Pndpd/pndp/responder.go

package pndp

import (
	"bytes"
	"fmt"
	"net"
	"sync"
	"syscall"
)

func respond(iface string, requests chan *ndpRequest, respondType ndpType, ndpQuestionChan chan *ndpQuestion, filter []*net.IPNet, autoSense string, stopWG *sync.WaitGroup, stopChan chan struct{}) {
	var ndpQuestionsList = make([]*ndpQuestion, 0, 40)
	stopWG.Add(1)
	defer stopWG.Done()
	fd, err := syscall.Socket(syscall.AF_INET6, syscall.SOCK_RAW, syscall.IPPROTO_RAW)
	if err != nil {
		panic(err)
	}
	defer func(fd int) {
		_ = syscall.Close(fd)
	}(fd)
	err = syscall.BindToDevice(fd, iface)
	if err != nil {
		panic(err)
	}

	nIface, err := net.InterfaceByName(iface)
	if err != nil {
		panic(err.Error())
	}

	var result = emptyIpv6
	ifaceaddrs, err := nIface.Addrs()

	for _, n := range ifaceaddrs {
		tip, _, err := net.ParseCIDR(n.String())
		if err != nil {
			break
		}
		var haveUla = false
		if isIpv6(tip.String()) {
			if tip.IsGlobalUnicast() {
				haveUla = true
				result = tip
				_, tnet, _ := net.ParseCIDR("fc00::/7")
				if !tnet.Contains(tip) {
					break
				}
			} else if tip.IsLinkLocalUnicast() && !haveUla {
				result = tip
			}
		}
	}

	for {
		var n *ndpRequest
		if (ndpQuestionChan == nil && respondType == ndp_ADV) || (ndpQuestionChan != nil && respondType == ndp_SOL) {
			select {
			case <-stopChan:
				return
			case n = <-requests:
			}
		} else {
			// THis is if ndpQuestionChan != nil && respondType == ndp_ADV
			select {
			case <-stopChan:
				return
			case q := <-ndpQuestionChan:
				ndpQuestionsList = append(ndpQuestionsList, q)
				ndpQuestionsList = cleanupQuestionList(ndpQuestionsList)
				continue
			case n = <-requests:
			}
		}

		var _, LinkLocalSpace, _ = net.ParseCIDR("fe80::/10")
		if LinkLocalSpace.Contains(n.answeringForIP) {
			if GlobalDebug {
				fmt.Println("Dropping packet asking for a link-local IP")
			}
			continue
		}

		if n.requestType == ndp_ADV {
			if (n.rawPacket[78] != 0x02) || (n.rawPacket[79] != 0x01) {
				if GlobalDebug {
					fmt.Println("Dropping Advertisement packet without target Source address set")
				}
				continue
			}
			if n.rawPacket[58] == 0x0 {
				if GlobalDebug {
					fmt.Println("Dropping Advertisement packet without any NDP flags set")
				}
				continue
			}
		} else {
			if (n.rawPacket[78] != 0x01) || (n.rawPacket[79] != 0x01) {
				if GlobalDebug {
					fmt.Println("Dropping Solicitation packet without Source address set")
				}
				continue
			}
		}

		if !checkPacketChecksum(n.srcIP, n.dstIP, n.rawPacket[54:]) {
			if GlobalDebug {
				fmt.Println("Dropping packet because of invalid checksum")
			}
			continue
		}

		if autoSense != "" {
			autoiface, err := net.InterfaceByName(autoSense)
			if err != nil {
				panic(err)
			}
			autoifaceaddrs, err := autoiface.Addrs()

			for _, l := range autoifaceaddrs {
				_, anet, err := net.ParseCIDR(l.String())
				if err != nil {
					break
				}
				if isIpv6(anet.String()) {
					filter = append(filter, anet)
				}
			}
		}

		if filter != nil {
			ok := false
			for _, i := range filter {
				if i.Contains(n.answeringForIP) {
					if GlobalDebug {
						fmt.Println("Responded for whitelisted IP", n.answeringForIP)
					}
					ok = true
					break
				}
			}
			if !ok {
				continue
			}
		}

		if GlobalDebug {
			fmt.Println("Getting ready to send packet of type", respondType, "out on interface", iface)
		}

		if n.sourceIface == iface {
			pkt(fd, result, n.srcIP, n.answeringForIP, nIface.HardwareAddr, respondType)
		} else {
			if respondType == ndp_ADV {
				success := false
				n.dstIP, success = getAddressFromQuestionListRetry(n.answeringForIP, ndpQuestionChan, ndpQuestionsList)
				if !success {
					if GlobalDebug {
						fmt.Println("Nobody has asked for this IP")
					}
					continue
				}
			} else {
				ndpQuestionChan <- &ndpQuestion{
					targetIP: n.answeringForIP,
					askedBy:  n.srcIP,
				}
			}
			pkt(fd, result, n.dstIP, n.answeringForIP, nIface.HardwareAddr, respondType)
		}
	}
}

func pkt(fd int, ownIP []byte, dstIP []byte, tgtip []byte, mac []byte, respondType ndpType) {
	v6, err := newIpv6Header(ownIP, dstIP)
	if err != nil {
		return
	}
	NDPa, err := newNdpPacket(tgtip, mac, respondType)
	if err != nil {
		return
	}
	v6.addPayload(NDPa)
	response := v6.constructPacket()

	var t [16]byte
	copy(t[:], dstIP)

	d := syscall.SockaddrInet6{
		Port: 0,
		Addr: t,
	}
	if GlobalDebug {
		fmt.Println("Sending packet of type", respondType, "to")
		fmt.Printf("% X\n", t)
	}
	err = syscall.Sendto(fd, response, 0, &d)
	if err != nil {
		fmt.Println(err.Error())
	}
}

func getAddressFromQuestionListRetry(targetIP []byte, ndpQuestionChan chan *ndpQuestion, ndpQuestionsList []*ndpQuestion) ([]byte, bool) {
	success := false
	var result []byte
	result, success = getAddressFromQuestionList(targetIP, ndpQuestionsList)
	if success {
		return result, true
	}
forloop:
	for {
		select {
		case q := <-ndpQuestionChan:
			ndpQuestionsList = append(ndpQuestionsList, q)
		default:
			break forloop
		}
	}

	result, success = getAddressFromQuestionList(targetIP, ndpQuestionsList)
	return result, success
}

func getAddressFromQuestionList(targetIP []byte, ndpQuestionsList []*ndpQuestion) ([]byte, bool) {
	for i := range ndpQuestionsList {
		if bytes.Equal((*ndpQuestionsList[i]).targetIP, targetIP) {
			result := (*ndpQuestionsList[i]).askedBy
			ndpQuestionsList = removeFromQuestionList(ndpQuestionsList, i)
			return result, true
		}
	}
	return nil, false
}
func removeFromQuestionList(s []*ndpQuestion, i int) []*ndpQuestion {
	s[i] = s[len(s)-1]
	return s[:len(s)-1]
}

func cleanupQuestionList(s []*ndpQuestion) []*ndpQuestion {
	for len(s) >= 40 {
		s = removeFromQuestionList(s, 0)
	}
	return s
}
Refactor code 2021-12-22 07:01:30 -05:00			`package pndp`
Initial commit 2021-12-20 14:53:42 -05:00
			`import (`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`"bytes"`
			`"fmt"`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`"net"`
Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`"sync"`
Initial commit 2021-12-20 14:53:42 -05:00			`"syscall"`
			`)`

Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`func respond(iface string, requests chan ndpRequest, respondType ndpType, ndpQuestionChan chan ndpQuestion, filter []net.IPNet, autoSense string, stopWG sync.WaitGroup, stopChan chan struct{}) {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`var ndpQuestionsList = make([]*ndpQuestion, 0, 40)`
Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`stopWG.Add(1)`
			`defer stopWG.Done()`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`fd, err := syscall.Socket(syscall.AF_INET6, syscall.SOCK_RAW, syscall.IPPROTO_RAW)`
			`if err != nil {`
			`panic(err)`
			`}`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`defer func(fd int) {`
			`_ = syscall.Close(fd)`
			`}(fd)`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`err = syscall.BindToDevice(fd, iface)`
			`if err != nil {`
			`panic(err)`
			`}`
Initial commit 2021-12-20 14:53:42 -05:00
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`nIface, err := net.InterfaceByName(iface)`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`if err != nil {`
			`panic(err.Error())`
			`}`

Proxying implementation finished 2021-12-21 06:00:28 -05:00			`var result = emptyIpv6`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`ifaceaddrs, err := nIface.Addrs()`
Proxying implementation finished 2021-12-21 06:00:28 -05:00
			`for _, n := range ifaceaddrs {`
			`tip, _, err := net.ParseCIDR(n.String())`
			`if err != nil {`
			`break`
			`}`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`var haveUla = false`
Refactor code 2021-12-22 07:01:30 -05:00			`if isIpv6(tip.String()) {`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`if tip.IsGlobalUnicast() {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`haveUla = true`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`result = tip`
			`_, tnet, _ := net.ParseCIDR("fc00::/7")`
			`if !tnet.Contains(tip) {`
			`break`
			`}`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`} else if tip.IsLinkLocalUnicast() && !haveUla {`
			`result = tip`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`}`
			`}`
			`}`

Initial commit 2021-12-20 14:53:42 -05:00			`for {`
Refactor code 2021-12-22 07:01:30 -05:00			`var n *ndpRequest`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`if (ndpQuestionChan == nil && respondType == ndp_ADV) \|\| (ndpQuestionChan != nil && respondType == ndp_SOL) {`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`select {`
			`case <-stopChan:`
			`return`
			`case n = <-requests:`
			`}`
			`} else {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`// THis is if ndpQuestionChan != nil && respondType == ndp_ADV`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`select {`
			`case <-stopChan:`
			`return`
			`case q := <-ndpQuestionChan:`
			`ndpQuestionsList = append(ndpQuestionsList, q)`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`ndpQuestionsList = cleanupQuestionList(ndpQuestionsList)`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`continue`
			`case n = <-requests:`
			`}`
Release all ressources on shutdown 2021-12-22 06:04:00 -05:00			`}`

More Fixes and optimization 2021-12-25 08:21:07 -05:00			`var _, LinkLocalSpace, _ = net.ParseCIDR("fe80::/10")`
			`if LinkLocalSpace.Contains(n.answeringForIP) {`
			`if GlobalDebug {`
			`fmt.Println("Dropping packet asking for a link-local IP")`
			`}`
			`continue`
			`}`

			`if n.requestType == ndp_ADV {`
			`if (n.rawPacket[78] != 0x02) \|\| (n.rawPacket[79] != 0x01) {`
			`if GlobalDebug {`
			`fmt.Println("Dropping Advertisement packet without target Source address set")`
			`}`
			`continue`
			`}`
			`if n.rawPacket[58] == 0x0 {`
			`if GlobalDebug {`
			`fmt.Println("Dropping Advertisement packet without any NDP flags set")`
			`}`
			`continue`
			`}`
			`} else {`
			`if (n.rawPacket[78] != 0x01) \|\| (n.rawPacket[79] != 0x01) {`
			`if GlobalDebug {`
			`fmt.Println("Dropping Solicitation packet without Source address set")`
			`}`
			`continue`
			`}`
			`}`

			`if !checkPacketChecksum(n.srcIP, n.dstIP, n.rawPacket[54:]) {`
			`if GlobalDebug {`
			`fmt.Println("Dropping packet because of invalid checksum")`
			`}`
			`continue`
			`}`

Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`if autoSense != "" {`
			`autoiface, err := net.InterfaceByName(autoSense)`
			`if err != nil {`
			`panic(err)`
			`}`
			`autoifaceaddrs, err := autoiface.Addrs()`

More Fixes and optimization 2021-12-25 08:21:07 -05:00			`for _, l := range autoifaceaddrs {`
			`_, anet, err := net.ParseCIDR(l.String())`
Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`if err != nil {`
			`break`
			`}`
			`if isIpv6(anet.String()) {`
			`filter = append(filter, anet)`
			`}`
			`}`
			`}`

Filtering on respond implementation 2021-12-21 06:14:56 -05:00			`if filter != nil {`
			`ok := false`
			`for _, i := range filter {`
			`if i.Contains(n.answeringForIP) {`
Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`if GlobalDebug {`
			`fmt.Println("Responded for whitelisted IP", n.answeringForIP)`
			`}`
Filtering on respond implementation 2021-12-21 06:14:56 -05:00			`ok = true`
			`break`
			`}`
			`}`
			`if !ok {`
			`continue`
			`}`
			`}`

Add more debug information 2021-12-24 13:02:57 -05:00			`if GlobalDebug {`
			`fmt.Println("Getting ready to send packet of type", respondType, "out on interface", iface)`
			`}`

Proxying implementation finished 2021-12-21 06:00:28 -05:00			`if n.sourceIface == iface {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`pkt(fd, result, n.srcIP, n.answeringForIP, nIface.HardwareAddr, respondType)`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`} else {`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`if respondType == ndp_ADV {`
			`success := false`
			`n.dstIP, success = getAddressFromQuestionListRetry(n.answeringForIP, ndpQuestionChan, ndpQuestionsList)`
			`if !success {`
			`if GlobalDebug {`
			`fmt.Println("Nobody has asked for this IP")`
			`}`
			`continue`
			`}`
			`} else {`
			`ndpQuestionChan <- &ndpQuestion{`
			`targetIP: n.answeringForIP,`
			`askedBy: n.srcIP,`
			`}`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`}`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`pkt(fd, result, n.dstIP, n.answeringForIP, nIface.HardwareAddr, respondType)`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`}`
Initial commit 2021-12-20 14:53:42 -05:00			`}`
			`}`

Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`func pkt(fd int, ownIP []byte, dstIP []byte, tgtip []byte, mac []byte, respondType ndpType) {`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`v6, err := newIpv6Header(ownIP, dstIP)`
			`if err != nil {`
			`return`
			`}`
			`NDPa, err := newNdpPacket(tgtip, mac, respondType)`
			`if err != nil {`
			`return`
			`}`
Initial commit 2021-12-20 14:53:42 -05:00			`v6.addPayload(NDPa)`
			`response := v6.constructPacket()`

			`var t [16]byte`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`copy(t[:], dstIP)`
Initial proxying implementation 2021-12-20 16:46:26 -05:00
Initial commit 2021-12-20 14:53:42 -05:00			`d := syscall.SockaddrInet6{`
			`Port: 0,`
			`Addr: t,`
			`}`
Preliminary config implementation 2021-12-21 06:42:30 -05:00			`if GlobalDebug {`
			`fmt.Println("Sending packet of type", respondType, "to")`
			`fmt.Printf("% X\n", t)`
			`}`
Add autosense, add config, overhaul code 2021-12-24 11:19:36 -05:00			`err = syscall.Sendto(fd, response, 0, &d)`
Filtering on respond implementation 2021-12-21 06:14:56 -05:00			`if err != nil {`
			`fmt.Println(err.Error())`
			`}`
Initial commit 2021-12-20 14:53:42 -05:00			`}`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00
			`func getAddressFromQuestionListRetry(targetIP []byte, ndpQuestionChan chan ndpQuestion, ndpQuestionsList []ndpQuestion) ([]byte, bool) {`
			`success := false`
			`var result []byte`
			`result, success = getAddressFromQuestionList(targetIP, ndpQuestionsList)`
			`if success {`
			`return result, true`
			`}`
Code Optimization 2021-12-24 16:58:44 -05:00			`forloop:`
			`for {`
			`select {`
			`case q := <-ndpQuestionChan:`
			`ndpQuestionsList = append(ndpQuestionsList, q)`
			`default:`
			`break forloop`
			`}`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`}`
Code Optimization 2021-12-24 16:58:44 -05:00
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`result, success = getAddressFromQuestionList(targetIP, ndpQuestionsList)`
			`return result, success`
			`}`

			`func getAddressFromQuestionList(targetIP []byte, ndpQuestionsList []*ndpQuestion) ([]byte, bool) {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`for i := range ndpQuestionsList {`
Improvements and Fixes to proxying 2021-12-24 16:43:49 -05:00			`if bytes.Equal((*ndpQuestionsList[i]).targetIP, targetIP) {`
			`result := (*ndpQuestionsList[i]).askedBy`
			`ndpQuestionsList = removeFromQuestionList(ndpQuestionsList, i)`
			`return result, true`
			`}`
			`}`
			`return nil, false`
			`}`
			`func removeFromQuestionList(s []ndpQuestion, i int) []ndpQuestion {`
			`s[i] = s[len(s)-1]`
			`return s[:len(s)-1]`
			`}`
More Fixes and optimization 2021-12-25 08:21:07 -05:00
			`func cleanupQuestionList(s []ndpQuestion) []ndpQuestion {`
			`for len(s) >= 40 {`
			`s = removeFromQuestionList(s, 0)`
			`}`
			`return s`
			`}`