fix : wireguard kernel mode max route table index

XTLS · Nov 27, 2023 · e062d63 · e062d63
1 parent 6959cfd
commit e062d63
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 7 deletions.
diff --git a/proxy/wireguard/netlink/help_handle_linux.go b/proxy/wireguard/netlink/help_handle_linux.go
@@ -6,16 +6,17 @@ import (
 	"github.com/vishvananda/netlink"
 )
 
-func (h *Handle) EmptyRouteTableIndex(family, from int) (out int, err error) {
-	r := &netlink.Route{Table: from}
+func (h *Handle) EmptyRouteTableIndex(family int) (out int, err error) {
+	// maximum table index is 1023
+	r := &netlink.Route{Table: 1023}
 	for ; r.Table >= 0; r.Table-- {
 		routeList, fErr := netlink.RouteListFiltered(family, r, netlink.RT_FILTER_TABLE)
 		if len(routeList) == 0 || fErr != nil {
 			break
 		}
 	}
 	if r.Table < 0 {
-		return 0, fmt.Errorf("failed to find available family[%d] from[%d] table index", family, from)
+		return 0, fmt.Errorf("failed to find available family[%d] table index", family)
 	}
 	return r.Table, nil
 }
diff --git a/proxy/wireguard/tun_kernel_linux.go b/proxy/wireguard/tun_kernel_linux.go
@@ -218,17 +218,17 @@ func createKernelTun(localAddresses []netip.Addr, mtu int, handler promiscuousMo
 		}
 	}()
 
-	ipv4TableIndex := 3000
+	ipv4TableIndex := -1
 	if v4Enable {
-		ipv4TableIndex, err = out.handle.EmptyRouteTableIndex(netlink.FAMILY_V4, ipv4TableIndex)
+		ipv4TableIndex, err = out.handle.EmptyRouteTableIndex(netlink.FAMILY_V4)
 		if err != nil {
 			return nil, err
 		}
 	}
 
-	ipv6TableIndex := 3000
+	ipv6TableIndex := -1
 	if v6Enable {
-		ipv6TableIndex, err = out.handle.EmptyRouteTableIndex(netlink.FAMILY_V6, ipv6TableIndex)
+		ipv6TableIndex, err = out.handle.EmptyRouteTableIndex(netlink.FAMILY_V6)
 		if err != nil {
 			return nil, err
 		}