Home Explore Help
Sign In
Tailscale
/
tailscale
mirror of https://github.com/tailscale/tailscale.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: f715ee2be9
Branches Tags
tailscale
/
wgengine
/
netstack
/
netstack_userping.go

netstack_userping.go 2.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. // Copyright (c) Tailscale Inc & AUTHORS
    2. 

  2. // SPDX-License-Identifier: BSD-3-Clause
    3. 

  3. 

  4. //go:build !darwin && !ios
    5. 

  5. 

  6. package netstack
    7. 

  7. 

  8. import (
    9. 

  9. 	"errors"
    10. 

  10. 	"net/netip"
    11. 

  11. 	"os"
    12. 

  12. 	"os/exec"
    13. 

  13. 	"runtime"
    14. 

  14. 	"time"
    15. 

  15. 

  16. 	"tailscale.com/version/distro"
    17. 

  17. )
    18. 

  18. 

  19. // setAmbientCapsRaw is non-nil on Linux for Synology, to run ping with
    20. 

  20. // CAP_NET_RAW from tailscaled's binary.
    21. 

  21. var setAmbientCapsRaw func(*exec.Cmd)
    22. 

  22. 

  23. var isSynology = runtime.GOOS == "linux" && distro.Get() == distro.Synology
    24. 

  24. 

  25. // sendOutboundUserPing sends a non-privileged ICMP (or ICMPv6) ping to dstIP with the given timeout.
    26. 

  26. func (ns *Impl) sendOutboundUserPing(dstIP netip.Addr, timeout time.Duration) error {
    27. 

  27. 	var err error
    28. 

  28. 	switch runtime.GOOS {
    29. 

  29. 	case "windows":
    30. 

  30. 		var out []byte
    31. 

  31. 		out, err = exec.Command("ping", "-n", "1", "-w", "3000", dstIP.String()).CombinedOutput()
    32. 

  32. 		if err == nil && !windowsPingOutputIsSuccess(dstIP, out) {
    33. 

  33. 			// TODO(bradfitz,nickkhyl): return the actual ICMP error we heard back to the caller?
    34. 

  34. 			// For now we just drop it.
    35. 

  35. 			err = errors.New("unsuccessful ICMP reply received")
    36. 

  36. 		}
    37. 

  37. 	case "freebsd":
    38. 

  38. 		// Note: 2000 ms is actually 1 second + 2,000
    39. 

  39. 		// milliseconds extra for 3 seconds total.
    40. 

  40. 		// See https://github.com/tailscale/tailscale/pull/3753 for details.
    41. 

  41. 		ping := "ping"
    42. 

  42. 		if dstIP.Is6() {
    43. 

  43. 			ping = "ping6"
    44. 

  44. 		}
    45. 

  45. 		err = exec.Command(ping, "-c", "1", "-W", "2000", dstIP.String()).Run()
    46. 

  46. 	case "openbsd":
    47. 

  47. 		ping := "ping"
    48. 

  48. 		if dstIP.Is6() {
    49. 

  49. 			ping = "ping6"
    50. 

  50. 		}
    51. 

  51. 		err = exec.Command(ping, "-c", "1", "-w", "3", dstIP.String()).Run()
    52. 

  52. 	case "android":
    53. 

  53. 		ping := "/system/bin/ping"
    54. 

  54. 		if dstIP.Is6() {
    55. 

  55. 			ping = "/system/bin/ping6"
    56. 

  56. 		}
    57. 

  57. 		err = exec.Command(ping, "-c", "1", "-w", "3", dstIP.String()).Run()
    58. 

  58. 	default:
    59. 

  59. 		ping := "ping"
    60. 

  60. 		if isSynology {
    61. 

  61. 			ping = "/bin/ping"
    62. 

  62. 		}
    63. 

  63. 		cmd := exec.Command(ping, "-c", "1", "-W", "3", dstIP.String())
    64. 

  64. 		if isSynology && os.Getuid() != 0 {
    65. 

  65. 			// On DSM7 we run as non-root and need to pass
    66. 

  66. 			// CAP_NET_RAW if our binary has it.
    67. 

  67. 			setAmbientCapsRaw(cmd)
    68. 

  68. 		}
    69. 

  69. 		err = cmd.Run()
    70. 

  70. 	}
    71. 

  71. 	return err
    72. 

  72. }
    73.