| Message ID | 20180220160016.69786-1-gert@greenie.muc.de |
|---|---|
| State | Accepted |
| Headers | show |
| Series | [Openvpn-devel] Fix removal of on-link prefix on windows with netsh | expand |
Hi, Hope this still can get in to 2.4.5 On Tue, Feb 20, 2018 at 11:00 AM, Gert Doering <gert@greenie.muc.de> wrote: > When adding / removing IPv6 routes, the host bits need to be zeroed or > netsh.exe will refuse to handle the route. > > Commit a24dd2e31 changed the way this is done, breaking removal of > the on-link IPv6 prefix for windows + netsh.exe. > > Fix by adding explicitly calling route_ipv6_clear_host_bits() from > delete_route_connected_v6_net(). > > Signed-off-by: Gert Doering <gert@greenie.muc.de> > --- > src/openvpn/route.c | 2 +- > src/openvpn/route.h | 2 ++ > src/openvpn/tun.c | 1 + > 3 files changed, 4 insertions(+), 1 deletion(-) > > diff --git a/src/openvpn/route.c b/src/openvpn/route.c > index ca8b182b..27b39c41 100644 > --- a/src/openvpn/route.c > +++ b/src/openvpn/route.c > @@ -1820,7 +1820,7 @@ done: > } > > > -static void > +void > route_ipv6_clear_host_bits( struct route_ipv6 *r6 ) > { > /* clear host bit parts of route > diff --git a/src/openvpn/route.h b/src/openvpn/route.h > index 2c6f9f16..69420228 100644 > --- a/src/openvpn/route.h > +++ b/src/openvpn/route.h > @@ -254,6 +254,8 @@ void copy_route_ipv6_option_list(struct route_ipv6_option_list *dest, > const struct route_ipv6_option_list *src, > struct gc_arena *a); > > +void route_ipv6_clear_host_bits( struct route_ipv6 *r6 ); > + > void add_route_ipv6(struct route_ipv6 *r, const struct tuntap *tt, unsigned int flags, const struct env_set *es); > > void delete_route_ipv6(const struct route_ipv6 *r, const struct tuntap *tt, unsigned int flags, const struct env_set *es); > diff --git a/src/openvpn/tun.c b/src/openvpn/tun.c > index 253d884b..1399aa83 100644 > --- a/src/openvpn/tun.c > +++ b/src/openvpn/tun.c > @@ -839,6 +839,7 @@ delete_route_connected_v6_net(struct tuntap *tt, > r6.gateway = tt->local_ipv6; > r6.metric = 0; /* connected route */ > r6.flags = RT_DEFINED | RT_ADDED | RT_METRIC_DEFINED; > + route_ipv6_clear_host_bits(&r6); > delete_route_ipv6(&r6, tt, 0, es); > } > #endif /* if defined(_WIN32) || defined(TARGET_DARWIN) || defined(TARGET_NETBSD) || defined(TARGET_OPENBSD) */ The reason why the host bits need to be cleared again (it is deleted in add routes) is complex, but this does the right thing and is required in some versions of Windows. So ACK. Why I say "some versions" is that my old Windows 7 never failed with the original delete route code that did not clear the host bits. Windows 10 did fail, but even that has appeared to have learned to ignore the host bits after some very recent updates (surprise).. But JJK had reported failure in Windows 7. Acked-by: Selva Nair <selva.nair@gmail.com> Fixes Trac #1003. Selva ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
Thanks.
Patch has been applied to the master and release/2.4 branch.
commit 2cea72005cb5a825c25494959d550ae16562676a (master)
commit b8f56fadbe459423b673886c785b7ed6f3a37c36 (release/2.4)
Author: Gert Doering
Date: Tue Feb 20 17:00:16 2018 +0100
Fix removal of on-link prefix on windows with netsh
Signed-off-by: Gert Doering <gert@greenie.muc.de>
Acked-by: Selva Nair <selva.nair@gmail.com>
Message-Id: <20180220160016.69786-1-gert@greenie.muc.de>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg16508.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>
--
kind regards,
Gert Doering
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
diff --git a/src/openvpn/route.c b/src/openvpn/route.c index ca8b182b..27b39c41 100644 --- a/src/openvpn/route.c +++ b/src/openvpn/route.c @@ -1820,7 +1820,7 @@ done: } -static void +void route_ipv6_clear_host_bits( struct route_ipv6 *r6 ) { /* clear host bit parts of route diff --git a/src/openvpn/route.h b/src/openvpn/route.h index 2c6f9f16..69420228 100644 --- a/src/openvpn/route.h +++ b/src/openvpn/route.h @@ -254,6 +254,8 @@ void copy_route_ipv6_option_list(struct route_ipv6_option_list *dest, const struct route_ipv6_option_list *src, struct gc_arena *a); +void route_ipv6_clear_host_bits( struct route_ipv6 *r6 ); + void add_route_ipv6(struct route_ipv6 *r, const struct tuntap *tt, unsigned int flags, const struct env_set *es); void delete_route_ipv6(const struct route_ipv6 *r, const struct tuntap *tt, unsigned int flags, const struct env_set *es); diff --git a/src/openvpn/tun.c b/src/openvpn/tun.c index 253d884b..1399aa83 100644 --- a/src/openvpn/tun.c +++ b/src/openvpn/tun.c @@ -839,6 +839,7 @@ delete_route_connected_v6_net(struct tuntap *tt, r6.gateway = tt->local_ipv6; r6.metric = 0; /* connected route */ r6.flags = RT_DEFINED | RT_ADDED | RT_METRIC_DEFINED; + route_ipv6_clear_host_bits(&r6); delete_route_ipv6(&r6, tt, 0, es); } #endif /* if defined(_WIN32) || defined(TARGET_DARWIN) || defined(TARGET_NETBSD) || defined(TARGET_OPENBSD) */
When adding / removing IPv6 routes, the host bits need to be zeroed or netsh.exe will refuse to handle the route. Commit a24dd2e31 changed the way this is done, breaking removal of the on-link IPv6 prefix for windows + netsh.exe. Fix by adding explicitly calling route_ipv6_clear_host_bits() from delete_route_connected_v6_net(). Signed-off-by: Gert Doering <gert@greenie.muc.de> --- src/openvpn/route.c | 2 +- src/openvpn/route.h | 2 ++ src/openvpn/tun.c | 1 + 3 files changed, 4 insertions(+), 1 deletion(-)