OpenVPN
plugin.h
Go to the documentation of this file.
1/*
2 * OpenVPN -- An application to securely tunnel IP networks
3 * over a single TCP/UDP port, with support for SSL/TLS-based
4 * session authentication and key exchange,
5 * packet encryption, packet authentication, and
6 * packet compression.
7 *
8 * Copyright (C) 2002-2024 OpenVPN Inc <sales@openvpn.net>
9 *
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License version 2
12 * as published by the Free Software Foundation.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License along
20 * with this program; if not, write to the Free Software Foundation, Inc.,
21 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22 */
23
24/*
25 * plug-in support, using dynamically loaded libraries
26 */
27
28#ifndef OPENVPN_PLUGIN_H
29#define OPENVPN_PLUGIN_H
30
31#ifdef ENABLE_CRYPTO_OPENSSL
32#include "ssl_verify_openssl.h"
33#endif
34#ifdef ENABLE_CRYPTO_MBEDTLS
35#include "ssl_verify_mbedtls.h"
36#endif
37#include "openvpn-plugin.h"
38
39#ifdef ENABLE_PLUGIN
40
41#include "misc.h"
42
43#define MAX_PLUGINS 16
44
45struct plugin_option {
46 const char *so_pathname;
47 const char **argv;
48};
49
54
55struct plugin {
56 bool initialized;
57 const char *so_pathname;
58 unsigned int plugin_type_mask;
59 int requested_initialization_point;
60
61#ifndef _WIN32
62 void *handle;
63#else
64 HMODULE module;
65#endif
66
67 openvpn_plugin_open_v1 open1;
68 openvpn_plugin_open_v2 open2;
69 openvpn_plugin_open_v3 open3;
70 openvpn_plugin_func_v1 func1;
71 openvpn_plugin_func_v2 func2;
72 openvpn_plugin_func_v3 func3;
73 openvpn_plugin_close_v1 close;
74 openvpn_plugin_abort_v1 abort;
75 openvpn_plugin_client_constructor_v1 client_constructor;
76 openvpn_plugin_client_destructor_v1 client_destructor;
77 openvpn_plugin_min_version_required_v1 min_version_required;
78 openvpn_plugin_select_initialization_point_v1 initialization_point;
79
80 openvpn_plugin_handle_t plugin_handle;
81};
82
87
88struct plugin_common
89{
90 int n;
91 struct plugin plugins[MAX_PLUGINS];
92};
93
100
101struct plugin_return
102{
103 int n;
104 struct openvpn_plugin_string_list *list[MAX_PLUGINS];
105};
106
107struct plugin_option_list *plugin_option_list_new(struct gc_arena *gc);
108
109bool plugin_option_list_add(struct plugin_option_list *list, char **p,
110 struct gc_arena *gc);
111
112#ifndef ENABLE_SMALL
113void plugin_option_list_print(const struct plugin_option_list *list, int msglevel);
114
115#endif
116
117struct plugin_list *plugin_list_init(const struct plugin_option_list *list);
118
119void plugin_list_open(struct plugin_list *pl,
120 const struct plugin_option_list *list,
121 struct plugin_return *pr,
122 const struct env_set *es,
123 const int init_point);
124
125struct plugin_list *plugin_list_inherit(const struct plugin_list *src);
126
127int plugin_call_ssl(const struct plugin_list *pl,
128 const int type,
129 const struct argv *av,
130 struct plugin_return *pr,
131 struct env_set *es,
132 int current_cert_depth,
133 openvpn_x509_cert_t *current_cert
134 );
135
136void plugin_list_close(struct plugin_list *pl);
137
138bool plugin_defined(const struct plugin_list *pl, const int type);
139
140void plugin_return_get_column(const struct plugin_return *src,
141 struct plugin_return *dest,
142 const char *colname);
143
144void plugin_return_free(struct plugin_return *pr);
145
146#ifdef ENABLE_DEBUG
147void plugin_return_print(const int msglevel, const char *prefix, const struct plugin_return *pr);
148
149#endif
150
151static inline int
152plugin_n(const struct plugin_list *pl)
153{
154 if (pl && pl->common)
155 {
156 return pl->common->n;
157 }
158 else
159 {
160 return 0;
161 }
162}
163
164static inline bool
165plugin_return_defined(const struct plugin_return *pr)
166{
167 return pr->n >= 0;
168}
169
170static inline void
171plugin_return_init(struct plugin_return *pr)
172{
173 pr->n = 0;
174}
175
176#else /* ifdef ENABLE_PLUGIN */
177struct plugin_list { int dummy; };
178struct plugin_return { int dummy; };
179
180static inline bool
181plugin_defined(const struct plugin_list *pl, const int type)
182{
183 return false;
184}
185
186static inline int
187plugin_call_ssl(const struct plugin_list *pl,
188 const int type,
189 const struct argv *av,
190 struct plugin_return *pr,
191 struct env_set *es,
192 int current_cert_depth,
193 openvpn_x509_cert_t *current_cert
194 )
195{
196 return 0;
197}
198
199#endif /* ENABLE_PLUGIN */
200
201static inline int
202plugin_call(const struct plugin_list *pl,
203 const int type,
204 const struct argv *av,
205 struct plugin_return *pr,
206 struct env_set *es)
207{
208 return plugin_call_ssl(pl, type, av, pr, es, -1, NULL);
209}
210
211void plugin_abort(void);
212
213#endif /* OPENVPN_PLUGIN_H */
openvpn_plugin_abort_v1
OPENVPN_EXPORT void openvpn_plugin_abort_v1(openvpn_plugin_handle_t handle)
Definition auth-pam.c:631
openvpn_plugin_func_v1
OPENVPN_EXPORT int openvpn_plugin_func_v1(openvpn_plugin_handle_t handle, const int type, const char *argv[], const char *envp[])
Definition log.c:176
openvpn_plugin_open_v1
OPENVPN_EXPORT openvpn_plugin_handle_t openvpn_plugin_open_v1(unsigned int *type_mask, const char *argv[], const char *envp[])
Definition log.c:73
openvpn_plugin_min_version_required_v1
OPENVPN_EXPORT int openvpn_plugin_min_version_required_v1()
Definition multi-auth.c:173
openvpn_plugin_func_v3
OPENVPN_EXPORT int openvpn_plugin_func_v3(const int v3structver, struct openvpn_plugin_args_func_in const *args, struct openvpn_plugin_args_func_return *ret)
Definition multi-auth.c:382
plugin_list_close
void plugin_list_close(struct plugin_list *pl)
Definition plugin.c:897
plugin_abort
void plugin_abort(void)
Definition plugin.c:916
plugin_option_list_new
struct plugin_option_list * plugin_option_list_new(struct gc_arena *gc)
Definition plugin.c:160
plugin_option_list_add
bool plugin_option_list_add(struct plugin_option_list *list, char **p, struct gc_arena *gc)
Definition plugin.c:168
MAX_PLUGINS
#define MAX_PLUGINS
Definition plugin.h:43
plugin_n
static int plugin_n(const struct plugin_list *pl)
Definition plugin.h:152
plugin_return_init
static void plugin_return_init(struct plugin_return *pr)
Definition plugin.h:171
plugin_return_free
void plugin_return_free(struct plugin_return *pr)
Definition plugin.c:1015
plugin_list_inherit
struct plugin_list * plugin_list_inherit(const struct plugin_list *src)
Definition plugin.c:695
plugin_call
static int plugin_call(const struct plugin_list *pl, const int type, const struct argv *av, struct plugin_return *pr, struct env_set *es)
Definition plugin.h:202
plugin_return_defined
static bool plugin_return_defined(const struct plugin_return *pr)
Definition plugin.h:165
plugin_list_init
struct plugin_list * plugin_list_init(const struct plugin_option_list *list)
Definition plugin.c:776
plugin_return_get_column
void plugin_return_get_column(const struct plugin_return *src, struct plugin_return *dest, const char *colname)
Definition plugin.c:1000
plugin_option_list_print
void plugin_option_list_print(const struct plugin_option_list *list, int msglevel)
Definition plugin.c:189
plugin_call_ssl
int plugin_call_ssl(const struct plugin_list *pl, const int type, const struct argv *av, struct plugin_return *pr, struct env_set *es, int current_cert_depth, openvpn_x509_cert_t *current_cert)
Definition plugin.c:797
plugin_defined
bool plugin_defined(const struct plugin_list *pl, const int type)
Definition plugin.c:932
plugin_list_open
void plugin_list_open(struct plugin_list *pl, const struct plugin_option_list *list, struct plugin_return *pr, const struct env_set *es, const int init_point)
Definition plugin.c:786
openvpn_plugin_close_v1
OPENVPN_EXPORT void openvpn_plugin_close_v1(openvpn_plugin_handle_t handle)
Definition sample-client-connect.c:610
openvpn_plugin_client_destructor_v1
OPENVPN_EXPORT void openvpn_plugin_client_destructor_v1(openvpn_plugin_handle_t handle, void *per_client_context)
Definition sample-client-connect.c:603
openvpn_plugin_func_v2
OPENVPN_EXPORT int openvpn_plugin_func_v2(openvpn_plugin_handle_t handle, const int type, const char *argv[], const char *envp[], void *per_client_context, struct openvpn_plugin_string_list **return_list)
Definition sample-client-connect.c:527
openvpn_plugin_client_constructor_v1
OPENVPN_EXPORT void * openvpn_plugin_client_constructor_v1(openvpn_plugin_handle_t handle)
Definition sample-client-connect.c:596
openvpn_plugin_open_v3
OPENVPN_EXPORT int openvpn_plugin_open_v3(const int v3structver, struct openvpn_plugin_args_open_in const *args, struct openvpn_plugin_args_open_return *ret)
Definition sample-client-connect.c:122
ssl_verify_mbedtls.h
Control Channel Verification Module mbed TLS backend.
openvpn_x509_cert_t
mbedtls_x509_crt openvpn_x509_cert_t
Definition ssl_verify_mbedtls.h:38
ssl_verify_openssl.h
Control Channel Verification Module OpenSSL backend.
argv
Definition argv.h:35
env_set
Definition env_set.h:42
gc_arena
Garbage collection arena used to keep track of dynamically allocated memory.
Definition buffer.h:117
plugin_common
Definition plugin.h:89
plugin_common::plugins
struct plugin plugins[MAX_PLUGINS]
Definition plugin.h:91
plugin_common::n
int n
Definition plugin.h:90
plugin_list
Definition plugin.h:95
plugin_list::common
struct plugin_common * common
Definition plugin.h:97
plugin_list::common_owned
bool common_owned
Definition plugin.h:98
plugin_list::per_client
struct plugin_per_client per_client
Definition plugin.h:96
plugin_option_list
Definition plugin.h:50
plugin_option_list::plugins
struct plugin_option plugins[MAX_PLUGINS]
Definition plugin.h:52
plugin_option_list::n
int n
Definition plugin.h:51
plugin_option
Definition plugin.h:45
plugin_option::argv
const char ** argv
Definition plugin.h:47
plugin_option::so_pathname
const char * so_pathname
Definition plugin.h:46
plugin_per_client
Definition plugin.h:84
plugin_per_client::per_client_context
void * per_client_context[MAX_PLUGINS]
Definition plugin.h:85
plugin_return
Definition plugin.h:102
plugin_return::n
int n
Definition plugin.h:103
plugin_return::list
struct openvpn_plugin_string_list * list[MAX_PLUGINS]
Definition plugin.h:104
plugin::abort
openvpn_plugin_abort_v1 abort
Definition plugin.h:74
plugin::open1
HMODULE openvpn_plugin_open_v1 open1
Definition plugin.h:67
plugin::initialization_point
openvpn_plugin_select_initialization_point_v1 initialization_point
Definition plugin.h:78
plugin::close
openvpn_plugin_close_v1 close
Definition plugin.h:73
plugin::plugin_handle
openvpn_plugin_handle_t plugin_handle
Definition plugin.h:80
plugin::requested_initialization_point
int requested_initialization_point
Definition plugin.h:59
plugin::initialized
bool initialized
Definition plugin.h:56
plugin::open3
openvpn_plugin_open_v3 open3
Definition plugin.h:69
plugin::open2
openvpn_plugin_open_v2 open2
Definition plugin.h:68
plugin::client_destructor
openvpn_plugin_client_destructor_v1 client_destructor
Definition plugin.h:76
plugin::plugin_type_mask
unsigned int plugin_type_mask
Definition plugin.h:58
plugin::min_version_required
openvpn_plugin_min_version_required_v1 min_version_required
Definition plugin.h:77
plugin::so_pathname
const char * so_pathname
Definition plugin.h:57
plugin::client_constructor
openvpn_plugin_client_constructor_v1 client_constructor
Definition plugin.h:75
plugin::func1
openvpn_plugin_func_v1 func1
Definition plugin.h:70
plugin::func2
openvpn_plugin_func_v2 func2
Definition plugin.h:71
plugin::func3
openvpn_plugin_func_v3 func3
Definition plugin.h:72
es
struct env_set * es
Definition test_pkcs11.c:141
gc
struct gc_arena gc
Definition test_ssl.c:155
Generated by doxygen 1.9.8