Ruakij/wg-ipv6-converter
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: Ruakij:0.2
Branches Tags
Ruakij:main
Ruakij:dev
Ruakij:0.4
Ruakij:0.3
Ruakij:0.2
Ruakij:0.1
...
compare: Ruakij:main
Branches Tags
Ruakij:main
Ruakij:dev
Ruakij:0.4
Ruakij:0.3
Ruakij:0.2
Ruakij:0.1

9 Commits
0.2 ... main

Author SHA1 Message Date
Ruakij
a29f511550 Merge branch 'dev' 2025-04-22 12:18:35 +02:00
Ruakij
fe92030438 Default route handling for IPv6 conversion 2025-04-22 12:17:59 +02:00
Ruakij
80ee221226 Merge branch 'dev' 2023-04-12 20:00:16 +02:00
Ruakij
9b0ed5a51b go-format 2023-04-12 19:58:51 +02:00
Ruakij
0d6564448a Make faulture to add address fatal 2023-04-12 19:58:39 +02:00
Ruakij
ba6342a71f Move IP-conversion into loop 2023-04-12 19:57:57 +02:00
Ruakij
631b1bf12e Fix spelling 2023-04-12 19:50:41 +02:00
Ruakij
1ca4bd87b8 Merge branch 'dev' 2023-04-11 11:46:54 +02:00
Ruakij
f8c7493e0d Fix missing time-unit 2023-04-11 11:46:47 +02:00
2 changed files with 131 additions and 120 deletions
Show Stats Expand all files Collapse all files

4
README.md
View File

@ -24,6 +24,8 @@ The program will convert IPv4-only wireguard-interfaces to IPv6. It converts and
IPv6-Adresses are generated based on the IPv4-Adress. IPv6-Adresses are generated based on the IPv4-Adress.
If not filtered out, then default routes (0.0.0.0/0) are handled specially and are converted to the IPv6 default route (::/0).
Beware: This program needs `NET_ADMIN` privileges for setting Adresses and to access the wireguard-daemon. Beware: This program needs `NET_ADMIN` privileges for setting Adresses and to access the wireguard-daemon.
<br> <br>
@ -82,7 +84,7 @@ Restart=always
RestartSec=30 RestartSec=30
Environment="INTERFACE=wt0" Environment="INTERFACE=wt0"
Environment="RECHECK_INTERVAL=60" Environment="RECHECK_INTERVAL=60s"
[Install] [Install]
WantedBy=multi-user.target WantedBy=multi-user.target

47
cmd/app/main.go
View File

@ -17,6 +17,7 @@ import (
var envRequired = []string{ var envRequired = []string{
"INTERFACE", "INTERFACE",
} }
var envDefaults = map[string]string{ var envDefaults = map[string]string{
"IPV6_FORMAT": "fc12::%02x%02x:%02x%02x/%d", "IPV6_FORMAT": "fc12::%02x%02x:%02x%02x/%d",
"FILTER_PREFIX": "100.100", "FILTER_PREFIX": "100.100",
@ -26,7 +27,7 @@ var envDefaults = map[string]string{
func main() { func main() {
// Environment-vars // Environment-vars
err := envChecks.HandleRequired(envRequired) err := envChecks.HandleRequired(envRequired)
if(err != nil){ if err != nil {
logger.Error.Fatal(err) logger.Error.Fatal(err)
} }
envChecks.HandleDefaults(envDefaults) envChecks.HandleDefaults(envDefaults)
@ -39,7 +40,7 @@ func main() {
} }
ipv6Format := os.Getenv("IPV6_FORMAT") ipv6Format := os.Getenv("IPV6_FORMAT")
ipv6TestStr := *convertIPv4ToIPv6(&ipv6Format, &net.IPNet{IP: net.IPv4(1,1,1,1), Mask: net.CIDRMask(24, net.IPv4len)}) ipv6TestStr := *convertIPv4ToIPv6(&ipv6Format, &net.IPNet{IP: net.IPv4(1, 1, 1, 1), Mask: net.CIDRMask(24, net.IPv4len)})
_, err = netlink.ParseIPNet(ipv6TestStr) _, err = netlink.ParseIPNet(ipv6TestStr)
if err != nil { if err != nil {
logger.Error.Fatalf("IPV6_FORMAT is invalid: %s", err) logger.Error.Fatalf("IPV6_FORMAT is invalid: %s", err)
@ -53,7 +54,16 @@ func main() {
logger.Error.Fatalf("Couldn't parse RECHECK_INTERVAL '%s': %s", checkIntervalStr, err) logger.Error.Fatalf("Couldn't parse RECHECK_INTERVAL '%s': %s", checkIntervalStr, err)
} }
// Get the IPv4 address of the interface // Create a WireGuard client
client, err := wgctrl.New()
if err != nil {
logger.Error.Fatal(err)
}
defer client.Close()
// Loop indefinitely
for {
// Get the IPv4 addresses of the interface
addrs, err := netlink.AddrList(netInterface, netlink.FAMILY_V4) addrs, err := netlink.AddrList(netInterface, netlink.FAMILY_V4)
if err != nil { if err != nil {
logger.Error.Fatal(err) logger.Error.Fatal(err)
@ -82,24 +92,15 @@ func main() {
case os.IsExist(err): case os.IsExist(err):
logger.Warn.Println("Address is already set on interface") logger.Warn.Println("Address is already set on interface")
default: default:
logger.Warn.Printf("Failed to set address on interface: %v", err) logger.Error.Fatalf("Failed to set address on interface: %v", err)
} }
} }
processedCount++ processedCount++
} }
if(processedCount != len(addrs)) { if processedCount != len(addrs) {
logger.Warn.Printf("Not all Interface-Addresses were processed. Summary: %d processed, %d filtered, %d failed", processedCount, filteredCount, len(addrs)-processedCount-filteredCount) logger.Warn.Printf("Not all Interface-Addresses were processed. Summary: %d processed, %d filtered, %d failed", processedCount, filteredCount, len(addrs)-processedCount-filteredCount)
} }
// Create a WireGuard client
client, err := wgctrl.New()
if err != nil {
logger.Error.Fatal(err)
}
defer client.Close()
// Loop indefinitely
for {
// Get the WireGuard peers on the interface // Get the WireGuard peers on the interface
wgDevice, err := client.Device(iface) wgDevice, err := client.Device(iface)
if err != nil { if err != nil {
@ -111,7 +112,7 @@ func main() {
for _, peer := range wgDevice.Peers { for _, peer := range wgDevice.Peers {
// Create slice for 1 expected addition // Create slice for 1 expected addition
var addAllowedIPs = make([]net.IPNet, 0, 1) addAllowedIPs := make([]net.IPNet, 0, 1)
// Loop through the allowed-ips and add the ones starting with 100.100 // Loop through the allowed-ips and add the ones starting with 100.100
for _, allowedIP := range peer.AllowedIPs { for _, allowedIP := range peer.AllowedIPs {
@ -135,7 +136,7 @@ func main() {
} }
} }
if(len(addAllowedIPs) > 0){ if len(addAllowedIPs) > 0 {
// Create peer-config // Create peer-config
peerConfig := wgtypes.PeerConfig{ peerConfig := wgtypes.PeerConfig{
PublicKey: peer.PublicKey, PublicKey: peer.PublicKey,
@ -147,11 +148,11 @@ func main() {
} }
} }
if(len(wgConfig.Peers) == 0){ if len(wgConfig.Peers) == 0 {
logger.Info.Println("No changes, skipping") logger.Info.Println("No changes, skipping")
} else { } else {
err = client.ConfigureDevice(iface, wgConfig) err = client.ConfigureDevice(iface, wgConfig)
if(err != nil){ if err != nil {
logger.Error.Fatalf("Error configuring wg-device '%s': %s", iface, err) logger.Error.Fatalf("Error configuring wg-device '%s': %s", iface, err)
} }
} }
@ -161,7 +162,15 @@ func main() {
} }
} }
func convertIPv4ToIPv6(ipv6Format *string, ipv4 *net.IPNet) (*string) { func convertIPv4ToIPv6(ipv6Format *string, ipv4 *net.IPNet) *string {
// Check if this is a default route (0.0.0.0/0)
if ipv4.IP.Equal(net.IPv4zero) {
if ones, _ := ipv4.Mask.Size(); ones == 0 {
defaultRoute := "::/0"
return &defaultRoute
}
}
CIDR, _ := ipv4.Mask.Size() CIDR, _ := ipv4.Mask.Size()
// Run format // Run format
ipv6Str := fmt.Sprintf(*ipv6Format, (*ipv4).IP[0], (*ipv4).IP[1], (*ipv4).IP[2], (*ipv4).IP[3], net.IPv6len*8-(net.IPv4len*8-CIDR)) ipv6Str := fmt.Sprintf(*ipv6Format, (*ipv4).IP[0], (*ipv4).IP[1], (*ipv4).IP[2], (*ipv4).IP[3], net.IPv6len*8-(net.IPv4len*8-CIDR))