diff options
Diffstat (limited to 'WireGuard/WireGuard/ConfigFile/WgQuickConfigFileParser.swift')
-rw-r--r-- | WireGuard/WireGuard/ConfigFile/WgQuickConfigFileParser.swift | 157 |
1 files changed, 157 insertions, 0 deletions
diff --git a/WireGuard/WireGuard/ConfigFile/WgQuickConfigFileParser.swift b/WireGuard/WireGuard/ConfigFile/WgQuickConfigFileParser.swift new file mode 100644 index 0000000..b2688e3 --- /dev/null +++ b/WireGuard/WireGuard/ConfigFile/WgQuickConfigFileParser.swift @@ -0,0 +1,157 @@ +// SPDX-License-Identifier: MIT +// Copyright © 2018 WireGuard LLC. All rights reserved. + +import Foundation + +class WgQuickConfigFileParser { + + enum ParserState { + case inInterfaceSection + case inPeerSection + case notInASection + } + + enum ParseError: Error { + case invalidLine(_ line: String.SubSequence) + case noInterface + case invalidInterface + case multipleInterfaces + case invalidPeer + } + + // Based on the parser written by Eric Kuck <eric@bluelinelabs.com> in commit 5ef1656 + + static func parse(_ text: String, name: String) throws -> TunnelConfiguration { + + assert(!name.isEmpty) + + func collate(interfaceAttributes attributes: [String:String]) -> InterfaceConfiguration? { + // required wg fields + guard let privateKeyString = attributes["PrivateKey"] else { return nil } + guard let privateKey = Data(base64Encoded: privateKeyString), privateKey.count == 32 else { return nil } + var interface = InterfaceConfiguration(name: name, privateKey: privateKey) + // other wg fields + if let listenPortString = attributes["ListenPort"] { + guard let listenPort = UInt16(listenPortString) else { return nil } + interface.listenPort = listenPort + } + // wg-quick fields + if let addressesString = attributes["Address"] { + var addresses: [IPAddressRange] = [] + for addressString in addressesString.split(separator: ",") { + let trimmedString = addressString.trimmingCharacters(in: .whitespaces) + guard let address = IPAddressRange(from: trimmedString) else { return nil } + addresses.append(address) + } + interface.addresses = addresses + } + if let dnsString = attributes["DNS"] { + var dnsServers: [DNSServer] = [] + for dnsServerString in dnsString.split(separator: ",") { + let trimmedString = dnsServerString.trimmingCharacters(in: .whitespaces) + guard let dnsServer = DNSServer(from: trimmedString) else { return nil } + dnsServers.append(dnsServer) + } + interface.dns = dnsServers + } + if let mtuString = attributes["MTU"] { + guard let mtu = UInt16(mtuString) else { return nil } + interface.mtu = mtu + } + return interface + } + + func collate(peerAttributes attributes: [String:String]) -> PeerConfiguration? { + // required wg fields + guard let publicKeyString = attributes["PublicKey"] else { return nil } + guard let publicKey = Data(base64Encoded: publicKeyString), publicKey.count == 32 else { return nil } + var peer = PeerConfiguration(publicKey: publicKey) + // wg fields + if let preSharedKeyString = attributes["PreSharedKey"] { + guard let preSharedKey = Data(base64Encoded: preSharedKeyString), preSharedKey.count == 32 else { return nil } + peer.preSharedKey = preSharedKey + } + if let allowedIPsString = attributes["AllowedIPs"] { + var allowedIPs: [IPAddressRange] = [] + for allowedIPString in allowedIPsString.split(separator: ",") { + let trimmedString = allowedIPString.trimmingCharacters(in: CharacterSet.whitespacesAndNewlines) + guard let allowedIP = IPAddressRange(from: trimmedString) else { return nil } + allowedIPs.append(allowedIP) + } + peer.allowedIPs = allowedIPs + } + if let endpointString = attributes["Endpoint"] { + guard let endpoint = Endpoint(from: endpointString) else { return nil } + peer.endpoint = endpoint + } + if let persistentKeepAliveString = attributes["PersistentKeepalive"] { + guard let persistentKeepAlive = UInt16(persistentKeepAliveString) else { return nil } + peer.persistentKeepAlive = persistentKeepAlive + } + return peer + } + + var interfaceConfiguration: InterfaceConfiguration? = nil + var peerConfigurations: [PeerConfiguration] = [] + + let lines = text.split(separator: "\n") + + var parserState: ParserState = .notInASection + var attributes: [String:String] = [:] + + for (lineIndex, line) in lines.enumerated() { + var trimmedLine: String + if let commentRange = line.range(of: "#") { + trimmedLine = String(line[..<commentRange.lowerBound]) + } else { + trimmedLine = String(line) + } + + trimmedLine = trimmedLine.trimmingCharacters(in: .whitespaces) + + guard trimmedLine.count > 0 else { continue } + let lowercasedLine = line.lowercased() + + if let equalsIndex = line.firstIndex(of: "=") { + // Line contains an attribute + let key = line[..<equalsIndex].trimmingCharacters(in: .whitespaces) + let value = line[line.index(equalsIndex, offsetBy: 1)...].trimmingCharacters(in: .whitespaces) + attributes[key] = value + } else { + if (lowercasedLine != "[interface]" && lowercasedLine != "[peer]") { + throw ParseError.invalidLine(line) + } + } + + let isLastLine: Bool = (lineIndex == lines.count - 1) + + if (isLastLine || lowercasedLine == "[interface]" || lowercasedLine == "[peer]") { + // Previous section has ended; process the attributes collected so far + if (parserState == .inInterfaceSection) { + guard let interface = collate(interfaceAttributes: attributes) else { throw ParseError.invalidInterface } + guard (interfaceConfiguration == nil) else { throw ParseError.multipleInterfaces } + interfaceConfiguration = interface + } else if (parserState == .inPeerSection) { + guard let peer = collate(peerAttributes: attributes) else { throw ParseError.invalidPeer } + peerConfigurations.append(peer) + } + } + + if (lowercasedLine == "[interface]") { + parserState = .inInterfaceSection + attributes.removeAll() + } else if (lowercasedLine == "[peer]") { + parserState = .inPeerSection + attributes.removeAll() + } + } + + if let interfaceConfiguration = interfaceConfiguration { + let tunnelConfiguration = TunnelConfiguration(interface: interfaceConfiguration) + tunnelConfiguration.peers = peerConfigurations + return tunnelConfiguration + } else { + throw ParseError.noInterface + } + } +} |