48#if defined(TARGET_LINUX) || defined(TARGET_ANDROID)
49#include <linux/rtnetlink.h>
52#if defined(TARGET_NETBSD)
59#define METRIC_NOT_USED ((DWORD)-1)
105#ifndef TARGET_ANDROID
239 if (!
strcmp(
string,
"vpn_gateway"))
245 *out =
rl->spec.remote_endpoint;
258 else if (!
strcmp(
string,
"net_gateway"))
264 *out =
rl->ngi.gateway.addr;
269 " ROUTE: net_gateway undefined -- unable to get default gateway from system");
278 else if (!
strcmp(
string,
"remote_host"))
284 *out =
rl->spec.remote_host;
320 struct in_addr special = { 0 };
340 special.s_addr = htonl(special.s_addr);
341 char buf[INET_ADDRSTRLEN];
342 inet_ntop(AF_INET, &special, buf,
sizeof(buf));
348 NULL, AF_INET, network_list);
397 " ROUTE: " PACKAGE_NAME
398 " needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options");
411 msg(
M_WARN, PACKAGE_NAME
" ROUTE: route metric for network %s (%s) must be >= 0",
431 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve route for host/network: %s",
450 if (inet_pton(AF_INET6, r6o->
gateway, &
r6->gateway) != 1)
452 msg(
M_WARN, PACKAGE_NAME
"ROUTE6: cannot parse gateway spec '%s'", r6o->
gateway);
468 msg(
M_WARN, PACKAGE_NAME
" ROUTE: route metric for network %s (%s) must be >= 0",
488 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve route for host/network: %s",
495 const char *gateway,
const char *metric,
int table_id)
558 l2 = ((~gateway->netmask) + 1) >> 1;
560 r1->gateway = target;
562 r1->netmask = ~(l2 - 1);
576#ifndef TARGET_ANDROID
607 const char *remote_endpoint,
int default_metric,
in_addr_t remote_host,
633#if defined(ENABLE_DEBUG) && !defined(ENABLE_SMALL)
651 bool defined =
false;
663 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve default gateway: %s",
686 struct addrinfo *netlist = NULL;
695 struct addrinfo *curele;
696 for (curele = netlist; curele; curele = curele->ai_next)
701 new->
network = ntohl(((
struct sockaddr_in *)curele->ai_addr)->sin_addr.s_addr);
728 for (i = 0; bits >= 8; i++, bits -= 8)
730 if (
network->s6_addr[i] != host->s6_addr[i])
741 unsigned int mask = 0xff << (8 - bits);
743 if ((
network->s6_addr[i] & mask) == (host->s6_addr[i] & mask))
753 const char *remote_endpoint,
int default_metric,
754 const struct in6_addr *remote_host_ipv6,
struct env_set *
es,
759 bool need_remote_ipv6_route;
765 if (remote_host_ipv6)
771 if (default_metric >= 0)
784#if defined(ENABLE_DEBUG) && !defined(ENABLE_SMALL)
803 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve VPN endpoint: %s",
812 need_remote_ipv6_route =
false;
829#ifndef TARGET_ANDROID
837 need_remote_ipv6_route =
true;
839 "ROUTE6: %s/%d overlaps IPv6 remote %s, adding host route to VPN endpoint",
849 if (need_remote_ipv6_route)
857 r6->network = *remote_host_ipv6;
867 r6->iface = rl6->
rgi6.iface;
877 "ROUTE6: IPv6 route overlaps with IPv6 remote address, but could not determine IPv6 gateway address + interface, expect failure\n");
919 for (
int i = 0; i < rb->
n_bypass; ++i)
951 const char err[] =
"NOTE: unable to redirect IPv4 default gateway --";
960 msg(
M_WARN,
"%s VPN gateway parameter (--route-gateway or --ifconfig) is missing", err);
971 msg(
M_WARN,
"%s Cannot read current default gateway from system", err);
976#ifndef TARGET_ANDROID
1008 dmsg(
D_ROUTE,
"ROUTE remote_host protocol differs from tunneled");
1067 rl->
iflags &= ~RL_DID_LOCAL;
1098 rl->
iflags &= ~RL_DID_REDIRECT_DEFAULT_GATEWAY;
1114 "WARNING: OpenVPN was configured to add an IPv4 "
1115 "route. However, no IPv4 has been configured for %s, "
1116 "therefore the route installation may fail or may not work "
1121#ifdef ENABLE_MANAGEMENT
1146 "WARNING: OpenVPN was configured to add an IPv6 "
1147 "route. However, no IPv6 has been configured for %s, "
1148 "therefore the route installation may fail or may not work "
1186 rl->
iflags &= ~RL_ROUTES_ADDED;
1208 rl6->
iflags &= ~RL_ROUTES_ADDED;
1224 return "default (not set)";
1245 msg(msglevel,
" [redirect_default_gateway local=%d]", (rol->
flags &
RG_LOCAL) != 0);
1289 msg(msglevel,
"%s",
BSTR(&out));
1320 msg(msglevel,
"%s",
BSTR(&out));
1446 && netmask == 0xFFFFFFFF)
1455 for (
int i = 0; i < rgi->
n_addrs; ++i)
1470#if defined(TARGET_LINUX) || defined(_WIN32) || defined(TARGET_DARWIN)
1496#if !defined(TARGET_LINUX)
1498#if !defined(TARGET_AIX)
1510#if defined(TARGET_LINUX)
1511 const char *
iface = NULL;
1530 msg(
D_ROUTE,
"NOTE: Linux route add command failed because route exists");
1535 msg(
M_WARN,
"ERROR: Linux route add command failed");
1539#elif defined(TARGET_ANDROID)
1544 snprintf(out,
sizeof(out),
"%s %s %s dev %s", network, netmask, gateway, rgi->iface);
1548 snprintf(out,
sizeof(out),
"%s %s %s", network, netmask, gateway);
1550 bool ret = management_android_control(
management,
"ROUTE", out);
1553#elif defined(_WIN32)
1557 network, netmask, gateway);
1570 const char *method =
"service";
1587 method =
"route.exe";
1592 method =
"ipapi [adaptive]";
1595 msg(
D_ROUTE,
"Route addition fallback to route.exe");
1598 &
argv,
es, 0,
"ERROR: Windows route add command failed [adaptive]");
1601 method =
"route.exe";
1610 msg(
D_ROUTE,
"Route addition via %s %s", method,
1615#elif defined(TARGET_SOLARIS)
1639#elif defined(TARGET_FREEBSD)
1658#elif defined(TARGET_DRAGONFLY)
1677#elif defined(TARGET_DARWIN)
1704#elif defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
1723#elif defined(TARGET_AIX)
1727 argv_printf(&
argv,
"%s add -net %s/%d %s", ROUTE_PATH, network, netbits, gateway);
1733#elif defined(TARGET_HAIKU)
1736 argv_printf(&
argv,
"%s add %s inet %s gw %s netmask %s", ROUTE_PATH, rgi->iface, network,
1744 "Sorry, but I don't know how to do 'route' commands on this operating system. Try putting your routes in a --route-up script");
1754 r->
flags &= ~RT_ADDED;
1772 int bits_to_clear = 128 -
r6->netbits;
1774 while (
byte >= 0 && bits_to_clear > 0)
1776 if (bits_to_clear >= 8)
1778 r6->network.s6_addr[
byte--] = 0;
1783 r6->network.s6_addr[
byte--] &= (0xff << bits_to_clear);
1794 bool gateway_needed =
false;
1806 if (
r6->iface != NULL)
1809 if (!IN6_IS_ADDR_UNSPECIFIED(&
r6->gateway))
1811 gateway_needed =
true;
1820#if defined(TARGET_DARWIN) || defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY) \
1821 || defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
1827 if (
r6->iface != NULL && gateway_needed
1828 && IN6_IS_ADDR_LINKLOCAL(&
r6->gateway))
1830 size_t len = strlen(gateway) + 1 + strlen(
r6->iface) + 1;
1832 snprintf(tmp, len,
"%s%%%s", gateway,
r6->iface);
1838 msg(
D_ROUTE,
"add_route_ipv6(%s/%d -> %s metric %d) dev %s", network,
r6->netbits, gateway,
1839 r6->metric, device);
1841 msg(
D_ROUTE,
"add_route_ipv6(%s/%d -> %s metric %d) IF %lu", network,
r6->netbits, gateway,
1858 gateway_needed =
true;
1861 if (gateway_needed && IN6_IS_ADDR_UNSPECIFIED(&
r6->gateway))
1864 "ROUTE6 WARNING: " PACKAGE_NAME
" needs a gateway "
1865 "parameter for a --route-ipv6 option and no default was set via "
1866 "--ifconfig-ipv6 or --route-ipv6-gateway option. Not installing "
1867 "IPv6 route to %s/%d.",
1868 network,
r6->netbits);
1873#if defined(TARGET_LINUX)
1877 metric =
r6->metric;
1881 int ret = net_route_v6_add(ctx, &
r6->network,
r6->netbits, gateway_needed ? &
r6->gateway : NULL,
1882 device,
r6->table_id, metric);
1885 msg(
D_ROUTE,
"NOTE: Linux route add command failed because route exists");
1890 msg(
M_WARN,
"ERROR: Linux route add command failed");
1894#elif defined(TARGET_ANDROID)
1897 snprintf(out,
sizeof(out),
"%s/%d %s", network,
r6->netbits, device);
1901#elif defined(_WIN32)
1911#elif defined(TARGET_SOLARIS)
1924 argv_printf(&
argv,
"%s add -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
1936#elif defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY)
1953#elif defined(TARGET_DARWIN)
1955 argv_printf(&
argv,
"%s add -inet6 %s -prefixlen %d", ROUTE_PATH, network,
r6->netbits);
1970#elif defined(TARGET_OPENBSD)
1972 argv_printf(&
argv,
"%s add -inet6 %s -prefixlen %d %s", ROUTE_PATH, network,
r6->netbits,
1979#elif defined(TARGET_NETBSD)
1981 argv_printf(&
argv,
"%s add -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
1987#elif defined(TARGET_AIX)
1989 argv_printf(&
argv,
"%s add -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
1994#elif defined(TARGET_HAIKU)
1997 argv_printf(&
argv,
"%s add %s inet6 %s gw %s prefixlen %d", ROUTE_PATH,
r6->iface, network,
1998 gateway,
r6->netbits);
2005 "Sorry, but I don't know how to do 'route ipv6' commands on this operating system. Try putting your routes in a --route-up script");
2015 r6->flags &= ~RT_ADDED;
2029#if !defined(TARGET_LINUX)
2030 const char *network;
2031#if !defined(TARGET_AIX)
2032 const char *netmask;
2034 const char *gateway;
2048#if !defined(TARGET_LINUX)
2050#if !defined(TARGET_AIX)
2062#if defined(TARGET_LINUX)
2073 msg(
M_WARN,
"ERROR: Linux route delete command failed");
2075#elif defined(_WIN32)
2078 network, netmask, gateway);
2085 msg(
D_ROUTE,
"Route deletion via service %s",
status ?
"succeeded" :
"failed");
2090 msg(
D_ROUTE,
"Route deletion via IPAPI %s",
status ?
"succeeded" :
"failed");
2101 msg(
D_ROUTE,
"Route deletion via IPAPI %s [adaptive]",
status ?
"succeeded" :
"failed");
2104 msg(
D_ROUTE,
"Route deletion fallback to route.exe");
2107 "ERROR: Windows route delete command failed [adaptive]");
2116#elif defined(TARGET_SOLARIS)
2118 argv_printf(&
argv,
"%s delete %s -netmask %s %s", ROUTE_PATH, network, netmask, gateway);
2123#elif defined(TARGET_FREEBSD)
2125 argv_printf(&
argv,
"%s delete -net %s %s %s", ROUTE_PATH, network, gateway, netmask);
2130#elif defined(TARGET_DRAGONFLY)
2132 argv_printf(&
argv,
"%s delete -net %s %s %s", ROUTE_PATH, network, gateway, netmask);
2137#elif defined(TARGET_DARWIN)
2141 argv_printf(&
argv,
"%s delete -cloning -net %s -netmask %s -interface %s", ROUTE_PATH,
2142 network, netmask, rgi->iface);
2146 argv_printf(&
argv,
"%s delete -net %s %s %s", ROUTE_PATH, network, gateway, netmask);
2152#elif defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
2154 argv_printf(&
argv,
"%s delete -net %s %s -netmask %s", ROUTE_PATH, network, gateway, netmask);
2159#elif defined(TARGET_ANDROID)
2163 "needed. The VpnService API allows routes to be set "
2164 "on connect only and will clean up automatically. "
2165 "Tried to delete route %s netmask %s gateway %s",
2166 network, netmask, gateway);
2167#elif defined(TARGET_AIX)
2171 argv_printf(&
argv,
"%s delete -net %s/%d %s", ROUTE_PATH, network, netbits, gateway);
2176#elif defined(TARGET_HAIKU)
2179 argv_printf(&
argv,
"%s delete %s inet %s gw %s netmask %s", ROUTE_PATH, rgi->iface, network,
2186 "Sorry, but I don't know how to do 'route' commands on this operating system. Try putting your routes in a --route-up script");
2190 r->
flags &= ~RT_ADDED;
2201 const char *network;
2209#if !defined(TARGET_LINUX)
2210 const char *gateway;
2212#if !defined(TARGET_SOLARIS)
2213 bool gateway_needed =
false;
2215 if (
r6->iface != NULL)
2218 gateway_needed =
true;
2227 gateway_needed =
true;
2236#if !defined(TARGET_LINUX) && !defined(_WIN32)
2240#if defined(TARGET_DARWIN) || defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY) \
2241 || defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
2247 if (
r6->iface != NULL && gateway_needed
2248 && IN6_IS_ADDR_LINKLOCAL(&
r6->gateway))
2250 size_t len = strlen(gateway) + 1 + strlen(
r6->iface) + 1;
2252 snprintf(tmp, len,
"%s%%%s", gateway,
r6->iface);
2257 msg(
D_ROUTE,
"delete_route_ipv6(%s/%d)", network,
r6->netbits);
2259#if defined(TARGET_LINUX)
2263 metric =
r6->metric;
2266 if (net_route_v6_del(ctx, &
r6->network,
r6->netbits, gateway_needed ? &
r6->gateway : NULL,
2267 device,
r6->table_id, metric)
2270 msg(
M_WARN,
"ERROR: Linux route v6 delete command failed");
2273#elif defined(_WIN32)
2283#elif defined(TARGET_SOLARIS)
2287 argv_printf(&
argv,
"%s delete -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
2292#elif defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY)
2308#elif defined(TARGET_DARWIN)
2310 argv_printf(&
argv,
"%s delete -inet6 %s -prefixlen %d", ROUTE_PATH, network,
r6->netbits);
2324#elif defined(TARGET_OPENBSD)
2326 argv_printf(&
argv,
"%s delete -inet6 %s -prefixlen %d %s", ROUTE_PATH, network,
r6->netbits,
2332#elif defined(TARGET_NETBSD)
2334 argv_printf(&
argv,
"%s delete -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
2339#elif defined(TARGET_AIX)
2341 argv_printf(&
argv,
"%s delete -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
2345#elif defined(TARGET_ANDROID)
2347 "needed. The VpnService API allows routes to be set "
2348 "on connect only and will clean up automatically. "
2349 "Tried to delete %s gateway %s",
2351 gateway_needed ? gateway :
"(not needed)");
2352#elif defined(TARGET_HAIKU)
2355 argv_printf(&
argv,
"%s delete %s inet6 %s gw %s prefixlen %d", ROUTE_PATH,
r6->iface, network,
2356 gateway,
r6->netbits);
2362 "Sorry, but I don't know how to do 'route ipv6' commands on this operating system. Try putting your routes in a --route-down script");
2378static const MIB_IPFORWARDTABLE *
2382 PMIB_IPFORWARDTABLE rt = NULL;
2385 status = GetIpForwardTable(NULL, &size, TRUE);
2386 if (
status == ERROR_INSUFFICIENT_BUFFER)
2388 rt = (PMIB_IPFORWARDTABLE)
gc_malloc(size,
false,
gc);
2389 status = GetIpForwardTable(rt, &size, TRUE);
2392 msg(
D_ROUTE,
"NOTE: GetIpForwardTable returned error: %s (code=%lu)",
2447 bool adapter_up =
false;
2461 for (r = rl->
routes, len = 0; r; r = r->
next, ++len)
2473 msg(
D_ROUTE,
"TEST ROUTES: %d/%d succeeded len=%d ret=%u a=%d u/d=%s",
2474 good, count, len, ret, ambig, adapter_up ?
"up" :
"down");
2480static const MIB_IPFORWARDROW *
2484 DWORD lowest_metric = MAXDWORD;
2485 const MIB_IPFORWARDROW *ret = NULL;
2490 for (DWORD i = 0; i < routes->dwNumEntries; ++i)
2492 const MIB_IPFORWARDROW *row = &routes->table[i];
2493 const in_addr_t net = ntohl(row->dwForwardDest);
2494 const in_addr_t mask = ntohl(row->dwForwardMask);
2495 const DWORD index = row->dwForwardIfIndex;
2496 const DWORD metric = row->dwForwardMetric1;
2502 if (!net && !mask && metric < lowest_metric)
2505 lowest_metric = metric;
2531 DWORD best_if_index;
2537 status = GetBestInterfaceEx((
struct sockaddr *)dest, &best_if_index);
2540 msg(
D_ROUTE,
"NOTE: GetBestInterfaceEx returned error: %s (code=%lu)",
2550 SOCKADDR_INET best_src;
2552 status = GetBestRoute2(&luid, best_if_index, NULL, dest, 0, best_route, &best_src);
2555 msg(
D_ROUTE,
"NOTE: GetIpForwardEntry2 returned error: %s (code=%lu)",
2574 sa.si_family = AF_INET;
2575 sa.Ipv4.sin_addr.s_addr = htonl(dest);
2578 MIB_IPFORWARD_ROW2 best_route;
2587 rgi->
gateway.
addr = ntohl(best_route.NextHop.Ipv4.sin_addr.S_un.S_addr);
2600 memcpy(rgi->
hwaddr, ai->Address, 6);
2604 in_addr_t nm = inet_addr(ai->IpAddressList.IpMask.String);
2624 bool on_tun =
false;
2629 ret = tun_adapter->Index;
2640 msg(
M_WARN,
"Warning: route gateway is not reachable on any active network adapters: %s",
2646 msg(
M_WARN,
"Warning: route gateway is ambiguous: %s (%d matches)",
2651 on_tun, count, ret);
2668 SOCKADDR_INET DestinationAddress;
2669 CLEAR(DestinationAddress);
2670 DestinationAddress.si_family = AF_INET6;
2673 DestinationAddress.Ipv6.sin6_addr = *dest;
2676 MIB_IPFORWARD_ROW2 BestRoute;
2685 msg(
D_ROUTE,
"GDG6: II=%lu DP=%s/%d NH=%s", BestRoute.InterfaceIndex,
2687 BestRoute.DestinationPrefix.PrefixLength,
2689 msg(
D_ROUTE,
"GDG6: Metric=%lu, Loopback=%u, AA=%u, I=%u", BestRoute.Metric,
2690 BestRoute.Loopback, BestRoute.AutoconfigureAddress, BestRoute.Immortal);
2697 if (IN6_IS_ADDR_UNSPECIFIED(&BestRoute.NextHop.Ipv6.sin6_addr))
2719 MIB_IPFORWARDROW fr;
2721 fr.dwForwardDest = htonl(r->
network);
2722 fr.dwForwardMask = htonl(r->
netmask);
2723 fr.dwForwardPolicy = 0;
2724 fr.dwForwardNextHop = htonl(r->
gateway);
2725 fr.dwForwardIfIndex = if_index;
2726 fr.dwForwardType = 4;
2727 fr.dwForwardProto = 3;
2728 fr.dwForwardAge = 0;
2729 fr.dwForwardNextHopAS = 0;
2738 msg(
M_WARN,
"Warning: address %s is not a network address in relation to netmask %s",
2742 status = CreateIpForwardEntry(&fr);
2748 else if (
status == ERROR_OBJECT_ALREADY_EXISTS)
2756 const DWORD forward_metric_limit = 2048;
2758 for (; fr.dwForwardMetric1 <= forward_metric_limit; ++fr.dwForwardMetric1)
2763 for (fr.dwForwardType = 4; fr.dwForwardType >= 3; --fr.dwForwardType)
2765 status = CreateIpForwardEntry(&fr);
2769 "ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=%lu and dwForwardType=%lu",
2770 fr.dwForwardMetric1, fr.dwForwardType);
2774 else if (
status != ERROR_BAD_ARGUMENTS)
2784 if (
status == ERROR_OBJECT_ALREADY_EXISTS)
2791 "ERROR: route addition failed using CreateIpForwardEntry: "
2792 "%s [status=%lu if_index=%lu]",
2813 MIB_IPFORWARDROW fr;
2816 fr.dwForwardDest = htonl(r->
network);
2817 fr.dwForwardMask = htonl(r->
netmask);
2818 fr.dwForwardPolicy = 0;
2819 fr.dwForwardNextHop = htonl(r->
gateway);
2820 fr.dwForwardIfIndex = if_index;
2822 status = DeleteIpForwardEntry(&fr);
2830 msg(
M_WARN,
"ERROR: route deletion failed using DeleteIpForwardEntry: %s",
2857 msg(
M_WARN,
"ERROR: route %s failed using service: %s [status=%u if_index=%lu]",
2884 .prefix.ipv4.s_addr = htonl(r->
network),
2885 .gateway.ipv4.s_addr = htonl(r->
gateway),
2886 .iface = { .index = if_index, .name =
"" },
2890 if (
msg.prefix_len == -1)
2892 msg.prefix_len = 32;
2906 PMIB_IPFORWARD_ROW2 fwd_row;
2911 fwd_row->ValidLifetime = 0xffffffff;
2912 fwd_row->PreferredLifetime = 0xffffffff;
2913 fwd_row->Protocol = MIB_IPPROTO_NETMGMT;
2915 fwd_row->DestinationPrefix.Prefix.si_family = AF_INET6;
2916 fwd_row->DestinationPrefix.Prefix.Ipv6.sin6_addr = r->
network;
2917 fwd_row->DestinationPrefix.PrefixLength = (UINT8)r->
netbits;
2918 fwd_row->NextHop.si_family = AF_INET6;
2919 fwd_row->NextHop.Ipv6.sin6_addr = r->
gateway;
2928 inet_pton(AF_INET6,
"fe80::8", &fwd_row->NextHop.Ipv6.sin6_addr);
2936 if (err != NO_ERROR)
2940 fwd_row->InterfaceLuid = luid;
2941 fwd_row->InterfaceIndex = 0;
2946 err = CreateIpForwardEntry2(fwd_row);
2950 err = DeleteIpForwardEntry2(fwd_row);
2954 if (err != NO_ERROR)
2959 msg(
M_WARN,
"ERROR: route %s failed using ipapi: %s [status=%lu if_index=%lu]",
2961 fwd_row->InterfaceIndex);
2965 msg(
D_ROUTE,
"IPv6 route addition using ipapi failed because route exists");
2970 msg(
D_ROUTE,
"IPv6 route %s using ipapi", add ?
"added" :
"deleted");
3002 inet_pton(AF_INET6,
"fe80::8", &
msg.gateway.ipv6);
3008 msg.iface.name[
sizeof(
msg.iface.name) - 1] =
'\0';
3014 msg(
D_ROUTE,
"IPv6 route %s via service %s", add ?
"addition" :
"deletion",
3050 buf_printf(&out,
"%s %s %s p=%lu i=%lu t=%lu pr=%lu a=%lu h=%lu m=%lu/%lu/%lu/%lu/%lu",
3054 r->dwForwardIfIndex,
r->dwForwardType,
r->dwForwardProto,
3055 r->dwForwardAge,
r->dwForwardNextHopAS,
r->dwForwardMetric1,
3056 r->dwForwardMetric2,
r->dwForwardMetric3,
r->dwForwardMetric4,
3057 r->dwForwardMetric5);
3071 msg(msglevel,
"SYSTEM ROUTING TABLE");
3074 for (DWORD i = 0; i < rt->dwNumEntries; ++i)
3082#elif defined(TARGET_ANDROID)
3097 rgi->
gateway.
addr = 127 << 24 |
'd' << 16 |
'g' << 8 |
'w';
3099 strcpy(rgi->iface,
"android-gw");
3119 strcpy(rgi6->iface,
"android-gw");
3122#elif defined(TARGET_LINUX)
3129 char best_name[IFNAMSIZ];
3135 if (net_route_v4_best_gw(ctx, &dest, &rgi->
gateway.
addr, best_name) == 0)
3147 struct ifreq *ifr, *ifend;
3151 struct ifreq ifs[20];
3153 if ((sd = socket(AF_INET, SOCK_DGRAM, 0)) < 0)
3158 ifc.ifc_len =
sizeof(ifs);
3160 if (ioctl(sd, SIOCGIFCONF, &ifc) < 0)
3162 msg(
M_WARN,
"GDG: ioctl(SIOCGIFCONF) failed");
3167 ifend = ifs + (ifc.ifc_len /
sizeof(
struct ifreq));
3168 for (ifr = ifc.ifc_req; ifr < ifend; ifr++)
3170 if (ifr->ifr_addr.sa_family == AF_INET)
3173 addr = ntohl(((
struct sockaddr_in *)&ifr->ifr_addr)->sin_addr.s_addr);
3176 strncpynt(ifreq.ifr_name, ifr->ifr_name,
sizeof(ifreq.ifr_name));
3179 if (ioctl(sd, SIOCGIFFLAGS, &ifreq) < 0)
3183 if (!(ifreq.ifr_flags & IFF_UP))
3192 if (strcmp(ifreq.ifr_name, best_name))
3198 if ((ifreq.ifr_flags & IFF_POINTOPOINT) && ioctl(sd, SIOCGIFDSTADDR, &ifreq) >= 0)
3200 rgi->
gateway.
addr = ntohl(((
struct sockaddr_in *) &ifreq.ifr_addr)->sin_addr.s_addr);
3203 rgi->
flags &= ~RGI_ON_LINK;
3211 if (ioctl(sd, SIOCGIFNETMASK, &ifreq) < 0)
3215 netmask = ntohl(((
struct sockaddr_in *)&ifreq.ifr_addr)->sin_addr.s_addr);
3229 strncpynt(rgi->iface, ifreq.ifr_name,
sizeof(rgi->iface));
3233 memset(&ifreq.ifr_hwaddr, 0,
sizeof(
struct sockaddr));
3234 if (ioctl(sd, SIOCGIFHWADDR, &ifreq) < 0)
3236 msg(
M_WARN,
"GDG: SIOCGIFHWADDR(%s) failed", ifreq.ifr_name);
3239 memcpy(rgi->
hwaddr, &ifreq.ifr_hwaddr.sa_data, 6);
3275 if (net_route_v6_best_gw(ctx, dest, &rgi6->
gateway.
addr_ipv6, rgi6->iface) == 0)
3282 if (strlen(rgi6->iface) > 0)
3300#elif defined(TARGET_DARWIN) || defined(TARGET_SOLARIS) || defined(TARGET_FREEBSD) \
3301 || defined(TARGET_DRAGONFLY) || defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
3303#include <sys/types.h>
3304#include <sys/socket.h>
3305#include <netinet/in.h>
3306#include <net/route.h>
3307#include <net/if_dl.h>
3308#if !defined(TARGET_SOLARIS)
3314 struct rt_msghdr m_rtm;
3334#if defined(TARGET_DARWIN)
3335#define ROUNDUP(a) ((a) > 0 ? (1 + (((a) - 1) | (sizeof(uint32_t) - 1))) : sizeof(uint32_t))
3336#elif defined(TARGET_NETBSD)
3337#define ROUNDUP(a) RT_ROUNDUP(a)
3339#define ROUNDUP(a) ((a) > 0 ? (1 + (((a) - 1) | (sizeof(long) - 1))) : sizeof(long))
3342#if defined(TARGET_SOLARIS)
3343#define NEXTADDR(w, u) \
3344 if (rtm_addrs & (w)) \
3346 size_t l = sizeof(u); \
3347 memmove(cp, &(u), l); \
3351#define ADVANCE(x, n) (x += ROUNDUP(sizeof(struct sockaddr_in)))
3353#define NEXTADDR(w, u) \
3354 if (rtm_addrs & (w)) \
3356 size_t l = ((struct sockaddr *)&(u))->sa_len; \
3357 memmove(cp, &(u), l); \
3361#define ADVANCE(x, n) (x += ROUNDUP((n)->sa_len))
3364#define max(a, b) ((a) > (b) ? (a) : (b))
3370 struct rtmsg m_rtmsg;
3373 struct sockaddr so_dst, so_mask;
3374 char *cp = m_rtmsg.m_space;
3375 struct sockaddr *gate = NULL, *ifp = NULL, *sa;
3376 struct rt_msghdr *rtm_aux;
3378#define rtm m_rtmsg.m_rtm
3383 const int pid = getpid();
3385#ifdef TARGET_OPENBSD
3386 rtm_addrs = RTA_DST | RTA_NETMASK;
3388 rtm_addrs = RTA_DST | RTA_NETMASK | RTA_IFP;
3391 bzero(&m_rtmsg,
sizeof(m_rtmsg));
3392 bzero(&so_dst,
sizeof(so_dst));
3393 bzero(&so_mask,
sizeof(so_mask));
3394 bzero(&rtm,
sizeof(
struct rt_msghdr));
3396 rtm.rtm_type = RTM_GET;
3397 rtm.rtm_flags = RTF_UP | RTF_GATEWAY;
3398 rtm.rtm_version = RTM_VERSION;
3399 rtm.rtm_seq = ++seq;
3400#ifdef TARGET_OPENBSD
3401 rtm.rtm_tableid = (u_short)getrtable();
3403 rtm.rtm_addrs = rtm_addrs;
3405 so_dst.sa_family = AF_INET;
3406 so_mask.sa_family = AF_INET;
3408#ifndef TARGET_SOLARIS
3409 so_dst.sa_len =
sizeof(
struct sockaddr_in);
3410 so_mask.sa_len =
sizeof(
struct sockaddr_in);
3413 NEXTADDR(RTA_DST, so_dst);
3414 NEXTADDR(RTA_NETMASK, so_mask);
3417 rtm.rtm_msglen = (u_short)(cp - (
char *)&m_rtmsg);
3420 sockfd = socket(PF_ROUTE, SOCK_RAW, 0);
3426 if (
write(sockfd, (
char *)&m_rtmsg, rtm.rtm_msglen) < 0)
3434 ret =
read(sockfd, (
char *)&m_rtmsg,
sizeof(m_rtmsg));
3435 }
while (ret > 0 && (rtm.rtm_seq != seq || rtm.rtm_pid != pid));
3441 cp = (
char *)(rtm_aux + 1);
3442 if (rtm_aux->rtm_addrs)
3444 for (
unsigned int i = 1; i; i <<= 1)
3446 if (i & rtm_aux->rtm_addrs)
3448 sa = (
struct sockaddr *)cp;
3449 if (i == RTA_GATEWAY)
3453 else if (i == RTA_IFP)
3470 rgi->
gateway.
addr = ntohl(((
struct sockaddr_in *)gate)->sin_addr.s_addr);
3479 const struct sockaddr_dl *adl = (
struct sockaddr_dl *)ifp;
3480 if (adl->sdl_nlen && adl->sdl_nlen <
sizeof(rgi->iface))
3482 memcpy(rgi->iface, adl->sdl_data, adl->sdl_nlen);
3483 rgi->iface[adl->sdl_nlen] =
'\0';
3494 sockfd = socket(AF_INET, SOCK_DGRAM, 0);
3502 ifr.ifr_addr.sa_family = AF_INET;
3503 strncpynt(ifr.ifr_name, rgi->iface, IFNAMSIZ);
3505 if (ioctl(sockfd, SIOCGIFNETMASK, (
char *)&ifr) < 0)
3513 rgi->
gateway.
netmask = ntohl(((
struct sockaddr_in *)&ifr.ifr_addr)->sin_addr.s_addr);
3520#if defined(TARGET_SOLARIS)
3522 sockfd = socket(AF_INET, SOCK_DGRAM, 0);
3529 struct ifreq ifreq = { 0 };
3532 strncpynt(ifreq.ifr_name, rgi->iface,
sizeof(ifreq.ifr_name));
3533 if (ioctl(sockfd, SIOCGIFHWADDR, &ifreq) < 0)
3535 msg(
M_WARN,
"GDG: SIOCGIFHWADDR(%s) failed", ifreq.ifr_name);
3539 memcpy(rgi->
hwaddr, &ifreq.ifr_addr.sa_data, 6);
3543 struct ifaddrs *ifap, *ifa;
3545 if (getifaddrs(&ifap) != 0)
3551 for (ifa = ifap; ifa; ifa = ifa->ifa_next)
3553 if (ifa->ifa_addr != NULL && ifa->ifa_addr->sa_family == AF_LINK
3554 && !strncmp(ifa->ifa_name, rgi->iface, IFNAMSIZ))
3556 struct sockaddr_dl *sdl = (
struct sockaddr_dl *)ifa->ifa_addr;
3557 memcpy(rgi->
hwaddr, LLADDR(sdl), 6);
3581#if defined(TARGET_SOLARIS)
3583#define ADVANCE(x, n) (x += ROUNDUP(sizeof(struct sockaddr_in6)))
3590 struct rtmsg m_rtmsg;
3593 struct sockaddr_in6 so_dst, so_mask;
3594 char *cp = m_rtmsg.m_space;
3595 struct sockaddr *gate = NULL, *ifp = NULL, *sa;
3596 struct rt_msghdr *rtm_aux;
3601 const int pid = getpid();
3603#ifdef TARGET_OPENBSD
3604 rtm_addrs = RTA_DST | RTA_NETMASK;
3606 rtm_addrs = RTA_DST | RTA_NETMASK | RTA_IFP;
3609 bzero(&m_rtmsg,
sizeof(m_rtmsg));
3610 bzero(&so_dst,
sizeof(so_dst));
3611 bzero(&so_mask,
sizeof(so_mask));
3612 bzero(&rtm,
sizeof(
struct rt_msghdr));
3614 rtm.rtm_type = RTM_GET;
3615 rtm.rtm_flags = RTF_UP;
3616 rtm.rtm_version = RTM_VERSION;
3617 rtm.rtm_seq = ++seq;
3618#ifdef TARGET_OPENBSD
3619 rtm.rtm_tableid = (u_short)getrtable();
3622 so_dst.sin6_family = AF_INET6;
3623 so_mask.sin6_family = AF_INET6;
3626 && !IN6_IS_ADDR_UNSPECIFIED(dest))
3628 so_dst.sin6_addr = *dest;
3630 rtm_addrs &= ~RTA_NETMASK;
3633 rtm.rtm_addrs = rtm_addrs;
3635#ifndef TARGET_SOLARIS
3636 so_dst.sin6_len =
sizeof(
struct sockaddr_in6);
3637 so_mask.sin6_len =
sizeof(
struct sockaddr_in6);
3640 NEXTADDR(RTA_DST, so_dst);
3641 NEXTADDR(RTA_NETMASK, so_mask);
3644 rtm.rtm_msglen = (u_short)(cp - (
char *)&m_rtmsg);
3647 sockfd = socket(PF_ROUTE, SOCK_RAW, 0);
3653 if (
write(sockfd, (
char *)&m_rtmsg, rtm.rtm_msglen) < 0)
3661 ret =
read(sockfd, (
char *)&m_rtmsg,
sizeof(m_rtmsg));
3662 }
while (ret > 0 && (rtm.rtm_seq != seq || rtm.rtm_pid != pid));
3669 cp = (
char *)(rtm_aux + 1);
3670 if (rtm_aux->rtm_addrs)
3672 for (
unsigned int i = 1; i; i <<= 1)
3674 if (i & rtm_aux->rtm_addrs)
3676 sa = (
struct sockaddr *)cp;
3677 if (i == RTA_GATEWAY)
3681 else if (i == RTA_IFP)
3697 struct sockaddr_in6 *s6 = (
struct sockaddr_in6 *)gate;
3698 struct in6_addr gw = s6->sin6_addr;
3700#ifndef TARGET_SOLARIS
3705 if (gate->sa_len ==
sizeof(
struct sockaddr_in6) && IN6_IS_ADDR_LINKLOCAL(&gw))
3707 gw.s6_addr[2] = gw.s6_addr[3] = 0;
3710 if (gate->sa_len !=
sizeof(
struct sockaddr_in6) || IN6_IS_ADDR_UNSPECIFIED(&gw))
3724 const struct sockaddr_dl *adl = (
struct sockaddr_dl *)ifp;
3725 if (adl->sdl_nlen && adl->sdl_nlen <
sizeof(rgi6->iface))
3727 memcpy(rgi6->iface, adl->sdl_data, adl->sdl_nlen);
3742#elif defined(TARGET_HAIKU)
3749 int sockfd = socket(AF_INET, SOCK_DGRAM, 0);
3752 msg(
M_ERRNO,
"%s: Error opening socket for AF_INET", __func__);
3756 struct ifconf config;
3757 config.ifc_len =
sizeof(config.ifc_value);
3758 if (ioctl(sockfd, SIOCGRTSIZE, &config,
sizeof(
struct ifconf)) < 0)
3760 msg(
M_ERRNO,
"%s: Error getting routing table size", __func__);
3764 uint32 size = (uint32)config.ifc_value;
3770 void *
buffer = malloc(size);
3773 config.ifc_len = size;
3775 if (ioctl(sockfd, SIOCGRTTABLE, &config,
sizeof(
struct ifconf)) < 0)
3781 struct ifreq *
interface = (struct ifreq *)
buffer;
3782 struct ifreq *end = (
struct ifreq *)((uint8 *)
buffer + size);
3784 while (interface < end)
3786 struct route_entry
route = interface->ifr_route;
3787 if ((
route.flags & RTF_GATEWAY) != 0 && (
route.flags & RTF_DEFAULT) != 0)
3789 rgi->
gateway.
addr = ntohl(((
struct sockaddr_in *)
route.gateway)->sin_addr.s_addr);
3791 strncpy(rgi->iface, interface->ifr_name,
sizeof(rgi->iface));
3794 int32 address_size = 0;
3795 if (
route.destination != NULL)
3797 address_size +=
route.destination->sa_len;
3799 if (
route.mask != NULL)
3801 address_size +=
route.mask->sa_len;
3803 if (
route.gateway != NULL)
3805 address_size +=
route.gateway->sa_len;
3808 interface = (struct ifreq *)((addr_t)
interface +
IF_NAMESIZE + sizeof(struct route_entry)
3857 msg(
D_ROUTE,
"no support for get_default_gateway_ipv6() on this system");
3867 const int addrlen =
sizeof(
in_addr_t) * 8;
3869 if ((network & netmask) == network)
3871 for (i = 0; i <= addrlen; ++i)
3874 if (mask == netmask)
3898 const int addrlen =
sizeof(
in_addr_t) * 8;
3900 for (i = 0; i <= addrlen; ++i)
3903 if (mask == netmask)
3934 bool succeed =
false;
3941 iplist = iplist->Next;
4013 for (DWORD i = 0; i < rt->dwNumEntries; ++i)
4015 const MIB_IPFORWARDROW *row = &rt->table[i];
4016 const in_addr_t net = ntohl(row->dwForwardDest);
4017 const in_addr_t mask = ntohl(row->dwForwardMask);
4018 if (mask > nonlocal_netmask && (addr & mask) == net)
void argv_msg(const msglvl_t msglevel, const struct argv *a)
Write the arguments stored in a struct argv via the msg() command.
void argv_free(struct argv *a)
Frees all memory allocations allocated by the struct argv related functions.
bool argv_printf(struct argv *argres, const char *format,...)
printf() variant which populates a struct argv.
bool argv_printf_cat(struct argv *argres, const char *format,...)
printf() inspired argv concatenation.
struct argv argv_new(void)
Allocates a new struct argv and ensures it is initialised.
bool buf_printf(struct buffer *buf, const char *format,...)
void * gc_malloc(size_t size, bool clear, struct gc_arena *a)
struct buffer alloc_buf_gc(size_t size, struct gc_arena *gc)
char * format_hex_ex(const uint8_t *data, size_t size, size_t maxoutput, unsigned int space_break_flags, const char *separator, struct gc_arena *gc)
void gc_addspecial(void *addr, void(*free_function)(void *), struct gc_arena *a)
#define ALLOC_OBJ_CLEAR_GC(dptr, type, gc)
#define ALLOC_OBJ_GC(dptr, type, gc)
static void strncpynt(char *dest, const char *src, size_t maxlen)
static void check_malloc_return(void *p)
static void gc_free(struct gc_arena *a)
static void gc_freeaddrinfo_callback(void *addr)
static struct gc_arena gc_new(void)
void setenv_int(struct env_set *es, const char *name, int value)
void setenv_str(struct env_set *es, const char *name, const char *value)
static SERVICE_STATUS status
void management_set_state(struct management *man, const int state, const char *detail, const in_addr_t *tun_local_ip, const struct in6_addr *tun_local_ip6, const struct openvpn_sockaddr *local, const struct openvpn_sockaddr *remote)
#define OPENVPN_STATE_ADD_ROUTES
static void net_ctx_reset(openvpn_net_ctx_t *ctx)
#define TUN_ADAPTER_INDEX_INVALID
#define IPV4_NETMASK_HOST
const char * strerror_win32(DWORD errnum, struct gc_arena *gc)
void print_route_options(const struct route_option_list *rol, msglvl_t msglevel)
static void undo_redirect_default_route_to_vpn(struct route_list *rl, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static void print_route_option(const struct route_option *ro, msglvl_t msglevel)
static void add_host_route_if_nonlocal(struct route_bypass *rb, const in_addr_t addr)
bool add_routes(struct route_list *rl, struct route_ipv6_list *rl6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
bool is_special_addr(const char *addr_str)
struct route_option_list * clone_route_option_list(const struct route_option_list *src, struct gc_arena *a)
void setenv_routes_ipv6(struct env_set *es, const struct route_ipv6_list *rl6)
static void clear_route_list(struct route_list *rl)
static void test_route_helper(bool *ret, int *count, int *good, int *ambig, const IP_ADAPTER_INFO *adapters, const in_addr_t gateway)
static void del_bypass_routes(struct route_bypass *rb, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool del_route_ipapi(const struct route_ipv4 *r, const struct tuntap *tt)
static bool redirect_default_route_to_vpn(struct route_list *rl, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool add_route3(in_addr_t network, in_addr_t netmask, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static void add_host_route_array(struct route_bypass *rb, const IP_ADDR_STRING *iplist)
int netmask_to_netbits2(in_addr_t netmask)
struct route_ipv6_option_list * new_route_ipv6_option_list(struct gc_arena *a)
static bool init_route(struct route_ipv4 *r, struct addrinfo **network_list, const struct route_option *ro, const struct route_list *rl)
void delete_routes_v6(struct route_ipv6_list *rl6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static const char * route_string(const struct route_ipv4 *r, struct gc_arena *gc)
static bool get_special_addr(const struct route_list *rl, const char *string, in_addr_t *out, bool *status)
bool test_routes(const struct route_list *rl, const struct tuntap *tt)
static void add_block_local_routes(struct route_list *rl)
bool block_local_needed(const struct route_list *rl)
Get the decision whether to block traffic to local networks while the VPN is connected.
void get_default_gateway_ipv6(struct route_ipv6_gateway_info *rgi6, const struct in6_addr *dest, openvpn_net_ctx_t *ctx)
static const MIB_IPFORWARDTABLE * get_windows_routing_table(struct gc_arena *gc)
static DWORD get_best_route(struct gc_arena *gc, SOCKADDR_INET *dest, MIB_IPFORWARD_ROW2 *best_route)
Determines the best route to a destination for both IPv4 and IPv6.
static int do_route_service(const bool add, const route_message_t *rt, const DWORD size, HANDLE pipe)
static const char * format_route_entry(const MIB_IPFORWARDROW *r, struct gc_arena *gc)
static int add_route_service(const struct route_ipv4 *, const struct tuntap *)
bool init_route_ipv6_list(struct route_ipv6_list *rl6, const struct route_ipv6_option_list *opt6, const char *remote_endpoint, int default_metric, const struct in6_addr *remote_host_ipv6, struct env_set *es, openvpn_net_ctx_t *ctx)
static void delete_route(struct route_ipv4 *r, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool del_route_ipv6_service(const struct route_ipv6 *, const struct tuntap *)
void route_list_add_vpn_gateway(struct route_list *rl, struct env_set *es, const in_addr_t addr)
bool ipv6_net_contains_host(const struct in6_addr *network, unsigned int bits, const struct in6_addr *host)
check whether an IPv6 host address is covered by a given network/bits
void add_route_ipv6_to_option_list(struct route_ipv6_option_list *l, const char *prefix, const char *gateway, const char *metric, int table_id)
void copy_route_option_list(struct route_option_list *dest, const struct route_option_list *src, struct gc_arena *a)
void copy_route_ipv6_option_list(struct route_ipv6_option_list *dest, const struct route_ipv6_option_list *src, struct gc_arena *a)
bool add_route(struct route_ipv4 *r, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static int test_route(const IP_ADAPTER_INFO *adapters, const in_addr_t gateway, DWORD *index)
void print_default_gateway(const msglvl_t msglevel, const struct route_gateway_info *rgi, const struct route_ipv6_gateway_info *rgi6)
bool add_route_ipv6(struct route_ipv6 *r6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool del_route_service(const struct route_ipv4 *, const struct tuntap *)
static void print_route(const struct route_ipv4 *r, msglvl_t msglevel)
static int local_route(in_addr_t network, in_addr_t netmask, in_addr_t gateway, const struct route_gateway_info *rgi)
static int add_route_ipv6_service(const struct route_ipv6 *, const struct tuntap *)
static bool is_on_link(const int is_local_route, const unsigned int flags, const struct route_gateway_info *rgi)
static const MIB_IPFORWARDROW * get_default_gateway_row(const MIB_IPFORWARDTABLE *routes)
void get_default_gateway(struct route_gateway_info *rgi, in_addr_t dest, openvpn_net_ctx_t *ctx)
Retrieves the best gateway for a given destination based on the routing table.
static int route_ipv6_ipapi(bool add, const struct route_ipv6 *, const struct tuntap *)
static void add_block_local_item(struct route_list *rl, const struct route_gateway_address *gateway, in_addr_t target)
struct route_ipv6_option_list * clone_route_ipv6_option_list(const struct route_ipv6_option_list *src, struct gc_arena *a)
static const char * show_opt(const char *option)
void print_routes(const struct route_list *rl, msglvl_t msglevel)
static bool init_route_ipv6(struct route_ipv6 *r6, const struct route_ipv6_option *r6o, const struct route_ipv6_list *rl6)
struct route_option_list * new_route_option_list(struct gc_arena *a)
int test_local_addr(const in_addr_t addr, const struct route_gateway_info *rgi)
bool init_route_list(struct route_list *rl, const struct route_option_list *opt, const char *remote_endpoint, int default_metric, in_addr_t remote_host, struct env_set *es, openvpn_net_ctx_t *ctx)
static int add_route_ipapi(const struct route_ipv4 *r, const struct tuntap *tt, DWORD adapter_index)
void delete_route_ipv6(const struct route_ipv6 *r6, const struct tuntap *tt, const struct env_set *es, openvpn_net_ctx_t *ctx)
static int do_route_ipv6_service(const bool add, const struct route_ipv6 *r, const struct tuntap *tt)
void route_ipv6_clear_host_bits(struct route_ipv6 *r6)
static void clear_route_ipv6_list(struct route_ipv6_list *rl6)
void delete_routes(struct route_list *rl, struct route_ipv6_list *rl6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
void show_routes(msglvl_t msglevel)
bool netmask_to_netbits(const in_addr_t network, const in_addr_t netmask, int *netbits)
static void setenv_route_addr(struct env_set *es, const char *key, const in_addr_t addr, int i)
static DWORD windows_route_find_if_index(const struct route_ipv4 *r, const struct tuntap *tt)
static int do_route_ipv4_service(const bool add, const struct route_ipv4 *r, const struct tuntap *tt)
void setenv_routes(struct env_set *es, const struct route_list *rl)
void delete_routes_v4(struct route_list *rl, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool add_bypass_routes(struct route_bypass *rb, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static void get_bypass_addresses(struct route_bypass *rb, const unsigned int flags)
static bool is_route_parm_defined(const char *parm)
static void setenv_route_ipv6(struct env_set *es, const struct route_ipv6 *r6, int i)
static bool add_bypass_address(struct route_bypass *rb, const in_addr_t a)
static void setenv_route(struct env_set *es, const struct route_ipv4 *r, int i)
void add_route_to_option_list(struct route_option_list *l, const char *network, const char *netmask, const char *gateway, const char *metric, int table_id)
static void del_route3(in_addr_t network, in_addr_t netmask, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
#define RL_DID_REDIRECT_DEFAULT_GATEWAY
#define RTSA_REMOTE_ENDPOINT
#define RGI_HWADDR_DEFINED
static in_addr_t netbits_to_netmask(const int netbits)
#define ROUTE_METHOD_SERVICE
#define RGI_IFACE_DEFINED
#define ROUTE_METHOD_IPAPI
#define RT_METRIC_DEFINED
#define ROUTE_DELETE_FIRST
#define TLA_NOT_IMPLEMENTED
#define ROUTE_METHOD_ADAPTIVE
#define ROUTE_METHOD_MASK
#define RTSA_DEFAULT_METRIC
#define RGI_NETMASK_DEFINED
int openvpn_execve_check(const struct argv *a, const struct env_set *es, const unsigned int flags, const char *error_message)
bool get_ipv6_addr(const char *hostname, struct in6_addr *network, unsigned int *netbits, msglvl_t msglevel)
Translate an IPv6 addr or hostname from string form to in6_addr.
in_addr_t getaddr(unsigned int flags, const char *hostname, int resolve_retry_seconds, bool *succeeded, struct signal_info *sig_info)
Translate an IPv4 addr or hostname from string form to in_addr_t.
#define IPV4_INVALID_ADDR
int openvpn_getaddrinfo(unsigned int flags, const char *hostname, const char *servname, int resolve_retry_seconds, struct signal_info *sig_info, int ai_family, struct addrinfo **res)
const char * print_in6_addr(struct in6_addr a6, unsigned int flags, struct gc_arena *gc)
const char * print_in_addr_t(in_addr_t addr, unsigned int flags, struct gc_arena *gc)
#define GETADDR_HOST_ORDER
#define GETADDR_WARN_ON_SIGNAL
Wrapper structure for dynamically allocated memory.
int len
Length in bytes of the actual content within the allocated memory.
Garbage collection arena used to keep track of dynamically allocated memory.
Container for unidirectional cipher and HMAC key material.
in_addr_t bypass[N_ROUTE_BYPASS]
struct route_gateway_address addrs[RGI_N_ADDRESSES]
struct route_gateway_address gateway
const struct route_option * option
struct in6_addr addr_ipv6
struct route_ipv6_gateway_address gateway
struct route_ipv6_gateway_address addrs[RGI_N_ADDRESSES]
struct route_ipv6_gateway_info rgi6
struct route_ipv6 * routes_ipv6
struct route_ipv6_gateway_info ngi6
struct in6_addr remote_host_ipv6
struct in6_addr remote_endpoint_ipv6
struct route_ipv6_option * routes_ipv6
struct route_ipv6_option * next
struct route_gateway_info rgi
struct route_ipv4 * routes
struct route_special_addr spec
struct route_gateway_info ngi
struct route_option * routes
struct route_option * next
struct route_bypass bypass
in_addr_t remote_endpoint
bool did_ifconfig_ipv6_setup
if the internal variables related to ifconfig-ipv6 of this struct have been set up.
struct tuntap_options options
bool did_ifconfig_setup
if the internal variables related to ifconfig of this struct have been set up.
const IP_ADAPTER_INFO * get_tun_adapter(const struct tuntap *tt, const IP_ADAPTER_INFO *list)
bool is_adapter_up(const struct tuntap *tt, const IP_ADAPTER_INFO *list)
const IP_ADAPTER_INFO * get_adapter_info(DWORD index, struct gc_arena *gc)
const IP_PER_ADAPTER_INFO * get_per_adapter_info(const DWORD index, struct gc_arena *gc)
bool is_ip_in_adapter_subnet(const IP_ADAPTER_INFO *ai, const in_addr_t ip, in_addr_t *highest_netmask)
const IP_ADAPTER_INFO * get_adapter_info_list(struct gc_arena *gc)
const IP_ADAPTER_INFO * get_adapter(const IP_ADAPTER_INFO *ai, DWORD index)
DWORD adapter_index_of_ip(const IP_ADAPTER_INFO *list, const in_addr_t ip, int *count, in_addr_t *netmask)
WCHAR * wide_string(const char *utf8, struct gc_arena *gc)
void netcmd_semaphore_release(void)
char * get_win_sys_path(void)
void netcmd_semaphore_lock(void)
bool send_msg_iservice(HANDLE pipe, const void *data, DWORD size, ack_message_t *ack, const char *context)
Send the size bytes in buffer data to the interactive service pipe and read the result in ack.
#define WIN_ROUTE_PATH_SUFFIX
