2023-01-27 13:37:20 -08:00
|
|
|
// Copyright (c) Tailscale Inc & AUTHORS
|
|
|
|
// SPDX-License-Identifier: BSD-3-Clause
|
2021-12-01 12:07:20 -08:00
|
|
|
|
|
|
|
// This file's built on iOS and on two of three macOS build variants:
|
|
|
|
// the two GUI variants that both use Extensions (Network Extension
|
|
|
|
// and System Extension). It's not used on tailscaled-on-macOS.
|
|
|
|
|
|
|
|
//go:build ts_macext && (darwin || ios)
|
|
|
|
|
|
|
|
package tsdial
|
|
|
|
|
|
|
|
import (
|
|
|
|
"errors"
|
|
|
|
"net"
|
|
|
|
"syscall"
|
|
|
|
|
|
|
|
"tailscale.com/net/netns"
|
|
|
|
)
|
|
|
|
|
|
|
|
func init() {
|
|
|
|
peerDialControlFunc = peerDialControlFuncNetworkExtension
|
|
|
|
}
|
|
|
|
|
|
|
|
func peerDialControlFuncNetworkExtension(d *Dialer) func(network, address string, c syscall.RawConn) error {
|
|
|
|
d.mu.Lock()
|
|
|
|
defer d.mu.Unlock()
|
|
|
|
|
|
|
|
index := -1
|
2023-12-20 16:50:30 -06:00
|
|
|
if x, ok := interfaceIndexLocked(d); ok {
|
2021-12-01 12:07:20 -08:00
|
|
|
index = x
|
|
|
|
}
|
|
|
|
var lc net.ListenConfig
|
|
|
|
netns.SetListenConfigInterfaceIndex(&lc, index)
|
|
|
|
return func(network, address string, c syscall.RawConn) error {
|
|
|
|
if index == -1 {
|
|
|
|
return errors.New("failed to find TUN interface to bind to")
|
|
|
|
}
|
|
|
|
return lc.Control(network, address, c)
|
|
|
|
}
|
|
|
|
}
|
2023-12-20 16:50:30 -06:00
|
|
|
|
|
|
|
func interfaceIndexLocked(d *Dialer) (index int, ok bool) {
|
|
|
|
if d.netMon == nil {
|
|
|
|
return 0, false
|
|
|
|
}
|
|
|
|
st := d.netMon.InterfaceState()
|
|
|
|
iface, ok := st.Interface[d.tunName]
|
|
|
|
if !ok {
|
|
|
|
return 0, false
|
|
|
|
}
|
|
|
|
return iface.Index, true
|
|
|
|
}
|