48#if defined(TARGET_LINUX) || defined(TARGET_ANDROID)
49#include <linux/rtnetlink.h>
52#if defined(TARGET_NETBSD)
59#define METRIC_NOT_USED ((DWORD)-1)
105#ifndef TARGET_ANDROID
239 if (!
strcmp(
string,
"vpn_gateway"))
245 *out =
rl->spec.remote_endpoint;
258 else if (!
strcmp(
string,
"net_gateway"))
264 *out =
rl->ngi.gateway.addr;
269 " ROUTE: net_gateway undefined -- unable to get default gateway from system");
278 else if (!
strcmp(
string,
"remote_host"))
284 *out =
rl->spec.remote_host;
320 struct in_addr special = { 0 };
340 special.s_addr = htonl(special.s_addr);
341 char buf[INET_ADDRSTRLEN];
342 inet_ntop(AF_INET, &special, buf,
sizeof(buf));
348 NULL, AF_INET, network_list);
397 " ROUTE: " PACKAGE_NAME
398 " needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options");
411 msg(
M_WARN, PACKAGE_NAME
" ROUTE: route metric for network %s (%s) must be >= 0",
431 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve route for host/network: %s",
450 if (inet_pton(AF_INET6, r6o->
gateway, &
r6->gateway) != 1)
452 msg(
M_WARN, PACKAGE_NAME
"ROUTE6: cannot parse gateway spec '%s'", r6o->
gateway);
468 msg(
M_WARN, PACKAGE_NAME
" ROUTE: route metric for network %s (%s) must be >= 0",
488 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve route for host/network: %s",
495 const char *gateway,
const char *metric,
int table_id)
558 l2 = ((~gateway->netmask) + 1) >> 1;
560 r1->gateway = target;
562 r1->netmask = ~(l2 - 1);
576#ifndef TARGET_ANDROID
607 const char *remote_endpoint,
int default_metric,
in_addr_t remote_host,
633#if defined(ENABLE_DEBUG) && !defined(ENABLE_SMALL)
651 bool defined =
false;
663 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve default gateway: %s",
686 struct addrinfo *netlist = NULL;
695 struct addrinfo *curele;
696 for (curele = netlist; curele; curele = curele->ai_next)
701 new->
network = ntohl(((
struct sockaddr_in *)curele->ai_addr)->sin_addr.s_addr);
728 for (i = 0; bits >= 8; i++, bits -= 8)
730 if (
network->s6_addr[i] != host->s6_addr[i])
741 unsigned int mask = 0xff << (8 - bits);
743 if ((
network->s6_addr[i] & mask) == (host->s6_addr[i] & mask))
753 const char *remote_endpoint,
int default_metric,
754 const struct in6_addr *remote_host_ipv6,
struct env_set *
es,
759 bool need_remote_ipv6_route;
765 if (remote_host_ipv6)
771 if (default_metric >= 0)
784#if defined(ENABLE_DEBUG) && !defined(ENABLE_SMALL)
803 msg(
M_WARN, PACKAGE_NAME
" ROUTE: failed to parse/resolve VPN endpoint: %s",
812 need_remote_ipv6_route =
false;
829#ifndef TARGET_ANDROID
837 need_remote_ipv6_route =
true;
839 "ROUTE6: %s/%d overlaps IPv6 remote %s, adding host route to VPN endpoint",
849 if (need_remote_ipv6_route)
857 r6->network = *remote_host_ipv6;
867 r6->iface = rl6->
rgi6.iface;
877 "ROUTE6: IPv6 route overlaps with IPv6 remote address, but could not determine IPv6 gateway address + interface, expect failure\n");
919 for (
int i = 0; i < rb->
n_bypass; ++i)
951 const char err[] =
"NOTE: unable to redirect IPv4 default gateway --";
960 msg(
M_WARN,
"%s VPN gateway parameter (--route-gateway or --ifconfig) is missing", err);
971 msg(
M_WARN,
"%s Cannot read current default gateway from system", err);
976#ifndef TARGET_ANDROID
1008 dmsg(
D_ROUTE,
"ROUTE remote_host protocol differs from tunneled");
1067 rl->
iflags &= ~RL_DID_LOCAL;
1098 rl->
iflags &= ~RL_DID_REDIRECT_DEFAULT_GATEWAY;
1114 "WARNING: OpenVPN was configured to add an IPv4 "
1115 "route. However, no IPv4 has been configured for %s, "
1116 "therefore the route installation may fail or may not work "
1121#ifdef ENABLE_MANAGEMENT
1146 "WARNING: OpenVPN was configured to add an IPv6 "
1147 "route. However, no IPv6 has been configured for %s, "
1148 "therefore the route installation may fail or may not work "
1186 rl->
iflags &= ~RL_ROUTES_ADDED;
1208 rl6->
iflags &= ~RL_ROUTES_ADDED;
1224 return "default (not set)";
1245 msg(msglevel,
" [redirect_default_gateway local=%d]", (rol->
flags &
RG_LOCAL) != 0);
1289 msg(msglevel,
"%s",
BSTR(&out));
1320 msg(msglevel,
"%s",
BSTR(&out));
1446 && netmask == 0xFFFFFFFF)
1455 for (
int i = 0; i < rgi->
n_addrs; ++i)
1470#if defined(TARGET_LINUX) || defined(_WIN32) || defined(TARGET_DARWIN)
1496#if !defined(TARGET_LINUX)
1498#if !defined(TARGET_AIX)
1510#if defined(TARGET_LINUX)
1511 const char *
iface = NULL;
1530 msg(
D_ROUTE,
"NOTE: Linux route add command failed because route exists");
1535 msg(
M_WARN,
"ERROR: Linux route add command failed");
1539#elif defined(TARGET_ANDROID)
1544 snprintf(out,
sizeof(out),
"%s %s %s dev %s", network, netmask, gateway, rgi->iface);
1548 snprintf(out,
sizeof(out),
"%s %s %s", network, netmask, gateway);
1550 bool ret = management_android_control(
management,
"ROUTE", out);
1553#elif defined(_WIN32)
1557 network, netmask, gateway);
1570 const char *method =
"service";
1587 method =
"route.exe";
1592 method =
"ipapi [adaptive]";
1595 msg(
D_ROUTE,
"Route addition fallback to route.exe");
1598 &
argv,
es, 0,
"ERROR: Windows route add command failed [adaptive]");
1601 method =
"route.exe";
1610 msg(
D_ROUTE,
"Route addition via %s %s", method,
1615#elif defined(TARGET_SOLARIS)
1639#elif defined(TARGET_FREEBSD)
1658#elif defined(TARGET_DRAGONFLY)
1677#elif defined(TARGET_DARWIN)
1704#elif defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
1723#elif defined(TARGET_AIX)
1727 argv_printf(&
argv,
"%s add -net %s/%d %s", ROUTE_PATH, network, netbits, gateway);
1733#elif defined(TARGET_HAIKU)
1736 argv_printf(&
argv,
"%s add %s inet %s gw %s netmask %s", ROUTE_PATH, rgi->iface, network,
1744 "Sorry, but I don't know how to do 'route' commands on this operating system. Try putting your routes in a --route-up script");
1754 r->
flags &= ~RT_ADDED;
1772 int bits_to_clear = 128 -
r6->netbits;
1774 while (
byte >= 0 && bits_to_clear > 0)
1776 if (bits_to_clear >= 8)
1778 r6->network.s6_addr[
byte--] = 0;
1783 r6->network.s6_addr[
byte--] &= (0xff << bits_to_clear);
1794 bool gateway_needed =
false;
1806 if (
r6->iface != NULL)
1809 if (!IN6_IS_ADDR_UNSPECIFIED(&
r6->gateway))
1811 gateway_needed =
true;
1820#if defined(TARGET_DARWIN) || defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY) \
1821 || defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
1827 if (
r6->iface != NULL && gateway_needed
1828 && IN6_IS_ADDR_LINKLOCAL(&
r6->gateway))
1830 size_t len = strlen(gateway) + 1 + strlen(
r6->iface) + 1;
1832 snprintf(tmp, len,
"%s%%%s", gateway,
r6->iface);
1838 msg(
D_ROUTE,
"add_route_ipv6(%s/%d -> %s metric %d) dev %s", network,
r6->netbits, gateway,
1839 r6->metric, device);
1841 msg(
D_ROUTE,
"add_route_ipv6(%s/%d -> %s metric %d) IF %lu", network,
r6->netbits, gateway,
1858 gateway_needed =
true;
1861 if (gateway_needed && IN6_IS_ADDR_UNSPECIFIED(&
r6->gateway))
1864 "ROUTE6 WARNING: " PACKAGE_NAME
" needs a gateway "
1865 "parameter for a --route-ipv6 option and no default was set via "
1866 "--ifconfig-ipv6 or --route-ipv6-gateway option. Not installing "
1867 "IPv6 route to %s/%d.",
1868 network,
r6->netbits);
1873#if defined(TARGET_LINUX)
1877 metric =
r6->metric;
1881 int ret = net_route_v6_add(ctx, &
r6->network,
r6->netbits, gateway_needed ? &
r6->gateway : NULL,
1882 device,
r6->table_id, metric);
1885 msg(
D_ROUTE,
"NOTE: Linux route add command failed because route exists");
1890 msg(
M_WARN,
"ERROR: Linux route add command failed");
1894#elif defined(TARGET_ANDROID)
1897 snprintf(out,
sizeof(out),
"%s/%d %s", network,
r6->netbits, device);
1901#elif defined(_WIN32)
1911#elif defined(TARGET_SOLARIS)
1924 argv_printf(&
argv,
"%s add -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
1936#elif defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY)
1953#elif defined(TARGET_DARWIN)
1955 argv_printf(&
argv,
"%s add -inet6 %s -prefixlen %d", ROUTE_PATH, network,
r6->netbits);
1970#elif defined(TARGET_OPENBSD)
1972 argv_printf(&
argv,
"%s add -inet6 %s -prefixlen %d %s", ROUTE_PATH, network,
r6->netbits,
1979#elif defined(TARGET_NETBSD)
1981 argv_printf(&
argv,
"%s add -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
1987#elif defined(TARGET_AIX)
1989 argv_printf(&
argv,
"%s add -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
1994#elif defined(TARGET_HAIKU)
1997 argv_printf(&
argv,
"%s add %s inet6 %s gw %s prefixlen %d", ROUTE_PATH,
r6->iface, network,
1998 gateway,
r6->netbits);
2005 "Sorry, but I don't know how to do 'route ipv6' commands on this operating system. Try putting your routes in a --route-up script");
2015 r6->flags &= ~RT_ADDED;
2029#if !defined(TARGET_LINUX)
2030 const char *network;
2031#if !defined(TARGET_AIX)
2032 const char *netmask;
2034 const char *gateway;
2048#if !defined(TARGET_LINUX)
2050#if !defined(TARGET_AIX)
2062#if defined(TARGET_LINUX)
2073 msg(
M_WARN,
"ERROR: Linux route delete command failed");
2075#elif defined(_WIN32)
2078 network, netmask, gateway);
2085 msg(
D_ROUTE,
"Route deletion via service %s",
status ?
"succeeded" :
"failed");
2090 msg(
D_ROUTE,
"Route deletion via IPAPI %s",
status ?
"succeeded" :
"failed");
2101 msg(
D_ROUTE,
"Route deletion via IPAPI %s [adaptive]",
status ?
"succeeded" :
"failed");
2104 msg(
D_ROUTE,
"Route deletion fallback to route.exe");
2107 "ERROR: Windows route delete command failed [adaptive]");
2116#elif defined(TARGET_SOLARIS)
2118 argv_printf(&
argv,
"%s delete %s -netmask %s %s", ROUTE_PATH, network, netmask, gateway);
2123#elif defined(TARGET_FREEBSD)
2125 argv_printf(&
argv,
"%s delete -net %s %s %s", ROUTE_PATH, network, gateway, netmask);
2130#elif defined(TARGET_DRAGONFLY)
2132 argv_printf(&
argv,
"%s delete -net %s %s %s", ROUTE_PATH, network, gateway, netmask);
2137#elif defined(TARGET_DARWIN)
2141 argv_printf(&
argv,
"%s delete -cloning -net %s -netmask %s -interface %s", ROUTE_PATH,
2142 network, netmask, rgi->iface);
2146 argv_printf(&
argv,
"%s delete -net %s %s %s", ROUTE_PATH, network, gateway, netmask);
2152#elif defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
2154 argv_printf(&
argv,
"%s delete -net %s %s -netmask %s", ROUTE_PATH, network, gateway, netmask);
2159#elif defined(TARGET_ANDROID)
2163 "needed. The VpnService API allows routes to be set "
2164 "on connect only and will clean up automatically. "
2165 "Tried to delete route %s netmask %s gateway %s",
2166 network, netmask, gateway);
2167#elif defined(TARGET_AIX)
2171 argv_printf(&
argv,
"%s delete -net %s/%d %s", ROUTE_PATH, network, netbits, gateway);
2176#elif defined(TARGET_HAIKU)
2179 argv_printf(&
argv,
"%s delete %s inet %s gw %s netmask %s", ROUTE_PATH, rgi->iface, network,
2186 "Sorry, but I don't know how to do 'route' commands on this operating system. Try putting your routes in a --route-up script");
2190 r->
flags &= ~RT_ADDED;
2201 const char *network;
2209#if !defined(TARGET_LINUX)
2210 const char *gateway;
2212#if !defined(TARGET_SOLARIS)
2213 bool gateway_needed =
false;
2215 if (
r6->iface != NULL)
2218 gateway_needed =
true;
2227 gateway_needed =
true;
2236#if !defined(TARGET_LINUX) && !defined(_WIN32)
2240#if defined(TARGET_DARWIN) || defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY) \
2241 || defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
2247 if (
r6->iface != NULL && gateway_needed
2248 && IN6_IS_ADDR_LINKLOCAL(&
r6->gateway))
2250 size_t len = strlen(gateway) + 1 + strlen(
r6->iface) + 1;
2252 snprintf(tmp, len,
"%s%%%s", gateway,
r6->iface);
2257 msg(
D_ROUTE,
"delete_route_ipv6(%s/%d)", network,
r6->netbits);
2259#if defined(TARGET_LINUX)
2263 metric =
r6->metric;
2266 if (net_route_v6_del(ctx, &
r6->network,
r6->netbits, gateway_needed ? &
r6->gateway : NULL,
2267 device,
r6->table_id, metric)
2270 msg(
M_WARN,
"ERROR: Linux route v6 delete command failed");
2273#elif defined(_WIN32)
2283#elif defined(TARGET_SOLARIS)
2287 argv_printf(&
argv,
"%s delete -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
2292#elif defined(TARGET_FREEBSD) || defined(TARGET_DRAGONFLY)
2308#elif defined(TARGET_DARWIN)
2310 argv_printf(&
argv,
"%s delete -inet6 %s -prefixlen %d", ROUTE_PATH, network,
r6->netbits);
2324#elif defined(TARGET_OPENBSD)
2326 argv_printf(&
argv,
"%s delete -inet6 %s -prefixlen %d %s", ROUTE_PATH, network,
r6->netbits,
2332#elif defined(TARGET_NETBSD)
2334 argv_printf(&
argv,
"%s delete -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
2339#elif defined(TARGET_AIX)
2341 argv_printf(&
argv,
"%s delete -inet6 %s/%d %s", ROUTE_PATH, network,
r6->netbits, gateway);
2345#elif defined(TARGET_ANDROID)
2347 "needed. The VpnService API allows routes to be set "
2348 "on connect only and will clean up automatically. "
2349 "Tried to delete %s gateway %s",
2351 gateway_needed ? gateway :
"(not needed)");
2352#elif defined(TARGET_HAIKU)
2355 argv_printf(&
argv,
"%s delete %s inet6 %s gw %s prefixlen %d", ROUTE_PATH,
r6->iface, network,
2356 gateway,
r6->netbits);
2362 "Sorry, but I don't know how to do 'route ipv6' commands on this operating system. Try putting your routes in a --route-down script");
2378static const MIB_IPFORWARDTABLE *
2382 PMIB_IPFORWARDTABLE rt = NULL;
2385 status = GetIpForwardTable(NULL, &size, TRUE);
2386 if (
status == ERROR_INSUFFICIENT_BUFFER)
2388 rt = (PMIB_IPFORWARDTABLE)
gc_malloc(size,
false,
gc);
2389 status = GetIpForwardTable(rt, &size, TRUE);
2392 msg(
D_ROUTE,
"NOTE: GetIpForwardTable returned error: %s (code=%lu)",
2447 bool adapter_up =
false;
2461 for (r = rl->
routes, len = 0; r; r = r->
next, ++len)
2473 msg(
D_ROUTE,
"TEST ROUTES: %d/%d succeeded len=%d ret=%u a=%d u/d=%s",
2474 good, count, len, ret, ambig, adapter_up ?
"up" :
"down");
2480static const MIB_IPFORWARDROW *
2484 DWORD lowest_metric = MAXDWORD;
2485 const MIB_IPFORWARDROW *ret = NULL;
2490 for (DWORD i = 0; i < routes->dwNumEntries; ++i)
2492 const MIB_IPFORWARDROW *row = &routes->table[i];
2493 const in_addr_t net = ntohl(row->dwForwardDest);
2494 const in_addr_t mask = ntohl(row->dwForwardMask);
2495 const DWORD index = row->dwForwardIfIndex;
2496 const DWORD metric = row->dwForwardMetric1;
2502 if (!net && !mask && metric < lowest_metric)
2505 lowest_metric = metric;
2531 DWORD best_if_index;
2537 status = GetBestInterfaceEx((
struct sockaddr *)dest, &best_if_index);
2540 msg(
D_ROUTE,
"NOTE: GetBestInterfaceEx returned error: %s (code=%lu)",
2550 SOCKADDR_INET best_src;
2552 status = GetBestRoute2(&luid, best_if_index, NULL, dest, 0, best_route, &best_src);
2555 msg(
D_ROUTE,
"NOTE: GetIpForwardEntry2 returned error: %s (code=%lu)",
2574 sa.si_family = AF_INET;
2575 sa.Ipv4.sin_addr.s_addr = htonl(dest);
2578 MIB_IPFORWARD_ROW2 best_route;
2587 rgi->
gateway.
addr = ntohl(best_route.NextHop.Ipv4.sin_addr.S_un.S_addr);
2600 memcpy(rgi->
hwaddr, ai->Address, 6);
2604 in_addr_t nm = inet_addr(ai->IpAddressList.IpMask.String);
2624 bool on_tun =
false;
2629 ret = tun_adapter->Index;
2640 msg(
M_WARN,
"Warning: route gateway is not reachable on any active network adapters: %s",
2646 msg(
M_WARN,
"Warning: route gateway is ambiguous: %s (%d matches)",
2651 on_tun, count, ret);
2668 SOCKADDR_INET DestinationAddress;
2669 CLEAR(DestinationAddress);
2670 DestinationAddress.si_family = AF_INET6;
2673 DestinationAddress.Ipv6.sin6_addr = *dest;
2676 MIB_IPFORWARD_ROW2 BestRoute;
2685 msg(
D_ROUTE,
"GDG6: II=%lu DP=%s/%d NH=%s", BestRoute.InterfaceIndex,
2687 BestRoute.DestinationPrefix.PrefixLength,
2689 msg(
D_ROUTE,
"GDG6: Metric=%lu, Loopback=%u, AA=%u, I=%u", BestRoute.Metric,
2690 BestRoute.Loopback, BestRoute.AutoconfigureAddress, BestRoute.Immortal);
2697 if (IN6_IS_ADDR_UNSPECIFIED(&BestRoute.NextHop.Ipv6.sin6_addr))
2719 MIB_IPFORWARDROW fr;
2721 fr.dwForwardDest = htonl(r->
network);
2722 fr.dwForwardMask = htonl(r->
netmask);
2723 fr.dwForwardPolicy = 0;
2724 fr.dwForwardNextHop = htonl(r->
gateway);
2725 fr.dwForwardIfIndex = if_index;
2726 fr.dwForwardType = 4;
2727 fr.dwForwardProto = 3;
2728 fr.dwForwardAge = 0;
2729 fr.dwForwardNextHopAS = 0;
2738 msg(
M_WARN,
"Warning: address %s is not a network address in relation to netmask %s",
2742 status = CreateIpForwardEntry(&fr);
2748 else if (
status == ERROR_OBJECT_ALREADY_EXISTS)
2756 const DWORD forward_metric_limit = 2048;
2758 for (; fr.dwForwardMetric1 <= forward_metric_limit; ++fr.dwForwardMetric1)
2763 for (fr.dwForwardType = 4; fr.dwForwardType >= 3; --fr.dwForwardType)
2765 status = CreateIpForwardEntry(&fr);
2769 "ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=%lu and dwForwardType=%lu",
2770 fr.dwForwardMetric1, fr.dwForwardType);
2774 else if (
status != ERROR_BAD_ARGUMENTS)
2784 if (
status == ERROR_OBJECT_ALREADY_EXISTS)
2791 "ERROR: route addition failed using CreateIpForwardEntry: "
2792 "%s [status=%lu if_index=%lu]",
2813 MIB_IPFORWARDROW fr;
2816 fr.dwForwardDest = htonl(r->
network);
2817 fr.dwForwardMask = htonl(r->
netmask);
2818 fr.dwForwardPolicy = 0;
2819 fr.dwForwardNextHop = htonl(r->
gateway);
2820 fr.dwForwardIfIndex = if_index;
2822 status = DeleteIpForwardEntry(&fr);
2830 msg(
M_WARN,
"ERROR: route deletion failed using DeleteIpForwardEntry: %s",
2857 msg(
M_WARN,
"ERROR: route %s failed using service: %s [status=%u if_index=%lu]",
2884 .prefix.ipv4.s_addr = htonl(r->
network),
2885 .gateway.ipv4.s_addr = htonl(r->
gateway),
2886 .iface = { .index = if_index, .name =
"" },
2890 if (
msg.prefix_len == -1)
2892 msg.prefix_len = 32;
2906 PMIB_IPFORWARD_ROW2 fwd_row;
2911 fwd_row->ValidLifetime = 0xffffffff;
2912 fwd_row->PreferredLifetime = 0xffffffff;
2913 fwd_row->Protocol = MIB_IPPROTO_NETMGMT;
2915 fwd_row->DestinationPrefix.Prefix.si_family = AF_INET6;
2916 fwd_row->DestinationPrefix.Prefix.Ipv6.sin6_addr = r->
network;
2917 fwd_row->DestinationPrefix.PrefixLength = (UINT8)r->
netbits;
2918 fwd_row->NextHop.si_family = AF_INET6;
2919 fwd_row->NextHop.Ipv6.sin6_addr = r->
gateway;
2928 inet_pton(AF_INET6,
"fe80::8", &fwd_row->NextHop.Ipv6.sin6_addr);
2936 if (err != NO_ERROR)
2940 fwd_row->InterfaceLuid = luid;
2941 fwd_row->InterfaceIndex = 0;
2946 err = CreateIpForwardEntry2(fwd_row);
2950 err = DeleteIpForwardEntry2(fwd_row);
2954 if (err != NO_ERROR)
2959 msg(
M_WARN,
"ERROR: route %s failed using ipapi: %s [status=%lu if_index=%lu]",
2961 fwd_row->InterfaceIndex);
2965 msg(
D_ROUTE,
"IPv6 route addition using ipapi failed because route exists");
2970 msg(
D_ROUTE,
"IPv6 route %s using ipapi", add ?
"added" :
"deleted");
3002 inet_pton(AF_INET6,
"fe80::8", &
msg.gateway.ipv6);
3008 msg.iface.name[
sizeof(
msg.iface.name) - 1] =
'\0';
3014 msg(
D_ROUTE,
"IPv6 route %s via service %s", add ?
"addition" :
"deletion",
3050 buf_printf(&out,
"%s %s %s p=%lu i=%lu t=%lu pr=%lu a=%lu h=%lu m=%lu/%lu/%lu/%lu/%lu",
3054 r->dwForwardIfIndex,
r->dwForwardType,
r->dwForwardProto,
3055 r->dwForwardAge,
r->dwForwardNextHopAS,
r->dwForwardMetric1,
3056 r->dwForwardMetric2,
r->dwForwardMetric3,
r->dwForwardMetric4,
3057 r->dwForwardMetric5);
3071 msg(msglevel,
"SYSTEM ROUTING TABLE");
3074 for (DWORD i = 0; i < rt->dwNumEntries; ++i)
3082#elif defined(TARGET_ANDROID)
3097 rgi->
gateway.
addr = 127 << 24 |
'd' << 16 |
'g' << 8 |
'w';
3099 strcpy(rgi->iface,
"android-gw");
3119 strcpy(rgi6->iface,
"android-gw");
3122#elif defined(TARGET_LINUX)
3129 char best_name[IFNAMSIZ];
3135 if (net_route_v4_best_gw(ctx, &dest, &rgi->
gateway.
addr, best_name) == 0)
3147 struct ifreq *ifr, *ifend;
3151 struct ifreq ifs[20];
3153 if ((sd = socket(AF_INET, SOCK_DGRAM, 0)) < 0)
3158 ifc.ifc_len =
sizeof(ifs);
3160 if (ioctl(sd, SIOCGIFCONF, &ifc) < 0)
3162 msg(
M_WARN,
"GDG: ioctl(SIOCGIFCONF) failed");
3167 ifend = ifs + (ifc.ifc_len /
sizeof(
struct ifreq));
3168 for (ifr = ifc.ifc_req; ifr < ifend; ifr++)
3170 if (ifr->ifr_addr.sa_family == AF_INET)
3173 addr = ntohl(((
struct sockaddr_in *)&ifr->ifr_addr)->sin_addr.s_addr);
3176 strncpynt(ifreq.ifr_name, ifr->ifr_name,
sizeof(ifreq.ifr_name));
3179 if (ioctl(sd, SIOCGIFFLAGS, &ifreq) < 0)
3183 if (!(ifreq.ifr_flags & IFF_UP))
3192 if (strcmp(ifreq.ifr_name, best_name))
3198 if ((ifreq.ifr_flags & IFF_POINTOPOINT) && ioctl(sd, SIOCGIFDSTADDR, &ifreq) >= 0)
3200 rgi->
gateway.
addr = ntohl(((
struct sockaddr_in *) &ifreq.ifr_addr)->sin_addr.s_addr);
3203 rgi->
flags &= ~RGI_ON_LINK;
3211 if (ioctl(sd, SIOCGIFNETMASK, &ifreq) < 0)
3215 netmask = ntohl(((
struct sockaddr_in *)&ifreq.ifr_addr)->sin_addr.s_addr);
3229 strncpynt(rgi->iface, ifreq.ifr_name,
sizeof(rgi->iface));
3233 memset(&ifreq.ifr_hwaddr, 0,
sizeof(
struct sockaddr));
3234 if (ioctl(sd, SIOCGIFHWADDR, &ifreq) < 0)
3236 msg(
M_WARN,
"GDG: SIOCGIFHWADDR(%s) failed", ifreq.ifr_name);
3239 memcpy(rgi->
hwaddr, &ifreq.ifr_hwaddr.sa_data, 6);
3269 if (net_route_v6_best_gw(ctx, dest, &rgi6->
gateway.
addr_ipv6, rgi6->iface) == 0)
3276 if (strlen(rgi6->iface) > 0)
3294#elif defined(TARGET_DARWIN) || defined(TARGET_SOLARIS) || defined(TARGET_FREEBSD) \
3295 || defined(TARGET_DRAGONFLY) || defined(TARGET_OPENBSD) || defined(TARGET_NETBSD)
3297#include <sys/types.h>
3298#include <sys/socket.h>
3299#include <netinet/in.h>
3300#include <net/route.h>
3301#include <net/if_dl.h>
3302#if !defined(TARGET_SOLARIS)
3308 struct rt_msghdr m_rtm;
3328#if defined(TARGET_DARWIN)
3329#define ROUNDUP(a) ((a) > 0 ? (1 + (((a) - 1) | (sizeof(uint32_t) - 1))) : sizeof(uint32_t))
3330#elif defined(TARGET_NETBSD)
3331#define ROUNDUP(a) RT_ROUNDUP(a)
3333#define ROUNDUP(a) ((a) > 0 ? (1 + (((a) - 1) | (sizeof(long) - 1))) : sizeof(long))
3336#if defined(TARGET_SOLARIS)
3337#define NEXTADDR(w, u) \
3338 if (rtm_addrs & (w)) \
3340 size_t l = sizeof(u); \
3341 memmove(cp, &(u), l); \
3345#define ADVANCE(x, n) (x += ROUNDUP(sizeof(struct sockaddr_in)))
3347#define NEXTADDR(w, u) \
3348 if (rtm_addrs & (w)) \
3350 size_t l = ((struct sockaddr *)&(u))->sa_len; \
3351 memmove(cp, &(u), l); \
3355#define ADVANCE(x, n) (x += ROUNDUP((n)->sa_len))
3358#define max(a, b) ((a) > (b) ? (a) : (b))
3364 struct rtmsg m_rtmsg;
3367 struct sockaddr so_dst, so_mask;
3368 char *cp = m_rtmsg.m_space;
3369 struct sockaddr *gate = NULL, *ifp = NULL, *sa;
3370 struct rt_msghdr *rtm_aux;
3372#define rtm m_rtmsg.m_rtm
3377 const int pid = getpid();
3379#ifdef TARGET_OPENBSD
3380 rtm_addrs = RTA_DST | RTA_NETMASK;
3382 rtm_addrs = RTA_DST | RTA_NETMASK | RTA_IFP;
3385 bzero(&m_rtmsg,
sizeof(m_rtmsg));
3386 bzero(&so_dst,
sizeof(so_dst));
3387 bzero(&so_mask,
sizeof(so_mask));
3388 bzero(&rtm,
sizeof(
struct rt_msghdr));
3390 rtm.rtm_type = RTM_GET;
3391 rtm.rtm_flags = RTF_UP | RTF_GATEWAY;
3392 rtm.rtm_version = RTM_VERSION;
3393 rtm.rtm_seq = ++seq;
3394#ifdef TARGET_OPENBSD
3395 rtm.rtm_tableid = (u_short)getrtable();
3397 rtm.rtm_addrs = rtm_addrs;
3399 so_dst.sa_family = AF_INET;
3400 so_mask.sa_family = AF_INET;
3402#ifndef TARGET_SOLARIS
3403 so_dst.sa_len =
sizeof(
struct sockaddr_in);
3404 so_mask.sa_len =
sizeof(
struct sockaddr_in);
3407 NEXTADDR(RTA_DST, so_dst);
3408 NEXTADDR(RTA_NETMASK, so_mask);
3411 rtm.rtm_msglen = (u_short)(cp - (
char *)&m_rtmsg);
3414 sockfd = socket(PF_ROUTE, SOCK_RAW, 0);
3420 if (
write(sockfd, (
char *)&m_rtmsg, rtm.rtm_msglen) < 0)
3428 ret =
read(sockfd, (
char *)&m_rtmsg,
sizeof(m_rtmsg));
3429 }
while (ret > 0 && (rtm.rtm_seq != seq || rtm.rtm_pid != pid));
3435 cp = (
char *)(rtm_aux + 1);
3436 if (rtm_aux->rtm_addrs)
3438 for (
unsigned int i = 1; i; i <<= 1)
3440 if (i & rtm_aux->rtm_addrs)
3442 sa = (
struct sockaddr *)cp;
3443 if (i == RTA_GATEWAY)
3447 else if (i == RTA_IFP)
3464 rgi->
gateway.
addr = ntohl(((
struct sockaddr_in *)gate)->sin_addr.s_addr);
3473 const struct sockaddr_dl *adl = (
struct sockaddr_dl *)ifp;
3474 if (adl->sdl_nlen && adl->sdl_nlen <
sizeof(rgi->iface))
3476 memcpy(rgi->iface, adl->sdl_data, adl->sdl_nlen);
3477 rgi->iface[adl->sdl_nlen] =
'\0';
3488 sockfd = socket(AF_INET, SOCK_DGRAM, 0);
3496 ifr.ifr_addr.sa_family = AF_INET;
3497 strncpynt(ifr.ifr_name, rgi->iface, IFNAMSIZ);
3499 if (ioctl(sockfd, SIOCGIFNETMASK, (
char *)&ifr) < 0)
3507 rgi->
gateway.
netmask = ntohl(((
struct sockaddr_in *)&ifr.ifr_addr)->sin_addr.s_addr);
3514#if defined(TARGET_SOLARIS)
3516 sockfd = socket(AF_INET, SOCK_DGRAM, 0);
3523 struct ifreq ifreq = { 0 };
3526 strncpynt(ifreq.ifr_name, rgi->iface,
sizeof(ifreq.ifr_name));
3527 if (ioctl(sockfd, SIOCGIFHWADDR, &ifreq) < 0)
3529 msg(
M_WARN,
"GDG: SIOCGIFHWADDR(%s) failed", ifreq.ifr_name);
3533 memcpy(rgi->
hwaddr, &ifreq.ifr_addr.sa_data, 6);
3537 struct ifaddrs *ifap, *ifa;
3539 if (getifaddrs(&ifap) != 0)
3545 for (ifa = ifap; ifa; ifa = ifa->ifa_next)
3547 if (ifa->ifa_addr != NULL && ifa->ifa_addr->sa_family == AF_LINK
3548 && !strncmp(ifa->ifa_name, rgi->iface, IFNAMSIZ))
3550 struct sockaddr_dl *sdl = (
struct sockaddr_dl *)ifa->ifa_addr;
3551 memcpy(rgi->
hwaddr, LLADDR(sdl), 6);
3575#if defined(TARGET_SOLARIS)
3577#define ADVANCE(x, n) (x += ROUNDUP(sizeof(struct sockaddr_in6)))
3584 struct rtmsg m_rtmsg;
3587 struct sockaddr_in6 so_dst, so_mask;
3588 char *cp = m_rtmsg.m_space;
3589 struct sockaddr *gate = NULL, *ifp = NULL, *sa;
3590 struct rt_msghdr *rtm_aux;
3595 const int pid = getpid();
3597#ifdef TARGET_OPENBSD
3598 rtm_addrs = RTA_DST | RTA_NETMASK;
3600 rtm_addrs = RTA_DST | RTA_NETMASK | RTA_IFP;
3603 bzero(&m_rtmsg,
sizeof(m_rtmsg));
3604 bzero(&so_dst,
sizeof(so_dst));
3605 bzero(&so_mask,
sizeof(so_mask));
3606 bzero(&rtm,
sizeof(
struct rt_msghdr));
3608 rtm.rtm_type = RTM_GET;
3609 rtm.rtm_flags = RTF_UP;
3610 rtm.rtm_version = RTM_VERSION;
3611 rtm.rtm_seq = ++seq;
3612#ifdef TARGET_OPENBSD
3613 rtm.rtm_tableid = (u_short)getrtable();
3616 so_dst.sin6_family = AF_INET6;
3617 so_mask.sin6_family = AF_INET6;
3620 && !IN6_IS_ADDR_UNSPECIFIED(dest))
3622 so_dst.sin6_addr = *dest;
3624 rtm_addrs &= ~RTA_NETMASK;
3627 rtm.rtm_addrs = rtm_addrs;
3629#ifndef TARGET_SOLARIS
3630 so_dst.sin6_len =
sizeof(
struct sockaddr_in6);
3631 so_mask.sin6_len =
sizeof(
struct sockaddr_in6);
3634 NEXTADDR(RTA_DST, so_dst);
3635 NEXTADDR(RTA_NETMASK, so_mask);
3638 rtm.rtm_msglen = (u_short)(cp - (
char *)&m_rtmsg);
3641 sockfd = socket(PF_ROUTE, SOCK_RAW, 0);
3647 if (
write(sockfd, (
char *)&m_rtmsg, rtm.rtm_msglen) < 0)
3655 ret =
read(sockfd, (
char *)&m_rtmsg,
sizeof(m_rtmsg));
3656 }
while (ret > 0 && (rtm.rtm_seq != seq || rtm.rtm_pid != pid));
3663 cp = (
char *)(rtm_aux + 1);
3664 if (rtm_aux->rtm_addrs)
3666 for (
unsigned int i = 1; i; i <<= 1)
3668 if (i & rtm_aux->rtm_addrs)
3670 sa = (
struct sockaddr *)cp;
3671 if (i == RTA_GATEWAY)
3675 else if (i == RTA_IFP)
3691 struct sockaddr_in6 *s6 = (
struct sockaddr_in6 *)gate;
3692 struct in6_addr gw = s6->sin6_addr;
3694#ifndef TARGET_SOLARIS
3699 if (gate->sa_len ==
sizeof(
struct sockaddr_in6) && IN6_IS_ADDR_LINKLOCAL(&gw))
3701 gw.s6_addr[2] = gw.s6_addr[3] = 0;
3704 if (gate->sa_len !=
sizeof(
struct sockaddr_in6) || IN6_IS_ADDR_UNSPECIFIED(&gw))
3718 const struct sockaddr_dl *adl = (
struct sockaddr_dl *)ifp;
3719 if (adl->sdl_nlen && adl->sdl_nlen <
sizeof(rgi6->iface))
3721 memcpy(rgi6->iface, adl->sdl_data, adl->sdl_nlen);
3736#elif defined(TARGET_HAIKU)
3743 int sockfd = socket(AF_INET, SOCK_DGRAM, 0);
3746 msg(
M_ERRNO,
"%s: Error opening socket for AF_INET", __func__);
3750 struct ifconf config;
3751 config.ifc_len =
sizeof(config.ifc_value);
3752 if (ioctl(sockfd, SIOCGRTSIZE, &config,
sizeof(
struct ifconf)) < 0)
3754 msg(
M_ERRNO,
"%s: Error getting routing table size", __func__);
3758 uint32 size = (uint32)config.ifc_value;
3764 void *
buffer = malloc(size);
3767 config.ifc_len = size;
3769 if (ioctl(sockfd, SIOCGRTTABLE, &config,
sizeof(
struct ifconf)) < 0)
3775 struct ifreq *
interface = (struct ifreq *)
buffer;
3776 struct ifreq *end = (
struct ifreq *)((uint8 *)
buffer + size);
3778 while (interface < end)
3780 struct route_entry
route = interface->ifr_route;
3781 if ((
route.flags & RTF_GATEWAY) != 0 && (
route.flags & RTF_DEFAULT) != 0)
3783 rgi->
gateway.
addr = ntohl(((
struct sockaddr_in *)
route.gateway)->sin_addr.s_addr);
3785 strncpy(rgi->iface, interface->ifr_name,
sizeof(rgi->iface));
3788 int32 address_size = 0;
3789 if (
route.destination != NULL)
3791 address_size +=
route.destination->sa_len;
3793 if (
route.mask != NULL)
3795 address_size +=
route.mask->sa_len;
3797 if (
route.gateway != NULL)
3799 address_size +=
route.gateway->sa_len;
3802 interface = (struct ifreq *)((addr_t)
interface +
IF_NAMESIZE + sizeof(struct route_entry)
3851 msg(
D_ROUTE,
"no support for get_default_gateway_ipv6() on this system");
3861 const int addrlen =
sizeof(
in_addr_t) * 8;
3863 if ((network & netmask) == network)
3865 for (i = 0; i <= addrlen; ++i)
3868 if (mask == netmask)
3892 const int addrlen =
sizeof(
in_addr_t) * 8;
3894 for (i = 0; i <= addrlen; ++i)
3897 if (mask == netmask)
3928 bool succeed =
false;
3935 iplist = iplist->Next;
4007 for (DWORD i = 0; i < rt->dwNumEntries; ++i)
4009 const MIB_IPFORWARDROW *row = &rt->table[i];
4010 const in_addr_t net = ntohl(row->dwForwardDest);
4011 const in_addr_t mask = ntohl(row->dwForwardMask);
4012 if (mask > nonlocal_netmask && (addr & mask) == net)
void argv_msg(const msglvl_t msglevel, const struct argv *a)
Write the arguments stored in a struct argv via the msg() command.
void argv_free(struct argv *a)
Frees all memory allocations allocated by the struct argv related functions.
bool argv_printf(struct argv *argres, const char *format,...)
printf() variant which populates a struct argv.
bool argv_printf_cat(struct argv *argres, const char *format,...)
printf() inspired argv concatenation.
struct argv argv_new(void)
Allocates a new struct argv and ensures it is initialised.
bool buf_printf(struct buffer *buf, const char *format,...)
void * gc_malloc(size_t size, bool clear, struct gc_arena *a)
struct buffer alloc_buf_gc(size_t size, struct gc_arena *gc)
char * format_hex_ex(const uint8_t *data, size_t size, size_t maxoutput, unsigned int space_break_flags, const char *separator, struct gc_arena *gc)
void gc_addspecial(void *addr, void(*free_function)(void *), struct gc_arena *a)
#define ALLOC_OBJ_CLEAR_GC(dptr, type, gc)
#define ALLOC_OBJ_GC(dptr, type, gc)
static void strncpynt(char *dest, const char *src, size_t maxlen)
static void check_malloc_return(void *p)
static void gc_free(struct gc_arena *a)
static void gc_freeaddrinfo_callback(void *addr)
static struct gc_arena gc_new(void)
void setenv_int(struct env_set *es, const char *name, int value)
void setenv_str(struct env_set *es, const char *name, const char *value)
static SERVICE_STATUS status
void management_set_state(struct management *man, const int state, const char *detail, const in_addr_t *tun_local_ip, const struct in6_addr *tun_local_ip6, const struct openvpn_sockaddr *local, const struct openvpn_sockaddr *remote)
#define OPENVPN_STATE_ADD_ROUTES
static void net_ctx_reset(openvpn_net_ctx_t *ctx)
#define TUN_ADAPTER_INDEX_INVALID
#define IPV4_NETMASK_HOST
const char * strerror_win32(DWORD errnum, struct gc_arena *gc)
void print_route_options(const struct route_option_list *rol, msglvl_t msglevel)
static void undo_redirect_default_route_to_vpn(struct route_list *rl, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static void print_route_option(const struct route_option *ro, msglvl_t msglevel)
static void add_host_route_if_nonlocal(struct route_bypass *rb, const in_addr_t addr)
bool add_routes(struct route_list *rl, struct route_ipv6_list *rl6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
bool is_special_addr(const char *addr_str)
struct route_option_list * clone_route_option_list(const struct route_option_list *src, struct gc_arena *a)
void setenv_routes_ipv6(struct env_set *es, const struct route_ipv6_list *rl6)
static void clear_route_list(struct route_list *rl)
static void test_route_helper(bool *ret, int *count, int *good, int *ambig, const IP_ADAPTER_INFO *adapters, const in_addr_t gateway)
static void del_bypass_routes(struct route_bypass *rb, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool del_route_ipapi(const struct route_ipv4 *r, const struct tuntap *tt)
static bool redirect_default_route_to_vpn(struct route_list *rl, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool add_route3(in_addr_t network, in_addr_t netmask, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static void add_host_route_array(struct route_bypass *rb, const IP_ADDR_STRING *iplist)
int netmask_to_netbits2(in_addr_t netmask)
struct route_ipv6_option_list * new_route_ipv6_option_list(struct gc_arena *a)
static bool init_route(struct route_ipv4 *r, struct addrinfo **network_list, const struct route_option *ro, const struct route_list *rl)
void delete_routes_v6(struct route_ipv6_list *rl6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static const char * route_string(const struct route_ipv4 *r, struct gc_arena *gc)
static bool get_special_addr(const struct route_list *rl, const char *string, in_addr_t *out, bool *status)
bool test_routes(const struct route_list *rl, const struct tuntap *tt)
static void add_block_local_routes(struct route_list *rl)
bool block_local_needed(const struct route_list *rl)
Get the decision whether to block traffic to local networks while the VPN is connected.
void get_default_gateway_ipv6(struct route_ipv6_gateway_info *rgi6, const struct in6_addr *dest, openvpn_net_ctx_t *ctx)
static const MIB_IPFORWARDTABLE * get_windows_routing_table(struct gc_arena *gc)
static DWORD get_best_route(struct gc_arena *gc, SOCKADDR_INET *dest, MIB_IPFORWARD_ROW2 *best_route)
Determines the best route to a destination for both IPv4 and IPv6.
static int do_route_service(const bool add, const route_message_t *rt, const DWORD size, HANDLE pipe)
static const char * format_route_entry(const MIB_IPFORWARDROW *r, struct gc_arena *gc)
static int add_route_service(const struct route_ipv4 *, const struct tuntap *)
bool init_route_ipv6_list(struct route_ipv6_list *rl6, const struct route_ipv6_option_list *opt6, const char *remote_endpoint, int default_metric, const struct in6_addr *remote_host_ipv6, struct env_set *es, openvpn_net_ctx_t *ctx)
static void delete_route(struct route_ipv4 *r, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool del_route_ipv6_service(const struct route_ipv6 *, const struct tuntap *)
void route_list_add_vpn_gateway(struct route_list *rl, struct env_set *es, const in_addr_t addr)
bool ipv6_net_contains_host(const struct in6_addr *network, unsigned int bits, const struct in6_addr *host)
check whether an IPv6 host address is covered by a given network/bits
void add_route_ipv6_to_option_list(struct route_ipv6_option_list *l, const char *prefix, const char *gateway, const char *metric, int table_id)
void copy_route_option_list(struct route_option_list *dest, const struct route_option_list *src, struct gc_arena *a)
void copy_route_ipv6_option_list(struct route_ipv6_option_list *dest, const struct route_ipv6_option_list *src, struct gc_arena *a)
bool add_route(struct route_ipv4 *r, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static int test_route(const IP_ADAPTER_INFO *adapters, const in_addr_t gateway, DWORD *index)
void print_default_gateway(const msglvl_t msglevel, const struct route_gateway_info *rgi, const struct route_ipv6_gateway_info *rgi6)
bool add_route_ipv6(struct route_ipv6 *r6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool del_route_service(const struct route_ipv4 *, const struct tuntap *)
static void print_route(const struct route_ipv4 *r, msglvl_t msglevel)
static int local_route(in_addr_t network, in_addr_t netmask, in_addr_t gateway, const struct route_gateway_info *rgi)
static int add_route_ipv6_service(const struct route_ipv6 *, const struct tuntap *)
static bool is_on_link(const int is_local_route, const unsigned int flags, const struct route_gateway_info *rgi)
static const MIB_IPFORWARDROW * get_default_gateway_row(const MIB_IPFORWARDTABLE *routes)
void get_default_gateway(struct route_gateway_info *rgi, in_addr_t dest, openvpn_net_ctx_t *ctx)
Retrieves the best gateway for a given destination based on the routing table.
static int route_ipv6_ipapi(bool add, const struct route_ipv6 *, const struct tuntap *)
static void add_block_local_item(struct route_list *rl, const struct route_gateway_address *gateway, in_addr_t target)
struct route_ipv6_option_list * clone_route_ipv6_option_list(const struct route_ipv6_option_list *src, struct gc_arena *a)
static const char * show_opt(const char *option)
void print_routes(const struct route_list *rl, msglvl_t msglevel)
static bool init_route_ipv6(struct route_ipv6 *r6, const struct route_ipv6_option *r6o, const struct route_ipv6_list *rl6)
struct route_option_list * new_route_option_list(struct gc_arena *a)
int test_local_addr(const in_addr_t addr, const struct route_gateway_info *rgi)
bool init_route_list(struct route_list *rl, const struct route_option_list *opt, const char *remote_endpoint, int default_metric, in_addr_t remote_host, struct env_set *es, openvpn_net_ctx_t *ctx)
static int add_route_ipapi(const struct route_ipv4 *r, const struct tuntap *tt, DWORD adapter_index)
void delete_route_ipv6(const struct route_ipv6 *r6, const struct tuntap *tt, const struct env_set *es, openvpn_net_ctx_t *ctx)
static int do_route_ipv6_service(const bool add, const struct route_ipv6 *r, const struct tuntap *tt)
void route_ipv6_clear_host_bits(struct route_ipv6 *r6)
static void clear_route_ipv6_list(struct route_ipv6_list *rl6)
void delete_routes(struct route_list *rl, struct route_ipv6_list *rl6, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
void show_routes(msglvl_t msglevel)
bool netmask_to_netbits(const in_addr_t network, const in_addr_t netmask, int *netbits)
static void setenv_route_addr(struct env_set *es, const char *key, const in_addr_t addr, int i)
static DWORD windows_route_find_if_index(const struct route_ipv4 *r, const struct tuntap *tt)
static int do_route_ipv4_service(const bool add, const struct route_ipv4 *r, const struct tuntap *tt)
void setenv_routes(struct env_set *es, const struct route_list *rl)
void delete_routes_v4(struct route_list *rl, const struct tuntap *tt, unsigned int flags, const struct env_set *es, openvpn_net_ctx_t *ctx)
static bool add_bypass_routes(struct route_bypass *rb, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
static void get_bypass_addresses(struct route_bypass *rb, const unsigned int flags)
static bool is_route_parm_defined(const char *parm)
static void setenv_route_ipv6(struct env_set *es, const struct route_ipv6 *r6, int i)
static bool add_bypass_address(struct route_bypass *rb, const in_addr_t a)
static void setenv_route(struct env_set *es, const struct route_ipv4 *r, int i)
void add_route_to_option_list(struct route_option_list *l, const char *network, const char *netmask, const char *gateway, const char *metric, int table_id)
static void del_route3(in_addr_t network, in_addr_t netmask, in_addr_t gateway, const struct tuntap *tt, unsigned int flags, const struct route_gateway_info *rgi, const struct env_set *es, openvpn_net_ctx_t *ctx)
#define RL_DID_REDIRECT_DEFAULT_GATEWAY
#define RTSA_REMOTE_ENDPOINT
#define RGI_HWADDR_DEFINED
static in_addr_t netbits_to_netmask(const int netbits)
#define ROUTE_METHOD_SERVICE
#define RGI_IFACE_DEFINED
#define ROUTE_METHOD_IPAPI
#define RT_METRIC_DEFINED
#define ROUTE_DELETE_FIRST
#define TLA_NOT_IMPLEMENTED
#define ROUTE_METHOD_ADAPTIVE
#define ROUTE_METHOD_MASK
#define RTSA_DEFAULT_METRIC
#define RGI_NETMASK_DEFINED
int openvpn_execve_check(const struct argv *a, const struct env_set *es, const unsigned int flags, const char *error_message)
bool get_ipv6_addr(const char *hostname, struct in6_addr *network, unsigned int *netbits, msglvl_t msglevel)
Translate an IPv6 addr or hostname from string form to in6_addr.
in_addr_t getaddr(unsigned int flags, const char *hostname, int resolve_retry_seconds, bool *succeeded, struct signal_info *sig_info)
Translate an IPv4 addr or hostname from string form to in_addr_t.
#define IPV4_INVALID_ADDR
int openvpn_getaddrinfo(unsigned int flags, const char *hostname, const char *servname, int resolve_retry_seconds, struct signal_info *sig_info, int ai_family, struct addrinfo **res)
const char * print_in6_addr(struct in6_addr a6, unsigned int flags, struct gc_arena *gc)
const char * print_in_addr_t(in_addr_t addr, unsigned int flags, struct gc_arena *gc)
#define GETADDR_HOST_ORDER
#define GETADDR_WARN_ON_SIGNAL
Wrapper structure for dynamically allocated memory.
int len
Length in bytes of the actual content within the allocated memory.
Garbage collection arena used to keep track of dynamically allocated memory.
Container for unidirectional cipher and HMAC key material.
in_addr_t bypass[N_ROUTE_BYPASS]
struct route_gateway_address addrs[RGI_N_ADDRESSES]
struct route_gateway_address gateway
const struct route_option * option
struct in6_addr addr_ipv6
struct route_ipv6_gateway_address gateway
struct route_ipv6_gateway_address addrs[RGI_N_ADDRESSES]
struct route_ipv6_gateway_info rgi6
struct route_ipv6 * routes_ipv6
struct route_ipv6_gateway_info ngi6
struct in6_addr remote_host_ipv6
struct in6_addr remote_endpoint_ipv6
struct route_ipv6_option * routes_ipv6
struct route_ipv6_option * next
struct route_gateway_info rgi
struct route_ipv4 * routes
struct route_special_addr spec
struct route_gateway_info ngi
struct route_option * routes
struct route_option * next
struct route_bypass bypass
in_addr_t remote_endpoint
bool did_ifconfig_ipv6_setup
if the internal variables related to ifconfig-ipv6 of this struct have been set up.
struct tuntap_options options
bool did_ifconfig_setup
if the internal variables related to ifconfig of this struct have been set up.
const IP_ADAPTER_INFO * get_tun_adapter(const struct tuntap *tt, const IP_ADAPTER_INFO *list)
bool is_adapter_up(const struct tuntap *tt, const IP_ADAPTER_INFO *list)
const IP_ADAPTER_INFO * get_adapter_info(DWORD index, struct gc_arena *gc)
const IP_PER_ADAPTER_INFO * get_per_adapter_info(const DWORD index, struct gc_arena *gc)
bool is_ip_in_adapter_subnet(const IP_ADAPTER_INFO *ai, const in_addr_t ip, in_addr_t *highest_netmask)
const IP_ADAPTER_INFO * get_adapter_info_list(struct gc_arena *gc)
const IP_ADAPTER_INFO * get_adapter(const IP_ADAPTER_INFO *ai, DWORD index)
DWORD adapter_index_of_ip(const IP_ADAPTER_INFO *list, const in_addr_t ip, int *count, in_addr_t *netmask)
WCHAR * wide_string(const char *utf8, struct gc_arena *gc)
void netcmd_semaphore_release(void)
char * get_win_sys_path(void)
void netcmd_semaphore_lock(void)
bool send_msg_iservice(HANDLE pipe, const void *data, DWORD size, ack_message_t *ack, const char *context)
Send the size bytes in buffer data to the interactive service pipe and read the result in ack.
#define WIN_ROUTE_PATH_SUFFIX
