tun2socks/tunnel/udp.go

package tunnel

import (
	"net"
	"sync"
	"time"

	"github.com/xjasonlyu/tun2socks/v2/common/pool"
	"github.com/xjasonlyu/tun2socks/v2/core/adapter"
	"github.com/xjasonlyu/tun2socks/v2/log"
	M "github.com/xjasonlyu/tun2socks/v2/metadata"
	"github.com/xjasonlyu/tun2socks/v2/proxy"
	"github.com/xjasonlyu/tun2socks/v2/tunnel/statistic"
)

// _udpSessionTimeout is the default timeout for each UDP session.
var _udpSessionTimeout = 60 * time.Second

func SetUDPTimeout(t time.Duration) {
	_udpSessionTimeout = t
}

func newUDPTracker(conn net.PacketConn, metadata *M.Metadata) net.PacketConn {
	return statistic.NewUDPTracker(conn, metadata, statistic.DefaultManager)
}

// TODO: Port Restricted NAT support.
func handleUDPConn(uc adapter.UDPConn) {
	defer uc.Close()

	id := uc.ID()
	metadata := &M.Metadata{
		Network: M.UDP,
		SrcIP:   net.IP(id.RemoteAddress),
		SrcPort: id.RemotePort,
		DstIP:   net.IP(id.LocalAddress),
		DstPort: id.LocalPort,
	}

	pc, err := proxy.DialUDP(metadata)
	if err != nil {
		log.Warnf("[UDP] dial %s: %v", metadata.DestinationAddress(), err)
		return
	}
	metadata.MidIP, metadata.MidPort = parseAddr(pc.LocalAddr())

	pc = newUDPTracker(pc, metadata)
	defer pc.Close()

	var remote net.Addr
	if udpAddr := metadata.UDPAddr(); udpAddr != nil {
		remote = udpAddr
	} else {
		remote = metadata.Addr()
	}
	pc = newSymmetricNATPacketConn(pc, metadata)

	log.Infof("[UDP] %s <-> %s", metadata.SourceAddress(), metadata.DestinationAddress())
	relayPacket(uc, pc, remote)
}

func relayPacket(left net.PacketConn, right net.PacketConn, to net.Addr) {
	wg := sync.WaitGroup{}
	wg.Add(2)

	go func() {
		defer wg.Done()
		if err := copyPacketBuffer(right, left, to, _udpSessionTimeout); err != nil {
			log.Warnf("[UDP] %v", err)
		}
	}()

	go func() {
		defer wg.Done()
		if err := copyPacketBuffer(left, right, nil, _udpSessionTimeout); err != nil {
			log.Warnf("[UDP] %v", err)
		}
	}()

	wg.Wait()
}

func copyPacketBuffer(dst net.PacketConn, src net.PacketConn, to net.Addr, timeout time.Duration) error {
	buf := pool.Get(pool.MaxSegmentSize)
	defer pool.Put(buf)

	for {
		src.SetReadDeadline(time.Now().Add(timeout))
		n, _, err := src.ReadFrom(buf)
		if ne, ok := err.(net.Error); ok && ne.Timeout() {
			return nil /* ignore I/O timeout */
		} else if err != nil {
			return err
		}

		if _, err = dst.WriteTo(buf[:n], to); err != nil {
			return err
		}
		dst.SetReadDeadline(time.Now().Add(timeout))
	}
}

type symmetricNATPacketConn struct {
	net.PacketConn
	src string
	dst string
}

func newSymmetricNATPacketConn(pc net.PacketConn, metadata *M.Metadata) *symmetricNATPacketConn {
	return &symmetricNATPacketConn{
		PacketConn: pc,
		src:        metadata.SourceAddress(),
		dst:        metadata.DestinationAddress(),
	}
}

func (pc *symmetricNATPacketConn) ReadFrom(p []byte) (int, net.Addr, error) {
	for {
		n, from, err := pc.PacketConn.ReadFrom(p)

		if from != nil && from.String() != pc.dst {
			log.Warnf("[UDP] symmetric NAT %s->%s: drop packet from %s", pc.src, pc.dst, from)
			continue
		}

		return n, from, err
	}
}
v2 4 years ago			`package tunnel`

			`import (`
			`"net"`
Refactor(tunnel): udp packet relay 3 years ago			`"sync"`
v2 4 years ago			`"time"`

Fix: set major version to v2 (#88) 3 years ago			`"github.com/xjasonlyu/tun2socks/v2/common/pool"`
Refactor: use core/adapter 3 years ago			`"github.com/xjasonlyu/tun2socks/v2/core/adapter"`
Fix: set major version to v2 (#88) 3 years ago			`"github.com/xjasonlyu/tun2socks/v2/log"`
Refactor: standalone metadata module 3 years ago			`M "github.com/xjasonlyu/tun2socks/v2/metadata"`
Fix: set major version to v2 (#88) 3 years ago			`"github.com/xjasonlyu/tun2socks/v2/proxy"`
			`"github.com/xjasonlyu/tun2socks/v2/tunnel/statistic"`
v2 4 years ago			`)`

Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`// _udpSessionTimeout is the default timeout for each UDP session.`
			`var _udpSessionTimeout = 60 * time.Second`
v2 4 years ago
Change: udp timeout = time.Duration 3 years ago			`func SetUDPTimeout(t time.Duration) {`
			`_udpSessionTimeout = t`
Feature: add an option to set udp timeout 4 years ago			`}`

Refactor: autonomize core package 4 years ago			`func newUDPTracker(conn net.PacketConn, metadata *M.Metadata) net.PacketConn {`
Refactor: manager -> statistic 4 years ago			`return statistic.NewUDPTracker(conn, metadata, statistic.DefaultManager)`
			`}`

Chore: add TODOs 3 years ago			`// TODO: Port Restricted NAT support.`
Refactor: use core/adapter 3 years ago			`func handleUDPConn(uc adapter.UDPConn) {`
Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`defer uc.Close()`

Fix: nil addr panic (#99) 3 years ago			`id := uc.ID()`
Refactor: autonomize core package 4 years ago			`metadata := &M.Metadata{`
Refactor: improve metadata structure 3 years ago			`Network: M.UDP,`
Fix: nil addr panic (#99) 3 years ago			`SrcIP: net.IP(id.RemoteAddress),`
			`SrcPort: id.RemotePort,`
			`DstIP: net.IP(id.LocalAddress),`
			`DstPort: id.LocalPort,`
Refactor: autonomize core package 4 years ago			`}`
v2 4 years ago
Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`pc, err := proxy.DialUDP(metadata)`
			`if err != nil {`
Chore: amend log messages 3 years ago			`log.Warnf("[UDP] dial %s: %v", metadata.DestinationAddress(), err)`
v2 4 years ago			`return`
			`}`
Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`metadata.MidIP, metadata.MidPort = parseAddr(pc.LocalAddr())`
v2 4 years ago
Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`pc = newUDPTracker(pc, metadata)`
			`defer pc.Close()`
v2 4 years ago
Refactor: return metadata.Addr only 3 years ago			`var remote net.Addr`
			`if udpAddr := metadata.UDPAddr(); udpAddr != nil {`
			`remote = udpAddr`
			`} else {`
			`remote = metadata.Addr()`
			`}`
Fix(tunnel/udp): NAT source verification (#112) 3 years ago			`pc = newSymmetricNATPacketConn(pc, metadata)`
Refactor: return metadata.Addr only 3 years ago
Refactor(tunnel): udp packet relay 3 years ago			`log.Infof("[UDP] %s <-> %s", metadata.SourceAddress(), metadata.DestinationAddress())`
			`relayPacket(uc, pc, remote)`
Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`}`

Refactor(tunnel): udp packet relay 3 years ago			`func relayPacket(left net.PacketConn, right net.PacketConn, to net.Addr) {`
			`wg := sync.WaitGroup{}`
			`wg.Add(2)`
v2 4 years ago
Refactor(tunnel): udp packet relay 3 years ago			`go func() {`
			`defer wg.Done()`
			`if err := copyPacketBuffer(right, left, to, _udpSessionTimeout); err != nil {`
Chore(tunnel): minify log message 3 years ago			`log.Warnf("[UDP] %v", err)`
v2 4 years ago			`}`
Refactor(tunnel): udp packet relay 3 years ago			`}()`
v2 4 years ago
Refactor(tunnel): udp packet relay 3 years ago			`go func() {`
			`defer wg.Done()`
			`if err := copyPacketBuffer(left, right, nil, _udpSessionTimeout); err != nil {`
Chore(tunnel): minify log message 3 years ago			`log.Warnf("[UDP] %v", err)`
v2 4 years ago			`}`
Refactor(tunnel): udp packet relay 3 years ago			`}()`
v2 4 years ago
Refactor(tunnel): udp packet relay 3 years ago			`wg.Wait()`
v2 4 years ago			`}`

Refactor(tunnel): udp packet relay 3 years ago			`func copyPacketBuffer(dst net.PacketConn, src net.PacketConn, to net.Addr, timeout time.Duration) error {`
Refactor 4 years ago			`buf := pool.Get(pool.MaxSegmentSize)`
v2 4 years ago			`defer pool.Put(buf)`

Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`for {`
Refactor(tunnel): udp packet relay 3 years ago			`src.SetReadDeadline(time.Now().Add(timeout))`
			`n, _, err := src.ReadFrom(buf)`
Chore: ignore io timeout 3 years ago			`if ne, ok := err.(net.Error); ok && ne.Timeout() {`
			`return nil /* ignore I/O timeout */`
			`} else if err != nil {`
Refactor(tunnel): udp packet relay 3 years ago			`return err`
v2 4 years ago			`}`

Refactor(tunnel): udp packet relay 3 years ago			`if _, err = dst.WriteTo(buf[:n], to); err != nil {`
			`return err`
Refactor: optimize UDP module Symmetric NAT support for now. 3 years ago			`}`
Refactor(tunnel): udp packet relay 3 years ago			`dst.SetReadDeadline(time.Now().Add(timeout))`
v2 4 years ago			`}`
			`}`
Fix(tunnel/udp): NAT source verification (#112) 3 years ago
			`type symmetricNATPacketConn struct {`
			`net.PacketConn`
			`src string`
			`dst string`
			`}`

			`func newSymmetricNATPacketConn(pc net.PacketConn, metadata M.Metadata) symmetricNATPacketConn {`
			`return &symmetricNATPacketConn{`
			`PacketConn: pc,`
			`src: metadata.SourceAddress(),`
			`dst: metadata.DestinationAddress(),`
			`}`
			`}`

			`func (pc *symmetricNATPacketConn) ReadFrom(p []byte) (int, net.Addr, error) {`
			`for {`
			`n, from, err := pc.PacketConn.ReadFrom(p)`

			`if from != nil && from.String() != pc.dst {`
			`log.Warnf("[UDP] symmetric NAT %s->%s: drop packet from %s", pc.src, pc.dst, from)`
			`continue`
			`}`

			`return n, from, err`
			`}`
			`}`