tailscale/net/netmon/interfaces_darwin_test.go

// Copyright (c) Tailscale Inc & AUTHORS
// SPDX-License-Identifier: BSD-3-Clause

package netmon

import (
	"errors"
	"io"
	"net/netip"
	"os/exec"
	"testing"

	"go4.org/mem"
	"tailscale.com/util/lineread"
	"tailscale.com/version"
)

func TestLikelyHomeRouterIPSyscallExec(t *testing.T) {
	syscallIP, _, syscallOK := likelyHomeRouterIPBSDFetchRIB()
	netstatIP, netstatIf, netstatOK := likelyHomeRouterIPDarwinExec()

	if syscallOK != netstatOK || syscallIP != netstatIP {
		t.Errorf("syscall() = %v, %v, netstat = %v, %v",
			syscallIP, syscallOK,
			netstatIP, netstatOK,
		)
	}

	if !syscallOK {
		return
	}

	def, err := defaultRoute()
	if err != nil {
		t.Errorf("defaultRoute() error: %v", err)
	}

	if def.InterfaceName != netstatIf {
		t.Errorf("syscall default route interface %s differs from netstat %s", def.InterfaceName, netstatIf)
	}
}

/*
Parse out 10.0.0.1 and en0 from:

$ netstat -r -n -f inet
Routing tables

Internet:
Destination        Gateway            Flags        Netif Expire
default            10.0.0.1           UGSc           en0
default            link#14            UCSI         utun2
10/16              link#4             UCS            en0      !
10.0.0.1/32        link#4             UCS            en0      !
...
*/
func likelyHomeRouterIPDarwinExec() (ret netip.Addr, netif string, ok bool) {
	if version.IsMobile() {
		// Don't try to do subprocesses on iOS. Ends up with log spam like:
		// kernel: "Sandbox: IPNExtension(86580) deny(1) process-fork"
		// This is why we have likelyHomeRouterIPDarwinSyscall.
		return ret, "", false
	}
	cmd := exec.Command("/usr/sbin/netstat", "-r", "-n", "-f", "inet")
	stdout, err := cmd.StdoutPipe()
	if err != nil {
		return
	}
	if err := cmd.Start(); err != nil {
		return
	}
	defer cmd.Wait()
	defer io.Copy(io.Discard, stdout) // clear the pipe to prevent hangs

	var f []mem.RO
	lineread.Reader(stdout, func(lineb []byte) error {
		line := mem.B(lineb)
		if !mem.Contains(line, mem.S("default")) {
			return nil
		}
		f = mem.AppendFields(f[:0], line)
		if len(f) < 4 || !f[0].EqualString("default") {
			return nil
		}
		ipm, flagsm, netifm := f[1], f[2], f[3]
		if !mem.Contains(flagsm, mem.S("G")) {
			return nil
		}
		if mem.Contains(flagsm, mem.S("I")) {
			return nil
		}
		ip, err := netip.ParseAddr(string(mem.Append(nil, ipm)))
		if err == nil && ip.IsPrivate() {
			ret = ip
			netif = netifm.StringCopy()
			// We've found what we're looking for.
			return errStopReadingNetstatTable
		}
		return nil
	})
	return ret, netif, ret.IsValid()
}

func TestFetchRoutingTable(t *testing.T) {
	// Issue 1345: this used to be flaky on darwin.
	for range 20 {
		_, err := fetchRoutingTable()
		if err != nil {
			t.Fatal(err)
		}
	}
}

var errStopReadingNetstatTable = errors.New("found private gateway")
all: update copyright and license headers This updates all source files to use a new standard header for copyright and license declaration. Notably, copyright no longer includes a date, and we now use the standard SPDX-License-Identifier header. This commit was done almost entirely mechanically with perl, and then some minimal manual fixes. Updates #6865 Signed-off-by: Will Norris <will@tailscale.com> 2 years ago			`// Copyright (c) Tailscale Inc & AUTHORS`
			`// SPDX-License-Identifier: BSD-3-Clause`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago
net/{interfaces,netmon}, all: merge net/interfaces package into net/netmon In prep for most of the package funcs in net/interfaces to become methods in a long-lived netmon.Monitor that can cache things. (Many of the funcs are very heavy to call regularly, whereas the long-lived netmon.Monitor can subscribe to things from the OS and remember answers to questions it's asked regularly later) Updates tailscale/corp#10910 Updates tailscale/corp#18960 Updates #7967 Updates #3299 Change-Id: Ie4e8dedb70136af2d611b990b865a822cd1797e5 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 6 months ago			`package netmon`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago
			`import (`
			`"errors"`
net/interfaces: fix test hang on Darwin This test could hang because the subprocess was blocked on writing to the stdout pipe if we find the address we're looking for early in the output. Updates #cleanup Signed-off-by: Andrew Dunham <andrew@du.nham.ca> Change-Id: I68d82c22a5d782098187ae6d8577e43063b72573 8 months ago			`"io"`
all: use various net/netip parse funcs directly Mechanical change with perl+goimports. Changed {Must,}Parse{IP,IPPrefix,IPPort} to their netip variants, then goimports -d . Finally, removed the net/netaddr wrappers, to prevent future use. Updates #5162 Change-Id: I59c0e38b5fbca5a935d701645789cddf3d7863ad Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 2 years ago			`"net/netip"`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`"os/exec"`
			`"testing"`

			`"go4.org/mem"`
			`"tailscale.com/util/lineread"`
			`"tailscale.com/version"`
			`)`

			`func TestLikelyHomeRouterIPSyscallExec(t *testing.T) {`
net/interfaces: better handle multiple interfaces in LikelyHomeRouterIP Currently, we get the "likely home router" gateway IP and then iterate through all IPs for all interfaces trying to match IPs to determine the source IP. However, on many platforms we know what interface the gateway is through, and thus we don't need to iterate through all interfaces checking IPs. Instead, use the IP address of the associated interface. This better handles the case where we have multiple interfaces on a system all connected to the same gateway, and where the first interface that we visit (as iterated by ForeachInterfaceAddress) isn't also the default internet route. Updates #8992 Signed-off-by: Andrew Dunham <andrew@du.nham.ca> Change-Id: I8632f577f1136930f4ec60c76376527a19a47d1f 11 months ago			`syscallIP, _, syscallOK := likelyHomeRouterIPBSDFetchRIB()`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`netstatIP, netstatIf, netstatOK := likelyHomeRouterIPDarwinExec()`

net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`if syscallOK != netstatOK \|\| syscallIP != netstatIP {`
			`t.Errorf("syscall() = %v, %v, netstat = %v, %v",`
			`syscallIP, syscallOK,`
			`netstatIP, netstatOK,`
			`)`
			`}`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago
			`if !syscallOK {`
			`return`
			`}`

			`def, err := defaultRoute()`
			`if err != nil {`
			`t.Errorf("defaultRoute() error: %v", err)`
			`}`

			`if def.InterfaceName != netstatIf {`
			`t.Errorf("syscall default route interface %s differs from netstat %s", def.InterfaceName, netstatIf)`
			`}`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`}`

			`/*`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`Parse out 10.0.0.1 and en0 from:`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago
			`$ netstat -r -n -f inet`
			`Routing tables`

			`Internet:`
			`Destination Gateway Flags Netif Expire`
			`default 10.0.0.1 UGSc en0`
			`default link#14 UCSI utun2`
			`10/16 link#4 UCS en0 !`
			`10.0.0.1/32 link#4 UCS en0 !`
			`...`
			`*/`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`func likelyHomeRouterIPDarwinExec() (ret netip.Addr, netif string, ok bool) {`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`if version.IsMobile() {`
			`// Don't try to do subprocesses on iOS. Ends up with log spam like:`
			`// kernel: "Sandbox: IPNExtension(86580) deny(1) process-fork"`
			`// This is why we have likelyHomeRouterIPDarwinSyscall.`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`return ret, "", false`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`}`
			`cmd := exec.Command("/usr/sbin/netstat", "-r", "-n", "-f", "inet")`
			`stdout, err := cmd.StdoutPipe()`
			`if err != nil {`
			`return`
			`}`
			`if err := cmd.Start(); err != nil {`
			`return`
			`}`
			`defer cmd.Wait()`
net/interfaces: fix test hang on Darwin This test could hang because the subprocess was blocked on writing to the stdout pipe if we find the address we're looking for early in the output. Updates #cleanup Signed-off-by: Andrew Dunham <andrew@du.nham.ca> Change-Id: I68d82c22a5d782098187ae6d8577e43063b72573 8 months ago			`defer io.Copy(io.Discard, stdout) // clear the pipe to prevent hangs`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago
			`var f []mem.RO`
			`lineread.Reader(stdout, func(lineb []byte) error {`
			`line := mem.B(lineb)`
			`if !mem.Contains(line, mem.S("default")) {`
			`return nil`
			`}`
			`f = mem.AppendFields(f[:0], line)`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`if len(f) < 4 \|\| !f[0].EqualString("default") {`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`return nil`
			`}`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`ipm, flagsm, netifm := f[1], f[2], f[3]`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`if !mem.Contains(flagsm, mem.S("G")) {`
			`return nil`
			`}`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`if mem.Contains(flagsm, mem.S("I")) {`
			`return nil`
			`}`
all: use various net/netip parse funcs directly Mechanical change with perl+goimports. Changed {Must,}Parse{IP,IPPrefix,IPPort} to their netip variants, then goimports -d . Finally, removed the net/netaddr wrappers, to prevent future use. Updates #5162 Change-Id: I59c0e38b5fbca5a935d701645789cddf3d7863ad Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 2 years ago			`ip, err := netip.ParseAddr(string(mem.Append(nil, ipm)))`
net/{dnscache,interfaces}: use netaddr.IP.IsPrivate, delete copied code Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 3 years ago			`if err == nil && ip.IsPrivate() {`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`ret = ip`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`netif = netifm.StringCopy()`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`// We've found what we're looking for.`
			`return errStopReadingNetstatTable`
			`}`
			`return nil`
			`})`
net/interfaces: improve default route detection Instead of treating any interface with a non-ifscope route as a potential default gateway, now verify that a given route is actually a default route (0.0.0.0/0 or ::/0). Fixes #5879 Signed-off-by: Anton Tolchanov <anton@tailscale.com> 2 years ago			`return ret, netif, ret.IsValid()`
net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`}`

net/interfaces: work around race fetching routing table Fixes #1345 Updates golang/go#45736 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`func TestFetchRoutingTable(t *testing.T) {`
			`// Issue 1345: this used to be flaky on darwin.`
all: use Go 1.22 range-over-int Updates #11058 Change-Id: I35e7ef9b90e83cac04ca93fd964ad00ed5b48430 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 7 months ago			`for range 20 {`
net/interfaces: work around race fetching routing table Fixes #1345 Updates golang/go#45736 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`_, err := fetchRoutingTable()`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`}`
			`}`

net/interfaces: rewrite the darwin likelyHomeRouterIP from C to Go We basically already had the RIB-parsing Go code for this in both net/interfaces and wgengine/monitor, for other reasons. Fixes #1426 Fixes #1471 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com> 4 years ago			`var errStopReadingNetstatTable = errors.New("found private gateway")`