6.32 By EbraSha

Improving UDP traffic forwarding performance

Author: ebrasha

Core/go.mod

@@ -3,11 +3,16 @@ module Abdal_4iProto_Client
 go 1.24
 
 require (
-	github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 // indirect
+	github.com/charmbracelet/bubbletea v1.3.5
+	github.com/charmbracelet/lipgloss v1.1.0
+	github.com/google/gopacket v1.1.19
+	golang.org/x/crypto v0.39.0
+	golang.org/x/net v0.21.0
+)
+
+require (
 	github.com/aymanbagabas/go-osc52/v2 v2.0.1 // indirect
-	github.com/charmbracelet/bubbletea v1.3.5 // indirect
 	github.com/charmbracelet/colorprofile v0.2.3-0.20250311203215-f60798e515dc // indirect
-	github.com/charmbracelet/lipgloss v1.1.0 // indirect
 	github.com/charmbracelet/x/ansi v0.8.0 // indirect
 	github.com/charmbracelet/x/cellbuf v0.0.13-0.20250311204145-2c3ea96c31dd // indirect
 	github.com/charmbracelet/x/term v0.2.1 // indirect
@@ -21,8 +26,6 @@ require (
 	github.com/muesli/termenv v0.16.0 // indirect
 	github.com/rivo/uniseg v0.4.7 // indirect
 	github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e // indirect
-	golang.org/x/crypto v0.39.0 // indirect
-	golang.org/x/net v0.21.0 // indirect
 	golang.org/x/sync v0.15.0 // indirect
 	golang.org/x/sys v0.33.0 // indirect
 	golang.org/x/text v0.26.0 // indirect

Core/go.sum

@@ -1,5 +1,3 @@
-github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 h1:0CwZNZbxp69SHPdPJAN/hZIm0C4OItdklCFmMRWYpio=
-github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/aymanbagabas/go-osc52/v2 v2.0.1 h1:HwpRHbFMcZLEVr42D4p7XBqjyuxQH5SMiErDT4WkJ2k=
 github.com/aymanbagabas/go-osc52/v2 v2.0.1/go.mod h1:uYgXzlJ7ZpABp8OJ+exZzJJhRNQ2ASbcXHWsFqH8hp8=
 github.com/charmbracelet/bubbletea v1.3.5 h1:JAMNLTbqMOhSwoELIr0qyP4VidFq72/6E9j7HHmRKQc=
@@ -16,6 +14,8 @@ github.com/charmbracelet/x/term v0.2.1 h1:AQeHeLZ1OqSXhrAWpYUtZyX1T3zVxfpZuEQMIQ
 github.com/charmbracelet/x/term v0.2.1/go.mod h1:oQ4enTYFV7QN4m0i9mzHrViD7TQKvNEEkHUMCmsxdUg=
 github.com/erikgeiser/coninput v0.0.0-20211004153227-1c3628e74d0f h1:Y/CXytFA4m6baUTXGLOoWe4PQhGxaX0KpnayAqC48p4=
 github.com/erikgeiser/coninput v0.0.0-20211004153227-1c3628e74d0f/go.mod h1:vw97MGsxSvLiUE2X8qFplwetxpGLQrlU1Q9AUEIzCaM=
+github.com/google/gopacket v1.1.19 h1:ves8RnFZPGiFnTS0uPQStjwru6uO6h+nlr9j6fL7kF8=
+github.com/google/gopacket v1.1.19/go.mod h1:iJ8V8n6KS+z2U1A8pUwu8bW5SyEMkXJB8Yo/Vo+TKTo=
 github.com/lucasb-eyer/go-colorful v1.2.0 h1:1nnpGOrhyZZuNyfu1QjKiUICQ74+3FNCN69Aj6K7nkY=
 github.com/lucasb-eyer/go-colorful v1.2.0/go.mod h1:R4dSotOR9KMtayYi1e77YzuveK+i7ruzyGqttikkLy0=
 github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
@@ -35,15 +35,31 @@ github.com/rivo/uniseg v0.4.7 h1:WUdvkW8uEhrYfLC4ZzdpI2ztxP1I582+49Oc5Mq64VQ=
 github.com/rivo/uniseg v0.4.7/go.mod h1:FN3SvrM+Zdj16jyLfmOkMNblXMcoc8DfTHruCPUcx88=
 github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e h1:JVG44RsyaB9T2KIHavMF/ppJZNG9ZpyihvCd0w101no=
 github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e/go.mod h1:RbqR21r5mrJuqunuUZ/Dhy/avygyECGrLceyNeo4LiM=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.39.0 h1:SHs+kF4LP+f+p14esP5jAoDpHU8Gu/v9lFRK6IT5imM=
 golang.org/x/crypto v0.39.0/go.mod h1:L+Xg3Wf6HoL4Bn4238Z6ft6KfEpN0tJGo53AAPC632U=
+golang.org/x/exp v0.0.0-20220909182711-5c715a9e8561 h1:MDc5xs78ZrZr3HMQugiXOAkSZtfTpbJLDr/lwfgO53E=
+golang.org/x/exp v0.0.0-20220909182711-5c715a9e8561/go.mod h1:cyybsKvd6eL0RnXn6p/Grxp8F5bW7iYuBgsNCOHpMYE=
+golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
+golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
 golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
+golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.15.0 h1:KWH3jNZsfyT6xfAfKiz6MRNmd46ByHDYaZ7KSkCtdW8=
 golang.org/x/sync v0.15.0/go.mod h1:1dzgHSNfp02xaA81J2MS99Qcpr2w7fw1gpm99rleRqA=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210809222454-d867a43fc93e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.33.0 h1:q3i8TbbEz+JRD9ywIRlyRAQbM0qF7hu24q3teo2hbuw=
 golang.org/x/sys v0.33.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=
+golang.org/x/term v0.32.0 h1:DR4lr0TjUs3epypdhTOkMmuF5CDFJ/8pOnbzMZPQ7bg=
+golang.org/x/term v0.32.0/go.mod h1:uZG1FhGx848Sqfsq4/DlJr3xGGsYMu/L5GW4abiaEPQ=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.26.0 h1:P42AVeLghgTYr4+xUnTRKDMqpar+PtX7KWuNQL21L8M=
 golang.org/x/text v0.26.0/go.mod h1:QK15LZJUUQVJxhz7wXgxSy/CJaTFjd0G+YLonydOVQA=
+golang.org/x/tools v0.0.0-20200130002326-2f3ba24bd6e7/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
+golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

Core/ip_defrag.go

@@ -0,0 +1,270 @@
+/*
+ **********************************************************************
+ * -------------------------------------------------------------------
+ * Project Name : Abdal 4iProto Client
+ * File Name    : ip_defrag.go
+ * Author       : Ebrahim Shafiei (EbraSha)
+ * Email        : Prof.Shafiei@Gmail.com
+ * Created On   : 2025-12-14 15:17:47
+ * Description  : IP packet defragmentation module using gopacket for handling fragmented UDP packets in SOCKS5 proxy
+ * -------------------------------------------------------------------
+ *
+ * "Coding is an engaging and beloved hobby for me. I passionately and insatiably pursue knowledge in cybersecurity and programming."
+ * – Ebrahim Shafiei
+ *
+ **********************************************************************
+ */
+
+package main
+
+import (
+	"fmt"
+	"net"
+	"os"
+	"runtime"
+	"sync"
+	"syscall"
+
+	"github.com/google/gopacket"
+	"github.com/google/gopacket/ip4defrag"
+	"github.com/google/gopacket/layers"
+	"golang.org/x/net/ipv4"
+)
+
+// IP_HDRINCL constant for Windows (value is 2)
+const IP_HDRINCL = 2
+
+// IPDefragmenter handles IP packet defragmentation for UDP packets
+type IPDefragmenter struct {
+	defragger *ip4defrag.IPv4Defragmenter
+	mu        sync.Mutex
+}
+
+// NewIPDefragmenter creates a new IP defragmenter instance
+func NewIPDefragmenter() *IPDefragmenter {
+	return &IPDefragmenter{
+		defragger: ip4defrag.NewIPv4Defragmenter(),
+	}
+}
+
+// DefragmentIPPacket processes an IP packet and returns the defragmented packet if complete
+func (d *IPDefragmenter) DefragmentIPPacket(ipPacket []byte) ([]byte, error) {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	// Parse the IP packet
+	packet := gopacket.NewPacket(ipPacket, layers.LayerTypeIPv4, gopacket.Default)
+	ipLayer := packet.Layer(layers.LayerTypeIPv4)
+	if ipLayer == nil {
+		return nil, fmt.Errorf("not an IPv4 packet")
+	}
+
+	ip, _ := ipLayer.(*layers.IPv4)
+
+	// Check if packet is fragmented
+	isFragmented := (ip.Flags&layers.IPv4MoreFragments != 0) || (ip.FragOffset > 0)
+	if !isFragmented {
+		// Not fragmented, return as is
+		return ipPacket, nil
+	}
+
+	// Defragment the packet
+	defragged, err := d.defragger.DefragIPv4(ip)
+	if err != nil {
+		return nil, fmt.Errorf("defragmentation error: %w", err)
+	}
+
+	if defragged == nil {
+		// Packet is still being assembled, return nil to indicate incomplete
+		return nil, nil
+	}
+
+	// Serialize the defragmented packet
+	buf := gopacket.NewSerializeBuffer()
+	opts := gopacket.SerializeOptions{
+		FixLengths:       true,
+		ComputeChecksums: true,
+	}
+	err = defragged.SerializeTo(buf, opts)
+	if err != nil {
+		return nil, fmt.Errorf("failed to serialize defragmented packet: %w", err)
+	}
+
+	return buf.Bytes(), nil
+}
+
+// UDPPacketReader reads UDP packets from a raw socket with IP defragmentation support
+type UDPPacketReader struct {
+	defragger    *IPDefragmenter
+	rawConn      *ipv4.PacketConn
+	udpConn      *net.UDPConn
+	useRaw       bool
+	localUDPPort int
+}
+
+// NewUDPPacketReader creates a new UDP packet reader with defragmentation support
+// Attempts to use raw socket for IP-level packet capture, falls back to regular UDP if unavailable
+// Note: Raw sockets require administrator privileges on Windows
+func NewUDPPacketReader(udpConn *net.UDPConn) (*UDPPacketReader, error) {
+	reader := &UDPPacketReader{
+		defragger:    NewIPDefragmenter(),
+		udpConn:      udpConn,
+		useRaw:       false,
+		localUDPPort: udpConn.LocalAddr().(*net.UDPAddr).Port,
+	}
+
+	// Try to create a raw socket for IP-level packet capture
+	// This requires administrator privileges on Windows
+	rawSocket, err := syscall.Socket(syscall.AF_INET, syscall.SOCK_RAW, syscall.IPPROTO_IP)
+	if err != nil {
+		// Raw socket not available (likely no admin privileges), fall back to regular UDP
+		// OS will handle defragmentation, but we can't intercept fragmented packets
+		return reader, nil
+	}
+
+	// Set socket options to receive IP headers
+	// Use platform-specific constant for IP_HDRINCL
+	var ipHdrIncl int
+	if runtime.GOOS == "windows" {
+		ipHdrIncl = IP_HDRINCL
+	} else {
+		// On Unix systems, try to use syscall.IP_HDRINCL if available
+		// If not available, we'll skip this option
+		ipHdrIncl = 1 // Try a generic value, may not work on all systems
+	}
+
+	err = syscall.SetsockoptInt(rawSocket, syscall.IPPROTO_IP, ipHdrIncl, 1)
+	if err != nil {
+		syscall.Close(rawSocket)
+		return reader, nil
+	}
+
+	// Create a file from the socket descriptor
+	file := os.NewFile(uintptr(rawSocket), "raw-socket")
+	if file == nil {
+		syscall.Close(rawSocket)
+		return reader, nil
+	}
+
+	// Create a packet connection from the file (not regular connection)
+	packetConn, err := net.FilePacketConn(file)
+	file.Close() // Close the file, we have the connection now
+	if err != nil {
+		syscall.Close(rawSocket)
+		return reader, nil
+	}
+
+	// Create ipv4.PacketConn from the packet connection
+	rawConn := ipv4.NewPacketConn(packetConn)
+	if rawConn == nil {
+		packetConn.Close()
+		return reader, nil
+	}
+
+	reader.rawConn = rawConn
+	reader.useRaw = true
+	return reader, nil
+}
+
+// ReadUDPPacket reads a complete UDP packet, handling fragmentation if needed
+func (r *UDPPacketReader) ReadUDPPacket() ([]byte, *net.UDPAddr, error) {
+	if r.useRaw && r.rawConn != nil {
+		// Use raw socket with defragmentation
+		buf := make([]byte, 65535)
+		for {
+			n, cm, src, err := r.rawConn.ReadFrom(buf)
+			if err != nil {
+				return nil, nil, err
+			}
+
+			// Extract source IP from control message or address
+			var srcIP net.IP
+			if cm != nil && cm.Src != nil {
+				// cm.Src is net.IP (which is []byte)
+				srcIP = cm.Src
+			} else if src != nil {
+				if ipAddr, ok := src.(*net.IPAddr); ok {
+					srcIP = ipAddr.IP
+				} else if udpAddr, ok := src.(*net.UDPAddr); ok {
+					srcIP = udpAddr.IP
+				}
+			}
+
+			// Parse IP packet
+			packet := gopacket.NewPacket(buf[:n], layers.LayerTypeIPv4, gopacket.Default)
+			ipLayer := packet.Layer(layers.LayerTypeIPv4)
+			if ipLayer == nil {
+				continue
+			}
+
+			ip, _ := ipLayer.(*layers.IPv4)
+
+			// Use source IP from packet if not available from control message
+			if srcIP == nil {
+				srcIP = ip.SrcIP
+			}
+
+			// Check if packet is fragmented
+			isFragmented := (ip.Flags&layers.IPv4MoreFragments != 0) || (ip.FragOffset > 0)
+			if isFragmented {
+				// Defragment the packet
+				defragged, err := r.defragger.DefragmentIPPacket(buf[:n])
+				if err != nil {
+					// Error during defragmentation, skip this packet
+					continue
+				}
+				if defragged == nil {
+					// Still assembling, skip this packet and wait for more fragments
+					continue
+				}
+
+				// Re-parse the defragmented packet
+				packet = gopacket.NewPacket(defragged, layers.LayerTypeIPv4, gopacket.Default)
+				ipLayer = packet.Layer(layers.LayerTypeIPv4)
+				if ipLayer == nil {
+					continue
+				}
+				ip, _ = ipLayer.(*layers.IPv4)
+			}
+
+			// Extract UDP layer
+			udpLayer := packet.Layer(layers.LayerTypeUDP)
+			if udpLayer == nil {
+				continue
+			}
+
+			udp, _ := udpLayer.(*layers.UDP)
+
+			// Check if this UDP packet is for our port
+			if int(udp.DstPort) != r.localUDPPort {
+				continue
+			}
+
+			// Extract source address
+			clientAddr := &net.UDPAddr{
+				IP:   srcIP,
+				Port: int(udp.SrcPort),
+			}
+
+			// Return the UDP payload (SOCKS5 packet)
+			return udp.Payload, clientAddr, nil
+		}
+	}
+
+	// Fall back to regular UDP socket reading
+	// The OS should handle defragmentation, but we'll use larger buffer
+	buf := make([]byte, 65535)
+	n, clientAddr, err := r.udpConn.ReadFromUDP(buf)
+	if err != nil {
+		return nil, nil, err
+	}
+	return buf[:n], clientAddr, nil
+}
+
+// Close closes the packet reader
+func (r *UDPPacketReader) Close() error {
+	if r.rawConn != nil {
+		r.rawConn.Close()
+	}
+	return nil
+}