2 GoVPN -- simple secure free software virtual private network daemon
3 Copyright (C) 2014-2017 Sergey Matveev <stargrave@stargrave.org>
5 This program is free software: you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published by
7 the Free Software Foundation, either version 3 of the License, or
8 (at your option) any later version.
10 This program is distributed in the hope that it will be useful,
11 but WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 GNU General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with this program. If not, see <http://www.gnu.org/licenses/>.
24 "github.com/Sirupsen/logrus"
25 "github.com/pkg/errors"
27 "cypherpunks.ru/govpn"
30 type udpSender struct {
35 func (c udpSender) Write(data []byte) (int, error) {
36 return c.conn.WriteToUDP(data, c.addr)
39 func (s *Server) startUDP() {
40 bind, err := net.ResolveUDPAddr("udp", s.configuration.BindAddress)
42 s.Error <- errors.Wrap(err, "net.ResolveUDPAddr")
45 conn, err := net.ListenUDP("udp", bind)
47 s.Error <- errors.Wrapf(err, "net.ListenUDP %q", bind.String())
51 fields := logrus.Fields{
52 "func": logFuncPrefix + "Server.startUDP",
53 "bind": bind.String(),
60 s.configuration.LogFields(),
63 udpBufs := make(chan []byte, 1<<8)
64 udpBufs <- make([]byte, govpn.MTUMax)
67 var raddr *net.UDPAddr
72 var hs *govpn.Handshake
75 var peerID *govpn.PeerID
76 var conf *govpn.PeerConf
78 s.logger.WithFields(fields).Debug("Wait for UDP buffer")
80 n, raddr, err = conn.ReadFromUDP(buf)
86 ).WithError(err).Debug("Receive failure")
90 loopFields := logrus.Fields{"addr": addr}
96 ).Debug("Got UDP buffer, check if peer exists")
98 ps, exists = s.peers[addr]
105 ).Debug("Already known peer, PktProcess")
106 go func(peer *govpn.Peer, tap *govpn.TAP, buf []byte, n int) {
107 peer.PktProcess(buf[:n], tap, true)
109 }(ps.peer, ps.tap, buf, n)
113 logrus.WithFields(fields).WithFields(loopFields).Debug("New peer")
115 hs, exists = s.handshakes[addr]
122 ).Debug("No handshake yet, try to figure peer ID")
123 peerID, err = s.idsCache.Find(buf[:n])
131 ).WithError(err).Debug("Couldn't lookup for peer in ids")
142 ).Debug("Identity unknown")
147 loopFields["peer_id"] = peerID.String()
148 s.logger.WithFields(fields).WithFields(loopFields).Debug("Found peer ID")
149 conf = s.confs.Get(*peerID)
158 s.configuration.LogFields(),
159 ).Error("Peer try to connect, but not configured")
168 ).Debug("Got configuration, perform handshake")
169 hs = govpn.NewHandshake(
171 udpSender{conn: conn, addr: raddr},
174 _, err := hs.Server(buf[:n])
181 ).WithError(err).WithFields(
183 ).Error("Can't create new peer: handshake failed")
192 ).Info("Hashshake started, continue next packet")
195 s.handshakes[addr] = hs
204 ).Debug("Already go handshake, finish it")
205 peer, err := hs.Server(buf[:n])
211 ).WithError(err).WithFields(
213 ).Error("Can't create new peer: handshake failed")
224 ).Error("Couldn't continue handshake")
237 ).Info("Handshake completed")
241 delete(s.handshakes, addr)
245 udpBufs <- make([]byte, govpn.MTUMax)
246 udpBufs <- make([]byte, govpn.MTUMax)
248 s.peersByIDLock.RLock()
249 addrPrev, exists = s.peersByID[*peer.ID]
250 s.peersByIDLock.RUnlock()
257 ).Debug("Peer already exists")
259 s.peers[addrPrev].terminator <- struct{}{}
262 tap: s.peers[addrPrev].tap,
263 terminator: make(chan struct{}),
265 peer.Protocol = govpn.ProtocolUDP
267 go func(peer *govpn.Peer, tap *govpn.TAP, terminator chan struct{}) {
268 govpn.PeerTapProcessor(peer, tap, terminator)
271 }(psNew.peer, psNew.tap, psNew.terminator)
273 s.peersByIDLock.Lock()
275 delete(s.peers, addrPrev)
276 delete(s.knownPeers, addrPrev)
277 s.peers[addr] = psNew
278 s.knownPeers[addr] = &peer
279 s.peersByID[*peer.ID] = addr
281 s.peersByIDLock.Unlock()
292 ).Debug("Rehandshake completed")
294 go func(addr string, peer *govpn.Peer) {
299 ).Debug("Peer do not already exists")
300 tap, err := s.callUp(peer, govpn.ProtocolUDP)
310 ).WithError(err).Error("TAP failed")
316 terminator: make(chan struct{}),
318 peer.Protocol = govpn.ProtocolUDP
319 go func(peer *govpn.Peer, tap *govpn.TAP, terminator chan struct{}) {
320 govpn.PeerTapProcessor(peer, tap, terminator)
323 }(psNew.peer, psNew.tap, psNew.terminator)
325 s.peersByIDLock.Lock()
327 s.peers[addr] = psNew
328 s.knownPeers[addr] = &peer
329 s.peersByID[*peer.ID] = addr
331 s.peersByIDLock.Unlock()
341 ).Info("Peer initialized")