github.com/mysteriumnetwork/node@v0.0.0-20240516044423-365054f76801/services/wireguard/endpoint/netstack-provider/private.go (about) 1 /* 2 * Copyright (C) 2022 The "MysteriumNetwork/node" Authors. 3 * 4 * This program is free software: you can redistribute it and/or modify 5 * it under the terms of the GNU General Public License as published by 6 * the Free Software Foundation, either version 3 of the License, or 7 * (at your option) any later version. 8 * 9 * This program is distributed in the hope that it will be useful, 10 * but WITHOUT ANY WARRANTY; without even the implied warranty of 11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 * GNU General Public License for more details. 13 * 14 * You should have received a copy of the GNU General Public License 15 * along with this program. If not, see <http://www.gnu.org/licenses/>. 16 */ 17 18 package netstack_provider 19 20 import ( 21 "net" 22 23 "gvisor.dev/gvisor/pkg/tcpip" 24 ) 25 26 func parseCIDR(cidrs []string) []*net.IPNet { 27 ipnets := make([]*net.IPNet, 0, len(cidrs)) 28 for _, cidr := range cidrs { 29 _, ipnet, err := net.ParseCIDR(cidr) 30 if err != nil { 31 continue 32 } 33 ipnets = append(ipnets, ipnet) 34 } 35 return ipnets 36 } 37 38 // isPublicAddr retruns true if the IP is private / restricted 39 func (tun *netTun) isPrivateIP(ip net.IP) bool { 40 41 // allow access to local address of Wireguard provider, like 10.182.0.1 42 if tun.isLocal(tcpip.AddrFromSlice(ip)) { 43 return false 44 } 45 46 for _, block := range tun.privateIPv4Blocks { 47 if block.Contains(ip) { 48 return true 49 } 50 } 51 return false 52 }