lantun-core 0.1.1

lantun core library
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390

use std::{
    collections::HashMap,
    net::{Ipv4Addr, SocketAddr, SocketAddrV4},
    sync::{
        Arc,
        atomic::{AtomicBool, AtomicU64, Ordering},
    },
};

use iroh::{
    Endpoint, PublicKey, RelayMode,
    endpoint::{Connection, ReadError, VarInt, WriteError},
};
use thiserror::Error;
use tokio::{
    net::{TcpListener, UdpSocket},
    sync::{RwLock, watch},
    task::JoinHandle,
};

use crate::{
    ALPN, TunnelProtocol,
    common::{Client2HostControlMsg, LocalClientConnection, TunnelCommon, send_packet},
    net::{tcp::bi_tcp_stream_client, udp::bi_udp_client},
};

#[derive(Error, Debug)]
pub enum ClientError {
    #[error("Failed to create endpoint: {0}")]
    FailedToCreateEndpoint(String),
    #[error("IO error: {0}")]
    IoError(#[from] std::io::Error),
    #[error("Write error: {0}")]
    WriteError(#[from] WriteError),
    #[error("Read error: {0}")]
    ReadError(#[from] ReadError),
    #[error("Tunnel with local address {0}/{1} already exists")]
    TunnelAlreadyExists(SocketAddr, TunnelProtocol),
    #[error("Failed to connect: {0}")]
    FailedToConnect(String),
    #[error("Failed to accept stream: {0}")]
    FailedToAcceptStream(String),
    #[error("Connection error: {0}")]
    ConnectionError(#[from] iroh::endpoint::ConnectionError),
    #[error("Already connected to tunnel")]
    AlreadyConnected,
    #[error("Not connected to tunnel")]
    NotConnected,
}

/// The client state.
pub struct ClientState {
    /// There should only be one tunnel per local SocketAddr and proto.
    tunnels: HashMap<(SocketAddr, TunnelProtocol), ClientTunnel>,
}

impl Default for ClientState {
    fn default() -> Self {
        Self::new()
    }
}

impl ClientState {
    /// Create a new client state.
    pub fn new() -> Self {
        Self {
            tunnels: HashMap::new(),
        }
    }

    /// Get the tunnels.
    pub fn tunnels(&self) -> &HashMap<(SocketAddr, TunnelProtocol), ClientTunnel> {
        &self.tunnels
    }

    /// Get the tunnels mutable.
    pub fn tunnels_mut(&mut self) -> &mut HashMap<(SocketAddr, TunnelProtocol), ClientTunnel> {
        &mut self.tunnels
    }

    /// Create a new tunnel.
    pub async fn create_tunnel(
        &mut self,
        local_addr: SocketAddr,
        name: String,
        secret: [u8; 32],
        protocol: TunnelProtocol,
    ) -> Result<&mut ClientTunnel, ClientError> {
        if self.tunnels.contains_key(&(local_addr, protocol)) {
            return Err(ClientError::TunnelAlreadyExists(local_addr, protocol));
        }

        let tunnel = ClientTunnel {
            name,
            secret: PublicKey::from_bytes(&secret).unwrap(),
            tunnel_addr: local_addr,
            protocol,
            is_connected: Arc::new(AtomicBool::new(false)),
            running_props: None,
        };

        self.tunnels.insert((local_addr, protocol), tunnel);

        Ok(self.tunnels.get_mut(&(local_addr, protocol)).unwrap())
    }

    pub fn get_tunnel(
        &self,
        local_addr: SocketAddr,
        protocol: TunnelProtocol,
    ) -> Option<&ClientTunnel> {
        self.tunnels.get(&(local_addr, protocol))
    }

    pub fn get_tunnel_mut(
        &mut self,
        local_addr: SocketAddr,
        protocol: TunnelProtocol,
    ) -> Option<&mut ClientTunnel> {
        self.tunnels.get_mut(&(local_addr, protocol))
    }
}

/// A [`ClientTunnel`] represents the other end of the [`HostTunnel`].
pub struct ClientTunnel {
    /// The name of the tunnel.
    pub name: String,
    /// The secret of the tunnel this client is connected to.
    /// This value is unique for every existing HostTunnel.
    secret: PublicKey,
    /// The local address which the traffic of the host's tunnel will be forwarded to.
    /// e.g if the Host runs a server, this is the address that the client needs to connect to.
    tunnel_addr: SocketAddr,
    /// The protocol of the tunnel.
    /// TODO: make sure this is the same as the host tunnel.
    protocol: TunnelProtocol,
    /// If the client tunnel is connected to the host tunnel.
    is_connected: Arc<AtomicBool>,
    /// Running tunnel values.
    running_props: Option<RunningClientTunnelProps>,
}

/// The properties of the running client tunnel.
struct RunningClientTunnelProps {
    /// Local connections of this client. (e.g a game client)
    ///
    /// The key is the local address of the application connecting to the tunnel socket.
    local_connections: Arc<RwLock<HashMap<SocketAddr, Arc<RwLock<LocalClientConnection>>>>>,
    /// This tunnels endpoint on the iroh network.
    endpoint: Endpoint,
    /// The connection to the host tunnel.
    connection: Connection,
    /// Channel sender to stop the connection.
    stop_tx: watch::Sender<bool>,
}

impl ClientTunnel {
    /// Get the client address.
    pub fn client_addr(&self) -> SocketAddr {
        self.tunnel_addr
    }

    /// Start the tunnel loop.
    pub async fn connect(&mut self) -> Result<JoinHandle<Result<(), ClientError>>, ClientError> {
        if self.is_running() {
            tracing::warn!(
                "Client tunnel \"{}\" is already connected, not starting again",
                self.name
            );
            return Err(ClientError::AlreadyConnected);
        }

        let endpoint = Endpoint::builder()
            // .alpns(vec![ALPN.to_vec()])
            .relay_mode(RelayMode::Default)
            .discovery_n0()
            .bind()
            .await
            .map_err(|e| ClientError::FailedToCreateEndpoint(e.to_string()))?;

        let conn = endpoint
            .connect(self.secret, ALPN)
            .await
            .map_err(|e| ClientError::FailedToConnect(e.to_string()))?;

        let local_connections = Arc::new(RwLock::new(HashMap::new()));

        let (stop_tx, mut stop_rx) = watch::channel(false);

        self.running_props = Some(RunningClientTunnelProps {
            local_connections: local_connections.clone(),
            connection: conn.clone(),
            stop_tx,
            endpoint,
        });
        self.is_connected.store(true, Ordering::SeqCst);

        tracing::debug!("Client tunnel \"{}\" connected to host", self.name);

        let protocol = self.protocol;
        let tunnel_addr = self.tunnel_addr;

        // TODO: create helper function for this

        let connection_listener = tokio::spawn(async move {
            match protocol {
                TunnelProtocol::Tcp => {
                    let sock = TcpListener::bind(tunnel_addr).await?;
                    tracing::debug!("Client TCP socket listening on {}", tunnel_addr);

                    loop {
                        tokio::select! {
                            biased;
                            _ = stop_rx.changed() => {
                                if *stop_rx.borrow() {
                                    tracing::debug!("Stopping TCP stream for client tunnel");
                                    break;
                                }
                            }
                            Ok((stream, client_local_addr)) = sock.accept() => {
                                let (tunnel_send, tunnel_recv) = conn.open_bi().await?;
                                send_packet(&conn, Client2HostControlMsg::ConnReq { local_addr: client_local_addr  }).await?;

                                let local_client_connection = LocalClientConnection {
                                    client_local_addr,
                                    // We dont need to know this on the client side.
                                    // Maybe create a separate struct for this? or make it an option?
                                    client_virtual_addr: SocketAddr::V4(SocketAddrV4::new(Ipv4Addr::UNSPECIFIED, 0)),
                                    last_active: Arc::new(AtomicU64::new(0)),
                                };

                                let local_client_connection = Arc::new(RwLock::new(local_client_connection));

                                {
                                    local_connections.write().await.insert(client_local_addr, local_client_connection.clone());
                                } // drop lock

                                // Start TCP forwarder for this connection
                                bi_tcp_stream_client(stream, local_connections.clone(), local_client_connection.clone(), tunnel_send, tunnel_recv, stop_rx.clone()).await?;
                            }
                        }
                    }
                }
                TunnelProtocol::Udp => {
                    // This socket is used to establish UDP sessions.

                    // We use multiple sockets on the same addr so we can use the
                    // connected api for ease of use.
                    // not sure if there are any downsides to this.
                    let socket = UdpSocket::bind(tunnel_addr).await?;
                    let socket = Arc::new(socket);

                    tracing::debug!("Client UDP socket listening on {}", tunnel_addr);

                    loop {
                        let mut buf = vec![0; 1024];
                        let socket = socket.clone();
                        tokio::select! {
                            biased;
                            _ = stop_rx.changed() => {
                                if *stop_rx.borrow() {
                                    tracing::debug!("Stopping UDP stream for client tunnel");
                                    break;
                                }
                            }
                            Ok((_, client_local_addr)) = socket.peek_from(&mut buf) => {
                                println!("Received UDP packet from {}", client_local_addr);
                                // If we already have a connection for this local address, skip it
                                {
                                    let local_connections = local_connections.read().await;
                                    if local_connections.contains_key(&client_local_addr) {
                                        // The connection is already being tunneled
                                        continue;
                                    }
                                } // drop lock

                                let (tunnel_send, tunnel_recv) = conn.open_bi().await?;
                                send_packet(&conn, Client2HostControlMsg::ConnReq { local_addr: client_local_addr  }).await?;

                                let local_client_connection = LocalClientConnection {
                                    client_local_addr,
                                    // We dont need to know this on the client side.
                                    // Maybe create a separate struct for this? or make it an option?
                                    client_virtual_addr: SocketAddr::V4(SocketAddrV4::new(Ipv4Addr::UNSPECIFIED, 0)),
                                    last_active: Arc::new(AtomicU64::new(0)),
                                };

                                let local_client_connection = Arc::new(RwLock::new(local_client_connection));
                                {
                                    local_connections.write().await.insert(client_local_addr, local_client_connection.clone());
                                } // drop lock

                                bi_udp_client(socket, local_connections.clone(), local_client_connection.clone(), tunnel_send, tunnel_recv, stop_rx.clone()).await?;

                            }
                        }
                    }
                }
            };
            Ok::<(), ClientError>(())
        });

        tracing::info!("Client tunnel \"{}\" is connected", self.name);

        Ok(connection_listener)
    }

    /// Static method to disconnect a local connection, which closes all related
    /// streams and sockets.
    /// This is static so it can be called from other threads given the connections.
    ///
    /// # Returns
    /// * `true` if the connection was successfully disconnected
    /// * `false` otherwise.
    pub async fn disconnect_local_connection(
        local_connections: Arc<RwLock<HashMap<SocketAddr, Arc<RwLock<LocalClientConnection>>>>>,
        connection_to_disconnect: Arc<RwLock<LocalClientConnection>>,
    ) -> bool {
        let mut local_connections = local_connections.write().await;
        let connection_to_disconnect = connection_to_disconnect.read().await;

        let client_local_addr = connection_to_disconnect.client_local_addr;

        if local_connections.remove(&client_local_addr).is_some() {
            tracing::debug!(
                "Disconnected local connection {}. Connections left: {}",
                client_local_addr,
                local_connections.len()
            );
            true
        } else {
            tracing::warn!("Tried disconnecting a local connection that does not exist");
            false
        }
    }

    /// Terminates all connections and stops the client tunnel.
    pub async fn disconnect(&mut self) -> Result<(), ClientError> {
        if !self.is_running() {
            tracing::warn!(
                "Client tunnel \"{}\" is not connected, not stopping",
                self.name
            );
            return Err(ClientError::NotConnected);
        }

        if let Some(running_props) = self.running_props.take() {
            running_props.stop_tx.send(true).unwrap();
            running_props.connection.close(VarInt::from_u32(0), &[]);
            running_props.endpoint.close().await;
        }

        self.is_connected.store(false, Ordering::SeqCst);

        tracing::info!("Client tunnel \"{}\" disconnected", self.name);

        Ok(())
    }
}

impl TunnelCommon for ClientTunnel {
    fn secret(&self) -> [u8; 32] {
        *self.secret.as_bytes()
    }

    fn protocol(&self) -> TunnelProtocol {
        self.protocol
    }

    fn is_running(&self) -> bool {
        self.is_connected.load(Ordering::SeqCst)
    }

    fn name(&self) -> String {
        self.name.clone()
    }

    async fn num_active_connections(&self) -> usize {
        if let Some(running_props) = &self.running_props {
            let local_connections = running_props.local_connections.read().await;
            local_connections.len()
        } else {
            0
        }
    }

    fn addr(&self) -> SocketAddr {
        self.tunnel_addr
    }
}