-
Notifications
You must be signed in to change notification settings - Fork 0
/
ptun.go
118 lines (104 loc) · 2.39 KB
/
ptun.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
package tunkit
import (
"errors"
"io"
"log/slog"
"net"
"sync"
"github.com/charmbracelet/ssh"
gossh "golang.org/x/crypto/ssh"
)
type forwardedTCPPayload struct {
Addr string
Port uint32
OriginAddr string
OriginPort uint32
}
type LocalForwardFn = func(*ssh.Server, *gossh.ServerConn, gossh.NewChannel, ssh.Context)
type Tunnel interface {
CreateConn(ctx ssh.Context) (net.Conn, error)
GetLogger() *slog.Logger
Close(ctx ssh.Context) error
}
func WithTunnel(handler Tunnel) ssh.Option {
return func(serv *ssh.Server) error {
if serv.ChannelHandlers == nil {
serv.ChannelHandlers = map[string]ssh.ChannelHandler{
"session": ssh.DefaultSessionHandler,
}
}
serv.ChannelHandlers["direct-tcpip"] = localForwardHandler(handler)
return nil
}
}
func localForwardHandler(handler Tunnel) LocalForwardFn {
return func(srv *ssh.Server, conn *gossh.ServerConn, newChan gossh.NewChannel, ctx ssh.Context) {
check := &forwardedTCPPayload{}
err := gossh.Unmarshal(newChan.ExtraData(), check)
logger := handler.GetLogger()
if err != nil {
logger.Error(
"error unmarshaling information",
"err", err,
)
return
}
log := logger.With(
"addr", check.Addr,
"port", check.Port,
"origAddr", check.OriginAddr,
"origPort", check.OriginPort,
)
log.Info("local forward request")
ch, reqs, err := newChan.Accept()
if err != nil {
log.Error("cannot accept new channel", "err", err)
return
}
go gossh.DiscardRequests(reqs)
go func() {
downConn, err := handler.CreateConn(ctx)
if err != nil {
log.Error("unable to connect to conn", "err", err)
ch.Close()
return
}
defer downConn.Close()
var wg sync.WaitGroup
wg.Add(2)
go func() {
defer wg.Done()
defer func() {
_ = ch.CloseWrite()
}()
defer downConn.Close()
_, err := io.Copy(ch, downConn)
if err != nil {
if !errors.Is(err, net.ErrClosed) {
log.Error("io copy", "err", err)
}
}
}()
go func() {
defer wg.Done()
defer ch.Close()
defer downConn.Close()
_, err := io.Copy(downConn, ch)
if err != nil {
if !errors.Is(err, net.ErrClosed) {
log.Error("io copy", "err", err)
}
}
}()
wg.Wait()
}()
err = conn.Wait()
if err != nil {
log.Error("conn wait error", "err", err)
}
err = handler.Close(ctx)
if err != nil {
log.Error("tunnel handler error", "err", err)
}
}
}