oxen-io
/
lokinet
mirror of https://github.com/oxen-io/lokinet
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
lokinet/llarp/handlers/tun.hpp

330 lines
8.4 KiB
C++
Raw Normal View History

standardize include format and pragma once All #ifndef guards on headers have been removed, I think, in favor of #pragma once Headers are now included as `#include "filename"` if the included file resides in the same directory as the file including it, or any subdirectory therein. Otherwise they are included as `#include <project/top/dir/relative/path/filename>` The above does not include system/os headers.
2021-03-09 23:24:35 +01:00
#pragma once
#include <llarp/dns/server.hpp>
#include <llarp/ev/ev.hpp>
#include <llarp/net/ip.hpp>
#include <llarp/net/ip_packet.hpp>
#include <llarp/net/net.hpp>
#include <llarp/service/endpoint.hpp>
changeset for windows port * wintun vpn platform for windows * bundle config snippets into nsis installer for exit node, keyfile persisting, reduced hops mode. * use wintun for vpn platform * isolate all windows platform specific code into their own compilation units and libraries * split up internal libraries into more specific components * rename liblokinet.a target to liblokinet-amalgum.a to elimiate ambiguity with liblokinet.so * DNS platform for win32 * rename llarp/ev/ev_libuv.{c,h}pp to llarp/ev/libuv.{c,h}pp as the old name was idiotic * split up net platform into win32 and posix specific compilation units * rename lokinet_init.c to easter_eggs.cpp as that is what they are for and it does not need to be a c compilation target * add cmake option STRIP_SYMBOLS for seperating out debug symbols for windows builds * intercept dns traffic on all interfaces on windows using windivert and feed it into lokinet
2022-07-28 18:07:38 +02:00
#include <llarp/service/protocol_type.hpp>
#include <llarp/util/priority_queue.hpp>
standardize include format and pragma once All #ifndef guards on headers have been removed, I think, in favor of #pragma once Headers are now included as `#include "filename"` if the included file resides in the same directory as the file including it, or any subdirectory therein. Otherwise they are included as `#include <project/top/dir/relative/path/filename>` The above does not include system/os headers.
2021-03-09 23:24:35 +01:00
#include <llarp/util/thread/threading.hpp>
#include <llarp/vpn/packet_router.hpp>
changeset for windows port * wintun vpn platform for windows * bundle config snippets into nsis installer for exit node, keyfile persisting, reduced hops mode. * use wintun for vpn platform * isolate all windows platform specific code into their own compilation units and libraries * split up internal libraries into more specific components * rename liblokinet.a target to liblokinet-amalgum.a to elimiate ambiguity with liblokinet.so * DNS platform for win32 * rename llarp/ev/ev_libuv.{c,h}pp to llarp/ev/libuv.{c,h}pp as the old name was idiotic * split up net platform into win32 and posix specific compilation units * rename lokinet_init.c to easter_eggs.cpp as that is what they are for and it does not need to be a c compilation target * add cmake option STRIP_SYMBOLS for seperating out debug symbols for windows builds * intercept dns traffic on all interfaces on windows using windivert and feed it into lokinet
2022-07-28 18:07:38 +02:00
#include <llarp/vpn/platform.hpp>
more boilerplate and enable tun/tap build
2018-08-08 21:37:33 +02:00
Add threading annotations and fix potential deadlocks
2019-03-03 21:51:47 +01:00
#include <future>
clean up address/ip management code to use std::variant and std::optional
2021-03-15 17:01:19 +01:00
#include <type_traits>
#include <variant>
convert priority queues
2022-04-05 00:12:27 +02:00
more boilerplate and enable tun/tap build
2018-08-08 21:37:33 +02:00
namespace llarp
{
namespace handlers
{
finish converting to shared_ptr
2019-04-23 18:13:22 +02:00
struct TunEndpoint : public service::Endpoint,
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
public dns::Resolver_Base,
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
public std::enable_shared_from_this<TunEndpoint>
more boilerplate and enable tun/tap build
2018-08-08 21:37:33 +02:00
{
tun code refactor (#1495) * partial tun code refactor * take out the trash * move vpn platform code into llarp/vpn/platform.cpp * fix hive build * fix win32 * fix memory leak on win32 * reduce cpu use * make macos compile * win32 patches: * use wepoll for zmq * use all cores on windows iocp read loop * fix zmq patch for windows * clean up cmake for win32 * add uninstall before reinstall option to win32 installer * more ipv6 stuff * make it compile * fix up route poker * remove an unneeded code block in macos wtf * always use call to system * fix route poker behavior on macos * disable ipv6 on windows for now * cpu perf improvement: * colease calls to Router::PumpLL to 1 per event loop wakeup * set up THEN add addresses * emulate proactor event loop on win32 * remove excessively verbose error message * fix issue #1499 * exclude uv_poll from win32 so that it can start up * update logtag to include directory * create minidump on windows if there was a crash * make windows happy * use dmp suffix on minidump files * typo fix * address feedback from jason * use PROJECT_SOURCE_DIR instead of CMAKE_SOURCE_DIR * quote $@ in apply-patches in case path has spaces in it * address feedback from tom * remove llarp/ev/pipe * add comments for clairification * make event loop queue size constant named
2021-01-12 00:13:22 +01:00
TunEndpoint(AbstractRouter* r, llarp::service::Context* parent);
clang-tidy modernize pass
2019-07-31 01:42:13 +02:00
~TunEndpoint() override;
more tun code
2018-08-16 16:34:15 +02:00
changeset for windows port * wintun vpn platform for windows * bundle config snippets into nsis installer for exit node, keyfile persisting, reduced hops mode. * use wintun for vpn platform * isolate all windows platform specific code into their own compilation units and libraries * split up internal libraries into more specific components * rename liblokinet.a target to liblokinet-amalgum.a to elimiate ambiguity with liblokinet.so * DNS platform for win32 * rename llarp/ev/ev_libuv.{c,h}pp to llarp/ev/libuv.{c,h}pp as the old name was idiotic * split up net platform into win32 and posix specific compilation units * rename lokinet_init.c to easter_eggs.cpp as that is what they are for and it does not need to be a c compilation target * add cmake option STRIP_SYMBOLS for seperating out debug symbols for windows builds * intercept dns traffic on all interfaces on windows using windivert and feed it into lokinet
2022-07-28 18:07:38 +02:00
vpn::NetworkInterface*
GetVPNInterface() override
{
return m_NetIf.get();
}
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
int
Rank() const override
{
return 0;
}
std::string_view
ResolverName() const override
{
return "lokinet";
}
bool
MaybeHookDNS(
changeset for windows port * wintun vpn platform for windows * bundle config snippets into nsis installer for exit node, keyfile persisting, reduced hops mode. * use wintun for vpn platform * isolate all windows platform specific code into their own compilation units and libraries * split up internal libraries into more specific components * rename liblokinet.a target to liblokinet-amalgum.a to elimiate ambiguity with liblokinet.so * DNS platform for win32 * rename llarp/ev/ev_libuv.{c,h}pp to llarp/ev/libuv.{c,h}pp as the old name was idiotic * split up net platform into win32 and posix specific compilation units * rename lokinet_init.c to easter_eggs.cpp as that is what they are for and it does not need to be a c compilation target * add cmake option STRIP_SYMBOLS for seperating out debug symbols for windows builds * intercept dns traffic on all interfaces on windows using windivert and feed it into lokinet
2022-07-28 18:07:38 +02:00
std::shared_ptr<dns::PacketSource_Base> source,
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
const dns::Message& query,
const SockAddr& to,
const SockAddr& from) override;
finish converting to shared_ptr
2019-04-23 18:13:22 +02:00
path::PathSet_ptr
GetSelf() override
{
return shared_from_this();
}
use weak_ptr on a path to reference its parent pathset instead of a bare pointer so crashes dont happen
2021-06-04 14:34:41 +02:00
std::weak_ptr<path::PathSet>
GetWeak() override
{
return weak_from_this();
}
wire up sigusr1 to reset libunbound dns resolver
2021-02-05 22:48:57 +01:00
void
Thaw() override;
Unleak exit mode DNS via unbound DNS trampoline on (macOS) When we enable/disable exit mode on this restarts the unbound DNS responder with the DNS trampoline (or restores upstream, when disabling) to properly route DNS requests through the tunnel (because libunbound's direct requests don't get tunneled because unbound is inside the network extension).
2021-09-01 20:10:08 +02:00
// Reconfigures DNS servers and restarts libunbound with the new servers. Returns the old set
// of configured dns servers.
std::vector<SockAddr>
ReconfigureDNS(std::vector<SockAddr> servers);
clang-tidy modernize pass
2019-07-31 01:42:13 +02:00
bool
Refactor TunEndpoint::Configure() (partially)
2020-05-01 18:13:49 +02:00
Configure(const NetworkConfig& conf, const DnsConfig& dnsConf) override;
more tun code
2018-08-16 16:34:15 +02:00
exit traffic via loki addresses
2020-05-21 16:18:23 +02:00
void
* add protocol type to snode traffic * make path::PathSet::SendPacketToRemote know about protocol type
2021-03-16 12:56:27 +01:00
SendPacketToRemote(const llarp_buffer_t&, service::ProtocolType) override{};
exit traffic via loki addresses
2020-05-21 16:18:23 +02:00
initial route poking
2020-08-21 17:07:37 +02:00
std::string
GetIfName() const override;
clang-tidy modernize pass
2019-07-31 01:42:13 +02:00
void
Minor build fixes
2018-12-05 00:45:08 +01:00
Tick(llarp_time_t now) override;
more tun code
2018-08-16 16:34:15 +02:00
refactor
2019-02-11 18:14:43 +01:00
util::StatusObject
* rework exit codepath to allow multiple exits * rework net code for ip ranges to be cleaner * clean up endpoint auth code * refactor config to validate network configs before setting up endpoints * remove buildone from path/pathbuilder.cpp so we don't spam connection attempts
2020-06-24 15:24:07 +02:00
ExtractStatus() const override;
add introspection rpc endpoint
2019-02-08 20:43:25 +01:00
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
std::unordered_map<std::string, std::string>
make it work
2019-04-22 16:00:59 +02:00
NotifyParams() const override;
ipv6
2019-06-11 18:44:05 +02:00
bool
SupportsV6() const override;
add dnslib
2018-12-03 23:22:59 +01:00
bool
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
ShouldHookDNSMessage(const dns::Message& msg) const;
add dnslib
2018-12-03 23:22:59 +01:00
bool
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
HandleHookedDNSMessage(dns::Message query, std::function<void(dns::Message)> sendreply);
add dnslib
2018-12-03 23:22:59 +01:00
more tun code
2018-08-16 16:34:15 +02:00
void
TickTun(llarp_time_t now);
more tun stuff
2018-08-22 17:52:10 +02:00
bool
ipv6
2019-06-11 18:44:05 +02:00
MapAddress(const service::Address& remote, huint128_t ip, bool SNode);
more tun stuff
2018-08-22 17:52:10 +02:00
more tun code
2018-08-16 16:34:15 +02:00
bool
Minor build fixes
2018-12-05 00:45:08 +01:00
Start() override;
more tun code
2018-08-16 16:34:15 +02:00
add graceful stop for path builders and friends
2018-12-24 17:09:05 +01:00
bool
Stop() override;
fix crash on premature close of event loop (also make format)
2018-12-02 19:07:07 +01:00
bool
try fixing rdns for local interace's address
2018-11-30 15:14:30 +01:00
IsSNode() const;
more tun code
2018-08-16 16:34:15 +02:00
/// set up tun interface, blocking
bool
SetupTun();
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
void
SetupDNS();
/// overrides Endpoint
std::shared_ptr<dns::Server>
DNS() const override
{
return m_DNS;
};
more tun code
2018-08-16 16:34:15 +02:00
/// overrides Endpoint
bool
Minor build fixes
2018-12-05 00:45:08 +01:00
SetupNetworking() override;
more tun code
2018-08-16 16:34:15 +02:00
try unscrewing things up
2018-09-18 19:48:26 +02:00
/// overrides Endpoint
start seperating tun and endpoint
2019-07-01 15:44:25 +02:00
bool
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
HandleInboundPacket(
order packets when writing to network interface (#1372) * order packet writes on userside * make it compile * fix pybind
2020-10-08 13:59:01 +02:00
const service::ConvoTag tag,
const llarp_buffer_t& pkt,
service::ProtocolType t,
uint64_t seqno) override;
start seperating tun and endpoint
2019-07-01 15:44:25 +02:00
* add ProcessIf in CoDel queue to requeue unprocessed items * more tun code * make event loop tick and write with tun
2018-08-21 20:17:16 +02:00
/// handle inbound traffic
try calcuating tcp checksums right try tracking convo tags correctly
2018-09-18 13:08:47 +02:00
bool
order packets when writing to network interface (#1372) * order packet writes on userside * make it compile * fix pybind
2020-10-08 13:59:01 +02:00
HandleWriteIPPacket(
const llarp_buffer_t& buf, huint128_t src, huint128_t dst, uint64_t seqno);
fix crash
2018-08-18 16:01:21 +02:00
tun code refactor (#1495) * partial tun code refactor * take out the trash * move vpn platform code into llarp/vpn/platform.cpp * fix hive build * fix win32 * fix memory leak on win32 * reduce cpu use * make macos compile * win32 patches: * use wepoll for zmq * use all cores on windows iocp read loop * fix zmq patch for windows * clean up cmake for win32 * add uninstall before reinstall option to win32 installer * more ipv6 stuff * make it compile * fix up route poker * remove an unneeded code block in macos wtf * always use call to system * fix route poker behavior on macos * disable ipv6 on windows for now * cpu perf improvement: * colease calls to Router::PumpLL to 1 per event loop wakeup * set up THEN add addresses * emulate proactor event loop on win32 * remove excessively verbose error message * fix issue #1499 * exclude uv_poll from win32 so that it can start up * update logtag to include directory * create minidump on windows if there was a crash * make windows happy * use dmp suffix on minidump files * typo fix * address feedback from jason * use PROJECT_SOURCE_DIR instead of CMAKE_SOURCE_DIR * quote $@ in apply-patches in case path has spaces in it * address feedback from tom * remove llarp/ev/pipe * add comments for clairification * make event loop queue size constant named
2021-01-12 00:13:22 +01:00
/// we got a packet from the user
void
HandleGotUserPacket(llarp::net::IPPacket pkt);
more exit stuff
2018-11-14 13:23:08 +01:00
/// get the local interface's address
ipv6
2019-06-11 18:44:05 +02:00
huint128_t
try fix for localhost.loki
2019-07-05 16:41:26 +02:00
GetIfAddr() const override;
more exit stuff
2018-11-14 13:23:08 +01:00
fix last commit
2019-07-05 16:48:10 +02:00
/// we have an interface addr
bool
HasIfAddr() const override
{
return true;
}
more exit stuff
2018-11-14 13:23:08 +01:00
bool
ipv6
2019-06-11 18:44:05 +02:00
HasLocalIP(const huint128_t& ip) const;
more exit stuff
2018-11-14 13:23:08 +01:00
initial commit for #1595
2021-04-14 17:07:06 +02:00
std::optional<net::TrafficPolicy>
GetExitPolicy() const override
{
finish wiring up config for #1595
2021-04-14 21:40:57 +02:00
return m_TrafficPolicy;
}
std::set<IPRange>
GetOwnedRanges() const override
{
return m_OwnedRanges;
initial commit for #1595
2021-04-14 17:07:06 +02:00
}
when we have to reestablish an outbound session use a much much higher timeout for restablishment so it doesn't time out and get into a state that's totally screwed. add virtual function service::Endpont::DefaultPathAlignmentTimeout() to get the timeout for path alignment and use it for resetablishing outbound sessions
2021-05-08 13:16:21 +02:00
llarp_time_t
DefaultPathAlignmentTimeout -> PathAlignmentTimeout
2021-05-11 11:12:02 +02:00
PathAlignmentTimeout() const override
when we have to reestablish an outbound session use a much much higher timeout for restablishment so it doesn't time out and get into a state that's totally screwed. add virtual function service::Endpont::DefaultPathAlignmentTimeout() to get the timeout for path alignment and use it for resetablishing outbound sessions
2021-05-08 13:16:21 +02:00
{
return m_PathAlignmentTimeout;
}
initial commit for #1595
2021-04-14 17:07:06 +02:00
/// ip packet against any exit policies we have
/// returns false if this traffic is disallowed by any of those policies
/// returns true otherwise
bool
ShouldAllowTraffic(const net::IPPacket& pkt) const;
more exit stuff
2018-11-14 13:23:08 +01:00
/// get a key for ip address
clean up address/ip management code to use std::variant and std::optional
2021-03-15 17:01:19 +01:00
std::optional<std::variant<service::Address, RouterID>>
ObtainAddrForIP(huint128_t ip) const override;
fix address mapping bug
2019-11-29 01:37:58 +01:00
check for address
2018-10-23 20:18:00 +02:00
bool
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
HasAddress(const AlignedBuffer<32>& addr) const
check for address
2018-10-23 20:18:00 +02:00
{
more exit stuff
2018-11-14 13:23:08 +01:00
return m_AddrToIP.find(addr) != m_AddrToIP.end();
check for address
2018-10-23 20:18:00 +02:00
}
more exit stuff
2018-11-14 13:23:08 +01:00
/// get ip address for key unconditionally
ipv6
2019-06-11 18:44:05 +02:00
huint128_t
clean up address/ip management code to use std::variant and std::optional
2021-03-15 17:01:19 +01:00
ObtainIPForAddr(std::variant<service::Address, RouterID> addr) override;
change scope
2018-10-23 23:33:49 +02:00
clang-tidy modernize pass
2019-07-31 01:42:13 +02:00
void
start work on sighup
2019-05-07 19:46:38 +02:00
ResetInternalState() override;
* more tun stuff * use std::unique_ptr where bare pointers aren't absolutely required
2018-08-17 21:49:58 +02:00
protected:
order packets when writing to network interface (#1372) * order packet writes on userside * make it compile * fix pybind
2020-10-08 13:59:01 +02:00
struct WritePacket
{
uint64_t seqno;
net::IPPacket pkt;
bool
convert priority queues
2022-04-05 00:12:27 +02:00
operator>(const WritePacket& other) const
order packets when writing to network interface (#1372) * order packet writes on userside * make it compile * fix pybind
2020-10-08 13:59:01 +02:00
{
convert priority queues
2022-04-05 00:12:27 +02:00
return seqno > other.seqno;
order packets when writing to network interface (#1372) * order packet writes on userside * make it compile * fix pybind
2020-10-08 13:59:01 +02:00
}
};
* more tun stuff * use std::unique_ptr where bare pointers aren't absolutely required
2018-08-17 21:49:58 +02:00
/// queue for sending packets to user from network
convert priority queues
2022-04-05 00:12:27 +02:00
util::ascending_priority_queue<WritePacket> m_NetworkToUserPktQueue;
Fix packet delay creep - Make the main PumpLL also pump hidden services, rather than using separate wakers in each TunEndpoint. It seems there is some interactions that just one or the other is not enough. - Eliminate TunEndpoint send queue -- it isn't needed as we can just send directly.
2021-11-12 20:34:03 +01:00
void
Pump(llarp_time_t now) override;
* more tun stuff * use std::unique_ptr where bare pointers aren't absolutely required
2018-08-17 21:49:58 +02:00
/// return true if we have a remote loki address for this ip address
bool
ipv6
2019-06-11 18:44:05 +02:00
HasRemoteForIP(huint128_t ipv4) const;
TunEndpoint::ObtainAddrForIP(), identity tun range better, actually return revdns for tunmapaddrs, make in-addr.arpa matching smarter, actually send 404s, additional unit test
2018-10-19 16:53:06 +02:00
* add ProcessIf in CoDel queue to requeue unprocessed items * more tun code * make event loop tick and write with tun
2018-08-21 20:17:16 +02:00
/// mark this address as active
void
ipv6
2019-06-11 18:44:05 +02:00
MarkIPActive(huint128_t ip);
* add ProcessIf in CoDel queue to requeue unprocessed items * more tun code * make event loop tick and write with tun
2018-08-21 20:17:16 +02:00
more logging
2018-09-10 13:08:09 +02:00
/// mark this address as active forever
void
ipv6
2019-06-11 18:44:05 +02:00
MarkIPActiveForever(huint128_t ip);
more logging
2018-09-10 13:08:09 +02:00
add idempotent wake up for sending messages to the network and writing packets on interfaces
2021-06-04 13:15:00 +02:00
/// flush writing ip packets to interface
void
FlushWrite();
more exit stuff
2018-11-14 13:23:08 +01:00
/// maps ip to key (host byte order)
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
std::unordered_map<huint128_t, AlignedBuffer<32>> m_IPToAddr;
more exit stuff
2018-11-14 13:23:08 +01:00
/// maps key to ip (host byte order)
Replace ::Hash nested structs with std::hash specializations
2021-03-09 19:39:40 +01:00
std::unordered_map<AlignedBuffer<32>, huint128_t> m_AddrToIP;
more exit stuff
2018-11-14 13:23:08 +01:00
fix crash on premature close of event loop (also make format)
2018-12-02 19:07:07 +01:00
/// maps key to true if key is a service node, maps key to false if key is
/// a hidden service
Replace ::Hash nested structs with std::hash specializations
2021-03-09 19:39:40 +01:00
std::unordered_map<AlignedBuffer<32>, bool> m_SNodes;
snode stubs (initial)
2018-11-29 14:12:35 +01:00
implement exit node pooling, allows users to use multiple exits for an address range. mappings per ip stick to the same exit, each new ip is mapped to a random exit in the specified pool. make exit-auth multi value
2021-12-01 19:12:44 +01:00
/// maps ip address to an exit endpoint, useful when we have multiple exits on a range
std::unordered_map<huint128_t, service::Address> m_ExitIPToExitAddress;
more tun code
2018-08-16 16:34:15 +02:00
private:
implement exit node pooling, allows users to use multiple exits for an address range. mappings per ip stick to the same exit, each new ip is mapped to a random exit in the specified pool. make exit-auth multi value
2021-12-01 19:12:44 +01:00
/// given an ip address that is not mapped locally find the address it shall be forwarded to
/// optionally provide a custom selection strategy, if none is provided it will choose a
/// random entry from the available choices
/// return std::nullopt if we cannot route this address to an exit
std::optional<service::Address>
ObtainExitAddressFor(
huint128_t ip,
std::function<service::Address(std::unordered_set<service::Address>)> exitSelectionStrat =
nullptr);
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
template <typename Addr_t, typename Endpoint_t>
add dnslib
2018-12-03 23:22:59 +01:00
void
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
SendDNSReply(
Addr_t addr,
Endpoint_t ctx,
std::shared_ptr<dns::Message> query,
std::function<void(dns::Message)> reply,
bool sendIPv6)
delay dns resolution for snode until we have a session with it
2019-03-01 20:10:42 +01:00
{
don't cache dns result if we have an address mapped. we want to use dns to trigger a call to EnsurePathTo
2021-06-02 21:27:13 +02:00
if (ctx)
delay dns resolution for snode until we have a session with it
2019-03-01 20:10:42 +01:00
{
clean up address/ip management code to use std::variant and std::optional
2021-03-15 17:01:19 +01:00
huint128_t ip = ObtainIPForAddr(addr);
strip rr from dns reply for .snode and .loki (#1172) fix dns replies so that extra RR for edns are not included.
2020-03-09 21:47:27 +01:00
query->answers.clear();
add AAAA records that return SIIT addresses
2019-03-27 14:36:11 +01:00
query->AddINReply(ip, sendIPv6);
delay dns resolution for snode until we have a session with it
2019-03-01 20:10:42 +01:00
}
else
query->AddNXReply();
reply(*query);
}
refactor dns subsystem we want to be able to have multiple locally bound dns sockets in lokinet so i restructured most of the dns subsystem in order to make this easier. specifically, we have a new structure to dns subsystem: * dns::QueryJob_Base base type for holding a dns query and response with virtual methods in charge of sending a reply to whoever requested. * dns::PacketSource_Base base type for reading and writing dns messages to and from wherever they came from * dns::Resolver_Base base type for filtering and handling of dns messages asynchronously. * dns::Server contextualized per endpoint dns object, responsible for all dns related isms. this change hides all impelementation details of all of the dns components. adds some more helper functions for parsing dns and dealing with OwnedBuffer. overall dns becomes less of a pain with this new structure. probably.
2022-04-07 22:44:23 +02:00
/// dns subsystem for this endpoint
std::shared_ptr<dns::Server> m_DNS;
DnsConfig m_DnsConfig;
active DNS relay (server/client) in tun interface
2018-09-22 12:25:16 +02:00
* add ProcessIf in CoDel queue to requeue unprocessed items * more tun code * make event loop tick and write with tun
2018-08-21 20:17:16 +02:00
/// maps ip address to timestamp last active
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 20:38:56 +02:00
std::unordered_map<huint128_t, llarp_time_t> m_IPActivity;
upgrade documentation
2018-09-23 18:47:18 +02:00
/// our ip address (host byte order)
ipv6
2019-06-11 18:44:05 +02:00
huint128_t m_OurIP;
clarify new member's purpose and name. add comment.
2021-02-17 13:54:18 +01:00
/// our network interface's ipv6 address
huint128_t m_OurIPv6;
initial v6 exits
2021-02-16 16:59:18 +01:00
upgrade documentation
2018-09-23 18:47:18 +02:00
/// next ip address to allocate (host byte order)
ipv6
2019-06-11 18:44:05 +02:00
huint128_t m_NextIP;
uint32_t byte ordering type safety
2018-10-10 17:14:45 +02:00
/// highest ip address to allocate (host byte order)
ipv6
2019-06-11 18:44:05 +02:00
huint128_t m_MaxIP;
add dnslib
2018-12-03 23:22:59 +01:00
/// our ip range we are using
llarp::IPRange m_OurRange;
propagate strict-connect to tun handler for hooks
2019-05-06 14:42:21 +02:00
/// list of strict connect addresses for hooks
Refactor Addr -> IpAddress/SockAddr
2020-05-06 22:38:44 +02:00
std::vector<IpAddress> m_StrictConnectAddrs;
ipv6
2019-06-11 18:44:05 +02:00
/// use v6?
bool m_UseV6;
initial route poking
2020-08-21 17:07:37 +02:00
std::string m_IfName;
Merge remote-tracking branch 'micheal/background_mode' into vpn-api-2019-10-03
2019-10-04 20:10:58 +02:00
make ipv6 range used by exit traffic configurable. * add ip6-range option to network section to control which range we want to use for ipv6 traffic * make ip6-range able to disable ipv6 exits ( i dont like this but eh )
2021-03-18 16:59:02 +01:00
std::optional<huint128_t> m_BaseV6Address;
tun code refactor (#1495) * partial tun code refactor * take out the trash * move vpn platform code into llarp/vpn/platform.cpp * fix hive build * fix win32 * fix memory leak on win32 * reduce cpu use * make macos compile * win32 patches: * use wepoll for zmq * use all cores on windows iocp read loop * fix zmq patch for windows * clean up cmake for win32 * add uninstall before reinstall option to win32 installer * more ipv6 stuff * make it compile * fix up route poker * remove an unneeded code block in macos wtf * always use call to system * fix route poker behavior on macos * disable ipv6 on windows for now * cpu perf improvement: * colease calls to Router::PumpLL to 1 per event loop wakeup * set up THEN add addresses * emulate proactor event loop on win32 * remove excessively verbose error message * fix issue #1499 * exclude uv_poll from win32 so that it can start up * update logtag to include directory * create minidump on windows if there was a crash * make windows happy * use dmp suffix on minidump files * typo fix * address feedback from jason * use PROJECT_SOURCE_DIR instead of CMAKE_SOURCE_DIR * quote $@ in apply-patches in case path has spaces in it * address feedback from tom * remove llarp/ev/pipe * add comments for clairification * make event loop queue size constant named
2021-01-12 00:13:22 +01:00
std::shared_ptr<vpn::NetworkInterface> m_NetIf;
Large collection of changes to make android work - Previous android java and jni code updated to work, but with much love still needed to make it work nicely, e.g. handling when the VPN is turned off. - DNS handling refactored to allow android to intercept and handle DNS requests as we can't set the system DNS to use a high port (and apparently Chrome ignores system DNS settings anyway) - add packet router structure to allow separate handling of specific intercepted traffic, e.g. UDP traffic to port 53 gets handled by our DNS handler rather than being naively forwarded as exit traffic. - For now, android lokinet is exit-only and hard-coded to use exit.loki as its exit. The exit will be configurable before release, but allowing to not use exit-only mode is more of a challenge. - some old gitignore remnants which were matching to things we don't want them to (and are no longer relevant) removed - some minor changes to CI configuration
2021-03-02 19:18:22 +01:00
changeset for windows port * wintun vpn platform for windows * bundle config snippets into nsis installer for exit node, keyfile persisting, reduced hops mode. * use wintun for vpn platform * isolate all windows platform specific code into their own compilation units and libraries * split up internal libraries into more specific components * rename liblokinet.a target to liblokinet-amalgum.a to elimiate ambiguity with liblokinet.so * DNS platform for win32 * rename llarp/ev/ev_libuv.{c,h}pp to llarp/ev/libuv.{c,h}pp as the old name was idiotic * split up net platform into win32 and posix specific compilation units * rename lokinet_init.c to easter_eggs.cpp as that is what they are for and it does not need to be a c compilation target * add cmake option STRIP_SYMBOLS for seperating out debug symbols for windows builds * intercept dns traffic on all interfaces on windows using windivert and feed it into lokinet
2022-07-28 18:07:38 +02:00
std::shared_ptr<vpn::PacketRouter> m_PacketRouter;
initial commit for #1595
2021-04-14 17:07:06 +02:00
finish wiring up config for #1595
2021-04-14 21:40:57 +02:00
std::optional<net::TrafficPolicy> m_TrafficPolicy;
/// ranges we advetise as reachable
std::set<IPRange> m_OwnedRanges;
make path alignment timeout configuable adds [network] section parameter called path-alignment-timeout that allows configring the timeout for optional name lookup + introset lookup + aligned path build, used by tun endpoint dns, provided as milliseconds.
2021-05-01 22:25:32 +02:00
/// how long to wait for path alignment
llarp_time_t m_PathAlignmentTimeout;
[feature] optionally keep inbound convos mapped to same IP on restart (#1672) * add option to persist address mappings between restarts using [network]:persist-addrmap-file * make it work * only persist address map for inbound convos * turn persisting address map on by default * dont load addrmap file if it has been modified last over a minute ago to prevent foot cannons fired from loading a really old version of it
2021-06-17 18:05:50 +02:00
/// a file to load / store the ephemeral address map to
std::optional<fs::path> m_PersistAddrMapFile;
changeset for windows port * wintun vpn platform for windows * bundle config snippets into nsis installer for exit node, keyfile persisting, reduced hops mode. * use wintun for vpn platform * isolate all windows platform specific code into their own compilation units and libraries * split up internal libraries into more specific components * rename liblokinet.a target to liblokinet-amalgum.a to elimiate ambiguity with liblokinet.so * DNS platform for win32 * rename llarp/ev/ev_libuv.{c,h}pp to llarp/ev/libuv.{c,h}pp as the old name was idiotic * split up net platform into win32 and posix specific compilation units * rename lokinet_init.c to easter_eggs.cpp as that is what they are for and it does not need to be a c compilation target * add cmake option STRIP_SYMBOLS for seperating out debug symbols for windows builds * intercept dns traffic on all interfaces on windows using windivert and feed it into lokinet
2022-07-28 18:07:38 +02:00
/// for raw packet dns
std::shared_ptr<vpn::I_Packet_IO> m_RawDNS;
more boilerplate and enable tun/tap build
2018-08-08 21:37:33 +02:00
};
fix address mapping bug
2019-11-29 01:37:58 +01:00
more boilerplate and enable tun/tap build
2018-08-08 21:37:33 +02:00
} // namespace handlers
} // namespace llarp