wakezilla 0.2.1

A Wake-on-LAN proxy server written in Rust
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309

use anyhow::{bail, Context, Result};
use futures_util::StreamExt;
use ipnetwork::IpNetwork;
use pnet::datalink::{self, Channel, Config, NetworkInterface as PnetNetworkInterface};
use pnet::packet::arp::{ArpHardwareTypes, ArpOperations, ArpPacket, MutableArpPacket};
use pnet::packet::ethernet::{EtherTypes, MutableEthernetPacket};
use pnet::packet::Packet;
use pnet::util::MacAddr;
use serde::Serialize;
use std::net::IpAddr;
use std::time::Duration;
use tracing::{info, warn};

/// Maximum number of concurrent hostname lookups during network scans.
/// This prevents overwhelming DNS servers on large subnets.
const HOSTNAME_LOOKUP_CONCURRENCY: usize = 32;

#[derive(Serialize, Debug, Clone)]
pub struct DiscoveredDevice {
    pub ip: String,
    pub mac: String,
    pub hostname: Option<String>,
}
impl DiscoveredDevice {
    fn scan_with_pnet(
        interface: PnetNetworkInterface,
        network: IpNetwork,
        source_ip: IpAddr,
        source_mac: MacAddr,
    ) -> Result<Vec<DiscoveredDevice>> {
        let source_ipv4 = match source_ip {
            IpAddr::V4(ip) => ip,
            _ => bail!("Only IPv4 is supported"),
        };

        let config = Config {
            read_timeout: Some(Duration::from_secs(2)),
            ..Default::default()
        };

        let (mut tx, mut rx) = match datalink::channel(&interface, config) {
            Ok(Channel::Ethernet(tx, rx)) => (tx, rx),
            Ok(_) => bail!("Unsupported channel type"),
            Err(e) => bail!(
                "Failed to create raw network socket for ARP scanning: {}. \
             This requires root/administrator privileges. \
             Please run the application with 'sudo' or as administrator.",
                e
            ),
        };

        for target_ip in network.iter() {
            let target_ipv4 = match target_ip {
                IpAddr::V4(ip) => ip,
                _ => continue,
            };

            if target_ipv4 == source_ipv4 {
                continue;
            }

            let mut ethernet_buffer = [0u8; 42];
            let mut ethernet_packet = MutableEthernetPacket::new(&mut ethernet_buffer).unwrap();

            ethernet_packet.set_destination(MacAddr::broadcast());
            ethernet_packet.set_source(source_mac);
            ethernet_packet.set_ethertype(EtherTypes::Arp);

            let mut arp_buffer = [0u8; 28];
            let mut arp_packet = MutableArpPacket::new(&mut arp_buffer).unwrap();

            arp_packet.set_hardware_type(ArpHardwareTypes::Ethernet);
            arp_packet.set_protocol_type(EtherTypes::Ipv4);
            arp_packet.set_hw_addr_len(6);
            arp_packet.set_proto_addr_len(4);
            arp_packet.set_operation(ArpOperations::Request);
            arp_packet.set_sender_hw_addr(source_mac);
            arp_packet.set_sender_proto_addr(source_ipv4);
            arp_packet.set_target_hw_addr(MacAddr::zero());
            arp_packet.set_target_proto_addr(target_ipv4);

            ethernet_packet.set_payload(arp_packet.packet());

            tx.send_to(ethernet_packet.packet(), None);
        }

        // Drop sender to allow receiver to unblock on some platforms
        drop(tx);

        let mut devices = Vec::new();
        let start_time = std::time::Instant::now();
        let scan_duration = Duration::from_secs(5);

        while start_time.elapsed() < scan_duration {
            match rx.next() {
                Ok(packet) => {
                    if let Some(ethernet_packet) =
                        pnet::packet::ethernet::EthernetPacket::new(packet)
                    {
                        if ethernet_packet.get_ethertype() == EtherTypes::Arp {
                            if let Some(arp_packet) = ArpPacket::new(ethernet_packet.payload()) {
                                if arp_packet.get_operation() == ArpOperations::Reply {
                                    let device = DiscoveredDevice {
                                        ip: arp_packet.get_sender_proto_addr().to_string(),
                                        mac: arp_packet
                                            .get_sender_hw_addr()
                                            .to_string()
                                            .to_uppercase(),
                                        hostname: None,
                                    };
                                    if !devices
                                        .iter()
                                        .any(|d: &DiscoveredDevice| d.mac == device.mac)
                                    {
                                        devices.push(device);
                                    }
                                }
                            }
                        }
                    }
                }
                Err(e) if e.kind() == std::io::ErrorKind::TimedOut => continue,
                Err(e) => {
                    warn!("Error receiving packet: {}", e);
                    break;
                }
            }
        }

        Ok(devices)
    }
}

#[derive(Serialize, Debug, Clone)]
pub struct NetworkInterface {
    pub name: String,
    pub ip: String,
    pub mac: String,
    pub is_up: bool,
}

impl NetworkInterface {
    pub async fn list_interfaces() -> Result<Vec<NetworkInterface>> {
        let interfaces = datalink::interfaces()
            .into_iter()
            .filter(|iface| {
                iface.is_up()
                    && !iface.is_loopback()
                    && iface.mac.is_some()
                    && iface.ips.iter().any(|ip| ip.is_ipv4())
            })
            .map(|iface| {
                let ip = iface
                    .ips
                    .iter()
                    .find(|ip| ip.is_ipv4())
                    .map(|ip| ip.ip().to_string())
                    .unwrap_or_else(|| "No IPv4".to_string());

                let mac = iface
                    .mac
                    .map(|mac| mac.to_string().to_uppercase())
                    .unwrap_or_else(|| "No MAC".to_string());

                let is_up = iface.is_up();
                let name = iface.name;

                NetworkInterface {
                    name,
                    ip,
                    mac,
                    is_up,
                }
            })
            .collect();

        Ok(interfaces)
    }

    pub async fn scan_network_with_interface(
        interface_name: Option<&str>,
    ) -> Result<Vec<DiscoveredDevice>> {
        info!("Starting network scan on interface: {:?}", interface_name);

        let pnet_iface = if let Some(name) = interface_name {
            datalink::interfaces()
                .into_iter()
                .find(|iface| iface.name == name)
                .ok_or_else(|| anyhow::anyhow!("Interface '{}' not found", name))?
        } else {
            // Use the original logic for automatic selection
            datalink::interfaces()
                .into_iter()
                .filter(|iface| {
                    iface.is_up()
                        && !iface.is_loopback()
                        && iface.mac.is_some()
                        && iface.ips.iter().any(|ip| ip.is_ipv4())
                })
                .find(|iface| {
                    // Prefer interfaces that are not Docker bridge networks (172.x.x.x)
                    // and prefer macvlan interfaces (eth1, eth2, etc. over eth0)
                    let has_non_docker_ip = iface.ips.iter().any(|ip| {
                        if let std::net::IpAddr::V4(ipv4) = ip.ip() {
                            ipv4.octets()[0] != 172 // Avoid Docker bridge networks
                        } else {
                            false
                        }
                    });

                    // If we have a non-Docker IP, prefer this interface
                    if has_non_docker_ip {
                        return true;
                    }

                    // Otherwise, prefer interfaces that are not eth0 (Docker default)
                    !iface.name.starts_with("eth0")
                })
                .or_else(|| {
                    // Fallback to any suitable interface if no preferred one found
                    datalink::interfaces().into_iter().find(|iface| {
                        iface.is_up()
                            && !iface.is_loopback()
                            && iface.mac.is_some()
                            && iface.ips.iter().any(|ip| ip.is_ipv4())
                    })
                })
                .ok_or_else(|| {
                    anyhow::anyhow!("No suitable network interface found for scanning.")
                })?
        };

        // Validate the selected interface
        if !pnet_iface.is_up() {
            bail!("Selected interface '{}' is not up", pnet_iface.name);
        }
        if pnet_iface.is_loopback() {
            bail!("Selected interface '{}' is loopback", pnet_iface.name);
        }
        if pnet_iface.mac.is_none() {
            bail!(
                "Selected interface '{}' has no MAC address",
                pnet_iface.name
            );
        }
        if !pnet_iface.ips.iter().any(|ip| ip.is_ipv4()) {
            bail!(
                "Selected interface '{}' has no IPv4 address",
                pnet_iface.name
            );
        }

        let ip_network = pnet_iface
            .ips
            .iter()
            .find(|ip| ip.is_ipv4())
            .ok_or_else(|| anyhow::anyhow!("Selected interface has no IPv4 address."))?;

        let source_ip = ip_network.ip();
        let network = IpNetwork::new(ip_network.ip(), ip_network.prefix())
            .context("Failed to create IP network")?;

        info!(
            "Found network interface to scan: {} on {}",
            network, pnet_iface.name
        );

        let source_mac = pnet_iface
            .mac
            .ok_or_else(|| anyhow::anyhow!("Interface has no MAC address"))?;

        let discovered_devices_no_hostname = tokio::task::spawn_blocking(move || {
        DiscoveredDevice::scan_with_pnet(pnet_iface, network, source_ip, source_mac)
    })
    .await
    .context("Failed to join network scanning task")?
    .context(
        "Network scanning failed. ARP scanning requires root/administrator privileges \
         to create raw network sockets. Please run the application with 'sudo' or as administrator. \
         Alternative: You can try running as administrator User Account Control (UAC) on Windows, \
         or use 'sudo' on macOS/Linux."
    )?;

        // Use buffer_unordered to limit concurrent hostname lookups,
        // preventing DNS/task spikes on large subnets.
        // Offload blocking DNS lookups to spawn_blocking to avoid blocking the executor.
        let discovered_devices: Vec<DiscoveredDevice> =
            futures_util::stream::iter(discovered_devices_no_hostname)
                .map(|mut device| async move {
                    if let Ok(ip_addr) = device.ip.parse::<IpAddr>() {
                        let hostname_result =
                            tokio::task::spawn_blocking(move || dns_lookup::lookup_addr(&ip_addr))
                                .await;
                        // Handle both the JoinError and the lookup Result
                        device.hostname = hostname_result.ok().and_then(|r| r.ok());
                    }
                    device
                })
                .buffer_unordered(HOSTNAME_LOOKUP_CONCURRENCY)
                .collect()
                .await;

        info!(
            "Network scan finished. Found {} devices.",
            discovered_devices.len()
        );
        Ok(discovered_devices)
    }
}