🥓 netio: add packet abstractions

database64128 · database64128 · commit 06d05e80bca9 · 2025-10-24T02:51:20.000+08:00
diff --git a/netio/packet.go b/netio/packet.go
@@ -0,0 +1,228 @@
+package netio
+
+import (
+	"context"
+	"net/netip"
+	"time"
+
+	"github.com/database64128/shadowsocks-go/conn"
+)
+
+// PacketClient establishes packet sessions to servers.
+type PacketClient interface {
+	// NewSession opens a new client session and returns the opened session and its information.
+	//
+	// connectAddr specifies an optional connect address for the session. If valid, the server
+	// is expected to drop received packets not sent from this address.
+	//
+	// The returned [PacketClientSessionInfo] is always valid, even when session creation fails.
+	NewSession(ctx context.Context, connectAddr conn.Addr) (PacketClientSession, PacketClientSessionInfo, error)
+}
+
+// PacketClientSession handles packing and unpacking of packets for a client session.
+type PacketClientSession interface {
+	// AppendPack packs the payload into a packet ready for sending and appends it to the buffer.
+	// It returns the extended buffer, the destination address of the packed packet, or an error if packing fails.
+	//
+	// The remaining capacity of b must not overlap payload.
+	//
+	// If the session is "connected", destAddr must be the zero value.
+	//
+	// If the session uses a connected socket, sendAddrPort must be the zero value.
+	AppendPack(ctx context.Context, b, payload []byte, destAddr conn.Addr) (sendBuf []byte, sendAddrPort netip.AddrPort, err error)
+
+	// UnpackInPlace unpacks the received packet in-place and returns the payload, source address,
+	// or an error if unpacking fails.
+	//
+	// If the session uses a connected socket, recvAddrPort will be the zero value.
+	//
+	// If the session is "connected", srcAddr must be the zero value.
+	UnpackInPlace(recvBuf []byte, recvAddrPort netip.AddrPort) (payload []byte, srcAddr conn.Addr, err error)
+
+	// Close closes the session.
+	Close() error
+}
+
+// PacketClientSessionInfo contains information about a client session.
+type PacketClientSessionInfo struct {
+	// Name is the name of the client.
+	Name string
+
+	// MaxPacketSize is the maximum size of outgoing packets.
+	MaxPacketSize int
+
+	// ListenConfig is the [conn.ListenConfig] for opening unconnected client sockets.
+	ListenConfig conn.ListenConfig
+
+	// Dialer is the [conn.Dialer] for opening connected client sockets.
+	Dialer conn.Dialer
+
+	// ConnectAddr is the address for the client socket to connect to.
+	ConnectAddr conn.Addr
+}
+
+// PacketServer handles incoming packet sessions from clients.
+type PacketServer[SID comparable] interface {
+	// PacketServerInfo returns information about the packet server.
+	PacketServerInfo() PacketServerInfo
+
+	// HandlePacket extracts the session ID from the received packet.
+	//
+	// The returned session ID is then used by the caller to look up the session table.
+	// If no matching session is found, [NewSession] should be called to create a new session.
+	HandlePacket(recvBuf []byte, recvAddrPort netip.AddrPort) (sid SID, err error)
+
+	// NewSession creates a new session with the given session ID and unpacks the received packet in-place.
+	// It returns the server session, session information, payload, destination address, or an error
+	// if session creation or unpacking fails.
+	NewSession(recvBuf []byte, sid SID) (
+		serverSession PacketServerSession,
+		serverSessionInfo PacketServerSessionInfo,
+		payload []byte, destAddr conn.Addr, err error,
+	)
+}
+
+// PacketServerInfo contains information about a packet server.
+type PacketServerInfo struct {
+	// MinNATTimeout is the minimum NAT timeout allowed by the server.
+	MinNATTimeout time.Duration
+}
+
+// PacketServerSession handles packing and unpacking of packets for a server session.
+type PacketServerSession interface {
+	// UnpackInPlace unpacks the received packet in-place and returns the payload, destination address,
+	// or an error if unpacking fails.
+	//
+	// If the session is "connected", destAddr must be the zero value.
+	UnpackInPlace(recvBuf []byte, recvAddrPort netip.AddrPort) (payload []byte, destAddr conn.Addr, err error)
+
+	// AppendPack packs the payload into a packet ready for sending and appends it to the buffer.
+	// It returns the extended buffer, or an error if packing fails.
+	//
+	// The remaining capacity of b must not overlap payload.
+	//
+	// If the session is "connected", srcAddr will be the zero value.
+	AppendPack(b, payload []byte, srcAddr conn.Addr) (sendBuf []byte, err error)
+}
+
+// PacketServerSessionInfo contains information about a server session.
+type PacketServerSessionInfo struct {
+	// Username identifies the initiator of the session.
+	Username string
+
+	// IsConnected indicates whether the session is "connected".
+	//
+	// If true, received packets not sent from the connected address are dropped.
+	IsConnected bool
+}
+
+// PacketProxyServerConfig is the configuration for a packet proxy server.
+type PacketProxyServerConfig struct {
+	// Addr is the destination address.
+	Addr conn.Addr
+
+	// IsConnected controls whether to establish "connected" sessions.
+	//
+	// If true, received packets not sent from Addr are dropped.
+	IsConnected bool
+}
+
+// NewPacketProxyServer returns a new packet proxy server.
+func (c *PacketProxyServerConfig) NewPacketProxyServer() PacketServer[netip.AddrPort] {
+	if c.IsConnected {
+		return &PacketProxyServerConnected{
+			connectAddr: c.Addr,
+		}
+	}
+	return &PacketProxyServer{
+		session: PacketProxyServerSession{
+			addr: c.Addr,
+		},
+	}
+}
+
+// PacketProxyServer proxies all incoming packet sessions to a fixed destination address.
+//
+// PacketProxyServer implements [PacketServer].
+type PacketProxyServer struct {
+	session PacketProxyServerSession
+}
+
+// PacketServerInfo implements [PacketServer.PacketServerInfo].
+func (*PacketProxyServer) PacketServerInfo() PacketServerInfo {
+	return PacketServerInfo{}
+}
+
+// HandlePacket implements [PacketServer.HandlePacket].
+func (*PacketProxyServer) HandlePacket(_ []byte, recvAddrPort netip.AddrPort) (sid netip.AddrPort, err error) {
+	return recvAddrPort, nil
+}
+
+// NewSession implements [PacketServer.NewSession].
+func (s *PacketProxyServer) NewSession(recvBuf []byte, _ netip.AddrPort) (
+	serverSession PacketServerSession,
+	serverSessionInfo PacketServerSessionInfo,
+	payload []byte, destAddr conn.Addr, err error,
+) {
+	return &s.session, PacketServerSessionInfo{}, recvBuf, s.session.addr, nil
+}
+
+// PacketProxyServerSession passes packets unmodified to a fixed destination address.
+//
+// PacketProxyServerSession implements [PacketServerSession].
+type PacketProxyServerSession struct {
+	addr conn.Addr
+}
+
+// UnpackInPlace implements [PacketServerSession.UnpackInPlace].
+func (s *PacketProxyServerSession) UnpackInPlace(recvBuf []byte, _ netip.AddrPort) (payload []byte, destAddr conn.Addr, err error) {
+	return recvBuf, s.addr, nil
+}
+
+// AppendPack implements [PacketServerSession.AppendPack].
+func (*PacketProxyServerSession) AppendPack(b, payload []byte, _ conn.Addr) (sendBuf []byte, err error) {
+	return append(b, payload...), nil
+}
+
+// PacketProxyServerConnected is like [PacketProxyServer] but
+// drops packets that are not sent from the destination address.
+//
+// PacketProxyServerConnected implements [PacketServer].
+type PacketProxyServerConnected struct {
+	connectAddr conn.Addr
+}
+
+// PacketServerInfo implements [PacketServer.PacketServerInfo].
+func (*PacketProxyServerConnected) PacketServerInfo() PacketServerInfo {
+	return PacketServerInfo{}
+}
+
+// HandlePacket implements [PacketServer.HandlePacket].
+func (*PacketProxyServerConnected) HandlePacket(_ []byte, recvAddrPort netip.AddrPort) (sid netip.AddrPort, err error) {
+	return recvAddrPort, nil
+}
+
+// NewSession implements [PacketServer.NewSession].
+func (s *PacketProxyServerConnected) NewSession(recvBuf []byte, _ netip.AddrPort) (
+	serverSession PacketServerSession,
+	serverSessionInfo PacketServerSessionInfo,
+	payload []byte, destAddr conn.Addr, err error,
+) {
+	return PacketProxyServerConnectedSession{}, PacketServerSessionInfo{IsConnected: true}, recvBuf, s.connectAddr, nil
+}
+
+// PacketProxyServerConnectedSession is like [PacketProxyServerSession] but
+// drops packets that are not sent from the destination address.
+//
+// PacketProxyServerConnectedSession implements [PacketServerSession].
+type PacketProxyServerConnectedSession struct{}
+
+// UnpackInPlace implements [PacketServerSession.UnpackInPlace].
+func (PacketProxyServerConnectedSession) UnpackInPlace(recvBuf []byte, _ netip.AddrPort) (payload []byte, destAddr conn.Addr, err error) {
+	return recvBuf, conn.Addr{}, nil
+}
+
+// AppendPack implements [PacketServerSession.AppendPack].
+func (PacketProxyServerConnectedSession) AppendPack(b, payload []byte, srcAddr conn.Addr) (sendBuf []byte, err error) {
+	return append(b, payload...), nil
+}
diff --git a/netio/udp.go b/netio/udp.go
@@ -0,0 +1,164 @@
+package netio
+
+import (
+	"context"
+	"net/netip"
+
+	"github.com/database64128/shadowsocks-go/cache"
+	"github.com/database64128/shadowsocks-go/conn"
+)
+
+// MaxUDPPayloadSizeForAddr calculates the maximum unfragmented UDP payload size for the given address
+// based on the MTU and address family.
+func MaxUDPPayloadSizeForAddr(mtu int, addr netip.Addr) int {
+	return MaxUDPPayloadSize(mtu, addr.Is4() || addr.Is4In6())
+}
+
+// MaxUDPPayloadSize calculates the maximum unfragmented UDP payload size for the MTU and address family.
+func MaxUDPPayloadSize(mtu int, is4 bool) int {
+	const (
+		IPv4HeaderLength = 20
+		IPv6HeaderLength = 40
+		UDPHeaderLength  = 8
+
+		// Next Header (1) + Hdr Ext Len (1) + Option Type (1) + Opt Data Len (1) + Jumbo Payload Length (u32be)
+		//
+		//  1. RFC 2675 - IPv6 Jumbograms
+		//  2. RFC 8200 - IPv6 Specification
+		JumboPayloadOptionLength = 1 + 1 + 1 + 1 + 4
+	)
+	if is4 {
+		return mtu - IPv4HeaderLength - UDPHeaderLength
+	}
+	if mtu > 65575 {
+		return mtu - IPv6HeaderLength - JumboPayloadOptionLength - UDPHeaderLength
+	}
+	return mtu - IPv6HeaderLength - UDPHeaderLength
+}
+
+// UDPClientConfig is the configuration for a UDP client.
+type UDPClientConfig struct {
+	// Name is the name of the client.
+	Name string
+
+	// Network controls the address family when resolving domain name destination addresses.
+	//
+	//  - "ip": System default, likely dual-stack.
+	//  - "ip4": Resolve to IPv4 addresses.
+	//  - "ip6": Resolve to IPv6 addresses.
+	Network string
+
+	// MTU is the MTU of the client's designated network path.
+	// It serves as a hint for calculating buffer sizes.
+	MTU int
+
+	// ListenConfig is the [conn.ListenConfig] for opening unconnected client sockets.
+	ListenConfig conn.ListenConfig
+
+	// Dialer is the [conn.Dialer] for opening connected client sockets.
+	Dialer conn.Dialer
+}
+
+// NewUDPClient returns a new UDP client.
+func (c *UDPClientConfig) NewUDPClient() *UDPClient {
+	is4 := c.Network == "ip" || c.Network == "ip4"
+	return &UDPClient{
+		name:          c.Name,
+		network:       c.Network,
+		maxPacketSize: MaxUDPPayloadSize(c.MTU, is4),
+		listenConfig:  c.ListenConfig,
+		dialer:        c.Dialer,
+	}
+}
+
+// UDPClient establishes UDP sessions to servers.
+//
+// UDPClient implements [PacketClient].
+type UDPClient struct {
+	name          string
+	network       string
+	maxPacketSize int
+	listenConfig  conn.ListenConfig
+	dialer        conn.Dialer
+}
+
+var _ PacketClient = (*UDPClient)(nil)
+
+// NewSession implements [PacketClient.NewSession].
+func (c *UDPClient) NewSession(ctx context.Context, connectAddr conn.Addr) (PacketClientSession, PacketClientSessionInfo, error) {
+	if connectAddr.IsValid() {
+		return UDPClientConnectedSession{}, PacketClientSessionInfo{
+			Name:          c.name,
+			MaxPacketSize: c.maxPacketSize,
+			Dialer:        c.dialer,
+			ConnectAddr:   connectAddr,
+		}, nil
+	}
+	return &UDPClientSession{network: c.network}, PacketClientSessionInfo{
+		Name:          c.name,
+		MaxPacketSize: c.maxPacketSize,
+		ListenConfig:  c.listenConfig,
+	}, nil
+}
+
+// UDPClientSession passes UDP packets unmodified.
+//
+// UDPClientSession implements [PacketClientSession].
+type UDPClientSession struct {
+	ipByDomain *cache.BoundedCache[string, netip.Addr]
+	network    string
+}
+
+// AppendPack implements [PacketClientSession.AppendPack].
+func (s *UDPClientSession) AppendPack(ctx context.Context, b, payload []byte, destAddr conn.Addr) (sendBuf []byte, sendAddrPort netip.AddrPort, err error) {
+	if destAddr.IsIP() {
+		sendAddrPort = destAddr.IPPort()
+	} else {
+		if s.ipByDomain == nil {
+			// Initialize the cache with a reasonable size.
+			const domainCacheSize = 32
+			s.ipByDomain = cache.NewBoundedCache[string, netip.Addr](domainCacheSize)
+		}
+		domain := destAddr.Domain()
+		ip, ok := s.ipByDomain.Get(domain)
+		if !ok {
+			ip, err = destAddr.ResolveIP(ctx, s.network)
+			if err != nil {
+				return nil, netip.AddrPort{}, err
+			}
+			s.ipByDomain.InsertUnchecked(domain, ip)
+		}
+		sendAddrPort = netip.AddrPortFrom(ip, destAddr.Port())
+	}
+	return append(b, payload...), sendAddrPort, nil
+}
+
+// UnpackInPlace implements [PacketClientSession.UnpackInPlace].
+func (*UDPClientSession) UnpackInPlace(recvBuf []byte, recvAddrPort netip.AddrPort) (payload []byte, srcAddr conn.Addr, err error) {
+	return recvBuf, conn.AddrFromIPPort(recvAddrPort), nil
+}
+
+// Close implements [PacketClientSession.Close].
+func (*UDPClientSession) Close() error {
+	return nil
+}
+
+// UDPClientConnectedSession is like [UDPClientSession] but for "connected" sessions.
+//
+// UDPClientConnectedSession implements [PacketClientSession].
+type UDPClientConnectedSession struct{}
+
+// AppendPack implements [PacketClientSession.AppendPack].
+func (UDPClientConnectedSession) AppendPack(_ context.Context, b, payload []byte, _ conn.Addr) (sendBuf []byte, sendAddrPort netip.AddrPort, err error) {
+	return append(b, payload...), netip.AddrPort{}, nil
+}
+
+// UnpackInPlace implements [PacketClientSession.UnpackInPlace].
+func (UDPClientConnectedSession) UnpackInPlace(recvBuf []byte, _ netip.AddrPort) (payload []byte, srcAddr conn.Addr, err error) {
+	return recvBuf, conn.Addr{}, nil
+}
+
+// Close implements [PacketClientSession.Close].
+func (UDPClientConnectedSession) Close() error {
+	return nil
+}
