1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
4 #include <netinet/in.h>
5 #include <sys/capability.h>
7 #include "alloc-util.h"
8 #include "bus-common-errors.h"
9 #include "bus-get-properties.h"
10 #include "bus-message-util.h"
11 #include "bus-polkit.h"
12 #include "dns-domain.h"
13 #include "networkd-link-bus.h"
14 #include "networkd-link.h"
15 #include "networkd-manager.h"
16 #include "parse-util.h"
17 #include "resolve-util.h"
18 #include "socket-netlink.h"
20 #include "user-util.h"
22 BUS_DEFINE_PROPERTY_GET_ENUM(property_get_operational_state
, link_operstate
, LinkOperationalState
);
23 BUS_DEFINE_PROPERTY_GET_ENUM(property_get_carrier_state
, link_carrier_state
, LinkCarrierState
);
24 BUS_DEFINE_PROPERTY_GET_ENUM(property_get_address_state
, link_address_state
, LinkAddressState
);
25 static BUS_DEFINE_PROPERTY_GET_ENUM(property_get_administrative_state
, link_state
, LinkState
);
27 static int property_get_bit_rates(
30 const char *interface
,
32 sd_bus_message
*reply
,
34 sd_bus_error
*error
) {
36 Link
*link
= userdata
;
45 manager
= link
->manager
;
47 if (!manager
->use_speed_meter
||
48 manager
->speed_meter_usec_old
== 0 ||
50 return sd_bus_message_append(reply
, "(tt)", UINT64_MAX
, UINT64_MAX
);
52 assert(manager
->speed_meter_usec_new
> manager
->speed_meter_usec_old
);
53 interval_sec
= (manager
->speed_meter_usec_new
- manager
->speed_meter_usec_old
) / USEC_PER_SEC
;
55 if (link
->stats_new
.tx_bytes
> link
->stats_old
.tx_bytes
)
56 tx
= (uint64_t) ((link
->stats_new
.tx_bytes
- link
->stats_old
.tx_bytes
) / interval_sec
);
58 tx
= (uint64_t) ((UINT64_MAX
- (link
->stats_old
.tx_bytes
- link
->stats_new
.tx_bytes
)) / interval_sec
);
60 if (link
->stats_new
.rx_bytes
> link
->stats_old
.rx_bytes
)
61 rx
= (uint64_t) ((link
->stats_new
.rx_bytes
- link
->stats_old
.rx_bytes
) / interval_sec
);
63 rx
= (uint64_t) ((UINT64_MAX
- (link
->stats_old
.rx_bytes
- link
->stats_new
.rx_bytes
)) / interval_sec
);
65 return sd_bus_message_append(reply
, "(tt)", tx
, rx
);
68 static int verify_managed_link(Link
*l
, sd_bus_error
*error
) {
71 if (l
->flags
& IFF_LOOPBACK
)
72 return sd_bus_error_setf(error
, BUS_ERROR_LINK_BUSY
, "Link %s is loopback device.", l
->ifname
);
77 int bus_link_method_set_ntp_servers(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
78 _cleanup_strv_free_
char **ntp
= NULL
;
86 r
= verify_managed_link(l
, error
);
90 r
= sd_bus_message_read_strv(message
, &ntp
);
94 STRV_FOREACH(i
, ntp
) {
95 r
= dns_name_is_valid_or_address(*i
);
99 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid NTP server: %s", *i
);
102 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
103 "org.freedesktop.network1.set-ntp-servers",
104 NULL
, true, UID_INVALID
,
105 &l
->manager
->polkit_registry
, error
);
109 return 1; /* Polkit will call us back */
111 strv_free_and_replace(l
->ntp
, ntp
);
114 r
= link_save_and_clean(l
);
118 return sd_bus_reply_method_return(message
, NULL
);
121 static int bus_link_method_set_dns_servers_internal(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
, bool extended
) {
122 struct in_addr_full
**dns
;
130 r
= verify_managed_link(l
, error
);
134 r
= bus_message_read_dns_servers(message
, error
, extended
, &dns
, &n
);
138 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
139 "org.freedesktop.network1.set-dns-servers",
140 NULL
, true, UID_INVALID
,
141 &l
->manager
->polkit_registry
, error
);
145 r
= 1; /* Polkit will call us back */
149 if (l
->n_dns
!= (unsigned) -1)
150 for (unsigned i
= 0; i
< l
->n_dns
; i
++)
151 in_addr_full_free(l
->dns
[i
]);
153 free_and_replace(l
->dns
, dns
);
157 r
= link_save_and_clean(l
);
161 return sd_bus_reply_method_return(message
, NULL
);
164 for (size_t i
= 0; i
< n
; i
++)
165 in_addr_full_free(dns
[i
]);
171 int bus_link_method_set_dns_servers(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
172 return bus_link_method_set_dns_servers_internal(message
, userdata
, error
, false);
175 int bus_link_method_set_dns_servers_ex(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
176 return bus_link_method_set_dns_servers_internal(message
, userdata
, error
, true);
179 int bus_link_method_set_domains(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
180 _cleanup_(ordered_set_freep
) OrderedSet
*search_domains
= NULL
, *route_domains
= NULL
;
187 r
= verify_managed_link(l
, error
);
191 r
= sd_bus_message_enter_container(message
, 'a', "(sb)");
196 _cleanup_free_
char *str
= NULL
;
197 OrderedSet
**domains
;
201 r
= sd_bus_message_read(message
, "(sb)", &name
, &route_only
);
207 r
= dns_name_is_valid(name
);
211 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid search domain %s", name
);
212 if (!route_only
&& dns_name_is_root(name
))
213 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Root domain is not suitable as search domain");
215 r
= dns_name_normalize(name
, 0, &str
);
217 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid search domain %s", name
);
219 domains
= route_only
? &route_domains
: &search_domains
;
220 r
= ordered_set_ensure_allocated(domains
, &string_hash_ops
);
224 r
= ordered_set_put(*domains
, str
);
231 r
= sd_bus_message_exit_container(message
);
235 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
236 "org.freedesktop.network1.set-domains",
237 NULL
, true, UID_INVALID
,
238 &l
->manager
->polkit_registry
, error
);
242 return 1; /* Polkit will call us back */
244 ordered_set_free_free(l
->search_domains
);
245 ordered_set_free_free(l
->route_domains
);
246 l
->search_domains
= TAKE_PTR(search_domains
);
247 l
->route_domains
= TAKE_PTR(route_domains
);
250 r
= link_save_and_clean(l
);
254 return sd_bus_reply_method_return(message
, NULL
);
257 int bus_link_method_set_default_route(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
264 r
= verify_managed_link(l
, error
);
268 r
= sd_bus_message_read(message
, "b", &b
);
272 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
273 "org.freedesktop.network1.set-default-route",
274 NULL
, true, UID_INVALID
,
275 &l
->manager
->polkit_registry
, error
);
279 return 1; /* Polkit will call us back */
281 if (l
->dns_default_route
!= b
) {
282 l
->dns_default_route
= b
;
285 r
= link_save_and_clean(l
);
290 return sd_bus_reply_method_return(message
, NULL
);
293 int bus_link_method_set_llmnr(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
302 r
= verify_managed_link(l
, error
);
306 r
= sd_bus_message_read(message
, "s", &llmnr
);
311 mode
= RESOLVE_SUPPORT_YES
;
313 mode
= resolve_support_from_string(llmnr
);
315 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid LLMNR setting: %s", llmnr
);
318 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
319 "org.freedesktop.network1.set-llmnr",
320 NULL
, true, UID_INVALID
,
321 &l
->manager
->polkit_registry
, error
);
325 return 1; /* Polkit will call us back */
327 if (l
->llmnr
!= mode
) {
331 r
= link_save_and_clean(l
);
336 return sd_bus_reply_method_return(message
, NULL
);
339 int bus_link_method_set_mdns(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
348 r
= verify_managed_link(l
, error
);
352 r
= sd_bus_message_read(message
, "s", &mdns
);
357 mode
= RESOLVE_SUPPORT_NO
;
359 mode
= resolve_support_from_string(mdns
);
361 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid MulticastDNS setting: %s", mdns
);
364 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
365 "org.freedesktop.network1.set-mdns",
366 NULL
, true, UID_INVALID
,
367 &l
->manager
->polkit_registry
, error
);
371 return 1; /* Polkit will call us back */
373 if (l
->mdns
!= mode
) {
377 r
= link_save_and_clean(l
);
382 return sd_bus_reply_method_return(message
, NULL
);
385 int bus_link_method_set_dns_over_tls(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
387 const char *dns_over_tls
;
394 r
= verify_managed_link(l
, error
);
398 r
= sd_bus_message_read(message
, "s", &dns_over_tls
);
402 if (isempty(dns_over_tls
))
403 mode
= _DNS_OVER_TLS_MODE_INVALID
;
405 mode
= dns_over_tls_mode_from_string(dns_over_tls
);
407 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid DNSOverTLS setting: %s", dns_over_tls
);
410 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
411 "org.freedesktop.network1.set-dns-over-tls",
412 NULL
, true, UID_INVALID
,
413 &l
->manager
->polkit_registry
, error
);
417 return 1; /* Polkit will call us back */
419 if (l
->dns_over_tls_mode
!= mode
) {
420 l
->dns_over_tls_mode
= mode
;
423 r
= link_save_and_clean(l
);
428 return sd_bus_reply_method_return(message
, NULL
);
431 int bus_link_method_set_dnssec(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
440 r
= verify_managed_link(l
, error
);
444 r
= sd_bus_message_read(message
, "s", &dnssec
);
449 mode
= _DNSSEC_MODE_INVALID
;
451 mode
= dnssec_mode_from_string(dnssec
);
453 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid DNSSEC setting: %s", dnssec
);
456 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
457 "org.freedesktop.network1.set-dnssec",
458 NULL
, true, UID_INVALID
,
459 &l
->manager
->polkit_registry
, error
);
463 return 1; /* Polkit will call us back */
465 if (l
->dnssec_mode
!= mode
) {
466 l
->dnssec_mode
= mode
;
469 r
= link_save_and_clean(l
);
474 return sd_bus_reply_method_return(message
, NULL
);
477 int bus_link_method_set_dnssec_negative_trust_anchors(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
478 _cleanup_set_free_free_ Set
*ns
= NULL
;
479 _cleanup_strv_free_
char **ntas
= NULL
;
487 r
= verify_managed_link(l
, error
);
491 r
= sd_bus_message_read_strv(message
, &ntas
);
495 STRV_FOREACH(i
, ntas
) {
496 r
= dns_name_is_valid(*i
);
500 return sd_bus_error_setf(error
, SD_BUS_ERROR_INVALID_ARGS
, "Invalid negative trust anchor domain: %s", *i
);
503 ns
= set_new(&dns_name_hash_ops
);
507 STRV_FOREACH(i
, ntas
) {
508 r
= set_put_strdup(&ns
, *i
);
513 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
514 "org.freedesktop.network1.set-dnssec-negative-trust-anchors",
515 NULL
, true, UID_INVALID
,
516 &l
->manager
->polkit_registry
, error
);
520 return 1; /* Polkit will call us back */
522 set_free_free(l
->dnssec_negative_trust_anchors
);
523 l
->dnssec_negative_trust_anchors
= TAKE_PTR(ns
);
526 r
= link_save_and_clean(l
);
530 return sd_bus_reply_method_return(message
, NULL
);
533 int bus_link_method_revert_ntp(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
540 r
= verify_managed_link(l
, error
);
544 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
545 "org.freedesktop.network1.revert-ntp",
546 NULL
, true, UID_INVALID
,
547 &l
->manager
->polkit_registry
, error
);
551 return 1; /* Polkit will call us back */
553 link_ntp_settings_clear(l
);
556 r
= link_save_and_clean(l
);
560 return sd_bus_reply_method_return(message
, NULL
);
563 int bus_link_method_revert_dns(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
570 r
= verify_managed_link(l
, error
);
574 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
575 "org.freedesktop.network1.revert-dns",
576 NULL
, true, UID_INVALID
,
577 &l
->manager
->polkit_registry
, error
);
581 return 1; /* Polkit will call us back */
583 link_dns_settings_clear(l
);
586 r
= link_save_and_clean(l
);
590 return sd_bus_reply_method_return(message
, NULL
);
593 int bus_link_method_force_renew(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
600 return sd_bus_error_setf(error
, BUS_ERROR_UNMANAGED_INTERFACE
,
601 "Interface %s is not managed by systemd-networkd",
604 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
605 "org.freedesktop.network1.forcerenew",
606 NULL
, true, UID_INVALID
,
607 &l
->manager
->polkit_registry
, error
);
611 return 1; /* Polkit will call us back */
613 if (l
->dhcp_server
) {
614 r
= sd_dhcp_server_forcerenew(l
->dhcp_server
);
619 return sd_bus_reply_method_return(message
, NULL
);
622 int bus_link_method_renew(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
629 return sd_bus_error_setf(error
, BUS_ERROR_UNMANAGED_INTERFACE
,
630 "Interface %s is not managed by systemd-networkd",
633 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
634 "org.freedesktop.network1.renew",
635 NULL
, true, UID_INVALID
,
636 &l
->manager
->polkit_registry
, error
);
640 return 1; /* Polkit will call us back */
642 if (l
->dhcp_client
) {
643 r
= sd_dhcp_client_send_renew(l
->dhcp_client
);
648 return sd_bus_reply_method_return(message
, NULL
);
651 int bus_link_method_reconfigure(sd_bus_message
*message
, void *userdata
, sd_bus_error
*error
) {
658 r
= bus_verify_polkit_async(message
, CAP_NET_ADMIN
,
659 "org.freedesktop.network1.reconfigure",
660 NULL
, true, UID_INVALID
,
661 &l
->manager
->polkit_registry
, error
);
665 return 1; /* Polkit will call us back */
667 r
= link_reconfigure(l
, true);
671 link_set_state(l
, LINK_STATE_INITIALIZED
);
672 r
= link_save_and_clean(l
);
676 return sd_bus_reply_method_return(message
, NULL
);
679 const sd_bus_vtable link_vtable
[] = {
680 SD_BUS_VTABLE_START(0),
682 SD_BUS_PROPERTY("OperationalState", "s", property_get_operational_state
, offsetof(Link
, operstate
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
683 SD_BUS_PROPERTY("CarrierState", "s", property_get_carrier_state
, offsetof(Link
, carrier_state
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
684 SD_BUS_PROPERTY("AddressState", "s", property_get_address_state
, offsetof(Link
, address_state
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
685 SD_BUS_PROPERTY("AdministrativeState", "s", property_get_administrative_state
, offsetof(Link
, state
), SD_BUS_VTABLE_PROPERTY_EMITS_CHANGE
),
686 SD_BUS_PROPERTY("BitRates", "(tt)", property_get_bit_rates
, 0, 0),
688 SD_BUS_METHOD("SetNTP", "as", NULL
, bus_link_method_set_ntp_servers
, SD_BUS_VTABLE_UNPRIVILEGED
),
689 SD_BUS_METHOD("SetDNS", "a(iay)", NULL
, bus_link_method_set_dns_servers
, SD_BUS_VTABLE_UNPRIVILEGED
),
690 SD_BUS_METHOD("SetDNSEx", "a(iayqs)", NULL
, bus_link_method_set_dns_servers_ex
, SD_BUS_VTABLE_UNPRIVILEGED
),
691 SD_BUS_METHOD("SetDomains", "a(sb)", NULL
, bus_link_method_set_domains
, SD_BUS_VTABLE_UNPRIVILEGED
),
692 SD_BUS_METHOD("SetDefaultRoute", "b", NULL
, bus_link_method_set_default_route
, SD_BUS_VTABLE_UNPRIVILEGED
),
693 SD_BUS_METHOD("SetLLMNR", "s", NULL
, bus_link_method_set_llmnr
, SD_BUS_VTABLE_UNPRIVILEGED
),
694 SD_BUS_METHOD("SetMulticastDNS", "s", NULL
, bus_link_method_set_mdns
, SD_BUS_VTABLE_UNPRIVILEGED
),
695 SD_BUS_METHOD("SetDNSOverTLS", "s", NULL
, bus_link_method_set_dns_over_tls
, SD_BUS_VTABLE_UNPRIVILEGED
),
696 SD_BUS_METHOD("SetDNSSEC", "s", NULL
, bus_link_method_set_dnssec
, SD_BUS_VTABLE_UNPRIVILEGED
),
697 SD_BUS_METHOD("SetDNSSECNegativeTrustAnchors", "as", NULL
, bus_link_method_set_dnssec_negative_trust_anchors
, SD_BUS_VTABLE_UNPRIVILEGED
),
698 SD_BUS_METHOD("RevertNTP", NULL
, NULL
, bus_link_method_revert_ntp
, SD_BUS_VTABLE_UNPRIVILEGED
),
699 SD_BUS_METHOD("RevertDNS", NULL
, NULL
, bus_link_method_revert_dns
, SD_BUS_VTABLE_UNPRIVILEGED
),
700 SD_BUS_METHOD("Renew", NULL
, NULL
, bus_link_method_renew
, SD_BUS_VTABLE_UNPRIVILEGED
),
701 SD_BUS_METHOD("ForceRenew", NULL
, NULL
, bus_link_method_force_renew
, SD_BUS_VTABLE_UNPRIVILEGED
),
702 SD_BUS_METHOD("Reconfigure", NULL
, NULL
, bus_link_method_reconfigure
, SD_BUS_VTABLE_UNPRIVILEGED
),
707 char *link_bus_path(Link
*link
) {
708 _cleanup_free_
char *ifindex
= NULL
;
713 assert(link
->ifindex
> 0);
715 if (asprintf(&ifindex
, "%d", link
->ifindex
) < 0)
718 r
= sd_bus_path_encode("/org/freedesktop/network1/link", ifindex
, &p
);
725 int link_node_enumerator(sd_bus
*bus
, const char *path
, void *userdata
, char ***nodes
, sd_bus_error
*error
) {
726 _cleanup_strv_free_
char **l
= NULL
;
727 Manager
*m
= userdata
;
736 l
= new0(char*, hashmap_size(m
->links
) + 1);
740 HASHMAP_FOREACH(link
, m
->links
) {
743 p
= link_bus_path(link
);
751 *nodes
= TAKE_PTR(l
);
756 int link_object_find(sd_bus
*bus
, const char *path
, const char *interface
, void *userdata
, void **found
, sd_bus_error
*error
) {
757 _cleanup_free_
char *identifier
= NULL
;
758 Manager
*m
= userdata
;
768 r
= sd_bus_path_decode(path
, "/org/freedesktop/network1/link", &identifier
);
772 ifindex
= parse_ifindex(identifier
);
776 r
= link_get(m
, ifindex
, &link
);
780 if (streq(interface
, "org.freedesktop.network1.DHCPServer") && !link
->dhcp_server
)
788 int link_send_changed_strv(Link
*link
, char **properties
) {
789 _cleanup_free_
char *p
= NULL
;
792 assert(link
->manager
);
795 if (!link
->manager
->bus
)
798 p
= link_bus_path(link
);
802 return sd_bus_emit_properties_changed_strv(
805 "org.freedesktop.network1.Link",
809 int link_send_changed(Link
*link
, const char *property
, ...) {
812 properties
= strv_from_stdarg_alloca(property
);
814 return link_send_changed_strv(link
, properties
);