5 * Copyright (C) 2012 Intel Corporation. All rights reserved.
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License version 2 as
9 * published by the Free Software Foundation.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
31 #include <connman/log.h>
32 #include <gweb/gresolv.h>
35 #include "../src/connman.h"
36 #include "connman/agent.h"
37 #include "connman/vpn-dbus.h"
38 #include "vpn-provider.h"
41 static DBusConnection *connection;
42 static GHashTable *provider_hash;
43 static GSList *driver_list;
44 static int configuration_count;
45 static gboolean handle_routes;
63 enum vpn_provider_state state;
72 struct vpn_provider_driver *driver;
74 GHashTable *setting_strings;
75 GHashTable *user_routes;
76 GSList *user_networks;
79 struct vpn_ipconfig *ipconfig_ipv4;
80 struct vpn_ipconfig *ipconfig_ipv6;
87 static void free_route(gpointer data)
89 struct vpn_route *route = data;
91 g_free(route->network);
92 g_free(route->netmask);
93 g_free(route->gateway);
98 static void free_setting(gpointer data)
100 struct vpn_setting *setting = data;
102 g_free(setting->value);
106 static void append_route(DBusMessageIter *iter, void *user_data)
108 struct vpn_route *route = user_data;
109 DBusMessageIter item;
112 connman_dbus_dict_open(iter, &item);
117 if (route->family == AF_INET)
119 else if (route->family == AF_INET6)
123 connman_dbus_dict_append_basic(&item, "ProtocolFamily",
124 DBUS_TYPE_INT32, &family);
126 if (route->network != NULL)
127 connman_dbus_dict_append_basic(&item, "Network",
128 DBUS_TYPE_STRING, &route->network);
130 if (route->netmask != NULL)
131 connman_dbus_dict_append_basic(&item, "Netmask",
132 DBUS_TYPE_STRING, &route->netmask);
134 if (route->gateway != NULL)
135 connman_dbus_dict_append_basic(&item, "Gateway",
136 DBUS_TYPE_STRING, &route->gateway);
139 connman_dbus_dict_close(iter, &item);
142 static void append_routes(DBusMessageIter *iter, void *user_data)
144 GHashTable *routes = user_data;
148 if (routes == NULL) {
149 append_route(iter, NULL);
153 g_hash_table_iter_init(&hash, routes);
155 while (g_hash_table_iter_next(&hash, &key, &value) == TRUE) {
156 DBusMessageIter dict;
158 dbus_message_iter_open_container(iter, DBUS_TYPE_STRUCT, NULL,
160 append_route(&dict, value);
161 dbus_message_iter_close_container(iter, &dict);
165 static void send_routes(struct vpn_provider *provider, GHashTable *routes,
168 connman_dbus_property_changed_array(provider->path,
169 VPN_CONNECTION_INTERFACE,
171 DBUS_TYPE_DICT_ENTRY,
176 static int provider_routes_changed(struct vpn_provider *provider)
178 DBG("provider %p", provider);
180 send_routes(provider, provider->routes, "ServerRoutes");
185 static GSList *read_route_dict(GSList *routes, DBusMessageIter *dicts)
187 DBusMessageIter dict, value, entry;
188 const char *network, *netmask, *gateway;
189 struct vpn_route *route;
193 dbus_message_iter_recurse(dicts, &entry);
195 network = netmask = gateway = NULL;
198 while (dbus_message_iter_get_arg_type(&entry) == DBUS_TYPE_DICT_ENTRY) {
200 dbus_message_iter_recurse(&entry, &dict);
201 dbus_message_iter_get_basic(&dict, &key);
203 dbus_message_iter_next(&dict);
204 dbus_message_iter_recurse(&dict, &value);
206 type = dbus_message_iter_get_arg_type(&value);
209 case DBUS_TYPE_STRING:
210 if (g_str_equal(key, "ProtocolFamily") == TRUE)
211 dbus_message_iter_get_basic(&value, &family);
212 else if (g_str_equal(key, "Network") == TRUE)
213 dbus_message_iter_get_basic(&value, &network);
214 else if (g_str_equal(key, "Netmask") == TRUE)
215 dbus_message_iter_get_basic(&value, &netmask);
216 else if (g_str_equal(key, "Gateway") == TRUE)
217 dbus_message_iter_get_basic(&value, &gateway);
221 dbus_message_iter_next(&entry);
224 DBG("family %d network %s netmask %s gateway %s", family,
225 network, netmask, gateway);
227 if (network == NULL || netmask == NULL) {
228 DBG("Ignoring route as network/netmask is missing");
232 route = g_try_new(struct vpn_route, 1);
234 g_slist_free_full(routes, free_route);
238 if (family == PF_UNSPEC) {
239 family = connman_inet_check_ipaddress(network);
241 DBG("Cannot get address family of %s (%d/%s)", network,
242 family, gai_strerror(family));
261 route->family = family;
262 route->network = g_strdup(network);
263 route->netmask = g_strdup(netmask);
264 route->gateway = g_strdup(gateway);
266 routes = g_slist_prepend(routes, route);
270 static GSList *get_user_networks(DBusMessageIter *array)
272 DBusMessageIter entry;
275 while (dbus_message_iter_get_arg_type(array) == DBUS_TYPE_ARRAY) {
277 dbus_message_iter_recurse(array, &entry);
279 while (dbus_message_iter_get_arg_type(&entry) ==
281 DBusMessageIter dicts;
283 dbus_message_iter_recurse(&entry, &dicts);
285 while (dbus_message_iter_get_arg_type(&dicts) ==
288 list = read_route_dict(list, &dicts);
289 dbus_message_iter_next(&dicts);
292 dbus_message_iter_next(&entry);
295 dbus_message_iter_next(array);
301 static void set_user_networks(struct vpn_provider *provider, GSList *networks)
305 for (list = networks; list != NULL; list = g_slist_next(list)) {
306 struct vpn_route *route = list->data;
308 if (__vpn_provider_append_user_route(provider,
309 route->family, route->network,
310 route->netmask, route->gateway) != 0)
315 static void del_routes(struct vpn_provider *provider)
320 g_hash_table_iter_init(&hash, provider->user_routes);
321 while (handle_routes == TRUE && g_hash_table_iter_next(&hash,
322 &key, &value) == TRUE) {
323 struct vpn_route *route = value;
324 if (route->family == AF_INET6) {
325 unsigned char prefixlen = atoi(route->netmask);
326 connman_inet_del_ipv6_network_route(provider->index,
330 connman_inet_del_host_route(provider->index,
334 g_hash_table_remove_all(provider->user_routes);
335 g_slist_free_full(provider->user_networks, free_route);
336 provider->user_networks = NULL;
339 static void send_value(const char *path, const char *key, const char *value)
341 const char *empty = "";
349 connman_dbus_property_changed_basic(path,
350 VPN_CONNECTION_INTERFACE,
356 static gboolean provider_send_changed(gpointer data)
358 struct vpn_provider *provider = data;
360 provider_routes_changed(provider);
362 provider->notify_id = 0;
367 static void provider_schedule_changed(struct vpn_provider *provider)
369 if (provider->notify_id != 0)
370 g_source_remove(provider->notify_id);
372 provider->notify_id = g_timeout_add(100, provider_send_changed,
376 static DBusMessage *set_property(DBusConnection *conn, DBusMessage *msg,
379 struct vpn_provider *provider = data;
380 DBusMessageIter iter, value;
384 DBG("conn %p", conn);
386 if (dbus_message_iter_init(msg, &iter) == FALSE)
387 return __connman_error_invalid_arguments(msg);
389 if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_STRING)
390 return __connman_error_invalid_arguments(msg);
392 dbus_message_iter_get_basic(&iter, &name);
393 dbus_message_iter_next(&iter);
395 if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_VARIANT)
396 return __connman_error_invalid_arguments(msg);
398 dbus_message_iter_recurse(&iter, &value);
400 type = dbus_message_iter_get_arg_type(&value);
402 if (g_str_equal(name, "UserRoutes") == TRUE) {
405 if (type != DBUS_TYPE_ARRAY)
406 return __connman_error_invalid_arguments(msg);
408 networks = get_user_networks(&value);
409 if (networks != NULL) {
410 del_routes(provider);
411 provider->user_networks = networks;
412 set_user_networks(provider, provider->user_networks);
414 if (handle_routes == FALSE)
415 send_routes(provider, provider->user_routes,
419 return __connman_error_invalid_property(msg);
421 return g_dbus_create_reply(msg, DBUS_TYPE_INVALID);
424 static DBusMessage *clear_property(DBusConnection *conn, DBusMessage *msg,
427 struct vpn_provider *provider = data;
430 DBG("conn %p", conn);
432 dbus_message_get_args(msg, NULL, DBUS_TYPE_STRING, &name,
435 if (g_str_equal(name, "UserRoutes") == TRUE) {
436 del_routes(provider);
438 if (handle_routes == FALSE)
439 send_routes(provider, provider->user_routes, name);
441 return __connman_error_invalid_property(msg);
444 return g_dbus_create_reply(msg, DBUS_TYPE_INVALID);
447 static DBusMessage *do_connect(DBusConnection *conn, DBusMessage *msg,
450 struct vpn_provider *provider = data;
453 DBG("conn %p provider %p", conn, provider);
455 err = __vpn_provider_connect(provider, msg);
457 return __connman_error_failed(msg, -err);
462 static DBusMessage *do_disconnect(DBusConnection *conn, DBusMessage *msg,
465 struct vpn_provider *provider = data;
468 DBG("conn %p provider %p", conn, provider);
470 err = __vpn_provider_disconnect(provider);
471 if (err < 0 && err != -EINPROGRESS)
472 return __connman_error_failed(msg, -err);
474 return g_dbus_create_reply(msg, DBUS_TYPE_INVALID);
477 static const GDBusMethodTable connection_methods[] = {
478 { GDBUS_METHOD("SetProperty",
479 GDBUS_ARGS({ "name", "s" }, { "value", "v" }),
480 NULL, set_property) },
481 { GDBUS_METHOD("ClearProperty",
482 GDBUS_ARGS({ "name", "s" }), NULL,
484 { GDBUS_ASYNC_METHOD("Connect", NULL, NULL, do_connect) },
485 { GDBUS_METHOD("Disconnect", NULL, NULL, do_disconnect) },
489 static const GDBusSignalTable connection_signals[] = {
490 { GDBUS_SIGNAL("PropertyChanged",
491 GDBUS_ARGS({ "name", "s" }, { "value", "v" })) },
495 static void resolv_result(GResolvResultStatus status,
496 char **results, gpointer user_data)
498 struct vpn_provider *provider = user_data;
500 DBG("status %d", status);
502 if (status == G_RESOLV_RESULT_STATUS_SUCCESS && results != NULL &&
503 g_strv_length(results) > 0)
504 provider->host_ip = g_strdupv(results);
506 vpn_provider_unref(provider);
509 static void provider_resolv_host_addr(struct vpn_provider *provider)
511 if (provider->host == NULL)
514 if (connman_inet_check_ipaddress(provider->host) > 0)
517 if (provider->host_ip != NULL)
521 * If the hostname is not numeric, try to resolv it. We do not wait
522 * the result as it might take some time. We will get the result
523 * before VPN will feed routes to us because VPN client will need
524 * the IP address also before VPN connection can be established.
526 provider->resolv = g_resolv_new(0);
527 if (provider->resolv == NULL) {
528 DBG("Cannot resolv %s", provider->host);
532 DBG("Trying to resolv %s", provider->host);
534 vpn_provider_ref(provider);
536 g_resolv_lookup_hostname(provider->resolv, provider->host,
537 resolv_result, provider);
540 void __vpn_provider_append_properties(struct vpn_provider *provider,
541 DBusMessageIter *iter)
543 if (provider->host != NULL)
544 connman_dbus_dict_append_basic(iter, "Host",
545 DBUS_TYPE_STRING, &provider->host);
547 if (provider->domain != NULL)
548 connman_dbus_dict_append_basic(iter, "Domain",
549 DBUS_TYPE_STRING, &provider->domain);
551 if (provider->type != NULL)
552 connman_dbus_dict_append_basic(iter, "Type", DBUS_TYPE_STRING,
556 int __vpn_provider_append_user_route(struct vpn_provider *provider,
557 int family, const char *network,
558 const char *netmask, const char *gateway)
560 struct vpn_route *route;
561 char *key = g_strdup_printf("%d/%s/%s/%s", family, network,
562 netmask, gateway != NULL ? gateway : "");
564 DBG("family %d network %s netmask %s gw %s", family, network,
567 route = g_hash_table_lookup(provider->user_routes, key);
569 route = g_try_new0(struct vpn_route, 1);
571 connman_error("out of memory");
575 route->family = family;
576 route->network = g_strdup(network);
577 route->netmask = g_strdup(netmask);
578 route->gateway = g_strdup(gateway);
580 g_hash_table_replace(provider->user_routes, key, route);
587 static struct vpn_route *get_route(char *route_str)
589 char **elems = g_strsplit(route_str, "/", 0);
590 char *network, *netmask, *gateway, *family_str;
591 int family = PF_UNSPEC;
592 struct vpn_route *route = NULL;
597 family_str = elems[0];
600 if (network == NULL || network[0] == '\0')
604 if (netmask == NULL || netmask[0] == '\0')
609 route = g_try_new0(struct vpn_route, 1);
613 if (family_str[0] == '\0' || atoi(family_str) == 0) {
616 switch (family_str[0]) {
626 if (g_strrstr(network, ":") != NULL) {
627 if (family != PF_UNSPEC && family != AF_INET6)
628 DBG("You have IPv6 address but you have non IPv6 route");
629 } else if (g_strrstr(network, ".") != NULL) {
630 if (family != PF_UNSPEC && family != AF_INET)
631 DBG("You have IPv4 address but you have non IPv4 route");
633 if (g_strrstr(netmask, ".") == NULL) {
634 /* We have netmask length */
636 struct in_addr netmask_in;
637 unsigned char prefix_len = 32;
639 if (netmask != NULL) {
641 long int value = strtol(netmask, &ptr, 10);
642 if (ptr != netmask && *ptr == '\0' &&
647 addr = 0xffffffff << (32 - prefix_len);
648 netmask_in.s_addr = htonl(addr);
649 netmask = inet_ntoa(netmask_in);
651 DBG("network %s netmask %s", network, netmask);
655 if (family == PF_UNSPEC) {
656 family = connman_inet_check_ipaddress(network);
657 if (family < 0 || family == PF_UNSPEC)
661 route->family = family;
662 route->network = g_strdup(network);
663 route->netmask = g_strdup(netmask);
664 route->gateway = g_strdup(gateway);
671 static GSList *get_routes(gchar **networks)
673 struct vpn_route *route;
674 GSList *routes = NULL;
677 for (i = 0; networks[i] != NULL; i++) {
678 route = get_route(networks[i]);
680 routes = g_slist_prepend(routes, route);
686 static int provider_load_from_keyfile(struct vpn_provider *provider,
692 gsize length, num_user_networks;
693 gchar **networks = NULL;
695 settings = g_key_file_get_keys(keyfile, provider->identifier, &length,
697 if (settings == NULL) {
698 g_key_file_free(keyfile);
702 while (idx < length) {
705 if (g_str_equal(key, "Networks") == TRUE) {
706 networks = g_key_file_get_string_list(keyfile,
707 provider->identifier,
711 provider->user_networks = get_routes(networks);
714 value = g_key_file_get_string(keyfile,
715 provider->identifier,
717 vpn_provider_set_string(provider, key,
724 g_strfreev(settings);
725 g_strfreev(networks);
727 if (provider->user_networks != NULL)
728 set_user_networks(provider, provider->user_networks);
734 static int vpn_provider_load(struct vpn_provider *provider)
738 DBG("provider %p", provider);
740 keyfile = __connman_storage_load_provider(provider->identifier);
744 provider_load_from_keyfile(provider, keyfile);
746 g_key_file_free(keyfile);
750 static gchar **create_network_list(GSList *networks, gsize *count)
753 gchar **result = NULL;
754 unsigned int num_elems = 0;
756 for (list = networks; list != NULL; list = g_slist_next(list)) {
757 struct vpn_route *route = list->data;
760 result = g_try_realloc(result,
761 (num_elems + 1) * sizeof(gchar *));
765 switch (route->family) {
777 result[num_elems] = g_strdup_printf("%d/%s/%s/%s",
778 family, route->network, route->netmask,
779 route->gateway == NULL ? "" : route->gateway);
784 result = g_try_realloc(result, (num_elems + 1) * sizeof(gchar *));
788 result[num_elems] = NULL;
793 static int vpn_provider_save(struct vpn_provider *provider)
797 DBG("provider %p", provider);
799 keyfile = g_key_file_new();
803 g_key_file_set_string(keyfile, provider->identifier,
804 "Name", provider->name);
805 g_key_file_set_string(keyfile, provider->identifier,
806 "Type", provider->type);
807 g_key_file_set_string(keyfile, provider->identifier,
808 "Host", provider->host);
809 g_key_file_set_string(keyfile, provider->identifier,
810 "VPN.Domain", provider->domain);
811 if (provider->user_networks != NULL) {
815 networks = create_network_list(provider->user_networks,
817 if (networks != NULL) {
818 g_key_file_set_string_list(keyfile,
819 provider->identifier,
821 (const gchar ** const)networks,
823 g_strfreev(networks);
827 if (provider->config_file != NULL && strlen(provider->config_file) > 0)
828 g_key_file_set_string(keyfile, provider->identifier,
829 "Config.file", provider->config_file);
831 if (provider->config_entry != NULL &&
832 strlen(provider->config_entry) > 0)
833 g_key_file_set_string(keyfile, provider->identifier,
834 "Config.ident", provider->config_entry);
836 if (provider->driver != NULL && provider->driver->save != NULL)
837 provider->driver->save(provider, keyfile);
839 __connman_storage_save_provider(keyfile, provider->identifier);
840 g_key_file_free(keyfile);
845 struct vpn_provider *__vpn_provider_lookup(const char *identifier)
847 struct vpn_provider *provider = NULL;
849 provider = g_hash_table_lookup(provider_hash, identifier);
854 static gboolean match_driver(struct vpn_provider *provider,
855 struct vpn_provider_driver *driver)
857 if (g_strcmp0(driver->name, provider->type) == 0)
863 static int provider_probe(struct vpn_provider *provider)
867 DBG("provider %p driver %p name %s", provider, provider->driver,
870 if (provider->driver != NULL)
873 for (list = driver_list; list; list = list->next) {
874 struct vpn_provider_driver *driver = list->data;
876 if (match_driver(provider, driver) == FALSE)
879 DBG("driver %p name %s", driver, driver->name);
881 if (driver->probe != NULL && driver->probe(provider) == 0) {
882 provider->driver = driver;
887 if (provider->driver == NULL)
893 static void provider_remove(struct vpn_provider *provider)
895 if (provider->driver != NULL) {
896 provider->driver->remove(provider);
897 provider->driver = NULL;
901 static int provider_register(struct vpn_provider *provider)
903 return provider_probe(provider);
906 static void provider_unregister(struct vpn_provider *provider)
908 provider_remove(provider);
911 struct vpn_provider *
912 vpn_provider_ref_debug(struct vpn_provider *provider,
913 const char *file, int line, const char *caller)
915 DBG("%p ref %d by %s:%d:%s()", provider, provider->refcount + 1,
918 __sync_fetch_and_add(&provider->refcount, 1);
923 static void provider_destruct(struct vpn_provider *provider)
925 DBG("provider %p", provider);
927 if (provider->notify_id != 0)
928 g_source_remove(provider->notify_id);
930 g_free(provider->name);
931 g_free(provider->type);
932 g_free(provider->host);
933 g_free(provider->domain);
934 g_free(provider->identifier);
935 g_free(provider->path);
936 g_slist_free_full(provider->user_networks, free_route);
937 g_strfreev(provider->nameservers);
938 g_hash_table_destroy(provider->routes);
939 g_hash_table_destroy(provider->user_routes);
940 g_hash_table_destroy(provider->setting_strings);
941 if (provider->resolv != NULL) {
942 g_resolv_unref(provider->resolv);
943 provider->resolv = NULL;
945 __vpn_ipconfig_unref(provider->ipconfig_ipv4);
946 __vpn_ipconfig_unref(provider->ipconfig_ipv6);
948 g_strfreev(provider->host_ip);
949 g_free(provider->config_file);
950 g_free(provider->config_entry);
954 void vpn_provider_unref_debug(struct vpn_provider *provider,
955 const char *file, int line, const char *caller)
957 DBG("%p ref %d by %s:%d:%s()", provider, provider->refcount - 1,
960 if (__sync_fetch_and_sub(&provider->refcount, 1) != 1)
963 provider_remove(provider);
965 provider_destruct(provider);
968 static void configuration_count_add(void)
970 DBG("count %d", configuration_count + 1);
972 __sync_fetch_and_add(&configuration_count, 1);
975 static void configuration_count_del(void)
977 DBG("count %d", configuration_count - 1);
979 if (__sync_fetch_and_sub(&configuration_count, 1) != 1)
985 int __vpn_provider_disconnect(struct vpn_provider *provider)
989 DBG("provider %p", provider);
991 if (provider->driver != NULL && provider->driver->disconnect != NULL)
992 err = provider->driver->disconnect(provider);
996 if (err == -EINPROGRESS)
997 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_CONNECT);
1002 static void connect_cb(struct vpn_provider *provider, void *user_data,
1005 DBusMessage *pending = user_data;
1007 DBG("provider %p user %p error %d", provider, user_data, error);
1010 DBusMessage *reply = __connman_error_failed(pending, error);
1012 g_dbus_send_message(connection, reply);
1014 vpn_provider_indicate_error(provider,
1015 VPN_PROVIDER_ERROR_CONNECT_FAILED);
1016 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_FAILURE);
1018 g_dbus_send_reply(connection, pending, DBUS_TYPE_INVALID);
1020 dbus_message_unref(pending);
1023 int __vpn_provider_connect(struct vpn_provider *provider, DBusMessage *msg)
1027 DBG("provider %p", provider);
1029 if (provider->driver != NULL && provider->driver->connect != NULL) {
1030 dbus_message_ref(msg);
1031 err = provider->driver->connect(provider, connect_cb, msg);
1035 if (err == -EINPROGRESS)
1036 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_CONNECT);
1041 static void connection_removed_signal(struct vpn_provider *provider)
1043 DBusMessage *signal;
1044 DBusMessageIter iter;
1046 signal = dbus_message_new_signal(VPN_MANAGER_PATH,
1047 VPN_MANAGER_INTERFACE, "ConnectionRemoved");
1051 dbus_message_iter_init_append(signal, &iter);
1052 dbus_message_iter_append_basic(&iter, DBUS_TYPE_OBJECT_PATH,
1054 dbus_connection_send(connection, signal, NULL);
1055 dbus_message_unref(signal);
1058 static char *get_ident(const char *path)
1065 pos = strrchr(path, '/');
1072 int __vpn_provider_remove(const char *path)
1074 struct vpn_provider *provider;
1077 DBG("path %s", path);
1079 ident = get_ident(path);
1081 provider = __vpn_provider_lookup(ident);
1082 if (provider != NULL)
1083 return __vpn_provider_delete(provider);
1088 int __vpn_provider_delete(struct vpn_provider *provider)
1090 DBG("Deleting VPN %s", provider->identifier);
1092 connection_removed_signal(provider);
1094 provider_unregister(provider);
1096 __connman_storage_remove_provider(provider->identifier);
1098 g_hash_table_remove(provider_hash, provider->identifier);
1103 static void append_ipv4(DBusMessageIter *iter, void *user_data)
1105 struct vpn_provider *provider = user_data;
1106 const char *address, *gateway, *peer;
1108 address = __vpn_ipconfig_get_local(provider->ipconfig_ipv4);
1109 if (address != NULL) {
1111 struct in_addr netmask;
1115 prefixlen = __vpn_ipconfig_get_prefixlen(
1116 provider->ipconfig_ipv4);
1118 addr = 0xffffffff << (32 - prefixlen);
1119 netmask.s_addr = htonl(addr);
1120 mask = inet_ntoa(netmask);
1122 connman_dbus_dict_append_basic(iter, "Address",
1123 DBUS_TYPE_STRING, &address);
1125 connman_dbus_dict_append_basic(iter, "Netmask",
1126 DBUS_TYPE_STRING, &mask);
1129 gateway = __vpn_ipconfig_get_gateway(provider->ipconfig_ipv4);
1130 if (gateway != NULL)
1131 connman_dbus_dict_append_basic(iter, "Gateway",
1132 DBUS_TYPE_STRING, &gateway);
1134 peer = __vpn_ipconfig_get_peer(provider->ipconfig_ipv4);
1136 connman_dbus_dict_append_basic(iter, "Peer",
1137 DBUS_TYPE_STRING, &peer);
1140 static void append_ipv6(DBusMessageIter *iter, void *user_data)
1142 struct vpn_provider *provider = user_data;
1143 const char *address, *gateway, *peer;
1145 address = __vpn_ipconfig_get_local(provider->ipconfig_ipv6);
1146 if (address != NULL) {
1147 unsigned char prefixlen;
1149 connman_dbus_dict_append_basic(iter, "Address",
1150 DBUS_TYPE_STRING, &address);
1152 prefixlen = __vpn_ipconfig_get_prefixlen(
1153 provider->ipconfig_ipv6);
1155 connman_dbus_dict_append_basic(iter, "PrefixLength",
1156 DBUS_TYPE_BYTE, &prefixlen);
1159 gateway = __vpn_ipconfig_get_gateway(provider->ipconfig_ipv6);
1160 if (gateway != NULL)
1161 connman_dbus_dict_append_basic(iter, "Gateway",
1162 DBUS_TYPE_STRING, &gateway);
1164 peer = __vpn_ipconfig_get_peer(provider->ipconfig_ipv6);
1166 connman_dbus_dict_append_basic(iter, "Peer",
1167 DBUS_TYPE_STRING, &peer);
1170 static const char *state2string(enum vpn_provider_state state)
1173 case VPN_PROVIDER_STATE_UNKNOWN:
1175 case VPN_PROVIDER_STATE_IDLE:
1177 case VPN_PROVIDER_STATE_CONNECT:
1178 return "configuration";
1179 case VPN_PROVIDER_STATE_READY:
1181 case VPN_PROVIDER_STATE_DISCONNECT:
1182 return "disconnect";
1183 case VPN_PROVIDER_STATE_FAILURE:
1190 static int provider_indicate_state(struct vpn_provider *provider,
1191 enum vpn_provider_state state)
1194 enum vpn_provider_state old_state;
1196 str = state2string(state);
1197 DBG("provider %p state %s/%d", provider, str, state);
1201 old_state = provider->state;
1202 provider->state = state;
1204 if (state == VPN_PROVIDER_STATE_READY) {
1205 connman_dbus_property_changed_basic(provider->path,
1206 VPN_CONNECTION_INTERFACE, "Index",
1207 DBUS_TYPE_INT32, &provider->index);
1209 if (provider->family == AF_INET)
1210 connman_dbus_property_changed_dict(provider->path,
1211 VPN_CONNECTION_INTERFACE, "IPv4",
1212 append_ipv4, provider);
1213 else if (provider->family == AF_INET6)
1214 connman_dbus_property_changed_dict(provider->path,
1215 VPN_CONNECTION_INTERFACE, "IPv6",
1216 append_ipv6, provider);
1219 if (old_state != state)
1220 connman_dbus_property_changed_basic(provider->path,
1221 VPN_CONNECTION_INTERFACE, "State",
1222 DBUS_TYPE_STRING, &str);
1225 * We do not stay in failure state as clients like connmand can
1226 * get confused about our current state.
1228 if (provider->state == VPN_PROVIDER_STATE_FAILURE)
1229 provider->state = VPN_PROVIDER_STATE_IDLE;
1234 static void append_nameservers(DBusMessageIter *iter, char **servers)
1240 for (i = 0; servers[i] != NULL; i++) {
1241 DBG("servers[%d] %s", i, servers[i]);
1242 dbus_message_iter_append_basic(iter,
1243 DBUS_TYPE_STRING, &servers[i]);
1247 static void append_dns(DBusMessageIter *iter, void *user_data)
1249 struct vpn_provider *provider = user_data;
1251 if (provider->nameservers != NULL)
1252 append_nameservers(iter, provider->nameservers);
1255 static void append_state(DBusMessageIter *iter,
1256 struct vpn_provider *provider)
1260 switch (provider->state) {
1261 case VPN_PROVIDER_STATE_UNKNOWN:
1262 case VPN_PROVIDER_STATE_IDLE:
1265 case VPN_PROVIDER_STATE_CONNECT:
1266 str = "configuration";
1268 case VPN_PROVIDER_STATE_READY:
1271 case VPN_PROVIDER_STATE_DISCONNECT:
1274 case VPN_PROVIDER_STATE_FAILURE:
1279 connman_dbus_dict_append_basic(iter, "State",
1280 DBUS_TYPE_STRING, &str);
1283 static void append_properties(DBusMessageIter *iter,
1284 struct vpn_provider *provider)
1286 DBusMessageIter dict;
1288 connman_dbus_dict_open(iter, &dict);
1290 append_state(&dict, provider);
1292 if (provider->type != NULL)
1293 connman_dbus_dict_append_basic(&dict, "Type",
1294 DBUS_TYPE_STRING, &provider->type);
1296 if (provider->name != NULL)
1297 connman_dbus_dict_append_basic(&dict, "Name",
1298 DBUS_TYPE_STRING, &provider->name);
1300 if (provider->host != NULL)
1301 connman_dbus_dict_append_basic(&dict, "Host",
1302 DBUS_TYPE_STRING, &provider->host);
1303 if (provider->index >= 0)
1304 connman_dbus_dict_append_basic(&dict, "Index",
1305 DBUS_TYPE_INT32, &provider->index);
1306 if (provider->domain != NULL)
1307 connman_dbus_dict_append_basic(&dict, "Domain",
1308 DBUS_TYPE_STRING, &provider->domain);
1310 if (provider->family == AF_INET)
1311 connman_dbus_dict_append_dict(&dict, "IPv4", append_ipv4,
1313 else if (provider->family == AF_INET6)
1314 connman_dbus_dict_append_dict(&dict, "IPv6", append_ipv6,
1317 connman_dbus_dict_append_array(&dict, "Nameservers",
1318 DBUS_TYPE_STRING, append_dns, provider);
1320 connman_dbus_dict_append_array(&dict, "UserRoutes",
1321 DBUS_TYPE_DICT_ENTRY, append_routes,
1322 provider->user_routes);
1324 connman_dbus_dict_append_array(&dict, "ServerRoutes",
1325 DBUS_TYPE_DICT_ENTRY, append_routes,
1328 connman_dbus_dict_close(iter, &dict);
1331 static void connection_added_signal(struct vpn_provider *provider)
1333 DBusMessage *signal;
1334 DBusMessageIter iter;
1336 signal = dbus_message_new_signal(VPN_MANAGER_PATH,
1337 VPN_MANAGER_INTERFACE, "ConnectionAdded");
1341 dbus_message_iter_init_append(signal, &iter);
1342 dbus_message_iter_append_basic(&iter, DBUS_TYPE_OBJECT_PATH,
1344 append_properties(&iter, provider);
1346 dbus_connection_send(connection, signal, NULL);
1347 dbus_message_unref(signal);
1350 static connman_bool_t check_host(char **hosts, char *host)
1357 for (i = 0; hosts[i] != NULL; i++) {
1358 if (g_strcmp0(hosts[i], host) == 0)
1365 static void provider_append_routes(gpointer key, gpointer value,
1368 struct vpn_route *route = value;
1369 struct vpn_provider *provider = user_data;
1370 int index = provider->index;
1372 if (handle_routes == FALSE)
1376 * If the VPN administrator/user has given a route to
1377 * VPN server, then we must discard that because the
1378 * server cannot be contacted via VPN tunnel.
1380 if (check_host(provider->host_ip, route->network) == TRUE) {
1381 DBG("Discarding VPN route to %s via %s at index %d",
1382 route->network, route->gateway, index);
1386 if (route->family == AF_INET6) {
1387 unsigned char prefix_len = atoi(route->netmask);
1389 connman_inet_add_ipv6_network_route(index, route->network,
1393 connman_inet_add_network_route(index, route->network,
1399 static int set_connected(struct vpn_provider *provider,
1400 connman_bool_t connected)
1402 struct vpn_ipconfig *ipconfig;
1404 DBG("provider %p id %s connected %d", provider,
1405 provider->identifier, connected);
1407 if (connected == TRUE) {
1408 if (provider->family == AF_INET6)
1409 ipconfig = provider->ipconfig_ipv6;
1411 ipconfig = provider->ipconfig_ipv4;
1413 __vpn_ipconfig_address_add(ipconfig, provider->family);
1415 if (handle_routes == TRUE)
1416 __vpn_ipconfig_gateway_add(ipconfig, provider->family);
1418 provider_indicate_state(provider,
1419 VPN_PROVIDER_STATE_READY);
1421 g_hash_table_foreach(provider->routes, provider_append_routes,
1424 g_hash_table_foreach(provider->user_routes,
1425 provider_append_routes, provider);
1428 provider_indicate_state(provider,
1429 VPN_PROVIDER_STATE_DISCONNECT);
1431 provider_indicate_state(provider,
1432 VPN_PROVIDER_STATE_IDLE);
1438 int vpn_provider_set_state(struct vpn_provider *provider,
1439 enum vpn_provider_state state)
1441 if (provider == NULL)
1445 case VPN_PROVIDER_STATE_UNKNOWN:
1447 case VPN_PROVIDER_STATE_IDLE:
1448 return set_connected(provider, FALSE);
1449 case VPN_PROVIDER_STATE_CONNECT:
1450 return provider_indicate_state(provider, state);
1451 case VPN_PROVIDER_STATE_READY:
1452 return set_connected(provider, TRUE);
1453 case VPN_PROVIDER_STATE_DISCONNECT:
1454 return provider_indicate_state(provider, state);
1455 case VPN_PROVIDER_STATE_FAILURE:
1456 return provider_indicate_state(provider, state);
1461 int vpn_provider_indicate_error(struct vpn_provider *provider,
1462 enum vpn_provider_error error)
1464 DBG("provider %p id %s error %d", provider, provider->identifier,
1468 case VPN_PROVIDER_ERROR_LOGIN_FAILED:
1470 case VPN_PROVIDER_ERROR_AUTH_FAILED:
1471 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_FAILURE);
1473 case VPN_PROVIDER_ERROR_CONNECT_FAILED:
1482 static int connection_unregister(struct vpn_provider *provider)
1484 DBG("provider %p path %s", provider, provider->path);
1486 if (provider->path == NULL)
1489 g_dbus_unregister_interface(connection, provider->path,
1490 VPN_CONNECTION_INTERFACE);
1492 g_free(provider->path);
1493 provider->path = NULL;
1498 static int connection_register(struct vpn_provider *provider)
1500 DBG("provider %p path %s", provider, provider->path);
1502 if (provider->path != NULL)
1505 provider->path = g_strdup_printf("%s/connection/%s", VPN_PATH,
1506 provider->identifier);
1508 g_dbus_register_interface(connection, provider->path,
1509 VPN_CONNECTION_INTERFACE,
1510 connection_methods, connection_signals,
1511 NULL, provider, NULL);
1516 static void unregister_provider(gpointer data)
1518 struct vpn_provider *provider = data;
1520 configuration_count_del();
1522 connection_unregister(provider);
1524 vpn_provider_unref(provider);
1527 static void provider_initialize(struct vpn_provider *provider)
1529 DBG("provider %p", provider);
1531 provider->index = 0;
1533 provider->name = NULL;
1534 provider->type = NULL;
1535 provider->domain = NULL;
1536 provider->identifier = NULL;
1537 provider->user_networks = NULL;
1538 provider->routes = g_hash_table_new_full(g_direct_hash, g_direct_equal,
1540 provider->user_routes = g_hash_table_new_full(g_str_hash, g_str_equal,
1541 g_free, free_route);
1542 provider->setting_strings = g_hash_table_new_full(g_str_hash,
1543 g_str_equal, g_free, free_setting);
1546 static struct vpn_provider *vpn_provider_new(void)
1548 struct vpn_provider *provider;
1550 provider = g_try_new0(struct vpn_provider, 1);
1551 if (provider == NULL)
1554 provider->refcount = 1;
1556 DBG("provider %p", provider);
1557 provider_initialize(provider);
1562 static struct vpn_provider *vpn_provider_get(const char *identifier)
1564 struct vpn_provider *provider;
1566 provider = g_hash_table_lookup(provider_hash, identifier);
1567 if (provider != NULL)
1570 provider = vpn_provider_new();
1571 if (provider == NULL)
1574 DBG("provider %p", provider);
1576 provider->identifier = g_strdup(identifier);
1578 g_hash_table_insert(provider_hash, provider->identifier, provider);
1580 configuration_count_add();
1585 static void provider_dbus_ident(char *ident)
1587 int i, len = strlen(ident);
1589 for (i = 0; i < len; i++) {
1590 if (ident[i] >= '0' && ident[i] <= '9')
1592 if (ident[i] >= 'a' && ident[i] <= 'z')
1594 if (ident[i] >= 'A' && ident[i] <= 'Z')
1600 static struct vpn_provider *provider_create_from_keyfile(GKeyFile *keyfile,
1603 struct vpn_provider *provider;
1605 if (keyfile == NULL || ident == NULL)
1608 provider = __vpn_provider_lookup(ident);
1609 if (provider == NULL) {
1610 provider = vpn_provider_get(ident);
1611 if (provider == NULL) {
1612 DBG("can not create provider");
1616 provider_load_from_keyfile(provider, keyfile);
1618 if (provider->name == NULL || provider->host == NULL ||
1619 provider->domain == NULL) {
1620 DBG("cannot get name, host or domain");
1621 vpn_provider_unref(provider);
1625 if (provider_register(provider) == 0)
1626 connection_register(provider);
1631 static void provider_create_all_from_type(const char *provider_type)
1638 DBG("provider type %s", provider_type);
1640 providers = __connman_storage_get_providers();
1642 if (providers == NULL)
1645 for (i = 0; providers[i] != NULL; i+=1) {
1647 if (strncmp(providers[i], "provider_", 9) != 0)
1650 id = providers[i] + 9;
1651 keyfile = __connman_storage_load_provider(id);
1653 if (keyfile == NULL)
1656 type = g_key_file_get_string(keyfile, id, "Type", NULL);
1658 DBG("keyfile %p id %s type %s", keyfile, id, type);
1660 if (strcmp(provider_type, type) != 0) {
1662 g_key_file_free(keyfile);
1666 if (provider_create_from_keyfile(keyfile, id) == NULL)
1667 DBG("could not create provider");
1670 g_key_file_free(keyfile);
1672 g_strfreev(providers);
1675 char *__vpn_provider_create_identifier(const char *host, const char *domain)
1679 ident = g_strdup_printf("%s_%s", host, domain);
1683 provider_dbus_ident(ident);
1688 int __vpn_provider_create(DBusMessage *msg)
1690 struct vpn_provider *provider;
1691 DBusMessageIter iter, array;
1692 const char *type = NULL, *name = NULL;
1693 const char *host = NULL, *domain = NULL;
1694 GSList *networks = NULL;
1698 dbus_message_iter_init(msg, &iter);
1699 dbus_message_iter_recurse(&iter, &array);
1701 while (dbus_message_iter_get_arg_type(&array) == DBUS_TYPE_DICT_ENTRY) {
1702 DBusMessageIter entry, value;
1705 dbus_message_iter_recurse(&array, &entry);
1706 dbus_message_iter_get_basic(&entry, &key);
1708 dbus_message_iter_next(&entry);
1709 dbus_message_iter_recurse(&entry, &value);
1711 switch (dbus_message_iter_get_arg_type(&value)) {
1712 case DBUS_TYPE_STRING:
1713 if (g_str_equal(key, "Type") == TRUE)
1714 dbus_message_iter_get_basic(&value, &type);
1715 else if (g_str_equal(key, "Name") == TRUE)
1716 dbus_message_iter_get_basic(&value, &name);
1717 else if (g_str_equal(key, "Host") == TRUE)
1718 dbus_message_iter_get_basic(&value, &host);
1719 else if (g_str_equal(key, "VPN.Domain") == TRUE)
1720 dbus_message_iter_get_basic(&value, &domain);
1722 case DBUS_TYPE_ARRAY:
1723 if (g_str_equal(key, "UserRoutes") == TRUE)
1724 networks = get_user_networks(&value);
1728 dbus_message_iter_next(&array);
1731 if (host == NULL || domain == NULL)
1734 DBG("Type %s name %s networks %p", type, name, networks);
1736 if (type == NULL || name == NULL)
1739 ident = __vpn_provider_create_identifier(host, domain);
1740 DBG("ident %s", ident);
1742 provider = __vpn_provider_lookup(ident);
1743 if (provider == NULL) {
1744 provider = vpn_provider_get(ident);
1745 if (provider == NULL) {
1746 DBG("can not create provider");
1751 provider->host = g_strdup(host);
1752 provider->domain = g_strdup(domain);
1753 provider->name = g_strdup(name);
1754 provider->type = g_strdup(type);
1756 if (provider_register(provider) == 0)
1757 vpn_provider_load(provider);
1759 provider_resolv_host_addr(provider);
1762 if (networks != NULL) {
1763 g_slist_free_full(provider->user_networks, free_route);
1764 provider->user_networks = networks;
1765 set_user_networks(provider, provider->user_networks);
1768 dbus_message_iter_init(msg, &iter);
1769 dbus_message_iter_recurse(&iter, &array);
1771 while (dbus_message_iter_get_arg_type(&array) == DBUS_TYPE_DICT_ENTRY) {
1772 DBusMessageIter entry, value;
1773 const char *key, *str;
1775 dbus_message_iter_recurse(&array, &entry);
1776 dbus_message_iter_get_basic(&entry, &key);
1778 dbus_message_iter_next(&entry);
1779 dbus_message_iter_recurse(&entry, &value);
1781 switch (dbus_message_iter_get_arg_type(&value)) {
1782 case DBUS_TYPE_STRING:
1783 dbus_message_iter_get_basic(&value, &str);
1784 vpn_provider_set_string(provider, key, str);
1788 dbus_message_iter_next(&array);
1793 vpn_provider_save(provider);
1795 err = provider_register(provider);
1796 if (err != 0 && err != -EALREADY)
1799 connection_register(provider);
1801 DBG("provider %p index %d path %s", provider, provider->index,
1804 g_dbus_send_reply(connection, msg,
1805 DBUS_TYPE_OBJECT_PATH, &provider->path,
1808 connection_added_signal(provider);
1813 static const char *get_string(GHashTable *settings, const char *key)
1815 DBG("settings %p key %s", settings, key);
1817 return g_hash_table_lookup(settings, key);
1820 static GSList *parse_user_networks(const char *network_str)
1822 GSList *networks = NULL;
1823 char **elems = g_strsplit(network_str, ",", 0);
1829 while (elems[i] != NULL) {
1830 struct vpn_route *vpn_route;
1831 char *network, *netmask, *gateway;
1835 route = g_strsplit(elems[i], "/", 0);
1840 if (network == NULL || network[0] == '\0')
1843 family = connman_inet_check_ipaddress(network);
1845 DBG("Cannot get address family of %s (%d/%s)", network,
1846 family, gai_strerror(family));
1857 DBG("Unsupported address family %d", family);
1862 if (netmask == NULL || netmask[0] == '\0')
1867 vpn_route = g_try_new0(struct vpn_route, 1);
1868 if (vpn_route == NULL) {
1873 vpn_route->family = family;
1874 vpn_route->network = g_strdup(network);
1875 vpn_route->netmask = g_strdup(netmask);
1876 vpn_route->gateway = g_strdup(gateway);
1878 DBG("route %s/%s%s%s", network, netmask,
1879 gateway ? " via " : "", gateway ? gateway : "");
1881 networks = g_slist_prepend(networks, vpn_route);
1890 return g_slist_reverse(networks);
1893 int __vpn_provider_create_from_config(GHashTable *settings,
1894 const char *config_ident,
1895 const char *config_entry)
1897 struct vpn_provider *provider;
1898 const char *type, *name, *host, *domain, *networks_str;
1901 GHashTableIter hash;
1902 gpointer value, key;
1905 type = get_string(settings, "Type");
1906 name = get_string(settings, "Name");
1907 host = get_string(settings, "Host");
1908 domain = get_string(settings, "Domain");
1909 networks_str = get_string(settings, "Networks");
1910 networks = parse_user_networks(networks_str);
1912 if (host == NULL || domain == NULL) {
1917 DBG("type %s name %s networks %s", type, name, networks_str);
1919 if (type == NULL || name == NULL) {
1924 ident = __vpn_provider_create_identifier(host, domain);
1925 DBG("ident %s", ident);
1927 provider = __vpn_provider_lookup(ident);
1928 if (provider == NULL) {
1929 provider = vpn_provider_get(ident);
1930 if (provider == NULL) {
1931 DBG("can not create provider");
1936 provider->host = g_strdup(host);
1937 provider->domain = g_strdup(domain);
1938 provider->name = g_strdup(name);
1939 provider->type = g_ascii_strdown(type, -1);
1941 provider->config_file = g_strdup(config_ident);
1942 provider->config_entry = g_strdup(config_entry);
1944 if (provider_register(provider) == 0)
1945 vpn_provider_load(provider);
1947 provider_resolv_host_addr(provider);
1950 if (networks != NULL) {
1951 g_slist_free_full(provider->user_networks, free_route);
1952 provider->user_networks = networks;
1953 set_user_networks(provider, provider->user_networks);
1956 g_hash_table_iter_init(&hash, settings);
1958 while (g_hash_table_iter_next(&hash, &key, &value) == TRUE)
1959 vpn_provider_set_string(provider, key, value);
1961 vpn_provider_save(provider);
1963 err = provider_register(provider);
1964 if (err != 0 && err != -EALREADY)
1967 connection_register(provider);
1969 DBG("provider %p index %d path %s", provider, provider->index,
1972 connection_added_signal(provider);
1980 g_slist_free_full(networks, free_route);
1985 static void append_connection_structs(DBusMessageIter *iter, void *user_data)
1987 DBusMessageIter entry;
1988 GHashTableIter hash;
1989 gpointer value, key;
1991 g_hash_table_iter_init(&hash, provider_hash);
1993 while (g_hash_table_iter_next(&hash, &key, &value) == TRUE) {
1994 struct vpn_provider *provider = value;
1996 DBG("path %s", provider->path);
1998 if (provider->identifier == NULL)
2001 dbus_message_iter_open_container(iter, DBUS_TYPE_STRUCT,
2003 dbus_message_iter_append_basic(&entry, DBUS_TYPE_OBJECT_PATH,
2005 append_properties(&entry, provider);
2006 dbus_message_iter_close_container(iter, &entry);
2010 DBusMessage *__vpn_provider_get_connections(DBusMessage *msg)
2016 reply = dbus_message_new_method_return(msg);
2020 __connman_dbus_append_objpath_dict_array(reply,
2021 append_connection_structs, NULL);
2026 const char * __vpn_provider_get_ident(struct vpn_provider *provider)
2028 if (provider == NULL)
2031 return provider->identifier;
2034 static int set_string(struct vpn_provider *provider,
2035 const char *key, const char *value, gboolean hide_value)
2037 DBG("provider %p key %s value %s", provider, key,
2038 hide_value ? "<not printed>" : value);
2040 if (g_str_equal(key, "Type") == TRUE) {
2041 g_free(provider->type);
2042 provider->type = g_ascii_strdown(value, -1);
2043 send_value(provider->path, "Type", provider->type);
2044 } else if (g_str_equal(key, "Name") == TRUE) {
2045 g_free(provider->name);
2046 provider->name = g_strdup(value);
2047 send_value(provider->path, "Name", provider->name);
2048 } else if (g_str_equal(key, "Host") == TRUE) {
2049 g_free(provider->host);
2050 provider->host = g_strdup(value);
2051 send_value(provider->path, "Host", provider->host);
2052 } else if (g_str_equal(key, "VPN.Domain") == TRUE) {
2053 g_free(provider->domain);
2054 provider->domain = g_strdup(value);
2055 send_value(provider->path, "Domain", provider->domain);
2057 struct vpn_setting *setting;
2059 setting = g_try_new(struct vpn_setting, 1);
2060 if (setting == NULL)
2063 setting->value = g_strdup(value);
2064 setting->hide_value = hide_value;
2066 if (hide_value == FALSE)
2067 send_value(provider->path, key, setting->value);
2069 g_hash_table_replace(provider->setting_strings,
2070 g_strdup(key), setting);
2076 int vpn_provider_set_string(struct vpn_provider *provider,
2077 const char *key, const char *value)
2079 return set_string(provider, key, value, FALSE);
2082 int vpn_provider_set_string_hide_value(struct vpn_provider *provider,
2083 const char *key, const char *value)
2085 return set_string(provider, key, value, TRUE);
2088 const char *vpn_provider_get_string(struct vpn_provider *provider,
2091 struct vpn_setting *setting;
2093 DBG("provider %p key %s", provider, key);
2095 if (g_str_equal(key, "Type") == TRUE)
2096 return provider->type;
2097 else if (g_str_equal(key, "Name") == TRUE)
2098 return provider->name;
2099 else if (g_str_equal(key, "Host") == TRUE)
2100 return provider->host;
2101 else if (g_str_equal(key, "HostIP") == TRUE) {
2102 if (provider->host_ip == NULL ||
2103 provider->host_ip[0] == NULL)
2104 return provider->host;
2106 return provider->host_ip[0];
2107 } else if (g_str_equal(key, "VPN.Domain") == TRUE)
2108 return provider->domain;
2110 setting = g_hash_table_lookup(provider->setting_strings, key);
2111 if (setting == NULL)
2114 return setting->value;
2117 connman_bool_t __vpn_provider_check_routes(struct vpn_provider *provider)
2119 if (provider == NULL)
2122 if (provider->user_routes != NULL &&
2123 g_hash_table_size(provider->user_routes) > 0)
2126 if (provider->routes != NULL &&
2127 g_hash_table_size(provider->routes) > 0)
2133 void *vpn_provider_get_data(struct vpn_provider *provider)
2135 return provider->driver_data;
2138 void vpn_provider_set_data(struct vpn_provider *provider, void *data)
2140 provider->driver_data = data;
2143 void vpn_provider_set_index(struct vpn_provider *provider, int index)
2145 DBG("index %d provider %p", index, provider);
2147 if (provider->ipconfig_ipv4 == NULL) {
2148 provider->ipconfig_ipv4 = __vpn_ipconfig_create(index,
2150 if (provider->ipconfig_ipv4 == NULL) {
2151 DBG("Couldnt create ipconfig for IPv4");
2156 __vpn_ipconfig_set_index(provider->ipconfig_ipv4, index);
2158 if (provider->ipconfig_ipv6 == NULL) {
2159 provider->ipconfig_ipv6 = __vpn_ipconfig_create(index,
2161 if (provider->ipconfig_ipv6 == NULL) {
2162 DBG("Couldnt create ipconfig for IPv6");
2167 __vpn_ipconfig_set_index(provider->ipconfig_ipv6, index);
2170 provider->index = index;
2173 int vpn_provider_get_index(struct vpn_provider *provider)
2175 return provider->index;
2178 int vpn_provider_set_ipaddress(struct vpn_provider *provider,
2179 struct connman_ipaddress *ipaddress)
2181 struct vpn_ipconfig *ipconfig = NULL;
2183 switch (ipaddress->family) {
2185 ipconfig = provider->ipconfig_ipv4;
2188 ipconfig = provider->ipconfig_ipv6;
2194 DBG("provider %p ipconfig %p family %d", provider, ipconfig,
2197 if (ipconfig == NULL)
2200 provider->family = ipaddress->family;
2202 __vpn_ipconfig_set_local(ipconfig, ipaddress->local);
2203 __vpn_ipconfig_set_peer(ipconfig, ipaddress->peer);
2204 __vpn_ipconfig_set_broadcast(ipconfig, ipaddress->broadcast);
2205 __vpn_ipconfig_set_gateway(ipconfig, ipaddress->gateway);
2206 __vpn_ipconfig_set_prefixlen(ipconfig, ipaddress->prefixlen);
2211 int vpn_provider_set_pac(struct vpn_provider *provider,
2214 DBG("provider %p pac %s", provider, pac);
2220 int vpn_provider_set_domain(struct vpn_provider *provider,
2223 DBG("provider %p domain %s", provider, domain);
2225 g_free(provider->domain);
2226 provider->domain = g_strdup(domain);
2231 int vpn_provider_set_nameservers(struct vpn_provider *provider,
2232 const char *nameservers)
2234 DBG("provider %p nameservers %s", provider, nameservers);
2236 g_strfreev(provider->nameservers);
2237 provider->nameservers = NULL;
2239 if (nameservers == NULL)
2242 provider->nameservers = g_strsplit(nameservers, " ", 0);
2247 enum provider_route_type {
2248 PROVIDER_ROUTE_TYPE_NONE = 0,
2249 PROVIDER_ROUTE_TYPE_MASK = 1,
2250 PROVIDER_ROUTE_TYPE_ADDR = 2,
2251 PROVIDER_ROUTE_TYPE_GW = 3,
2254 static int route_env_parse(struct vpn_provider *provider, const char *key,
2255 int *family, unsigned long *idx,
2256 enum provider_route_type *type)
2261 DBG("name %s", provider->name);
2263 if (!strcmp(provider->type, "openvpn")) {
2264 if (g_str_has_prefix(key, "route_network_") == TRUE) {
2265 start = key + strlen("route_network_");
2266 *type = PROVIDER_ROUTE_TYPE_ADDR;
2267 } else if (g_str_has_prefix(key, "route_netmask_") == TRUE) {
2268 start = key + strlen("route_netmask_");
2269 *type = PROVIDER_ROUTE_TYPE_MASK;
2270 } else if (g_str_has_prefix(key, "route_gateway_") == TRUE) {
2271 start = key + strlen("route_gateway_");
2272 *type = PROVIDER_ROUTE_TYPE_GW;
2277 *idx = g_ascii_strtoull(start, &end, 10);
2279 } else if (!strcmp(provider->type, "openconnect")) {
2280 if (g_str_has_prefix(key, "CISCO_SPLIT_INC_") == TRUE) {
2282 start = key + strlen("CISCO_SPLIT_INC_");
2283 } else if (g_str_has_prefix(key,
2284 "CISCO_IPV6_SPLIT_INC_") == TRUE) {
2286 start = key + strlen("CISCO_IPV6_SPLIT_INC_");
2290 *idx = g_ascii_strtoull(start, &end, 10);
2292 if (strncmp(end, "_ADDR", 5) == 0)
2293 *type = PROVIDER_ROUTE_TYPE_ADDR;
2294 else if (strncmp(end, "_MASK", 5) == 0)
2295 *type = PROVIDER_ROUTE_TYPE_MASK;
2296 else if (strncmp(end, "_MASKLEN", 8) == 0 &&
2297 *family == AF_INET6) {
2298 *type = PROVIDER_ROUTE_TYPE_MASK;
2306 int vpn_provider_append_route(struct vpn_provider *provider,
2307 const char *key, const char *value)
2309 struct vpn_route *route;
2310 int ret, family = 0;
2311 unsigned long idx = 0;
2312 enum provider_route_type type = PROVIDER_ROUTE_TYPE_NONE;
2314 DBG("key %s value %s", key, value);
2316 ret = route_env_parse(provider, key, &family, &idx, &type);
2320 DBG("idx %lu family %d type %d", idx, family, type);
2322 route = g_hash_table_lookup(provider->routes, GINT_TO_POINTER(idx));
2323 if (route == NULL) {
2324 route = g_try_new0(struct vpn_route, 1);
2325 if (route == NULL) {
2326 connman_error("out of memory");
2330 route->family = family;
2332 g_hash_table_replace(provider->routes, GINT_TO_POINTER(idx),
2337 case PROVIDER_ROUTE_TYPE_NONE:
2339 case PROVIDER_ROUTE_TYPE_MASK:
2340 route->netmask = g_strdup(value);
2342 case PROVIDER_ROUTE_TYPE_ADDR:
2343 route->network = g_strdup(value);
2345 case PROVIDER_ROUTE_TYPE_GW:
2346 route->gateway = g_strdup(value);
2350 if (handle_routes == FALSE) {
2351 if (route->netmask != NULL && route->gateway != NULL &&
2352 route->network != NULL)
2353 provider_schedule_changed(provider);
2359 const char *vpn_provider_get_driver_name(struct vpn_provider *provider)
2361 if (provider->driver == NULL)
2364 return provider->driver->name;
2367 const char *vpn_provider_get_save_group(struct vpn_provider *provider)
2369 return provider->identifier;
2372 static gint compare_priority(gconstpointer a, gconstpointer b)
2377 static void clean_provider(gpointer key, gpointer value, gpointer user_data)
2379 struct vpn_provider *provider = value;
2381 if (provider->driver != NULL && provider->driver->remove)
2382 provider->driver->remove(provider);
2384 connection_unregister(provider);
2387 int vpn_provider_driver_register(struct vpn_provider_driver *driver)
2389 DBG("driver %p name %s", driver, driver->name);
2391 driver_list = g_slist_insert_sorted(driver_list, driver,
2393 provider_create_all_from_type(driver->name);
2397 void vpn_provider_driver_unregister(struct vpn_provider_driver *driver)
2399 GHashTableIter iter;
2400 gpointer value, key;
2402 DBG("driver %p name %s", driver, driver->name);
2404 driver_list = g_slist_remove(driver_list, driver);
2406 g_hash_table_iter_init(&iter, provider_hash);
2407 while (g_hash_table_iter_next(&iter, &key, &value) == TRUE) {
2408 struct vpn_provider *provider = value;
2410 if (provider != NULL && provider->driver != NULL &&
2411 provider->driver->type == driver->type &&
2412 g_strcmp0(provider->driver->name,
2413 driver->name) == 0) {
2414 provider->driver = NULL;
2419 static gboolean check_vpn_count(gpointer data)
2421 if (configuration_count == 0) {
2422 connman_info("No VPN configurations found, quitting.");
2429 void __vpn_provider_check_connections(void)
2432 * If we were started when there is no providers configured,
2433 * then just quit. This happens when connman starts and its
2434 * vpn plugin asks connman-vpnd if it has any connections
2435 * configured. If there are none, then we can stop the vpn
2438 g_timeout_add(1000, check_vpn_count, NULL);
2441 const char *vpn_provider_get_name(struct vpn_provider *provider)
2443 return provider->name;
2446 const char *vpn_provider_get_host(struct vpn_provider *provider)
2448 return provider->host;
2451 const char *vpn_provider_get_path(struct vpn_provider *provider)
2453 return provider->path;
2456 static int agent_probe(struct connman_agent *agent)
2458 DBG("agent %p", agent);
2462 static void agent_remove(struct connman_agent *agent)
2464 DBG("agent %p", agent);
2467 static struct connman_agent_driver agent_driver = {
2469 .interface = VPN_AGENT_INTERFACE,
2470 .probe = agent_probe,
2471 .remove = agent_remove,
2474 static void remove_unprovisioned_providers()
2477 GKeyFile *keyfile, *configkeyfile;
2478 char *file, *section;
2481 providers = __connman_storage_get_providers();
2482 if (providers == NULL)
2485 for (; providers[i] != NULL; i++) {
2486 char *group = providers[i] + sizeof("provider_") - 1;
2487 file = section = NULL;
2488 keyfile = configkeyfile = NULL;
2490 keyfile = __connman_storage_load_provider(group);
2491 if (keyfile == NULL)
2494 file = g_key_file_get_string(keyfile, group,
2495 "Config.file", NULL);
2499 section = g_key_file_get_string(keyfile, group,
2500 "Config.ident", NULL);
2501 if (section == NULL)
2504 configkeyfile = __connman_storage_load_provider_config(file);
2505 if (configkeyfile == NULL) {
2507 * Config file is missing, remove the provisioned
2510 __connman_storage_remove_provider(group);
2514 if (g_key_file_has_group(configkeyfile, section) == FALSE)
2516 * Config section is missing, remove the provisioned
2519 __connman_storage_remove_provider(group);
2522 if (keyfile != NULL)
2523 g_key_file_free(keyfile);
2525 if (configkeyfile != NULL)
2526 g_key_file_free(configkeyfile);
2532 g_strfreev(providers);
2535 int __vpn_provider_init(gboolean do_routes)
2541 handle_routes = do_routes;
2543 err = connman_agent_driver_register(&agent_driver);
2545 connman_error("Cannot register agent driver for %s",
2550 connection = connman_dbus_get_connection();
2552 remove_unprovisioned_providers();
2554 provider_hash = g_hash_table_new_full(g_str_hash, g_str_equal,
2555 NULL, unregister_provider);
2559 void __vpn_provider_cleanup(void)
2563 g_hash_table_foreach(provider_hash, clean_provider, NULL);
2565 g_hash_table_destroy(provider_hash);
2566 provider_hash = NULL;
2568 connman_agent_driver_unregister(&agent_driver);
2570 dbus_connection_unref(connection);