mirror of
https://github.com/safing/portmaster
synced 2025-09-01 10:09:11 +00:00
102 lines
2.5 KiB
Go
102 lines
2.5 KiB
Go
package state
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/safing/portmaster/network/packet"
|
|
"github.com/safing/portmaster/network/socket"
|
|
)
|
|
|
|
const (
|
|
// UDPConnectionTTL defines the duration after which unseen UDP connections are regarded as ended.
|
|
UDPConnectionTTL = 10 * time.Minute
|
|
)
|
|
|
|
// Exists checks if the given connection is present in the system state tables.
|
|
func Exists(pktInfo *packet.Info, now time.Time) (exists bool) {
|
|
// TODO: create lookup maps before running a flurry of Exists() checks.
|
|
|
|
switch {
|
|
case pktInfo.Version == packet.IPv4 && pktInfo.Protocol == packet.TCP:
|
|
return tcp4Table.exists(pktInfo)
|
|
|
|
case pktInfo.Version == packet.IPv6 && pktInfo.Protocol == packet.TCP:
|
|
return tcp6Table.exists(pktInfo)
|
|
|
|
case pktInfo.Version == packet.IPv4 && pktInfo.Protocol == packet.UDP:
|
|
return udp4Table.exists(pktInfo, now)
|
|
|
|
case pktInfo.Version == packet.IPv6 && pktInfo.Protocol == packet.UDP:
|
|
return udp6Table.exists(pktInfo, now)
|
|
|
|
default:
|
|
return false
|
|
}
|
|
}
|
|
|
|
func (table *tcpTable) exists(pktInfo *packet.Info) (exists bool) {
|
|
// Update tables if older than the connection that is checked.
|
|
if table.lastUpdateAt.Load() < pktInfo.SeenAt.UnixNano() {
|
|
table.updateTables()
|
|
}
|
|
|
|
table.lock.RLock()
|
|
defer table.lock.RUnlock()
|
|
|
|
localIP := pktInfo.LocalIP()
|
|
localPort := pktInfo.LocalPort()
|
|
remoteIP := pktInfo.RemoteIP()
|
|
remotePort := pktInfo.RemotePort()
|
|
|
|
// search connections
|
|
for _, socketInfo := range table.connections {
|
|
if localPort == socketInfo.Local.Port &&
|
|
remotePort == socketInfo.Remote.Port &&
|
|
remoteIP.Equal(socketInfo.Remote.IP) &&
|
|
localIP.Equal(socketInfo.Local.IP) {
|
|
return true
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|
|
|
|
func (table *udpTable) exists(pktInfo *packet.Info, now time.Time) (exists bool) {
|
|
// Update tables if older than the connection that is checked.
|
|
if table.lastUpdateAt.Load() < pktInfo.SeenAt.UnixNano() {
|
|
table.updateTables()
|
|
}
|
|
|
|
table.lock.RLock()
|
|
defer table.lock.RUnlock()
|
|
|
|
localIP := pktInfo.LocalIP()
|
|
localPort := pktInfo.LocalPort()
|
|
remoteIP := pktInfo.RemoteIP()
|
|
remotePort := pktInfo.RemotePort()
|
|
|
|
connThreshhold := now.Add(-UDPConnectionTTL)
|
|
|
|
// search binds
|
|
for _, socketInfo := range table.binds {
|
|
if localPort == socketInfo.Local.Port &&
|
|
(socketInfo.Local.IP[0] == 0 || localIP.Equal(socketInfo.Local.IP)) {
|
|
|
|
udpConnState, ok := table.getConnState(socketInfo, socket.Address{
|
|
IP: remoteIP,
|
|
Port: remotePort,
|
|
})
|
|
switch {
|
|
case !ok:
|
|
return false
|
|
case udpConnState.lastSeen.After(connThreshhold):
|
|
return true
|
|
default:
|
|
return false
|
|
}
|
|
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|