triglav 0.1.0

High-performance multi-path networking tool with intelligent uplink management
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235

//! TUN device end-to-end test for macOS.
//!
//! This test verifies:
//! 1. TUN device can be created
//! 2. IP address can be assigned
//! 3. Interface shows up in ifconfig
//! 4. Packets can be read from TUN
//!
//! Run with: sudo cargo run --bin tun_test

use std::process::Command;
use std::time::Duration;

fn check_root() -> bool {
    unsafe { libc::getuid() == 0 }
}

#[tokio::main]
async fn main() {
    println!("╔══════════════════════════════════════════════════╗");
    println!("║     TRIGLAV TUN DEVICE TEST (macOS)              ║");
    println!("╚══════════════════════════════════════════════════╝");
    println!();

    // Check privileges
    if !check_root() {
        eprintln!("ERROR: This test requires root privileges.");
        eprintln!("Run with: sudo cargo run --bin tun_test");
        std::process::exit(1);
    }

    println!("[1/7] Creating TUN device...");
    
    let config = triglav::tun::TunConfig {
        name: "utun".to_string(), // macOS will assign a number
        mtu: 1420,
        ipv4_addr: Some("10.0.85.1".parse().unwrap()),
        ipv4_netmask: 24,
        ipv6_addr: None,
        ipv6_prefix: 64,
        set_default_route: false,
        queue_size: 512,
    };

    let mut tun = match triglav::tun::TunDevice::create(config) {
        Ok(t) => {
            println!("      OK: Created TUN device: {}", t.name());
            t
        }
        Err(e) => {
            eprintln!("      FAILED: {}", e);
            std::process::exit(1);
        }
    };

    println!("\n[2/7] Configuring IP address (10.0.85.1/24)...");
    match tun.configure_addresses() {
        Ok(_) => println!("      OK: IP address configured"),
        Err(e) => {
            eprintln!("      FAILED: {}", e);
            std::process::exit(1);
        }
    }

    println!("\n[3/7] Bringing interface up...");
    match tun.up() {
        Ok(_) => println!("      OK: Interface is UP"),
        Err(e) => {
            eprintln!("      FAILED: {}", e);
            std::process::exit(1);
        }
    }

    println!("\n[4/7] Verifying interface in system (ifconfig)...");
    let output = Command::new("ifconfig")
        .arg(tun.name())
        .output()
        .expect("Failed to run ifconfig");
    
    if output.status.success() {
        let stdout = String::from_utf8_lossy(&output.stdout);
        println!("      OK: Interface visible in system");
        println!("      ┌────────────────────────────────────────────────");
        for line in stdout.lines() {
            println!("{}", line);
        }
        println!("      └────────────────────────────────────────────────");
    } else {
        eprintln!("      FAILED: Interface not found in ifconfig");
        std::process::exit(1);
    }

    println!("\n[5/7] Checking routing table...");
    let route_output = Command::new("netstat")
        .args(["-rn"])
        .output()
        .expect("Failed to run netstat");
    
    let route_stdout = String::from_utf8_lossy(&route_output.stdout);
    let tun_routes: Vec<&str> = route_stdout
        .lines()
        .filter(|l| l.contains(tun.name()))
        .collect();
    
    if !tun_routes.is_empty() {
        println!("      OK: Found {} route(s) for {}", tun_routes.len(), tun.name());
        for route in &tun_routes {
            println!("{}", route);
        }
    } else {
        println!("      INFO: No routes found (this is normal without --full-tunnel)");
    }

    println!("\n[6/7] Testing packet capture (sending ICMP to 10.0.85.1)...");
    
    let handle = tun.handle();
    
    // Spawn async reader
    let read_task = tokio::spawn(async move {
        let mut buf = vec![0u8; 2048];
        let mut packets_received = 0;
        
        // Try to read for up to 3 seconds
        let deadline = tokio::time::Instant::now() + Duration::from_secs(3);
        
        while tokio::time::Instant::now() < deadline {
            match tokio::time::timeout(Duration::from_millis(500), handle.read(&mut buf)).await {
                Ok(Ok(len)) if len > 0 => {
                    packets_received += 1;
                    
                    // Parse basic IP info
                    let version = (buf[0] >> 4) & 0x0f;
                    let (protocol, src, dst) = if version == 4 && len >= 20 {
                        let proto = buf[9];
                        let src = format!("{}.{}.{}.{}", buf[12], buf[13], buf[14], buf[15]);
                        let dst = format!("{}.{}.{}.{}", buf[16], buf[17], buf[18], buf[19]);
                        (proto, src, dst)
                    } else {
                        (0, "?".into(), "?".into())
                    };
                    
                    let proto_name = match protocol {
                        1 => "ICMP",
                        6 => "TCP",
                        17 => "UDP",
                        _ => "Other",
                    };
                    
                    println!("      RECV: {} bytes | IPv{} {} | {} -> {}", 
                             len, version, proto_name, src, dst);
                    
                    if packets_received >= 2 {
                        break;
                    }
                }
                Ok(Ok(_)) => {}
                Ok(Err(e)) => {
                    // EAGAIN/EWOULDBLOCK is normal for non-blocking
                    if e.to_string().contains("Resource temporarily unavailable") {
                        continue;
                    }
                    println!("      Read error: {}", e);
                    break;
                }
                Err(_) => {
                    // Timeout, continue
                }
            }
        }
        
        packets_received
    });

    // Wait a moment for reader to start
    tokio::time::sleep(Duration::from_millis(100)).await;

    // Send some pings
    println!("      Sending ping to 10.0.85.1...");
    for _ in 0..3 {
        let _ = Command::new("ping")
            .args(["-c", "1", "-t", "1", "-W", "100", "10.0.85.1"])
            .output();
        tokio::time::sleep(Duration::from_millis(200)).await;
    }

    // Wait for read task
    let packets = read_task.await.unwrap_or(0);
    
    if packets > 0 {
        println!("      OK: Captured {} packet(s) from TUN device", packets);
    } else {
        println!("      INFO: No packets captured (ping may not generate traffic to TUN)");
        println!("           This can happen if the kernel handles the ping internally.");
    }

    println!("\n[7/7] Cleanup...");
    match tun.down() {
        Ok(_) => println!("      OK: Interface brought down"),
        Err(e) => println!("      WARN: {}", e),
    }
    
    // Drop the TUN device (closes fd, removes interface)
    let tun_name = tun.name().to_string();
    drop(tun);
    
    // Verify cleanup - retry a few times as kernel may take a moment
    let mut removed = false;
    for i in 0..5 {
        tokio::time::sleep(Duration::from_millis(100)).await;
        let verify = Command::new("ifconfig")
            .arg(&tun_name)
            .output();
        
        if let Ok(o) = verify {
            if !o.status.success() {
                println!("      OK: Interface {} removed from system", tun_name);
                removed = true;
                break;
            }
        }
        if i < 4 {
            // Still exists, wait a bit more
            tokio::time::sleep(Duration::from_millis(100)).await;
        }
    }
    
    if !removed {
        println!("      WARN: Interface {} may still exist (will be removed on process exit)", tun_name);
    }

    println!();
    println!("╔══════════════════════════════════════════════════╗");
    println!("║     ALL TESTS PASSED                             ║");
    println!("╚══════════════════════════════════════════════════╝");
}