2 This file is part of systemd.
4 Copyright 2014 Tom Gundersen <teg@jklm.no>
6 systemd is free software; you can redistribute it and/or modify it
7 under the terms of the GNU Lesser General Public License as published by
8 the Free Software Foundation; either version 2.1 of the License, or
9 (at your option) any later version.
11 systemd is distributed in the hope that it will be useful, but
12 WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public License
17 along with systemd; If not, see <http://www.gnu.org/licenses/>.
20 #include <netinet/in.h>
22 #include <sys/ioctl.h>
25 #include "alloc-util.h"
26 #include "dirent-util.h"
27 #include "dns-domain.h"
29 #include "fileio-label.h"
30 #include "hostname-util.h"
32 #include "netlink-util.h"
33 #include "network-internal.h"
34 #include "ordered-set.h"
35 #include "parse-util.h"
36 #include "random-util.h"
37 #include "resolved-bus.h"
38 #include "resolved-conf.h"
39 #include "resolved-dns-stub.h"
40 #include "resolved-etc-hosts.h"
41 #include "resolved-llmnr.h"
42 #include "resolved-manager.h"
43 #include "resolved-mdns.h"
44 #include "resolved-resolv-conf.h"
45 #include "socket-util.h"
46 #include "string-table.h"
47 #include "string-util.h"
50 #define SEND_TIMEOUT_USEC (200 * USEC_PER_MSEC)
52 static int manager_process_link(sd_netlink
*rtnl
, sd_netlink_message
*mm
, void *userdata
) {
53 Manager
*m
= userdata
;
62 r
= sd_netlink_message_get_type(mm
, &type
);
66 r
= sd_rtnl_message_link_get_ifindex(mm
, &ifindex
);
70 l
= hashmap_get(m
->links
, INT_TO_PTR(ifindex
));
78 r
= link_new(m
, &l
, ifindex
);
83 r
= link_process_rtnl(l
, mm
);
92 log_debug("Found new link %i/%s", ifindex
, l
->name
);
99 log_debug("Removing link %i/%s", l
->ifindex
, l
->name
);
110 log_warning_errno(r
, "Failed to process RTNL link message: %m");
114 static int manager_process_address(sd_netlink
*rtnl
, sd_netlink_message
*mm
, void *userdata
) {
115 Manager
*m
= userdata
;
116 union in_addr_union address
;
118 int r
, ifindex
, family
;
126 r
= sd_netlink_message_get_type(mm
, &type
);
130 r
= sd_rtnl_message_addr_get_ifindex(mm
, &ifindex
);
134 l
= hashmap_get(m
->links
, INT_TO_PTR(ifindex
));
138 r
= sd_rtnl_message_addr_get_family(mm
, &family
);
145 r
= sd_netlink_message_read_in_addr(mm
, IFA_LOCAL
, &address
.in
);
147 r
= sd_netlink_message_read_in_addr(mm
, IFA_ADDRESS
, &address
.in
);
155 r
= sd_netlink_message_read_in6_addr(mm
, IFA_LOCAL
, &address
.in6
);
157 r
= sd_netlink_message_read_in6_addr(mm
, IFA_ADDRESS
, &address
.in6
);
168 a
= link_find_address(l
, family
, &address
);
175 r
= link_address_new(l
, &a
, family
, &address
);
180 r
= link_address_update_rtnl(a
, mm
);
187 link_address_free(a
);
194 log_warning_errno(r
, "Failed to process RTNL address message: %m");
198 static int manager_rtnl_listen(Manager
*m
) {
199 _cleanup_(sd_netlink_message_unrefp
) sd_netlink_message
*req
= NULL
, *reply
= NULL
;
200 sd_netlink_message
*i
;
205 /* First, subscribe to interfaces coming and going */
206 r
= sd_netlink_open(&m
->rtnl
);
210 r
= sd_netlink_attach_event(m
->rtnl
, m
->event
, SD_EVENT_PRIORITY_IMPORTANT
);
214 r
= sd_netlink_add_match(m
->rtnl
, RTM_NEWLINK
, manager_process_link
, m
);
218 r
= sd_netlink_add_match(m
->rtnl
, RTM_DELLINK
, manager_process_link
, m
);
222 r
= sd_netlink_add_match(m
->rtnl
, RTM_NEWADDR
, manager_process_address
, m
);
226 r
= sd_netlink_add_match(m
->rtnl
, RTM_DELADDR
, manager_process_address
, m
);
230 /* Then, enumerate all links */
231 r
= sd_rtnl_message_new_link(m
->rtnl
, &req
, RTM_GETLINK
, 0);
235 r
= sd_netlink_message_request_dump(req
, true);
239 r
= sd_netlink_call(m
->rtnl
, req
, 0, &reply
);
243 for (i
= reply
; i
; i
= sd_netlink_message_next(i
)) {
244 r
= manager_process_link(m
->rtnl
, i
, m
);
249 req
= sd_netlink_message_unref(req
);
250 reply
= sd_netlink_message_unref(reply
);
252 /* Finally, enumerate all addresses, too */
253 r
= sd_rtnl_message_new_addr(m
->rtnl
, &req
, RTM_GETADDR
, 0, AF_UNSPEC
);
257 r
= sd_netlink_message_request_dump(req
, true);
261 r
= sd_netlink_call(m
->rtnl
, req
, 0, &reply
);
265 for (i
= reply
; i
; i
= sd_netlink_message_next(i
)) {
266 r
= manager_process_address(m
->rtnl
, i
, m
);
274 static int on_network_event(sd_event_source
*s
, int fd
, uint32_t revents
, void *userdata
) {
275 Manager
*m
= userdata
;
282 sd_network_monitor_flush(m
->network_monitor
);
284 HASHMAP_FOREACH(l
, m
->links
, i
) {
287 log_warning_errno(r
, "Failed to update monitor information for %i: %m", l
->ifindex
);
290 (void) manager_write_resolv_conf(m
);
295 static int manager_network_monitor_listen(Manager
*m
) {
300 r
= sd_network_monitor_new(&m
->network_monitor
, NULL
);
304 fd
= sd_network_monitor_get_fd(m
->network_monitor
);
308 events
= sd_network_monitor_get_events(m
->network_monitor
);
312 r
= sd_event_add_io(m
->event
, &m
->network_event_source
, fd
, events
, &on_network_event
, m
);
316 r
= sd_event_source_set_priority(m
->network_event_source
, SD_EVENT_PRIORITY_IMPORTANT
+5);
320 (void) sd_event_source_set_description(m
->network_event_source
, "network-monitor");
325 static int determine_hostname(char **full_hostname
, char **llmnr_hostname
, char **mdns_hostname
) {
326 _cleanup_free_
char *h
= NULL
, *n
= NULL
;
327 char label
[DNS_LABEL_MAX
];
331 assert(full_hostname
);
332 assert(llmnr_hostname
);
333 assert(mdns_hostname
);
335 /* Extract and normalize the first label of the locally
336 * configured hostname, and check it's not "localhost". */
338 h
= gethostname_malloc();
343 r
= dns_label_unescape(&p
, label
, sizeof(label
));
345 return log_error_errno(r
, "Failed to unescape host name: %m");
347 log_error("Couldn't find a single label in hosntame.");
351 k
= dns_label_undo_idna(label
, r
, label
, sizeof(label
));
353 return log_error_errno(k
, "Failed to undo IDNA: %m");
357 if (!utf8_is_valid(label
)) {
358 log_error("System hostname is not UTF-8 clean.");
362 r
= dns_label_escape_new(label
, r
, &n
);
364 return log_error_errno(r
, "Failed to escape host name: %m");
366 if (is_localhost(n
)) {
367 log_debug("System hostname is 'localhost', ignoring.");
371 r
= dns_name_concat(n
, "local", mdns_hostname
);
373 return log_error_errno(r
, "Failed to determine mDNS hostname: %m");
384 static int on_hostname_change(sd_event_source
*es
, int fd
, uint32_t revents
, void *userdata
) {
385 _cleanup_free_
char *full_hostname
= NULL
, *llmnr_hostname
= NULL
, *mdns_hostname
= NULL
;
386 Manager
*m
= userdata
;
391 r
= determine_hostname(&full_hostname
, &llmnr_hostname
, &mdns_hostname
);
393 return 0; /* ignore invalid hostnames */
395 if (streq(full_hostname
, m
->full_hostname
) &&
396 streq(llmnr_hostname
, m
->llmnr_hostname
) &&
397 streq(mdns_hostname
, m
->mdns_hostname
))
400 log_info("System hostname changed to '%s'.", full_hostname
);
402 free_and_replace(m
->full_hostname
, full_hostname
);
403 free_and_replace(m
->llmnr_hostname
, llmnr_hostname
);
404 free_and_replace(m
->mdns_hostname
, mdns_hostname
);
406 manager_refresh_rrs(m
);
411 static int manager_watch_hostname(Manager
*m
) {
416 m
->hostname_fd
= open("/proc/sys/kernel/hostname", O_RDONLY
|O_CLOEXEC
|O_NDELAY
|O_NOCTTY
);
417 if (m
->hostname_fd
< 0) {
418 log_warning_errno(errno
, "Failed to watch hostname: %m");
422 r
= sd_event_add_io(m
->event
, &m
->hostname_event_source
, m
->hostname_fd
, 0, on_hostname_change
, m
);
425 /* kernels prior to 3.2 don't support polling this file. Ignore the failure. */
426 m
->hostname_fd
= safe_close(m
->hostname_fd
);
428 return log_error_errno(r
, "Failed to add hostname event source: %m");
431 (void) sd_event_source_set_description(m
->hostname_event_source
, "hostname");
433 r
= determine_hostname(&m
->full_hostname
, &m
->llmnr_hostname
, &m
->mdns_hostname
);
435 log_info("Defaulting to hostname 'linux'.");
437 m
->full_hostname
= strdup("linux");
438 if (!m
->full_hostname
)
441 m
->llmnr_hostname
= strdup("linux");
442 if (!m
->llmnr_hostname
)
445 m
->mdns_hostname
= strdup("linux.local");
446 if (!m
->mdns_hostname
)
449 log_info("Using system hostname '%s'.", m
->full_hostname
);
454 static int manager_sigusr1(sd_event_source
*s
, const struct signalfd_siginfo
*si
, void *userdata
) {
455 _cleanup_free_
char *buffer
= NULL
;
456 _cleanup_fclose_
FILE *f
= NULL
;
457 Manager
*m
= userdata
;
465 f
= open_memstream(&buffer
, &size
);
469 LIST_FOREACH(scopes
, scope
, m
->dns_scopes
)
470 dns_scope_dump(scope
, f
);
472 if (fflush_and_check(f
) < 0)
475 log_dump(LOG_INFO
, buffer
);
479 static int manager_sigusr2(sd_event_source
*s
, const struct signalfd_siginfo
*si
, void *userdata
) {
480 Manager
*m
= userdata
;
486 manager_flush_caches(m
);
491 int manager_new(Manager
**ret
) {
492 _cleanup_(manager_freep
) Manager
*m
= NULL
;
497 m
= new0(Manager
, 1);
501 m
->llmnr_ipv4_udp_fd
= m
->llmnr_ipv6_udp_fd
= -1;
502 m
->llmnr_ipv4_tcp_fd
= m
->llmnr_ipv6_tcp_fd
= -1;
503 m
->mdns_ipv4_fd
= m
->mdns_ipv6_fd
= -1;
504 m
->dns_stub_udp_fd
= m
->dns_stub_tcp_fd
= -1;
507 m
->llmnr_support
= RESOLVE_SUPPORT_YES
;
508 m
->mdns_support
= RESOLVE_SUPPORT_YES
;
509 m
->dnssec_mode
= DEFAULT_DNSSEC_MODE
;
510 m
->enable_cache
= true;
511 m
->dns_stub_listener_mode
= DNS_STUB_LISTENER_UDP
;
512 m
->read_resolv_conf
= true;
513 m
->need_builtin_fallbacks
= true;
514 m
->etc_hosts_last
= m
->etc_hosts_mtime
= USEC_INFINITY
;
516 r
= dns_trust_anchor_load(&m
->trust_anchor
);
520 r
= manager_parse_config_file(m
);
524 r
= sd_event_default(&m
->event
);
528 sd_event_add_signal(m
->event
, NULL
, SIGTERM
, NULL
, NULL
);
529 sd_event_add_signal(m
->event
, NULL
, SIGINT
, NULL
, NULL
);
531 sd_event_set_watchdog(m
->event
, true);
533 r
= manager_watch_hostname(m
);
537 r
= dns_scope_new(m
, &m
->unicast_scope
, NULL
, DNS_PROTOCOL_DNS
, AF_UNSPEC
);
541 r
= manager_network_monitor_listen(m
);
545 r
= manager_rtnl_listen(m
);
549 r
= manager_connect_bus(m
);
553 (void) sd_event_add_signal(m
->event
, &m
->sigusr1_event_source
, SIGUSR1
, manager_sigusr1
, m
);
554 (void) sd_event_add_signal(m
->event
, &m
->sigusr2_event_source
, SIGUSR2
, manager_sigusr2
, m
);
556 manager_cleanup_saved_user(m
);
564 int manager_start(Manager
*m
) {
569 r
= manager_dns_stub_start(m
);
573 r
= manager_llmnr_start(m
);
577 r
= manager_mdns_start(m
);
584 Manager
*manager_free(Manager
*m
) {
590 dns_server_unlink_all(m
->dns_servers
);
591 dns_server_unlink_all(m
->fallback_dns_servers
);
592 dns_search_domain_unlink_all(m
->search_domains
);
594 while ((l
= hashmap_first(m
->links
)))
597 while (m
->dns_queries
)
598 dns_query_free(m
->dns_queries
);
600 dns_scope_free(m
->unicast_scope
);
602 /* At this point only orphaned streams should remain. All others should have been freed already by their
604 while (m
->dns_streams
)
605 dns_stream_unref(m
->dns_streams
);
607 hashmap_free(m
->links
);
608 hashmap_free(m
->dns_transactions
);
610 sd_event_source_unref(m
->network_event_source
);
611 sd_network_monitor_unref(m
->network_monitor
);
613 sd_netlink_unref(m
->rtnl
);
614 sd_event_source_unref(m
->rtnl_event_source
);
616 manager_llmnr_stop(m
);
617 manager_mdns_stop(m
);
618 manager_dns_stub_stop(m
);
620 sd_bus_slot_unref(m
->prepare_for_sleep_slot
);
621 sd_event_source_unref(m
->bus_retry_event_source
);
622 sd_bus_unref(m
->bus
);
624 sd_event_source_unref(m
->sigusr1_event_source
);
625 sd_event_source_unref(m
->sigusr2_event_source
);
627 sd_event_unref(m
->event
);
629 dns_resource_key_unref(m
->llmnr_host_ipv4_key
);
630 dns_resource_key_unref(m
->llmnr_host_ipv6_key
);
631 dns_resource_key_unref(m
->mdns_host_ipv4_key
);
632 dns_resource_key_unref(m
->mdns_host_ipv6_key
);
634 sd_event_source_unref(m
->hostname_event_source
);
635 safe_close(m
->hostname_fd
);
637 free(m
->full_hostname
);
638 free(m
->llmnr_hostname
);
639 free(m
->mdns_hostname
);
641 dns_trust_anchor_flush(&m
->trust_anchor
);
642 manager_etc_hosts_flush(m
);
647 int manager_recv(Manager
*m
, int fd
, DnsProtocol protocol
, DnsPacket
**ret
) {
648 _cleanup_(dns_packet_unrefp
) DnsPacket
*p
= NULL
;
650 struct cmsghdr header
; /* For alignment */
651 uint8_t buffer
[CMSG_SPACE(MAXSIZE(struct in_pktinfo
, struct in6_pktinfo
))
652 + CMSG_SPACE(int) /* ttl/hoplimit */
653 + EXTRA_CMSG_SPACE
/* kernel appears to require extra buffer space */];
655 union sockaddr_union sa
;
656 struct msghdr mh
= {};
657 struct cmsghdr
*cmsg
;
666 ms
= next_datagram_size_fd(fd
);
670 r
= dns_packet_new(&p
, protocol
, ms
);
674 iov
.iov_base
= DNS_PACKET_DATA(p
);
675 iov
.iov_len
= p
->allocated
;
677 mh
.msg_name
= &sa
.sa
;
678 mh
.msg_namelen
= sizeof(sa
);
681 mh
.msg_control
= &control
;
682 mh
.msg_controllen
= sizeof(control
);
684 l
= recvmsg(fd
, &mh
, 0);
688 if (errno
== EAGAIN
|| errno
== EINTR
)
694 assert(!(mh
.msg_flags
& MSG_CTRUNC
));
695 assert(!(mh
.msg_flags
& MSG_TRUNC
));
697 p
->size
= (size_t) l
;
699 p
->family
= sa
.sa
.sa_family
;
700 p
->ipproto
= IPPROTO_UDP
;
701 if (p
->family
== AF_INET
) {
702 p
->sender
.in
= sa
.in
.sin_addr
;
703 p
->sender_port
= be16toh(sa
.in
.sin_port
);
704 } else if (p
->family
== AF_INET6
) {
705 p
->sender
.in6
= sa
.in6
.sin6_addr
;
706 p
->sender_port
= be16toh(sa
.in6
.sin6_port
);
707 p
->ifindex
= sa
.in6
.sin6_scope_id
;
709 return -EAFNOSUPPORT
;
711 CMSG_FOREACH(cmsg
, &mh
) {
713 if (cmsg
->cmsg_level
== IPPROTO_IPV6
) {
714 assert(p
->family
== AF_INET6
);
716 switch (cmsg
->cmsg_type
) {
719 struct in6_pktinfo
*i
= (struct in6_pktinfo
*) CMSG_DATA(cmsg
);
722 p
->ifindex
= i
->ipi6_ifindex
;
724 p
->destination
.in6
= i
->ipi6_addr
;
729 p
->ttl
= *(int *) CMSG_DATA(cmsg
);
733 } else if (cmsg
->cmsg_level
== IPPROTO_IP
) {
734 assert(p
->family
== AF_INET
);
736 switch (cmsg
->cmsg_type
) {
739 struct in_pktinfo
*i
= (struct in_pktinfo
*) CMSG_DATA(cmsg
);
742 p
->ifindex
= i
->ipi_ifindex
;
744 p
->destination
.in
= i
->ipi_addr
;
749 p
->ttl
= *(int *) CMSG_DATA(cmsg
);
755 /* The Linux kernel sets the interface index to the loopback
756 * device if the packet came from the local host since it
757 * avoids the routing table in such a case. Let's unset the
758 * interface index in such a case. */
759 if (p
->ifindex
== LOOPBACK_IFINDEX
)
762 if (protocol
!= DNS_PROTOCOL_DNS
) {
763 /* If we don't know the interface index still, we look for the
764 * first local interface with a matching address. Yuck! */
766 p
->ifindex
= manager_find_ifindex(m
, p
->family
, &p
->destination
);
775 static int sendmsg_loop(int fd
, struct msghdr
*mh
, int flags
) {
782 if (sendmsg(fd
, mh
, flags
) >= 0)
791 r
= fd_wait_for_event(fd
, POLLOUT
, SEND_TIMEOUT_USEC
);
799 static int write_loop(int fd
, void *message
, size_t length
) {
806 if (write(fd
, message
, length
) >= 0)
815 r
= fd_wait_for_event(fd
, POLLOUT
, SEND_TIMEOUT_USEC
);
823 int manager_write(Manager
*m
, int fd
, DnsPacket
*p
) {
826 log_debug("Sending %s packet with id %" PRIu16
".", DNS_PACKET_QR(p
) ? "response" : "query", DNS_PACKET_ID(p
));
828 r
= write_loop(fd
, DNS_PACKET_DATA(p
), p
->size
);
835 static int manager_ipv4_send(
839 const struct in_addr
*destination
,
841 const struct in_addr
*source
,
843 union sockaddr_union sa
= {
844 .in
.sin_family
= AF_INET
,
847 struct cmsghdr header
; /* For alignment */
848 uint8_t buffer
[CMSG_SPACE(sizeof(struct in_pktinfo
))];
850 struct msghdr mh
= {};
859 iov
.iov_base
= DNS_PACKET_DATA(p
);
860 iov
.iov_len
= p
->size
;
862 sa
.in
.sin_addr
= *destination
;
863 sa
.in
.sin_port
= htobe16(port
),
867 mh
.msg_name
= &sa
.sa
;
868 mh
.msg_namelen
= sizeof(sa
.in
);
871 struct cmsghdr
*cmsg
;
872 struct in_pktinfo
*pi
;
876 mh
.msg_control
= &control
;
877 mh
.msg_controllen
= CMSG_LEN(sizeof(struct in_pktinfo
));
879 cmsg
= CMSG_FIRSTHDR(&mh
);
880 cmsg
->cmsg_len
= mh
.msg_controllen
;
881 cmsg
->cmsg_level
= IPPROTO_IP
;
882 cmsg
->cmsg_type
= IP_PKTINFO
;
884 pi
= (struct in_pktinfo
*) CMSG_DATA(cmsg
);
885 pi
->ipi_ifindex
= ifindex
;
888 pi
->ipi_spec_dst
= *source
;
891 return sendmsg_loop(fd
, &mh
, 0);
894 static int manager_ipv6_send(
898 const struct in6_addr
*destination
,
900 const struct in6_addr
*source
,
903 union sockaddr_union sa
= {
904 .in6
.sin6_family
= AF_INET6
,
907 struct cmsghdr header
; /* For alignment */
908 uint8_t buffer
[CMSG_SPACE(sizeof(struct in6_pktinfo
))];
910 struct msghdr mh
= {};
919 iov
.iov_base
= DNS_PACKET_DATA(p
);
920 iov
.iov_len
= p
->size
;
922 sa
.in6
.sin6_addr
= *destination
;
923 sa
.in6
.sin6_port
= htobe16(port
),
924 sa
.in6
.sin6_scope_id
= ifindex
;
928 mh
.msg_name
= &sa
.sa
;
929 mh
.msg_namelen
= sizeof(sa
.in6
);
932 struct cmsghdr
*cmsg
;
933 struct in6_pktinfo
*pi
;
937 mh
.msg_control
= &control
;
938 mh
.msg_controllen
= CMSG_LEN(sizeof(struct in6_pktinfo
));
940 cmsg
= CMSG_FIRSTHDR(&mh
);
941 cmsg
->cmsg_len
= mh
.msg_controllen
;
942 cmsg
->cmsg_level
= IPPROTO_IPV6
;
943 cmsg
->cmsg_type
= IPV6_PKTINFO
;
945 pi
= (struct in6_pktinfo
*) CMSG_DATA(cmsg
);
946 pi
->ipi6_ifindex
= ifindex
;
949 pi
->ipi6_addr
= *source
;
952 return sendmsg_loop(fd
, &mh
, 0);
960 const union in_addr_union
*destination
,
962 const union in_addr_union
*source
,
971 log_debug("Sending %s packet with id %" PRIu16
" on interface %i/%s.", DNS_PACKET_QR(p
) ? "response" : "query", DNS_PACKET_ID(p
), ifindex
, af_to_name(family
));
973 if (family
== AF_INET
)
974 return manager_ipv4_send(m
, fd
, ifindex
, &destination
->in
, port
, &source
->in
, p
);
975 if (family
== AF_INET6
)
976 return manager_ipv6_send(m
, fd
, ifindex
, &destination
->in6
, port
, &source
->in6
, p
);
978 return -EAFNOSUPPORT
;
981 uint32_t manager_find_mtu(Manager
*m
) {
986 /* If we don't know on which link a DNS packet would be
987 * delivered, let's find the largest MTU that works on all
988 * interfaces we know of */
990 HASHMAP_FOREACH(l
, m
->links
, i
) {
994 if (mtu
<= 0 || l
->mtu
< mtu
)
1001 int manager_find_ifindex(Manager
*m
, int family
, const union in_addr_union
*in_addr
) {
1006 a
= manager_find_link_address(m
, family
, in_addr
);
1008 return a
->link
->ifindex
;
1013 void manager_refresh_rrs(Manager
*m
) {
1019 m
->llmnr_host_ipv4_key
= dns_resource_key_unref(m
->llmnr_host_ipv4_key
);
1020 m
->llmnr_host_ipv6_key
= dns_resource_key_unref(m
->llmnr_host_ipv6_key
);
1021 m
->mdns_host_ipv4_key
= dns_resource_key_unref(m
->mdns_host_ipv4_key
);
1022 m
->mdns_host_ipv6_key
= dns_resource_key_unref(m
->mdns_host_ipv6_key
);
1024 HASHMAP_FOREACH(l
, m
->links
, i
) {
1025 link_add_rrs(l
, true);
1026 link_add_rrs(l
, false);
1030 int manager_next_hostname(Manager
*m
) {
1038 p
= strchr(m
->llmnr_hostname
, 0);
1041 while (p
> m
->llmnr_hostname
) {
1042 if (!strchr("0123456789", p
[-1]))
1048 if (*p
== 0 || safe_atou64(p
, &u
) < 0 || u
<= 0)
1051 /* Add a random number to the old value. This way we can avoid
1052 * that two hosts pick the same hostname, win on IPv4 and lose
1053 * on IPv6 (or vice versa), and pick the same hostname
1054 * replacement hostname, ad infinitum. We still want the
1055 * numbers to go up monotonically, hence we just add a random
1058 random_bytes(&a
, sizeof(a
));
1061 if (asprintf(&h
, "%.*s%" PRIu64
, (int) (p
- m
->llmnr_hostname
), m
->llmnr_hostname
, u
) < 0)
1064 r
= dns_name_concat(h
, "local", &k
);
1070 log_info("Hostname conflict, changing published hostname from '%s' to '%s'.", m
->llmnr_hostname
, h
);
1072 free(m
->llmnr_hostname
);
1073 m
->llmnr_hostname
= h
;
1075 free(m
->mdns_hostname
);
1076 m
->mdns_hostname
= k
;
1078 manager_refresh_rrs(m
);
1083 LinkAddress
* manager_find_link_address(Manager
*m
, int family
, const union in_addr_union
*in_addr
) {
1089 HASHMAP_FOREACH(l
, m
->links
, i
) {
1092 a
= link_find_address(l
, family
, in_addr
);
1100 bool manager_our_packet(Manager
*m
, DnsPacket
*p
) {
1104 return !!manager_find_link_address(m
, p
->family
, &p
->sender
);
1107 DnsScope
* manager_find_scope(Manager
*m
, DnsPacket
*p
) {
1113 l
= hashmap_get(m
->links
, INT_TO_PTR(p
->ifindex
));
1117 switch (p
->protocol
) {
1118 case DNS_PROTOCOL_LLMNR
:
1119 if (p
->family
== AF_INET
)
1120 return l
->llmnr_ipv4_scope
;
1121 else if (p
->family
== AF_INET6
)
1122 return l
->llmnr_ipv6_scope
;
1126 case DNS_PROTOCOL_MDNS
:
1127 if (p
->family
== AF_INET
)
1128 return l
->mdns_ipv4_scope
;
1129 else if (p
->family
== AF_INET6
)
1130 return l
->mdns_ipv6_scope
;
1141 void manager_verify_all(Manager
*m
) {
1146 LIST_FOREACH(scopes
, s
, m
->dns_scopes
)
1147 dns_zone_verify_all(&s
->zone
);
1150 int manager_is_own_hostname(Manager
*m
, const char *name
) {
1156 if (m
->llmnr_hostname
) {
1157 r
= dns_name_equal(name
, m
->llmnr_hostname
);
1162 if (m
->mdns_hostname
) {
1163 r
= dns_name_equal(name
, m
->mdns_hostname
);
1168 if (m
->full_hostname
)
1169 return dns_name_equal(name
, m
->full_hostname
);
1174 int manager_compile_dns_servers(Manager
*m
, OrderedSet
**dns
) {
1183 r
= ordered_set_ensure_allocated(dns
, &dns_server_hash_ops
);
1187 /* First add the system-wide servers and domains */
1188 LIST_FOREACH(servers
, s
, m
->dns_servers
) {
1189 r
= ordered_set_put(*dns
, s
);
1196 /* Then, add the per-link servers */
1197 HASHMAP_FOREACH(l
, m
->links
, i
) {
1198 LIST_FOREACH(servers
, s
, l
->dns_servers
) {
1199 r
= ordered_set_put(*dns
, s
);
1207 /* If we found nothing, add the fallback servers */
1208 if (ordered_set_isempty(*dns
)) {
1209 LIST_FOREACH(servers
, s
, m
->fallback_dns_servers
) {
1210 r
= ordered_set_put(*dns
, s
);
1221 /* filter_route is a tri-state:
1223 * = 0 or false: return only domains which should be used for searching
1224 * > 0 or true: return only domains which are for routing only
1226 int manager_compile_search_domains(Manager
*m
, OrderedSet
**domains
, int filter_route
) {
1235 r
= ordered_set_ensure_allocated(domains
, &dns_name_hash_ops
);
1239 LIST_FOREACH(domains
, d
, m
->search_domains
) {
1241 if (filter_route
>= 0 &&
1242 d
->route_only
!= !!filter_route
)
1245 r
= ordered_set_put(*domains
, d
->name
);
1252 HASHMAP_FOREACH(l
, m
->links
, i
) {
1254 LIST_FOREACH(domains
, d
, l
->search_domains
) {
1256 if (filter_route
>= 0 &&
1257 d
->route_only
!= !!filter_route
)
1260 r
= ordered_set_put(*domains
, d
->name
);
1271 DnssecMode
manager_get_dnssec_mode(Manager
*m
) {
1274 if (m
->dnssec_mode
!= _DNSSEC_MODE_INVALID
)
1275 return m
->dnssec_mode
;
1280 bool manager_dnssec_supported(Manager
*m
) {
1287 if (manager_get_dnssec_mode(m
) == DNSSEC_NO
)
1290 server
= manager_get_dns_server(m
);
1291 if (server
&& !dns_server_dnssec_supported(server
))
1294 HASHMAP_FOREACH(l
, m
->links
, i
)
1295 if (!link_dnssec_supported(l
))
1301 void manager_dnssec_verdict(Manager
*m
, DnssecVerdict verdict
, const DnsResourceKey
*key
) {
1303 assert(verdict
>= 0);
1304 assert(verdict
< _DNSSEC_VERDICT_MAX
);
1306 if (log_get_max_level() >= LOG_DEBUG
) {
1307 char s
[DNS_RESOURCE_KEY_STRING_MAX
];
1309 log_debug("Found verdict for lookup %s: %s",
1310 dns_resource_key_to_string(key
, s
, sizeof s
),
1311 dnssec_verdict_to_string(verdict
));
1314 m
->n_dnssec_verdict
[verdict
]++;
1317 bool manager_routable(Manager
*m
, int family
) {
1323 /* Returns true if the host has at least one interface with a routable address of the specified type */
1325 HASHMAP_FOREACH(l
, m
->links
, i
)
1326 if (link_relevant(l
, family
, false))
1332 void manager_flush_caches(Manager
*m
) {
1337 LIST_FOREACH(scopes
, scope
, m
->dns_scopes
)
1338 dns_cache_flush(&scope
->cache
);
1340 log_info("Flushed all caches.");
1343 void manager_cleanup_saved_user(Manager
*m
) {
1344 _cleanup_closedir_
DIR *d
= NULL
;
1350 /* Clean up all saved per-link files in /run/systemd/resolve/netif/ that don't have a matching interface
1351 * anymore. These files are created to persist settings pushed in by the user via the bus, so that resolved can
1352 * be restarted without losing this data. */
1354 d
= opendir("/run/systemd/resolve/netif/");
1356 if (errno
== ENOENT
)
1359 log_warning_errno(errno
, "Failed to open interface directory: %m");
1363 FOREACH_DIRENT_ALL(de
, d
, log_error_errno(errno
, "Failed to read interface directory: %m")) {
1364 _cleanup_free_
char *p
= NULL
;
1368 if (!IN_SET(de
->d_type
, DT_UNKNOWN
, DT_REG
))
1371 if (dot_or_dot_dot(de
->d_name
))
1374 r
= parse_ifindex(de
->d_name
, &ifindex
);
1375 if (r
< 0) /* Probably some temporary file from a previous run. Delete it */
1378 l
= hashmap_get(m
->links
, INT_TO_PTR(ifindex
));
1379 if (!l
) /* link vanished */
1382 if (l
->is_managed
) /* now managed by networkd, hence the bus settings are useless */
1388 p
= strappend("/run/systemd/resolve/netif/", de
->d_name
);