]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/network/networkd-link.c
projects / thirdparty / systemd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #11960 from mrc0mmand/more-fuzzers
[thirdparty/systemd.git] / src / network / networkd-link.c
1 /* SPDX-License-Identifier: LGPL-2.1+ */
2
3 #include <netinet/ether.h>
4 #include <linux/if.h>
5 #include <linux/can/netlink.h>
6 #include <unistd.h>
7 #include <stdio_ext.h>
8
9 #include "alloc-util.h"
10 #include "bus-util.h"
11 #include "dhcp-identifier.h"
12 #include "dhcp-lease-internal.h"
13 #include "env-file.h"
14 #include "fd-util.h"
15 #include "fileio.h"
16 #include "missing_network.h"
17 #include "netdev/vrf.h"
18 #include "netlink-util.h"
19 #include "network-internal.h"
20 #include "networkd-ipv6-proxy-ndp.h"
21 #include "networkd-lldp-tx.h"
22 #include "networkd-manager.h"
23 #include "networkd-ndisc.h"
24 #include "networkd-neighbor.h"
25 #include "networkd-radv.h"
26 #include "networkd-routing-policy-rule.h"
27 #include "set.h"
28 #include "socket-util.h"
29 #include "stdio-util.h"
30 #include "string-table.h"
31 #include "strv.h"
32 #include "sysctl-util.h"
33 #include "tmpfile-util.h"
34 #include "udev-util.h"
35 #include "util.h"
36 #include "virt.h"
37
38 uint32_t link_get_vrf_table(Link *link) {
39 return link->network->vrf ? VRF(link->network->vrf)->table : RT_TABLE_MAIN;
40 }
41
42 uint32_t link_get_dhcp_route_table(Link *link) {
43 /* When the interface is part of an VRF use the VRFs routing table, unless
44 * another table is explicitly specified. */
45 if (link->network->dhcp_route_table_set)
46 return link->network->dhcp_route_table;
47 return link_get_vrf_table(link);
48 }
49
50 uint32_t link_get_ipv6_accept_ra_route_table(Link *link) {
51 if (link->network->ipv6_accept_ra_route_table_set)
52 return link->network->ipv6_accept_ra_route_table;
53 return link_get_vrf_table(link);
54 }
55
56 DUID* link_get_duid(Link *link) {
57 if (link->network->duid.type != _DUID_TYPE_INVALID)
58 return &link->network->duid;
59 else
60 return &link->manager->duid;
61 }
62
63 static bool link_dhcp6_enabled(Link *link) {
64 assert(link);
65
66 if (!socket_ipv6_is_supported())
67 return false;
68
69 if (link->flags & IFF_LOOPBACK)
70 return false;
71
72 if (!link->network)
73 return false;
74
75 if (link->network->bond)
76 return false;
77
78 if (manager_sysctl_ipv6_enabled(link->manager) == 0)
79 return false;
80
81 return link->network->dhcp & ADDRESS_FAMILY_IPV6;
82 }
83
84 static bool link_dhcp4_enabled(Link *link) {
85 assert(link);
86
87 if (link->flags & IFF_LOOPBACK)
88 return false;
89
90 if (!link->network)
91 return false;
92
93 if (link->network->bond)
94 return false;
95
96 return link->network->dhcp & ADDRESS_FAMILY_IPV4;
97 }
98
99 static bool link_dhcp4_server_enabled(Link *link) {
100 assert(link);
101
102 if (link->flags & IFF_LOOPBACK)
103 return false;
104
105 if (!link->network)
106 return false;
107
108 if (link->network->bond)
109 return false;
110
111 return link->network->dhcp_server;
112 }
113
114 static bool link_ipv4ll_enabled(Link *link) {
115 assert(link);
116
117 if (link->flags & IFF_LOOPBACK)
118 return false;
119
120 if (!link->network)
121 return false;
122
123 if (STRPTR_IN_SET(link->kind, "vrf", "wireguard"))
124 return false;
125
126 if (link->network->bond)
127 return false;
128
129 return link->network->link_local & ADDRESS_FAMILY_IPV4;
130 }
131
132 static bool link_ipv6ll_enabled(Link *link) {
133 assert(link);
134
135 if (!socket_ipv6_is_supported())
136 return false;
137
138 if (link->flags & IFF_LOOPBACK)
139 return false;
140
141 if (!link->network)
142 return false;
143
144 if (STRPTR_IN_SET(link->kind, "vrf", "wireguard"))
145 return false;
146
147 if (link->network->bond)
148 return false;
149
150 if (manager_sysctl_ipv6_enabled(link->manager) == 0)
151 return false;
152
153 return link->network->link_local & ADDRESS_FAMILY_IPV6;
154 }
155
156 static bool link_ipv6_enabled(Link *link) {
157 assert(link);
158
159 if (!socket_ipv6_is_supported())
160 return false;
161
162 if (link->network->bond)
163 return false;
164
165 if (manager_sysctl_ipv6_enabled(link->manager) == 0)
166 return false;
167
168 /* DHCPv6 client will not be started if no IPv6 link-local address is configured. */
169 return link_ipv6ll_enabled(link) || network_has_static_ipv6_addresses(link->network);
170 }
171
172 static bool link_radv_enabled(Link *link) {
173 assert(link);
174
175 if (!link_ipv6ll_enabled(link))
176 return false;
177
178 return link->network->router_prefix_delegation != RADV_PREFIX_DELEGATION_NONE;
179 }
180
181 static bool link_lldp_rx_enabled(Link *link) {
182 assert(link);
183
184 if (link->flags & IFF_LOOPBACK)
185 return false;
186
187 if (link->iftype != ARPHRD_ETHER)
188 return false;
189
190 if (!link->network)
191 return false;
192
193 /* LLDP should be handled on bridge slaves as those have a direct
194 * connection to their peers not on the bridge master. Linux doesn't
195 * even (by default) forward lldp packets to the bridge master.*/
196 if (streq_ptr("bridge", link->kind))
197 return false;
198
199 return link->network->lldp_mode != LLDP_MODE_NO;
200 }
201
202 static bool link_lldp_emit_enabled(Link *link) {
203 assert(link);
204
205 if (link->flags & IFF_LOOPBACK)
206 return false;
207
208 if (link->iftype != ARPHRD_ETHER)
209 return false;
210
211 if (!link->network)
212 return false;
213
214 return link->network->lldp_emit != LLDP_EMIT_NO;
215 }
216
217 static bool link_ipv4_forward_enabled(Link *link) {
218 assert(link);
219
220 if (link->flags & IFF_LOOPBACK)
221 return false;
222
223 if (!link->network)
224 return false;
225
226 if (link->network->ip_forward == _ADDRESS_FAMILY_BOOLEAN_INVALID)
227 return false;
228
229 return link->network->ip_forward & ADDRESS_FAMILY_IPV4;
230 }
231
232 static bool link_ipv6_forward_enabled(Link *link) {
233 assert(link);
234
235 if (!socket_ipv6_is_supported())
236 return false;
237
238 if (link->flags & IFF_LOOPBACK)
239 return false;
240
241 if (!link->network)
242 return false;
243
244 if (link->network->ip_forward == _ADDRESS_FAMILY_BOOLEAN_INVALID)
245 return false;
246
247 if (manager_sysctl_ipv6_enabled(link->manager) == 0)
248 return false;
249
250 return link->network->ip_forward & ADDRESS_FAMILY_IPV6;
251 }
252
253 static bool link_proxy_arp_enabled(Link *link) {
254 assert(link);
255
256 if (link->flags & IFF_LOOPBACK)
257 return false;
258
259 if (!link->network)
260 return false;
261
262 if (link->network->proxy_arp < 0)
263 return false;
264
265 return true;
266 }
267
268 static bool link_ipv6_accept_ra_enabled(Link *link) {
269 assert(link);
270
271 if (!socket_ipv6_is_supported())
272 return false;
273
274 if (link->flags & IFF_LOOPBACK)
275 return false;
276
277 if (!link->network)
278 return false;
279
280 if (!link_ipv6ll_enabled(link))
281 return false;
282
283 /* If unset use system default (enabled if local forwarding is disabled.
284 * disabled if local forwarding is enabled).
285 * If set, ignore or enforce RA independent of local forwarding state.
286 */
287 if (link->network->ipv6_accept_ra < 0)
288 /* default to accept RA if ip_forward is disabled and ignore RA if ip_forward is enabled */
289 return !link_ipv6_forward_enabled(link);
290 else if (link->network->ipv6_accept_ra > 0)
291 /* accept RA even if ip_forward is enabled */
292 return true;
293 else
294 /* ignore RA */
295 return false;
296 }
297
298 static IPv6PrivacyExtensions link_ipv6_privacy_extensions(Link *link) {
299 assert(link);
300
301 if (!socket_ipv6_is_supported())
302 return _IPV6_PRIVACY_EXTENSIONS_INVALID;
303
304 if (link->flags & IFF_LOOPBACK)
305 return _IPV6_PRIVACY_EXTENSIONS_INVALID;
306
307 if (!link->network)
308 return _IPV6_PRIVACY_EXTENSIONS_INVALID;
309
310 return link->network->ipv6_privacy_extensions;
311 }
312
313 static int link_enable_ipv6(Link *link) {
314 bool disabled;
315 int r;
316
317 if (link->flags & IFF_LOOPBACK)
318 return 0;
319
320 disabled = !link_ipv6_enabled(link);
321
322 r = sysctl_write_ip_property_boolean(AF_INET6, link->ifname, "disable_ipv6", disabled);
323 if (r < 0)
324 log_link_warning_errno(link, r, "Cannot %s IPv6 for interface %s: %m",
325 enable_disable(!disabled), link->ifname);
326 else
327 log_link_info(link, "IPv6 successfully %sd", enable_disable(!disabled));
328
329 return 0;
330 }
331
332 static bool link_is_enslaved(Link *link) {
333 if (link->flags & IFF_SLAVE)
334 /* Even if the link is not managed by networkd, honor IFF_SLAVE flag. */
335 return true;
336
337 if (!link->enslaved_raw)
338 return false;
339
340 if (!link->network)
341 return false;
342
343 if (link->network->bridge)
344 /* TODO: support the case when link is not managed by networkd. */
345 return true;
346
347 return false;
348 }
349
350 static void link_update_master_operstate(Link *link, NetDev *netdev) {
351 Link *master;
352
353 if (!netdev)
354 return;
355
356 if (link_get(link->manager, netdev->ifindex, &master) < 0)
357 return;
358
359 link_update_operstate(master, true);
360 }
361
362 void link_update_operstate(Link *link, bool also_update_master) {
363 LinkOperationalState operstate;
364 Iterator i;
365
366 assert(link);
367
368 if (link->kernel_operstate == IF_OPER_DORMANT)
369 operstate = LINK_OPERSTATE_DORMANT;
370 else if (link_has_carrier(link)) {
371 Address *address;
372 uint8_t scope = RT_SCOPE_NOWHERE;
373
374 /* if we have carrier, check what addresses we have */
375 SET_FOREACH(address, link->addresses, i) {
376 if (!address_is_ready(address))
377 continue;
378
379 if (address->scope < scope)
380 scope = address->scope;
381 }
382
383 /* for operstate we also take foreign addresses into account */
384 SET_FOREACH(address, link->addresses_foreign, i) {
385 if (!address_is_ready(address))
386 continue;
387
388 if (address->scope < scope)
389 scope = address->scope;
390 }
391
392 if (scope < RT_SCOPE_SITE)
393 /* universally accessible addresses found */
394 operstate = LINK_OPERSTATE_ROUTABLE;
395 else if (scope < RT_SCOPE_HOST)
396 /* only link or site local addresses found */
397 operstate = LINK_OPERSTATE_DEGRADED;
398 else
399 /* no useful addresses found */
400 operstate = LINK_OPERSTATE_CARRIER;
401 } else if (link->flags & IFF_UP)
402 operstate = LINK_OPERSTATE_NO_CARRIER;
403 else
404 operstate = LINK_OPERSTATE_OFF;
405
406 if (IN_SET(operstate, LINK_OPERSTATE_DEGRADED, LINK_OPERSTATE_CARRIER) &&
407 link_is_enslaved(link))
408 operstate = LINK_OPERSTATE_ENSLAVED;
409
410 if (IN_SET(operstate, LINK_OPERSTATE_CARRIER, LINK_OPERSTATE_ENSLAVED, LINK_OPERSTATE_ROUTABLE)) {
411 Link *slave;
412
413 HASHMAP_FOREACH(slave, link->slaves, i) {
414 link_update_operstate(slave, false);
415
416 if (IN_SET(slave->operstate,
417 LINK_OPERSTATE_OFF, LINK_OPERSTATE_NO_CARRIER, LINK_OPERSTATE_DORMANT))
418 operstate = LINK_OPERSTATE_DEGRADED;
419 }
420 }
421
422 if (link->operstate != operstate) {
423 link->operstate = operstate;
424 link_send_changed(link, "OperationalState", NULL);
425 link_dirty(link);
426 }
427
428 if (also_update_master && link->network) {
429 link_update_master_operstate(link, link->network->bond);
430 link_update_master_operstate(link, link->network->bridge);
431 }
432 }
433
434 #define FLAG_STRING(string, flag, old, new) \
435 (((old ^ new) & flag) \
436 ? ((old & flag) ? (" -" string) : (" +" string)) \
437 : "")
438
439 static int link_update_flags(Link *link, sd_netlink_message *m) {
440 unsigned flags, unknown_flags_added, unknown_flags_removed, unknown_flags;
441 uint8_t operstate;
442 int r;
443
444 assert(link);
445
446 r = sd_rtnl_message_link_get_flags(m, &flags);
447 if (r < 0)
448 return log_link_warning_errno(link, r, "Could not get link flags: %m");
449
450 r = sd_netlink_message_read_u8(m, IFLA_OPERSTATE, &operstate);
451 if (r < 0)
452 /* if we got a message without operstate, take it to mean
453 the state was unchanged */
454 operstate = link->kernel_operstate;
455
456 if ((link->flags == flags) && (link->kernel_operstate == operstate))
457 return 0;
458
459 if (link->flags != flags) {
460 log_link_debug(link, "Flags change:%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s",
461 FLAG_STRING("LOOPBACK", IFF_LOOPBACK, link->flags, flags),
462 FLAG_STRING("MASTER", IFF_MASTER, link->flags, flags),
463 FLAG_STRING("SLAVE", IFF_SLAVE, link->flags, flags),
464 FLAG_STRING("UP", IFF_UP, link->flags, flags),
465 FLAG_STRING("DORMANT", IFF_DORMANT, link->flags, flags),
466 FLAG_STRING("LOWER_UP", IFF_LOWER_UP, link->flags, flags),
467 FLAG_STRING("RUNNING", IFF_RUNNING, link->flags, flags),
468 FLAG_STRING("MULTICAST", IFF_MULTICAST, link->flags, flags),
469 FLAG_STRING("BROADCAST", IFF_BROADCAST, link->flags, flags),
470 FLAG_STRING("POINTOPOINT", IFF_POINTOPOINT, link->flags, flags),
471 FLAG_STRING("PROMISC", IFF_PROMISC, link->flags, flags),
472 FLAG_STRING("ALLMULTI", IFF_ALLMULTI, link->flags, flags),
473 FLAG_STRING("PORTSEL", IFF_PORTSEL, link->flags, flags),
474 FLAG_STRING("AUTOMEDIA", IFF_AUTOMEDIA, link->flags, flags),
475 FLAG_STRING("DYNAMIC", IFF_DYNAMIC, link->flags, flags),
476 FLAG_STRING("NOARP", IFF_NOARP, link->flags, flags),
477 FLAG_STRING("NOTRAILERS", IFF_NOTRAILERS, link->flags, flags),
478 FLAG_STRING("DEBUG", IFF_DEBUG, link->flags, flags),
479 FLAG_STRING("ECHO", IFF_ECHO, link->flags, flags));
480
481 unknown_flags = ~(IFF_LOOPBACK | IFF_MASTER | IFF_SLAVE | IFF_UP |
482 IFF_DORMANT | IFF_LOWER_UP | IFF_RUNNING |
483 IFF_MULTICAST | IFF_BROADCAST | IFF_POINTOPOINT |
484 IFF_PROMISC | IFF_ALLMULTI | IFF_PORTSEL |
485 IFF_AUTOMEDIA | IFF_DYNAMIC | IFF_NOARP |
486 IFF_NOTRAILERS | IFF_DEBUG | IFF_ECHO);
487 unknown_flags_added = ((link->flags ^ flags) & flags & unknown_flags);
488 unknown_flags_removed = ((link->flags ^ flags) & link->flags & unknown_flags);
489
490 /* link flags are currently at most 18 bits, let's align to
491 * printing 20 */
492 if (unknown_flags_added)
493 log_link_debug(link,
494 "Unknown link flags gained: %#.5x (ignoring)",
495 unknown_flags_added);
496
497 if (unknown_flags_removed)
498 log_link_debug(link,
499 "Unknown link flags lost: %#.5x (ignoring)",
500 unknown_flags_removed);
501 }
502
503 link->flags = flags;
504 link->kernel_operstate = operstate;
505
506 link_update_operstate(link, true);
507
508 return 0;
509 }
510
511 DEFINE_TRIVIAL_CLEANUP_FUNC(Link*, link_unref);
512
513 static int link_new(Manager *manager, sd_netlink_message *message, Link **ret) {
514 _cleanup_(link_unrefp) Link *link = NULL;
515 uint16_t type;
516 const char *ifname, *kind = NULL;
517 int r, ifindex;
518 unsigned short iftype;
519
520 assert(manager);
521 assert(message);
522 assert(ret);
523
524 /* check for link kind */
525 r = sd_netlink_message_enter_container(message, IFLA_LINKINFO);
526 if (r == 0) {
527 (void) sd_netlink_message_read_string(message, IFLA_INFO_KIND, &kind);
528 r = sd_netlink_message_exit_container(message);
529 if (r < 0)
530 return r;
531 }
532
533 r = sd_netlink_message_get_type(message, &type);
534 if (r < 0)
535 return r;
536 else if (type != RTM_NEWLINK)
537 return -EINVAL;
538
539 r = sd_rtnl_message_link_get_ifindex(message, &ifindex);
540 if (r < 0)
541 return r;
542 else if (ifindex <= 0)
543 return -EINVAL;
544
545 r = sd_rtnl_message_link_get_type(message, &iftype);
546 if (r < 0)
547 return r;
548
549 r = sd_netlink_message_read_string(message, IFLA_IFNAME, &ifname);
550 if (r < 0)
551 return r;
552
553 link = new(Link, 1);
554 if (!link)
555 return -ENOMEM;
556
557 *link = (Link) {
558 .n_ref = 1,
559 .manager = manager,
560 .state = LINK_STATE_PENDING,
561 .rtnl_extended_attrs = true,
562 .ifindex = ifindex,
563 .iftype = iftype,
564 };
565
566 link->ifname = strdup(ifname);
567 if (!link->ifname)
568 return -ENOMEM;
569
570 if (kind) {
571 link->kind = strdup(kind);
572 if (!link->kind)
573 return -ENOMEM;
574 }
575
576 r = sd_netlink_message_read_u32(message, IFLA_MASTER, (uint32_t *)&link->master_ifindex);
577 if (r < 0)
578 log_link_debug_errno(link, r, "New device has no master, continuing without");
579
580 r = sd_netlink_message_read_ether_addr(message, IFLA_ADDRESS, &link->mac);
581 if (r < 0)
582 log_link_debug_errno(link, r, "MAC address not found for new device, continuing without");
583
584 if (asprintf(&link->state_file, "/run/systemd/netif/links/%d", link->ifindex) < 0)
585 return -ENOMEM;
586
587 if (asprintf(&link->lease_file, "/run/systemd/netif/leases/%d", link->ifindex) < 0)
588 return -ENOMEM;
589
590 if (asprintf(&link->lldp_file, "/run/systemd/netif/lldp/%d", link->ifindex) < 0)
591 return -ENOMEM;
592
593 r = hashmap_ensure_allocated(&manager->links, NULL);
594 if (r < 0)
595 return r;
596
597 r = hashmap_put(manager->links, INT_TO_PTR(link->ifindex), link);
598 if (r < 0)
599 return r;
600
601 r = link_update_flags(link, message);
602 if (r < 0)
603 return r;
604
605 *ret = TAKE_PTR(link);
606
607 return 0;
608 }
609
610 static void link_detach_from_manager(Link *link) {
611 if (!link || !link->manager)
612 return;
613
614 hashmap_remove(link->manager->links, INT_TO_PTR(link->ifindex));
615 set_remove(link->manager->links_requesting_uuid, link);
616 link_clean(link);
617 }
618
619 static Link *link_free(Link *link) {
620 Link *carrier, *master;
621 Address *address;
622 Route *route;
623 Iterator i;
624
625 assert(link);
626
627 while ((route = set_first(link->routes)))
628 route_free(route);
629
630 while ((route = set_first(link->routes_foreign)))
631 route_free(route);
632
633 link->routes = set_free(link->routes);
634 link->routes_foreign = set_free(link->routes_foreign);
635
636 while ((address = set_first(link->addresses)))
637 address_free(address);
638
639 while ((address = set_first(link->addresses_foreign)))
640 address_free(address);
641
642 link->addresses = set_free(link->addresses);
643 link->addresses_foreign = set_free(link->addresses_foreign);
644
645 while ((address = link->pool_addresses)) {
646 LIST_REMOVE(addresses, link->pool_addresses, address);
647 address_free(address);
648 }
649
650 sd_dhcp_server_unref(link->dhcp_server);
651 sd_dhcp_client_unref(link->dhcp_client);
652 sd_dhcp_lease_unref(link->dhcp_lease);
653
654 link_lldp_emit_stop(link);
655
656 free(link->lease_file);
657
658 sd_lldp_unref(link->lldp);
659 free(link->lldp_file);
660
661 ndisc_flush(link);
662
663 sd_ipv4ll_unref(link->ipv4ll);
664 sd_dhcp6_client_unref(link->dhcp6_client);
665 sd_ndisc_unref(link->ndisc);
666 sd_radv_unref(link->radv);
667
668 link_detach_from_manager(link);
669
670 free(link->ifname);
671
672 free(link->kind);
673
674 (void) unlink(link->state_file);
675 free(link->state_file);
676
677 sd_device_unref(link->sd_device);
678
679 HASHMAP_FOREACH (carrier, link->bound_to_links, i)
680 hashmap_remove(link->bound_to_links, INT_TO_PTR(carrier->ifindex));
681 hashmap_free(link->bound_to_links);
682
683 HASHMAP_FOREACH (carrier, link->bound_by_links, i)
684 hashmap_remove(link->bound_by_links, INT_TO_PTR(carrier->ifindex));
685 hashmap_free(link->bound_by_links);
686
687 hashmap_free(link->slaves);
688
689 if (link->network) {
690 if (link->network->bond &&
691 link_get(link->manager, link->network->bond->ifindex, &master) >= 0)
692 (void) hashmap_remove(master->slaves, INT_TO_PTR(link->ifindex));
693
694 if (link->network->bridge &&
695 link_get(link->manager, link->network->bridge->ifindex, &master) >= 0)
696 (void) hashmap_remove(master->slaves, INT_TO_PTR(link->ifindex));
697 }
698
699 return mfree(link);
700 }
701
702 DEFINE_TRIVIAL_REF_UNREF_FUNC(Link, link, link_free);
703
704 int link_get(Manager *m, int ifindex, Link **ret) {
705 Link *link;
706
707 assert(m);
708 assert(ifindex);
709 assert(ret);
710
711 link = hashmap_get(m->links, INT_TO_PTR(ifindex));
712 if (!link)
713 return -ENODEV;
714
715 *ret = link;
716
717 return 0;
718 }
719
720 static void link_set_state(Link *link, LinkState state) {
721 assert(link);
722
723 if (link->state == state)
724 return;
725
726 link->state = state;
727
728 link_send_changed(link, "AdministrativeState", NULL);
729 }
730
731 static void link_enter_unmanaged(Link *link) {
732 assert(link);
733
734 log_link_debug(link, "Unmanaged");
735
736 link_set_state(link, LINK_STATE_UNMANAGED);
737
738 link_dirty(link);
739 }
740
741 static int link_stop_clients(Link *link) {
742 int r = 0, k;
743
744 assert(link);
745 assert(link->manager);
746 assert(link->manager->event);
747
748 if (link->dhcp_client) {
749 k = sd_dhcp_client_stop(link->dhcp_client);
750 if (k < 0)
751 r = log_link_warning_errno(link, k, "Could not stop DHCPv4 client: %m");
752 }
753
754 if (link->ipv4ll) {
755 k = sd_ipv4ll_stop(link->ipv4ll);
756 if (k < 0)
757 r = log_link_warning_errno(link, k, "Could not stop IPv4 link-local: %m");
758 }
759
760 if (link->dhcp6_client) {
761 k = sd_dhcp6_client_stop(link->dhcp6_client);
762 if (k < 0)
763 r = log_link_warning_errno(link, k, "Could not stop DHCPv6 client: %m");
764 }
765
766 if (link->ndisc) {
767 k = sd_ndisc_stop(link->ndisc);
768 if (k < 0)
769 r = log_link_warning_errno(link, k, "Could not stop IPv6 Router Discovery: %m");
770 }
771
772 if (link->radv) {
773 k = sd_radv_stop(link->radv);
774 if (k < 0)
775 r = log_link_warning_errno(link, k, "Could not stop IPv6 Router Advertisement: %m");
776 }
777
778 link_lldp_emit_stop(link);
779 return r;
780 }
781
782 void link_enter_failed(Link *link) {
783 assert(link);
784
785 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
786 return;
787
788 log_link_warning(link, "Failed");
789
790 link_set_state(link, LINK_STATE_FAILED);
791
792 link_stop_clients(link);
793
794 link_dirty(link);
795 }
796
797 static Address* link_find_dhcp_server_address(Link *link) {
798 Address *address;
799
800 assert(link);
801 assert(link->network);
802
803 /* The first statically configured address if there is any */
804 LIST_FOREACH(addresses, address, link->network->static_addresses) {
805
806 if (address->family != AF_INET)
807 continue;
808
809 if (in_addr_is_null(address->family, &address->in_addr))
810 continue;
811
812 return address;
813 }
814
815 /* If that didn't work, find a suitable address we got from the pool */
816 LIST_FOREACH(addresses, address, link->pool_addresses) {
817 if (address->family != AF_INET)
818 continue;
819
820 return address;
821 }
822
823 return NULL;
824 }
825
826 static void link_enter_configured(Link *link) {
827 assert(link);
828 assert(link->network);
829
830 if (link->state != LINK_STATE_CONFIGURING)
831 return;
832
833 log_link_info(link, "Configured");
834
835 link_set_state(link, LINK_STATE_CONFIGURED);
836
837 link_dirty(link);
838 }
839
840 static int link_request_set_routing_policy_rule(Link *link) {
841 RoutingPolicyRule *rule, *rrule = NULL;
842 int r;
843
844 assert(link);
845 assert(link->network);
846
847 link_set_state(link, LINK_STATE_CONFIGURING);
848 link->routing_policy_rules_configured = false;
849
850 LIST_FOREACH(rules, rule, link->network->rules) {
851 r = routing_policy_rule_get(link->manager, rule->family, &rule->from, rule->from_prefixlen, &rule->to,
852 rule->to_prefixlen, rule->tos, rule->fwmark, rule->table, rule->iif, rule->oif,
853 rule->protocol, &rule->sport, &rule->dport, &rrule);
854 if (r == 0) {
855 (void) routing_policy_rule_make_local(link->manager, rrule);
856 continue;
857 }
858
859 r = routing_policy_rule_configure(rule, link, NULL, false);
860 if (r < 0) {
861 log_link_warning_errno(link, r, "Could not set routing policy rules: %m");
862 link_enter_failed(link);
863 return r;
864 }
865
866 link->routing_policy_rule_messages++;
867 }
868
869 routing_policy_rule_purge(link->manager, link);
870 if (link->routing_policy_rule_messages == 0) {
871 link->routing_policy_rules_configured = true;
872 link_check_ready(link);
873 } else
874 log_link_debug(link, "Setting routing policy rules");
875
876 return 0;
877 }
878
879 static int route_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
880 int r;
881
882 assert(link);
883 assert(link->route_messages > 0);
884 assert(IN_SET(link->state, LINK_STATE_CONFIGURING,
885 LINK_STATE_FAILED, LINK_STATE_LINGER));
886
887 link->route_messages--;
888
889 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
890 return 1;
891
892 r = sd_netlink_message_get_errno(m);
893 if (r < 0 && r != -EEXIST)
894 log_link_warning_errno(link, r, "Could not set route: %m");
895
896 if (link->route_messages == 0) {
897 log_link_debug(link, "Routes set");
898 link->static_routes_configured = true;
899 link_check_ready(link);
900 }
901
902 return 1;
903 }
904
905 static int link_request_set_routes(Link *link) {
906 enum {
907 PHASE_NON_GATEWAY, /* First phase: Routes without a gateway */
908 PHASE_GATEWAY, /* Second phase: Routes with a gateway */
909 _PHASE_MAX
910 } phase;
911 Route *rt;
912 int r;
913
914 assert(link);
915 assert(link->network);
916 assert(link->addresses_configured);
917 assert(link->address_messages == 0);
918 assert(link->state != _LINK_STATE_INVALID);
919
920 link_set_state(link, LINK_STATE_CONFIGURING);
921 link->static_routes_configured = false;
922
923 r = link_request_set_routing_policy_rule(link);
924 if (r < 0)
925 return r;
926
927 /* First add the routes that enable us to talk to gateways, then add in the others that need a gateway. */
928 for (phase = 0; phase < _PHASE_MAX; phase++)
929 LIST_FOREACH(routes, rt, link->network->static_routes) {
930
931 if (in_addr_is_null(rt->family, &rt->gw) != (phase == PHASE_NON_GATEWAY))
932 continue;
933
934 r = route_configure(rt, link, route_handler);
935 if (r < 0) {
936 log_link_warning_errno(link, r, "Could not set routes: %m");
937 link_enter_failed(link);
938 return r;
939 }
940
941 link->route_messages++;
942 }
943
944 if (link->route_messages == 0) {
945 link->static_routes_configured = true;
946 link_check_ready(link);
947 } else
948 log_link_debug(link, "Setting routes");
949
950 return 0;
951 }
952
953 void link_check_ready(Link *link) {
954 Address *a;
955 Iterator i;
956
957 assert(link);
958
959 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
960 return;
961
962 if (!link->network)
963 return;
964
965 if (!link->addresses_configured)
966 return;
967
968 if (!link->neighbors_configured)
969 return;
970
971 SET_FOREACH(a, link->addresses, i)
972 if (!address_is_ready(a))
973 return;
974
975 if (!link->addresses_ready) {
976 link->addresses_ready = true;
977 link_request_set_routes(link);
978 }
979
980 if (!link->static_routes_configured)
981 return;
982
983 if (!link->routing_policy_rules_configured)
984 return;
985
986 if (link_ipv4ll_enabled(link))
987 if (!link->ipv4ll_address ||
988 !link->ipv4ll_route)
989 return;
990
991 if (link_ipv6ll_enabled(link) &&
992 in_addr_is_null(AF_INET6, (const union in_addr_union*) &link->ipv6ll_address))
993 return;
994
995 if ((link_dhcp4_enabled(link) && !link_dhcp6_enabled(link) &&
996 !link->dhcp4_configured) ||
997 (link_dhcp6_enabled(link) && !link_dhcp4_enabled(link) &&
998 !link->dhcp6_configured) ||
999 (link_dhcp4_enabled(link) && link_dhcp6_enabled(link) &&
1000 !link->dhcp4_configured && !link->dhcp6_configured))
1001 return;
1002
1003 if (link_ipv6_accept_ra_enabled(link) && !link->ndisc_configured)
1004 return;
1005
1006 if (link->state != LINK_STATE_CONFIGURED)
1007 link_enter_configured(link);
1008
1009 return;
1010 }
1011
1012 static int link_request_set_neighbors(Link *link) {
1013 Neighbor *neighbor;
1014 int r;
1015
1016 assert(link);
1017 assert(link->network);
1018 assert(link->state != _LINK_STATE_INVALID);
1019
1020 link_set_state(link, LINK_STATE_CONFIGURING);
1021 link->neighbors_configured = false;
1022
1023 LIST_FOREACH(neighbors, neighbor, link->network->neighbors) {
1024 r = neighbor_configure(neighbor, link, NULL);
1025 if (r < 0) {
1026 log_link_warning_errno(link, r, "Could not set neighbor: %m");
1027 link_enter_failed(link);
1028 return r;
1029 }
1030 }
1031
1032 if (link->neighbor_messages == 0) {
1033 link->neighbors_configured = true;
1034 link_check_ready(link);
1035 } else
1036 log_link_debug(link, "Setting neighbors");
1037
1038 return 0;
1039 }
1040
1041 static int address_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1042 int r;
1043
1044 assert(rtnl);
1045 assert(m);
1046 assert(link);
1047 assert(link->ifname);
1048 assert(link->address_messages > 0);
1049 assert(IN_SET(link->state, LINK_STATE_CONFIGURING,
1050 LINK_STATE_FAILED, LINK_STATE_LINGER));
1051
1052 link->address_messages--;
1053
1054 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
1055 return 1;
1056
1057 r = sd_netlink_message_get_errno(m);
1058 if (r < 0 && r != -EEXIST)
1059 log_link_warning_errno(link, r, "could not set address: %m");
1060 else if (r >= 0)
1061 manager_rtnl_process_address(rtnl, m, link->manager);
1062
1063 if (link->address_messages == 0) {
1064 log_link_debug(link, "Addresses set");
1065 link->addresses_configured = true;
1066 link_check_ready(link);
1067 }
1068
1069 return 1;
1070 }
1071
1072 static int link_push_uplink_dns_to_dhcp_server(Link *link, sd_dhcp_server *s) {
1073 _cleanup_free_ struct in_addr *addresses = NULL;
1074 size_t n_addresses = 0, n_allocated = 0;
1075 unsigned i;
1076
1077 log_debug("Copying DNS server information from %s", link->ifname);
1078
1079 if (!link->network)
1080 return 0;
1081
1082 for (i = 0; i < link->network->n_dns; i++) {
1083 struct in_addr ia;
1084
1085 /* Only look for IPv4 addresses */
1086 if (link->network->dns[i].family != AF_INET)
1087 continue;
1088
1089 ia = link->network->dns[i].address.in;
1090
1091 /* Never propagate obviously borked data */
1092 if (in4_addr_is_null(&ia) || in4_addr_is_localhost(&ia))
1093 continue;
1094
1095 if (!GREEDY_REALLOC(addresses, n_allocated, n_addresses + 1))
1096 return log_oom();
1097
1098 addresses[n_addresses++] = ia;
1099 }
1100
1101 if (link->network->dhcp_use_dns && link->dhcp_lease) {
1102 const struct in_addr *da = NULL;
1103 int j, n;
1104
1105 n = sd_dhcp_lease_get_dns(link->dhcp_lease, &da);
1106 if (n > 0) {
1107
1108 if (!GREEDY_REALLOC(addresses, n_allocated, n_addresses + n))
1109 return log_oom();
1110
1111 for (j = 0; j < n; j++)
1112 if (in4_addr_is_non_local(&da[j]))
1113 addresses[n_addresses++] = da[j];
1114 }
1115 }
1116
1117 if (n_addresses <= 0)
1118 return 0;
1119
1120 return sd_dhcp_server_set_dns(s, addresses, n_addresses);
1121 }
1122
1123 static int link_push_uplink_ntp_to_dhcp_server(Link *link, sd_dhcp_server *s) {
1124 _cleanup_free_ struct in_addr *addresses = NULL;
1125 size_t n_addresses = 0, n_allocated = 0;
1126 char **a;
1127
1128 if (!link->network)
1129 return 0;
1130
1131 log_debug("Copying NTP server information from %s", link->ifname);
1132
1133 STRV_FOREACH(a, link->network->ntp) {
1134 struct in_addr ia;
1135
1136 /* Only look for IPv4 addresses */
1137 if (inet_pton(AF_INET, *a, &ia) <= 0)
1138 continue;
1139
1140 /* Never propagate obviously borked data */
1141 if (in4_addr_is_null(&ia) || in4_addr_is_localhost(&ia))
1142 continue;
1143
1144 if (!GREEDY_REALLOC(addresses, n_allocated, n_addresses + 1))
1145 return log_oom();
1146
1147 addresses[n_addresses++] = ia;
1148 }
1149
1150 if (link->network->dhcp_use_ntp && link->dhcp_lease) {
1151 const struct in_addr *da = NULL;
1152 int j, n;
1153
1154 n = sd_dhcp_lease_get_ntp(link->dhcp_lease, &da);
1155 if (n > 0) {
1156
1157 if (!GREEDY_REALLOC(addresses, n_allocated, n_addresses + n))
1158 return log_oom();
1159
1160 for (j = 0; j < n; j++)
1161 if (in4_addr_is_non_local(&da[j]))
1162 addresses[n_addresses++] = da[j];
1163 }
1164 }
1165
1166 if (n_addresses <= 0)
1167 return 0;
1168
1169 return sd_dhcp_server_set_ntp(s, addresses, n_addresses);
1170 }
1171
1172 static int link_set_bridge_fdb(Link *link) {
1173 FdbEntry *fdb_entry;
1174 int r;
1175
1176 LIST_FOREACH(static_fdb_entries, fdb_entry, link->network->static_fdb_entries) {
1177 r = fdb_entry_configure(link, fdb_entry);
1178 if (r < 0)
1179 return log_link_error_errno(link, r, "Failed to add MAC entry to static MAC table: %m");
1180 }
1181
1182 return 0;
1183 }
1184
1185 static int link_request_set_addresses(Link *link) {
1186 AddressLabel *label;
1187 Address *ad;
1188 int r;
1189
1190 assert(link);
1191 assert(link->network);
1192 assert(link->state != _LINK_STATE_INVALID);
1193
1194 link_set_state(link, LINK_STATE_CONFIGURING);
1195
1196 /* Reset all *_configured flags we are configuring. */
1197 link->addresses_configured = false;
1198 link->addresses_ready = false;
1199 link->neighbors_configured = false;
1200 link->static_routes_configured = false;
1201 link->routing_policy_rules_configured = false;
1202
1203 r = link_set_bridge_fdb(link);
1204 if (r < 0)
1205 return r;
1206
1207 r = link_request_set_neighbors(link);
1208 if (r < 0)
1209 return r;
1210
1211 LIST_FOREACH(addresses, ad, link->network->static_addresses) {
1212 bool update;
1213
1214 update = address_get(link, ad->family, &ad->in_addr, ad->prefixlen, NULL) > 0;
1215
1216 r = address_configure(ad, link, address_handler, update);
1217 if (r < 0) {
1218 log_link_warning_errno(link, r, "Could not set addresses: %m");
1219 link_enter_failed(link);
1220 return r;
1221 }
1222
1223 link->address_messages++;
1224 }
1225
1226 LIST_FOREACH(labels, label, link->network->address_labels) {
1227 r = address_label_configure(label, link, NULL, false);
1228 if (r < 0) {
1229 log_link_warning_errno(link, r, "Could not set address label: %m");
1230 link_enter_failed(link);
1231 return r;
1232 }
1233
1234 link->address_label_messages++;
1235 }
1236
1237 /* now that we can figure out a default address for the dhcp server,
1238 start it */
1239 if (link_dhcp4_server_enabled(link) && (link->flags & IFF_UP)) {
1240 Address *address;
1241 Link *uplink = NULL;
1242 bool acquired_uplink = false;
1243
1244 address = link_find_dhcp_server_address(link);
1245 if (!address) {
1246 log_link_warning(link, "Failed to find suitable address for DHCPv4 server instance.");
1247 link_enter_failed(link);
1248 return 0;
1249 }
1250
1251 /* use the server address' subnet as the pool */
1252 r = sd_dhcp_server_configure_pool(link->dhcp_server, &address->in_addr.in, address->prefixlen,
1253 link->network->dhcp_server_pool_offset, link->network->dhcp_server_pool_size);
1254 if (r < 0)
1255 return r;
1256
1257 /* TODO:
1258 r = sd_dhcp_server_set_router(link->dhcp_server,
1259 &main_address->in_addr.in);
1260 if (r < 0)
1261 return r;
1262 */
1263
1264 if (link->network->dhcp_server_max_lease_time_usec > 0) {
1265 r = sd_dhcp_server_set_max_lease_time(
1266 link->dhcp_server,
1267 DIV_ROUND_UP(link->network->dhcp_server_max_lease_time_usec, USEC_PER_SEC));
1268 if (r < 0)
1269 return r;
1270 }
1271
1272 if (link->network->dhcp_server_default_lease_time_usec > 0) {
1273 r = sd_dhcp_server_set_default_lease_time(
1274 link->dhcp_server,
1275 DIV_ROUND_UP(link->network->dhcp_server_default_lease_time_usec, USEC_PER_SEC));
1276 if (r < 0)
1277 return r;
1278 }
1279
1280 if (link->network->dhcp_server_emit_dns) {
1281
1282 if (link->network->n_dhcp_server_dns > 0)
1283 r = sd_dhcp_server_set_dns(link->dhcp_server, link->network->dhcp_server_dns, link->network->n_dhcp_server_dns);
1284 else {
1285 uplink = manager_find_uplink(link->manager, link);
1286 acquired_uplink = true;
1287
1288 if (!uplink) {
1289 log_link_debug(link, "Not emitting DNS server information on link, couldn't find suitable uplink.");
1290 r = 0;
1291 } else
1292 r = link_push_uplink_dns_to_dhcp_server(uplink, link->dhcp_server);
1293 }
1294 if (r < 0)
1295 log_link_warning_errno(link, r, "Failed to set DNS server for DHCP server, ignoring: %m");
1296 }
1297
1298 if (link->network->dhcp_server_emit_ntp) {
1299
1300 if (link->network->n_dhcp_server_ntp > 0)
1301 r = sd_dhcp_server_set_ntp(link->dhcp_server, link->network->dhcp_server_ntp, link->network->n_dhcp_server_ntp);
1302 else {
1303 if (!acquired_uplink)
1304 uplink = manager_find_uplink(link->manager, link);
1305
1306 if (!uplink) {
1307 log_link_debug(link, "Not emitting NTP server information on link, couldn't find suitable uplink.");
1308 r = 0;
1309 } else
1310 r = link_push_uplink_ntp_to_dhcp_server(uplink, link->dhcp_server);
1311
1312 }
1313 if (r < 0)
1314 log_link_warning_errno(link, r, "Failed to set NTP server for DHCP server, ignoring: %m");
1315 }
1316
1317 r = sd_dhcp_server_set_emit_router(link->dhcp_server, link->network->dhcp_server_emit_router);
1318 if (r < 0)
1319 return log_link_warning_errno(link, r, "Failed to set router emission for DHCP server: %m");
1320
1321 if (link->network->dhcp_server_emit_timezone) {
1322 _cleanup_free_ char *buffer = NULL;
1323 const char *tz = NULL;
1324
1325 if (link->network->dhcp_server_timezone)
1326 tz = link->network->dhcp_server_timezone;
1327 else {
1328 r = get_timezone(&buffer);
1329 if (r < 0)
1330 log_warning_errno(r, "Failed to determine timezone: %m");
1331 else
1332 tz = buffer;
1333 }
1334
1335 if (tz) {
1336 r = sd_dhcp_server_set_timezone(link->dhcp_server, tz);
1337 if (r < 0)
1338 return r;
1339 }
1340 }
1341 if (!sd_dhcp_server_is_running(link->dhcp_server)) {
1342 r = sd_dhcp_server_start(link->dhcp_server);
1343 if (r < 0) {
1344 log_link_warning_errno(link, r, "Could not start DHCPv4 server instance: %m");
1345
1346 link_enter_failed(link);
1347
1348 return 0;
1349 }
1350 }
1351
1352 log_link_debug(link, "Offering DHCPv4 leases");
1353 }
1354
1355 if (link->address_messages == 0) {
1356 link->addresses_configured = true;
1357 link_check_ready(link);
1358 } else
1359 log_link_debug(link, "Setting addresses");
1360
1361 return 0;
1362 }
1363
1364 static int link_set_bridge_vlan(Link *link) {
1365 int r = 0;
1366
1367 r = br_vlan_configure(link, link->network->pvid, link->network->br_vid_bitmap, link->network->br_untagged_bitmap);
1368 if (r < 0)
1369 log_link_error_errno(link, r, "Failed to assign VLANs to bridge port: %m");
1370
1371 return r;
1372 }
1373
1374 static int link_set_proxy_arp(Link *link) {
1375 int r;
1376
1377 if (!link_proxy_arp_enabled(link))
1378 return 0;
1379
1380 r = sysctl_write_ip_property_boolean(AF_INET, link->ifname, "proxy_arp", link->network->proxy_arp > 0);
1381 if (r < 0)
1382 log_link_warning_errno(link, r, "Cannot configure proxy ARP for interface: %m");
1383
1384 return 0;
1385 }
1386
1387 static int link_set_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1388 int r;
1389
1390 assert(link);
1391
1392 log_link_debug(link, "Set link");
1393
1394 r = sd_netlink_message_get_errno(m);
1395 if (r < 0 && r != -EEXIST) {
1396 log_link_error_errno(link, r, "Could not join netdev: %m");
1397 link_enter_failed(link);
1398 }
1399
1400 return 1;
1401 }
1402
1403 static int link_configure_after_setting_mtu(Link *link);
1404
1405 static int set_mtu_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1406 int r;
1407
1408 assert(m);
1409 assert(link);
1410 assert(link->ifname);
1411
1412 link->setting_mtu = false;
1413
1414 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
1415 return 1;
1416
1417 r = sd_netlink_message_get_errno(m);
1418 if (r < 0) {
1419 log_link_warning_errno(link, r, "Could not set MTU: %m");
1420 return 1;
1421 }
1422
1423 log_link_debug(link, "Setting MTU done.");
1424
1425 if (link->state == LINK_STATE_PENDING)
1426 (void) link_configure_after_setting_mtu(link);
1427
1428 return 1;
1429 }
1430
1431 int link_set_mtu(Link *link, uint32_t mtu, bool force) {
1432 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
1433 int r;
1434
1435 assert(link);
1436 assert(link->manager);
1437 assert(link->manager->rtnl);
1438
1439 if (mtu == 0 || link->setting_mtu)
1440 return 0;
1441
1442 if (force ? link->mtu == mtu : link->mtu >= mtu)
1443 return 0;
1444
1445 log_link_debug(link, "Setting MTU: %" PRIu32, mtu);
1446
1447 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_SETLINK, link->ifindex);
1448 if (r < 0)
1449 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
1450
1451 /* If IPv6 not configured (no static IPv6 address and IPv6LL autoconfiguration is disabled)
1452 * for this interface, then disable IPv6 else enable it. */
1453 (void) link_enable_ipv6(link);
1454
1455 /* IPv6 protocol requires a minimum MTU of IPV6_MTU_MIN(1280) bytes
1456 * on the interface. Bump up MTU bytes to IPV6_MTU_MIN. */
1457 if (link_ipv6_enabled(link) && mtu < IPV6_MIN_MTU) {
1458
1459 log_link_warning(link, "Bumping MTU to " STRINGIFY(IPV6_MIN_MTU) ", as "
1460 "IPv6 is requested and requires a minimum MTU of " STRINGIFY(IPV6_MIN_MTU) " bytes: %m");
1461
1462 mtu = IPV6_MIN_MTU;
1463 }
1464
1465 r = sd_netlink_message_append_u32(req, IFLA_MTU, mtu);
1466 if (r < 0)
1467 return log_link_error_errno(link, r, "Could not append MTU: %m");
1468
1469 r = netlink_call_async(link->manager->rtnl, NULL, req, set_mtu_handler,
1470 link_netlink_destroy_callback, link);
1471 if (r < 0)
1472 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
1473
1474 link_ref(link);
1475 link->setting_mtu = true;
1476
1477 return 0;
1478 }
1479
1480 static int set_flags_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1481 int r;
1482
1483 assert(m);
1484 assert(link);
1485 assert(link->ifname);
1486
1487 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
1488 return 1;
1489
1490 r = sd_netlink_message_get_errno(m);
1491 if (r < 0)
1492 log_link_warning_errno(link, r, "Could not set link flags: %m");
1493
1494 return 1;
1495 }
1496
1497 static int link_set_flags(Link *link) {
1498 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
1499 unsigned ifi_change = 0;
1500 unsigned ifi_flags = 0;
1501 int r;
1502
1503 assert(link);
1504 assert(link->manager);
1505 assert(link->manager->rtnl);
1506
1507 if (link->flags & IFF_LOOPBACK)
1508 return 0;
1509
1510 if (!link->network)
1511 return 0;
1512
1513 if (link->network->arp < 0 && link->network->multicast < 0 && link->network->allmulticast < 0)
1514 return 0;
1515
1516 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_SETLINK, link->ifindex);
1517 if (r < 0)
1518 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
1519
1520 if (link->network->arp >= 0) {
1521 ifi_change |= IFF_NOARP;
1522 SET_FLAG(ifi_flags, IFF_NOARP, link->network->arp == 0);
1523 }
1524
1525 if (link->network->multicast >= 0) {
1526 ifi_change |= IFF_MULTICAST;
1527 SET_FLAG(ifi_flags, IFF_MULTICAST, link->network->multicast);
1528 }
1529
1530 if (link->network->allmulticast >= 0) {
1531 ifi_change |= IFF_ALLMULTI;
1532 SET_FLAG(ifi_flags, IFF_ALLMULTI, link->network->allmulticast);
1533 }
1534
1535 r = sd_rtnl_message_link_set_flags(req, ifi_flags, ifi_change);
1536 if (r < 0)
1537 return log_link_error_errno(link, r, "Could not set link flags: %m");
1538
1539 r = netlink_call_async(link->manager->rtnl, NULL, req, set_flags_handler,
1540 link_netlink_destroy_callback, link);
1541 if (r < 0)
1542 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
1543
1544 link_ref(link);
1545
1546 return 0;
1547 }
1548
1549 static int link_set_bridge(Link *link) {
1550 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
1551 int r;
1552
1553 assert(link);
1554 assert(link->network);
1555
1556 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_SETLINK, link->ifindex);
1557 if (r < 0)
1558 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
1559
1560 r = sd_rtnl_message_link_set_family(req, PF_BRIDGE);
1561 if (r < 0)
1562 return log_link_error_errno(link, r, "Could not set message family: %m");
1563
1564 r = sd_netlink_message_open_container(req, IFLA_PROTINFO);
1565 if (r < 0)
1566 return log_link_error_errno(link, r, "Could not append IFLA_PROTINFO attribute: %m");
1567
1568 if (link->network->use_bpdu >= 0) {
1569 r = sd_netlink_message_append_u8(req, IFLA_BRPORT_GUARD, link->network->use_bpdu);
1570 if (r < 0)
1571 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_GUARD attribute: %m");
1572 }
1573
1574 if (link->network->hairpin >= 0) {
1575 r = sd_netlink_message_append_u8(req, IFLA_BRPORT_MODE, link->network->hairpin);
1576 if (r < 0)
1577 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_MODE attribute: %m");
1578 }
1579
1580 if (link->network->fast_leave >= 0) {
1581 r = sd_netlink_message_append_u8(req, IFLA_BRPORT_FAST_LEAVE, link->network->fast_leave);
1582 if (r < 0)
1583 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_FAST_LEAVE attribute: %m");
1584 }
1585
1586 if (link->network->allow_port_to_be_root >= 0) {
1587 r = sd_netlink_message_append_u8(req, IFLA_BRPORT_PROTECT, link->network->allow_port_to_be_root);
1588 if (r < 0)
1589 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_PROTECT attribute: %m");
1590
1591 }
1592
1593 if (link->network->unicast_flood >= 0) {
1594 r = sd_netlink_message_append_u8(req, IFLA_BRPORT_UNICAST_FLOOD, link->network->unicast_flood);
1595 if (r < 0)
1596 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_UNICAST_FLOOD attribute: %m");
1597 }
1598
1599 if (link->network->multicast_to_unicast >= 0) {
1600 r = sd_netlink_message_append_u8(req, IFLA_BRPORT_MCAST_TO_UCAST, link->network->multicast_to_unicast);
1601 if (r < 0)
1602 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_MCAST_TO_UCAST attribute: %m");
1603 }
1604
1605 if (link->network->cost != 0) {
1606 r = sd_netlink_message_append_u32(req, IFLA_BRPORT_COST, link->network->cost);
1607 if (r < 0)
1608 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_COST attribute: %m");
1609 }
1610
1611 if (link->network->priority != LINK_BRIDGE_PORT_PRIORITY_INVALID) {
1612 r = sd_netlink_message_append_u16(req, IFLA_BRPORT_PRIORITY, link->network->priority);
1613 if (r < 0)
1614 return log_link_error_errno(link, r, "Could not append IFLA_BRPORT_PRIORITY attribute: %m");
1615 }
1616
1617 r = sd_netlink_message_close_container(req);
1618 if (r < 0)
1619 return log_link_error_errno(link, r, "Could not append IFLA_LINKINFO attribute: %m");
1620
1621 r = netlink_call_async(link->manager->rtnl, NULL, req, link_set_handler,
1622 link_netlink_destroy_callback, link);
1623 if (r < 0)
1624 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
1625
1626 link_ref(link);
1627
1628 return r;
1629 }
1630
1631 static int link_set_bond_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1632 int r;
1633
1634 assert(m);
1635 assert(link);
1636 assert(link->ifname);
1637
1638 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
1639 return 1;
1640
1641 r = sd_netlink_message_get_errno(m);
1642 if (r < 0) {
1643 log_link_warning_errno(link, r, "Could not set bonding interface: %m");
1644 return 1;
1645 }
1646
1647 return 1;
1648 }
1649
1650 static int link_set_bond(Link *link) {
1651 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
1652 int r;
1653
1654 assert(link);
1655 assert(link->network);
1656
1657 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_NEWLINK, link->network->bond->ifindex);
1658 if (r < 0)
1659 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
1660
1661 r = sd_netlink_message_set_flags(req, NLM_F_REQUEST | NLM_F_ACK);
1662 if (r < 0)
1663 return log_link_error_errno(link, r, "Could not set netlink flags: %m");
1664
1665 r = sd_netlink_message_open_container(req, IFLA_LINKINFO);
1666 if (r < 0)
1667 return log_link_error_errno(link, r, "Could not append IFLA_PROTINFO attribute: %m");
1668
1669 r = sd_netlink_message_open_container_union(req, IFLA_INFO_DATA, "bond");
1670 if (r < 0)
1671 return log_link_error_errno(link, r, "Could not append IFLA_INFO_DATA attribute: %m");
1672
1673 if (link->network->active_slave) {
1674 r = sd_netlink_message_append_u32(req, IFLA_BOND_ACTIVE_SLAVE, link->ifindex);
1675 if (r < 0)
1676 return log_link_error_errno(link, r, "Could not append IFLA_BOND_ACTIVE_SLAVE attribute: %m");
1677 }
1678
1679 if (link->network->primary_slave) {
1680 r = sd_netlink_message_append_u32(req, IFLA_BOND_PRIMARY, link->ifindex);
1681 if (r < 0)
1682 return log_link_error_errno(link, r, "Could not append IFLA_BOND_PRIMARY attribute: %m");
1683 }
1684
1685 r = sd_netlink_message_close_container(req);
1686 if (r < 0)
1687 return log_link_error_errno(link, r, "Could not append IFLA_LINKINFO attribute: %m");
1688
1689 r = sd_netlink_message_close_container(req);
1690 if (r < 0)
1691 return log_link_error_errno(link, r, "Could not append IFLA_INFO_DATA attribute: %m");
1692
1693 r = netlink_call_async(link->manager->rtnl, NULL, req, link_set_bond_handler,
1694 link_netlink_destroy_callback, link);
1695 if (r < 0)
1696 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
1697
1698 link_ref(link);
1699
1700 return r;
1701 }
1702
1703 static int link_append_to_master(Link *link, NetDev *netdev) {
1704 Link *master;
1705 int r;
1706
1707 assert(link);
1708 assert(netdev);
1709
1710 r = link_get(link->manager, netdev->ifindex, &master);
1711 if (r < 0)
1712 return r;
1713
1714 r = hashmap_ensure_allocated(&master->slaves, NULL);
1715 if (r < 0)
1716 return r;
1717
1718 r = hashmap_put(master->slaves, INT_TO_PTR(link->ifindex), link);
1719 if (r < 0)
1720 return r;
1721
1722 return 0;
1723 }
1724
1725 static int link_lldp_save(Link *link) {
1726 _cleanup_free_ char *temp_path = NULL;
1727 _cleanup_fclose_ FILE *f = NULL;
1728 sd_lldp_neighbor **l = NULL;
1729 int n = 0, r, i;
1730
1731 assert(link);
1732 assert(link->lldp_file);
1733
1734 if (!link->lldp) {
1735 (void) unlink(link->lldp_file);
1736 return 0;
1737 }
1738
1739 r = sd_lldp_get_neighbors(link->lldp, &l);
1740 if (r < 0)
1741 goto finish;
1742 if (r == 0) {
1743 (void) unlink(link->lldp_file);
1744 goto finish;
1745 }
1746
1747 n = r;
1748
1749 r = fopen_temporary(link->lldp_file, &f, &temp_path);
1750 if (r < 0)
1751 goto finish;
1752
1753 fchmod(fileno(f), 0644);
1754
1755 for (i = 0; i < n; i++) {
1756 const void *p;
1757 le64_t u;
1758 size_t sz;
1759
1760 r = sd_lldp_neighbor_get_raw(l[i], &p, &sz);
1761 if (r < 0)
1762 goto finish;
1763
1764 u = htole64(sz);
1765 (void) fwrite(&u, 1, sizeof(u), f);
1766 (void) fwrite(p, 1, sz, f);
1767 }
1768
1769 r = fflush_and_check(f);
1770 if (r < 0)
1771 goto finish;
1772
1773 if (rename(temp_path, link->lldp_file) < 0) {
1774 r = -errno;
1775 goto finish;
1776 }
1777
1778 finish:
1779 if (r < 0) {
1780 (void) unlink(link->lldp_file);
1781 if (temp_path)
1782 (void) unlink(temp_path);
1783
1784 log_link_error_errno(link, r, "Failed to save LLDP data to %s: %m", link->lldp_file);
1785 }
1786
1787 if (l) {
1788 for (i = 0; i < n; i++)
1789 sd_lldp_neighbor_unref(l[i]);
1790 free(l);
1791 }
1792
1793 return r;
1794 }
1795
1796 static void lldp_handler(sd_lldp *lldp, sd_lldp_event event, sd_lldp_neighbor *n, void *userdata) {
1797 Link *link = userdata;
1798 int r;
1799
1800 assert(link);
1801
1802 (void) link_lldp_save(link);
1803
1804 if (link_lldp_emit_enabled(link) && event == SD_LLDP_EVENT_ADDED) {
1805 /* If we received information about a new neighbor, restart the LLDP "fast" logic */
1806
1807 log_link_debug(link, "Received LLDP datagram from previously unknown neighbor, restarting 'fast' LLDP transmission.");
1808
1809 r = link_lldp_emit_start(link);
1810 if (r < 0)
1811 log_link_warning_errno(link, r, "Failed to restart LLDP transmission: %m");
1812 }
1813 }
1814
1815 static int link_acquire_ipv6_conf(Link *link) {
1816 int r;
1817
1818 assert(link);
1819
1820 if (link_ipv6_accept_ra_enabled(link)) {
1821 assert(link->ndisc);
1822
1823 log_link_debug(link, "Discovering IPv6 routers");
1824
1825 r = sd_ndisc_start(link->ndisc);
1826 if (r < 0 && r != -EBUSY)
1827 return log_link_warning_errno(link, r, "Could not start IPv6 Router Discovery: %m");
1828 }
1829
1830 if (link_radv_enabled(link)) {
1831 assert(link->radv);
1832 assert(in_addr_is_link_local(AF_INET6, (const union in_addr_union*)&link->ipv6ll_address) > 0);
1833
1834 log_link_debug(link, "Starting IPv6 Router Advertisements");
1835
1836 r = sd_radv_start(link->radv);
1837 if (r < 0 && r != -EBUSY)
1838 return log_link_warning_errno(link, r, "Could not start IPv6 Router Advertisement: %m");
1839 }
1840
1841 (void) dhcp6_request_prefix_delegation(link);
1842
1843 return 0;
1844 }
1845
1846 static int link_acquire_ipv4_conf(Link *link) {
1847 int r;
1848
1849 assert(link);
1850 assert(link->network);
1851 assert(link->manager);
1852 assert(link->manager->event);
1853
1854 if (link_ipv4ll_enabled(link)) {
1855 assert(link->ipv4ll);
1856
1857 log_link_debug(link, "Acquiring IPv4 link-local address");
1858
1859 r = sd_ipv4ll_start(link->ipv4ll);
1860 if (r < 0)
1861 return log_link_warning_errno(link, r, "Could not acquire IPv4 link-local address: %m");
1862 }
1863
1864 if (link_dhcp4_enabled(link)) {
1865 assert(link->dhcp_client);
1866
1867 log_link_debug(link, "Acquiring DHCPv4 lease");
1868
1869 r = sd_dhcp_client_start(link->dhcp_client);
1870 if (r < 0)
1871 return log_link_warning_errno(link, r, "Could not acquire DHCPv4 lease: %m");
1872 }
1873
1874 return 0;
1875 }
1876
1877 static int link_acquire_conf(Link *link) {
1878 int r;
1879
1880 assert(link);
1881
1882 r = link_acquire_ipv4_conf(link);
1883 if (r < 0)
1884 return r;
1885
1886 if (!in_addr_is_null(AF_INET6, (const union in_addr_union*) &link->ipv6ll_address)) {
1887 r = link_acquire_ipv6_conf(link);
1888 if (r < 0)
1889 return r;
1890 }
1891
1892 if (link_lldp_emit_enabled(link)) {
1893 r = link_lldp_emit_start(link);
1894 if (r < 0)
1895 return log_link_warning_errno(link, r, "Failed to start LLDP transmission: %m");
1896 }
1897
1898 return 0;
1899 }
1900
1901 bool link_has_carrier(Link *link) {
1902 /* see Documentation/networking/operstates.txt in the kernel sources */
1903
1904 if (link->kernel_operstate == IF_OPER_UP)
1905 return true;
1906
1907 if (link->kernel_operstate == IF_OPER_UNKNOWN)
1908 /* operstate may not be implemented, so fall back to flags */
1909 if ((link->flags & IFF_LOWER_UP) && !(link->flags & IFF_DORMANT))
1910 return true;
1911
1912 return false;
1913 }
1914
1915 static int link_address_genmode_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1916 int r;
1917
1918 assert(link);
1919
1920 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
1921 return 1;
1922
1923 r = sd_netlink_message_get_errno(m);
1924 if (r < 0)
1925 log_link_warning_errno(link, r, "Could not set address genmode for interface: %m");
1926
1927 return 1;
1928 }
1929
1930 static int link_configure_addrgen_mode(Link *link) {
1931 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
1932 uint8_t ipv6ll_mode;
1933 int r;
1934
1935 assert(link);
1936 assert(link->network);
1937 assert(link->manager);
1938 assert(link->manager->rtnl);
1939
1940 log_link_debug(link, "Setting address genmode for link");
1941
1942 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_SETLINK, link->ifindex);
1943 if (r < 0)
1944 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
1945
1946 r = sd_netlink_message_open_container(req, IFLA_AF_SPEC);
1947 if (r < 0)
1948 return log_link_error_errno(link, r, "Could not open IFLA_AF_SPEC container: %m");
1949
1950 r = sd_netlink_message_open_container(req, AF_INET6);
1951 if (r < 0)
1952 return log_link_error_errno(link, r, "Could not open AF_INET6 container: %m");
1953
1954 if (!link_ipv6ll_enabled(link))
1955 ipv6ll_mode = IN6_ADDR_GEN_MODE_NONE;
1956 else if (sysctl_read_ip_property(AF_INET6, link->ifname, "stable_secret", NULL) < 0)
1957 /* The file may not exist. And event if it exists, when stable_secret is unset,
1958 * reading the file fails with EIO. */
1959 ipv6ll_mode = IN6_ADDR_GEN_MODE_EUI64;
1960 else
1961 ipv6ll_mode = IN6_ADDR_GEN_MODE_STABLE_PRIVACY;
1962
1963 r = sd_netlink_message_append_u8(req, IFLA_INET6_ADDR_GEN_MODE, ipv6ll_mode);
1964 if (r < 0)
1965 return log_link_error_errno(link, r, "Could not append IFLA_INET6_ADDR_GEN_MODE: %m");
1966
1967 r = sd_netlink_message_close_container(req);
1968 if (r < 0)
1969 return log_link_error_errno(link, r, "Could not close AF_INET6 container: %m");
1970
1971 r = sd_netlink_message_close_container(req);
1972 if (r < 0)
1973 return log_link_error_errno(link, r, "Could not close IFLA_AF_SPEC container: %m");
1974
1975 r = netlink_call_async(link->manager->rtnl, NULL, req, link_address_genmode_handler,
1976 link_netlink_destroy_callback, link);
1977 if (r < 0)
1978 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
1979
1980 link_ref(link);
1981
1982 return 0;
1983 }
1984
1985 static int link_up_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
1986 int r;
1987
1988 assert(link);
1989
1990 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
1991 return 1;
1992
1993 r = sd_netlink_message_get_errno(m);
1994 if (r < 0)
1995 /* we warn but don't fail the link, as it may be brought up later */
1996 log_link_warning_errno(link, r, "Could not bring up interface: %m");
1997
1998 return 1;
1999 }
2000
2001 static int link_up(Link *link) {
2002 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
2003 int r;
2004
2005 assert(link);
2006 assert(link->network);
2007 assert(link->manager);
2008 assert(link->manager->rtnl);
2009
2010 log_link_debug(link, "Bringing link up");
2011
2012 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_SETLINK, link->ifindex);
2013 if (r < 0)
2014 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
2015
2016 /* set it free if not enslaved with networkd */
2017 if (!link->network->bridge && !link->network->bond && !link->network->vrf) {
2018 r = sd_netlink_message_append_u32(req, IFLA_MASTER, 0);
2019 if (r < 0)
2020 return log_link_error_errno(link, r, "Could not append IFLA_MASTER attribute: %m");
2021 }
2022
2023 r = sd_rtnl_message_link_set_flags(req, IFF_UP, IFF_UP);
2024 if (r < 0)
2025 return log_link_error_errno(link, r, "Could not set link flags: %m");
2026
2027 if (link->network->mac) {
2028 r = sd_netlink_message_append_ether_addr(req, IFLA_ADDRESS, link->network->mac);
2029 if (r < 0)
2030 return log_link_error_errno(link, r, "Could not set MAC address: %m");
2031 }
2032
2033 if (link_ipv6_enabled(link)) {
2034 r = sd_netlink_message_open_container(req, IFLA_AF_SPEC);
2035 if (r < 0)
2036 return log_link_error_errno(link, r, "Could not open IFLA_AF_SPEC container: %m");
2037
2038 /* if the kernel lacks ipv6 support setting IFF_UP fails if any ipv6 options are passed */
2039 r = sd_netlink_message_open_container(req, AF_INET6);
2040 if (r < 0)
2041 return log_link_error_errno(link, r, "Could not open AF_INET6 container: %m");
2042
2043 if (!in_addr_is_null(AF_INET6, &link->network->ipv6_token)) {
2044 r = sd_netlink_message_append_in6_addr(req, IFLA_INET6_TOKEN, &link->network->ipv6_token.in6);
2045 if (r < 0)
2046 return log_link_error_errno(link, r, "Could not append IFLA_INET6_TOKEN: %m");
2047 }
2048
2049 r = sd_netlink_message_close_container(req);
2050 if (r < 0)
2051 return log_link_error_errno(link, r, "Could not close AF_INET6 container: %m");
2052
2053 r = sd_netlink_message_close_container(req);
2054 if (r < 0)
2055 return log_link_error_errno(link, r, "Could not close IFLA_AF_SPEC container: %m");
2056 }
2057
2058 r = netlink_call_async(link->manager->rtnl, NULL, req, link_up_handler,
2059 link_netlink_destroy_callback, link);
2060 if (r < 0)
2061 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
2062
2063 link_ref(link);
2064
2065 return 0;
2066 }
2067
2068 static int link_up_can(Link *link) {
2069 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
2070 int r;
2071
2072 assert(link);
2073
2074 log_link_debug(link, "Bringing CAN link up");
2075
2076 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_SETLINK, link->ifindex);
2077 if (r < 0)
2078 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
2079
2080 r = sd_rtnl_message_link_set_flags(req, IFF_UP, IFF_UP);
2081 if (r < 0)
2082 return log_link_error_errno(link, r, "Could not set link flags: %m");
2083
2084 r = netlink_call_async(link->manager->rtnl, NULL, req, link_up_handler,
2085 link_netlink_destroy_callback, link);
2086 if (r < 0)
2087 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
2088
2089 link_ref(link);
2090
2091 return 0;
2092 }
2093
2094 static int link_set_can(Link *link) {
2095 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *m = NULL;
2096 int r;
2097
2098 assert(link);
2099 assert(link->network);
2100 assert(link->manager);
2101 assert(link->manager->rtnl);
2102
2103 log_link_debug(link, "link_set_can");
2104
2105 r = sd_rtnl_message_new_link(link->manager->rtnl, &m, RTM_NEWLINK, link->ifindex);
2106 if (r < 0)
2107 return log_link_error_errno(link, r, "Failed to allocate netlink message: %m");
2108
2109 r = sd_netlink_message_set_flags(m, NLM_F_REQUEST | NLM_F_ACK);
2110 if (r < 0)
2111 return log_link_error_errno(link, r, "Could not set netlink flags: %m");
2112
2113 r = sd_netlink_message_open_container(m, IFLA_LINKINFO);
2114 if (r < 0)
2115 return log_link_error_errno(link, r, "Failed to open netlink container: %m");
2116
2117 r = sd_netlink_message_open_container_union(m, IFLA_INFO_DATA, link->kind);
2118 if (r < 0)
2119 return log_link_error_errno(link, r, "Could not append IFLA_INFO_DATA attribute: %m");
2120
2121 if (link->network->can_bitrate > 0 || link->network->can_sample_point > 0) {
2122 struct can_bittiming bt = {
2123 .bitrate = link->network->can_bitrate,
2124 .sample_point = link->network->can_sample_point,
2125 };
2126
2127 if (link->network->can_bitrate > UINT32_MAX) {
2128 log_link_error(link, "bitrate (%zu) too big.", link->network->can_bitrate);
2129 return -ERANGE;
2130 }
2131
2132 log_link_debug(link, "Setting bitrate = %d bit/s", bt.bitrate);
2133 if (link->network->can_sample_point > 0)
2134 log_link_debug(link, "Setting sample point = %d.%d%%", bt.sample_point / 10, bt.sample_point % 10);
2135 else
2136 log_link_debug(link, "Using default sample point");
2137
2138 r = sd_netlink_message_append_data(m, IFLA_CAN_BITTIMING, &bt, sizeof(bt));
2139 if (r < 0)
2140 return log_link_error_errno(link, r, "Could not append IFLA_CAN_BITTIMING attribute: %m");
2141 }
2142
2143 if (link->network->can_restart_us > 0) {
2144 char time_string[FORMAT_TIMESPAN_MAX];
2145 uint64_t restart_ms;
2146
2147 if (link->network->can_restart_us == USEC_INFINITY)
2148 restart_ms = 0;
2149 else
2150 restart_ms = DIV_ROUND_UP(link->network->can_restart_us, USEC_PER_MSEC);
2151
2152 format_timespan(time_string, FORMAT_TIMESPAN_MAX, restart_ms * 1000, MSEC_PER_SEC);
2153
2154 if (restart_ms > UINT32_MAX) {
2155 log_link_error(link, "restart timeout (%s) too big.", time_string);
2156 return -ERANGE;
2157 }
2158
2159 log_link_debug(link, "Setting restart = %s", time_string);
2160
2161 r = sd_netlink_message_append_u32(m, IFLA_CAN_RESTART_MS, restart_ms);
2162 if (r < 0)
2163 return log_link_error_errno(link, r, "Could not append IFLA_CAN_RESTART_MS attribute: %m");
2164 }
2165
2166 if (link->network->can_triple_sampling >= 0) {
2167 struct can_ctrlmode cm = {
2168 .mask = CAN_CTRLMODE_3_SAMPLES,
2169 .flags = link->network->can_triple_sampling ? CAN_CTRLMODE_3_SAMPLES : 0,
2170 };
2171
2172 log_link_debug(link, "%sabling triple-sampling", link->network->can_triple_sampling ? "En" : "Dis");
2173
2174 r = sd_netlink_message_append_data(m, IFLA_CAN_CTRLMODE, &cm, sizeof(cm));
2175 if (r < 0)
2176 return log_link_error_errno(link, r, "Could not append IFLA_CAN_CTRLMODE attribute: %m");
2177 }
2178
2179 r = sd_netlink_message_close_container(m);
2180 if (r < 0)
2181 return log_link_error_errno(link, r, "Failed to close netlink container: %m");
2182
2183 r = sd_netlink_message_close_container(m);
2184 if (r < 0)
2185 return log_link_error_errno(link, r, "Failed to close netlink container: %m");
2186
2187 r = netlink_call_async(link->manager->rtnl, NULL, m, link_set_handler,
2188 link_netlink_destroy_callback, link);
2189 if (r < 0)
2190 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
2191
2192 link_ref(link);
2193
2194 if (!(link->flags & IFF_UP)) {
2195 r = link_up_can(link);
2196 if (r < 0) {
2197 link_enter_failed(link);
2198 return r;
2199 }
2200 }
2201
2202 log_link_debug(link, "link_set_can done");
2203
2204 return r;
2205 }
2206
2207 static int link_down_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
2208 int r;
2209
2210 assert(link);
2211
2212 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
2213 return 1;
2214
2215 r = sd_netlink_message_get_errno(m);
2216 if (r < 0)
2217 log_link_warning_errno(link, r, "Could not bring down interface: %m");
2218
2219 if (streq_ptr(link->kind, "can"))
2220 link_set_can(link);
2221
2222 return 1;
2223 }
2224
2225 int link_down(Link *link) {
2226 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
2227 int r;
2228
2229 assert(link);
2230 assert(link->manager);
2231 assert(link->manager->rtnl);
2232
2233 log_link_debug(link, "Bringing link down");
2234
2235 r = sd_rtnl_message_new_link(link->manager->rtnl, &req,
2236 RTM_SETLINK, link->ifindex);
2237 if (r < 0)
2238 return log_link_error_errno(link, r, "Could not allocate RTM_SETLINK message: %m");
2239
2240 r = sd_rtnl_message_link_set_flags(req, 0, IFF_UP);
2241 if (r < 0)
2242 return log_link_error_errno(link, r, "Could not set link flags: %m");
2243
2244 r = netlink_call_async(link->manager->rtnl, NULL, req, link_down_handler,
2245 link_netlink_destroy_callback, link);
2246 if (r < 0)
2247 return log_link_error_errno(link, r, "Could not send rtnetlink message: %m");
2248
2249 link_ref(link);
2250
2251 return 0;
2252 }
2253
2254 static int link_handle_bound_to_list(Link *link) {
2255 Link *l;
2256 Iterator i;
2257 int r;
2258 bool required_up = false;
2259 bool link_is_up = false;
2260
2261 assert(link);
2262
2263 if (hashmap_isempty(link->bound_to_links))
2264 return 0;
2265
2266 if (link->flags & IFF_UP)
2267 link_is_up = true;
2268
2269 HASHMAP_FOREACH (l, link->bound_to_links, i)
2270 if (link_has_carrier(l)) {
2271 required_up = true;
2272 break;
2273 }
2274
2275 if (!required_up && link_is_up) {
2276 r = link_down(link);
2277 if (r < 0)
2278 return r;
2279 } else if (required_up && !link_is_up) {
2280 r = link_up(link);
2281 if (r < 0)
2282 return r;
2283 }
2284
2285 return 0;
2286 }
2287
2288 static int link_handle_bound_by_list(Link *link) {
2289 Iterator i;
2290 Link *l;
2291 int r;
2292
2293 assert(link);
2294
2295 if (hashmap_isempty(link->bound_by_links))
2296 return 0;
2297
2298 HASHMAP_FOREACH (l, link->bound_by_links, i) {
2299 r = link_handle_bound_to_list(l);
2300 if (r < 0)
2301 return r;
2302 }
2303
2304 return 0;
2305 }
2306
2307 static int link_put_carrier(Link *link, Link *carrier, Hashmap **h) {
2308 int r;
2309
2310 assert(link);
2311 assert(carrier);
2312
2313 if (link == carrier)
2314 return 0;
2315
2316 if (hashmap_get(*h, INT_TO_PTR(carrier->ifindex)))
2317 return 0;
2318
2319 r = hashmap_ensure_allocated(h, NULL);
2320 if (r < 0)
2321 return r;
2322
2323 r = hashmap_put(*h, INT_TO_PTR(carrier->ifindex), carrier);
2324 if (r < 0)
2325 return r;
2326
2327 return 0;
2328 }
2329
2330 static int link_new_bound_by_list(Link *link) {
2331 Manager *m;
2332 Link *carrier;
2333 Iterator i;
2334 int r;
2335 bool list_updated = false;
2336
2337 assert(link);
2338 assert(link->manager);
2339
2340 m = link->manager;
2341
2342 HASHMAP_FOREACH(carrier, m->links, i) {
2343 if (!carrier->network)
2344 continue;
2345
2346 if (strv_isempty(carrier->network->bind_carrier))
2347 continue;
2348
2349 if (strv_fnmatch(carrier->network->bind_carrier, link->ifname, 0)) {
2350 r = link_put_carrier(link, carrier, &link->bound_by_links);
2351 if (r < 0)
2352 return r;
2353
2354 list_updated = true;
2355 }
2356 }
2357
2358 if (list_updated)
2359 link_dirty(link);
2360
2361 HASHMAP_FOREACH(carrier, link->bound_by_links, i) {
2362 r = link_put_carrier(carrier, link, &carrier->bound_to_links);
2363 if (r < 0)
2364 return r;
2365
2366 link_dirty(carrier);
2367 }
2368
2369 return 0;
2370 }
2371
2372 static int link_new_bound_to_list(Link *link) {
2373 Manager *m;
2374 Link *carrier;
2375 Iterator i;
2376 int r;
2377 bool list_updated = false;
2378
2379 assert(link);
2380 assert(link->manager);
2381
2382 if (!link->network)
2383 return 0;
2384
2385 if (strv_isempty(link->network->bind_carrier))
2386 return 0;
2387
2388 m = link->manager;
2389
2390 HASHMAP_FOREACH (carrier, m->links, i) {
2391 if (strv_fnmatch(link->network->bind_carrier, carrier->ifname, 0)) {
2392 r = link_put_carrier(link, carrier, &link->bound_to_links);
2393 if (r < 0)
2394 return r;
2395
2396 list_updated = true;
2397 }
2398 }
2399
2400 if (list_updated)
2401 link_dirty(link);
2402
2403 HASHMAP_FOREACH (carrier, link->bound_to_links, i) {
2404 r = link_put_carrier(carrier, link, &carrier->bound_by_links);
2405 if (r < 0)
2406 return r;
2407
2408 link_dirty(carrier);
2409 }
2410
2411 return 0;
2412 }
2413
2414 static int link_new_carrier_maps(Link *link) {
2415 int r;
2416
2417 r = link_new_bound_by_list(link);
2418 if (r < 0)
2419 return r;
2420
2421 r = link_handle_bound_by_list(link);
2422 if (r < 0)
2423 return r;
2424
2425 r = link_new_bound_to_list(link);
2426 if (r < 0)
2427 return r;
2428
2429 r = link_handle_bound_to_list(link);
2430 if (r < 0)
2431 return r;
2432
2433 return 0;
2434 }
2435
2436 static void link_free_bound_to_list(Link *link) {
2437 Link *bound_to;
2438 Iterator i;
2439
2440 HASHMAP_FOREACH (bound_to, link->bound_to_links, i) {
2441 hashmap_remove(link->bound_to_links, INT_TO_PTR(bound_to->ifindex));
2442
2443 if (hashmap_remove(bound_to->bound_by_links, INT_TO_PTR(link->ifindex)))
2444 link_dirty(bound_to);
2445 }
2446
2447 return;
2448 }
2449
2450 static void link_free_bound_by_list(Link *link) {
2451 Link *bound_by;
2452 Iterator i;
2453
2454 HASHMAP_FOREACH (bound_by, link->bound_by_links, i) {
2455 hashmap_remove(link->bound_by_links, INT_TO_PTR(bound_by->ifindex));
2456
2457 if (hashmap_remove(bound_by->bound_to_links, INT_TO_PTR(link->ifindex))) {
2458 link_dirty(bound_by);
2459 link_handle_bound_to_list(bound_by);
2460 }
2461 }
2462
2463 return;
2464 }
2465
2466 static void link_free_carrier_maps(Link *link) {
2467 bool list_updated = false;
2468
2469 assert(link);
2470
2471 if (!hashmap_isempty(link->bound_to_links)) {
2472 link_free_bound_to_list(link);
2473 list_updated = true;
2474 }
2475
2476 if (!hashmap_isempty(link->bound_by_links)) {
2477 link_free_bound_by_list(link);
2478 list_updated = true;
2479 }
2480
2481 if (list_updated)
2482 link_dirty(link);
2483
2484 return;
2485 }
2486
2487 void link_drop(Link *link) {
2488 if (!link || link->state == LINK_STATE_LINGER)
2489 return;
2490
2491 link_set_state(link, LINK_STATE_LINGER);
2492
2493 link_free_carrier_maps(link);
2494
2495 log_link_debug(link, "Link removed");
2496
2497 (void) unlink(link->state_file);
2498
2499 link_detach_from_manager(link);
2500
2501 link_unref(link);
2502
2503 return;
2504 }
2505
2506 static int link_joined(Link *link) {
2507 int r;
2508
2509 assert(link);
2510 assert(link->network);
2511
2512 if (!hashmap_isempty(link->bound_to_links)) {
2513 r = link_handle_bound_to_list(link);
2514 if (r < 0)
2515 return r;
2516 } else if (!(link->flags & IFF_UP)) {
2517 r = link_up(link);
2518 if (r < 0) {
2519 link_enter_failed(link);
2520 return r;
2521 }
2522 }
2523
2524 if (link->network->bridge) {
2525 r = link_set_bridge(link);
2526 if (r < 0)
2527 log_link_error_errno(link, r, "Could not set bridge message: %m");
2528
2529 r = link_append_to_master(link, link->network->bridge);
2530 if (r < 0)
2531 log_link_error_errno(link, r, "Failed to add to bridge master's slave list: %m");
2532 }
2533
2534 if (link->network->bond) {
2535 r = link_set_bond(link);
2536 if (r < 0)
2537 log_link_error_errno(link, r, "Could not set bond message: %m");
2538
2539 r = link_append_to_master(link, link->network->bond);
2540 if (r < 0)
2541 log_link_error_errno(link, r, "Failed to add to bond master's slave list: %m");
2542 }
2543
2544 if (link->network->use_br_vlan &&
2545 (link->network->bridge || streq_ptr("bridge", link->kind))) {
2546 r = link_set_bridge_vlan(link);
2547 if (r < 0)
2548 log_link_error_errno(link, r, "Could not set bridge vlan: %m");
2549 }
2550
2551 /* Skip setting up addresses until it gets carrier,
2552 or it would try to set addresses twice,
2553 which is bad for non-idempotent steps. */
2554 if (!link_has_carrier(link) && !link->network->configure_without_carrier)
2555 return 0;
2556
2557 return link_request_set_addresses(link);
2558 }
2559
2560 static int netdev_join_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
2561 int r;
2562
2563 assert(link);
2564 assert(link->network);
2565 assert(link->enslaving > 0);
2566 assert(!link->enslaved_raw);
2567
2568 link->enslaving--;
2569
2570 if (IN_SET(link->state, LINK_STATE_FAILED, LINK_STATE_LINGER))
2571 return 1;
2572
2573 r = sd_netlink_message_get_errno(m);
2574 if (r < 0 && r != -EEXIST) {
2575 log_link_error_errno(link, r, "Could not join netdev: %m");
2576 link_enter_failed(link);
2577 return 1;
2578 } else
2579 log_link_debug(link, "Joined netdev");
2580
2581 if (link->enslaving == 0) {
2582 link->enslaved_raw = true;
2583 link_joined(link);
2584 }
2585
2586 return 1;
2587 }
2588
2589 static int link_enter_join_netdev(Link *link) {
2590 NetDev *netdev;
2591 Iterator i;
2592 int r;
2593
2594 assert(link);
2595 assert(link->network);
2596 assert(link->state == LINK_STATE_PENDING);
2597
2598 link_set_state(link, LINK_STATE_CONFIGURING);
2599
2600 link_dirty(link);
2601 link->enslaving = 0;
2602 link->enslaved_raw = false;
2603
2604 if (link->network->bond) {
2605 if (link->network->bond->state == NETDEV_STATE_READY &&
2606 link->network->bond->ifindex == link->master_ifindex)
2607 return link_joined(link);
2608
2609 log_struct(LOG_DEBUG,
2610 LOG_LINK_INTERFACE(link),
2611 LOG_NETDEV_INTERFACE(link->network->bond),
2612 LOG_LINK_MESSAGE(link, "Enslaving by '%s'", link->network->bond->ifname));
2613
2614 link->enslaving++;
2615
2616 r = netdev_join(link->network->bond, link, netdev_join_handler);
2617 if (r < 0) {
2618 log_struct_errno(LOG_WARNING, r,
2619 LOG_LINK_INTERFACE(link),
2620 LOG_NETDEV_INTERFACE(link->network->bond),
2621 LOG_LINK_MESSAGE(link, "Could not join netdev '%s': %m", link->network->bond->ifname));
2622 link_enter_failed(link);
2623 return r;
2624 }
2625 }
2626
2627 if (link->network->bridge) {
2628 log_struct(LOG_DEBUG,
2629 LOG_LINK_INTERFACE(link),
2630 LOG_NETDEV_INTERFACE(link->network->bridge),
2631 LOG_LINK_MESSAGE(link, "Enslaving by '%s'", link->network->bridge->ifname));
2632
2633 link->enslaving++;
2634
2635 r = netdev_join(link->network->bridge, link, netdev_join_handler);
2636 if (r < 0) {
2637 log_struct_errno(LOG_WARNING, r,
2638 LOG_LINK_INTERFACE(link),
2639 LOG_NETDEV_INTERFACE(link->network->bridge),
2640 LOG_LINK_MESSAGE(link, "Could not join netdev '%s': %m", link->network->bridge->ifname));
2641 link_enter_failed(link);
2642 return r;
2643 }
2644 }
2645
2646 if (link->network->vrf) {
2647 log_struct(LOG_DEBUG,
2648 LOG_LINK_INTERFACE(link),
2649 LOG_NETDEV_INTERFACE(link->network->vrf),
2650 LOG_LINK_MESSAGE(link, "Enslaving by '%s'", link->network->vrf->ifname));
2651
2652 link->enslaving++;
2653
2654 r = netdev_join(link->network->vrf, link, netdev_join_handler);
2655 if (r < 0) {
2656 log_struct_errno(LOG_WARNING, r,
2657 LOG_LINK_INTERFACE(link),
2658 LOG_NETDEV_INTERFACE(link->network->vrf),
2659 LOG_LINK_MESSAGE(link, "Could not join netdev '%s': %m", link->network->vrf->ifname));
2660 link_enter_failed(link);
2661 return r;
2662 }
2663 }
2664
2665 HASHMAP_FOREACH(netdev, link->network->stacked_netdevs, i) {
2666
2667 if (netdev->ifindex > 0) {
2668 link_joined(link);
2669 continue;
2670 }
2671
2672 log_struct(LOG_DEBUG,
2673 LOG_LINK_INTERFACE(link),
2674 LOG_NETDEV_INTERFACE(netdev),
2675 LOG_LINK_MESSAGE(link, "Enslaving by '%s'", netdev->ifname));
2676
2677 link->enslaving++;
2678
2679 r = netdev_join(netdev, link, netdev_join_handler);
2680 if (r < 0) {
2681 log_struct_errno(LOG_WARNING, r,
2682 LOG_LINK_INTERFACE(link),
2683 LOG_NETDEV_INTERFACE(netdev),
2684 LOG_LINK_MESSAGE(link, "Could not join netdev '%s': %m", netdev->ifname));
2685 link_enter_failed(link);
2686 return r;
2687 }
2688 }
2689
2690 if (link->enslaving == 0)
2691 return link_joined(link);
2692
2693 return 0;
2694 }
2695
2696 static int link_set_ipv4_forward(Link *link) {
2697 int r;
2698
2699 if (!link_ipv4_forward_enabled(link))
2700 return 0;
2701
2702 /* We propagate the forwarding flag from one interface to the
2703 * global setting one way. This means: as long as at least one
2704 * interface was configured at any time that had IP forwarding
2705 * enabled the setting will stay on for good. We do this
2706 * primarily to keep IPv4 and IPv6 packet forwarding behaviour
2707 * somewhat in sync (see below). */
2708
2709 r = sysctl_write_ip_property(AF_INET, NULL, "ip_forward", "1");
2710 if (r < 0)
2711 log_link_warning_errno(link, r, "Cannot turn on IPv4 packet forwarding, ignoring: %m");
2712
2713 return 0;
2714 }
2715
2716 static int link_set_ipv6_forward(Link *link) {
2717 int r;
2718
2719 if (!link_ipv6_forward_enabled(link))
2720 return 0;
2721
2722 /* On Linux, the IPv6 stack does not know a per-interface
2723 * packet forwarding setting: either packet forwarding is on
2724 * for all, or off for all. We hence don't bother with a
2725 * per-interface setting, but simply propagate the interface
2726 * flag, if it is set, to the global flag, one-way. Note that
2727 * while IPv4 would allow a per-interface flag, we expose the
2728 * same behaviour there and also propagate the setting from
2729 * one to all, to keep things simple (see above). */
2730
2731 r = sysctl_write_ip_property(AF_INET6, "all", "forwarding", "1");
2732 if (r < 0)
2733 log_link_warning_errno(link, r, "Cannot configure IPv6 packet forwarding, ignoring: %m");
2734
2735 return 0;
2736 }
2737
2738 static int link_set_ipv6_privacy_extensions(Link *link) {
2739 IPv6PrivacyExtensions s;
2740 int r;
2741
2742 s = link_ipv6_privacy_extensions(link);
2743 if (s < 0)
2744 return 0;
2745
2746 r = sysctl_write_ip_property_int(AF_INET6, link->ifname, "use_tempaddr", (int) link->network->ipv6_privacy_extensions);
2747 if (r < 0)
2748 log_link_warning_errno(link, r, "Cannot configure IPv6 privacy extension for interface: %m");
2749
2750 return 0;
2751 }
2752
2753 static int link_set_ipv6_accept_ra(Link *link) {
2754 int r;
2755
2756 /* Make this a NOP if IPv6 is not available */
2757 if (!socket_ipv6_is_supported())
2758 return 0;
2759
2760 if (link->flags & IFF_LOOPBACK)
2761 return 0;
2762
2763 if (!link->network)
2764 return 0;
2765
2766 r = sysctl_write_ip_property(AF_INET6, link->ifname, "accept_ra", "0");
2767 if (r < 0)
2768 log_link_warning_errno(link, r, "Cannot disable kernel IPv6 accept_ra for interface: %m");
2769
2770 return 0;
2771 }
2772
2773 static int link_set_ipv6_dad_transmits(Link *link) {
2774 int r;
2775
2776 /* Make this a NOP if IPv6 is not available */
2777 if (!socket_ipv6_is_supported())
2778 return 0;
2779
2780 if (link->flags & IFF_LOOPBACK)
2781 return 0;
2782
2783 if (!link->network)
2784 return 0;
2785
2786 if (link->network->ipv6_dad_transmits < 0)
2787 return 0;
2788
2789 r = sysctl_write_ip_property_int(AF_INET6, link->ifname, "dad_transmits", link->network->ipv6_dad_transmits);
2790 if (r < 0)
2791 log_link_warning_errno(link, r, "Cannot set IPv6 dad transmits for interface: %m");
2792
2793 return 0;
2794 }
2795
2796 static int link_set_ipv6_hop_limit(Link *link) {
2797 int r;
2798
2799 /* Make this a NOP if IPv6 is not available */
2800 if (!socket_ipv6_is_supported())
2801 return 0;
2802
2803 if (link->flags & IFF_LOOPBACK)
2804 return 0;
2805
2806 if (!link->network)
2807 return 0;
2808
2809 if (link->network->ipv6_hop_limit < 0)
2810 return 0;
2811
2812 r = sysctl_write_ip_property_int(AF_INET6, link->ifname, "hop_limit", link->network->ipv6_hop_limit);
2813 if (r < 0)
2814 log_link_warning_errno(link, r, "Cannot set IPv6 hop limit for interface: %m");
2815
2816 return 0;
2817 }
2818
2819 static int link_set_ipv6_mtu(Link *link) {
2820 int r;
2821
2822 /* Make this a NOP if IPv6 is not available */
2823 if (!socket_ipv6_is_supported())
2824 return 0;
2825
2826 if (link->flags & IFF_LOOPBACK)
2827 return 0;
2828
2829 if (link->network->ipv6_mtu == 0)
2830 return 0;
2831
2832 r = sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "mtu", link->network->ipv6_mtu);
2833 if (r < 0)
2834 log_link_warning_errno(link, r, "Cannot set IPv6 MTU for interface: %m");
2835
2836 return 0;
2837 }
2838
2839 static bool link_is_static_address_configured(Link *link, Address *address) {
2840 Address *net_address;
2841
2842 assert(link);
2843 assert(address);
2844
2845 if (!link->network)
2846 return false;
2847
2848 LIST_FOREACH(addresses, net_address, link->network->static_addresses)
2849 if (address_equal(net_address, address))
2850 return true;
2851
2852 return false;
2853 }
2854
2855 static bool link_is_static_route_configured(Link *link, Route *route) {
2856 Route *net_route;
2857
2858 assert(link);
2859 assert(route);
2860
2861 if (!link->network)
2862 return false;
2863
2864 LIST_FOREACH(routes, net_route, link->network->static_routes)
2865 if (route_equal(net_route, route))
2866 return true;
2867
2868 return false;
2869 }
2870
2871 static int link_drop_foreign_config(Link *link) {
2872 Address *address;
2873 Route *route;
2874 Iterator i;
2875 int r;
2876
2877 SET_FOREACH(address, link->addresses_foreign, i) {
2878 /* we consider IPv6LL addresses to be managed by the kernel */
2879 if (address->family == AF_INET6 && in_addr_is_link_local(AF_INET6, &address->in_addr) == 1)
2880 continue;
2881
2882 if (link_is_static_address_configured(link, address)) {
2883 r = address_add(link, address->family, &address->in_addr, address->prefixlen, NULL);
2884 if (r < 0)
2885 return log_link_error_errno(link, r, "Failed to add address: %m");
2886 } else {
2887 r = address_remove(address, link, NULL);
2888 if (r < 0)
2889 return r;
2890 }
2891 }
2892
2893 SET_FOREACH(route, link->routes_foreign, i) {
2894 /* do not touch routes managed by the kernel */
2895 if (route->protocol == RTPROT_KERNEL)
2896 continue;
2897
2898 if (link_is_static_route_configured(link, route)) {
2899 r = route_add(link, route->family, &route->dst, route->dst_prefixlen, route->tos, route->priority, route->table, NULL);
2900 if (r < 0)
2901 return r;
2902 } else {
2903 r = route_remove(route, link, NULL);
2904 if (r < 0)
2905 return r;
2906 }
2907 }
2908
2909 return 0;
2910 }
2911
2912 static int link_drop_config(Link *link) {
2913 Address *address, *pool_address;
2914 Route *route;
2915 Iterator i;
2916 int r;
2917
2918 SET_FOREACH(address, link->addresses, i) {
2919 /* we consider IPv6LL addresses to be managed by the kernel */
2920 if (address->family == AF_INET6 && in_addr_is_link_local(AF_INET6, &address->in_addr) == 1)
2921 continue;
2922
2923 r = address_remove(address, link, NULL);
2924 if (r < 0)
2925 return r;
2926
2927 /* If this address came from an address pool, clean up the pool */
2928 LIST_FOREACH(addresses, pool_address, link->pool_addresses) {
2929 if (address_equal(address, pool_address)) {
2930 LIST_REMOVE(addresses, link->pool_addresses, pool_address);
2931 address_free(pool_address);
2932 break;
2933 }
2934 }
2935 }
2936
2937 SET_FOREACH(route, link->routes, i) {
2938 /* do not touch routes managed by the kernel */
2939 if (route->protocol == RTPROT_KERNEL)
2940 continue;
2941
2942 r = route_remove(route, link, NULL);
2943 if (r < 0)
2944 return r;
2945 }
2946
2947 ndisc_flush(link);
2948
2949 return 0;
2950 }
2951
2952 static int link_update_lldp(Link *link) {
2953 int r;
2954
2955 assert(link);
2956
2957 if (!link->lldp)
2958 return 0;
2959
2960 if (link->flags & IFF_UP) {
2961 r = sd_lldp_start(link->lldp);
2962 if (r > 0)
2963 log_link_debug(link, "Started LLDP.");
2964 } else {
2965 r = sd_lldp_stop(link->lldp);
2966 if (r > 0)
2967 log_link_debug(link, "Stopped LLDP.");
2968 }
2969
2970 return r;
2971 }
2972
2973 static int link_configure_can(Link *link) {
2974 int r;
2975
2976 if (streq_ptr(link->kind, "can")) {
2977 /* The CAN interface must be down to configure bitrate, etc... */
2978 if ((link->flags & IFF_UP)) {
2979 r = link_down(link);
2980 if (r < 0) {
2981 link_enter_failed(link);
2982 return r;
2983 }
2984
2985 return 0;
2986 }
2987
2988 return link_set_can(link);
2989 }
2990
2991 if (!(link->flags & IFF_UP)) {
2992 r = link_up_can(link);
2993 if (r < 0) {
2994 link_enter_failed(link);
2995 return r;
2996 }
2997 }
2998
2999 return 0;
3000 }
3001
3002 static int link_configure(Link *link) {
3003 int r;
3004
3005 assert(link);
3006 assert(link->network);
3007 assert(link->state == LINK_STATE_PENDING);
3008
3009 if (STRPTR_IN_SET(link->kind, "can", "vcan"))
3010 return link_configure_can(link);
3011
3012 /* Drop foreign config, but ignore loopback or critical devices.
3013 * We do not want to remove loopback address or addresses used for root NFS. */
3014 if (!(link->flags & IFF_LOOPBACK) && !(link->network->dhcp_critical)) {
3015 r = link_drop_foreign_config(link);
3016 if (r < 0)
3017 return r;
3018 }
3019
3020 r = link_set_proxy_arp(link);
3021 if (r < 0)
3022 return r;
3023
3024 r = ipv6_proxy_ndp_addresses_configure(link);
3025 if (r < 0)
3026 return r;
3027
3028 r = link_set_ipv4_forward(link);
3029 if (r < 0)
3030 return r;
3031
3032 r = link_set_ipv6_forward(link);
3033 if (r < 0)
3034 return r;
3035
3036 r = link_set_ipv6_privacy_extensions(link);
3037 if (r < 0)
3038 return r;
3039
3040 r = link_set_ipv6_accept_ra(link);
3041 if (r < 0)
3042 return r;
3043
3044 r = link_set_ipv6_dad_transmits(link);
3045 if (r < 0)
3046 return r;
3047
3048 r = link_set_ipv6_hop_limit(link);
3049 if (r < 0)
3050 return r;
3051
3052 r = link_set_flags(link);
3053 if (r < 0)
3054 return r;
3055
3056 r = link_set_ipv6_mtu(link);
3057 if (r < 0)
3058 return r;
3059
3060 if (link_ipv4ll_enabled(link)) {
3061 r = ipv4ll_configure(link);
3062 if (r < 0)
3063 return r;
3064 }
3065
3066 if (link_dhcp4_enabled(link)) {
3067 r = dhcp4_set_promote_secondaries(link);
3068 if (r < 0)
3069 return r;
3070
3071 r = dhcp4_configure(link);
3072 if (r < 0)
3073 return r;
3074 }
3075
3076 if (link_dhcp4_server_enabled(link)) {
3077 r = sd_dhcp_server_new(&link->dhcp_server, link->ifindex);
3078 if (r < 0)
3079 return r;
3080
3081 r = sd_dhcp_server_attach_event(link->dhcp_server, NULL, 0);
3082 if (r < 0)
3083 return r;
3084 }
3085
3086 if (link_dhcp6_enabled(link) ||
3087 link_ipv6_accept_ra_enabled(link)) {
3088 r = dhcp6_configure(link);
3089 if (r < 0)
3090 return r;
3091 }
3092
3093 if (link_ipv6_accept_ra_enabled(link)) {
3094 r = ndisc_configure(link);
3095 if (r < 0)
3096 return r;
3097 }
3098
3099 if (link_radv_enabled(link)) {
3100 r = radv_configure(link);
3101 if (r < 0)
3102 return r;
3103 }
3104
3105 if (link_lldp_rx_enabled(link)) {
3106 r = sd_lldp_new(&link->lldp);
3107 if (r < 0)
3108 return r;
3109
3110 r = sd_lldp_set_ifindex(link->lldp, link->ifindex);
3111 if (r < 0)
3112 return r;
3113
3114 r = sd_lldp_match_capabilities(link->lldp,
3115 link->network->lldp_mode == LLDP_MODE_ROUTERS_ONLY ?
3116 SD_LLDP_SYSTEM_CAPABILITIES_ALL_ROUTERS :
3117 SD_LLDP_SYSTEM_CAPABILITIES_ALL);
3118 if (r < 0)
3119 return r;
3120
3121 r = sd_lldp_set_filter_address(link->lldp, &link->mac);
3122 if (r < 0)
3123 return r;
3124
3125 r = sd_lldp_attach_event(link->lldp, NULL, 0);
3126 if (r < 0)
3127 return r;
3128
3129 r = sd_lldp_set_callback(link->lldp, lldp_handler, link);
3130 if (r < 0)
3131 return r;
3132
3133 r = link_update_lldp(link);
3134 if (r < 0)
3135 return r;
3136 }
3137
3138 r = link_set_mtu(link, link->network->mtu, link->network->mtu_is_set);
3139 if (r < 0)
3140 return r;
3141
3142 if (socket_ipv6_is_supported()) {
3143 r = link_configure_addrgen_mode(link);
3144 if (r < 0)
3145 return r;
3146 }
3147
3148 return link_configure_after_setting_mtu(link);
3149 }
3150
3151 static int link_configure_after_setting_mtu(Link *link) {
3152 int r;
3153
3154 assert(link);
3155 assert(link->network);
3156 assert(link->state == LINK_STATE_PENDING);
3157
3158 if (link->setting_mtu)
3159 return 0;
3160
3161 if (link_has_carrier(link) || link->network->configure_without_carrier) {
3162 r = link_acquire_conf(link);
3163 if (r < 0)
3164 return r;
3165 }
3166
3167 return link_enter_join_netdev(link);
3168 }
3169
3170 static int duid_set_uuid(DUID *duid, sd_id128_t uuid) {
3171 assert(duid);
3172
3173 if (duid->raw_data_len > 0)
3174 return 0;
3175
3176 if (duid->type != DUID_TYPE_UUID)
3177 return -EINVAL;
3178
3179 memcpy(&duid->raw_data, &uuid, sizeof(sd_id128_t));
3180 duid->raw_data_len = sizeof(sd_id128_t);
3181
3182 return 1;
3183 }
3184
3185 int get_product_uuid_handler(sd_bus_message *m, void *userdata, sd_bus_error *ret_error) {
3186 Manager *manager = userdata;
3187 const sd_bus_error *e;
3188 const void *a;
3189 size_t sz;
3190 DUID *duid;
3191 Link *link;
3192 int r;
3193
3194 assert(m);
3195 assert(manager);
3196
3197 e = sd_bus_message_get_error(m);
3198 if (e) {
3199 log_error_errno(sd_bus_error_get_errno(e),
3200 "Could not get product UUID. Falling back to use machine-app-specific ID as DUID-UUID: %s",
3201 e->message);
3202 goto configure;
3203 }
3204
3205 r = sd_bus_message_read_array(m, 'y', &a, &sz);
3206 if (r < 0)
3207 goto configure;
3208
3209 if (sz != sizeof(sd_id128_t)) {
3210 log_error("Invalid product UUID. Falling back to use machine-app-specific ID as DUID-UUID.");
3211 goto configure;
3212 }
3213
3214 memcpy(&manager->product_uuid, a, sz);
3215 while ((duid = set_steal_first(manager->duids_requesting_uuid)))
3216 (void) duid_set_uuid(duid, manager->product_uuid);
3217
3218 manager->duids_requesting_uuid = set_free(manager->duids_requesting_uuid);
3219
3220 configure:
3221 while ((link = set_steal_first(manager->links_requesting_uuid))) {
3222 r = link_configure(link);
3223 if (r < 0)
3224 log_link_error_errno(link, r, "Failed to configure link: %m");
3225 }
3226
3227 manager->links_requesting_uuid = set_free(manager->links_requesting_uuid);
3228
3229 /* To avoid calling GetProductUUID() bus method so frequently, set the flag below
3230 * even if the method fails. */
3231 manager->has_product_uuid = true;
3232
3233 return 1;
3234 }
3235
3236 static bool link_requires_uuid(Link *link) {
3237 const DUID *duid;
3238
3239 assert(link);
3240 assert(link->manager);
3241 assert(link->network);
3242
3243 duid = link_get_duid(link);
3244 if (duid->type != DUID_TYPE_UUID || duid->raw_data_len != 0)
3245 return false;
3246
3247 if (link_dhcp4_enabled(link) && IN_SET(link->network->dhcp_client_identifier, DHCP_CLIENT_ID_DUID, DHCP_CLIENT_ID_DUID_ONLY))
3248 return true;
3249
3250 if (link_dhcp6_enabled(link) || link_ipv6_accept_ra_enabled(link))
3251 return true;
3252
3253 return false;
3254 }
3255
3256 static int link_configure_duid(Link *link) {
3257 Manager *m;
3258 DUID *duid;
3259 int r;
3260
3261 assert(link);
3262 assert(link->manager);
3263 assert(link->network);
3264
3265 m = link->manager;
3266 duid = link_get_duid(link);
3267
3268 if (!link_requires_uuid(link))
3269 return 1;
3270
3271 if (m->has_product_uuid) {
3272 (void) duid_set_uuid(duid, m->product_uuid);
3273 return 1;
3274 }
3275
3276 if (!m->links_requesting_uuid) {
3277 r = manager_request_product_uuid(m, link);
3278 if (r < 0) {
3279 if (r == -ENOMEM)
3280 return r;
3281
3282 log_link_warning_errno(link, r,
3283 "Failed to get product UUID. Falling back to use machine-app-specific ID as DUID-UUID: %m");
3284 return 1;
3285 }
3286 } else {
3287 r = set_put(m->links_requesting_uuid, link);
3288 if (r < 0)
3289 return log_oom();
3290
3291 r = set_put(m->duids_requesting_uuid, duid);
3292 if (r < 0)
3293 return log_oom();
3294 }
3295
3296 return 0;
3297 }
3298
3299 static int link_initialized_and_synced(Link *link) {
3300 Network *network;
3301 int r;
3302
3303 assert(link);
3304 assert(link->ifname);
3305 assert(link->manager);
3306
3307 if (link->state != LINK_STATE_PENDING)
3308 return 1;
3309
3310 log_link_debug(link, "Link state is up-to-date");
3311
3312 r = link_new_bound_by_list(link);
3313 if (r < 0)
3314 return r;
3315
3316 r = link_handle_bound_by_list(link);
3317 if (r < 0)
3318 return r;
3319
3320 if (!link->network) {
3321 r = network_get(link->manager, link->sd_device, link->ifname,
3322 &link->mac, &network);
3323 if (r == -ENOENT) {
3324 link_enter_unmanaged(link);
3325 return 1;
3326 } else if (r == 0 && network->unmanaged) {
3327 link_enter_unmanaged(link);
3328 return 0;
3329 } else if (r < 0)
3330 return r;
3331
3332 if (link->flags & IFF_LOOPBACK) {
3333 if (network->link_local != ADDRESS_FAMILY_NO)
3334 log_link_debug(link, "Ignoring link-local autoconfiguration for loopback link");
3335
3336 if (network->dhcp != ADDRESS_FAMILY_NO)
3337 log_link_debug(link, "Ignoring DHCP clients for loopback link");
3338
3339 if (network->dhcp_server)
3340 log_link_debug(link, "Ignoring DHCP server for loopback link");
3341 }
3342
3343 r = network_apply(network, link);
3344 if (r < 0)
3345 return r;
3346 }
3347
3348 r = link_new_bound_to_list(link);
3349 if (r < 0)
3350 return r;
3351
3352 /* link_configure_duid() returns 0 if it requests product UUID. In that case,
3353 * link_configure() is called later asynchronously. */
3354 r = link_configure_duid(link);
3355 if (r <= 0)
3356 return r;
3357
3358 r = link_configure(link);
3359 if (r < 0)
3360 return r;
3361
3362 return 1;
3363 }
3364
3365 static int link_initialized_handler(sd_netlink *rtnl, sd_netlink_message *m, Link *link) {
3366 (void) link_initialized_and_synced(link);
3367 return 1;
3368 }
3369
3370 int link_initialized(Link *link, sd_device *device) {
3371 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL;
3372 int r;
3373
3374 assert(link);
3375 assert(link->manager);
3376 assert(link->manager->rtnl);
3377 assert(device);
3378
3379 if (link->state != LINK_STATE_PENDING)
3380 return 0;
3381
3382 if (link->sd_device)
3383 return 0;
3384
3385 log_link_debug(link, "udev initialized link");
3386
3387 link->sd_device = sd_device_ref(device);
3388
3389 /* udev has initialized the link, but we don't know if we have yet
3390 * processed the NEWLINK messages with the latest state. Do a GETLINK,
3391 * when it returns we know that the pending NEWLINKs have already been
3392 * processed and that we are up-to-date */
3393
3394 r = sd_rtnl_message_new_link(link->manager->rtnl, &req, RTM_GETLINK,
3395 link->ifindex);
3396 if (r < 0)
3397 return r;
3398
3399 r = netlink_call_async(link->manager->rtnl, NULL, req, link_initialized_handler,
3400 link_netlink_destroy_callback, link);
3401 if (r < 0)
3402 return r;
3403
3404 link_ref(link);
3405
3406 return 0;
3407 }
3408
3409 static int link_load(Link *link) {
3410 _cleanup_free_ char *network_file = NULL,
3411 *addresses = NULL,
3412 *routes = NULL,
3413 *dhcp4_address = NULL,
3414 *ipv4ll_address = NULL;
3415 union in_addr_union address;
3416 union in_addr_union route_dst;
3417 const char *p;
3418 int r;
3419
3420 assert(link);
3421
3422 r = parse_env_file(NULL, link->state_file,
3423 "NETWORK_FILE", &network_file,
3424 "ADDRESSES", &addresses,
3425 "ROUTES", &routes,
3426 "DHCP4_ADDRESS", &dhcp4_address,
3427 "IPV4LL_ADDRESS", &ipv4ll_address);
3428 if (r < 0 && r != -ENOENT)
3429 return log_link_error_errno(link, r, "Failed to read %s: %m", link->state_file);
3430
3431 if (network_file) {
3432 Network *network;
3433 char *suffix;
3434
3435 /* drop suffix */
3436 suffix = strrchr(network_file, '.');
3437 if (!suffix) {
3438 log_link_debug(link, "Failed to get network name from %s", network_file);
3439 goto network_file_fail;
3440 }
3441 *suffix = '\0';
3442
3443 r = network_get_by_name(link->manager, basename(network_file), &network);
3444 if (r < 0) {
3445 log_link_debug_errno(link, r, "Failed to get network %s: %m", basename(network_file));
3446 goto network_file_fail;
3447 }
3448
3449 r = network_apply(network, link);
3450 if (r < 0)
3451 return log_link_error_errno(link, r, "Failed to apply network %s: %m", basename(network_file));
3452 }
3453
3454 network_file_fail:
3455
3456 if (addresses) {
3457 p = addresses;
3458
3459 for (;;) {
3460 _cleanup_free_ char *address_str = NULL;
3461 char *prefixlen_str;
3462 int family;
3463 unsigned char prefixlen;
3464
3465 r = extract_first_word(&p, &address_str, NULL, 0);
3466 if (r < 0) {
3467 log_link_debug_errno(link, r, "Failed to extract next address string: %m");
3468 continue;
3469 }
3470 if (r == 0)
3471 break;
3472
3473 prefixlen_str = strchr(address_str, '/');
3474 if (!prefixlen_str) {
3475 log_link_debug(link, "Failed to parse address and prefix length %s", address_str);
3476 continue;
3477 }
3478
3479 *prefixlen_str++ = '\0';
3480
3481 r = sscanf(prefixlen_str, "%hhu", &prefixlen);
3482 if (r != 1) {
3483 log_link_error(link, "Failed to parse prefixlen %s", prefixlen_str);
3484 continue;
3485 }
3486
3487 r = in_addr_from_string_auto(address_str, &family, &address);
3488 if (r < 0) {
3489 log_link_debug_errno(link, r, "Failed to parse address %s: %m", address_str);
3490 continue;
3491 }
3492
3493 r = address_add(link, family, &address, prefixlen, NULL);
3494 if (r < 0)
3495 return log_link_error_errno(link, r, "Failed to add address: %m");
3496 }
3497 }
3498
3499 if (routes) {
3500 p = routes;
3501
3502 for (;;) {
3503 Route *route;
3504 _cleanup_free_ char *route_str = NULL;
3505 _cleanup_(sd_event_source_unrefp) sd_event_source *expire = NULL;
3506 usec_t lifetime;
3507 char *prefixlen_str;
3508 int family;
3509 unsigned char prefixlen, tos, table;
3510 uint32_t priority;
3511
3512 r = extract_first_word(&p, &route_str, NULL, 0);
3513 if (r < 0) {
3514 log_link_debug_errno(link, r, "Failed to extract next route string: %m");
3515 continue;
3516 }
3517 if (r == 0)
3518 break;
3519
3520 prefixlen_str = strchr(route_str, '/');
3521 if (!prefixlen_str) {
3522 log_link_debug(link, "Failed to parse route %s", route_str);
3523 continue;
3524 }
3525
3526 *prefixlen_str++ = '\0';
3527
3528 r = sscanf(prefixlen_str, "%hhu/%hhu/%"SCNu32"/%hhu/"USEC_FMT, &prefixlen, &tos, &priority, &table, &lifetime);
3529 if (r != 5) {
3530 log_link_debug(link,
3531 "Failed to parse destination prefix length, tos, priority, table or expiration %s",
3532 prefixlen_str);
3533 continue;
3534 }
3535
3536 r = in_addr_from_string_auto(route_str, &family, &route_dst);
3537 if (r < 0) {
3538 log_link_debug_errno(link, r, "Failed to parse route destination %s: %m", route_str);
3539 continue;
3540 }
3541
3542 r = route_add(link, family, &route_dst, prefixlen, tos, priority, table, &route);
3543 if (r < 0)
3544 return log_link_error_errno(link, r, "Failed to add route: %m");
3545
3546 if (lifetime != USEC_INFINITY && !kernel_route_expiration_supported()) {
3547 r = sd_event_add_time(link->manager->event, &expire, clock_boottime_or_monotonic(), lifetime,
3548 0, route_expire_handler, route);
3549 if (r < 0)
3550 log_link_warning_errno(link, r, "Could not arm route expiration handler: %m");
3551 }
3552
3553 route->lifetime = lifetime;
3554 sd_event_source_unref(route->expire);
3555 route->expire = TAKE_PTR(expire);
3556 }
3557 }
3558
3559 if (dhcp4_address) {
3560 r = in_addr_from_string(AF_INET, dhcp4_address, &address);
3561 if (r < 0) {
3562 log_link_debug_errno(link, r, "Failed to parse DHCPv4 address %s: %m", dhcp4_address);
3563 goto dhcp4_address_fail;
3564 }
3565
3566 r = sd_dhcp_client_new(&link->dhcp_client, link->network ? link->network->dhcp_anonymize : 0);
3567 if (r < 0)
3568 return log_link_error_errno(link, r, "Failed to create DHCPv4 client: %m");
3569
3570 r = sd_dhcp_client_set_request_address(link->dhcp_client, &address.in);
3571 if (r < 0)
3572 return log_link_error_errno(link, r, "Failed to set initial DHCPv4 address %s: %m", dhcp4_address);
3573 }
3574
3575 dhcp4_address_fail:
3576
3577 if (ipv4ll_address) {
3578 r = in_addr_from_string(AF_INET, ipv4ll_address, &address);
3579 if (r < 0) {
3580 log_link_debug_errno(link, r, "Failed to parse IPv4LL address %s: %m", ipv4ll_address);
3581 goto ipv4ll_address_fail;
3582 }
3583
3584 r = sd_ipv4ll_new(&link->ipv4ll);
3585 if (r < 0)
3586 return log_link_error_errno(link, r, "Failed to create IPv4LL client: %m");
3587
3588 r = sd_ipv4ll_set_address(link->ipv4ll, &address.in);
3589 if (r < 0)
3590 return log_link_error_errno(link, r, "Failed to set initial IPv4LL address %s: %m", ipv4ll_address);
3591 }
3592
3593 ipv4ll_address_fail:
3594
3595 return 0;
3596 }
3597
3598 int link_add(Manager *m, sd_netlink_message *message, Link **ret) {
3599 _cleanup_(sd_device_unrefp) sd_device *device = NULL;
3600 char ifindex_str[2 + DECIMAL_STR_MAX(int)];
3601 Link *link;
3602 int r;
3603
3604 assert(m);
3605 assert(m->rtnl);
3606 assert(message);
3607 assert(ret);
3608
3609 r = link_new(m, message, ret);
3610 if (r < 0)
3611 return r;
3612
3613 link = *ret;
3614
3615 log_link_debug(link, "Link %d added", link->ifindex);
3616
3617 r = link_load(link);
3618 if (r < 0)
3619 return r;
3620
3621 if (detect_container() <= 0) {
3622 /* not in a container, udev will be around */
3623 sprintf(ifindex_str, "n%d", link->ifindex);
3624 r = sd_device_new_from_device_id(&device, ifindex_str);
3625 if (r < 0) {
3626 log_link_warning_errno(link, r, "Could not find device: %m");
3627 goto failed;
3628 }
3629
3630 r = sd_device_get_is_initialized(device);
3631 if (r < 0) {
3632 log_link_warning_errno(link, r, "Could not determine whether the device is initialized or not: %m");
3633 goto failed;
3634 }
3635 if (r == 0) {
3636 /* not yet ready */
3637 log_link_debug(link, "link pending udev initialization...");
3638 return 0;
3639 }
3640
3641 r = device_is_renaming(device);
3642 if (r < 0) {
3643 log_link_warning_errno(link, r, "Failed to determine the device is renamed or not: %m");
3644 goto failed;
3645 }
3646 if (r > 0) {
3647 log_link_debug(link, "Interface is under renaming, pending initialization.");
3648 return 0;
3649 }
3650
3651 r = link_initialized(link, device);
3652 if (r < 0)
3653 goto failed;
3654 } else {
3655 r = link_initialized_and_synced(link);
3656 if (r < 0)
3657 goto failed;
3658 }
3659
3660 return 0;
3661 failed:
3662 link_enter_failed(link);
3663 return r;
3664 }
3665
3666 int link_ipv6ll_gained(Link *link, const struct in6_addr *address) {
3667 int r;
3668
3669 assert(link);
3670
3671 log_link_info(link, "Gained IPv6LL");
3672
3673 link->ipv6ll_address = *address;
3674 link_check_ready(link);
3675
3676 if (!IN_SET(link->state, LINK_STATE_PENDING, LINK_STATE_UNMANAGED, LINK_STATE_FAILED)) {
3677 r = link_acquire_ipv6_conf(link);
3678 if (r < 0) {
3679 link_enter_failed(link);
3680 return r;
3681 }
3682 }
3683
3684 return 0;
3685 }
3686
3687 static int link_carrier_gained(Link *link) {
3688 int r;
3689
3690 assert(link);
3691
3692 if (!IN_SET(link->state, LINK_STATE_PENDING, LINK_STATE_UNMANAGED, LINK_STATE_FAILED)) {
3693 r = link_acquire_conf(link);
3694 if (r < 0) {
3695 link_enter_failed(link);
3696 return r;
3697 }
3698
3699 r = link_request_set_addresses(link);
3700 if (r < 0)
3701 return r;
3702 }
3703
3704 r = link_handle_bound_by_list(link);
3705 if (r < 0)
3706 return r;
3707
3708 return 0;
3709 }
3710
3711 static int link_carrier_lost(Link *link) {
3712 int r;
3713
3714 assert(link);
3715
3716 if (link->network && link->network->ignore_carrier_loss)
3717 return 0;
3718
3719 /* Some devices reset itself while setting the MTU. This causes the DHCP client fall into a loop.
3720 * setting_mtu keep track whether the device got reset because of setting MTU and does not drop the
3721 * configuration and stop the clients as well. */
3722 if (link->setting_mtu)
3723 return 0;
3724
3725 r = link_stop_clients(link);
3726 if (r < 0) {
3727 link_enter_failed(link);
3728 return r;
3729 }
3730
3731 if (link_dhcp4_server_enabled(link))
3732 (void) sd_dhcp_server_stop(link->dhcp_server);
3733
3734 r = link_drop_config(link);
3735 if (r < 0)
3736 return r;
3737
3738 if (!IN_SET(link->state, LINK_STATE_UNMANAGED, LINK_STATE_PENDING)) {
3739 log_link_debug(link, "State is %s, dropping config", link_state_to_string(link->state));
3740 r = link_drop_foreign_config(link);
3741 if (r < 0)
3742 return r;
3743 }
3744
3745 r = link_handle_bound_by_list(link);
3746 if (r < 0)
3747 return r;
3748
3749 return 0;
3750 }
3751
3752 int link_carrier_reset(Link *link) {
3753 int r;
3754
3755 assert(link);
3756
3757 if (link_has_carrier(link)) {
3758 r = link_carrier_lost(link);
3759 if (r < 0)
3760 return r;
3761
3762 r = link_carrier_gained(link);
3763 if (r < 0)
3764 return r;
3765
3766 log_link_info(link, "Reset carrier");
3767 }
3768
3769 return 0;
3770 }
3771
3772 int link_update(Link *link, sd_netlink_message *m) {
3773 struct ether_addr mac;
3774 const char *ifname;
3775 uint32_t mtu;
3776 bool had_carrier, carrier_gained, carrier_lost;
3777 int r;
3778
3779 assert(link);
3780 assert(link->ifname);
3781 assert(m);
3782
3783 if (link->state == LINK_STATE_LINGER) {
3784 log_link_info(link, "Link readded");
3785 link_set_state(link, LINK_STATE_CONFIGURING);
3786
3787 r = link_new_carrier_maps(link);
3788 if (r < 0)
3789 return r;
3790 }
3791
3792 r = sd_netlink_message_read_string(m, IFLA_IFNAME, &ifname);
3793 if (r >= 0 && !streq(ifname, link->ifname)) {
3794 Manager *manager = link->manager;
3795
3796 log_link_info(link, "Interface name change detected, %s has been renamed to %s.", link->ifname, ifname);
3797
3798 link_drop(link);
3799 r = link_add(manager, m, &link);
3800 if (r < 0)
3801 return r;
3802 }
3803
3804 r = sd_netlink_message_read_u32(m, IFLA_MTU, &mtu);
3805 if (r >= 0 && mtu > 0) {
3806 link->mtu = mtu;
3807 if (link->original_mtu == 0) {
3808 link->original_mtu = mtu;
3809 log_link_debug(link, "Saved original MTU: %" PRIu32, link->original_mtu);
3810 }
3811
3812 if (link->dhcp_client) {
3813 r = sd_dhcp_client_set_mtu(link->dhcp_client,
3814 link->mtu);
3815 if (r < 0)
3816 return log_link_warning_errno(link, r, "Could not update MTU in DHCP client: %m");
3817 }
3818
3819 if (link->radv) {
3820 r = sd_radv_set_mtu(link->radv, link->mtu);
3821 if (r < 0)
3822 return log_link_warning_errno(link, r, "Could not set MTU for Router Advertisement: %m");
3823 }
3824 }
3825
3826 /* The kernel may broadcast NEWLINK messages without the MAC address
3827 set, simply ignore them. */
3828 r = sd_netlink_message_read_ether_addr(m, IFLA_ADDRESS, &mac);
3829 if (r >= 0) {
3830 if (memcmp(link->mac.ether_addr_octet, mac.ether_addr_octet,
3831 ETH_ALEN)) {
3832
3833 memcpy(link->mac.ether_addr_octet, mac.ether_addr_octet,
3834 ETH_ALEN);
3835
3836 log_link_debug(link, "MAC address: "
3837 "%02hhx:%02hhx:%02hhx:%02hhx:%02hhx:%02hhx",
3838 mac.ether_addr_octet[0],
3839 mac.ether_addr_octet[1],
3840 mac.ether_addr_octet[2],
3841 mac.ether_addr_octet[3],
3842 mac.ether_addr_octet[4],
3843 mac.ether_addr_octet[5]);
3844
3845 if (link->ipv4ll) {
3846 r = sd_ipv4ll_set_mac(link->ipv4ll, &link->mac);
3847 if (r < 0)
3848 return log_link_warning_errno(link, r, "Could not update MAC address in IPv4LL client: %m");
3849 }
3850
3851 if (link->dhcp_client) {
3852 r = sd_dhcp_client_set_mac(link->dhcp_client,
3853 (const uint8_t *) &link->mac,
3854 sizeof (link->mac),
3855 ARPHRD_ETHER);
3856 if (r < 0)
3857 return log_link_warning_errno(link, r, "Could not update MAC address in DHCP client: %m");
3858
3859 r = dhcp4_set_client_identifier(link);
3860 if (r < 0)
3861 return r;
3862 }
3863
3864 if (link->dhcp6_client) {
3865 const DUID* duid = link_get_duid(link);
3866
3867 r = sd_dhcp6_client_set_mac(link->dhcp6_client,
3868 (const uint8_t *) &link->mac,
3869 sizeof (link->mac),
3870 ARPHRD_ETHER);
3871 if (r < 0)
3872 return log_link_warning_errno(link, r, "Could not update MAC address in DHCPv6 client: %m");
3873
3874 if (link->network->iaid_set) {
3875 r = sd_dhcp6_client_set_iaid(link->dhcp6_client,
3876 link->network->iaid);
3877 if (r < 0)
3878 return log_link_warning_errno(link, r, "Could not update DHCPv6 IAID: %m");
3879 }
3880
3881 r = sd_dhcp6_client_set_duid(link->dhcp6_client,
3882 duid->type,
3883 duid->raw_data_len > 0 ? duid->raw_data : NULL,
3884 duid->raw_data_len);
3885 if (r < 0)
3886 return log_link_warning_errno(link, r, "Could not update DHCPv6 DUID: %m");
3887 }
3888
3889 if (link->radv) {
3890 r = sd_radv_set_mac(link->radv, &link->mac);
3891 if (r < 0)
3892 return log_link_warning_errno(link, r, "Could not update MAC for Router Advertisement: %m");
3893 }
3894
3895 if (link->ndisc) {
3896 r = sd_ndisc_set_mac(link->ndisc, &link->mac);
3897 if (r < 0)
3898 return log_link_warning_errno(link, r, "Could not update MAC for ndisc: %m");
3899 }
3900 }
3901 }
3902
3903 had_carrier = link_has_carrier(link);
3904
3905 r = link_update_flags(link, m);
3906 if (r < 0)
3907 return r;
3908
3909 r = link_update_lldp(link);
3910 if (r < 0)
3911 return r;
3912
3913 carrier_gained = !had_carrier && link_has_carrier(link);
3914 carrier_lost = had_carrier && !link_has_carrier(link);
3915
3916 if (carrier_gained) {
3917 log_link_info(link, "Gained carrier");
3918
3919 r = link_carrier_gained(link);
3920 if (r < 0)
3921 return r;
3922 } else if (carrier_lost) {
3923 log_link_info(link, "Lost carrier");
3924
3925 r = link_carrier_lost(link);
3926 if (r < 0)
3927 return r;
3928 }
3929
3930 return 0;
3931 }
3932
3933 static void print_link_hashmap(FILE *f, const char *prefix, Hashmap* h) {
3934 bool space = false;
3935 Iterator i;
3936 Link *link;
3937
3938 assert(f);
3939 assert(prefix);
3940
3941 if (hashmap_isempty(h))
3942 return;
3943
3944 fputs(prefix, f);
3945 HASHMAP_FOREACH(link, h, i) {
3946 if (space)
3947 fputc(' ', f);
3948
3949 fprintf(f, "%i", link->ifindex);
3950 space = true;
3951 }
3952
3953 fputc('\n', f);
3954 }
3955
3956 int link_save(Link *link) {
3957 _cleanup_free_ char *temp_path = NULL;
3958 _cleanup_fclose_ FILE *f = NULL;
3959 const char *admin_state, *oper_state;
3960 Address *a;
3961 Route *route;
3962 Iterator i;
3963 int r;
3964
3965 assert(link);
3966 assert(link->state_file);
3967 assert(link->lease_file);
3968 assert(link->manager);
3969
3970 if (link->state == LINK_STATE_LINGER) {
3971 unlink(link->state_file);
3972 return 0;
3973 }
3974
3975 link_lldp_save(link);
3976
3977 admin_state = link_state_to_string(link->state);
3978 assert(admin_state);
3979
3980 oper_state = link_operstate_to_string(link->operstate);
3981 assert(oper_state);
3982
3983 r = fopen_temporary(link->state_file, &f, &temp_path);
3984 if (r < 0)
3985 goto fail;
3986
3987 (void) __fsetlocking(f, FSETLOCKING_BYCALLER);
3988 (void) fchmod(fileno(f), 0644);
3989
3990 fprintf(f,
3991 "# This is private data. Do not parse.\n"
3992 "ADMIN_STATE=%s\n"
3993 "OPER_STATE=%s\n",
3994 admin_state, oper_state);
3995
3996 if (link->network) {
3997 bool space;
3998 sd_dhcp6_lease *dhcp6_lease = NULL;
3999 const char *dhcp_domainname = NULL;
4000 char **dhcp6_domains = NULL;
4001 char **dhcp_domains = NULL;
4002 unsigned j;
4003
4004 fprintf(f, "REQUIRED_FOR_ONLINE=%s\n",
4005 yes_no(link->network->required_for_online));
4006
4007 if (link->dhcp6_client) {
4008 r = sd_dhcp6_client_get_lease(link->dhcp6_client, &dhcp6_lease);
4009 if (r < 0 && r != -ENOMSG)
4010 log_link_debug(link, "No DHCPv6 lease");
4011 }
4012
4013 fprintf(f, "NETWORK_FILE=%s\n", link->network->filename);
4014
4015 fputs("DNS=", f);
4016 space = false;
4017
4018 for (j = 0; j < link->network->n_dns; j++) {
4019 _cleanup_free_ char *b = NULL;
4020
4021 r = in_addr_to_string(link->network->dns[j].family,
4022 &link->network->dns[j].address, &b);
4023 if (r < 0) {
4024 log_debug_errno(r, "Failed to format address, ignoring: %m");
4025 continue;
4026 }
4027
4028 if (space)
4029 fputc(' ', f);
4030 fputs(b, f);
4031 space = true;
4032 }
4033
4034 if (link->network->dhcp_use_dns &&
4035 link->dhcp_lease) {
4036 const struct in_addr *addresses;
4037
4038 r = sd_dhcp_lease_get_dns(link->dhcp_lease, &addresses);
4039 if (r > 0)
4040 if (serialize_in_addrs(f, addresses, r, space, in4_addr_is_non_local) > 0)
4041 space = true;
4042 }
4043
4044 if (link->network->dhcp_use_dns && dhcp6_lease) {
4045 struct in6_addr *in6_addrs;
4046
4047 r = sd_dhcp6_lease_get_dns(dhcp6_lease, &in6_addrs);
4048 if (r > 0) {
4049 if (space)
4050 fputc(' ', f);
4051 serialize_in6_addrs(f, in6_addrs, r);
4052 space = true;
4053 }
4054 }
4055
4056 /* Make sure to flush out old entries before we use the NDISC data */
4057 ndisc_vacuum(link);
4058
4059 if (link->network->ipv6_accept_ra_use_dns && link->ndisc_rdnss) {
4060 NDiscRDNSS *dd;
4061
4062 SET_FOREACH(dd, link->ndisc_rdnss, i) {
4063 if (space)
4064 fputc(' ', f);
4065
4066 serialize_in6_addrs(f, &dd->address, 1);
4067 space = true;
4068 }
4069 }
4070
4071 fputc('\n', f);
4072
4073 fputs("NTP=", f);
4074 space = false;
4075 fputstrv(f, link->network->ntp, NULL, &space);
4076
4077 if (link->network->dhcp_use_ntp &&
4078 link->dhcp_lease) {
4079 const struct in_addr *addresses;
4080
4081 r = sd_dhcp_lease_get_ntp(link->dhcp_lease, &addresses);
4082 if (r > 0)
4083 if (serialize_in_addrs(f, addresses, r, space, in4_addr_is_non_local) > 0)
4084 space = true;
4085 }
4086
4087 if (link->network->dhcp_use_ntp && dhcp6_lease) {
4088 struct in6_addr *in6_addrs;
4089 char **hosts;
4090
4091 r = sd_dhcp6_lease_get_ntp_addrs(dhcp6_lease,
4092 &in6_addrs);
4093 if (r > 0) {
4094 if (space)
4095 fputc(' ', f);
4096 serialize_in6_addrs(f, in6_addrs, r);
4097 space = true;
4098 }
4099
4100 r = sd_dhcp6_lease_get_ntp_fqdn(dhcp6_lease, &hosts);
4101 if (r > 0)
4102 fputstrv(f, hosts, NULL, &space);
4103 }
4104
4105 fputc('\n', f);
4106
4107 if (link->network->dhcp_use_domains != DHCP_USE_DOMAINS_NO) {
4108 if (link->dhcp_lease) {
4109 (void) sd_dhcp_lease_get_domainname(link->dhcp_lease, &dhcp_domainname);
4110 (void) sd_dhcp_lease_get_search_domains(link->dhcp_lease, &dhcp_domains);
4111 }
4112 if (dhcp6_lease)
4113 (void) sd_dhcp6_lease_get_domains(dhcp6_lease, &dhcp6_domains);
4114 }
4115
4116 ordered_set_print(f, "DOMAINS=", link->network->search_domains);
4117
4118 if (link->network->dhcp_use_domains == DHCP_USE_DOMAINS_YES) {
4119 NDiscDNSSL *dd;
4120
4121 if (dhcp_domainname)
4122 fputs_with_space(f, dhcp_domainname, NULL, &space);
4123 if (dhcp_domains)
4124 fputstrv(f, dhcp_domains, NULL, &space);
4125 if (dhcp6_domains)
4126 fputstrv(f, dhcp6_domains, NULL, &space);
4127
4128 SET_FOREACH(dd, link->ndisc_dnssl, i)
4129 fputs_with_space(f, NDISC_DNSSL_DOMAIN(dd), NULL, &space);
4130 }
4131
4132 fputc('\n', f);
4133
4134 ordered_set_print(f, "ROUTE_DOMAINS=", link->network->route_domains);
4135
4136 if (link->network->dhcp_use_domains == DHCP_USE_DOMAINS_ROUTE) {
4137 NDiscDNSSL *dd;
4138
4139 if (dhcp_domainname)
4140 fputs_with_space(f, dhcp_domainname, NULL, &space);
4141 if (dhcp_domains)
4142 fputstrv(f, dhcp_domains, NULL, &space);
4143 if (dhcp6_domains)
4144 fputstrv(f, dhcp6_domains, NULL, &space);
4145
4146 SET_FOREACH(dd, link->ndisc_dnssl, i)
4147 fputs_with_space(f, NDISC_DNSSL_DOMAIN(dd), NULL, &space);
4148 }
4149
4150 fputc('\n', f);
4151
4152 fprintf(f, "LLMNR=%s\n",
4153 resolve_support_to_string(link->network->llmnr));
4154 fprintf(f, "MDNS=%s\n",
4155 resolve_support_to_string(link->network->mdns));
4156 if (link->network->dns_default_route >= 0)
4157 fprintf(f, "DNS_DEFAULT_ROUTE=%s\n", yes_no(link->network->dns_default_route));
4158
4159 if (link->network->dns_over_tls_mode != _DNS_OVER_TLS_MODE_INVALID)
4160 fprintf(f, "DNS_OVER_TLS=%s\n",
4161 dns_over_tls_mode_to_string(link->network->dns_over_tls_mode));
4162
4163 if (link->network->dnssec_mode != _DNSSEC_MODE_INVALID)
4164 fprintf(f, "DNSSEC=%s\n",
4165 dnssec_mode_to_string(link->network->dnssec_mode));
4166
4167 if (!set_isempty(link->network->dnssec_negative_trust_anchors)) {
4168 const char *n;
4169
4170 fputs("DNSSEC_NTA=", f);
4171 space = false;
4172 SET_FOREACH(n, link->network->dnssec_negative_trust_anchors, i)
4173 fputs_with_space(f, n, NULL, &space);
4174 fputc('\n', f);
4175 }
4176
4177 fputs("ADDRESSES=", f);
4178 space = false;
4179 SET_FOREACH(a, link->addresses, i) {
4180 _cleanup_free_ char *address_str = NULL;
4181
4182 r = in_addr_to_string(a->family, &a->in_addr, &address_str);
4183 if (r < 0)
4184 goto fail;
4185
4186 fprintf(f, "%s%s/%u", space ? " " : "", address_str, a->prefixlen);
4187 space = true;
4188 }
4189 fputc('\n', f);
4190
4191 fputs("ROUTES=", f);
4192 space = false;
4193 SET_FOREACH(route, link->routes, i) {
4194 _cleanup_free_ char *route_str = NULL;
4195
4196 r = in_addr_to_string(route->family, &route->dst, &route_str);
4197 if (r < 0)
4198 goto fail;
4199
4200 fprintf(f, "%s%s/%hhu/%hhu/%"PRIu32"/%"PRIu32"/"USEC_FMT,
4201 space ? " " : "", route_str,
4202 route->dst_prefixlen, route->tos, route->priority, route->table, route->lifetime);
4203 space = true;
4204 }
4205
4206 fputc('\n', f);
4207 }
4208
4209 print_link_hashmap(f, "CARRIER_BOUND_TO=", link->bound_to_links);
4210 print_link_hashmap(f, "CARRIER_BOUND_BY=", link->bound_by_links);
4211
4212 if (link->dhcp_lease) {
4213 struct in_addr address;
4214 const char *tz = NULL;
4215
4216 assert(link->network);
4217
4218 r = sd_dhcp_lease_get_timezone(link->dhcp_lease, &tz);
4219 if (r >= 0)
4220 fprintf(f, "TIMEZONE=%s\n", tz);
4221
4222 r = sd_dhcp_lease_get_address(link->dhcp_lease, &address);
4223 if (r >= 0) {
4224 fputs("DHCP4_ADDRESS=", f);
4225 serialize_in_addrs(f, &address, 1, false, NULL);
4226 fputc('\n', f);
4227 }
4228
4229 r = dhcp_lease_save(link->dhcp_lease, link->lease_file);
4230 if (r < 0)
4231 goto fail;
4232
4233 fprintf(f,
4234 "DHCP_LEASE=%s\n",
4235 link->lease_file);
4236 } else
4237 unlink(link->lease_file);
4238
4239 if (link->ipv4ll) {
4240 struct in_addr address;
4241
4242 r = sd_ipv4ll_get_address(link->ipv4ll, &address);
4243 if (r >= 0) {
4244 fputs("IPV4LL_ADDRESS=", f);
4245 serialize_in_addrs(f, &address, 1, false, NULL);
4246 fputc('\n', f);
4247 }
4248 }
4249
4250 r = fflush_and_check(f);
4251 if (r < 0)
4252 goto fail;
4253
4254 if (rename(temp_path, link->state_file) < 0) {
4255 r = -errno;
4256 goto fail;
4257 }
4258
4259 return 0;
4260
4261 fail:
4262 (void) unlink(link->state_file);
4263 if (temp_path)
4264 (void) unlink(temp_path);
4265
4266 return log_link_error_errno(link, r, "Failed to save link data to %s: %m", link->state_file);
4267 }
4268
4269 /* The serialized state in /run is no longer up-to-date. */
4270 void link_dirty(Link *link) {
4271 int r;
4272
4273 assert(link);
4274
4275 /* mark manager dirty as link is dirty */
4276 manager_dirty(link->manager);
4277
4278 r = set_ensure_allocated(&link->manager->dirty_links, NULL);
4279 if (r < 0)
4280 /* allocation errors are ignored */
4281 return;
4282
4283 r = set_put(link->manager->dirty_links, link);
4284 if (r <= 0)
4285 /* don't take another ref if the link was already dirty */
4286 return;
4287
4288 link_ref(link);
4289 }
4290
4291 /* The serialized state in /run is up-to-date */
4292 void link_clean(Link *link) {
4293 assert(link);
4294 assert(link->manager);
4295
4296 link_unref(set_remove(link->manager->dirty_links, link));
4297 }
4298
4299 static const char* const link_state_table[_LINK_STATE_MAX] = {
4300 [LINK_STATE_PENDING] = "pending",
4301 [LINK_STATE_CONFIGURING] = "configuring",
4302 [LINK_STATE_CONFIGURED] = "configured",
4303 [LINK_STATE_UNMANAGED] = "unmanaged",
4304 [LINK_STATE_FAILED] = "failed",
4305 [LINK_STATE_LINGER] = "linger",
4306 };
4307
4308 DEFINE_STRING_TABLE_LOOKUP(link_state, LinkState);
4309
4310 static const char* const link_operstate_table[_LINK_OPERSTATE_MAX] = {
4311 [LINK_OPERSTATE_OFF] = "off",
4312 [LINK_OPERSTATE_NO_CARRIER] = "no-carrier",
4313 [LINK_OPERSTATE_DORMANT] = "dormant",
4314 [LINK_OPERSTATE_CARRIER] = "carrier",
4315 [LINK_OPERSTATE_DEGRADED] = "degraded",
4316 [LINK_OPERSTATE_ENSLAVED] = "enslaved",
4317 [LINK_OPERSTATE_ROUTABLE] = "routable",
4318 };
4319
4320 DEFINE_STRING_TABLE_LOOKUP(link_operstate, LinkOperationalState);
Unnamed repository; edit this file 'description' to name the repository.