package wireguard import ( "context" "errors" "net" "net/netip" "os" "sync" "github.com/sagernet/sing-box/adapter" "github.com/sagernet/sing-box/common/dialer" "github.com/sagernet/sing-box/option" "github.com/sagernet/sing-tun" "github.com/sagernet/sing/common" E "github.com/sagernet/sing/common/exceptions" M "github.com/sagernet/sing/common/metadata" N "github.com/sagernet/sing/common/network" wgTun "github.com/sagernet/wireguard-go/tun" ) var _ Device = (*SystemDevice)(nil) type SystemDevice struct { dialer N.Dialer device tun.Tun batchDevice tun.LinuxTUN name string mtu uint32 inet4Addresses []netip.Prefix inet6Addresses []netip.Prefix gso bool events chan wgTun.Event closeOnce sync.Once } func NewSystemDevice(networkManager adapter.NetworkManager, interfaceName string, localPrefixes []netip.Prefix, mtu uint32, gso bool) (*SystemDevice, error) { var inet4Addresses []netip.Prefix var inet6Addresses []netip.Prefix for _, prefixes := range localPrefixes { if prefixes.Addr().Is4() { inet4Addresses = append(inet4Addresses, prefixes) } else { inet6Addresses = append(inet6Addresses, prefixes) } } if interfaceName == "" { interfaceName = tun.CalculateInterfaceName("wg") } return &SystemDevice{ dialer: common.Must1(dialer.NewDefault(networkManager, option.DialerOptions{ BindInterface: interfaceName, })), name: interfaceName, mtu: mtu, inet4Addresses: inet4Addresses, inet6Addresses: inet6Addresses, gso: gso, events: make(chan wgTun.Event, 1), }, nil } func (w *SystemDevice) DialContext(ctx context.Context, network string, destination M.Socksaddr) (net.Conn, error) { return w.dialer.DialContext(ctx, network, destination) } func (w *SystemDevice) ListenPacket(ctx context.Context, destination M.Socksaddr) (net.PacketConn, error) { return w.dialer.ListenPacket(ctx, destination) } func (w *SystemDevice) Inet4Address() netip.Addr { if len(w.inet4Addresses) == 0 { return netip.Addr{} } return w.inet4Addresses[0].Addr() } func (w *SystemDevice) Inet6Address() netip.Addr { if len(w.inet6Addresses) == 0 { return netip.Addr{} } return w.inet6Addresses[0].Addr() } func (w *SystemDevice) Start() error { tunInterface, err := tun.New(tun.Options{ Name: w.name, Inet4Address: w.inet4Addresses, Inet6Address: w.inet6Addresses, MTU: w.mtu, GSO: w.gso, }) if err != nil { return err } w.device = tunInterface if w.gso { batchTUN, isBatchTUN := tunInterface.(tun.LinuxTUN) if !isBatchTUN { tunInterface.Close() return E.New("GSO is not supported on current platform") } w.batchDevice = batchTUN } w.events <- wgTun.EventUp return nil } func (w *SystemDevice) File() *os.File { return nil } func (w *SystemDevice) Read(bufs [][]byte, sizes []int, offset int) (count int, err error) { if w.batchDevice != nil { count, err = w.batchDevice.BatchRead(bufs, offset, sizes) } else { sizes[0], err = w.device.Read(bufs[0][offset:]) if err == nil { count = 1 } else if errors.Is(err, tun.ErrTooManySegments) { err = wgTun.ErrTooManySegments } } return } func (w *SystemDevice) Write(bufs [][]byte, offset int) (count int, err error) { if w.batchDevice != nil { return 0, w.batchDevice.BatchWrite(bufs, offset) } else { for _, b := range bufs { _, err = w.device.Write(b[offset:]) if err != nil { return } } } // WireGuard will not read count return } func (w *SystemDevice) Flush() error { return nil } func (w *SystemDevice) MTU() (int, error) { return int(w.mtu), nil } func (w *SystemDevice) Name() (string, error) { return w.name, nil } func (w *SystemDevice) Events() <-chan wgTun.Event { return w.events } func (w *SystemDevice) Close() error { close(w.events) return w.device.Close() } func (w *SystemDevice) BatchSize() int { if w.batchDevice != nil { return w.batchDevice.BatchSize() } return 1 }