mirror of
https://github.com/pion/ice.git
synced 2025-12-24 13:38:03 +08:00
0c736dbf4e
Replace range loop index access with direct value iteration to address G602 gosec warning in gatherCandidatesRelay.
1265 lines
35 KiB
Go
1265 lines
35 KiB
Go
// SPDX-FileCopyrightText: 2023 The Pion community <https://pion.ly>
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package ice
|
|
|
|
import (
|
|
"context"
|
|
"crypto/tls"
|
|
"fmt"
|
|
"io"
|
|
"net"
|
|
"net/netip"
|
|
"reflect"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/pion/dtls/v3"
|
|
"github.com/pion/ice/v4/internal/fakenet"
|
|
stunx "github.com/pion/ice/v4/internal/stun"
|
|
"github.com/pion/logging"
|
|
"github.com/pion/stun/v3"
|
|
"github.com/pion/transport/v3/stdnet"
|
|
"github.com/pion/turn/v4"
|
|
)
|
|
|
|
type turnClient interface {
|
|
Listen() error
|
|
Allocate() (net.PacketConn, error)
|
|
Close()
|
|
}
|
|
|
|
func defaultTurnClient(cfg *turn.ClientConfig) (turnClient, error) {
|
|
return turn.NewClient(cfg)
|
|
}
|
|
|
|
// Close a net.Conn and log if we have a failure.
|
|
func closeConnAndLog(c io.Closer, log logging.LeveledLogger, msg string, args ...any) {
|
|
if c == nil || (reflect.ValueOf(c).Kind() == reflect.Ptr && reflect.ValueOf(c).IsNil()) {
|
|
log.Warnf("Connection is not allocated: "+msg, args...)
|
|
|
|
return
|
|
}
|
|
|
|
log.Warnf(msg, args...)
|
|
if err := c.Close(); err != nil {
|
|
log.Warnf("Failed to close connection: %v", err)
|
|
}
|
|
}
|
|
|
|
// GatherCandidates initiates the trickle based gathering process.
|
|
func (a *Agent) GatherCandidates() error {
|
|
var gatherErr error
|
|
|
|
if runErr := a.loop.Run(a.loop, func(ctx context.Context) {
|
|
if a.gatheringState != GatheringStateNew {
|
|
gatherErr = ErrMultipleGatherAttempted
|
|
|
|
return
|
|
} else if a.onCandidateHdlr.Load() == nil {
|
|
gatherErr = ErrNoOnCandidateHandler
|
|
|
|
return
|
|
}
|
|
|
|
a.gatherCandidateCancel() // Cancel previous gathering routine
|
|
ctx, cancel := context.WithCancel(ctx)
|
|
a.gatherCandidateCancel = cancel
|
|
done := make(chan struct{})
|
|
a.gatherCandidateDone = done
|
|
|
|
go a.gatherCandidates(ctx, done)
|
|
}); runErr != nil {
|
|
return runErr
|
|
}
|
|
|
|
return gatherErr
|
|
}
|
|
|
|
func (a *Agent) gatherCandidates(ctx context.Context, done chan struct{}) { //nolint:cyclop
|
|
defer close(done)
|
|
if err := a.setGatheringState(GatheringStateGathering); err != nil { //nolint:contextcheck
|
|
a.log.Warnf("Failed to set gatheringState to GatheringStateGathering: %v", err)
|
|
|
|
return
|
|
}
|
|
|
|
a.gatherCandidatesInternal(ctx)
|
|
|
|
switch a.continualGatheringPolicy {
|
|
case GatherOnce:
|
|
if err := a.setGatheringState(GatheringStateComplete); err != nil { //nolint:contextcheck
|
|
a.log.Warnf("Failed to set gatheringState to GatheringStateComplete: %v", err)
|
|
}
|
|
case GatherContinually:
|
|
// Initialize known interfaces before starting monitoring
|
|
_, addrs, err := localInterfaces(
|
|
a.net,
|
|
a.interfaceFilter,
|
|
a.ipFilter,
|
|
a.networkTypes,
|
|
a.includeLoopback,
|
|
)
|
|
if err != nil {
|
|
a.log.Warnf("Failed to get initial interfaces for monitoring: %v", err)
|
|
} else {
|
|
for _, info := range addrs {
|
|
a.lastKnownInterfaces[info.addr.String()] = info.addr
|
|
}
|
|
a.log.Infof("Initialized network monitoring with %d IP addresses", len(addrs))
|
|
}
|
|
go a.startNetworkMonitoring(ctx)
|
|
}
|
|
}
|
|
|
|
func (a *Agent) shouldRewriteCandidateType(candidateType CandidateType) bool {
|
|
return a.addressRewriteMapper != nil && a.addressRewriteMapper.hasCandidateType(candidateType)
|
|
}
|
|
|
|
func (a *Agent) shouldRewriteHostCandidates() bool {
|
|
return a.mDNSMode != MulticastDNSModeQueryAndGather && a.shouldRewriteCandidateType(CandidateTypeHost)
|
|
}
|
|
|
|
func (a *Agent) applyHostAddressRewrite(addr netip.Addr, mappedAddrs []netip.Addr, iface string) ([]netip.Addr, bool) {
|
|
mappedIPs, matched, mode, innerErr := a.addressRewriteMapper.findExternalIPs(
|
|
CandidateTypeHost,
|
|
addr.String(),
|
|
iface,
|
|
)
|
|
if innerErr != nil {
|
|
a.log.Warnf("Address rewrite mapping is enabled but no external IP is found for %s", addr.String())
|
|
|
|
return mappedAddrs, true
|
|
}
|
|
if !matched {
|
|
return mappedAddrs, true
|
|
}
|
|
|
|
if mode == AddressRewriteReplace {
|
|
mappedAddrs = mappedAddrs[:0]
|
|
}
|
|
mappedAddrs = appendHostMappedAddrs(mappedAddrs, mappedIPs, addr, a.log)
|
|
if len(mappedAddrs) == 0 && mode == AddressRewriteReplace {
|
|
a.log.Warnf("Address rewrite mapping is enabled but produced no usable external IP for %s", addr.String())
|
|
|
|
return mappedAddrs, false
|
|
}
|
|
|
|
return mappedAddrs, true
|
|
}
|
|
|
|
func appendHostMappedAddrs(
|
|
mappedAddrs []netip.Addr,
|
|
mappedIPs []net.IP,
|
|
addr netip.Addr,
|
|
log logging.LeveledLogger,
|
|
) []netip.Addr {
|
|
for _, mappedIP := range mappedIPs {
|
|
conv, ok := netip.AddrFromSlice(mappedIP)
|
|
if !ok {
|
|
log.Warnf("failed to convert mapped external IP to netip.Addr'%s'", addr.String())
|
|
|
|
continue
|
|
}
|
|
// we'd rather have an IPv4-mapped IPv6 become IPv4 so that it is usable
|
|
mappedAddrs = append(mappedAddrs, conv.Unmap())
|
|
}
|
|
|
|
return mappedAddrs
|
|
}
|
|
|
|
func (a *Agent) applyHostRewriteForUDPMux(candidateIPs []net.IP, udpAddr *net.UDPAddr) ([]net.IP, bool) {
|
|
mappedIPs, matched, mode, err := a.addressRewriteMapper.findExternalIPs(CandidateTypeHost, udpAddr.IP.String(), "")
|
|
if err != nil {
|
|
a.log.Warnf("Address rewrite mapping is enabled but failed for %s: %v", udpAddr.IP.String(), err)
|
|
|
|
return candidateIPs, false
|
|
}
|
|
if !matched {
|
|
return candidateIPs, true
|
|
}
|
|
if len(mappedIPs) == 0 {
|
|
if mode == AddressRewriteReplace {
|
|
return candidateIPs, false
|
|
}
|
|
|
|
return candidateIPs, true
|
|
}
|
|
if mode == AddressRewriteReplace {
|
|
candidateIPs = candidateIPs[:0]
|
|
}
|
|
|
|
return append(candidateIPs, mappedIPs...), true
|
|
}
|
|
|
|
// gatherCandidatesInternal performs the actual candidate gathering for all configured types.
|
|
func (a *Agent) gatherCandidatesInternal(ctx context.Context) {
|
|
var wg sync.WaitGroup
|
|
for _, t := range a.candidateTypes {
|
|
switch t {
|
|
case CandidateTypeHost:
|
|
wg.Add(1)
|
|
go func() {
|
|
a.gatherCandidatesLocal(ctx, a.networkTypes)
|
|
wg.Done()
|
|
}()
|
|
case CandidateTypeServerReflexive:
|
|
a.gatherServerReflexiveCandidates(ctx, &wg)
|
|
case CandidateTypeRelay:
|
|
wg.Add(1)
|
|
go func() {
|
|
a.gatherCandidatesRelay(ctx, a.urls)
|
|
wg.Done()
|
|
}()
|
|
case CandidateTypePeerReflexive, CandidateTypeUnspecified:
|
|
}
|
|
}
|
|
|
|
// Block until all STUN and TURN URLs have been gathered (or timed out)
|
|
wg.Wait()
|
|
}
|
|
|
|
func (a *Agent) gatherServerReflexiveCandidates(ctx context.Context, wg *sync.WaitGroup) {
|
|
replaceSrflx := a.addressRewriteMapper != nil && a.addressRewriteMapper.shouldReplace(CandidateTypeServerReflexive)
|
|
if !replaceSrflx {
|
|
wg.Add(1)
|
|
go func() {
|
|
if a.udpMuxSrflx != nil {
|
|
a.gatherCandidatesSrflxUDPMux(ctx, a.urls, a.networkTypes)
|
|
} else {
|
|
a.gatherCandidatesSrflx(ctx, a.urls, a.networkTypes)
|
|
}
|
|
wg.Done()
|
|
}()
|
|
}
|
|
if a.addressRewriteMapper != nil && a.addressRewriteMapper.hasCandidateType(CandidateTypeServerReflexive) {
|
|
wg.Add(1)
|
|
go func() {
|
|
a.gatherCandidatesSrflxMapped(ctx, a.networkTypes)
|
|
wg.Done()
|
|
}()
|
|
}
|
|
}
|
|
|
|
//nolint:gocognit,gocyclo,cyclop,maintidx
|
|
func (a *Agent) gatherCandidatesLocal(ctx context.Context, networkTypes []NetworkType) {
|
|
networks := map[string]struct{}{}
|
|
for _, networkType := range networkTypes {
|
|
if networkType.IsTCP() {
|
|
networks[tcp] = struct{}{}
|
|
} else {
|
|
networks[udp] = struct{}{}
|
|
}
|
|
}
|
|
|
|
// When UDPMux is enabled, skip other UDP candidates
|
|
if a.udpMux != nil {
|
|
if err := a.gatherCandidatesLocalUDPMux(ctx); err != nil {
|
|
a.log.Warnf("Failed to create host candidate for UDPMux: %s", err)
|
|
}
|
|
delete(networks, udp)
|
|
}
|
|
|
|
_, localAddrs, err := localInterfaces(a.net, a.interfaceFilter, a.ipFilter, networkTypes, a.includeLoopback)
|
|
if err != nil {
|
|
a.log.Warnf("Failed to iterate local interfaces, host candidates will not be gathered %s", err)
|
|
|
|
return
|
|
}
|
|
|
|
for _, info := range localAddrs {
|
|
addr := info.addr
|
|
ifaceName := info.iface
|
|
mappedAddrs := []netip.Addr{addr}
|
|
if a.shouldRewriteHostCandidates() {
|
|
var ok bool
|
|
mappedAddrs, ok = a.applyHostAddressRewrite(addr, mappedAddrs, ifaceName)
|
|
if !ok {
|
|
continue
|
|
}
|
|
}
|
|
|
|
for mappedIdx, mappedIP := range mappedAddrs {
|
|
address := mappedIP.String()
|
|
var isLocationTracked bool
|
|
if a.mDNSMode == MulticastDNSModeQueryAndGather {
|
|
address = a.mDNSName
|
|
} else {
|
|
// Here, we are not doing multicast gathering, so we will need to skip this address so
|
|
// that we don't accidentally reveal location tracking information. Otherwise, the
|
|
// case above hides the IP behind an mDNS address.
|
|
isLocationTracked = shouldFilterLocationTrackedIP(mappedIP)
|
|
}
|
|
|
|
for network := range networks {
|
|
// TCPMux maintains a single listener per interface. Avoid duplicating passive TCP candidates
|
|
// for additional mapped IPs until connection sharing is supported.
|
|
if network == tcp && mappedIdx > 0 {
|
|
continue
|
|
}
|
|
|
|
type connAndPort struct {
|
|
conn net.PacketConn
|
|
port int
|
|
}
|
|
var (
|
|
conns []connAndPort
|
|
tcpType TCPType
|
|
)
|
|
|
|
switch network {
|
|
case tcp:
|
|
if a.tcpMux == nil {
|
|
continue
|
|
}
|
|
|
|
// Only advertise TCP candidates for addresses that the mux listener is actually
|
|
// bound to. When the listener is bound to a specific IP, exposing other interface
|
|
// addresses would generate unreachable passive candidates and can stall active
|
|
// TCP connect attempts.
|
|
if addrProvider, ok := a.tcpMux.(interface{ LocalAddr() net.Addr }); ok {
|
|
if muxAddr, ok := addrProvider.LocalAddr().(*net.TCPAddr); ok {
|
|
if ip := muxAddr.IP; ip != nil && !ip.IsUnspecified() && !ip.Equal(addr.AsSlice()) {
|
|
continue
|
|
}
|
|
}
|
|
}
|
|
|
|
// Handle ICE TCP passive mode
|
|
var muxConns []net.PacketConn
|
|
if multi, ok := a.tcpMux.(AllConnsGetter); ok {
|
|
a.log.Debugf("GetAllConns by ufrag: %s", a.localUfrag)
|
|
// Note: this is missing zone for IPv6 by just grabbing the IP slice
|
|
muxConns, err = multi.GetAllConns(a.localUfrag, mappedIP.Is6(), addr.AsSlice())
|
|
if err != nil {
|
|
a.log.Warnf("Failed to get all TCP connections by ufrag: %s %s %s", network, addr, a.localUfrag)
|
|
|
|
continue
|
|
}
|
|
} else {
|
|
a.log.Debugf("GetConn by ufrag: %s", a.localUfrag)
|
|
// Note: this is missing zone for IPv6 by just grabbing the IP slice
|
|
conn, err := a.tcpMux.GetConnByUfrag(a.localUfrag, mappedIP.Is6(), addr.AsSlice())
|
|
if err != nil {
|
|
a.log.Warnf("Failed to get TCP connections by ufrag: %s %s %s", network, addr, a.localUfrag)
|
|
|
|
continue
|
|
}
|
|
muxConns = []net.PacketConn{conn}
|
|
}
|
|
|
|
// Extract the port for each PacketConn we got.
|
|
for _, conn := range muxConns {
|
|
if tcpConn, ok := conn.LocalAddr().(*net.TCPAddr); ok {
|
|
conns = append(conns, connAndPort{conn, tcpConn.Port})
|
|
} else {
|
|
a.log.Warnf("Failed to get port of connection from TCPMux: %s %s %s", network, addr, a.localUfrag)
|
|
}
|
|
}
|
|
if len(conns) == 0 {
|
|
// Didn't succeed with any, try the next network.
|
|
continue
|
|
}
|
|
tcpType = TCPTypePassive
|
|
// Is there a way to verify that the listen address is even
|
|
// accessible from the current interface.
|
|
case udp:
|
|
conn, err := listenUDPInPortRange(a.net, a.log, int(a.portMax), int(a.portMin), network, &net.UDPAddr{
|
|
IP: addr.AsSlice(),
|
|
Port: 0,
|
|
Zone: addr.Zone(),
|
|
})
|
|
if err != nil {
|
|
a.log.Warnf("Failed to listen %s %s", network, addr)
|
|
|
|
continue
|
|
}
|
|
|
|
if udpConn, ok := conn.LocalAddr().(*net.UDPAddr); ok {
|
|
conns = append(conns, connAndPort{conn, udpConn.Port})
|
|
} else {
|
|
a.log.Warnf("Failed to get port of UDPAddr from ListenUDPInPortRange: %s %s %s", network, addr, a.localUfrag)
|
|
|
|
continue
|
|
}
|
|
}
|
|
|
|
for _, connAndPort := range conns {
|
|
hostConfig := CandidateHostConfig{
|
|
Network: network,
|
|
Address: address,
|
|
Port: connAndPort.port,
|
|
Component: ComponentRTP,
|
|
TCPType: tcpType,
|
|
// we will still process this candidate so that we start up the right
|
|
// listeners.
|
|
IsLocationTracked: isLocationTracked,
|
|
}
|
|
|
|
candidateHost, err := NewCandidateHost(&hostConfig)
|
|
|
|
if err == nil && a.mDNSMode == MulticastDNSModeQueryAndGather {
|
|
err = candidateHost.setIPAddr(addr)
|
|
}
|
|
|
|
if err != nil {
|
|
closeConnAndLog(
|
|
connAndPort.conn,
|
|
a.log,
|
|
"failed to create host candidate: %s %s %d: %v",
|
|
network, mappedIP,
|
|
connAndPort.port,
|
|
err,
|
|
)
|
|
|
|
continue
|
|
}
|
|
|
|
if err := a.addCandidate(ctx, candidateHost, connAndPort.conn); err != nil {
|
|
if closeErr := candidateHost.close(); closeErr != nil {
|
|
a.log.Warnf("Failed to close candidate: %v", closeErr)
|
|
}
|
|
a.log.Warnf("Failed to append to localCandidates and run onCandidateHdlr: %v", err)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
// shouldFilterLocationTrackedIP returns if this candidate IP should be filtered out from
|
|
// any candidate publishing/notification for location tracking reasons.
|
|
func shouldFilterLocationTrackedIP(candidateIP netip.Addr) bool {
|
|
// https://tools.ietf.org/html/rfc8445#section-5.1.1.1
|
|
// Similarly, when host candidates corresponding to
|
|
// an IPv6 address generated using a mechanism that prevents location
|
|
// tracking are gathered, then host candidates corresponding to IPv6
|
|
// link-local addresses [RFC4291] MUST NOT be gathered.
|
|
return candidateIP.Is6() && (candidateIP.IsLinkLocalUnicast() || candidateIP.IsLinkLocalMulticast())
|
|
}
|
|
|
|
// shouldFilterLocationTracked returns if this candidate IP should be filtered out from
|
|
// any candidate publishing/notification for location tracking reasons.
|
|
func shouldFilterLocationTracked(candidateIP net.IP) bool {
|
|
addr, ok := netip.AddrFromSlice(candidateIP)
|
|
if !ok {
|
|
return false
|
|
}
|
|
|
|
return shouldFilterLocationTrackedIP(addr)
|
|
}
|
|
|
|
func (a *Agent) gatherCandidatesLocalUDPMux(ctx context.Context) error { //nolint:gocognit,cyclop
|
|
if a.udpMux == nil {
|
|
return errUDPMuxDisabled
|
|
}
|
|
|
|
localAddresses := a.udpMux.GetListenAddresses()
|
|
existingConfigs := make(map[CandidateHostConfig]struct{})
|
|
|
|
for _, addr := range localAddresses {
|
|
udpAddr, ok := addr.(*net.UDPAddr)
|
|
if !ok {
|
|
return errInvalidAddress
|
|
}
|
|
candidateIPs := []net.IP{udpAddr.IP}
|
|
|
|
if _, ok := a.udpMux.(*UDPMuxDefault); ok && !a.includeLoopback && udpAddr.IP.IsLoopback() {
|
|
// Unlike MultiUDPMux Default, UDPMuxDefault doesn't have
|
|
// a separate param to include loopback, so we respect agent config
|
|
continue
|
|
}
|
|
|
|
if a.shouldRewriteHostCandidates() {
|
|
var ok bool
|
|
candidateIPs, ok = a.applyHostRewriteForUDPMux(candidateIPs, udpAddr)
|
|
if !ok {
|
|
continue
|
|
}
|
|
}
|
|
|
|
for _, candidateIP := range candidateIPs {
|
|
var address string
|
|
var isLocationTracked bool
|
|
if a.mDNSMode == MulticastDNSModeQueryAndGather {
|
|
address = a.mDNSName
|
|
} else {
|
|
address = candidateIP.String()
|
|
// Here, we are not doing multicast gathering, so we will need to skip this address so
|
|
// that we don't accidentally reveal location tracking information. Otherwise, the
|
|
// case above hides the IP behind an mDNS address.
|
|
isLocationTracked = shouldFilterLocationTracked(candidateIP)
|
|
}
|
|
|
|
hostConfig := CandidateHostConfig{
|
|
Network: udp,
|
|
Address: address,
|
|
Port: udpAddr.Port,
|
|
Component: ComponentRTP,
|
|
IsLocationTracked: isLocationTracked,
|
|
}
|
|
|
|
// Detect a duplicate candidate before calling addCandidate().
|
|
// otherwise, addCandidate() detects the duplicate candidate
|
|
// and close its connection, invalidating all candidates
|
|
// that share the same connection.
|
|
if _, ok := existingConfigs[hostConfig]; ok {
|
|
continue
|
|
}
|
|
|
|
conn, err := a.udpMux.GetConn(a.localUfrag, udpAddr)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
c, err := NewCandidateHost(&hostConfig)
|
|
if err != nil {
|
|
closeConnAndLog(conn, a.log, "failed to create host mux candidate: %s %d: %v", candidateIP, udpAddr.Port, err)
|
|
|
|
continue
|
|
}
|
|
|
|
if err := a.addCandidate(ctx, c, conn); err != nil {
|
|
if closeErr := c.close(); closeErr != nil {
|
|
a.log.Warnf("Failed to close candidate: %v", closeErr)
|
|
}
|
|
|
|
closeConnAndLog(conn, a.log, "failed to add candidate: %s %d: %v", candidateIP, udpAddr.Port, err)
|
|
|
|
continue
|
|
}
|
|
|
|
existingConfigs[hostConfig] = struct{}{}
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (a *Agent) gatherCandidatesSrflxMapped(ctx context.Context, networkTypes []NetworkType) { //nolint:gocognit,cyclop
|
|
var wg sync.WaitGroup
|
|
defer wg.Wait()
|
|
|
|
_, ifaces, _ := localInterfaces(a.net, a.interfaceFilter, a.ipFilter, networkTypes, a.includeLoopback)
|
|
|
|
for _, networkType := range networkTypes {
|
|
if networkType.IsTCP() {
|
|
continue
|
|
}
|
|
|
|
network := networkType.String()
|
|
wg.Add(1)
|
|
go func() {
|
|
defer wg.Done()
|
|
|
|
conn, err := listenUDPInPortRange(
|
|
a.net,
|
|
a.log,
|
|
int(a.portMax),
|
|
int(a.portMin),
|
|
network,
|
|
&net.UDPAddr{IP: nil, Port: 0},
|
|
)
|
|
if err != nil {
|
|
a.log.Warnf("Failed to listen %s: %v", network, err)
|
|
|
|
return
|
|
}
|
|
|
|
lAddr, ok := conn.LocalAddr().(*net.UDPAddr)
|
|
if !ok {
|
|
closeConnAndLog(conn, a.log, "Address rewrite mapping is enabled but LocalAddr is not a UDPAddr")
|
|
|
|
return
|
|
}
|
|
|
|
addresses, ok := a.resolveSrflxAddresses(lAddr.IP, findIfaceForIP(ifaces, lAddr.IP))
|
|
if !ok {
|
|
closeConnAndLog(
|
|
conn, a.log, "Address rewrite mapping did not provide usable external IPs for %s", lAddr.IP.String(),
|
|
)
|
|
|
|
return
|
|
}
|
|
|
|
for idx, mappedIP := range addresses {
|
|
currentConn := conn
|
|
currentAddr := lAddr
|
|
if idx > 0 {
|
|
newConn, listenErr := listenUDPInPortRange(
|
|
a.net,
|
|
a.log,
|
|
int(a.portMax),
|
|
int(a.portMin),
|
|
network,
|
|
&net.UDPAddr{IP: lAddr.IP, Port: 0},
|
|
)
|
|
if listenErr != nil {
|
|
closeConnAndLog(newConn, a.log, "Failed to listen %s for additional srflx mapping: %v", network, listenErr)
|
|
|
|
return
|
|
}
|
|
currentConn = newConn
|
|
var ok bool
|
|
currentAddr, ok = currentConn.LocalAddr().(*net.UDPAddr)
|
|
if !ok {
|
|
closeConnAndLog(currentConn, a.log, "Address rewrite mapping is enabled but LocalAddr is not a UDPAddr")
|
|
|
|
return
|
|
}
|
|
}
|
|
|
|
if shouldFilterLocationTracked(mappedIP) {
|
|
closeConnAndLog(currentConn, a.log, "external IP is somehow filtered for location tracking reasons %s", mappedIP)
|
|
|
|
continue
|
|
}
|
|
|
|
srflxConfig := CandidateServerReflexiveConfig{
|
|
Network: network,
|
|
Address: mappedIP.String(),
|
|
Port: currentAddr.Port,
|
|
Component: ComponentRTP,
|
|
RelAddr: currentAddr.IP.String(),
|
|
RelPort: currentAddr.Port,
|
|
}
|
|
c, err := NewCandidateServerReflexive(&srflxConfig)
|
|
if err != nil {
|
|
closeConnAndLog(currentConn, a.log, "failed to create server reflexive candidate: %s %s %d: %v",
|
|
network,
|
|
mappedIP.String(),
|
|
currentAddr.Port,
|
|
err)
|
|
|
|
continue
|
|
}
|
|
|
|
if err := a.addCandidate(ctx, c, currentConn); err != nil {
|
|
if closeErr := c.close(); closeErr != nil {
|
|
a.log.Warnf("Failed to close candidate: %v", closeErr)
|
|
}
|
|
a.log.Warnf("Failed to append to localCandidates and run onCandidateHdlr: %v", err)
|
|
closeConnAndLog(
|
|
currentConn,
|
|
a.log,
|
|
"closing srflx conn after addCandidate failure: %v",
|
|
err,
|
|
)
|
|
}
|
|
}
|
|
}()
|
|
}
|
|
}
|
|
|
|
//nolint:gocognit,cyclop
|
|
func (a *Agent) gatherCandidatesSrflxUDPMux(ctx context.Context, urls []*stun.URI, networkTypes []NetworkType) {
|
|
var wg sync.WaitGroup
|
|
defer wg.Wait()
|
|
|
|
for _, networkType := range networkTypes {
|
|
if networkType.IsTCP() {
|
|
continue
|
|
}
|
|
|
|
for i := range urls {
|
|
for _, listenAddr := range a.udpMuxSrflx.GetListenAddresses() {
|
|
udpAddr, ok := listenAddr.(*net.UDPAddr)
|
|
if !ok {
|
|
a.log.Warn("Failed to cast udpMuxSrflx listen address to UDPAddr")
|
|
|
|
continue
|
|
}
|
|
wg.Add(1)
|
|
go func(url stun.URI, network string, localAddr *net.UDPAddr) {
|
|
defer wg.Done()
|
|
|
|
hostPort := fmt.Sprintf("%s:%d", url.Host, url.Port)
|
|
serverAddr, err := a.net.ResolveUDPAddr(network, hostPort)
|
|
if err != nil {
|
|
a.log.Debugf("Failed to resolve STUN host: %s %s: %v", network, hostPort, err)
|
|
|
|
return
|
|
}
|
|
|
|
if shouldFilterLocationTracked(serverAddr.IP) {
|
|
a.log.Warnf("STUN host %s is somehow filtered for location tracking reasons", hostPort)
|
|
|
|
return
|
|
}
|
|
|
|
xorAddr, err := a.udpMuxSrflx.GetXORMappedAddr(serverAddr, a.stunGatherTimeout)
|
|
if err != nil {
|
|
a.log.Warnf("Failed get server reflexive address %s %s: %v", network, url, err)
|
|
|
|
return
|
|
}
|
|
|
|
conn, err := a.udpMuxSrflx.GetConnForURL(a.localUfrag, url.String(), localAddr)
|
|
if err != nil {
|
|
a.log.Warnf("Failed to find connection in UDPMuxSrflx %s %s: %v", network, url, err)
|
|
|
|
return
|
|
}
|
|
|
|
ip := xorAddr.IP
|
|
port := xorAddr.Port
|
|
|
|
srflxConfig := CandidateServerReflexiveConfig{
|
|
Network: network,
|
|
Address: ip.String(),
|
|
Port: port,
|
|
Component: ComponentRTP,
|
|
RelAddr: localAddr.IP.String(),
|
|
RelPort: localAddr.Port,
|
|
}
|
|
c, err := NewCandidateServerReflexive(&srflxConfig)
|
|
if err != nil {
|
|
closeConnAndLog(conn, a.log, "failed to create server reflexive candidate: %s %s %d: %v", network, ip, port, err)
|
|
|
|
return
|
|
}
|
|
|
|
if err := a.addCandidate(ctx, c, conn); err != nil {
|
|
if closeErr := c.close(); closeErr != nil {
|
|
a.log.Warnf("Failed to close candidate: %v", closeErr)
|
|
}
|
|
a.log.Warnf("Failed to append to localCandidates and run onCandidateHdlr: %v", err)
|
|
}
|
|
}(*urls[i], networkType.String(), udpAddr)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
//nolint:cyclop,gocognit
|
|
func (a *Agent) gatherCandidatesSrflx(ctx context.Context, urls []*stun.URI, networkTypes []NetworkType) {
|
|
var wg sync.WaitGroup
|
|
defer wg.Wait()
|
|
|
|
for _, networkType := range networkTypes {
|
|
if networkType.IsTCP() {
|
|
continue
|
|
}
|
|
|
|
for i := range urls {
|
|
wg.Add(1)
|
|
go func(url stun.URI, network string) {
|
|
defer wg.Done()
|
|
|
|
hostPort := fmt.Sprintf("%s:%d", url.Host, url.Port)
|
|
serverAddr, err := a.net.ResolveUDPAddr(network, hostPort)
|
|
if err != nil {
|
|
a.log.Debugf("Failed to resolve STUN host: %s %s: %v", network, hostPort, err)
|
|
|
|
return
|
|
}
|
|
|
|
if shouldFilterLocationTracked(serverAddr.IP) {
|
|
a.log.Warnf("STUN host %s is somehow filtered for location tracking reasons", hostPort)
|
|
|
|
return
|
|
}
|
|
|
|
conn, err := listenUDPInPortRange(
|
|
a.net,
|
|
a.log,
|
|
int(a.portMax),
|
|
int(a.portMin),
|
|
network,
|
|
&net.UDPAddr{IP: nil, Port: 0},
|
|
)
|
|
if err != nil {
|
|
closeConnAndLog(conn, a.log, "failed to listen for %s: %v", serverAddr.String(), err)
|
|
|
|
return
|
|
}
|
|
// If the agent closes midway through the connection
|
|
// we end it early to prevent close delay.
|
|
cancelCtx, cancelFunc := context.WithCancel(ctx)
|
|
defer cancelFunc()
|
|
go func() {
|
|
select {
|
|
case <-cancelCtx.Done():
|
|
return
|
|
case <-a.loop.Done():
|
|
_ = conn.Close()
|
|
}
|
|
}()
|
|
|
|
xorAddr, err := stunx.GetXORMappedAddr(conn, serverAddr, a.stunGatherTimeout)
|
|
if err != nil {
|
|
closeConnAndLog(conn, a.log, "failed to get server reflexive address %s %s: %v", network, url, err)
|
|
|
|
return
|
|
}
|
|
|
|
ip := xorAddr.IP
|
|
port := xorAddr.Port
|
|
|
|
lAddr := conn.LocalAddr().(*net.UDPAddr) //nolint:forcetypeassert
|
|
srflxConfig := CandidateServerReflexiveConfig{
|
|
Network: network,
|
|
Address: ip.String(),
|
|
Port: port,
|
|
Component: ComponentRTP,
|
|
RelAddr: lAddr.IP.String(),
|
|
RelPort: lAddr.Port,
|
|
}
|
|
c, err := NewCandidateServerReflexive(&srflxConfig)
|
|
if err != nil {
|
|
closeConnAndLog(conn, a.log, "failed to create server reflexive candidate: %s %s %d: %v", network, ip, port, err)
|
|
|
|
return
|
|
}
|
|
|
|
if err := a.addCandidate(ctx, c, conn); err != nil {
|
|
if closeErr := c.close(); closeErr != nil {
|
|
a.log.Warnf("Failed to close candidate: %v", closeErr)
|
|
}
|
|
a.log.Warnf("Failed to append to localCandidates and run onCandidateHdlr: %v", err)
|
|
}
|
|
}(*urls[i], networkType.String())
|
|
}
|
|
}
|
|
}
|
|
|
|
//nolint:maintidx,gocognit,gocyclo,cyclop
|
|
func (a *Agent) gatherCandidatesRelay(ctx context.Context, urls []*stun.URI) {
|
|
var wg sync.WaitGroup
|
|
defer wg.Wait()
|
|
|
|
network := NetworkTypeUDP4.String()
|
|
_, ifaces, _ := localInterfaces(a.net, a.interfaceFilter, a.ipFilter, a.networkTypes, a.includeLoopback)
|
|
|
|
for _, url := range urls {
|
|
switch {
|
|
case url.Scheme != stun.SchemeTypeTURN && url.Scheme != stun.SchemeTypeTURNS:
|
|
continue
|
|
case url.Username == "":
|
|
a.log.Errorf("Failed to gather relay candidates: %v", ErrUsernameEmpty)
|
|
|
|
return
|
|
case url.Password == "":
|
|
a.log.Errorf("Failed to gather relay candidates: %v", ErrPasswordEmpty)
|
|
|
|
return
|
|
}
|
|
|
|
wg.Add(1)
|
|
go func(url stun.URI) {
|
|
defer wg.Done()
|
|
turnServerAddr := fmt.Sprintf("%s:%d", url.Host, url.Port)
|
|
var (
|
|
locConn net.PacketConn
|
|
err error
|
|
relAddr string
|
|
relPort int
|
|
relayProtocol string
|
|
)
|
|
|
|
switch {
|
|
case url.Proto == stun.ProtoTypeUDP && url.Scheme == stun.SchemeTypeTURN:
|
|
if locConn, err = a.net.ListenPacket(network, "0.0.0.0:0"); err != nil {
|
|
a.log.Warnf("Failed to listen %s: %v", network, err)
|
|
|
|
return
|
|
}
|
|
|
|
relAddr = locConn.LocalAddr().(*net.UDPAddr).IP.String() //nolint:forcetypeassert
|
|
relPort = locConn.LocalAddr().(*net.UDPAddr).Port //nolint:forcetypeassert
|
|
relayProtocol = udp
|
|
case a.proxyDialer != nil && url.Proto == stun.ProtoTypeTCP &&
|
|
(url.Scheme == stun.SchemeTypeTURN || url.Scheme == stun.SchemeTypeTURNS):
|
|
conn, connectErr := a.proxyDialer.Dial(NetworkTypeTCP4.String(), turnServerAddr)
|
|
if connectErr != nil {
|
|
a.log.Warnf("Failed to dial TCP address %s via proxy dialer: %v", turnServerAddr, connectErr)
|
|
|
|
return
|
|
}
|
|
|
|
relAddr = conn.LocalAddr().(*net.TCPAddr).IP.String() //nolint:forcetypeassert
|
|
relPort = conn.LocalAddr().(*net.TCPAddr).Port //nolint:forcetypeassert
|
|
if url.Scheme == stun.SchemeTypeTURN {
|
|
relayProtocol = tcp
|
|
} else if url.Scheme == stun.SchemeTypeTURNS {
|
|
relayProtocol = "tls"
|
|
}
|
|
locConn = turn.NewSTUNConn(conn)
|
|
|
|
case url.Proto == stun.ProtoTypeTCP && url.Scheme == stun.SchemeTypeTURN:
|
|
tcpAddr, connectErr := a.net.ResolveTCPAddr(NetworkTypeTCP4.String(), turnServerAddr)
|
|
if connectErr != nil {
|
|
a.log.Warnf("Failed to resolve TCP address %s: %v", turnServerAddr, connectErr)
|
|
|
|
return
|
|
}
|
|
|
|
conn, connectErr := a.net.DialTCP(NetworkTypeTCP4.String(), nil, tcpAddr)
|
|
if connectErr != nil {
|
|
a.log.Warnf("Failed to dial TCP address %s: %v", turnServerAddr, connectErr)
|
|
|
|
return
|
|
}
|
|
|
|
relAddr = conn.LocalAddr().(*net.TCPAddr).IP.String() //nolint:forcetypeassert
|
|
relPort = conn.LocalAddr().(*net.TCPAddr).Port //nolint:forcetypeassert
|
|
relayProtocol = tcp
|
|
locConn = turn.NewSTUNConn(conn)
|
|
case url.Proto == stun.ProtoTypeUDP && url.Scheme == stun.SchemeTypeTURNS:
|
|
udpAddr, connectErr := a.net.ResolveUDPAddr(network, turnServerAddr)
|
|
if connectErr != nil {
|
|
a.log.Warnf("Failed to resolve UDP address %s: %v", turnServerAddr, connectErr)
|
|
|
|
return
|
|
}
|
|
|
|
udpConn, dialErr := a.net.DialUDP("udp", nil, udpAddr)
|
|
if dialErr != nil {
|
|
a.log.Warnf("Failed to dial DTLS address %s: %v", turnServerAddr, dialErr)
|
|
|
|
return
|
|
}
|
|
|
|
conn, connectErr := dtls.Client(&fakenet.PacketConn{Conn: udpConn}, udpConn.RemoteAddr(), &dtls.Config{
|
|
ServerName: url.Host,
|
|
InsecureSkipVerify: a.insecureSkipVerify, //nolint:gosec
|
|
LoggerFactory: a.loggerFactory,
|
|
})
|
|
if connectErr != nil {
|
|
a.log.Warnf("Failed to create DTLS client: %v", turnServerAddr, connectErr)
|
|
|
|
return
|
|
}
|
|
|
|
if connectErr = conn.HandshakeContext(ctx); connectErr != nil {
|
|
a.log.Warnf("Failed to create DTLS client: %v", turnServerAddr, connectErr)
|
|
|
|
return
|
|
}
|
|
|
|
relAddr = conn.LocalAddr().(*net.UDPAddr).IP.String() //nolint:forcetypeassert
|
|
relPort = conn.LocalAddr().(*net.UDPAddr).Port //nolint:forcetypeassert
|
|
relayProtocol = relayProtocolDTLS
|
|
locConn = &fakenet.PacketConn{Conn: conn}
|
|
case url.Proto == stun.ProtoTypeTCP && url.Scheme == stun.SchemeTypeTURNS:
|
|
tcpAddr, resolvErr := a.net.ResolveTCPAddr(NetworkTypeTCP4.String(), turnServerAddr)
|
|
if resolvErr != nil {
|
|
a.log.Warnf("Failed to resolve relay address %s: %v", turnServerAddr, resolvErr)
|
|
|
|
return
|
|
}
|
|
|
|
tcpConn, dialErr := a.net.DialTCP(NetworkTypeTCP4.String(), nil, tcpAddr)
|
|
if dialErr != nil {
|
|
a.log.Warnf("Failed to connect to relay: %v", dialErr)
|
|
|
|
return
|
|
}
|
|
|
|
conn := tls.Client(tcpConn, &tls.Config{
|
|
ServerName: url.Host,
|
|
InsecureSkipVerify: a.insecureSkipVerify, //nolint:gosec
|
|
})
|
|
|
|
if hsErr := conn.HandshakeContext(ctx); hsErr != nil {
|
|
if closeErr := tcpConn.Close(); closeErr != nil {
|
|
a.log.Errorf("Failed to close relay connection: %v", closeErr)
|
|
}
|
|
a.log.Warnf("Failed to connect to relay: %v", hsErr)
|
|
|
|
return
|
|
}
|
|
|
|
relAddr = conn.LocalAddr().(*net.TCPAddr).IP.String() //nolint:forcetypeassert
|
|
relPort = conn.LocalAddr().(*net.TCPAddr).Port //nolint:forcetypeassert
|
|
relayProtocol = relayProtocolTLS
|
|
locConn = turn.NewSTUNConn(conn)
|
|
default:
|
|
a.log.Warnf("Unable to handle URL in gatherCandidatesRelay %v", url)
|
|
|
|
return
|
|
}
|
|
|
|
factory := a.turnClientFactory
|
|
if factory == nil {
|
|
factory = defaultTurnClient
|
|
}
|
|
|
|
client, err := factory(&turn.ClientConfig{
|
|
TURNServerAddr: turnServerAddr,
|
|
Conn: locConn,
|
|
Username: url.Username,
|
|
Password: url.Password,
|
|
LoggerFactory: a.loggerFactory,
|
|
Net: a.net,
|
|
})
|
|
if err != nil {
|
|
closeConnAndLog(locConn, a.log, "failed to create new TURN client %s %s", turnServerAddr, err)
|
|
|
|
return
|
|
}
|
|
|
|
if err = client.Listen(); err != nil {
|
|
client.Close()
|
|
closeConnAndLog(locConn, a.log, "failed to listen on TURN client %s %s", turnServerAddr, err)
|
|
|
|
return
|
|
}
|
|
|
|
relayConn, err := client.Allocate()
|
|
if err != nil {
|
|
client.Close()
|
|
closeConnAndLog(locConn, a.log, "failed to allocate on TURN client %s %s", turnServerAddr, err)
|
|
|
|
return
|
|
}
|
|
|
|
rAddr := relayConn.LocalAddr().(*net.UDPAddr) //nolint:forcetypeassert
|
|
|
|
if shouldFilterLocationTracked(rAddr.IP) {
|
|
a.log.Warnf("TURN address %s is somehow filtered for location tracking reasons", rAddr.IP)
|
|
|
|
return
|
|
}
|
|
|
|
a.addRelayCandidates(ctx, relayEndpoint{
|
|
network: network,
|
|
address: rAddr.IP,
|
|
port: rAddr.Port,
|
|
relAddr: relAddr,
|
|
relPort: relPort,
|
|
iface: findIfaceForIP(ifaces, net.ParseIP(relAddr)),
|
|
protocol: relayProtocol,
|
|
conn: relayConn,
|
|
onClose: func() error {
|
|
client.Close()
|
|
|
|
return locConn.Close()
|
|
},
|
|
closeConn: func() {
|
|
if relayConErr := relayConn.Close(); relayConErr != nil {
|
|
a.log.Warnf("Failed to close relay %v", relayConErr)
|
|
}
|
|
},
|
|
})
|
|
}(*url)
|
|
}
|
|
}
|
|
|
|
type relayEndpoint struct {
|
|
network string
|
|
address net.IP
|
|
port int
|
|
relAddr string
|
|
relPort int
|
|
protocol string
|
|
iface string
|
|
conn net.PacketConn
|
|
onClose func() error
|
|
closeConn func()
|
|
}
|
|
|
|
func (a *Agent) resolveRelayAddresses(ep relayEndpoint) ([]net.IP, bool) {
|
|
addresses := []net.IP{ep.address}
|
|
if !a.shouldRewriteCandidateType(CandidateTypeRelay) {
|
|
return addresses, true
|
|
}
|
|
|
|
mappedIPs, matched, mode, err := a.addressRewriteMapper.findExternalIPs(
|
|
CandidateTypeRelay,
|
|
ep.relAddr,
|
|
ep.iface,
|
|
)
|
|
if err != nil {
|
|
return nil, false
|
|
}
|
|
if !matched {
|
|
return addresses, true
|
|
}
|
|
if len(mappedIPs) == 0 {
|
|
if mode == AddressRewriteReplace {
|
|
a.log.Warnf("Address rewrite mapping returned no external relay addresses for %s", ep.relAddr)
|
|
|
|
return nil, false
|
|
}
|
|
|
|
return addresses, true
|
|
}
|
|
if mode == AddressRewriteReplace {
|
|
return mappedIPs, true
|
|
}
|
|
|
|
return append(addresses, mappedIPs...), true
|
|
}
|
|
|
|
func (a *Agent) resolveSrflxAddresses(localIP net.IP, iface string) ([]net.IP, bool) {
|
|
addresses := []net.IP{localIP}
|
|
if !a.shouldRewriteCandidateType(CandidateTypeServerReflexive) {
|
|
return addresses, true
|
|
}
|
|
|
|
mappedIPs, matched, mode, err := a.addressRewriteMapper.findExternalIPs(
|
|
CandidateTypeServerReflexive,
|
|
localIP.String(),
|
|
iface,
|
|
)
|
|
if err != nil {
|
|
a.log.Warnf("Address rewrite mapping is enabled but no external IP is found for %s: %v", localIP.String(), err)
|
|
|
|
return nil, false
|
|
}
|
|
|
|
if !matched {
|
|
return addresses, true
|
|
}
|
|
|
|
if len(mappedIPs) == 0 {
|
|
if mode == AddressRewriteReplace {
|
|
return nil, false
|
|
}
|
|
|
|
return addresses, true
|
|
}
|
|
|
|
if mode == AddressRewriteReplace {
|
|
return mappedIPs, true
|
|
}
|
|
|
|
return mappedIPs, true
|
|
}
|
|
|
|
func findIfaceForIP(ifaces []ifaceAddr, ip net.IP) string {
|
|
if ip == nil {
|
|
return ""
|
|
}
|
|
for _, info := range ifaces {
|
|
if info.addr.String() == ip.String() {
|
|
return info.iface
|
|
}
|
|
}
|
|
|
|
return ""
|
|
}
|
|
|
|
func (a *Agent) createRelayCandidate(ctx context.Context, ep relayEndpoint, ip net.IP, onClose func() error) error {
|
|
relayConfig := CandidateRelayConfig{
|
|
Network: ep.network,
|
|
Component: ComponentRTP,
|
|
Address: ip.String(),
|
|
Port: ep.port,
|
|
RelAddr: ep.relAddr,
|
|
RelPort: ep.relPort,
|
|
RelayProtocol: ep.protocol,
|
|
OnClose: onClose,
|
|
}
|
|
candidate, err := NewCandidateRelay(&relayConfig)
|
|
if err != nil {
|
|
a.log.Warnf("failed to create relay candidate: %s %d: %v", ip, ep.port, err)
|
|
|
|
return err
|
|
}
|
|
|
|
if err := a.addCandidate(ctx, candidate, ep.conn); err != nil {
|
|
if closeErr := candidate.close(); closeErr != nil {
|
|
a.log.Warnf("Failed to close candidate: %v", closeErr)
|
|
}
|
|
a.log.Warnf("Failed to append to localCandidates and run onCandidateHdlr: %v", err)
|
|
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (a *Agent) addRelayCandidates(ctx context.Context, ep relayEndpoint) {
|
|
if ep.conn == nil || ep.address == nil {
|
|
return
|
|
}
|
|
|
|
addresses, ok := a.resolveRelayAddresses(ep)
|
|
if !ok {
|
|
return
|
|
}
|
|
|
|
for idx, ip := range addresses {
|
|
onClose := ep.onClose
|
|
if idx > 0 {
|
|
onClose = nil
|
|
}
|
|
|
|
if err := a.createRelayCandidate(ctx, ep, ip, onClose); err != nil {
|
|
if idx == 0 {
|
|
if ep.closeConn != nil {
|
|
ep.closeConn()
|
|
}
|
|
|
|
return
|
|
}
|
|
|
|
a.log.Warnf("failed to create additional relay candidate for %s: %v", ip, err)
|
|
|
|
continue
|
|
}
|
|
}
|
|
}
|
|
|
|
// startNetworkMonitoring starts a goroutine that periodically checks for network changes
|
|
// and re-gathers candidates when changes are detected. This is only used with GatherContinually policy.
|
|
func (a *Agent) startNetworkMonitoring(ctx context.Context) {
|
|
ticker := time.NewTicker(a.networkMonitorInterval)
|
|
defer ticker.Stop()
|
|
|
|
for {
|
|
select {
|
|
case <-ctx.Done():
|
|
return
|
|
case <-ticker.C:
|
|
if a.detectNetworkChanges() {
|
|
a.gatherCandidatesInternal(ctx)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
// detectNetworkChanges checks if the network interfaces have changed since the last check.
|
|
func (a *Agent) detectNetworkChanges() bool {
|
|
// Try to refresh interfaces if using stdnet
|
|
if stdNet, ok := a.net.(*stdnet.Net); ok {
|
|
if err := stdNet.UpdateInterfaces(); err != nil {
|
|
a.log.Warnf("Failed to update interfaces: %v", err)
|
|
}
|
|
}
|
|
|
|
_, currentAddrs, err := localInterfaces(
|
|
a.net,
|
|
a.interfaceFilter,
|
|
a.ipFilter,
|
|
a.networkTypes,
|
|
a.includeLoopback,
|
|
)
|
|
if err != nil {
|
|
a.log.Warnf("Failed to get local interfaces during network monitoring: %v", err)
|
|
|
|
return false
|
|
}
|
|
|
|
currentInterfaces := make(map[string]netip.Addr)
|
|
for _, info := range currentAddrs {
|
|
key := info.addr.String()
|
|
currentInterfaces[key] = info.addr
|
|
}
|
|
|
|
hasAdditions := false
|
|
|
|
for key, addr := range currentInterfaces {
|
|
if _, exists := a.lastKnownInterfaces[key]; !exists {
|
|
a.log.Infof("New IP address detected: %s", addr)
|
|
hasAdditions = true
|
|
}
|
|
}
|
|
|
|
a.lastKnownInterfaces = currentInterfaces
|
|
|
|
return hasAdditions
|
|
}
|