kungfu 0.1.27

Flexible DNS hijacking and proxy tool. Read more: https://github.com/yinheli/kungfu 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130

use std::{
    net::{self, Ipv4Addr},
    sync::Arc,
    time::Duration,
};

use moka::sync::Cache;

pub struct Nat {
    nat_type: Type,
    addr_map: Cache<u32, Arc<Session>>,
    port_map: Cache<u16, Arc<Session>>,
}

pub enum Type {
    Tcp,
    // todo
    #[allow(dead_code)]
    Udp,
}

#[derive(Debug, Copy, PartialEq, Eq, Clone)]
pub struct Session {
    pub src_addr: Ipv4Addr,
    pub dst_addr: Ipv4Addr,
    pub src_port: u16,
    pub dst_port: u16,
    pub nat_port: u16,
}

impl Nat {
    pub fn new(nat_type: Type) -> Self {
        let cache_size = 5000;
        let ttl = Duration::from_secs(60 * 10);
        Self {
            nat_type,
            addr_map: Cache::builder()
                .max_capacity(cache_size)
                .time_to_live(ttl)
                .build(),
            port_map: Cache::builder()
                .max_capacity(cache_size)
                .time_to_live(ttl)
                .build(),
        }
    }

    pub fn create(
        &self,
        src_addr: Ipv4Addr,
        src_port: u16,
        dst_addr: Ipv4Addr,
        dst_port: u16,
    ) -> Session {
        let addr_key = u32::from_be_bytes(src_addr.octets()) + src_port as u32;
        if let Some(session) = self.addr_map.get(&addr_key) {
            return *session;
        }

        let nat_port = self.get_available_port();

        let session = Arc::new(Session {
            src_addr,
            dst_addr,
            src_port,
            dst_port,
            nat_port,
        });

        self.put(addr_key, session.clone());

        *session
    }

    pub fn find(&self, nat_port: u16) -> Option<Session> {
        if let Some(v) = self.port_map.get(&nat_port) {
            return Some(*v);
        }
        None
    }

    fn put(&self, addr_key: u32, session: Arc<Session>) {
        self.addr_map.insert(addr_key, session.clone());
        self.port_map.insert(session.nat_port, session.clone());
    }

    fn get_available_port(&self) -> u16 {
        match self.nat_type {
            Type::Tcp => {
                let ln = net::TcpListener::bind("127.0.0.1:0").unwrap();
                ln.local_addr().unwrap().port()
            }
            Type::Udp => {
                let ln = net::UdpSocket::bind("127.0.0.1:0").unwrap();
                ln.local_addr().unwrap().port()
            }
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn it_works() {
        let tcp_nat = Nat::new(Type::Tcp);
        let session = tcp_nat.create(
            Ipv4Addr::new(127, 0, 0, 1),
            32,
            Ipv4Addr::new(127, 0, 0, 1),
            80,
        );

        assert_ne!(session.nat_port, 0);

        let session2 = tcp_nat.find(session.nat_port);
        assert!(session2.is_some());
        assert_eq!(session2.unwrap(), session);

        let udp_nat = Nat::new(Type::Udp);
        let session = udp_nat.create(
            Ipv4Addr::new(127, 0, 0, 1),
            32,
            Ipv4Addr::new(127, 0, 0, 1),
            80,
        );
        assert_ne!(session.nat_port, 0);
    }
}