2 GoVPN -- simple secure free software virtual private network daemon
3 Copyright (C) 2014-2016 Sergey Matveev <stargrave@stargrave.org>
5 This program is free software: you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published by
7 the Free Software Foundation, either version 3 of the License, or
8 (at your option) any later version.
10 This program is distributed in the hope that it will be useful,
11 but WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 GNU General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with this program. If not, see <http://www.gnu.org/licenses/>.
24 "github.com/Sirupsen/logrus"
25 "github.com/pkg/errors"
27 "cypherpunks.ru/govpn"
30 type udpSender struct {
35 func (c udpSender) Write(data []byte) (int, error) {
36 return c.conn.WriteToUDP(data, c.addr)
39 // TODO move to udpSender (?)
40 // buffers for UDP parallel processing
41 var udpBufs = make(chan []byte, 1<<8)
43 func (s *Server) startUDP() {
44 bind, err := net.ResolveUDPAddr("udp", s.configuration.BindAddress)
46 s.Error <- errors.Wrap(err, "net.ResolveUDPAddr")
49 conn, err := net.ListenUDP("udp", bind)
51 s.Error <- errors.Wrapf(err, "net.ListenUDP %q", bind.String())
55 fields := logrus.Fields{
56 "func": logFuncPrefix + "Server.startUDP",
57 "bind": bind.String(),
59 s.logger.WithFields(fields).WithFields(s.LogFields()).WithFields(s.configuration.LogFields()).Info("Listen")
60 udpBufs <- make([]byte, govpn.MTUMax)
63 var raddr *net.UDPAddr
68 var hs *govpn.Handshake
71 var peerID *govpn.PeerID
72 var conf *govpn.PeerConf
74 s.logger.WithFields(fields).Debug("Wait for UDP buffer")
76 n, raddr, err = conn.ReadFromUDP(buf)
78 s.logger.WithFields(fields).WithFields(s.LogFields()).WithError(err).Debug("Receive failure")
82 loopFields := logrus.Fields{"addr": addr}
84 s.logger.WithFields(fields).WithFields(loopFields).Debug("Got UDP buffer, check if peer exists")
86 ps, exists = s.peers[addr]
89 s.logger.WithFields(fields).WithFields(loopFields).Debug("Already known peer, PktProcess")
90 go func(peer *govpn.Peer, tap *govpn.TAP, buf []byte, n int) {
91 peer.PktProcess(buf[:n], tap, true)
93 }(ps.peer, ps.tap, buf, n)
97 logrus.WithFields(fields).WithFields(loopFields).Debug("New peer")
99 hs, exists = s.handshakes[addr]
102 logrus.WithFields(fields).WithFields(loopFields).Debug("No handshake yet, try to figure peer ID")
103 peerID, err = s.idsCache.Find(buf[:n])
105 s.logger.WithFields(fields).WithFields(loopFields).WithFields(s.LogFields()).WithError(err).Debug("Couldn't lookup for peer in ids")
110 s.logger.WithFields(fields).WithFields(loopFields).WithFields(s.LogFields()).Debug("Identity unknown")
115 loopFields["peer_id"] = peerID.String()
116 s.logger.WithFields(fields).WithFields(loopFields).Debug("Found peer ID")
117 conf = s.confs.Get(*peerID)
119 s.logger.WithFields(loopFields).WithFields(fields).WithFields(s.LogFields()).WithFields(s.configuration.LogFields()).Error("Peer try to connect, but not configured")
124 s.logger.WithFields(loopFields).WithFields(fields).Debug("Got configuration, perform handshake")
125 hs = govpn.NewHandshake(
127 udpSender{conn: conn, addr: raddr},
130 _, err := hs.Server(buf[:n])
133 s.logger.WithFields(loopFields).WithFields(fields).WithError(err).WithFields(s.LogFields()).Error("Can't create new peer: handshake failed")
136 s.logger.WithFields(loopFields).WithFields(fields).WithFields(s.LogFields()).Info("Hashshake started, continue next packet")
139 s.handshakes[addr] = hs
144 logrus.WithFields(fields).WithFields(loopFields).Debug("Already go handshake, finish it")
145 peer, err := hs.Server(buf[:n])
147 s.logger.WithFields(fields).WithFields(loopFields).WithError(err).WithFields(s.LogFields()).Error("Can't create new peer: handshake failed")
152 s.logger.WithFields(fields).WithFields(loopFields).WithFields(s.LogFields()).Error("Couldn't continue handshake")
157 s.logger.WithFields(fields).WithFields(s.LogFields()).WithFields(loopFields).WithFields(peer.LogFields()).Info("Handshake completed")
161 delete(s.handshakes, addr)
165 udpBufs <- make([]byte, govpn.MTUMax)
166 udpBufs <- make([]byte, govpn.MTUMax)
168 s.peersByIDLock.RLock()
169 addrPrev, exists = s.peersByID[*peer.ID]
170 s.peersByIDLock.RUnlock()
173 s.logger.WithFields(fields).WithFields(loopFields).Debug("Peer already exists")
175 s.peers[addrPrev].terminator <- struct{}{}
178 tap: s.peers[addrPrev].tap,
179 terminator: make(chan struct{}),
181 peer.Protocol = govpn.ProtocolUDP
183 go func(peer *govpn.Peer, tap *govpn.TAP, terminator chan struct{}) {
184 govpn.PeerTapProcessor(peer, tap, terminator)
187 }(psNew.peer, psNew.tap, psNew.terminator)
189 s.peersByIDLock.Lock()
191 delete(s.peers, addrPrev)
192 delete(s.knownPeers, addrPrev)
193 s.peers[addr] = psNew
194 s.knownPeers[addr] = &peer
195 s.peersByID[*peer.ID] = addr
197 s.peersByIDLock.Unlock()
200 s.logger.WithFields(fields).WithFields(loopFields).WithFields(s.LogFields()).WithFields(peer.LogFields()).Debug("Rehandshake completed")
202 go func(addr string, peer *govpn.Peer) {
203 s.logger.WithFields(fields).WithFields(loopFields).Debug("Peer do not already exists")
204 tap, err := s.callUp(peer, govpn.ProtocolUDP)
206 s.logger.WithFields(loopFields).WithFields(fields).WithFields(s.LogFields()).WithFields(peer.LogFields()).WithError(err).Error("TAP failed")
212 terminator: make(chan struct{}),
214 peer.Protocol = govpn.ProtocolUDP
215 go func(peer *govpn.Peer, tap *govpn.TAP, terminator chan struct{}) {
216 govpn.PeerTapProcessor(peer, tap, terminator)
219 }(psNew.peer, psNew.tap, psNew.terminator)
221 s.peersByIDLock.Lock()
223 s.peers[addr] = psNew
224 s.knownPeers[addr] = &peer
225 s.peersByID[*peer.ID] = addr
227 s.peersByIDLock.Unlock()
229 s.logger.WithFields(loopFields).WithFields(fields).WithFields(s.LogFields()).WithFields(peer.LogFields()).Info("Peer initialized")