mirror of
https://github.com/Luzifer/vault-openvpn.git
synced 2024-12-27 23:31:20 +00:00
264 lines
7.1 KiB
Go
264 lines
7.1 KiB
Go
// Copyright 2013 The Go Authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package ipv6_test
|
|
|
|
import (
|
|
"bytes"
|
|
"net"
|
|
"os"
|
|
"runtime"
|
|
"testing"
|
|
"time"
|
|
|
|
"golang.org/x/net/icmp"
|
|
"golang.org/x/net/internal/iana"
|
|
"golang.org/x/net/internal/nettest"
|
|
"golang.org/x/net/ipv6"
|
|
)
|
|
|
|
var packetConnReadWriteMulticastUDPTests = []struct {
|
|
addr string
|
|
grp, src *net.UDPAddr
|
|
}{
|
|
{"[ff02::]:0", &net.UDPAddr{IP: net.ParseIP("ff02::114")}, nil}, // see RFC 4727
|
|
|
|
{"[ff30::8000:0]:0", &net.UDPAddr{IP: net.ParseIP("ff30::8000:1")}, &net.UDPAddr{IP: net.IPv6loopback}}, // see RFC 5771
|
|
}
|
|
|
|
func TestPacketConnReadWriteMulticastUDP(t *testing.T) {
|
|
switch runtime.GOOS {
|
|
case "nacl", "plan9", "windows":
|
|
t.Skipf("not supported on %s", runtime.GOOS)
|
|
}
|
|
if !supportsIPv6 {
|
|
t.Skip("ipv6 is not supported")
|
|
}
|
|
if !nettest.SupportsIPv6MulticastDeliveryOnLoopback() {
|
|
t.Skipf("multicast delivery doesn't work correctly on %s", runtime.GOOS)
|
|
}
|
|
ifi := nettest.RoutedInterface("ip6", net.FlagUp|net.FlagMulticast|net.FlagLoopback)
|
|
if ifi == nil {
|
|
t.Skipf("not available on %s", runtime.GOOS)
|
|
}
|
|
|
|
for _, tt := range packetConnReadWriteMulticastUDPTests {
|
|
c, err := net.ListenPacket("udp6", tt.addr)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
defer c.Close()
|
|
|
|
grp := *tt.grp
|
|
grp.Port = c.LocalAddr().(*net.UDPAddr).Port
|
|
p := ipv6.NewPacketConn(c)
|
|
defer p.Close()
|
|
if tt.src == nil {
|
|
if err := p.JoinGroup(ifi, &grp); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
defer p.LeaveGroup(ifi, &grp)
|
|
} else {
|
|
if err := p.JoinSourceSpecificGroup(ifi, &grp, tt.src); err != nil {
|
|
switch runtime.GOOS {
|
|
case "freebsd", "linux":
|
|
default: // platforms that don't support MLDv2 fail here
|
|
t.Logf("not supported on %s", runtime.GOOS)
|
|
continue
|
|
}
|
|
t.Fatal(err)
|
|
}
|
|
defer p.LeaveSourceSpecificGroup(ifi, &grp, tt.src)
|
|
}
|
|
if err := p.SetMulticastInterface(ifi); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if _, err := p.MulticastInterface(); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := p.SetMulticastLoopback(true); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if _, err := p.MulticastLoopback(); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
cm := ipv6.ControlMessage{
|
|
TrafficClass: iana.DiffServAF11 | iana.CongestionExperienced,
|
|
Src: net.IPv6loopback,
|
|
IfIndex: ifi.Index,
|
|
}
|
|
cf := ipv6.FlagTrafficClass | ipv6.FlagHopLimit | ipv6.FlagSrc | ipv6.FlagDst | ipv6.FlagInterface | ipv6.FlagPathMTU
|
|
wb := []byte("HELLO-R-U-THERE")
|
|
|
|
for i, toggle := range []bool{true, false, true} {
|
|
if err := p.SetControlMessage(cf, toggle); err != nil {
|
|
if nettest.ProtocolNotSupported(err) {
|
|
t.Logf("not supported on %s", runtime.GOOS)
|
|
continue
|
|
}
|
|
t.Fatal(err)
|
|
}
|
|
if err := p.SetDeadline(time.Now().Add(200 * time.Millisecond)); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
cm.HopLimit = i + 1
|
|
if n, err := p.WriteTo(wb, &cm, &grp); err != nil {
|
|
t.Fatal(err)
|
|
} else if n != len(wb) {
|
|
t.Fatal(err)
|
|
}
|
|
rb := make([]byte, 128)
|
|
if n, _, _, err := p.ReadFrom(rb); err != nil {
|
|
t.Fatal(err)
|
|
} else if !bytes.Equal(rb[:n], wb) {
|
|
t.Fatalf("got %v; want %v", rb[:n], wb)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
var packetConnReadWriteMulticastICMPTests = []struct {
|
|
grp, src *net.IPAddr
|
|
}{
|
|
{&net.IPAddr{IP: net.ParseIP("ff02::114")}, nil}, // see RFC 4727
|
|
|
|
{&net.IPAddr{IP: net.ParseIP("ff30::8000:1")}, &net.IPAddr{IP: net.IPv6loopback}}, // see RFC 5771
|
|
}
|
|
|
|
func TestPacketConnReadWriteMulticastICMP(t *testing.T) {
|
|
switch runtime.GOOS {
|
|
case "nacl", "plan9", "windows":
|
|
t.Skipf("not supported on %s", runtime.GOOS)
|
|
}
|
|
if !supportsIPv6 {
|
|
t.Skip("ipv6 is not supported")
|
|
}
|
|
if !nettest.SupportsIPv6MulticastDeliveryOnLoopback() {
|
|
t.Skipf("multicast delivery doesn't work correctly on %s", runtime.GOOS)
|
|
}
|
|
if m, ok := nettest.SupportsRawIPSocket(); !ok {
|
|
t.Skip(m)
|
|
}
|
|
ifi := nettest.RoutedInterface("ip6", net.FlagUp|net.FlagMulticast|net.FlagLoopback)
|
|
if ifi == nil {
|
|
t.Skipf("not available on %s", runtime.GOOS)
|
|
}
|
|
|
|
for _, tt := range packetConnReadWriteMulticastICMPTests {
|
|
c, err := net.ListenPacket("ip6:ipv6-icmp", "::")
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
defer c.Close()
|
|
|
|
pshicmp := icmp.IPv6PseudoHeader(c.LocalAddr().(*net.IPAddr).IP, tt.grp.IP)
|
|
p := ipv6.NewPacketConn(c)
|
|
defer p.Close()
|
|
if tt.src == nil {
|
|
if err := p.JoinGroup(ifi, tt.grp); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
defer p.LeaveGroup(ifi, tt.grp)
|
|
} else {
|
|
if err := p.JoinSourceSpecificGroup(ifi, tt.grp, tt.src); err != nil {
|
|
switch runtime.GOOS {
|
|
case "freebsd", "linux":
|
|
default: // platforms that don't support MLDv2 fail here
|
|
t.Logf("not supported on %s", runtime.GOOS)
|
|
continue
|
|
}
|
|
t.Fatal(err)
|
|
}
|
|
defer p.LeaveSourceSpecificGroup(ifi, tt.grp, tt.src)
|
|
}
|
|
if err := p.SetMulticastInterface(ifi); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if _, err := p.MulticastInterface(); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := p.SetMulticastLoopback(true); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if _, err := p.MulticastLoopback(); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
cm := ipv6.ControlMessage{
|
|
TrafficClass: iana.DiffServAF11 | iana.CongestionExperienced,
|
|
Src: net.IPv6loopback,
|
|
IfIndex: ifi.Index,
|
|
}
|
|
cf := ipv6.FlagTrafficClass | ipv6.FlagHopLimit | ipv6.FlagSrc | ipv6.FlagDst | ipv6.FlagInterface | ipv6.FlagPathMTU
|
|
|
|
var f ipv6.ICMPFilter
|
|
f.SetAll(true)
|
|
f.Accept(ipv6.ICMPTypeEchoReply)
|
|
if err := p.SetICMPFilter(&f); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
var psh []byte
|
|
for i, toggle := range []bool{true, false, true} {
|
|
if toggle {
|
|
psh = nil
|
|
if err := p.SetChecksum(true, 2); err != nil {
|
|
// Solaris never allows to
|
|
// modify ICMP properties.
|
|
if runtime.GOOS != "solaris" {
|
|
t.Fatal(err)
|
|
}
|
|
}
|
|
} else {
|
|
psh = pshicmp
|
|
// Some platforms never allow to
|
|
// disable the kernel checksum
|
|
// processing.
|
|
p.SetChecksum(false, -1)
|
|
}
|
|
wb, err := (&icmp.Message{
|
|
Type: ipv6.ICMPTypeEchoRequest, Code: 0,
|
|
Body: &icmp.Echo{
|
|
ID: os.Getpid() & 0xffff, Seq: i + 1,
|
|
Data: []byte("HELLO-R-U-THERE"),
|
|
},
|
|
}).Marshal(psh)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := p.SetControlMessage(cf, toggle); err != nil {
|
|
if nettest.ProtocolNotSupported(err) {
|
|
t.Logf("not supported on %s", runtime.GOOS)
|
|
continue
|
|
}
|
|
t.Fatal(err)
|
|
}
|
|
if err := p.SetDeadline(time.Now().Add(200 * time.Millisecond)); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
cm.HopLimit = i + 1
|
|
if n, err := p.WriteTo(wb, &cm, tt.grp); err != nil {
|
|
t.Fatal(err)
|
|
} else if n != len(wb) {
|
|
t.Fatalf("got %v; want %v", n, len(wb))
|
|
}
|
|
rb := make([]byte, 128)
|
|
if n, _, _, err := p.ReadFrom(rb); err != nil {
|
|
switch runtime.GOOS {
|
|
case "darwin": // older darwin kernels have some limitation on receiving icmp packet through raw socket
|
|
t.Logf("not supported on %s", runtime.GOOS)
|
|
continue
|
|
}
|
|
t.Fatal(err)
|
|
} else {
|
|
if m, err := icmp.ParseMessage(iana.ProtocolIPv6ICMP, rb[:n]); err != nil {
|
|
t.Fatal(err)
|
|
} else if m.Type != ipv6.ICMPTypeEchoReply || m.Code != 0 {
|
|
t.Fatalf("got type=%v, code=%v; want type=%v, code=%v", m.Type, m.Code, ipv6.ICMPTypeEchoReply, 0)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|