openvpn3/mac_2client_2tuncli_8hpp_source.html

//    OpenVPN -- An application to securely tunnel IP networks

//               over a single port, with support for SSL/TLS-based

//               session authentication and key exchange,

//               packet encryption, packet authentication, and

//               packet compression.

//

//    Copyright (C) 2012- OpenVPN Inc.

//

//    SPDX-License-Identifier: MPL-2.0 OR AGPL-3.0-only WITH openvpn3-openssl-exception

//


// Client tun interface for Mac OS X


#ifndef OPENVPN_TUN_MAC_CLIENT_TUNCLI_H

#define OPENVPN_TUN_MAC_CLIENT_TUNCLI_H


#include <string>

#include <sstream>

#include <memory>


#include <openvpn/common/to_string.hpp>

#include <openvpn/asio/scoped_asio_stream.hpp>

#include <openvpn/common/cleanup.hpp>

#include <openvpn/tun/client/tunbase.hpp>

#include <openvpn/tun/client/tunprop.hpp>

#include <openvpn/tun/persist/tunpersist.hpp>

#include <openvpn/tun/persist/tunwrapasio.hpp>

#include <openvpn/tun/tunio.hpp>

#include <openvpn/tun/tunmtu.hpp>

#include <openvpn/tun/mac/client/tunsetup.hpp>


#ifdef TEST_EER // test emulated exclude routes

#include <openvpn/client/cliemuexr.hpp>

#endif


namespace openvpn::TunMac {


OPENVPN_EXCEPTION(tun_mac_error);


// struct used to pass received tun packets


struct PacketFrom

{

    typedef std::unique_ptr<PacketFrom> SPtr;

    BufferAllocated buf;

};


// tun interface wrapper for Mac OS X

template <typename ReadHandler, typename TunPersist>


class Tun : public TunIO<ReadHandler, PacketFrom, TunWrapAsioStream<TunPersist>>

{

    typedef TunIO<ReadHandler, PacketFrom, TunWrapAsioStream<TunPersist>> Base;


  public:

    typedef RCPtr<Tun> Ptr;


    Tun(const typename TunPersist::Ptr &tun_persist,

        const std::string &name,

        const bool retain_stream,

        const bool tun_prefix,

        ReadHandler read_handler,

        const Frame::Ptr &frame,

        const SessionStats::Ptr &stats)

        : Base(read_handler, frame, stats)

    {

        Base::name_ = name;

        Base::retain_stream = retain_stream;

        Base::tun_prefix = tun_prefix;

        Base::stream = new TunWrapAsioStream<TunPersist>(tun_persist);

    }


};


// These types manage the underlying tun driver fd

typedef openvpn_io::posix::stream_descriptor TUNStream;

typedef ScopedAsioStream<TUNStream> ScopedTUNStream;

typedef TunPersistTemplate<ScopedTUNStream> TunPersist;


class Client;


class ClientConfig : public TunClientFactory

{

  public:

    typedef RCPtr<ClientConfig> Ptr;


    TunProp::Config tun_prop;

    int n_parallel = 8; // number of parallel async reads on tun socket


    Frame::Ptr frame;

    SessionStats::Ptr stats;


    TunPersist::Ptr tun_persist;


    Stop *stop = nullptr;


    TunBuilderSetup::Factory::Ptr tun_setup_factory;


    TunBuilderSetup::Base::Ptr new_setup_obj()

    {

        if (tun_setup_factory)

            return tun_setup_factory->new_setup_obj();

        else

            return new TunMac::Setup();

    }


    static Ptr new_obj()

    {

        return new ClientConfig;

    }


    bool supports_epoch_data() override

    {

        return true;

    }


    TunClient::Ptr new_tun_client_obj(openvpn_io::io_context &io_context,

                                      TunClientParent &parent,

                                      TransportClient *transcli) override;


    // return true if layer 2 tunnels are supported


    bool layer_2_supported() const override

    {

#if defined(MAC_TUNTAP_FALLBACK)

        return false; // change to true after TAP support is added

#else

        return false; // utun device doesn't support TAP

#endif

    }


    // called just prior to transmission of Disconnect event


    void finalize(const bool disconnected) override

    {

        if (disconnected)

            tun_persist.reset();

    }


};


class Client : public TunClient

{

    friend class ClientConfig;                                               // calls constructor

    friend class TunIO<Client *, PacketFrom, TunWrapAsioStream<TunPersist>>; // calls tun_read_handler


    typedef Tun<Client *, TunPersist> TunImpl;


  public:


    void tun_start(const OptionList &opt, TransportClient &transcli, CryptoDCSettings &) override

    {

        if (!impl)

        {

            halt = false;

            if (config->tun_persist)

            {

                OPENVPN_LOG("TunPersist: long-term session scope");

                tun_persist = config->tun_persist;

            }

            else

            {

                OPENVPN_LOG("TunPersist: short-term connection scope");

                tun_persist.reset(new TunPersist(false, TunWrapObjRetain::NO_RETAIN, NULL));

            }


            try

            {

                const IP::Addr server_addr = transcli.server_endpoint_addr();


                // Check if persisted tun session matches properties of to-be-created session

                if (tun_persist->use_persisted_tun(server_addr, config->tun_prop, opt))

                {

                    state = tun_persist->state();

                    OPENVPN_LOG("TunPersist: reused tun context");

                }

                else

                {

                    OPENVPN_LOG("TunPersist: new tun context");


                    // notify parent

                    parent.tun_pre_tun_config();


                    // close old tun handle if persisted

                    tun_persist->close();


                    // emulated exclude routes

                    EmulateExcludeRouteFactory::Ptr eer_factory;

#ifdef TEST_EER

                    eer_factory.reset(new EmulateExcludeRouteFactoryImpl(true));

#endif

                    // parse pushed options

                    TunBuilderCapture::Ptr po(new TunBuilderCapture());

                    TunProp::configure_builder(po.get(),

                                               state.get(),

                                               config->stats.get(),

                                               server_addr,

                                               config->tun_prop,

                                               opt,

                                               eer_factory.get(),

                                               false);


                    // handle MTU default

                    if (!po->mtu)

                        po->mtu = TUN_MTU_DEFAULT;


                    OPENVPN_LOG("CAPTURED OPTIONS:" << std::endl

                                                    << po->to_string());


                    // create new tun setup object

                    tun_setup = config->new_setup_obj();


                    // create config object for tun setup layer

                    Setup::Config tsconf;

                    tsconf.iface_name = state->iface_name;

                    tsconf.layer = config->tun_prop.layer;


                    // open/config tun

                    int fd = -1;

                    {

                        std::ostringstream os;

                        auto os_print = Cleanup([&os]()

                                                { OPENVPN_LOG_STRING(os.str()); });

                        fd = tun_setup->establish(*po, &tsconf, config->stop, os);

                    }


                    // create ASIO wrapper for tun fd

                    TUNStream *ts = new TUNStream(io_context, fd);


                    // persist tun settings state

                    state->iface_name = tsconf.iface_name;

                    state->tun_prefix = tsconf.tun_prefix;

                    if (tun_persist->persist_tun_state(ts, state))

                        OPENVPN_LOG("TunPersist: saving tun context:" << std::endl

                                                                      << tun_persist->options());


                    // enable tun_setup destructor

                    tun_persist->add_destructor(tun_setup);

                }


                // configure tun interface packet forwarding

                impl.reset(new TunImpl(tun_persist,

                                       state->iface_name,

                                       true,

                                       state->tun_prefix,

                                       this,

                                       config->frame,

                                       config->stats));

                impl->start(config->n_parallel);


                // signal that we are connected

                parent.tun_connected();

            }

            catch (const std::exception &e)

            {

                if (tun_persist)

                    tun_persist->close();

                stop();

                Error::Type err = Error::TUN_SETUP_FAILED;

                const ExceptionCode *ec = dynamic_cast<const ExceptionCode *>(&e);

                if (ec && ec->code_defined())

                    err = ec->code();

                parent.tun_error(err, e.what());

            }

        }

    }


    bool tun_send(BufferAllocated &buf) override

    {

        return send(buf);

    }


    std::string tun_name() const override

    {

        if (impl)

            return impl->name();

        else

            return "UNDEF_TUN";

    }


    std::string vpn_ip4() const override

    {

        if (state->vpn_ip4_addr.specified())

            return state->vpn_ip4_addr.to_string();

        else

            return "";

    }


    std::string vpn_ip6() const override

    {

        if (state->vpn_ip6_addr.specified())

            return state->vpn_ip6_addr.to_string();

        else

            return "";

    }


    std::string vpn_gw4() const override

    {

        if (state->vpn_ip4_gw.specified())

            return state->vpn_ip4_gw.to_string();

        else

            return "";

    }


    std::string vpn_gw6() const override

    {

        if (state->vpn_ip6_gw.specified())

            return state->vpn_ip6_gw.to_string();

        else

            return "";

    }


    int vpn_mtu() const override

    {

        return state->mtu;

    }


    void set_disconnect() override

    {

    }


    void stop() override

    {

        stop_();

    }


    virtual ~Client()

    {

        stop_();

    }


    void apply_push_update(const OptionList &opt, TransportClient &cli) override

    {

        stop_();

        if (impl)

        {

            impl.reset();

        }


        // this has to be done in post, because we need to wait

        // for all async tun read requests to complete

        openvpn_io::post(io_context,

                         [self = Ptr(this), opt, &cli]

                         {

                             OPENVPN_ASYNC_HANDLER;

                             CryptoDCSettings c{};

                             self->tun_start(opt, cli, c);

                         });

    }


  private:


    Client(openvpn_io::io_context &io_context_arg,

           ClientConfig *config_arg,

           TunClientParent &parent_arg)

        : io_context(io_context_arg),

          config(config_arg),

          parent(parent_arg),

          halt(false),

          state(new TunProp::State())

    {

    }


    bool send(Buffer &buf)

    {

        if (impl)

            return impl->write(buf);

        else

            return false;

    }


    void tun_read_handler(PacketFrom::SPtr &pfp) // called by TunImpl

    {

        parent.tun_recv(pfp->buf);

    }


    void tun_error_handler(const Error::Type errtype, // called by TunImpl

                           const openvpn_io::error_code *error)

    {

        parent.tun_error(Error::TUN_ERROR, "TUN I/O error");

    }


    void stop_()

    {

        if (!halt)

        {

            halt = true;


            // stop tun

            if (impl)

                impl->stop();

            tun_persist.reset();

        }

    }


    openvpn_io::io_context &io_context;

    TunPersist::Ptr tun_persist; // contains the tun device fd

    ClientConfig::Ptr config;

    TunClientParent &parent;

    TunImpl::Ptr impl;

    bool halt;

    TunProp::State::Ptr state;

    TunBuilderSetup::Base::Ptr tun_setup;

};


inline TunClient::Ptr ClientConfig::new_tun_client_obj(openvpn_io::io_context &io_context,

                                                       TunClientParent &parent,

                                                       TransportClient *transcli)

{

    return TunClient::Ptr(new Client(io_context, this, parent));

}


} // namespace openvpn::TunMac


#endif

OPENVPN_ASYNC_HANDLER
#define OPENVPN_ASYNC_HANDLER
Definition bigmutex.hpp:36

openvpn::BufferAllocatedType< unsigned char >

openvpn::BufferType< unsigned char >

openvpn::CryptoDCSettings
Definition cryptodc.hpp:194

openvpn::EmulateExcludeRouteFactoryImpl
Definition cliemuexr.hpp:149

openvpn::ExceptionCode
Definition excode.hpp:24

openvpn::ExceptionCode::code
Error::Type code() const
Definition excode.hpp:47

openvpn::ExceptionCode::code_defined
bool code_defined() const
Definition excode.hpp:56

openvpn::IP::Addr
Definition ip.hpp:39

openvpn::OptionList
Definition options.hpp:517

openvpn::RCPtr
The smart pointer class.
Definition rc.hpp:119

openvpn::RCPtr::reset
void reset() noexcept
Points this RCPtr<T> to nullptr safely.
Definition rc.hpp:290

openvpn::RCPtr::get
T * get() const noexcept
Returns the raw pointer to the object T, or nullptr.
Definition rc.hpp:321

openvpn::ScopedAsioStream
Definition scoped_asio_stream.hpp:23

openvpn::Stop
Definition stop.hpp:27

openvpn::TunBuilderCapture
Definition capture.hpp:42

openvpn::TunBuilderCapture::mtu
int mtu
Definition capture.hpp:1080

openvpn::TunBuilderCapture::to_string
std::string to_string() const
Converts the tunnel configuration to a human-readable string representation.
Definition capture.hpp:968

openvpn::TunIO
Definition tunio.hpp:33

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::tun_prefix
bool tun_prefix
Definition tunio.hpp:267

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::name
std::string name() const
Definition tunio.hpp:188

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::name_
std::string name_
Definition tunio.hpp:264

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::stream
TunWrapAsioStream< TunPersist > * stream
Definition tunio.hpp:265

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::read_handler
ReadHandler read_handler
Definition tunio.hpp:269

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::retain_stream
bool retain_stream
Definition tunio.hpp:266

openvpn::TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > >::stats
SessionStats::Ptr stats
Definition tunio.hpp:271

openvpn::TunMac::ClientConfig
Definition tuncli.hpp:80

openvpn::TunMac::ClientConfig::new_tun_client_obj
TunClient::Ptr new_tun_client_obj(openvpn_io::io_context &io_context, TunClientParent &parent, TransportClient *transcli) override
Definition tuncli.hpp:397

openvpn::TunMac::ClientConfig::tun_prop
TunProp::Config tun_prop
Definition tuncli.hpp:84

openvpn::TunMac::ClientConfig::frame
Frame::Ptr frame
Definition tuncli.hpp:87

openvpn::TunMac::ClientConfig::n_parallel
int n_parallel
Definition tuncli.hpp:85

openvpn::TunMac::ClientConfig::layer_2_supported
bool layer_2_supported() const override
Definition tuncli.hpp:119

openvpn::TunMac::ClientConfig::new_obj
static Ptr new_obj()
Definition tuncli.hpp:104

openvpn::TunMac::ClientConfig::new_setup_obj
TunBuilderSetup::Base::Ptr new_setup_obj()
Definition tuncli.hpp:96

openvpn::TunMac::ClientConfig::stop
Stop * stop
Definition tuncli.hpp:92

openvpn::TunMac::ClientConfig::supports_epoch_data
bool supports_epoch_data() override
Definition tuncli.hpp:109

openvpn::TunMac::ClientConfig::tun_setup_factory
TunBuilderSetup::Factory::Ptr tun_setup_factory
Definition tuncli.hpp:94

openvpn::TunMac::ClientConfig::tun_persist
TunPersist::Ptr tun_persist
Definition tuncli.hpp:90

openvpn::TunMac::ClientConfig::stats
SessionStats::Ptr stats
Definition tuncli.hpp:88

openvpn::TunMac::ClientConfig::finalize
void finalize(const bool disconnected) override
Definition tuncli.hpp:129

openvpn::TunMac::ClientConfig::Ptr
RCPtr< ClientConfig > Ptr
Definition tuncli.hpp:82

openvpn::TunMac::Client
Definition tuncli.hpp:137

openvpn::TunMac::Client::tun_send
bool tun_send(BufferAllocated &buf) override
Definition tuncli.hpp:261

openvpn::TunMac::Client::send
bool send(Buffer &buf)
Definition tuncli.hpp:355

openvpn::TunMac::Client::vpn_ip4
std::string vpn_ip4() const override
Definition tuncli.hpp:274

openvpn::TunMac::Client::stop_
void stop_()
Definition tuncli.hpp:374

openvpn::TunMac::Client::state
TunProp::State::Ptr state
Definition tuncli.hpp:393

openvpn::TunMac::Client::tun_start
void tun_start(const OptionList &opt, TransportClient &transcli, CryptoDCSettings &) override
Definition tuncli.hpp:144

openvpn::TunMac::Client::vpn_ip6
std::string vpn_ip6() const override
Definition tuncli.hpp:282

openvpn::TunMac::Client::~Client
virtual ~Client()
Definition tuncli.hpp:319

openvpn::TunMac::Client::tun_read_handler
void tun_read_handler(PacketFrom::SPtr &pfp)
Definition tuncli.hpp:363

openvpn::TunMac::Client::tun_setup
TunBuilderSetup::Base::Ptr tun_setup
Definition tuncli.hpp:394

openvpn::TunMac::Client::apply_push_update
void apply_push_update(const OptionList &opt, TransportClient &cli) override
Notifies tun client about received PUSH_UPDATE control channel message.
Definition tuncli.hpp:324

openvpn::TunMac::Client::stop
void stop() override
Definition tuncli.hpp:315

openvpn::TunMac::Client::TunImpl
Tun< Client *, TunPersist > TunImpl
Definition tuncli.hpp:141

openvpn::TunMac::Client::halt
bool halt
Definition tuncli.hpp:392

openvpn::TunMac::Client::config
ClientConfig::Ptr config
Definition tuncli.hpp:389

openvpn::TunMac::Client::parent
TunClientParent & parent
Definition tuncli.hpp:390

openvpn::TunMac::Client::Client
Client(openvpn_io::io_context &io_context_arg, ClientConfig *config_arg, TunClientParent &parent_arg)
Definition tuncli.hpp:344

openvpn::TunMac::Client::vpn_gw6
std::string vpn_gw6() const override
Definition tuncli.hpp:298

openvpn::TunMac::Client::io_context
openvpn_io::io_context & io_context
Definition tuncli.hpp:387

openvpn::TunMac::Client::tun_name
std::string tun_name() const override
Definition tuncli.hpp:266

openvpn::TunMac::Client::vpn_mtu
int vpn_mtu() const override
Definition tuncli.hpp:306

openvpn::TunMac::Client::vpn_gw4
std::string vpn_gw4() const override
Definition tuncli.hpp:290

openvpn::TunMac::Client::tun_error_handler
void tun_error_handler(const Error::Type errtype, const openvpn_io::error_code *error)
Definition tuncli.hpp:368

openvpn::TunMac::Client::set_disconnect
void set_disconnect() override
Definition tuncli.hpp:311

openvpn::TunMac::Client::impl
TunImpl::Ptr impl
Definition tuncli.hpp:391

openvpn::TunMac::Client::tun_persist
TunPersist::Ptr tun_persist
Definition tuncli.hpp:388

openvpn::TunMac::Setup
Definition tunsetup.hpp:45

openvpn::TunMac::Tun
Definition tuncli.hpp:50

openvpn::TunMac::Tun::Ptr
RCPtr< Tun > Ptr
Definition tuncli.hpp:54

openvpn::TunMac::Tun::Base
TunIO< ReadHandler, PacketFrom, TunWrapAsioStream< TunPersist > > Base
Definition tuncli.hpp:51

openvpn::TunMac::Tun::Tun
Tun(const typename TunPersist::Ptr &tun_persist, const std::string &name, const bool retain_stream, const bool tun_prefix, ReadHandler read_handler, const Frame::Ptr &frame, const SessionStats::Ptr &stats)
Definition tuncli.hpp:56

openvpn::TunPersistTemplate
Definition tunpersist.hpp:26

openvpn::TunProp
Definition tunprop.hpp:35

openvpn::TunProp::configure_builder
static void configure_builder(TunBuilderBase *tb, State *state, SessionStats *stats, const IP::Addr &server_addr, const Config &config, const OptionList &opt, const EmulateExcludeRouteFactory *eer_factory, const bool quiet)
Definition tunprop.hpp:92

openvpn::TunWrapAsioStream
Definition tunwrapasio.hpp:28

cleanup.hpp

cliemuexr.hpp

tunbase.hpp

OPENVPN_EXCEPTION
#define OPENVPN_EXCEPTION(C)
Definition exception.hpp:100

OPENVPN_LOG
#define OPENVPN_LOG(args)
Definition logdatetime.hpp:23

OPENVPN_LOG_STRING
#define OPENVPN_LOG_STRING(str)
Definition logdatetime.hpp:28

tunsetup.hpp

openvpn::Error::Type
Type
Definition error.hpp:22

openvpn::Error::TUN_ERROR
@ TUN_ERROR
Definition error.hpp:43

openvpn::Error::TUN_SETUP_FAILED
@ TUN_SETUP_FAILED
Definition error.hpp:40

openvpn::TunMac
Definition tuncli.hpp:36

openvpn::TunMac::ScopedTUNStream
ScopedAsioStream< TUNStream > ScopedTUNStream
Definition tuncli.hpp:74

openvpn::TunMac::TUNStream
openvpn_io::posix::stream_descriptor TUNStream
Definition tuncli.hpp:73

openvpn::TunMac::TunPersist
TunPersistTemplate< ScopedTUNStream > TunPersist
Definition tuncli.hpp:75

openvpn::TunWrapObjRetain::NO_RETAIN
@ NO_RETAIN

openvpn::TUN_MTU_DEFAULT
@ TUN_MTU_DEFAULT
Definition tunmtu.hpp:20

openvpn::Cleanup
CleanupType< F > Cleanup(F method) noexcept
Definition cleanup.hpp:43

scoped_asio_stream.hpp

openvpn::TransportClient
Definition transbase.hpp:36

openvpn::TransportClient::server_endpoint_addr
virtual IP::Addr server_endpoint_addr() const =0

openvpn::TunClientFactory
Definition tunbase.hpp:101

openvpn::TunClientParent
Definition tunbase.hpp:82

openvpn::TunClientParent::tun_error
virtual void tun_error(const Error::Type fatal_err, const std::string &err_text)=0

openvpn::TunClientParent::tun_connected
virtual void tun_connected()=0

openvpn::TunClientParent::tun_pre_tun_config
virtual void tun_pre_tun_config()=0

openvpn::TunClientParent::tun_recv
virtual void tun_recv(BufferAllocated &buf)=0

openvpn::TunClient
Definition tunbase.hpp:33

openvpn::TunClient::Ptr
RCPtr< TunClient > Ptr
Definition tunbase.hpp:34

openvpn::TunMac::PacketFrom
Definition tuncli.hpp:42

openvpn::TunMac::PacketFrom::buf
BufferAllocated buf
Definition tuncli.hpp:44

openvpn::TunMac::PacketFrom::SPtr
std::unique_ptr< PacketFrom > SPtr
Definition tuncli.hpp:43

openvpn::TunMac::Setup::Config
Definition tunsetup.hpp:52

openvpn::TunMac::Setup::Config::layer
Layer layer
Definition tunsetup.hpp:54

openvpn::TunMac::Setup::Config::tun_prefix
bool tun_prefix
Definition tunsetup.hpp:55

openvpn::TunMac::Setup::Config::iface_name
std::string iface_name
Definition tunsetup.hpp:53

openvpn::TunProp::Config
Definition tunprop.hpp:52

os
std::ostringstream os
Definition test_capture.cpp:1086

to_string.hpp

tunio.hpp

tunmtu.hpp

tunpersist.hpp

tunprop.hpp

tunwrapasio.hpp