 +00:00
|
|
|
|
2019-02-07 21:02:51 +00:00
|
|
|
err = wt.SetInterfaceName(ifname)
|
|
|
|
if err != nil {
|
|
|
|
wt.DeleteInterface(0)
|
|
|
|
return nil, err
|
2019-02-06 21:30:14 +00:00
|
|
|
}
|
2019-02-07 21:02:51 +00:00
|
|
|
|
2019-02-07 17:24:28 +00:00
|
|
|
err = wt.FlushInterface()
|
|
|
|
if err != nil {
|
|
|
|
wt.DeleteInterface(0)
|
|
|
|
return nil, err
|
|
|
|
}
|
2019-02-06 21:30:14 +00:00
|
|
|
|
2019-02-07 03:18:27 +00:00
|
|
|
signalNameUTF16, err := windows.UTF16PtrFromString(wt.SignalEventName())
|
2019-02-04 16:29:52 +00:00
|
|
|
if err != nil {
|
2019-02-07 03:18:27 +00:00
|
|
|
wt.DeleteInterface(0)
|
2019-02-04 16:29:52 +00:00
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
// Create instance.
|
|
|
|
tun := &nativeTun{
|
2019-02-07 03:18:27 +00:00
|
|
|
wt: wt,
|
|
|
|
tunName: wt.DataFileName(),
|
2019-02-04 16:29:52 +00:00
|
|
|
signalName: signalNameUTF16,
|
|
|
|
events: make(chan TUNEvent, 10),
|
|
|
|
errors: make(chan error, 1),
|
|
|
|
}
|
|
|
|
|
|
|
|
// Create close event.
|
2019-02-08 07:55:23 +00:00
|
|
|
tun.signals[signalClose], err = windows.CreateEvent(nil, 1 /*TRUE*/, 0 /*FALSE*/, nil)
|
2019-02-04 16:29:52 +00:00
|
|
|
if err != nil {
|
2019-02-07 03:18:27 +00:00
|
|
|
wt.DeleteInterface(0)
|
2019-02-04 16:29:52 +00:00
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return tun, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) openTUN() error {
|
|
|
|
for {
|
|
|
|
// Open interface data pipe.
|
|
|
|
// Data pipe must be opened first, as the interface data available event is created when somebody actually connects to the data pipe.
|
|
|
|
file, err := os.OpenFile(tun.tunName, os.O_RDWR|os.O_SYNC, 0600)
|
|
|
|
if err != nil {
|
|
|
|
// After examining possible error conditions, many arose that were only temporary: windows.ERROR_FILE_NOT_FOUND, "read <filename> closed", etc.
|
|
|
|
// To simplify, we will enter a retry-loop on _any_ error until session is closed by user.
|
2019-02-08 07:55:23 +00:00
|
|
|
switch evt, e := windows.WaitForSingleObject(tun.signals[signalClose], 1000); evt {
|
2019-02-04 16:29:52 +00:00
|
|
|
case windows.WAIT_OBJECT_0, windows.WAIT_ABANDONED:
|
|
|
|
return errors.New("TUN closed")
|
|
|
|
case windows.WAIT_TIMEOUT:
|
|
|
|
continue
|
|
|
|
default:
|
2019-02-05 13:06:25 +00:00
|
|
|
return errors.New("Unexpected result from WaitForSingleObject: " + e.Error())
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Open interface data available event.
|
|
|
|
event, err := windows.OpenEvent(windows.SYNCHRONIZE, false, tun.signalName)
|
|
|
|
if err != nil {
|
|
|
|
file.Close()
|
2019-02-05 13:06:25 +00:00
|
|
|
return errors.New("Opening interface data ready event failed: " + err.Error())
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
tun.tunFile = file
|
2019-02-08 07:55:23 +00:00
|
|
|
tun.signals[signalDataAvail] = event
|
2019-02-04 16:29:52 +00:00
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) closeTUN() (err error) {
|
2019-02-08 07:55:23 +00:00
|
|
|
if tun.signals[signalDataAvail] != 0 {
|
2019-02-04 16:29:52 +00:00
|
|
|
// Close interface data ready event.
|
2019-02-08 07:55:23 +00:00
|
|
|
e := windows.CloseHandle(tun.signals[signalDataAvail])
|
2019-02-04 16:29:52 +00:00
|
|
|
if err != nil {
|
|
|
|
err = e
|
|
|
|
}
|
|
|
|
|
2019-02-08 07:55:23 +00:00
|
|
|
tun.signals[signalDataAvail] = 0
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if tun.tunFile != nil {
|
|
|
|
// Close interface data pipe.
|
|
|
|
e := tun.tunFile.Close()
|
|
|
|
if err != nil {
|
|
|
|
err = e
|
|
|
|
}
|
|
|
|
|
|
|
|
tun.tunFile = nil
|
|
|
|
}
|
|
|
|
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) Name() (string, error) {
|
2019-02-07 03:18:27 +00:00
|
|
|
return tun.wt.GetInterfaceName()
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) File() *os.File {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) Events() chan TUNEvent {
|
|
|
|
return tun.events
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) Close() error {
|
2019-02-08 07:55:23 +00:00
|
|
|
windows.SetEvent(tun.signals[signalClose])
|
|
|
|
err := windows.CloseHandle(tun.signals[signalClose])
|
2019-02-04 16:29:52 +00:00
|
|
|
|
|
|
|
e := tun.closeTUN()
|
|
|
|
if err == nil {
|
|
|
|
err = e
|
|
|
|
}
|
|
|
|
|
|
|
|
if tun.events != nil {
|
|
|
|
close(tun.events)
|
|
|
|
}
|
|
|
|
|
2019-02-07 03:18:27 +00:00
|
|
|
_, _, e = tun.wt.DeleteInterface(0)
|
2019-02-06 21:30:14 +00:00
|
|
|
if err == nil {
|
|
|
|
err = e
|
|
|
|
}
|
|
|
|
|
2019-02-04 16:29:52 +00:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) MTU() (int, error) {
|
|
|
|
return 1500, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) Read(buff []byte, offset int) (int, error) {
|
|
|
|
select {
|
|
|
|
case err := <-tun.errors:
|
|
|
|
return 0, err
|
|
|
|
default:
|
2019-02-08 13:31:05 +00:00
|
|
|
}
|
2019-02-04 16:29:52 +00:00
|
|
|
|
2019-02-08 13:31:05 +00:00
|
|
|
for {
|
2019-02-19 17:49:24 +00:00
|
|
|
if tun.rdOffset+4 <= tun.rdAvailabe {
|
2019-02-08 13:31:05 +00:00
|
|
|
// Get packet from the queue.
|
2019-02-19 17:49:24 +00:00
|
|
|
size := *(*uint32)(unsafe.Pointer(&tun.rdBuff[tun.rdOffset]))
|
|
|
|
pSize := packetAlign(4 + size)
|
|
|
|
if packetSizeMax < size || tun.rdAvailabe < tun.rdOffset+pSize {
|
2019-02-08 13:31:05 +00:00
|
|
|
// Invalid packet size.
|
2019-02-19 17:49:24 +00:00
|
|
|
tun.rdAvailabe = 0
|
2019-02-08 07:48:35 +00:00
|
|
|
continue
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
|
2019-02-08 13:31:05 +00:00
|
|
|
// Copy data.
|
2019-02-19 17:49:24 +00:00
|
|
|
copy(buff[offset:], (*(*[packetSizeMax]byte)(unsafe.Pointer(&tun.rdBuff[tun.rdOffset+4])))[:size])
|
|
|
|
tun.rdOffset += pSize
|
|
|
|
return int(size), nil
|
2019-02-08 13:31:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if tun.signals[signalDataAvail] == 0 {
|
|
|
|
// Data pipe and interface data available event are not open (yet).
|
|
|
|
err := tun.openTUN()
|
|
|
|
if err != nil {
|
|
|
|
return 0, err
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
}
|
2019-02-08 13:31:05 +00:00
|
|
|
|
|
|
|
// Wait for user close or interface data.
|
|
|
|
r, err := windows.WaitForMultipleObjects(tun.signals[:], false, windows.INFINITE)
|
|
|
|
if err != nil {
|
|
|
|
return 0, errors.New("Waiting for data failed: " + err.Error())
|
|
|
|
}
|
|
|
|
switch r {
|
|
|
|
case windows.WAIT_OBJECT_0 + signalClose, windows.WAIT_ABANDONED + signalClose:
|
|
|
|
return 0, errors.New("TUN closed")
|
|
|
|
case windows.WAIT_OBJECT_0 + signalDataAvail:
|
|
|
|
// Data is available.
|
|
|
|
case windows.WAIT_ABANDONED + signalDataAvail:
|
|
|
|
// TUN stopped. Reopen it.
|
|
|
|
tun.closeTUN()
|
|
|
|
continue
|
|
|
|
case windows.WAIT_TIMEOUT:
|
|
|
|
// Congratulations, we reached infinity. Let's do it again! :)
|
|
|
|
continue
|
|
|
|
default:
|
|
|
|
return 0, errors.New("unexpected result from WaitForMultipleObjects")
|
|
|
|
}
|
|
|
|
|
|
|
|
// Fill queue.
|
2019-02-19 17:49:24 +00:00
|
|
|
n, err := tun.tunFile.Read(tun.rdBuff[:])
|
|
|
|
if err != nil {
|
2019-02-08 13:31:05 +00:00
|
|
|
// TUN interface stopped, returned incomplete data, etc.
|
|
|
|
// Retry.
|
2019-02-19 17:49:24 +00:00
|
|
|
tun.rdAvailabe = 0
|
2019-02-08 13:31:05 +00:00
|
|
|
tun.closeTUN()
|
|
|
|
continue
|
|
|
|
}
|
2019-02-19 17:49:24 +00:00
|
|
|
tun.rdOffset = 0
|
|
|
|
tun.rdAvailabe = uint32(n)
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-02-07 03:08:05 +00:00
|
|
|
// Note: flush() and putTunPacket() assume the caller comes only from a single thread; there's no locking.
|
|
|
|
|
2019-02-04 16:29:52 +00:00
|
|
|
func (tun *nativeTun) flush() error {
|
|
|
|
// Flush write buffer.
|
2019-02-19 17:49:24 +00:00
|
|
|
_, err := tun.tunFile.Write(tun.wrBuff[:tun.wrOffset])
|
|
|
|
tun.wrPacketNum = 0
|
|
|
|
tun.wrOffset = 0
|
2019-02-04 16:29:52 +00:00
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) putTunPacket(buff []byte) error {
|
2019-02-19 17:49:24 +00:00
|
|
|
size := uint32(len(buff))
|
2019-02-04 16:29:52 +00:00
|
|
|
if size == 0 {
|
2019-02-05 13:06:25 +00:00
|
|
|
return errors.New("Empty packet")
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
2019-02-08 07:55:23 +00:00
|
|
|
if size > packetSizeMax {
|
2019-02-05 13:06:25 +00:00
|
|
|
return errors.New("Packet too big")
|
2019-02-04 16:29:52 +00:00
|
|
|
}
|
2019-02-19 17:49:24 +00:00
|
|
|
pSize := packetAlign(4 + size)
|
2019-02-04 16:29:52 +00:00
|
|
|
|
2019-02-19 17:49:24 +00:00
|
|
|
if tun.wrPacketNum >= packetExchangeMax || tun.wrOffset+pSize >= packetExchangeSize {
|
|
|
|
// Exchange buffer is full -> flush first.
|
2019-02-04 16:29:52 +00:00
|
|
|
err := tun.flush()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-02-19 17:49:24 +00:00
|
|
|
// Write packet to the exchange buffer.
|
|
|
|
*(*uint32)(unsafe.Pointer(&tun.wrBuff[tun.wrOffset])) = size
|
|
|
|
copy((*(*[packetSizeMax]byte)(unsafe.Pointer(&tun.wrBuff[tun.wrOffset+4])))[:size], buff)
|
2019-02-04 16:29:52 +00:00
|
|
|
|
2019-02-19 17:49:24 +00:00
|
|
|
tun.wrPacketNum++
|
|
|
|
tun.wrOffset += pSize
|
2019-02-04 16:29:52 +00:00
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (tun *nativeTun) Write(buff []byte, offset int) (int, error) {
|
|
|
|
err := tun.putTunPacket(buff[offset:])
|
|
|
|
if err != nil {
|
|
|
|
return 0, err
|
|
|
|
}
|
|
|
|
|
|
|
|
// Flush write buffer.
|
|
|
|
return len(buff) - offset, tun.flush()
|
|
|
|
}
|