void/amneziawg-go
2
0
Fork 0
mirror of https://github.com/amnezia-vpn/amneziawg-go.git synced 2025-08-03 18:22:50 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: add s3, s4

Browse source
This commit is contained in:
Mark Puha 2025-07-02 19:59:53 +02:00
parent 5680162c72
commit 05fbf0feb0
10 changed files with 235 additions and 108 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

59
device/awg/awg.go
View file

@ -1,11 +1,27 @@
package awg package awg
import ( import (
"bytes"
"sync" "sync"
"github.com/tevino/abool" "github.com/tevino/abool"
) )
type aSecCfgType struct {
IsSet bool
JunkPacketCount int
JunkPacketMinSize int
JunkPacketMaxSize int
InitHeaderJunkSize int
ResponseHeaderJunkSize int
CookieReplyHeaderJunkSize int
TransportHeaderJunkSize int
InitPacketMagicHeader uint32
ResponsePacketMagicHeader uint32
UnderloadPacketMagicHeader uint32
TransportPacketMagicHeader uint32
}
type Protocol struct { type Protocol struct {
IsASecOn abool.AtomicBool IsASecOn abool.AtomicBool
// TODO: revision the need of the mutex // TODO: revision the need of the mutex
@ -16,15 +32,36 @@ type Protocol struct {
HandshakeHandler SpecialHandshakeHandler HandshakeHandler SpecialHandshakeHandler
} }
type aSecCfgType struct { func (protocol *Protocol) CreateInitHeaderJunk() ([]byte, error) {
IsSet bool return protocol.createHeaderJunk(protocol.ASecCfg.InitHeaderJunkSize)
JunkPacketCount int }
JunkPacketMinSize int
JunkPacketMaxSize int func (protocol *Protocol) CreateResponseHeaderJunk() ([]byte, error) {
InitPacketJunkSize int return protocol.createHeaderJunk(protocol.ASecCfg.ResponseHeaderJunkSize)
ResponsePacketJunkSize int }
InitPacketMagicHeader uint32
ResponsePacketMagicHeader uint32 func (protocol *Protocol) CreateCookieReplyHeaderJunk() ([]byte, error) {
UnderloadPacketMagicHeader uint32 return protocol.createHeaderJunk(protocol.ASecCfg.CookieReplyHeaderJunkSize)
TransportPacketMagicHeader uint32 }
func (protocol *Protocol) CreateTransportHeaderJunk() ([]byte, error) {
return protocol.createHeaderJunk(protocol.ASecCfg.TransportHeaderJunkSize)
}
func (protocol *Protocol) createHeaderJunk(junkSize int) ([]byte, error) {
var junk []byte
protocol.ASecMux.RLock()
if junkSize != 0 {
buf := make([]byte, 0, junkSize)
writer := bytes.NewBuffer(buf[:0])
err := protocol.JunkCreator.AppendJunk(writer, junkSize)
if err != nil {
protocol.ASecMux.RUnlock()
return nil, err
}
junk = writer.Bytes()
}
protocol.ASecMux.RUnlock()
return junk, nil
} }

1
device/awg/junk_creator.go
View file

@ -12,6 +12,7 @@ type junkCreator struct {
cha8Rand *v2.ChaCha8 cha8Rand *v2.ChaCha8
} }
// TODO: refactor param to only pass the junk related params
func NewJunkCreator(aSecCfg aSecCfgType) (junkCreator, error) { func NewJunkCreator(aSecCfg aSecCfgType) (junkCreator, error) {
buf := make([]byte, 32) buf := make([]byte, 32)
_, err := crand.Read(buf) _, err := crand.Read(buf)

4
device/awg/junk_creator_test.go
View file

@ -12,8 +12,8 @@ func setUpJunkCreator(t *testing.T) (junkCreator, error) {
JunkPacketCount: 5, JunkPacketCount: 5,
JunkPacketMinSize: 500, JunkPacketMinSize: 500,
JunkPacketMaxSize: 1000, JunkPacketMaxSize: 1000,
InitPacketJunkSize: 30, InitHeaderJunkSize: 30,
ResponsePacketJunkSize: 40, ResponseHeaderJunkSize: 40,
InitPacketMagicHeader: 123456, InitPacketMagicHeader: 123456,
ResponsePacketMagicHeader: 67543, ResponsePacketMagicHeader: 67543,
UnderloadPacketMagicHeader: 32345, UnderloadPacketMagicHeader: 32345,

120
device/device.go
View file

@ -646,38 +646,111 @@ func (device *Device) handlePostConfig(tempAwg *awg.Protocol) error {
isASecOn = true isASecOn = true
} }
if MessageInitiationSize+tempAwg.ASecCfg.InitPacketJunkSize >= MaxSegmentSize { newInitSize := MessageInitiationSize + tempAwg.ASecCfg.InitHeaderJunkSize
if newInitSize >= MaxSegmentSize {
errs = append(errs, ipcErrorf( errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid, ipc.IpcErrorInvalid,
`init header size(148) + junkSize:%d; should be smaller than maxSegmentSize: %d`, `init header size(148) + junkSize:%d; should be smaller than maxSegmentSize: %d`,
tempAwg.ASecCfg.InitPacketJunkSize, tempAwg.ASecCfg.InitHeaderJunkSize,
MaxSegmentSize, MaxSegmentSize,
), ),
) )
} else { } else {
device.awg.ASecCfg.InitPacketJunkSize = tempAwg.ASecCfg.InitPacketJunkSize device.awg.ASecCfg.InitHeaderJunkSize = tempAwg.ASecCfg.InitHeaderJunkSize
} }
if tempAwg.ASecCfg.InitPacketJunkSize != 0 { if tempAwg.ASecCfg.InitHeaderJunkSize != 0 {
isASecOn = true isASecOn = true
} }
if MessageResponseSize+tempAwg.ASecCfg.ResponsePacketJunkSize >= MaxSegmentSize { newResponseSize := MessageResponseSize + tempAwg.ASecCfg.ResponseHeaderJunkSize
if newResponseSize >= MaxSegmentSize {
errs = append(errs, ipcErrorf( errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid, ipc.IpcErrorInvalid,
`response header size(92) + junkSize:%d; should be smaller than maxSegmentSize: %d`, `response header size(92) + junkSize:%d; should be smaller than maxSegmentSize: %d`,
tempAwg.ASecCfg.ResponsePacketJunkSize, tempAwg.ASecCfg.ResponseHeaderJunkSize,
MaxSegmentSize, MaxSegmentSize,
), ),
) )
} else { } else {
device.awg.ASecCfg.ResponsePacketJunkSize = tempAwg.ASecCfg.ResponsePacketJunkSize device.awg.ASecCfg.ResponseHeaderJunkSize = tempAwg.ASecCfg.ResponseHeaderJunkSize
} }
if tempAwg.ASecCfg.ResponsePacketJunkSize != 0 { if tempAwg.ASecCfg.ResponseHeaderJunkSize != 0 {
isASecOn = true isASecOn = true
} }
newCookieSize := MessageCookieReplySize + tempAwg.ASecCfg.CookieReplyHeaderJunkSize
if newCookieSize >= MaxSegmentSize {
errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid,
`cookie reply size(92) + junkSize:%d; should be smaller than maxSegmentSize: %d`,
tempAwg.ASecCfg.CookieReplyHeaderJunkSize,
MaxSegmentSize,
),
)
} else {
device.awg.ASecCfg.CookieReplyHeaderJunkSize = tempAwg.ASecCfg.CookieReplyHeaderJunkSize
}
if tempAwg.ASecCfg.CookieReplyHeaderJunkSize != 0 {
isASecOn = true
}
newTransportSize := MessageTransportSize + tempAwg.ASecCfg.TransportHeaderJunkSize
if newTransportSize >= MaxSegmentSize {
errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid,
`transport size(92) + junkSize:%d; should be smaller than maxSegmentSize: %d`,
tempAwg.ASecCfg.TransportHeaderJunkSize,
MaxSegmentSize,
),
)
} else {
device.awg.ASecCfg.TransportHeaderJunkSize = tempAwg.ASecCfg.TransportHeaderJunkSize
}
if tempAwg.ASecCfg.TransportHeaderJunkSize != 0 {
isASecOn = true
}
isSameSizeMap := map[int]struct{}{
newInitSize: {},
newResponseSize: {},
newCookieSize: {},
newTransportSize: {},
}
if len(isSameSizeMap) != 4 {
errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid,
`new sizes should differ; init: %d; response: %d; cookie: %d; trans: %d`,
newInitSize,
newResponseSize,
newCookieSize,
newTransportSize,
),
)
} else {
packetSizeToMsgType = map[int]uint32{
newInitSize: MessageInitiationType,
newResponseSize: MessageResponseType,
newCookieSize: MessageCookieReplyType,
newTransportSize: MessageTransportType,
}
msgTypeToJunkSize = map[uint32]int{
MessageInitiationType: device.awg.ASecCfg.InitHeaderJunkSize,
MessageResponseType: device.awg.ASecCfg.ResponseHeaderJunkSize,
MessageCookieReplyType: device.awg.ASecCfg.CookieReplyHeaderJunkSize,
MessageTransportType: device.awg.ASecCfg.TransportHeaderJunkSize,
}
}
if tempAwg.ASecCfg.InitPacketMagicHeader > 4 { if tempAwg.ASecCfg.InitPacketMagicHeader > 4 {
isASecOn = true isASecOn = true
device.log.Verbosef("UAPI: Updating init_packet_magic_header") device.log.Verbosef("UAPI: Updating init_packet_magic_header")
@ -718,7 +791,7 @@ func (device *Device) handlePostConfig(tempAwg *awg.Protocol) error {
MessageTransportType = DefaultMessageTransportType MessageTransportType = DefaultMessageTransportType
} }
isSameMap := map[uint32]struct{}{ isSameHeaderMap := map[uint32]struct{}{
MessageInitiationType: {}, MessageInitiationType: {},
MessageResponseType: {}, MessageResponseType: {},
MessageCookieReplyType: {}, MessageCookieReplyType: {},
@ -726,7 +799,7 @@ func (device *Device) handlePostConfig(tempAwg *awg.Protocol) error {
} }
// size will be different if same values // size will be different if same values
if len(isSameMap) != 4 { if len(isSameHeaderMap) != 4 {
errs = append(errs, ipcErrorf( errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid, ipc.IpcErrorInvalid,
`magic headers should differ; got: init:%d; recv:%d; unde:%d; tran:%d`, `magic headers should differ; got: init:%d; recv:%d; unde:%d; tran:%d`,
@ -738,33 +811,6 @@ func (device *Device) handlePostConfig(tempAwg *awg.Protocol) error {
) )
} }
newInitSize := MessageInitiationSize + device.awg.ASecCfg.InitPacketJunkSize
newResponseSize := MessageResponseSize + device.awg.ASecCfg.ResponsePacketJunkSize
if newInitSize == newResponseSize {
errs = append(errs, ipcErrorf(
ipc.IpcErrorInvalid,
`new init size:%d; and new response size:%d; should differ`,
newInitSize,
newResponseSize,
),
)
} else {
packetSizeToMsgType = map[int]uint32{
newInitSize: MessageInitiationType,
newResponseSize: MessageResponseType,
MessageCookieReplySize: MessageCookieReplyType,
MessageTransportSize: MessageTransportType,
}
msgTypeToJunkSize = map[uint32]int{
MessageInitiationType: device.awg.ASecCfg.InitPacketJunkSize,
MessageResponseType: device.awg.ASecCfg.ResponsePacketJunkSize,
MessageCookieReplyType: 0,
MessageTransportType: 0,
}
}
device.awg.IsASecOn.SetTo(isASecOn) device.awg.IsASecOn.SetTo(isASecOn)
var err error var err error
device.awg.JunkCreator, err = awg.NewJunkCreator(device.awg.ASecCfg) device.awg.JunkCreator, err = awg.NewJunkCreator(device.awg.ASecCfg)

34
device/device_test.go
View file

@ -17,6 +17,7 @@ import (
"os/signal" "os/signal"
"runtime" "runtime"
"runtime/pprof" "runtime/pprof"
"strconv"
"sync" "sync"
"testing" "testing"
"time" "time"
@ -129,6 +130,7 @@ func (pair *testPair) Send(
tb testing.TB, tb testing.TB,
ping SendDirection, ping SendDirection,
done chan struct{}, done chan struct{},
optTransportJunk ...int,
) { ) {
tb.Helper() tb.Helper()
p0, p1 := pair[0], pair[1] p0, p1 := pair[0], pair[1]
@ -136,6 +138,12 @@ func (pair *testPair) Send(
// pong is the new ping // pong is the new ping
p0, p1 = p1, p0 p0, p1 = p1, p0
} }
transportJunk := 0
if len(optTransportJunk) > 0 {
transportJunk = optTransportJunk[0]
}
msg := tuntest.Ping(p0.ip, p1.ip) msg := tuntest.Ping(p0.ip, p1.ip)
p1.tun.Outbound <- msg p1.tun.Outbound <- msg
timer := time.NewTimer(6 * time.Second) timer := time.NewTimer(6 * time.Second)
@ -143,7 +151,10 @@ func (pair *testPair) Send(
var err error var err error
select { select {
case msgRecv := <-p0.tun.Inbound: case msgRecv := <-p0.tun.Inbound:
if !bytes.Equal(msg, msgRecv) { fmt.Printf("%x\n", msg)
fmt.Printf("%x\n", msgRecv[transportJunk:])
fmt.Printf("%x\n", msgRecv)
if !bytes.Equal(msg, msgRecv[transportJunk:]) {
err = fmt.Errorf("%s did not transit correctly", ping) err = fmt.Errorf("%s did not transit correctly", ping)
} }
case <-timer.C: case <-timer.C:
@ -226,22 +237,27 @@ func TestTwoDevicePing(t *testing.T) {
// Run test with -race=false to avoid the race for setting the default msgTypes 2 times // Run test with -race=false to avoid the race for setting the default msgTypes 2 times
func TestAWGDevicePing(t *testing.T) { func TestAWGDevicePing(t *testing.T) {
goroutineLeakCheck(t) goroutineLeakCheck(t)
transportJunk := 5
pair := genTestPair(t, true, pair := genTestPair(t, true,
"jc", "5", "jc", "5",
"jmin", "500", "jmin", "500",
"jmax", "1000", "jmax", "1000",
"s1", "30", // "s1", "30",
"s2", "40", // "s2", "40",
"h1", "123456", "s3", "50",
"h2", "67543", "s4", strconv.Itoa(transportJunk),
"h4", "32345", // "h1", "123456",
"h3", "123123", // "h2", "67543",
// "h3", "123123",
// "h4", "32345",
) )
t.Run("ping 1.0.0.1", func(t *testing.T) { t.Run("ping 1.0.0.1", func(t *testing.T) {
pair.Send(t, Ping, nil) pair.Send(t, Ping, nil, transportJunk)
}) })
t.Run("ping 1.0.0.2", func(t *testing.T) { t.Run("ping 1.0.0.2", func(t *testing.T) {
pair.Send(t, Pong, nil) pair.Send(t, Pong, nil, transportJunk)
}) })
} }

7
device/noise-protocol.go
View file

@ -82,9 +82,10 @@ const (
MessageTransportOffsetContent = 16 MessageTransportOffsetContent = 16
) )
var packetSizeToMsgType map[int]uint32 var (
packetSizeToMsgType map[int]uint32
var msgTypeToJunkSize map[uint32]int msgTypeToJunkSize map[uint32]int
)
/* Type is an 8-bit field, followed by 3 nul bytes, /* Type is an 8-bit field, followed by 3 nul bytes,
* by marshalling the messages in little-endian byteorder * by marshalling the messages in little-endian byteorder

20
device/peer.go
View file

@ -114,6 +114,16 @@ func (device *Device) NewPeer(pk NoisePublicKey) (*Peer, error) {
return peer, nil return peer, nil
} }
func (peer *Peer) SendAndCountBuffers(buffers [][]byte) error {
err := peer.SendBuffers(buffers)
if err == nil {
awg.PacketCounter.Add(uint64(len(buffers)))
return nil
}
return err
}
func (peer *Peer) SendBuffers(buffers [][]byte) error { func (peer *Peer) SendBuffers(buffers [][]byte) error {
peer.device.net.RLock() peer.device.net.RLock()
defer peer.device.net.RUnlock() defer peer.device.net.RUnlock()
@ -145,16 +155,6 @@ func (peer *Peer) SendBuffers(buffers [][]byte) error {
return err return err
} }
func (peer *Peer) SendAndCountBuffers(buffers [][]byte) error {
err := peer.SendBuffers(buffers)
if err == nil {
awg.PacketCounter.Add(uint64(len(buffers)))
return nil
}
return err
}
func (peer *Peer) String() string { func (peer *Peer) String() string {
// The awful goo that follows is identical to: // The awful goo that follows is identical to:
// //

5
device/receive.go
View file

@ -157,12 +157,15 @@ func (device *Device) RoutineReceiveIncoming(
msgType = binary.LittleEndian.Uint32(packet[:4]) msgType = binary.LittleEndian.Uint32(packet[:4])
} }
} else { } else {
msgType = binary.LittleEndian.Uint32(packet[:4]) transportJunkSize := device.awg.ASecCfg.TransportHeaderJunkSize
msgType = binary.LittleEndian.Uint32(packet[transportJunkSize : transportJunkSize+4])
if msgType != MessageTransportType { if msgType != MessageTransportType {
// probably a junk packet // probably a junk packet
device.log.Verbosef("aSec: Received message with unknown type: %d", msgType) device.log.Verbosef("aSec: Received message with unknown type: %d", msgType)
continue continue
} }
packet = packet[transportJunkSize:]
} }
} else { } else {
msgType = binary.LittleEndian.Uint32(packet[:4]) msgType = binary.LittleEndian.Uint32(packet[:4])

45
device/send.go
View file

@ -124,9 +124,9 @@ func (peer *Peer) SendHandshakeInitiation(isRetry bool) error {
return err return err
} }
var sendBuffer [][]byte var sendBuffer [][]byte
// so only packet processed for cookie generation // so only packet processed for cookie generation
var junkedHeader []byte var junkedHeader []byte
if peer.device.version >= VersionAwg { if peer.device.version >= VersionAwg {
var junks [][]byte var junks [][]byte
if peer.device.version == VersionAwgSpecialHandshake { if peer.device.version == VersionAwgSpecialHandshake {
@ -163,19 +163,11 @@ func (peer *Peer) SendHandshakeInitiation(isRetry bool) error {
} }
} }
peer.device.awg.ASecMux.RLock() junkedHeader, err = peer.device.awg.CreateInitHeaderJunk()
if peer.device.awg.ASecCfg.InitPacketJunkSize != 0 {
buf := make([]byte, 0, peer.device.awg.ASecCfg.InitPacketJunkSize)
writer := bytes.NewBuffer(buf[:0])
err = peer.device.awg.JunkCreator.AppendJunk(writer, peer.device.awg.ASecCfg.InitPacketJunkSize)
if err != nil { if err != nil {
peer.device.log.Errorf("%v - %v", peer, err) peer.device.log.Errorf("%v - %v", peer, err)
peer.device.awg.ASecMux.RUnlock()
return err return err
} }
junkedHeader = writer.Bytes()
}
peer.device.awg.ASecMux.RUnlock()
} }
var buf [MessageInitiationSize]byte var buf [MessageInitiationSize]byte
@ -211,22 +203,13 @@ func (peer *Peer) SendHandshakeResponse() error {
peer.device.log.Errorf("%v - Failed to create response message: %v", peer, err) peer.device.log.Errorf("%v - Failed to create response message: %v", peer, err)
return err return err
} }
var junkedHeader []byte
if peer.device.isAWG() { junkedHeader, err := peer.device.awg.CreateResponseHeaderJunk()
peer.device.awg.ASecMux.RLock()
if peer.device.awg.ASecCfg.ResponsePacketJunkSize != 0 {
buf := make([]byte, 0, peer.device.awg.ASecCfg.ResponsePacketJunkSize)
writer := bytes.NewBuffer(buf[:0])
err = peer.device.awg.JunkCreator.AppendJunk(writer, peer.device.awg.ASecCfg.ResponsePacketJunkSize)
if err != nil { if err != nil {
peer.device.awg.ASecMux.RUnlock()
peer.device.log.Errorf("%v - %v", peer, err) peer.device.log.Errorf("%v - %v", peer, err)
return err return err
} }
junkedHeader = writer.Bytes()
}
peer.device.awg.ASecMux.RUnlock()
}
var buf [MessageResponseSize]byte var buf [MessageResponseSize]byte
writer := bytes.NewBuffer(buf[:0]) writer := bytes.NewBuffer(buf[:0])
@ -269,11 +252,19 @@ func (device *Device) SendHandshakeCookie(
return err return err
} }
junkedHeader, err := device.awg.CreateCookieReplyHeaderJunk()
if err != nil {
device.log.Errorf("%v - %v", device, err)
return err
}
var buf [MessageCookieReplySize]byte var buf [MessageCookieReplySize]byte
writer := bytes.NewBuffer(buf[:0]) writer := bytes.NewBuffer(buf[:0])
binary.Write(writer, binary.LittleEndian, reply) binary.Write(writer, binary.LittleEndian, reply)
junkedHeader = append(junkedHeader, writer.Bytes()...)
// TODO: allocation could be avoided // TODO: allocation could be avoided
device.net.bind.Send([][]byte{writer.Bytes()}, initiatingElem.endpoint) device.net.bind.Send([][]byte{junkedHeader}, initiatingElem.endpoint)
return nil return nil
} }
@ -593,6 +584,13 @@ func (peer *Peer) RoutineSequentialSender(maxBatchSize int) {
for _, elem := range elemsContainer.elems { for _, elem := range elemsContainer.elems {
if len(elem.packet) != MessageKeepaliveSize { if len(elem.packet) != MessageKeepaliveSize {
dataSent = true dataSent = true
junkedHeader, err := device.awg.CreateTransportHeaderJunk()
if err != nil {
device.log.Errorf("%v - %v", device, err)
continue
}
elem.packet = append(junkedHeader, elem.packet...)
} }
bufs = append(bufs, elem.packet) bufs = append(bufs, elem.packet)
} }
@ -604,6 +602,7 @@ func (peer *Peer) RoutineSequentialSender(maxBatchSize int) {
if dataSent { if dataSent {
peer.timersDataSent() peer.timersDataSent()
} }
for _, elem := range elemsContainer.elems { for _, elem := range elemsContainer.elems {
device.PutMessageBuffer(elem.buffer) device.PutMessageBuffer(elem.buffer)
device.PutOutboundElement(elem) device.PutOutboundElement(elem)

36
device/uapi.go
View file

@ -108,11 +108,17 @@ func (device *Device) IpcGetOperation(w io.Writer) error {
if device.awg.ASecCfg.JunkPacketMaxSize != 0 { if device.awg.ASecCfg.JunkPacketMaxSize != 0 {
sendf("jmax=%d", device.awg.ASecCfg.JunkPacketMaxSize) sendf("jmax=%d", device.awg.ASecCfg.JunkPacketMaxSize)
} }
if device.awg.ASecCfg.InitPacketJunkSize != 0 { if device.awg.ASecCfg.InitHeaderJunkSize != 0 {
sendf("s1=%d", device.awg.ASecCfg.InitPacketJunkSize) sendf("s1=%d", device.awg.ASecCfg.InitHeaderJunkSize)
} }
if device.awg.ASecCfg.ResponsePacketJunkSize != 0 { if device.awg.ASecCfg.ResponseHeaderJunkSize != 0 {
sendf("s2=%d", device.awg.ASecCfg.ResponsePacketJunkSize) sendf("s2=%d", device.awg.ASecCfg.ResponseHeaderJunkSize)
}
if device.awg.ASecCfg.CookieReplyHeaderJunkSize != 0 {
sendf("s3=%d", device.awg.ASecCfg.CookieReplyHeaderJunkSize)
}
if device.awg.ASecCfg.TransportHeaderJunkSize != 0 {
sendf("s4=%d", device.awg.ASecCfg.TransportHeaderJunkSize)
} }
if device.awg.ASecCfg.InitPacketMagicHeader != 0 { if device.awg.ASecCfg.InitPacketMagicHeader != 0 {
sendf("h1=%d", device.awg.ASecCfg.InitPacketMagicHeader) sendf("h1=%d", device.awg.ASecCfg.InitPacketMagicHeader)
@ -333,7 +339,7 @@ func (device *Device) handleDeviceLine(key, value string, tempAwg *awg.Protocol)
return ipcErrorf(ipc.IpcErrorInvalid, "parse init_packet_junk_size %w", err) return ipcErrorf(ipc.IpcErrorInvalid, "parse init_packet_junk_size %w", err)
} }
device.log.Verbosef("UAPI: Updating init_packet_junk_size") device.log.Verbosef("UAPI: Updating init_packet_junk_size")
tempAwg.ASecCfg.InitPacketJunkSize = initPacketJunkSize tempAwg.ASecCfg.InitHeaderJunkSize = initPacketJunkSize
tempAwg.ASecCfg.IsSet = true tempAwg.ASecCfg.IsSet = true
case "s2": case "s2":
@ -342,7 +348,25 @@ func (device *Device) handleDeviceLine(key, value string, tempAwg *awg.Protocol)
return ipcErrorf(ipc.IpcErrorInvalid, "parse response_packet_junk_size %w", err) return ipcErrorf(ipc.IpcErrorInvalid, "parse response_packet_junk_size %w", err)
} }
device.log.Verbosef("UAPI: Updating response_packet_junk_size") device.log.Verbosef("UAPI: Updating response_packet_junk_size")
tempAwg.ASecCfg.ResponsePacketJunkSize = responsePacketJunkSize tempAwg.ASecCfg.ResponseHeaderJunkSize = responsePacketJunkSize
tempAwg.ASecCfg.IsSet = true
case "s3":
cookieReplyPacketJunkSize, err := strconv.Atoi(value)
if err != nil {
return ipcErrorf(ipc.IpcErrorInvalid, "parse cookie_reply_packet_junk_size %w", err)
}
device.log.Verbosef("UAPI: Updating cookie_reply_packet_junk_size")
tempAwg.ASecCfg.CookieReplyHeaderJunkSize = cookieReplyPacketJunkSize
tempAwg.ASecCfg.IsSet = true
case "s4":
transportPacketJunkSize, err := strconv.Atoi(value)
if err != nil {
return ipcErrorf(ipc.IpcErrorInvalid, "parse transport_packet_junk_size %w", err)
}
device.log.Verbosef("UAPI: Updating transport_packet_junk_size")
tempAwg.ASecCfg.TransportHeaderJunkSize = transportPacketJunkSize
tempAwg.ASecCfg.IsSet = true tempAwg.ASecCfg.IsSet = true
case "h1": case "h1":