/*
* Should we deliver a datagram fragment to remote?
*/
void
check_fragment_dowork (struct context *c)
{
struct link_socket_info *lsi = get_link_socket_info (c);
/* OS MTU Hint? */
if (lsi->mtu_changed && c->c2.ipv4_tun)
{
frame_adjust_path_mtu (&c->c2.frame_fragment, c->c2.link_socket->mtu,
c->options.ce.proto);
lsi->mtu_changed = false;
}
if (fragment_outgoing_defined (c->c2.fragment))
{
if (!c->c2.to_link.len)
{
/* encrypt a fragment for output to TCP/UDP port */
ASSERT (fragment_ready_to_send (c->c2.fragment, &c->c2.buf, &c->c2.frame_fragment));
encrypt_sign (c, false);
}
}
fragment_housekeeping (c->c2.fragment, &c->c2.frame_fragment, &c->c2.timeval);
}
void
process_incoming_tun (struct context *c)
{
struct gc_arena gc = gc_new ();
perf_push (PERF_PROC_IN_TUN);
if (c->c2.buf.len > 0)
c->c2.tun_read_bytes += c->c2.buf.len;
#ifdef LOG_RW
if (c->c2.log_rw && c->c2.buf.len > 0)
fprintf (stderr, "r");
#endif
/* Show packet content */
dmsg (D_TUN_RW, "TUN READ [%d]", BLEN (&c->c2.buf));
if (c->c2.buf.len > 0)
{
if ((c->options.mode == MODE_POINT_TO_POINT) && (!c->options.allow_recursive_routing))
drop_if_recursive_routing (c, &c->c2.buf);
/*
* The --passtos and --mssfix options require
* us to examine the IP header (IPv4 or IPv6).
*/
process_ip_header (c, PIPV4_PASSTOS|PIP_MSSFIX|PIPV4_CLIENT_NAT, &c->c2.buf);
#ifdef PACKET_TRUNCATION_CHECK
/* if (c->c2.buf.len > 1) --c->c2.buf.len; */
ipv4_packet_size_verify (BPTR (&c->c2.buf),
BLEN (&c->c2.buf),
TUNNEL_TYPE (c->c1.tuntap),
"PRE_ENCRYPT",
&c->c2.n_trunc_pre_encrypt);
#endif
encrypt_sign (c, true);
}
else
{
buf_reset (&c->c2.to_link);
}
perf_pop ();
gc_free (&gc);
}
void
check_send_occ_msg_dowork (struct context *c)
{
bool doit = false;
c->c2.buf = c->c2.buffers->aux_buf;
ASSERT (buf_init (&c->c2.buf, FRAME_HEADROOM (&c->c2.frame)));
ASSERT (buf_safe (&c->c2.buf, MAX_RW_SIZE_TUN (&c->c2.frame)));
ASSERT (buf_write (&c->c2.buf, occ_magic, OCC_STRING_SIZE));
switch (c->c2.occ_op)
{
case OCC_REQUEST:
if (!buf_write_u8 (&c->c2.buf, OCC_REQUEST))
break;
dmsg (D_PACKET_CONTENT, "SENT OCC_REQUEST");
doit = true;
break;
case OCC_REPLY:
if (!c->c2.options_string_local)
break;
if (!buf_write_u8 (&c->c2.buf, OCC_REPLY))
break;
if (!buf_write (&c->c2.buf, c->c2.options_string_local,
strlen (c->c2.options_string_local) + 1))
break;
dmsg (D_PACKET_CONTENT, "SENT OCC_REPLY");
doit = true;
break;
case OCC_MTU_REQUEST:
if (!buf_write_u8 (&c->c2.buf, OCC_MTU_REQUEST))
break;
dmsg (D_PACKET_CONTENT, "SENT OCC_MTU_REQUEST");
doit = true;
break;
case OCC_MTU_REPLY:
if (!buf_write_u8 (&c->c2.buf, OCC_MTU_REPLY))
break;
if (!buf_write_u16 (&c->c2.buf, c->c2.max_recv_size_local))
break;
if (!buf_write_u16 (&c->c2.buf, c->c2.max_send_size_local))
break;
dmsg (D_PACKET_CONTENT, "SENT OCC_MTU_REPLY");
doit = true;
break;
case OCC_MTU_LOAD_REQUEST:
if (!buf_write_u8 (&c->c2.buf, OCC_MTU_LOAD_REQUEST))
break;
if (!buf_write_u16 (&c->c2.buf, c->c2.occ_mtu_load_size))
break;
dmsg (D_PACKET_CONTENT, "SENT OCC_MTU_LOAD_REQUEST");
doit = true;
break;
case OCC_MTU_LOAD:
{
int need_to_add;
if (!buf_write_u8 (&c->c2.buf, OCC_MTU_LOAD))
break;
need_to_add = min_int (c->c2.occ_mtu_load_size, EXPANDED_SIZE (&c->c2.frame))
- OCC_STRING_SIZE
- sizeof (uint8_t)
- EXTRA_FRAME (&c->c2.frame);
while (need_to_add > 0)
{
/*
* Fill the load test packet with pseudo-random bytes.
*/
if (!buf_write_u8 (&c->c2.buf, get_random () & 0xFF))
break;
--need_to_add;
}
dmsg (D_PACKET_CONTENT, "SENT OCC_MTU_LOAD min_int(%d-%d-%d-%d,%d) size=%d",
c->c2.occ_mtu_load_size,
OCC_STRING_SIZE,
(int) sizeof (uint8_t),
EXTRA_FRAME (&c->c2.frame),
MAX_RW_SIZE_TUN (&c->c2.frame),
BLEN (&c->c2.buf));
doit = true;
}
break;
case OCC_EXIT:
if (!buf_write_u8 (&c->c2.buf, OCC_EXIT))
break;
dmsg (D_PACKET_CONTENT, "SENT OCC_EXIT");
doit = true;
break;
}
if (doit)
{
/*
* We will treat the packet like any other outgoing packet,
* compress, encrypt, sign, etc.
*/
encrypt_sign (c, true);
}
c->c2.occ_op = -1;
}
/*
* Should we ping the remote?
*/
void
check_ping_send_dowork (struct context *c)
{
c->c2.buf = c->c2.buffers->aux_buf;
ASSERT (buf_init (&c->c2.buf, FRAME_HEADROOM (&c->c2.frame)));
ASSERT (buf_safe (&c->c2.buf, MAX_RW_SIZE_TUN (&c->c2.frame)));
ASSERT (buf_write (&c->c2.buf, ping_string, sizeof (ping_string)));
/*
* We will treat the ping like any other outgoing packet,
* encrypt, sign, etc.
*/
encrypt_sign (c, true);
dmsg (D_PING, "SENT PING");
}