OpenVPN
ping.c
Go to the documentation of this file.
1 /*
2  * OpenVPN -- An application to securely tunnel IP networks
3  * over a single TCP/UDP port, with support for SSL/TLS-based
4  * session authentication and key exchange,
5  * packet encryption, packet authentication, and
6  * packet compression.
7  *
8  * Copyright (C) 2002-2023 OpenVPN Inc <sales@openvpn.net>
9  *
10  * This program is free software; you can redistribute it and/or modify
11  * it under the terms of the GNU General Public License version 2
12  * as published by the Free Software Foundation.
13  *
14  * This program is distributed in the hope that it will be useful,
15  * but WITHOUT ANY WARRANTY; without even the implied warranty of
16  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17  * GNU General Public License for more details.
18  *
19  * You should have received a copy of the GNU General Public License along
20  * with this program; if not, write to the Free Software Foundation, Inc.,
21  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22  */
23 
24 #ifdef HAVE_CONFIG_H
25 #include "config.h"
26 #elif defined(_MSC_VER)
27 #include "config-msvc.h"
28 #endif
29 
30 #include "syshead.h"
31 
32 #include "ping.h"
33 
34 #include "memdbg.h"
35 
36 
37 /*
38  * This random string identifies an OpenVPN ping packet.
39  * It should be of sufficient length and randomness
40  * so as not to collide with other tunnel data.
41  *
42  * PING_STRING_SIZE must be sizeof (ping_string)
43  */
44 const uint8_t ping_string[] = {
45  0x2a, 0x18, 0x7b, 0xf3, 0x64, 0x1e, 0xb4, 0xcb,
46  0x07, 0xed, 0x2d, 0x0a, 0x98, 0x1f, 0xc7, 0x48
47 };
48 
49 void
50 trigger_ping_timeout_signal(struct context *c)
51 {
52  struct gc_arena gc = gc_new();
53  switch (c->options.ping_rec_timeout_action)
54  {
55  case PING_EXIT:
56  msg(M_INFO, "%sInactivity timeout (--ping-exit), exiting",
57  format_common_name(c, &gc));
58  register_signal(c->sig, SIGTERM, "ping-exit");
59  break;
60 
61  case PING_RESTART:
62  msg(M_INFO, "%sInactivity timeout (--ping-restart), restarting",
63  format_common_name(c, &gc));
64  register_signal(c->sig, SIGUSR1, "ping-restart");
65  break;
66 
67  default:
68  ASSERT(0);
69  }
70  gc_free(&gc);
71 }
72 
73 /*
74  * Should we ping the remote?
75  */
76 void
77 check_ping_send_dowork(struct context *c)
78 {
79  c->c2.buf = c->c2.buffers->aux_buf;
80  ASSERT(buf_init(&c->c2.buf, c->c2.frame.buf.headroom));
81  ASSERT(buf_safe(&c->c2.buf, c->c2.frame.buf.payload_size));
82  ASSERT(buf_write(&c->c2.buf, ping_string, sizeof(ping_string)));
83 
84  /*
85  * We will treat the ping like any other outgoing packet,
86  * encrypt, sign, etc.
87  */
88  encrypt_sign(c, true);
89  /* Set length to 0, so it won't be counted as activity */
90  c->c2.buf.len = 0;
91  dmsg(D_PING, "SENT PING");
92 }
buf_safe
static bool buf_safe(const struct buffer *buf, size_t len)
Definition: buffer.h:538
M_INFO
#define M_INFO
Definition: errlevel.h:55
gc_new
static struct gc_arena gc_new(void)
Definition: buffer.h:1011
buffer::len
int len
Length in bytes of the actual content within the allocated memory.
Definition: buffer.h:66
context_2::buf
struct buffer buf
Definition: openvpn.h:381
buf_init
#define buf_init(buf, offset)
Definition: buffer.h:209
context
Contains all state information for one tunnel.
Definition: openvpn.h:479
config-msvc.h
frame::buf
struct frame::@5 buf
dmsg
#define dmsg(flags,...)
Definition: error.h:154
ping_string
const uint8_t ping_string[]
Definition: ping.c:44
context_2::buffers
struct context_buffers * buffers
Definition: openvpn.h:373
check_ping_send_dowork
void check_ping_send_dowork(struct context *c)
Definition: ping.c:77
PING_RESTART
#define PING_RESTART
Definition: options.h:343
context::c2
struct context_2 c2
Level 2 context.
Definition: openvpn.h:520
register_signal
void register_signal(struct signal_info *si, int sig, const char *text)
Definition: sig.c:478
ASSERT
#define ASSERT(x)
Definition: error.h:201
ping.h
encrypt_sign
void encrypt_sign(struct context *c, bool comp_frag)
Process a data channel packet that will be sent through a VPN tunnel.
Definition: forward.c:580
frame::payload_size
int payload_size
the maximum size that a payload that our buffers can hold from either tun device or network link.
Definition: mtu.h:102
D_PING
#define D_PING
Definition: errlevel.h:143
context::options
struct options options
Options loaded from command line or configuration file.
Definition: openvpn.h:481
format_common_name
const char * format_common_name(struct context *c, struct gc_arena *gc)
Definition: init.c:1316
trigger_ping_timeout_signal
void trigger_ping_timeout_signal(struct context *c)
Trigger the correct signal on a –ping timeout depending if –ping-exit is set (SIGTERM) or not (SIGUSR...
Definition: ping.c:50
buf_write
static bool buf_write(struct buffer *dest, const void *src, size_t size)
Definition: buffer.h:686
context_buffers::aux_buf
struct buffer aux_buf
Definition: openvpn.h:97
context_2::frame
struct frame frame
Definition: openvpn.h:251
syshead.h
SIGTERM
#define SIGTERM
Definition: config-msvc.h:82
gc_arena
Garbage collection arena used to keep track of dynamically allocated memory.
Definition: buffer.h:116
SIGUSR1
#define SIGUSR1
Definition: config-msvc.h:80
context::sig
struct signal_info * sig
Internal error signaling object.
Definition: openvpn.h:506
PING_EXIT
#define PING_EXIT
Definition: options.h:342
gc_free
static void gc_free(struct gc_arena *a)
Definition: buffer.h:1019
config.h
memdbg.h
options::ping_rec_timeout_action
int ping_rec_timeout_action
Definition: options.h:344
msg
#define msg(flags,...)
Definition: error.h:150
frame::headroom
int headroom
the headroom in the buffer, this is choosen to allow all potential header to be added before the pack...
Definition: mtu.h:108
Generated by   doxygen 1.8.17