nnss/tunsocks.sh

#!/bin/bash

set -xeuo pipefail

rtdir=${RUNTIME_DIRECTORY:-/tmp}
pidfile="$rtdir/tunsocks.pid"

nsname="$1"
device="tun${nsname}"
ns="${nsname}ns"

if [ "$2" = use_env ]; then
	proxy="$SOCKS_PROXY"
	shift
else
	proxy="socks5:///run/nnss-${nsname}/sock"
fi

setup() {
	ip tuntap add mode tun dev "$device"

	chan="$rtdir/chan"
	mkfifo "$chan"

	{
		sleep 10
		echo TIMEOUT >"$chan"
	} &
	timeout_pid=$!

	done_cmd="sh -c 'echo DONE > \"$chan\"'"

	tun2socks -device "$device" -proxy "$proxy" -tun-post-up "$done_cmd" &
	echo "$!" >"$pidfile"

	read -r status <"$chan"

	if [ "$status" = DONE ]; then
		kill "$timeout_pid"
	else
		echo "Failed: $status"
		return 1
	fi

	ip netns add "$ns"
	ip link set "$device" netns "$ns"

	ip -n "$ns" addr add 198.19.1.1/30 dev "$device"
	ip -n "$ns" link set dev "$device" up
	ip -n "$ns" route add default via 198.19.1.1 dev "$device" metric 100
	ip -n "$ns" link set lo up

	systemd-notify --ready
	wait
}

cleanup() {
	# Cleanup as much as possible. Don't stop on first error
	set +e

	# If the script failed after creating the device before moving it to namespace
	ip tuntap del mode tun dev "$device"

	# Regular cleanup when when shutdown normally
	kill "$(cat "$pidfile")"
	ip -n "$ns" tuntap del mode tun dev "$device"
	ip netns del "$ns"
}

$2
initial commit 2025-01-30 15:43:45 -05:00			`#!/bin/bash`

			`set -xeuo pipefail`

Replace hardcoded sleep with wait with timeout 2025-03-01 17:02:57 -05:00			`rtdir=${RUNTIME_DIRECTORY:-/tmp}`
			`pidfile="$rtdir/tunsocks.pid"`
initial commit 2025-01-30 15:43:45 -05:00
			`nsname="$1"`
			`device="tun${nsname}"`
			`ns="${nsname}ns"`
Support direct socks proxy without ssh 2025-02-27 11:05:11 -05:00
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`if [ "$2" = use_env ]; then`
			`proxy="$SOCKS_PROXY"`
			`shift`
Support direct socks proxy without ssh 2025-02-27 11:05:11 -05:00			`else`
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`proxy="socks5:///run/nnss-${nsname}/sock"`
Support direct socks proxy without ssh 2025-02-27 11:05:11 -05:00			`fi`
initial commit 2025-01-30 15:43:45 -05:00
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`setup() {`
			`ip tuntap add mode tun dev "$device"`
initial commit 2025-01-30 15:43:45 -05:00
Replace hardcoded sleep with wait with timeout 2025-03-01 17:02:57 -05:00			`chan="$rtdir/chan"`
			`mkfifo "$chan"`

			`{`
			`sleep 10`
			`echo TIMEOUT >"$chan"`
			`} &`
			`timeout_pid=$!`

			`done_cmd="sh -c 'echo DONE > \"$chan\"'"`

Update README.md 2025-03-01 19:00:11 -05:00			`tun2socks -device "$device" -proxy "$proxy" -tun-post-up "$done_cmd" &`
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`echo "$!" >"$pidfile"`
Replace hardcoded sleep with wait with timeout 2025-03-01 17:02:57 -05:00
			`read -r status <"$chan"`

			`if [ "$status" = DONE ]; then`
			`kill "$timeout_pid"`
			`else`
			`echo "Failed: $status"`
			`return 1`
			`fi`
initial commit 2025-01-30 15:43:45 -05:00
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`ip netns add "$ns"`
			`ip link set "$device" netns "$ns"`
initial commit 2025-01-30 15:43:45 -05:00
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`ip -n "$ns" addr add 198.19.1.1/30 dev "$device"`
			`ip -n "$ns" link set dev "$device" up`
			`ip -n "$ns" route add default via 198.19.1.1 dev "$device" metric 100`
			`ip -n "$ns" link set lo up`
Replace hardcoded sleep with wait with timeout 2025-03-01 17:02:57 -05:00
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`systemd-notify --ready`
			`wait`
initial commit 2025-01-30 15:43:45 -05:00			`}`

shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`cleanup() {`
Replace hardcoded sleep with wait with timeout 2025-03-01 17:02:57 -05:00			`# Cleanup as much as possible. Don't stop on first error`
			`set +e`

			`# If the script failed after creating the device before moving it to namespace`
			`ip tuntap del mode tun dev "$device"`

			`# Regular cleanup when when shutdown normally`
shfmt tunsocks.sh 2025-03-01 16:56:40 -05:00			`kill "$(cat "$pidfile")"`
			`ip -n "$ns" tuntap del mode tun dev "$device"`
			`ip netns del "$ns"`
initial commit 2025-01-30 15:43:45 -05:00			`}`

			`$2`