openvpn/multi_8h_source.html

/*

 *  OpenVPN -- An application to securely tunnel IP networks

 *             over a single TCP/UDP port, with support for SSL/TLS-based

 *             session authentication and key exchange,

 *             packet encryption, packet authentication, and

 *             packet compression.

 *

 *  Copyright (C) 2002-2025 OpenVPN Inc <sales@openvpn.net>

 *

 *  This program is free software; you can redistribute it and/or modify

 *  it under the terms of the GNU General Public License version 2

 *  as published by the Free Software Foundation.

 *

 *  This program is distributed in the hope that it will be useful,

 *  but WITHOUT ANY WARRANTY; without even the implied warranty of

 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 *  GNU General Public License for more details.

 *

 *  You should have received a copy of the GNU General Public License along

 *  with this program; if not, see <https://www.gnu.org/licenses/>.

 */


#ifndef MULTI_H

#define MULTI_H


#include "init.h"

#include "forward.h"

#include "mroute.h"

#include "mbuf.h"

#include "list.h"

#include "schedule.h"

#include "pool.h"

#include "mudp.h"

#include "mtcp.h"

#include "multi_io.h"

#include "vlan.h"

#include "reflect_filter.h"


#define MULTI_PREFIX_MAX_LENGTH 256


/*

 * Walk (don't run) through the routing table,

 * deleting old entries, and possibly multi_instance

 * structs as well which have been marked for deletion.

 */


struct multi_reap

{

    uint32_t bucket_base;

    uint32_t buckets_per_pass;

    time_t last_call;

};


struct deferred_signal_schedule_entry

{

    struct schedule_entry se;

    int signal_received;

    struct timeval wakeup;

};


struct client_connect_defer_state

{

    /* Index of currently executed handler.  */

    int cur_handler_index;

    /* Remember which option classes where processed for delayed option

     * handling. */

    unsigned int option_types_found;


    char *deferred_ret_file;


    char *config_file;

};


struct multi_instance

{

    struct schedule_entry se; /* this must be the first element of the structure,

                               * We cast between this and schedule_entry so the

                               * beginning of the struct must be identical */


    struct event_arg ev_arg;

    struct gc_arena gc;

    bool halt;

    int refcount;

    int route_count;         /* number of routes (including cached routes) owned by this instance */

    time_t created;

    struct timeval wakeup;   /* absolute time */

    struct mroute_addr real;

    ifconfig_pool_handle vaddr_handle;

    char msg_prefix[MULTI_PREFIX_MAX_LENGTH];


    /* queued outgoing data in Server/TCP mode */

    unsigned int tcp_rwflags;

    struct mbuf_set *tcp_link_out_deferred;

    bool socket_set_called;


    in_addr_t reporting_addr;            /* IP address shown in status listing */

    struct in6_addr reporting_addr_ipv6; /* IPv6 address in status listing */


    bool did_real_hash;

    bool did_iter;

#ifdef ENABLE_MANAGEMENT

    bool did_cid_hash;

    struct buffer_list *cc_config;

#endif

    bool did_iroutes;

    int n_clients_delta;    /* added to multi_context.n_clients when instance is closed */


    struct context context;

    struct client_connect_defer_state client_connect_defer_state;

#ifdef ENABLE_ASYNC_PUSH

    int inotify_watch; /* watch descriptor for acf */

#endif

};


struct multi_context

{

    struct multi_instance **instances;

    struct hash *hash;

    struct hash *vhash;

    struct hash *iter;

    struct schedule *schedule;

    struct mbuf_set *mbuf;

    struct multi_io *multi_io;

    struct ifconfig_pool *ifconfig_pool;

    struct frequency_limit *new_connection_limiter;

    struct initial_packet_rate_limit *initial_rate_limiter;

    struct mroute_helper *route_helper;

    struct multi_reap *reaper;

    struct mroute_addr local;

    bool enable_c2c;

    int max_clients;

    int tcp_queue_limit;

    int status_file_version;

    int n_clients; /* current number of authenticated clients */


#ifdef ENABLE_MANAGEMENT

    struct hash *cid_hash;

    unsigned long cid_counter;

#endif


    struct multi_instance *pending;

    struct multi_instance *earliest_wakeup;

    struct multi_instance **mpp_touched;

    struct context_buffers *context_buffers;

    time_t per_second_trigger;


    struct context top;

    struct buffer hmac_reply;

    struct link_socket_actual *hmac_reply_dest;

    struct link_socket *hmac_reply_ls;


    /*

     * Timer object for stale route check

     */

    struct event_timeout stale_routes_check_et;


#ifdef ENABLE_ASYNC_PUSH

    /* mapping between inotify watch descriptors and multi_instances */

    struct hash *inotify_watchers;

#endif


    struct deferred_signal_schedule_entry deferred_shutdown_signal;

};


enum client_connect_return

{

    CC_RET_FAILED,

    CC_RET_SUCCEEDED,

    CC_RET_DEFERRED,

    CC_RET_SKIPPED

};


/*

 * Host route

 */


struct multi_route

{

    struct mroute_addr addr;

    struct multi_instance *instance;


#define MULTI_ROUTE_CACHE   (1 << 0)

#define MULTI_ROUTE_AGEABLE (1 << 1)

    unsigned int flags;


    unsigned int cache_generation;

    time_t last_reference;

};


/**************************************************************************/

void tunnel_server(struct context *top);


const char *multi_instance_string(const struct multi_instance *mi, bool null, struct gc_arena *gc);


/*

 * Called by mtcp.c, mudp.c, or other (to be written) protocol drivers

 */


struct multi_instance *multi_create_instance(struct multi_context *m,

                                             const struct mroute_addr *real,

                                             struct link_socket *sock);


void multi_close_instance(struct multi_context *m, struct multi_instance *mi, bool shutdown);


bool multi_process_timeout(struct multi_context *m, const unsigned int mpp_flags);


#define MPP_PRE_SELECT             (1 << 0)

#define MPP_CONDITIONAL_PRE_SELECT (1 << 1)

#define MPP_CLOSE_ON_SIGNAL        (1 << 2)

#define MPP_RECORD_TOUCH           (1 << 3)


/**************************************************************************/

bool multi_process_post(struct multi_context *m, struct multi_instance *mi,

                        const unsigned int flags);


void multi_process_incoming_dco(dco_context_t *dco);


/**************************************************************************/

bool multi_process_incoming_link(struct multi_context *m, struct multi_instance *instance,

                                 const unsigned int mpp_flags, struct link_socket *sock);


bool multi_process_incoming_tun(struct multi_context *m, const unsigned int mpp_flags);


void multi_process_drop_outgoing_tun(struct multi_context *m, const unsigned int mpp_flags);


struct multi_instance *multi_get_queue(struct mbuf_set *ms);


void multi_add_mbuf(struct multi_context *m, struct multi_instance *mi, struct mbuf_buffer *mb);


void multi_ifconfig_pool_persist(struct multi_context *m, bool force);


bool multi_process_signal(struct multi_context *m);


void multi_close_instance_on_signal(struct multi_context *m, struct multi_instance *mi);


void init_management_callback_multi(struct multi_context *m);


#ifdef ENABLE_ASYNC_PUSH

void multi_process_file_closed(struct multi_context *m, const unsigned int mpp_flags);


#endif


/*

 * Return true if our output queue is not full

 */

static inline bool


multi_output_queue_ready(const struct multi_context *m, const struct multi_instance *mi)

{

    if (mi->tcp_link_out_deferred)

    {

        return mbuf_len(mi->tcp_link_out_deferred) <= m->tcp_queue_limit;

    }

    else

    {

        return true;

    }

}


/*

 * Determine which instance has pending output

 * and prepare the output for sending in

 * the to_link buffer.

 */

static inline struct multi_instance *


multi_process_outgoing_link_pre(struct multi_context *m)

{

    struct multi_instance *mi = NULL;


    if (m->pending)

    {

        mi = m->pending;

    }

    else if (mbuf_defined(m->mbuf))

    {

        mi = multi_get_queue(m->mbuf);

    }

    return mi;

}


/*

 * Per-client route quota management

 */


void route_quota_exceeded(const struct multi_instance *mi);


static inline void


route_quota_inc(struct multi_instance *mi)

{

    ++mi->route_count;

}


static inline void


route_quota_dec(struct multi_instance *mi)

{

    --mi->route_count;

}


/* can we add a new route? */

static inline bool


route_quota_test(const struct multi_instance *mi)

{

    if (mi->route_count >= mi->context.options.max_routes_per_client)

    {

        route_quota_exceeded(mi);

        return false;

    }

    else

    {

        return true;

    }

}


/*

 * Instance reference counting

 */


static inline void


multi_instance_inc_refcount(struct multi_instance *mi)

{

    ++mi->refcount;

}


static inline void


multi_instance_dec_refcount(struct multi_instance *mi)

{

    if (--mi->refcount <= 0)

    {

        gc_free(&mi->gc);

        free(mi);

    }

}


static inline void


multi_route_del(struct multi_route *route)

{

    struct multi_instance *mi = route->instance;

    route_quota_dec(mi);

    multi_instance_dec_refcount(mi);

    free(route);

}


static inline bool


multi_route_defined(const struct multi_context *m, const struct multi_route *r)

{

    if (r->instance->halt)

    {

        return false;

    }

    else if ((r->flags & MULTI_ROUTE_CACHE)

             && r->cache_generation != m->route_helper->cache_generation)

    {

        return false;

    }

    else if ((r->flags & MULTI_ROUTE_AGEABLE)

             && r->last_reference + m->route_helper->ageable_ttl_secs < now)

    {

        return false;

    }

    else

    {

        return true;

    }

}


/*

 * Takes prefix away from multi_instance.

 */

void ungenerate_prefix(struct multi_instance *mi);


/*

 * Set a msg() function prefix with our current client instance ID.

 */


static inline void


set_prefix(struct multi_instance *mi)

{

#ifdef MULTI_DEBUG_EVENT_LOOP

    if (mi->msg_prefix[0])

    {

        printf("[%s]\n", mi->msg_prefix);

    }

#endif

    msg_set_prefix(mi->msg_prefix[0] ? mi->msg_prefix : NULL);

}


static inline void


clear_prefix(void)

{

#ifdef MULTI_DEBUG_EVENT_LOOP

    printf("[NULL]\n");

#endif

    msg_set_prefix(NULL);

}


/*

 * Instance Reaper

 *

 * Reaper constants.  The reaper is the process where the virtual address

 * and virtual route hash table is scanned for dead entries which are

 * then removed.  The hash table could potentially be quite large, so we

 * don't want to reap in a single pass.

 */


#define REAP_MAX_WAKEUP 10   /* Do reap pass at least once per n seconds */

#define REAP_DIVISOR    256  /* How many passes to cover whole hash table */

#define REAP_MIN        16   /* Minimum number of buckets per pass */

#define REAP_MAX        1024 /* Maximum number of buckets per pass */


/*

 * Mark a cached host route for deletion after this

 * many seconds without any references.

 */

#define MULTI_CACHE_ROUTE_TTL 60


void multi_reap_process_dowork(const struct multi_context *m);


void multi_process_per_second_timers_dowork(struct multi_context *m);


static inline void


multi_reap_process(const struct multi_context *m)

{

    if (m->reaper->last_call != now)

    {

        multi_reap_process_dowork(m);

    }

}


static inline void


multi_process_per_second_timers(struct multi_context *m)

{

    if (m->per_second_trigger != now)

    {

        multi_process_per_second_timers_dowork(m);

        m->per_second_trigger = now;

    }

}


/*

 * Updates \c dest with the earliest timeout as a delta relative to the current

 * time and sets \c m->earliest_wakeup to the \c multi_instance with the

 * soonest scheduled wakeup.

 *

 * @param m     Pointer to the multi context

 * @param dest  Pointer to a timeval struct that will hold the earliest timeout

 *              delta.

 */

static inline void


multi_get_timeout_instance(struct multi_context *m, struct timeval *dest)

{

    struct timeval tv, current;


    CLEAR(tv);

    m->earliest_wakeup = (struct multi_instance *)schedule_get_earliest_wakeup(m->schedule, &tv);

    if (m->earliest_wakeup)

    {

        ASSERT(!openvpn_gettimeofday(&current, NULL));

        tv_delta(dest, &current, &tv);

        if (dest->tv_sec >= REAP_MAX_WAKEUP)

        {

            m->earliest_wakeup = NULL;

            dest->tv_sec = REAP_MAX_WAKEUP;

            dest->tv_usec = 0;

        }

    }

    else

    {

        dest->tv_sec = REAP_MAX_WAKEUP;

        dest->tv_usec = 0;

    }

}


static inline bool


multi_process_outgoing_tun(struct multi_context *m, const unsigned int mpp_flags)

{

    struct multi_instance *mi = m->pending;

    bool ret = true;


    ASSERT(mi);

#ifdef MULTI_DEBUG_EVENT_LOOP

    printf("%s -> TUN len=%d\n", id(mi), mi->context.c2.to_tun.len);

#endif

    set_prefix(mi);

    vlan_process_outgoing_tun(m, mi);

    process_outgoing_tun(&mi->context, mi->context.c2.link_sockets[0]);

    ret = multi_process_post(m, mi, mpp_flags);

    clear_prefix();

    return ret;

}


#define CLIENT_CONNECT_OPT_MASK                                                            \

    (OPT_P_INSTANCE | OPT_P_INHERIT | OPT_P_PUSH | OPT_P_TIMER | OPT_P_CONFIG | OPT_P_ECHO \

     | OPT_P_COMP | OPT_P_SOCKFLAGS)


static inline bool


multi_process_outgoing_link_dowork(struct multi_context *m, struct multi_instance *mi,

                                   const unsigned int mpp_flags)

{

    bool ret = true;

    set_prefix(mi);

    process_outgoing_link(&mi->context, mi->context.c2.link_sockets[0]);

    ret = multi_process_post(m, mi, mpp_flags);

    clear_prefix();

    return ret;

}


bool

multi_check_push_ifconfig_extra_route(struct multi_instance *mi, in_addr_t dest);


bool

multi_check_push_ifconfig_ipv6_extra_route(struct multi_instance *mi,

                                           struct in6_addr *dest);


/*

 * Check for signals.

 */

#define MULTI_CHECK_SIG(m) EVENT_LOOP_CHECK_SIGNAL(&(m)->top, multi_process_signal, (m))


static inline void


multi_set_pending(struct multi_context *m, struct multi_instance *mi)

{

    m->pending = mi;

}


void multi_assign_peer_id(struct multi_context *m, struct multi_instance *mi);


#ifdef ENABLE_MANAGEMENT

struct multi_instance *

lookup_by_cid(struct multi_context *m, const unsigned long cid);

#endif


void

update_vhash(struct multi_context *m, struct multi_instance *mi, const char *new_ip, const char *new_ipv6);

void unlearn_ifconfig(struct multi_context *m, struct multi_instance *mi);

void unlearn_ifconfig_ipv6(struct multi_context *m, struct multi_instance *mi);


#endif /* MULTI_H */

gc_free
static void gc_free(struct gc_arena *a)
Definition buffer.h:1025

dco_context_t
void * dco_context_t
Definition dco.h:259

forward.h
Interface functions to the internal and external multiplexers.

tunnel_server
void tunnel_server(struct context *top)
Main event loop for OpenVPN in server mode.
Definition multi.c:4211

multi_process_incoming_link
bool multi_process_incoming_link(struct multi_context *m, struct multi_instance *instance, const unsigned int mpp_flags, struct link_socket *sock)
Demultiplex and process a packet received over the external network interface.
Definition multi.c:3334

process_outgoing_link
void process_outgoing_link(struct context *c, struct link_socket *sock)
Write a packet to the external network interface.
Definition forward.c:1757

process_outgoing_tun
void process_outgoing_tun(struct context *c, struct link_socket *in_sock)
Write a packet to the virtual tun/tap network interface.
Definition forward.c:1891

multi_process_outgoing_tun
static bool multi_process_outgoing_tun(struct multi_context *m, const unsigned int mpp_flags)
Send a packet over the virtual tun/tap network interface to its locally reachable destination.
Definition multi.h:632

multi_process_incoming_tun
bool multi_process_incoming_tun(struct multi_context *m, const unsigned int mpp_flags)
Determine the destination VPN tunnel of a packet received over the virtual tun/tap network interface ...
Definition multi.c:3532

init.h

route
@ route
Definition interactive.c:85

list.h

mbuf.h

mbuf_defined
static bool mbuf_defined(const struct mbuf_set *ms)
Definition mbuf.h:79

mbuf_len
static unsigned int mbuf_len(const struct mbuf_set *ms)
Definition mbuf.h:85

mroute.h

mtcp.h

mudp.h

client_connect_return
client_connect_return
Return values used by the client connect call-back functions.
Definition multi.h:226

CC_RET_DEFERRED
@ CC_RET_DEFERRED
Definition multi.h:229

CC_RET_FAILED
@ CC_RET_FAILED
Definition multi.h:227

CC_RET_SKIPPED
@ CC_RET_SKIPPED
Definition multi.h:230

CC_RET_SUCCEEDED
@ CC_RET_SUCCEEDED
Definition multi.h:228

multi_create_instance
struct multi_instance * multi_create_instance(struct multi_context *m, const struct mroute_addr *real, struct link_socket *sock)
Definition multi.c:715

multi_output_queue_ready
static bool multi_output_queue_ready(const struct multi_context *m, const struct multi_instance *mi)
Definition multi.h:388

REAP_MAX_WAKEUP
#define REAP_MAX_WAKEUP
Definition multi.h:545

multi_ifconfig_pool_persist
void multi_ifconfig_pool_persist(struct multi_context *m, bool force)
Definition multi.c:150

MULTI_PREFIX_MAX_LENGTH
#define MULTI_PREFIX_MAX_LENGTH
Definition multi.h:44

multi_reap_process_dowork
void multi_reap_process_dowork(const struct multi_context *m)
Definition multi.c:202

route_quota_dec
static void route_quota_dec(struct multi_instance *mi)
Definition multi.h:434

multi_process_signal
bool multi_process_signal(struct multi_context *m)
Definition multi.c:3860

multi_close_instance_on_signal
void multi_close_instance_on_signal(struct multi_context *m, struct multi_instance *mi)
Definition multi.c:3205

multi_process_post
bool multi_process_post(struct multi_context *m, struct multi_instance *mi, const unsigned int flags)
Perform postprocessing of a VPN tunnel instance.
Definition multi.c:3006

multi_process_per_second_timers_dowork
void multi_process_per_second_timers_dowork(struct multi_context *m)
Definition multi.c:3771

multi_get_queue
struct multi_instance * multi_get_queue(struct mbuf_set *ms)
Definition multi.c:3624

multi_process_timeout
bool multi_process_timeout(struct multi_context *m, const unsigned int mpp_flags)
Definition multi.c:3660

set_prefix
static void set_prefix(struct multi_instance *mi)
Definition multi.h:516

multi_route_del
static void multi_route_del(struct multi_route *route)
Definition multi.h:475

multi_check_push_ifconfig_ipv6_extra_route
bool multi_check_push_ifconfig_ipv6_extra_route(struct multi_instance *mi, struct in6_addr *dest)
Determines if the ifconfig_ipv6_local address falls into the range of the local IP addresses of the V...
Definition multi.c:4436

multi_reap_process
static void multi_reap_process(const struct multi_context *m)
Definition multi.h:561

lookup_by_cid
struct multi_instance * lookup_by_cid(struct multi_context *m, const unsigned long cid)
Definition multi.c:3979

route_quota_inc
static void route_quota_inc(struct multi_instance *mi)
Definition multi.h:428

multi_process_incoming_dco
void multi_process_incoming_dco(dco_context_t *dco)
Process an incoming DCO message (from kernel space).

multi_check_push_ifconfig_extra_route
bool multi_check_push_ifconfig_extra_route(struct multi_instance *mi, in_addr_t dest)
Determines if the ifconfig_push_local address falls into the range of the local IP addresses of the V...
Definition multi.c:4415

MULTI_ROUTE_CACHE
#define MULTI_ROUTE_CACHE
Definition multi.h:241

multi_instance_string
const char * multi_instance_string(const struct multi_instance *mi, bool null, struct gc_arena *gc)
Definition multi.c:430

clear_prefix
static void clear_prefix(void)
Definition multi.h:528

multi_close_instance
void multi_close_instance(struct multi_context *m, struct multi_instance *mi, bool shutdown)
Definition multi.c:570

multi_route_defined
static bool multi_route_defined(const struct multi_context *m, const struct multi_route *r)
Definition multi.h:484

multi_process_outgoing_link_pre
static struct multi_instance * multi_process_outgoing_link_pre(struct multi_context *m)
Definition multi.h:406

multi_instance_dec_refcount
static void multi_instance_dec_refcount(struct multi_instance *mi)
Definition multi.h:465

multi_add_mbuf
void multi_add_mbuf(struct multi_context *m, struct multi_instance *mi, struct mbuf_buffer *mb)
Definition multi.c:2860

multi_instance_inc_refcount
static void multi_instance_inc_refcount(struct multi_instance *mi)
Definition multi.h:459

route_quota_exceeded
void route_quota_exceeded(const struct multi_instance *mi)
Definition multi.c:3714

ungenerate_prefix
void ungenerate_prefix(struct multi_instance *mi)
Definition multi.c:477

multi_assign_peer_id
void multi_assign_peer_id(struct multi_context *m, struct multi_instance *mi)
Assigns a peer-id to a a client and adds the instance to the the instances array of the multi_context...
Definition multi.c:4127

multi_get_timeout_instance
static void multi_get_timeout_instance(struct multi_context *m, struct timeval *dest)
Definition multi.h:589

multi_set_pending
static void multi_set_pending(struct multi_context *m, struct multi_instance *mi)
Definition multi.h:698

init_management_callback_multi
void init_management_callback_multi(struct multi_context *m)
Definition multi.c:4100

MULTI_ROUTE_AGEABLE
#define MULTI_ROUTE_AGEABLE
Definition multi.h:242

unlearn_ifconfig_ipv6
void unlearn_ifconfig_ipv6(struct multi_context *m, struct multi_instance *mi)
Definition multi.c:4347

multi_process_drop_outgoing_tun
void multi_process_drop_outgoing_tun(struct multi_context *m, const unsigned int mpp_flags)
Definition multi.c:3692

unlearn_ifconfig
void unlearn_ifconfig(struct multi_context *m, struct multi_instance *mi)
Definition multi.c:4335

update_vhash
void update_vhash(struct multi_context *m, struct multi_instance *mi, const char *new_ip, const char *new_ipv6)
Update the vhash with new IP/IPv6 addresses in the multi_context when a push-update message containin...
Definition multi.c:4369

multi_process_outgoing_link_dowork
static bool multi_process_outgoing_link_dowork(struct multi_context *m, struct multi_instance *mi, const unsigned int mpp_flags)
Definition multi.h:654

multi_process_per_second_timers
static void multi_process_per_second_timers(struct multi_context *m)
Definition multi.h:570

route_quota_test
static bool route_quota_test(const struct multi_instance *mi)
Definition multi.h:441

multi_io.h

CLEAR
#define CLEAR(x)
Definition basic.h:32

msg_set_prefix
static void msg_set_prefix(const char *prefix)
Definition error.h:338

ASSERT
#define ASSERT(x)
Definition error.h:219

now
time_t now
Definition otime.c:33

tv_delta
static void tv_delta(struct timeval *dest, const struct timeval *t1, const struct timeval *t2)
Definition otime.h:228

openvpn_gettimeofday
static int openvpn_gettimeofday(struct timeval *tv, void *tz)
Definition otime.h:71

pool.h

ifconfig_pool_handle
int ifconfig_pool_handle
Definition pool.h:72

reflect_filter.h

schedule.h

schedule_get_earliest_wakeup
static struct schedule_entry * schedule_get_earliest_wakeup(struct schedule *s, struct timeval *wakeup)
Definition schedule.h:115

buffer_list
Definition buffer.h:1113

buffer
Wrapper structure for dynamically allocated memory.
Definition buffer.h:60

buffer::len
int len
Length in bytes of the actual content within the allocated memory.
Definition buffer.h:65

client_connect_defer_state
Detached client connection state.
Definition multi.h:71

client_connect_defer_state::cur_handler_index
int cur_handler_index
Definition multi.h:73

client_connect_defer_state::config_file
char * config_file
The temporary file name that contains the config directives returned by the client-connect script.
Definition multi.h:88

client_connect_defer_state::option_types_found
unsigned int option_types_found
Definition multi.h:76

client_connect_defer_state::deferred_ret_file
char * deferred_ret_file
The temporary file name that contains the return status of the client-connect script if it exits with...
Definition multi.h:82

context_2::to_tun
struct buffer to_tun
Definition openvpn.h:376

context_2::link_sockets
struct link_socket ** link_sockets
Definition openvpn.h:237

context_buffers
Definition openvpn.h:95

context
Contains all state information for one tunnel.
Definition openvpn.h:474

context::c2
struct context_2 c2
Level 2 context.
Definition openvpn.h:517

context::options
struct options options
Options loaded from command line or configuration file.
Definition openvpn.h:475

deferred_signal_schedule_entry
Definition multi.h:60

deferred_signal_schedule_entry::signal_received
int signal_received
Definition multi.h:62

deferred_signal_schedule_entry::wakeup
struct timeval wakeup
Definition multi.h:63

deferred_signal_schedule_entry::se
struct schedule_entry se
Definition multi.h:61

event_arg
Definition event.h:140

event_timeout
Definition interval.h:135

frequency_limit
Definition otime.h:39

gc_arena
Garbage collection arena used to keep track of dynamically allocated memory.
Definition buffer.h:116

hash
Definition list.h:53

ifconfig_pool
Definition pool.h:49

initial_packet_rate_limit
struct that handles all the rate limiting logic for initial responses
Definition reflect_filter.h:30

link_socket_actual
Definition socket_util.h:50

link_socket
Definition socket.h:148

mbuf_buffer
Definition mbuf.h:41

mbuf_set
Definition mbuf.h:56

mroute_addr
Definition mroute.h:82

mroute_helper
Definition mroute.h:132

mroute_helper::ageable_ttl_secs
int ageable_ttl_secs
Definition mroute.h:134

mroute_helper::cache_generation
unsigned int cache_generation
Definition mroute.h:133

multi_context
Main OpenVPN server state structure.
Definition multi.h:163

multi_context::n_clients
int n_clients
Definition multi.h:189

multi_context::local
struct mroute_addr local
Definition multi.h:184

multi_context::schedule
struct schedule * schedule
Definition multi.h:174

multi_context::per_second_trigger
time_t per_second_trigger
Definition multi.h:200

multi_context::mbuf
struct mbuf_set * mbuf
Set of buffers for passing data channel packets between VPN tunnel instances.
Definition multi.h:175

multi_context::initial_rate_limiter
struct initial_packet_rate_limit * initial_rate_limiter
Definition multi.h:181

multi_context::deferred_shutdown_signal
struct deferred_signal_schedule_entry deferred_shutdown_signal
Definition multi.h:219

multi_context::hmac_reply_dest
struct link_socket_actual * hmac_reply_dest
Definition multi.h:206

multi_context::max_clients
int max_clients
Definition multi.h:186

multi_context::reaper
struct multi_reap * reaper
Definition multi.h:183

multi_context::multi_io
struct multi_io * multi_io
I/O state and events tracker.
Definition multi.h:178

multi_context::hash
struct hash * hash
VPN tunnel instances indexed by real address of the remote peer.
Definition multi.h:167

multi_context::context_buffers
struct context_buffers * context_buffers
Definition multi.h:199

multi_context::cid_hash
struct hash * cid_hash
Definition multi.h:192

multi_context::cid_counter
unsigned long cid_counter
Definition multi.h:193

multi_context::stale_routes_check_et
struct event_timeout stale_routes_check_et
Definition multi.h:212

multi_context::hmac_reply_ls
struct link_socket * hmac_reply_ls
Definition multi.h:207

multi_context::tcp_queue_limit
int tcp_queue_limit
Definition multi.h:187

multi_context::ifconfig_pool
struct ifconfig_pool * ifconfig_pool
Definition multi.h:179

multi_context::new_connection_limiter
struct frequency_limit * new_connection_limiter
Definition multi.h:180

multi_context::top
struct context top
Storage structure for process-wide configuration.
Definition multi.h:202

multi_context::status_file_version
int status_file_version
Definition multi.h:188

multi_context::pending
struct multi_instance * pending
Definition multi.h:196

multi_context::vhash
struct hash * vhash
VPN tunnel instances indexed by virtual address of remote hosts.
Definition multi.h:169

multi_context::iter
struct hash * iter
VPN tunnel instances indexed by real address of the remote peer, optimized for iteration.
Definition multi.h:171

multi_context::instances
struct multi_instance ** instances
Array of multi_instances.
Definition multi.h:164

multi_context::mpp_touched
struct multi_instance ** mpp_touched
Definition multi.h:198

multi_context::hmac_reply
struct buffer hmac_reply
Definition multi.h:205

multi_context::enable_c2c
bool enable_c2c
Definition multi.h:185

multi_context::earliest_wakeup
struct multi_instance * earliest_wakeup
Definition multi.h:197

multi_context::route_helper
struct mroute_helper * route_helper
Definition multi.h:182

multi_instance
Server-mode state structure for one single VPN tunnel.
Definition multi.h:102

multi_instance::tcp_link_out_deferred
struct mbuf_set * tcp_link_out_deferred
Definition multi.h:128

multi_instance::cc_config
struct buffer_list * cc_config
Definition multi.h:138

multi_instance::did_cid_hash
bool did_cid_hash
Definition multi.h:137

multi_instance::created
time_t created
Time at which a VPN tunnel instance was created.
Definition multi.h:116

multi_instance::reporting_addr
in_addr_t reporting_addr
Definition multi.h:131

multi_instance::tcp_rwflags
unsigned int tcp_rwflags
Definition multi.h:127

multi_instance::msg_prefix
char msg_prefix[MULTI_PREFIX_MAX_LENGTH]
Definition multi.h:124

multi_instance::real
struct mroute_addr real
External network address of the remote peer.
Definition multi.h:121

multi_instance::did_iroutes
bool did_iroutes
Definition multi.h:140

multi_instance::socket_set_called
bool socket_set_called
Definition multi.h:129

multi_instance::route_count
int route_count
Definition multi.h:115

multi_instance::vaddr_handle
ifconfig_pool_handle vaddr_handle
Definition multi.h:123

multi_instance::did_real_hash
bool did_real_hash
Definition multi.h:134

multi_instance::gc
struct gc_arena gc
Definition multi.h:112

multi_instance::refcount
int refcount
Definition multi.h:114

multi_instance::reporting_addr_ipv6
struct in6_addr reporting_addr_ipv6
Definition multi.h:132

multi_instance::wakeup
struct timeval wakeup
Definition multi.h:120

multi_instance::halt
bool halt
Definition multi.h:113

multi_instance::ev_arg
struct event_arg ev_arg
this struct will store a pointer to either mi or link_socket, depending on the event type,...
Definition multi.h:107

multi_instance::did_iter
bool did_iter
Definition multi.h:135

multi_instance::context
struct context context
The context structure storing state for this VPN tunnel.
Definition multi.h:143

multi_instance::se
struct schedule_entry se
Definition multi.h:103

multi_instance::n_clients_delta
int n_clients_delta
Definition multi.h:141

multi_io
Definition multi_io.h:52

multi_reap
Definition multi.h:52

multi_reap::last_call
time_t last_call
Definition multi.h:55

multi_reap::buckets_per_pass
uint32_t buckets_per_pass
Definition multi.h:54

multi_reap::bucket_base
uint32_t bucket_base
Definition multi.h:53

multi_route
Definition multi.h:237

multi_route::addr
struct mroute_addr addr
Definition multi.h:238

multi_route::last_reference
time_t last_reference
Definition multi.h:246

multi_route::cache_generation
unsigned int cache_generation
Definition multi.h:245

multi_route::flags
unsigned int flags
Definition multi.h:243

multi_route::instance
struct multi_instance * instance
Definition multi.h:239

options::max_routes_per_client
int max_routes_per_client
Definition options.h:538

schedule_entry
Definition schedule.h:44

schedule
Definition schedule.h:53

in_addr_t
uint32_t in_addr_t
Definition syshead.h:52

gc
struct gc_arena gc
Definition test_ssl.c:131

vlan_process_outgoing_tun
void vlan_process_outgoing_tun(struct multi_context *m, struct multi_instance *mi)
Definition vlan.c:291

vlan.h