mirror of
https://gitlab.freedesktop.org/NetworkManager/NetworkManager.git
synced 2025-12-25 06:00:08 +01:00
50e36ce698
* src/NetworkManagerSystem.c
* (nm_system_device_set_from_ip4_config): Change the
arguments: This whole file shouldn't really know anything about
NMDevices, it
should deal only with device interfaces. Devices might have
different ifaces for
different stuff and this place shouldn't know anything about it.
* src/NetworkManagerPolicy.c: Get rid of leftover global
* variable global_policy.
(global_state_changed): Implement. In the current NM it's not
really important,
but will be required in the case of multiple active devices. (Or
even better,
if stuff like that gets moved out from NM).
* src/vpn-manager/nm-vpn-connection.c
* (connection_state_changed): Don't call
nm_system_device_set_from_ip4_config() directly, use
nm_device_set_ip4_config()
instead.
* src/nm-device.c: Add a ip_face protected member. It's used for
* 'multi-interface'
devices like serial devices (ttyS0 and ppp0 for example).
(nm_device_get_ip_iface): Implement. Default to the device iface
if ip_iface is not
set.
(nm_device_set_ip_iface): Implement.
(nm_device_activate_stage5_ip_config_commit): Move all the extra
actions that happen
after setting ip4_config from here ...
(nm_device_set_ip4_config): ... to here. The reason behind it is
that no other code
than this function should call
nm_system_device_set_from_ip4_config() because no
other code has enough information on which arguments to use. So
instead, other code
could just set the new ip4 config using this function and
everyone is happy.
* src/nm-umts-device.c: Store the pending ids so that we can
* remove pending actions
if we happen to get deactivated while something is pending.
(automatic_registration): Handle the response that indicates
pending network
registration and wait until the pending registration is done.
(real_deactivate_quickly): If there's a pending operation,
cancel it.
* src/nm-serial-device.c (ppp_ip4_config): Set the ip_iface when
* the iface is up ...
(real_deactivate_quickly): ... and remove it when it's down.
(nm_serial_device_get_reply): Return the timeout id so that the
callers can remove
it if needed.
(nm_serial_device_wait_for_reply): Ditto.
git-svn-id: http://svn-archive.gnome.org/svn/NetworkManager/trunk@3141 4912f4e0-d625-0410-9fb7-b9a5a253dbdc
526 lines
13 KiB
C
526 lines
13 KiB
C
/* -*- Mode: C; tab-width: 5; indent-tabs-mode: t; c-basic-offset: 5 -*- */
|
|
|
|
/* NetworkManager -- Network link manager
|
|
*
|
|
* Dan Williams <dcbw@redhat.com>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
|
|
*
|
|
* Copyright (C) 2004 Red Hat, Inc.
|
|
* Copyright (C) 1996 - 1997 Yoichi Hariguchi <yoichi@fore.com>
|
|
* Copyright (C) January, 1998 Sergei Viznyuk <sv@phystech.com>
|
|
*
|
|
*/
|
|
|
|
#include <sys/types.h>
|
|
#include <sys/socket.h>
|
|
#include <sys/ioctl.h>
|
|
#include <sys/stat.h>
|
|
#include <netinet/in.h>
|
|
#include <net/route.h>
|
|
#include <arpa/nameser.h>
|
|
#include <arpa/inet.h>
|
|
#include <fcntl.h>
|
|
#include <stdio.h>
|
|
#include <string.h>
|
|
#include <syslog.h>
|
|
#include <errno.h>
|
|
#include <stdlib.h>
|
|
#include <unistd.h>
|
|
#include <resolv.h>
|
|
#include <netdb.h>
|
|
#include <glib.h>
|
|
#include <pthread.h>
|
|
#include "NetworkManagerSystem.h"
|
|
#include "nm-device.h"
|
|
#include "nm-named-manager.h"
|
|
#include "NetworkManagerUtils.h"
|
|
#include "nm-utils.h"
|
|
#include "nm-netlink.h"
|
|
|
|
#include <netlink/route/addr.h>
|
|
#include <netlink/netlink.h>
|
|
#include <netlink/utils.h>
|
|
#include <netlink/route/link.h>
|
|
|
|
|
|
/*
|
|
* nm_system_device_set_ip4_route
|
|
*
|
|
*/
|
|
static gboolean
|
|
nm_system_device_set_ip4_route (const char *iface,
|
|
NMIP4Config *iface_config,
|
|
int ip4_gateway,
|
|
int ip4_dest,
|
|
int ip4_netmask,
|
|
int mss)
|
|
{
|
|
NMSock * sk;
|
|
gboolean success = FALSE;
|
|
struct rtentry rtent;
|
|
struct sockaddr_in *p;
|
|
int err;
|
|
struct rtentry rtent2;
|
|
|
|
/*
|
|
* Zero is not a legal gateway and the ioctl will fail. But zero is a
|
|
* way of saying "no route" so we just return here. Hopefully the
|
|
* caller flushed the routes, first.
|
|
*/
|
|
if (ip4_gateway == 0)
|
|
return TRUE;
|
|
|
|
/*
|
|
* Do not add the route if the destination is on the same subnet.
|
|
*/
|
|
if (iface_config &&
|
|
((guint32)ip4_dest & nm_ip4_config_get_netmask (iface_config)) ==
|
|
(nm_ip4_config_get_address (iface_config) & nm_ip4_config_get_netmask (iface_config)))
|
|
return TRUE;
|
|
|
|
|
|
if ((sk = nm_dev_sock_open (iface, NETWORK_CONTROL, __func__, NULL)) == NULL)
|
|
return FALSE;
|
|
|
|
memset (&rtent, 0, sizeof (struct rtentry));
|
|
p = (struct sockaddr_in *) &rtent.rt_dst;
|
|
p->sin_family = AF_INET;
|
|
p->sin_addr.s_addr = ip4_dest;
|
|
p = (struct sockaddr_in *) &rtent.rt_gateway;
|
|
p->sin_family = AF_INET;
|
|
p->sin_addr.s_addr = ip4_gateway;
|
|
p = (struct sockaddr_in *) &rtent.rt_genmask;
|
|
p->sin_family = AF_INET;
|
|
p->sin_addr.s_addr = ip4_netmask;
|
|
rtent.rt_dev = (char *)iface;
|
|
rtent.rt_metric = 1;
|
|
rtent.rt_window = 0;
|
|
rtent.rt_flags = RTF_UP | RTF_GATEWAY | (rtent.rt_window ? RTF_WINDOW : 0);
|
|
|
|
if (mss) {
|
|
rtent.rt_flags |= RTF_MTU;
|
|
rtent.rt_mtu = mss;
|
|
}
|
|
|
|
nm_ioctl_info ("%s: About to CADDRT\n", iface);
|
|
err = ioctl (nm_dev_sock_get_fd (sk), SIOCADDRT, &rtent);
|
|
nm_ioctl_info ("%s: About to CADDRT\n", iface);
|
|
if (err == 0) {
|
|
/* Everything good */
|
|
success = TRUE;
|
|
goto out;
|
|
}
|
|
|
|
if (errno != ENETUNREACH) {
|
|
nm_warning ("Failed to set IPv4 default route on '%s': %s",
|
|
iface,
|
|
strerror (errno));
|
|
goto out;
|
|
}
|
|
|
|
/* Gateway might be over a bridge; try adding a route to gateway first */
|
|
memset (&rtent2, 0, sizeof(struct rtentry));
|
|
p = (struct sockaddr_in *)&rtent2.rt_dst;
|
|
p->sin_family = AF_INET;
|
|
p = (struct sockaddr_in *)&rtent2.rt_gateway;
|
|
p->sin_family = AF_INET;
|
|
p->sin_addr.s_addr = ip4_gateway;
|
|
p = (struct sockaddr_in *)&rtent2.rt_genmask;
|
|
p->sin_family = AF_INET;
|
|
p->sin_addr.s_addr = 0xffffffff;
|
|
rtent2.rt_dev = (char *)iface;
|
|
rtent2.rt_metric = 0;
|
|
rtent2.rt_flags = RTF_UP | RTF_HOST;
|
|
|
|
if (mss) {
|
|
rtent2.rt_flags |= RTF_MTU;
|
|
rtent2.rt_mtu = mss;
|
|
}
|
|
|
|
/* Add route to gateway over bridge */
|
|
nm_ioctl_info ("%s: About to CADDRT (2)\n", iface);
|
|
err = ioctl (nm_dev_sock_get_fd (sk), SIOCADDRT, &rtent2);
|
|
nm_ioctl_info ("%s: About to CADDRT (2)\n", iface);
|
|
if (err) {
|
|
nm_warning ("Failed to add IPv4 default route on '%s': %s",
|
|
iface,
|
|
strerror (errno));
|
|
goto out;
|
|
}
|
|
|
|
/* Try adding the route again */
|
|
nm_ioctl_info ("%s: About to CADDRT (3)\n", iface);
|
|
err = ioctl (nm_dev_sock_get_fd (sk), SIOCADDRT, &rtent);
|
|
nm_ioctl_info ("%s: About to CADDRT (3)\n", iface);
|
|
if (!err) {
|
|
success = TRUE;
|
|
} else {
|
|
nm_warning ("Failed to set IPv4 default route on '%s': %s",
|
|
iface,
|
|
strerror (errno));
|
|
}
|
|
|
|
out:
|
|
nm_dev_sock_close (sk);
|
|
return success;
|
|
}
|
|
|
|
|
|
/*
|
|
* nm_system_device_set_from_ip4_config
|
|
*
|
|
* Set IPv4 configuration of the device from an NMIP4Config object.
|
|
*
|
|
*/
|
|
gboolean
|
|
nm_system_device_set_from_ip4_config (const char *iface,
|
|
NMIP4Config *config,
|
|
gboolean route_to_iface)
|
|
{
|
|
NMNamedManager * named_mgr;
|
|
struct nl_handle * nlh = NULL;
|
|
struct rtnl_addr * addr = NULL;
|
|
int err;
|
|
int len, i;
|
|
|
|
g_return_val_if_fail (iface != NULL, FALSE);
|
|
g_return_val_if_fail (config != NULL, FALSE);
|
|
|
|
nm_system_delete_default_route ();
|
|
nm_system_device_flush_addresses_with_iface (iface);
|
|
nm_system_device_flush_routes_with_iface (iface);
|
|
nm_system_flush_arp_cache ();
|
|
|
|
nlh = nm_netlink_get_default_handle ();
|
|
|
|
if ((addr = nm_ip4_config_to_rtnl_addr (config, NM_RTNL_ADDR_DEFAULT)))
|
|
{
|
|
rtnl_addr_set_ifindex (addr, nm_netlink_iface_to_index (iface));
|
|
|
|
if ((err = rtnl_addr_add (nlh, addr, 0)) < 0)
|
|
nm_warning ("(%s) error %d returned from rtnl_addr_add():\n%s", iface, err, nl_geterror());
|
|
rtnl_addr_put (addr);
|
|
}
|
|
else
|
|
nm_warning ("couldn't create rtnl address!\n");
|
|
|
|
sleep (1);
|
|
|
|
if (route_to_iface)
|
|
nm_system_device_add_default_route_via_device_with_iface (iface);
|
|
else
|
|
nm_system_device_set_ip4_route (iface, config,
|
|
nm_ip4_config_get_gateway (config), 0, 0,
|
|
nm_ip4_config_get_mss (config));
|
|
|
|
len = nm_ip4_config_get_num_static_routes (config);
|
|
for (i = 0; i < len; i++) {
|
|
guint32 mss = nm_ip4_config_get_mss (config);
|
|
guint32 route = nm_ip4_config_get_static_route (config, (i * 2) + 1);
|
|
guint32 saddr = nm_ip4_config_get_static_route (config, i * 2);
|
|
|
|
nm_system_device_set_ip4_route (iface, config, route, saddr, 0xffffffff, mss);
|
|
}
|
|
|
|
named_mgr = nm_named_manager_get ();
|
|
nm_named_manager_add_ip4_config (named_mgr, config);
|
|
g_object_unref (named_mgr);
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
|
|
/*
|
|
* validate_ip4_route
|
|
*
|
|
* Ensure that IP4 routes are in the correct format
|
|
*
|
|
*/
|
|
static char *validate_ip4_route (const char *route)
|
|
{
|
|
char * ret = NULL;
|
|
char * temp = NULL;
|
|
int slash_pos = -1;
|
|
char * p = NULL;
|
|
int len, i;
|
|
int dot_count = 0;
|
|
gboolean have_slash = FALSE;
|
|
struct in_addr addr;
|
|
|
|
g_return_val_if_fail (route != NULL, NULL);
|
|
|
|
len = strlen (route);
|
|
/* Minimum length, ie 1.1.1.1/8 */
|
|
if (len < 9)
|
|
return NULL;
|
|
|
|
for (i = 0; i < len; i++)
|
|
{
|
|
/* Ensure there is only one slash */
|
|
if (route[i] == '/')
|
|
{
|
|
if (have_slash)
|
|
goto out;
|
|
|
|
have_slash = TRUE;
|
|
slash_pos = i;
|
|
continue;
|
|
}
|
|
|
|
if (route[i] == '.')
|
|
{
|
|
if (dot_count >= 4)
|
|
goto out;
|
|
|
|
dot_count++;
|
|
continue;
|
|
}
|
|
|
|
if (!isdigit (route[i]))
|
|
goto out;
|
|
}
|
|
|
|
/* Make sure there is at least one slash and 3 dots */
|
|
if (!have_slash || !slash_pos || (dot_count != 3))
|
|
goto out;
|
|
|
|
/* Valid IP address part */
|
|
temp = g_strdup (route);
|
|
temp[slash_pos] = '\0';
|
|
memset (&addr, 0, sizeof (struct in_addr));
|
|
if (inet_aton (temp, &addr) == 0)
|
|
goto out;
|
|
|
|
/* Ensure the network # is valid */
|
|
p = temp + slash_pos + 1;
|
|
i = (int) strtol (p, NULL, 10);
|
|
if ((i < 0) || (i > 32))
|
|
goto out;
|
|
|
|
/* Success! */
|
|
ret = g_strdup (route);
|
|
|
|
out:
|
|
g_free (temp);
|
|
return ret;
|
|
}
|
|
|
|
|
|
/*
|
|
* nm_system_vpn_device_set_from_ip4_config
|
|
*
|
|
* Set IPv4 configuration of a VPN device from an NMIP4Config object.
|
|
*
|
|
*/
|
|
gboolean
|
|
nm_system_vpn_device_set_from_ip4_config (NMDevice *active_device,
|
|
const char *iface,
|
|
NMIP4Config *config,
|
|
GSList *routes)
|
|
{
|
|
NMIP4Config * ad_config = NULL;
|
|
struct nl_handle * nlh = NULL;
|
|
struct rtnl_addr * addr = NULL;
|
|
struct rtnl_link * request = NULL;
|
|
NMNamedManager *named_mgr;
|
|
int iface_idx;
|
|
|
|
g_return_val_if_fail (config != NULL, FALSE);
|
|
|
|
/* Set up a route to the VPN gateway through the real network device */
|
|
if (active_device && (ad_config = nm_device_get_ip4_config (active_device))) {
|
|
nm_system_device_set_ip4_route (nm_device_get_iface (active_device),
|
|
ad_config,
|
|
nm_ip4_config_get_gateway (ad_config),
|
|
nm_ip4_config_get_gateway (config),
|
|
0xFFFFFFFF,
|
|
nm_ip4_config_get_mss (config));
|
|
}
|
|
|
|
if (!iface || !strlen (iface))
|
|
goto out;
|
|
|
|
nm_system_device_set_up_down_with_iface (iface, TRUE);
|
|
|
|
iface_idx = nm_netlink_iface_to_index (iface);
|
|
|
|
nlh = nm_netlink_get_default_handle ();
|
|
if ((addr = nm_ip4_config_to_rtnl_addr (config, NM_RTNL_ADDR_PTP_DEFAULT))) {
|
|
int err = 0;
|
|
rtnl_addr_set_ifindex (addr, iface_idx);
|
|
if ((err = rtnl_addr_add (nlh, addr, 0)) < 0)
|
|
nm_warning ("error %d returned from rtnl_addr_add():\n%s", err, nl_geterror());
|
|
rtnl_addr_put (addr);
|
|
} else
|
|
nm_warning ("couldn't create rtnl address!\n");
|
|
|
|
/* Set the MTU */
|
|
if ((request = rtnl_link_alloc ())) {
|
|
struct rtnl_link * old;
|
|
guint32 mtu;
|
|
|
|
old = nm_netlink_index_to_rtnl_link (iface_idx);
|
|
mtu = nm_ip4_config_get_mtu (config);
|
|
if (mtu == 0)
|
|
mtu = 1412; /* Default to 1412 (vpnc) */
|
|
rtnl_link_set_mtu (request, mtu);
|
|
rtnl_link_change (nlh, old, request, 0);
|
|
|
|
rtnl_link_put (old);
|
|
rtnl_link_put (request);
|
|
}
|
|
|
|
sleep (1);
|
|
|
|
nm_system_device_flush_routes_with_iface (iface);
|
|
|
|
if (g_slist_length (routes) == 0) {
|
|
nm_system_delete_default_route ();
|
|
nm_system_device_add_default_route_via_device_with_iface (iface);
|
|
} else {
|
|
GSList *iter;
|
|
|
|
for (iter = routes; iter; iter = iter->next) {
|
|
char *valid_ip4_route;
|
|
|
|
/* Make sure the route is valid, otherwise it's a security risk as the route
|
|
* text is simply taken from the user, and passed directly to system(). If
|
|
* we did not check the route, think of:
|
|
*
|
|
* system("/sbin/ip route add `rm -rf /` dev eth0")
|
|
*
|
|
* where `rm -rf /` was the route text. As UID 0 (root), we have to be careful.
|
|
*/
|
|
if ((valid_ip4_route = validate_ip4_route ((char *) iter->data))) {
|
|
nm_system_device_add_route_via_device_with_iface (iface, valid_ip4_route);
|
|
g_free (valid_ip4_route);
|
|
}
|
|
}
|
|
}
|
|
|
|
out:
|
|
named_mgr = nm_named_manager_get ();
|
|
nm_named_manager_add_ip4_config (named_mgr, config);
|
|
g_object_unref (named_mgr);
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
|
|
/*
|
|
* nm_system_vpn_device_unset_from_ip4_config
|
|
*
|
|
* Unset an IPv4 configuration of a VPN device from an NMIP4Config object.
|
|
*
|
|
*/
|
|
gboolean nm_system_vpn_device_unset_from_ip4_config (NMDevice *active_device, const char *iface, NMIP4Config *config)
|
|
{
|
|
NMNamedManager *named_mgr;
|
|
|
|
g_return_val_if_fail (active_device != NULL, FALSE);
|
|
g_return_val_if_fail (config != NULL, FALSE);
|
|
|
|
named_mgr = nm_named_manager_get ();
|
|
nm_named_manager_remove_ip4_config (named_mgr, config);
|
|
g_object_unref (named_mgr);
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
|
|
/*
|
|
* nm_system_device_set_up_down
|
|
*
|
|
* Mark the device as up or down.
|
|
*
|
|
*/
|
|
gboolean nm_system_device_set_up_down (NMDevice *dev, gboolean up)
|
|
{
|
|
g_return_val_if_fail (dev != NULL, FALSE);
|
|
|
|
return nm_system_device_set_up_down_with_iface (nm_device_get_iface (dev), up);
|
|
}
|
|
|
|
gboolean nm_system_device_set_up_down_with_iface (const char *iface, gboolean up)
|
|
{
|
|
gboolean success = FALSE;
|
|
guint32 idx;
|
|
struct rtnl_link * request = NULL;
|
|
struct rtnl_link * old = NULL;
|
|
|
|
g_return_val_if_fail (iface != NULL, FALSE);
|
|
|
|
if (!(request = rtnl_link_alloc ()))
|
|
goto out;
|
|
|
|
if (up)
|
|
rtnl_link_set_flags (request, IFF_UP);
|
|
else
|
|
rtnl_link_unset_flags (request, IFF_UP);
|
|
|
|
idx = nm_netlink_iface_to_index (iface);
|
|
old = nm_netlink_index_to_rtnl_link (idx);
|
|
if (old) {
|
|
struct nl_handle * nlh = nm_netlink_get_default_handle ();
|
|
rtnl_link_change (nlh, old, request, 0);
|
|
}
|
|
|
|
rtnl_link_put (old);
|
|
rtnl_link_put (request);
|
|
success = TRUE;
|
|
|
|
out:
|
|
return success;
|
|
}
|
|
|
|
|
|
/*
|
|
* nm_system_set_mtu
|
|
*
|
|
* Set the MTU for a given device.
|
|
*/
|
|
void nm_system_set_mtu (NMDevice *dev)
|
|
{
|
|
struct rtnl_link * request;
|
|
struct rtnl_link * old;
|
|
unsigned long mtu;
|
|
struct nl_handle * nlh;
|
|
guint32 idx;
|
|
|
|
mtu = nm_system_get_mtu (dev);
|
|
if (!mtu)
|
|
return;
|
|
|
|
request = rtnl_link_alloc ();
|
|
if (!request)
|
|
return;
|
|
|
|
idx = nm_netlink_iface_to_index (nm_device_get_iface (dev));
|
|
old = nm_netlink_index_to_rtnl_link (idx);
|
|
if (!old)
|
|
goto out_request;
|
|
|
|
nm_info ("Setting MTU of interface '%s' to %ld",
|
|
nm_device_get_iface (dev),
|
|
mtu);
|
|
rtnl_link_set_mtu (request, mtu);
|
|
nlh = nm_netlink_get_default_handle ();
|
|
rtnl_link_change (nlh, old, request, 0);
|
|
|
|
rtnl_link_put (old);
|
|
out_request:
|
|
rtnl_link_put (request);
|
|
}
|