MagiTrickle/group.go

package main

import (
	"fmt"
	"net"
	"time"

	"kvas2-go/models"
	"kvas2-go/netfilter-helper"

	"github.com/coreos/go-iptables/iptables"
)

type Group struct {
	*models.Group

	Enabled bool

	iptables        *iptables.IPTables
	ipset           *netfilterHelper.IPSet
	ifaceToIPSetNAT *netfilterHelper.IfaceToIPSet
}

func (g *Group) AddIPv4(address net.IP, ttl time.Duration) error {
	ttlSeconds := uint32(ttl.Seconds())
	return g.ipset.AddIP(address, &ttlSeconds)
}

func (g *Group) DelIPv4(address net.IP) error {
	return g.ipset.Del(address)
}

func (g *Group) ListIPv4() (map[string]*uint32, error) {
	return g.ipset.List()
}

func (g *Group) Enable() error {
	if g.Enabled {
		return nil
	}
	defer func() {
		if !g.Enabled {
			_ = g.Disable()
		}
	}()

	if g.FixProtect {
		err := g.iptables.AppendUnique("filter", "_NDM_SL_FORWARD", "-o", g.Interface, "-m", "state", "--state", "NEW", "-j", "_NDM_SL_PROTECT")
		if err != nil {
			return fmt.Errorf("failed to fix protect: %w", err)
		}
	}

	err := g.ifaceToIPSetNAT.Enable()
	if err != nil {
		return err
	}

	g.Enabled = true

	return nil
}

func (g *Group) Disable() []error {
	var errs []error

	if !g.Enabled {
		return nil
	}

	err := g.ifaceToIPSetNAT.Disable()
	if err != nil {
		errs = append(errs, err...)
	}

	g.Enabled = false

	return errs
}
add group fwmark and table using 2024-08-27 03:07:58 +03:00			`package main`

separate kvas2 with group 2024-08-30 04:30:33 +03:00			`import (`
refactoring, dns over tcp support, moving to uuid 2025-02-08 06:23:36 +03:00			`"fmt"`
put ip to ipset 2024-08-30 05:27:52 +03:00			`"net"`
			`"time"`
separate kvas2 with group 2024-08-30 04:30:33 +03:00
			`"kvas2-go/models"`
support for custom interfaces on Keenetic 2024-09-06 17:06:17 +03:00			`"kvas2-go/netfilter-helper"`

			`"github.com/coreos/go-iptables/iptables"`
separate kvas2 with group 2024-08-30 04:30:33 +03:00			`)`
add group fwmark and table using 2024-08-27 03:07:58 +03:00
			`type Group struct {`
			`*models.Group`
refactoring 2024-09-06 14:24:55 +03:00
			`Enabled bool`

refactoring, dns over tcp support, moving to uuid 2025-02-08 06:23:36 +03:00			`iptables *iptables.IPTables`
			`ipset *netfilterHelper.IPSet`
			`ifaceToIPSetNAT *netfilterHelper.IfaceToIPSet`
add group fwmark and table using 2024-08-27 03:07:58 +03:00			`}`
separate kvas2 with group 2024-08-30 04:30:33 +03:00
refactoring ipset 2024-09-14 18:20:44 +03:00			`func (g *Group) AddIPv4(address net.IP, ttl time.Duration) error {`
			`ttlSeconds := uint32(ttl.Seconds())`
change ipset type to hash:net 2024-10-21 00:18:42 +03:00			`return g.ipset.AddIP(address, &ttlSeconds)`
refactoring ipset 2024-09-14 18:20:44 +03:00			`}`
put ip to ipset 2024-08-30 05:27:52 +03:00
refactoring ipset 2024-09-14 18:20:44 +03:00			`func (g *Group) DelIPv4(address net.IP) error {`
			`return g.ipset.Del(address)`
			`}`

			`func (g Group) ListIPv4() (map[string]uint32, error) {`
			`return g.ipset.List()`
put ip to ipset 2024-08-30 05:27:52 +03:00			`}`

refactoring 2024-09-06 14:24:55 +03:00			`func (g *Group) Enable() error {`
			`if g.Enabled {`
separate kvas2 with group 2024-08-30 04:30:33 +03:00			`return nil`
			`}`
refactoring 2024-09-06 14:24:55 +03:00			`defer func() {`
			`if !g.Enabled {`
			`_ = g.Disable()`
merging some code 2024-09-05 03:53:10 +03:00			`}`
refactoring 2024-09-06 14:24:55 +03:00			`}()`
merging some code 2024-09-05 03:53:10 +03:00
support for custom interfaces on Keenetic 2024-09-06 17:06:17 +03:00			`if g.FixProtect {`
refactoring, dns over tcp support, moving to uuid 2025-02-08 06:23:36 +03:00			`err := g.iptables.AppendUnique("filter", "_NDM_SL_FORWARD", "-o", g.Interface, "-m", "state", "--state", "NEW", "-j", "_NDM_SL_PROTECT")`
			`if err != nil {`
			`return fmt.Errorf("failed to fix protect: %w", err)`
			`}`
support for custom interfaces on Keenetic 2024-09-06 17:06:17 +03:00			`}`

refactoring, dns over tcp support, moving to uuid 2025-02-08 06:23:36 +03:00			`err := g.ifaceToIPSetNAT.Enable()`
route adding 2024-09-04 10:59:52 +03:00			`if err != nil {`
refactoring 2024-09-06 14:24:55 +03:00			`return err`
route adding 2024-09-04 10:59:52 +03:00			`}`

refactoring 2024-09-06 14:24:55 +03:00			`g.Enabled = true`
route adding 2024-09-04 10:59:52 +03:00
refactoring 2024-09-06 14:24:55 +03:00			`return nil`
			`}`
iptables rules to ipset 2024-09-05 05:42:10 +03:00
refactoring 2024-09-06 14:24:55 +03:00			`func (g *Group) Disable() []error {`
			`var errs []error`
hardware acceleration 2024-09-05 06:21:26 +03:00
refactoring 2024-09-06 14:24:55 +03:00			`if !g.Enabled {`
			`return nil`
iptables rules to ipset 2024-09-05 05:42:10 +03:00			`}`

refactoring, dns over tcp support, moving to uuid 2025-02-08 06:23:36 +03:00			`err := g.ifaceToIPSetNAT.Disable()`
			`if err != nil {`
			`errs = append(errs, err...)`
iptables rules to ipset 2024-09-05 05:42:10 +03:00			`}`

refactoring 2024-09-06 14:24:55 +03:00			`g.Enabled = false`
separate kvas2 with group 2024-08-30 04:30:33 +03:00
small refactoring 2024-09-06 14:52:42 +03:00			`return errs`
separate kvas2 with group 2024-08-30 04:30:33 +03:00			`}`