From 5ac4cde25c67c7a45241e29a325bb98d981829a2 Mon Sep 17 00:00:00 2001
From: Ain Ghazal <ainghazal42@gmail.com>
Date: Sun, 11 Feb 2024 20:15:45 +0100
Subject: [PATCH] bug: continue if received malformed input

should not return in the presence of malformed packets.

we still need to properly log & trace these events, but this is a first
defensive reaction to malformed input.

- Related: #67
---
 internal/packetmuxer/service.go | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/internal/packetmuxer/service.go b/internal/packetmuxer/service.go
index 004cb7fe..b1dda9e6 100644
--- a/internal/packetmuxer/service.go
+++ b/internal/packetmuxer/service.go
@@ -132,7 +132,8 @@ func (ws *workersState) moveUpWorker() {
 		case rawPacket := <-ws.networkToMuxer:
 			if err := ws.handleRawPacket(rawPacket); err != nil {
 				// error already printed
-				return
+				// TODO: trace malformed input
+				continue
 			}
 
 		case <-ws.hardResetTicker.C:
@@ -242,8 +243,15 @@ func (ws *workersState) handleRawPacket(rawPacket []byte) error {
 			// before we have a working session. Under normal operations, the
 			// connection in the client side should pick a different port,
 			// so that data sent from previous sessions will not be delivered.
-			// However, it does not harm to be defensive here.
-			return errors.New("not ready to handle data")
+			// However, it does not harm to be defensive here. One such case
+			// is that we get injected packets intended to mess with the handshake.
+			// In this case we should drop and log/trace the event.
+			if packet.IsData() {
+				ws.logger.Warnf("packetmuxer: moveUpWorker: cannot handle data yet")
+				return errors.New("not ready to handle data")
+			}
+			ws.logger.Warnf("malformed input")
+			return errors.New("malformed input")
 		}
 		select {
 		case ws.muxerToData <- packet: