5 * Copyright (C) 2012-2013 Intel Corporation. All rights reserved.
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License version 2 as
9 * published by the Free Software Foundation.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
31 #include <connman/log.h>
32 #include <gweb/gresolv.h>
35 #include "../src/connman.h"
36 #include "connman/agent.h"
37 #include "connman/vpn-dbus.h"
38 #include "vpn-provider.h"
41 static DBusConnection *connection;
42 static GHashTable *provider_hash;
43 static GSList *driver_list;
44 static int configuration_count;
45 static bool handle_routes;
64 enum vpn_provider_state state;
73 struct vpn_provider_driver *driver;
75 GHashTable *setting_strings;
76 GHashTable *user_routes;
77 GSList *user_networks;
80 struct vpn_ipconfig *ipconfig_ipv4;
81 struct vpn_ipconfig *ipconfig_ipv6;
89 static void append_properties(DBusMessageIter *iter,
90 struct vpn_provider *provider);
92 static void free_route(gpointer data)
94 struct vpn_route *route = data;
96 g_free(route->network);
97 g_free(route->netmask);
98 g_free(route->gateway);
103 static void free_setting(gpointer data)
105 struct vpn_setting *setting = data;
107 g_free(setting->value);
111 static void append_route(DBusMessageIter *iter, void *user_data)
113 struct vpn_route *route = user_data;
114 DBusMessageIter item;
117 connman_dbus_dict_open(iter, &item);
122 if (route->family == AF_INET)
124 else if (route->family == AF_INET6)
128 connman_dbus_dict_append_basic(&item, "ProtocolFamily",
129 DBUS_TYPE_INT32, &family);
132 connman_dbus_dict_append_basic(&item, "Network",
133 DBUS_TYPE_STRING, &route->network);
136 connman_dbus_dict_append_basic(&item, "Netmask",
137 DBUS_TYPE_STRING, &route->netmask);
140 connman_dbus_dict_append_basic(&item, "Gateway",
141 DBUS_TYPE_STRING, &route->gateway);
144 connman_dbus_dict_close(iter, &item);
147 static void append_routes(DBusMessageIter *iter, void *user_data)
149 GHashTable *routes = user_data;
154 append_route(iter, NULL);
158 g_hash_table_iter_init(&hash, routes);
160 while (g_hash_table_iter_next(&hash, &key, &value)) {
161 DBusMessageIter dict;
163 dbus_message_iter_open_container(iter, DBUS_TYPE_STRUCT, NULL,
165 append_route(&dict, value);
166 dbus_message_iter_close_container(iter, &dict);
170 static void send_routes(struct vpn_provider *provider, GHashTable *routes,
173 connman_dbus_property_changed_array(provider->path,
174 VPN_CONNECTION_INTERFACE,
176 DBUS_TYPE_DICT_ENTRY,
181 static int provider_routes_changed(struct vpn_provider *provider)
183 DBG("provider %p", provider);
185 send_routes(provider, provider->routes, "ServerRoutes");
190 static GSList *read_route_dict(GSList *routes, DBusMessageIter *dicts)
192 DBusMessageIter dict, value, entry;
193 const char *network, *netmask, *gateway;
194 struct vpn_route *route;
198 dbus_message_iter_recurse(dicts, &entry);
200 network = netmask = gateway = NULL;
203 while (dbus_message_iter_get_arg_type(&entry) == DBUS_TYPE_DICT_ENTRY) {
205 dbus_message_iter_recurse(&entry, &dict);
206 dbus_message_iter_get_basic(&dict, &key);
208 dbus_message_iter_next(&dict);
209 dbus_message_iter_recurse(&dict, &value);
211 type = dbus_message_iter_get_arg_type(&value);
214 case DBUS_TYPE_INT32:
215 if (g_str_equal(key, "ProtocolFamily"))
216 dbus_message_iter_get_basic(&value, &family);
219 case DBUS_TYPE_STRING:
220 if (g_str_equal(key, "Network"))
221 dbus_message_iter_get_basic(&value, &network);
222 else if (g_str_equal(key, "Netmask"))
223 dbus_message_iter_get_basic(&value, &netmask);
224 else if (g_str_equal(key, "Gateway"))
225 dbus_message_iter_get_basic(&value, &gateway);
229 dbus_message_iter_next(&entry);
232 DBG("family %d network %s netmask %s gateway %s", family,
233 network, netmask, gateway);
235 if (!network || !netmask) {
236 DBG("Ignoring route as network/netmask is missing");
240 route = g_try_new(struct vpn_route, 1);
242 g_slist_free_full(routes, free_route);
246 if (family == PF_UNSPEC) {
247 family = connman_inet_check_ipaddress(network);
249 DBG("Cannot get address family of %s (%d/%s)", network,
250 family, gai_strerror(family));
269 route->family = family;
270 route->network = g_strdup(network);
271 route->netmask = g_strdup(netmask);
272 route->gateway = g_strdup(gateway);
274 routes = g_slist_prepend(routes, route);
278 static GSList *get_user_networks(DBusMessageIter *array)
280 DBusMessageIter entry;
283 while (dbus_message_iter_get_arg_type(array) == DBUS_TYPE_ARRAY) {
285 dbus_message_iter_recurse(array, &entry);
287 while (dbus_message_iter_get_arg_type(&entry) ==
289 DBusMessageIter dicts;
291 dbus_message_iter_recurse(&entry, &dicts);
293 while (dbus_message_iter_get_arg_type(&dicts) ==
296 list = read_route_dict(list, &dicts);
297 dbus_message_iter_next(&dicts);
300 dbus_message_iter_next(&entry);
303 dbus_message_iter_next(array);
309 static void set_user_networks(struct vpn_provider *provider, GSList *networks)
313 for (list = networks; list; list = g_slist_next(list)) {
314 struct vpn_route *route = list->data;
316 if (__vpn_provider_append_user_route(provider,
317 route->family, route->network,
318 route->netmask, route->gateway) != 0)
323 static void del_routes(struct vpn_provider *provider)
328 g_hash_table_iter_init(&hash, provider->user_routes);
329 while (handle_routes && g_hash_table_iter_next(&hash,
331 struct vpn_route *route = value;
332 if (route->family == AF_INET6) {
333 unsigned char prefixlen = atoi(route->netmask);
334 connman_inet_del_ipv6_network_route(provider->index,
338 connman_inet_del_host_route(provider->index,
342 g_hash_table_remove_all(provider->user_routes);
343 g_slist_free_full(provider->user_networks, free_route);
344 provider->user_networks = NULL;
347 static void send_value(const char *path, const char *key, const char *value)
349 const char *empty = "";
357 connman_dbus_property_changed_basic(path,
358 VPN_CONNECTION_INTERFACE,
364 static gboolean provider_send_changed(gpointer data)
366 struct vpn_provider *provider = data;
368 provider_routes_changed(provider);
370 provider->notify_id = 0;
375 static void provider_schedule_changed(struct vpn_provider *provider)
377 if (provider->notify_id != 0)
378 g_source_remove(provider->notify_id);
380 provider->notify_id = g_timeout_add(100, provider_send_changed,
384 static DBusMessage *get_properties(DBusConnection *conn,
385 DBusMessage *msg, void *data)
387 struct vpn_provider *provider = data;
389 DBusMessageIter array;
391 DBG("provider %p", provider);
393 reply = dbus_message_new_method_return(msg);
397 dbus_message_iter_init_append(reply, &array);
399 append_properties(&array, provider);
404 static DBusMessage *set_property(DBusConnection *conn, DBusMessage *msg,
407 struct vpn_provider *provider = data;
408 DBusMessageIter iter, value;
412 DBG("conn %p", conn);
414 if (provider->immutable)
415 return __connman_error_not_supported(msg);
417 if (!dbus_message_iter_init(msg, &iter))
418 return __connman_error_invalid_arguments(msg);
420 if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_STRING)
421 return __connman_error_invalid_arguments(msg);
423 dbus_message_iter_get_basic(&iter, &name);
424 dbus_message_iter_next(&iter);
426 if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_VARIANT)
427 return __connman_error_invalid_arguments(msg);
429 dbus_message_iter_recurse(&iter, &value);
431 type = dbus_message_iter_get_arg_type(&value);
433 if (g_str_equal(name, "UserRoutes")) {
436 if (type != DBUS_TYPE_ARRAY)
437 return __connman_error_invalid_arguments(msg);
439 networks = get_user_networks(&value);
441 del_routes(provider);
442 provider->user_networks = networks;
443 set_user_networks(provider, provider->user_networks);
446 send_routes(provider, provider->user_routes,
452 dbus_message_iter_get_basic(&value, &str);
453 vpn_provider_set_string(provider, name, str);
456 return g_dbus_create_reply(msg, DBUS_TYPE_INVALID);
459 static DBusMessage *clear_property(DBusConnection *conn, DBusMessage *msg,
462 struct vpn_provider *provider = data;
465 DBG("conn %p", conn);
467 if (provider->immutable)
468 return __connman_error_not_supported(msg);
470 dbus_message_get_args(msg, NULL, DBUS_TYPE_STRING, &name,
473 if (g_str_equal(name, "UserRoutes")) {
474 del_routes(provider);
477 send_routes(provider, provider->user_routes, name);
478 } else if (vpn_provider_get_string(provider, name)) {
479 vpn_provider_set_string(provider, name, NULL);
481 return __connman_error_invalid_property(msg);
484 return g_dbus_create_reply(msg, DBUS_TYPE_INVALID);
487 static DBusMessage *do_connect(DBusConnection *conn, DBusMessage *msg,
490 struct vpn_provider *provider = data;
493 DBG("conn %p provider %p", conn, provider);
495 err = __vpn_provider_connect(provider, msg);
497 return __connman_error_failed(msg, -err);
502 static DBusMessage *do_disconnect(DBusConnection *conn, DBusMessage *msg,
505 struct vpn_provider *provider = data;
508 DBG("conn %p provider %p", conn, provider);
510 err = __vpn_provider_disconnect(provider);
511 if (err < 0 && err != -EINPROGRESS)
512 return __connman_error_failed(msg, -err);
514 return g_dbus_create_reply(msg, DBUS_TYPE_INVALID);
517 static const GDBusMethodTable connection_methods[] = {
518 { GDBUS_METHOD("GetProperties",
519 NULL, GDBUS_ARGS({ "properties", "a{sv}" }),
521 { GDBUS_METHOD("SetProperty",
522 GDBUS_ARGS({ "name", "s" }, { "value", "v" }),
523 NULL, set_property) },
524 { GDBUS_METHOD("ClearProperty",
525 GDBUS_ARGS({ "name", "s" }), NULL,
527 { GDBUS_ASYNC_METHOD("Connect", NULL, NULL, do_connect) },
528 { GDBUS_METHOD("Disconnect", NULL, NULL, do_disconnect) },
532 static const GDBusSignalTable connection_signals[] = {
533 { GDBUS_SIGNAL("PropertyChanged",
534 GDBUS_ARGS({ "name", "s" }, { "value", "v" })) },
538 static void resolv_result(GResolvResultStatus status,
539 char **results, gpointer user_data)
541 struct vpn_provider *provider = user_data;
543 DBG("status %d", status);
545 if (status == G_RESOLV_RESULT_STATUS_SUCCESS && results &&
546 g_strv_length(results) > 0)
547 provider->host_ip = g_strdupv(results);
549 vpn_provider_unref(provider);
552 static void provider_resolv_host_addr(struct vpn_provider *provider)
557 if (connman_inet_check_ipaddress(provider->host) > 0)
560 if (provider->host_ip)
564 * If the hostname is not numeric, try to resolv it. We do not wait
565 * the result as it might take some time. We will get the result
566 * before VPN will feed routes to us because VPN client will need
567 * the IP address also before VPN connection can be established.
569 provider->resolv = g_resolv_new(0);
570 if (!provider->resolv) {
571 DBG("Cannot resolv %s", provider->host);
575 DBG("Trying to resolv %s", provider->host);
577 vpn_provider_ref(provider);
579 g_resolv_lookup_hostname(provider->resolv, provider->host,
580 resolv_result, provider);
583 void __vpn_provider_append_properties(struct vpn_provider *provider,
584 DBusMessageIter *iter)
587 connman_dbus_dict_append_basic(iter, "Host",
588 DBUS_TYPE_STRING, &provider->host);
590 if (provider->domain)
591 connman_dbus_dict_append_basic(iter, "Domain",
592 DBUS_TYPE_STRING, &provider->domain);
595 connman_dbus_dict_append_basic(iter, "Type", DBUS_TYPE_STRING,
599 int __vpn_provider_append_user_route(struct vpn_provider *provider,
600 int family, const char *network,
601 const char *netmask, const char *gateway)
603 struct vpn_route *route;
604 char *key = g_strdup_printf("%d/%s/%s/%s", family, network,
605 netmask, gateway ? gateway : "");
607 DBG("family %d network %s netmask %s gw %s", family, network,
610 route = g_hash_table_lookup(provider->user_routes, key);
612 route = g_try_new0(struct vpn_route, 1);
614 connman_error("out of memory");
618 route->family = family;
619 route->network = g_strdup(network);
620 route->netmask = g_strdup(netmask);
621 route->gateway = g_strdup(gateway);
623 g_hash_table_replace(provider->user_routes, key, route);
630 static struct vpn_route *get_route(char *route_str)
632 char **elems = g_strsplit(route_str, "/", 0);
633 char *network, *netmask, *gateway, *family_str;
634 int family = PF_UNSPEC;
635 struct vpn_route *route = NULL;
640 family_str = elems[0];
643 if (!network || network[0] == '\0')
647 if (!netmask || netmask[0] == '\0')
652 route = g_try_new0(struct vpn_route, 1);
656 if (family_str[0] == '\0' || atoi(family_str) == 0) {
659 switch (family_str[0]) {
669 if (g_strrstr(network, ":")) {
670 if (family != PF_UNSPEC && family != AF_INET6)
671 DBG("You have IPv6 address but you have non IPv6 route");
672 } else if (g_strrstr(network, ".")) {
673 if (family != PF_UNSPEC && family != AF_INET)
674 DBG("You have IPv4 address but you have non IPv4 route");
676 if (!g_strrstr(netmask, ".")) {
677 /* We have netmask length */
679 struct in_addr netmask_in;
680 unsigned char prefix_len = 32;
684 long int value = strtol(netmask, &ptr, 10);
685 if (ptr != netmask && *ptr == '\0' &&
690 addr = 0xffffffff << (32 - prefix_len);
691 netmask_in.s_addr = htonl(addr);
692 netmask = inet_ntoa(netmask_in);
694 DBG("network %s netmask %s", network, netmask);
698 if (family == PF_UNSPEC) {
699 family = connman_inet_check_ipaddress(network);
700 if (family < 0 || family == PF_UNSPEC)
704 route->family = family;
705 route->network = g_strdup(network);
706 route->netmask = g_strdup(netmask);
707 route->gateway = g_strdup(gateway);
714 static GSList *get_routes(gchar **networks)
716 struct vpn_route *route;
717 GSList *routes = NULL;
720 for (i = 0; networks[i]; i++) {
721 route = get_route(networks[i]);
723 routes = g_slist_prepend(routes, route);
729 static int provider_load_from_keyfile(struct vpn_provider *provider,
735 gsize length, num_user_networks;
736 gchar **networks = NULL;
738 settings = g_key_file_get_keys(keyfile, provider->identifier, &length,
741 g_key_file_free(keyfile);
745 while (idx < length) {
748 if (g_str_equal(key, "Networks")) {
749 networks = __vpn_config_get_string_list(keyfile,
750 provider->identifier,
754 provider->user_networks = get_routes(networks);
757 value = __vpn_config_get_string(keyfile,
758 provider->identifier,
760 vpn_provider_set_string(provider, key,
767 g_strfreev(settings);
768 g_strfreev(networks);
770 if (provider->user_networks)
771 set_user_networks(provider, provider->user_networks);
777 static int vpn_provider_load(struct vpn_provider *provider)
781 DBG("provider %p", provider);
783 keyfile = __connman_storage_load_provider(provider->identifier);
787 provider_load_from_keyfile(provider, keyfile);
789 g_key_file_free(keyfile);
793 static gchar **create_network_list(GSList *networks, gsize *count)
796 gchar **result = NULL;
797 unsigned int num_elems = 0;
799 for (list = networks; list; list = g_slist_next(list)) {
800 struct vpn_route *route = list->data;
803 result = g_try_realloc(result,
804 (num_elems + 1) * sizeof(gchar *));
808 switch (route->family) {
820 result[num_elems] = g_strdup_printf("%d/%s/%s/%s",
821 family, route->network, route->netmask,
822 !route->gateway ? "" : route->gateway);
827 result = g_try_realloc(result, (num_elems + 1) * sizeof(gchar *));
831 result[num_elems] = NULL;
836 static int vpn_provider_save(struct vpn_provider *provider)
840 DBG("provider %p immutable %s", provider,
841 provider->immutable ? "yes" : "no");
843 if (provider->immutable) {
845 * Do not save providers that are provisioned via .config
851 keyfile = g_key_file_new();
855 g_key_file_set_string(keyfile, provider->identifier,
856 "Name", provider->name);
857 g_key_file_set_string(keyfile, provider->identifier,
858 "Type", provider->type);
859 g_key_file_set_string(keyfile, provider->identifier,
860 "Host", provider->host);
861 g_key_file_set_string(keyfile, provider->identifier,
862 "VPN.Domain", provider->domain);
863 if (provider->user_networks) {
867 networks = create_network_list(provider->user_networks,
870 g_key_file_set_string_list(keyfile,
871 provider->identifier,
873 (const gchar ** const)networks,
875 g_strfreev(networks);
879 if (provider->config_file && strlen(provider->config_file) > 0)
880 g_key_file_set_string(keyfile, provider->identifier,
881 "Config.file", provider->config_file);
883 if (provider->config_entry &&
884 strlen(provider->config_entry) > 0)
885 g_key_file_set_string(keyfile, provider->identifier,
886 "Config.ident", provider->config_entry);
888 if (provider->driver && provider->driver->save)
889 provider->driver->save(provider, keyfile);
891 __connman_storage_save_provider(keyfile, provider->identifier);
892 g_key_file_free(keyfile);
897 struct vpn_provider *__vpn_provider_lookup(const char *identifier)
899 struct vpn_provider *provider = NULL;
901 provider = g_hash_table_lookup(provider_hash, identifier);
906 static bool match_driver(struct vpn_provider *provider,
907 struct vpn_provider_driver *driver)
909 if (g_strcmp0(driver->name, provider->type) == 0)
915 static int provider_probe(struct vpn_provider *provider)
919 DBG("provider %p driver %p name %s", provider, provider->driver,
922 if (provider->driver)
925 for (list = driver_list; list; list = list->next) {
926 struct vpn_provider_driver *driver = list->data;
928 if (!match_driver(provider, driver))
931 DBG("driver %p name %s", driver, driver->name);
933 if (driver->probe && driver->probe(provider) == 0) {
934 provider->driver = driver;
939 if (!provider->driver)
945 static void provider_remove(struct vpn_provider *provider)
947 if (provider->driver) {
948 provider->driver->remove(provider);
949 provider->driver = NULL;
953 static int provider_register(struct vpn_provider *provider)
955 return provider_probe(provider);
958 static void provider_unregister(struct vpn_provider *provider)
960 provider_remove(provider);
963 struct vpn_provider *
964 vpn_provider_ref_debug(struct vpn_provider *provider,
965 const char *file, int line, const char *caller)
967 DBG("%p ref %d by %s:%d:%s()", provider, provider->refcount + 1,
970 __sync_fetch_and_add(&provider->refcount, 1);
975 static void provider_destruct(struct vpn_provider *provider)
977 DBG("provider %p", provider);
979 if (provider->notify_id != 0)
980 g_source_remove(provider->notify_id);
982 g_free(provider->name);
983 g_free(provider->type);
984 g_free(provider->host);
985 g_free(provider->domain);
986 g_free(provider->identifier);
987 g_free(provider->path);
988 g_slist_free_full(provider->user_networks, free_route);
989 g_strfreev(provider->nameservers);
990 g_hash_table_destroy(provider->routes);
991 g_hash_table_destroy(provider->user_routes);
992 g_hash_table_destroy(provider->setting_strings);
993 if (provider->resolv) {
994 g_resolv_unref(provider->resolv);
995 provider->resolv = NULL;
997 __vpn_ipconfig_unref(provider->ipconfig_ipv4);
998 __vpn_ipconfig_unref(provider->ipconfig_ipv6);
1000 g_strfreev(provider->host_ip);
1001 g_free(provider->config_file);
1002 g_free(provider->config_entry);
1006 void vpn_provider_unref_debug(struct vpn_provider *provider,
1007 const char *file, int line, const char *caller)
1009 DBG("%p ref %d by %s:%d:%s()", provider, provider->refcount - 1,
1010 file, line, caller);
1012 if (__sync_fetch_and_sub(&provider->refcount, 1) != 1)
1015 provider_remove(provider);
1017 provider_destruct(provider);
1020 static void configuration_count_add(void)
1022 DBG("count %d", configuration_count + 1);
1024 __sync_fetch_and_add(&configuration_count, 1);
1027 static void configuration_count_del(void)
1029 DBG("count %d", configuration_count - 1);
1031 if (__sync_fetch_and_sub(&configuration_count, 1) != 1)
1035 int __vpn_provider_disconnect(struct vpn_provider *provider)
1039 DBG("provider %p", provider);
1041 if (provider->driver && provider->driver->disconnect)
1042 err = provider->driver->disconnect(provider);
1046 if (err == -EINPROGRESS)
1047 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_CONNECT);
1052 static void connect_cb(struct vpn_provider *provider, void *user_data,
1055 DBusMessage *pending = user_data;
1057 DBG("provider %p user %p error %d", provider, user_data, error);
1060 DBusMessage *reply = __connman_error_failed(pending, error);
1062 g_dbus_send_message(connection, reply);
1064 vpn_provider_indicate_error(provider,
1065 VPN_PROVIDER_ERROR_CONNECT_FAILED);
1066 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_FAILURE);
1068 g_dbus_send_reply(connection, pending, DBUS_TYPE_INVALID);
1070 dbus_message_unref(pending);
1073 int __vpn_provider_connect(struct vpn_provider *provider, DBusMessage *msg)
1077 DBG("provider %p", provider);
1079 if (provider->driver && provider->driver->connect) {
1080 dbus_message_ref(msg);
1081 err = provider->driver->connect(provider, connect_cb,
1082 dbus_message_get_sender(msg),
1087 if (err == -EINPROGRESS)
1088 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_CONNECT);
1093 static void connection_removed_signal(struct vpn_provider *provider)
1095 DBusMessage *signal;
1096 DBusMessageIter iter;
1098 signal = dbus_message_new_signal(VPN_MANAGER_PATH,
1099 VPN_MANAGER_INTERFACE, "ConnectionRemoved");
1103 dbus_message_iter_init_append(signal, &iter);
1104 dbus_message_iter_append_basic(&iter, DBUS_TYPE_OBJECT_PATH,
1106 dbus_connection_send(connection, signal, NULL);
1107 dbus_message_unref(signal);
1110 static char *get_ident(const char *path)
1117 pos = strrchr(path, '/');
1124 int __vpn_provider_remove(const char *path)
1126 struct vpn_provider *provider;
1129 DBG("path %s", path);
1131 ident = get_ident(path);
1133 provider = __vpn_provider_lookup(ident);
1135 return __vpn_provider_delete(provider);
1140 int __vpn_provider_delete(struct vpn_provider *provider)
1142 DBG("Deleting VPN %s", provider->identifier);
1144 connection_removed_signal(provider);
1146 provider_unregister(provider);
1148 __connman_storage_remove_provider(provider->identifier);
1150 g_hash_table_remove(provider_hash, provider->identifier);
1155 static void append_ipv4(DBusMessageIter *iter, void *user_data)
1157 struct vpn_provider *provider = user_data;
1158 const char *address, *gateway, *peer;
1160 address = __vpn_ipconfig_get_local(provider->ipconfig_ipv4);
1163 struct in_addr netmask;
1167 prefixlen = __vpn_ipconfig_get_prefixlen(
1168 provider->ipconfig_ipv4);
1170 addr = 0xffffffff << (32 - prefixlen);
1171 netmask.s_addr = htonl(addr);
1172 mask = inet_ntoa(netmask);
1174 connman_dbus_dict_append_basic(iter, "Address",
1175 DBUS_TYPE_STRING, &address);
1177 connman_dbus_dict_append_basic(iter, "Netmask",
1178 DBUS_TYPE_STRING, &mask);
1181 gateway = __vpn_ipconfig_get_gateway(provider->ipconfig_ipv4);
1183 connman_dbus_dict_append_basic(iter, "Gateway",
1184 DBUS_TYPE_STRING, &gateway);
1186 peer = __vpn_ipconfig_get_peer(provider->ipconfig_ipv4);
1188 connman_dbus_dict_append_basic(iter, "Peer",
1189 DBUS_TYPE_STRING, &peer);
1192 static void append_ipv6(DBusMessageIter *iter, void *user_data)
1194 struct vpn_provider *provider = user_data;
1195 const char *address, *gateway, *peer;
1197 address = __vpn_ipconfig_get_local(provider->ipconfig_ipv6);
1199 unsigned char prefixlen;
1201 connman_dbus_dict_append_basic(iter, "Address",
1202 DBUS_TYPE_STRING, &address);
1204 prefixlen = __vpn_ipconfig_get_prefixlen(
1205 provider->ipconfig_ipv6);
1207 connman_dbus_dict_append_basic(iter, "PrefixLength",
1208 DBUS_TYPE_BYTE, &prefixlen);
1211 gateway = __vpn_ipconfig_get_gateway(provider->ipconfig_ipv6);
1213 connman_dbus_dict_append_basic(iter, "Gateway",
1214 DBUS_TYPE_STRING, &gateway);
1216 peer = __vpn_ipconfig_get_peer(provider->ipconfig_ipv6);
1218 connman_dbus_dict_append_basic(iter, "Peer",
1219 DBUS_TYPE_STRING, &peer);
1222 static const char *state2string(enum vpn_provider_state state)
1225 case VPN_PROVIDER_STATE_UNKNOWN:
1227 case VPN_PROVIDER_STATE_IDLE:
1229 case VPN_PROVIDER_STATE_CONNECT:
1230 return "configuration";
1231 case VPN_PROVIDER_STATE_READY:
1233 case VPN_PROVIDER_STATE_DISCONNECT:
1234 return "disconnect";
1235 case VPN_PROVIDER_STATE_FAILURE:
1242 static void append_nameservers(DBusMessageIter *iter, char **servers)
1248 for (i = 0; servers[i]; i++) {
1249 DBG("servers[%d] %s", i, servers[i]);
1250 dbus_message_iter_append_basic(iter,
1251 DBUS_TYPE_STRING, &servers[i]);
1255 static void append_dns(DBusMessageIter *iter, void *user_data)
1257 struct vpn_provider *provider = user_data;
1259 if (provider->nameservers)
1260 append_nameservers(iter, provider->nameservers);
1263 static int provider_indicate_state(struct vpn_provider *provider,
1264 enum vpn_provider_state state)
1267 enum vpn_provider_state old_state;
1269 str = state2string(state);
1270 DBG("provider %p state %s/%d", provider, str, state);
1274 old_state = provider->state;
1275 provider->state = state;
1277 if (state == VPN_PROVIDER_STATE_READY) {
1278 connman_dbus_property_changed_basic(provider->path,
1279 VPN_CONNECTION_INTERFACE, "Index",
1280 DBUS_TYPE_INT32, &provider->index);
1282 if (provider->family == AF_INET)
1283 connman_dbus_property_changed_dict(provider->path,
1284 VPN_CONNECTION_INTERFACE, "IPv4",
1285 append_ipv4, provider);
1286 else if (provider->family == AF_INET6)
1287 connman_dbus_property_changed_dict(provider->path,
1288 VPN_CONNECTION_INTERFACE, "IPv6",
1289 append_ipv6, provider);
1291 connman_dbus_property_changed_array(provider->path,
1292 VPN_CONNECTION_INTERFACE,
1295 append_dns, provider);
1297 if (provider->domain)
1298 connman_dbus_property_changed_basic(provider->path,
1299 VPN_CONNECTION_INTERFACE,
1305 if (old_state != state)
1306 connman_dbus_property_changed_basic(provider->path,
1307 VPN_CONNECTION_INTERFACE, "State",
1308 DBUS_TYPE_STRING, &str);
1311 * We do not stay in failure state as clients like connmand can
1312 * get confused about our current state.
1314 if (provider->state == VPN_PROVIDER_STATE_FAILURE)
1315 provider->state = VPN_PROVIDER_STATE_IDLE;
1320 static void append_state(DBusMessageIter *iter,
1321 struct vpn_provider *provider)
1325 switch (provider->state) {
1326 case VPN_PROVIDER_STATE_UNKNOWN:
1327 case VPN_PROVIDER_STATE_IDLE:
1330 case VPN_PROVIDER_STATE_CONNECT:
1331 str = "configuration";
1333 case VPN_PROVIDER_STATE_READY:
1336 case VPN_PROVIDER_STATE_DISCONNECT:
1339 case VPN_PROVIDER_STATE_FAILURE:
1344 connman_dbus_dict_append_basic(iter, "State",
1345 DBUS_TYPE_STRING, &str);
1348 static void append_properties(DBusMessageIter *iter,
1349 struct vpn_provider *provider)
1351 DBusMessageIter dict;
1352 GHashTableIter hash;
1353 gpointer value, key;
1354 dbus_bool_t immutable;
1356 connman_dbus_dict_open(iter, &dict);
1358 append_state(&dict, provider);
1361 connman_dbus_dict_append_basic(&dict, "Type",
1362 DBUS_TYPE_STRING, &provider->type);
1365 connman_dbus_dict_append_basic(&dict, "Name",
1366 DBUS_TYPE_STRING, &provider->name);
1369 connman_dbus_dict_append_basic(&dict, "Host",
1370 DBUS_TYPE_STRING, &provider->host);
1371 if (provider->index >= 0)
1372 connman_dbus_dict_append_basic(&dict, "Index",
1373 DBUS_TYPE_INT32, &provider->index);
1374 if (provider->domain)
1375 connman_dbus_dict_append_basic(&dict, "Domain",
1376 DBUS_TYPE_STRING, &provider->domain);
1378 immutable = provider->immutable;
1379 connman_dbus_dict_append_basic(&dict, "Immutable", DBUS_TYPE_BOOLEAN,
1382 if (provider->family == AF_INET)
1383 connman_dbus_dict_append_dict(&dict, "IPv4", append_ipv4,
1385 else if (provider->family == AF_INET6)
1386 connman_dbus_dict_append_dict(&dict, "IPv6", append_ipv6,
1389 connman_dbus_dict_append_array(&dict, "Nameservers",
1390 DBUS_TYPE_STRING, append_dns, provider);
1392 connman_dbus_dict_append_array(&dict, "UserRoutes",
1393 DBUS_TYPE_DICT_ENTRY, append_routes,
1394 provider->user_routes);
1396 connman_dbus_dict_append_array(&dict, "ServerRoutes",
1397 DBUS_TYPE_DICT_ENTRY, append_routes,
1400 if (provider->setting_strings) {
1401 g_hash_table_iter_init(&hash, provider->setting_strings);
1403 while (g_hash_table_iter_next(&hash, &key, &value)) {
1404 struct vpn_setting *setting = value;
1406 if (!setting->hide_value &&
1408 connman_dbus_dict_append_basic(&dict, key,
1414 connman_dbus_dict_close(iter, &dict);
1417 static void connection_added_signal(struct vpn_provider *provider)
1419 DBusMessage *signal;
1420 DBusMessageIter iter;
1422 signal = dbus_message_new_signal(VPN_MANAGER_PATH,
1423 VPN_MANAGER_INTERFACE, "ConnectionAdded");
1427 dbus_message_iter_init_append(signal, &iter);
1428 dbus_message_iter_append_basic(&iter, DBUS_TYPE_OBJECT_PATH,
1430 append_properties(&iter, provider);
1432 dbus_connection_send(connection, signal, NULL);
1433 dbus_message_unref(signal);
1436 static bool check_host(char **hosts, char *host)
1443 for (i = 0; hosts[i]; i++) {
1444 if (g_strcmp0(hosts[i], host) == 0)
1451 static void provider_append_routes(gpointer key, gpointer value,
1454 struct vpn_route *route = value;
1455 struct vpn_provider *provider = user_data;
1456 int index = provider->index;
1462 * If the VPN administrator/user has given a route to
1463 * VPN server, then we must discard that because the
1464 * server cannot be contacted via VPN tunnel.
1466 if (check_host(provider->host_ip, route->network)) {
1467 DBG("Discarding VPN route to %s via %s at index %d",
1468 route->network, route->gateway, index);
1472 if (route->family == AF_INET6) {
1473 unsigned char prefix_len = atoi(route->netmask);
1475 connman_inet_add_ipv6_network_route(index, route->network,
1479 connman_inet_add_network_route(index, route->network,
1485 static int set_connected(struct vpn_provider *provider,
1488 struct vpn_ipconfig *ipconfig;
1490 DBG("provider %p id %s connected %d", provider,
1491 provider->identifier, connected);
1494 if (provider->family == AF_INET6)
1495 ipconfig = provider->ipconfig_ipv6;
1497 ipconfig = provider->ipconfig_ipv4;
1499 __vpn_ipconfig_address_add(ipconfig, provider->family);
1502 __vpn_ipconfig_gateway_add(ipconfig, provider->family);
1504 provider_indicate_state(provider,
1505 VPN_PROVIDER_STATE_READY);
1507 g_hash_table_foreach(provider->routes, provider_append_routes,
1510 g_hash_table_foreach(provider->user_routes,
1511 provider_append_routes, provider);
1514 provider_indicate_state(provider,
1515 VPN_PROVIDER_STATE_DISCONNECT);
1517 provider_indicate_state(provider,
1518 VPN_PROVIDER_STATE_IDLE);
1524 int vpn_provider_set_state(struct vpn_provider *provider,
1525 enum vpn_provider_state state)
1531 case VPN_PROVIDER_STATE_UNKNOWN:
1533 case VPN_PROVIDER_STATE_IDLE:
1534 return set_connected(provider, false);
1535 case VPN_PROVIDER_STATE_CONNECT:
1536 return provider_indicate_state(provider, state);
1537 case VPN_PROVIDER_STATE_READY:
1538 return set_connected(provider, true);
1539 case VPN_PROVIDER_STATE_DISCONNECT:
1540 return provider_indicate_state(provider, state);
1541 case VPN_PROVIDER_STATE_FAILURE:
1542 return provider_indicate_state(provider, state);
1547 int vpn_provider_indicate_error(struct vpn_provider *provider,
1548 enum vpn_provider_error error)
1550 DBG("provider %p id %s error %d", provider, provider->identifier,
1554 case VPN_PROVIDER_ERROR_LOGIN_FAILED:
1556 case VPN_PROVIDER_ERROR_AUTH_FAILED:
1557 vpn_provider_set_state(provider, VPN_PROVIDER_STATE_FAILURE);
1559 case VPN_PROVIDER_ERROR_CONNECT_FAILED:
1568 static int connection_unregister(struct vpn_provider *provider)
1570 DBG("provider %p path %s", provider, provider->path);
1572 if (!provider->path)
1575 g_dbus_unregister_interface(connection, provider->path,
1576 VPN_CONNECTION_INTERFACE);
1578 g_free(provider->path);
1579 provider->path = NULL;
1584 static int connection_register(struct vpn_provider *provider)
1586 DBG("provider %p path %s", provider, provider->path);
1591 provider->path = g_strdup_printf("%s/connection/%s", VPN_PATH,
1592 provider->identifier);
1594 g_dbus_register_interface(connection, provider->path,
1595 VPN_CONNECTION_INTERFACE,
1596 connection_methods, connection_signals,
1597 NULL, provider, NULL);
1602 static void unregister_provider(gpointer data)
1604 struct vpn_provider *provider = data;
1606 configuration_count_del();
1608 connection_unregister(provider);
1610 vpn_provider_unref(provider);
1613 static void provider_initialize(struct vpn_provider *provider)
1615 DBG("provider %p", provider);
1617 provider->index = 0;
1619 provider->name = NULL;
1620 provider->type = NULL;
1621 provider->domain = NULL;
1622 provider->identifier = NULL;
1623 provider->immutable = false;
1624 provider->user_networks = NULL;
1625 provider->routes = g_hash_table_new_full(g_direct_hash, g_direct_equal,
1627 provider->user_routes = g_hash_table_new_full(g_str_hash, g_str_equal,
1628 g_free, free_route);
1629 provider->setting_strings = g_hash_table_new_full(g_str_hash,
1630 g_str_equal, g_free, free_setting);
1633 static struct vpn_provider *vpn_provider_new(void)
1635 struct vpn_provider *provider;
1637 provider = g_try_new0(struct vpn_provider, 1);
1641 provider->refcount = 1;
1643 DBG("provider %p", provider);
1644 provider_initialize(provider);
1649 static struct vpn_provider *vpn_provider_get(const char *identifier)
1651 struct vpn_provider *provider;
1653 provider = g_hash_table_lookup(provider_hash, identifier);
1657 provider = vpn_provider_new();
1661 DBG("provider %p", provider);
1663 provider->identifier = g_strdup(identifier);
1665 g_hash_table_insert(provider_hash, provider->identifier, provider);
1667 configuration_count_add();
1672 static void provider_dbus_ident(char *ident)
1674 int i, len = strlen(ident);
1676 for (i = 0; i < len; i++) {
1677 if (ident[i] >= '0' && ident[i] <= '9')
1679 if (ident[i] >= 'a' && ident[i] <= 'z')
1681 if (ident[i] >= 'A' && ident[i] <= 'Z')
1687 static struct vpn_provider *provider_create_from_keyfile(GKeyFile *keyfile,
1690 struct vpn_provider *provider;
1692 if (!keyfile || !ident)
1695 provider = __vpn_provider_lookup(ident);
1697 provider = vpn_provider_get(ident);
1699 DBG("can not create provider");
1703 provider_load_from_keyfile(provider, keyfile);
1705 if (!provider->name || !provider->host ||
1706 !provider->domain) {
1707 DBG("cannot get name, host or domain");
1708 vpn_provider_unref(provider);
1712 if (provider_register(provider) == 0)
1713 connection_register(provider);
1718 static void provider_create_all_from_type(const char *provider_type)
1725 DBG("provider type %s", provider_type);
1727 providers = __connman_storage_get_providers();
1732 for (i = 0; providers[i]; i += 1) {
1734 if (strncmp(providers[i], "provider_", 9) != 0)
1737 id = providers[i] + 9;
1738 keyfile = __connman_storage_load_provider(id);
1743 type = __vpn_config_get_string(keyfile, id, "Type", NULL);
1745 DBG("keyfile %p id %s type %s", keyfile, id, type);
1747 if (strcmp(provider_type, type) != 0) {
1749 g_key_file_free(keyfile);
1753 if (!provider_create_from_keyfile(keyfile, id))
1754 DBG("could not create provider");
1757 g_key_file_free(keyfile);
1759 g_strfreev(providers);
1762 char *__vpn_provider_create_identifier(const char *host, const char *domain)
1766 ident = g_strdup_printf("%s_%s", host, domain);
1770 provider_dbus_ident(ident);
1775 int __vpn_provider_create(DBusMessage *msg)
1777 struct vpn_provider *provider;
1778 DBusMessageIter iter, array;
1779 const char *type = NULL, *name = NULL;
1780 const char *host = NULL, *domain = NULL;
1781 GSList *networks = NULL;
1785 dbus_message_iter_init(msg, &iter);
1786 dbus_message_iter_recurse(&iter, &array);
1788 while (dbus_message_iter_get_arg_type(&array) == DBUS_TYPE_DICT_ENTRY) {
1789 DBusMessageIter entry, value;
1792 dbus_message_iter_recurse(&array, &entry);
1793 dbus_message_iter_get_basic(&entry, &key);
1795 dbus_message_iter_next(&entry);
1796 dbus_message_iter_recurse(&entry, &value);
1798 switch (dbus_message_iter_get_arg_type(&value)) {
1799 case DBUS_TYPE_STRING:
1800 if (g_str_equal(key, "Type"))
1801 dbus_message_iter_get_basic(&value, &type);
1802 else if (g_str_equal(key, "Name"))
1803 dbus_message_iter_get_basic(&value, &name);
1804 else if (g_str_equal(key, "Host"))
1805 dbus_message_iter_get_basic(&value, &host);
1806 else if (g_str_equal(key, "VPN.Domain") ||
1807 g_str_equal(key, "Domain"))
1808 dbus_message_iter_get_basic(&value, &domain);
1810 case DBUS_TYPE_ARRAY:
1811 if (g_str_equal(key, "UserRoutes"))
1812 networks = get_user_networks(&value);
1816 dbus_message_iter_next(&array);
1819 if (!host || !domain)
1822 DBG("Type %s name %s networks %p", type, name, networks);
1827 ident = __vpn_provider_create_identifier(host, domain);
1828 DBG("ident %s", ident);
1830 provider = __vpn_provider_lookup(ident);
1832 provider = vpn_provider_get(ident);
1834 DBG("can not create provider");
1839 provider->host = g_strdup(host);
1840 provider->domain = g_strdup(domain);
1841 provider->name = g_strdup(name);
1842 provider->type = g_strdup(type);
1844 if (provider_register(provider) == 0)
1845 vpn_provider_load(provider);
1847 provider_resolv_host_addr(provider);
1851 g_slist_free_full(provider->user_networks, free_route);
1852 provider->user_networks = networks;
1853 set_user_networks(provider, provider->user_networks);
1856 dbus_message_iter_init(msg, &iter);
1857 dbus_message_iter_recurse(&iter, &array);
1859 while (dbus_message_iter_get_arg_type(&array) == DBUS_TYPE_DICT_ENTRY) {
1860 DBusMessageIter entry, value;
1861 const char *key, *str;
1863 dbus_message_iter_recurse(&array, &entry);
1864 dbus_message_iter_get_basic(&entry, &key);
1866 dbus_message_iter_next(&entry);
1867 dbus_message_iter_recurse(&entry, &value);
1869 switch (dbus_message_iter_get_arg_type(&value)) {
1870 case DBUS_TYPE_STRING:
1871 dbus_message_iter_get_basic(&value, &str);
1872 vpn_provider_set_string(provider, key, str);
1876 dbus_message_iter_next(&array);
1881 vpn_provider_save(provider);
1883 err = provider_register(provider);
1884 if (err != 0 && err != -EALREADY)
1887 connection_register(provider);
1889 DBG("provider %p index %d path %s", provider, provider->index,
1892 g_dbus_send_reply(connection, msg,
1893 DBUS_TYPE_OBJECT_PATH, &provider->path,
1896 connection_added_signal(provider);
1901 static const char *get_string(GHashTable *settings, const char *key)
1903 DBG("settings %p key %s", settings, key);
1905 return g_hash_table_lookup(settings, key);
1908 static GSList *parse_user_networks(const char *network_str)
1910 GSList *networks = NULL;
1917 elems = g_strsplit(network_str, ",", 0);
1922 struct vpn_route *vpn_route;
1923 char *network, *netmask, *gateway;
1927 route = g_strsplit(elems[i], "/", 0);
1932 if (!network || network[0] == '\0')
1935 family = connman_inet_check_ipaddress(network);
1937 DBG("Cannot get address family of %s (%d/%s)", network,
1938 family, gai_strerror(family));
1949 DBG("Unsupported address family %d", family);
1954 if (!netmask || netmask[0] == '\0')
1959 vpn_route = g_try_new0(struct vpn_route, 1);
1965 vpn_route->family = family;
1966 vpn_route->network = g_strdup(network);
1967 vpn_route->netmask = g_strdup(netmask);
1968 vpn_route->gateway = g_strdup(gateway);
1970 DBG("route %s/%s%s%s", network, netmask,
1971 gateway ? " via " : "", gateway ? gateway : "");
1973 networks = g_slist_prepend(networks, vpn_route);
1982 return g_slist_reverse(networks);
1985 int __vpn_provider_create_from_config(GHashTable *settings,
1986 const char *config_ident,
1987 const char *config_entry)
1989 struct vpn_provider *provider;
1990 const char *type, *name, *host, *domain, *networks_str;
1993 GHashTableIter hash;
1994 gpointer value, key;
1997 type = get_string(settings, "Type");
1998 name = get_string(settings, "Name");
1999 host = get_string(settings, "Host");
2000 domain = get_string(settings, "Domain");
2001 networks_str = get_string(settings, "Networks");
2002 networks = parse_user_networks(networks_str);
2004 if (!host || !domain) {
2009 DBG("type %s name %s networks %s", type, name, networks_str);
2011 if (!type || !name) {
2016 ident = __vpn_provider_create_identifier(host, domain);
2017 DBG("ident %s", ident);
2019 provider = __vpn_provider_lookup(ident);
2021 provider = vpn_provider_get(ident);
2023 DBG("can not create provider");
2028 provider->host = g_strdup(host);
2029 provider->domain = g_strdup(domain);
2030 provider->name = g_strdup(name);
2031 provider->type = g_ascii_strdown(type, -1);
2033 provider->config_file = g_strdup(config_ident);
2034 provider->config_entry = g_strdup(config_entry);
2036 provider_register(provider);
2038 provider_resolv_host_addr(provider);
2042 g_slist_free_full(provider->user_networks, free_route);
2043 provider->user_networks = networks;
2044 set_user_networks(provider, provider->user_networks);
2047 g_hash_table_iter_init(&hash, settings);
2049 while (g_hash_table_iter_next(&hash, &key, &value))
2050 __vpn_provider_set_string_immutable(provider, key, value);
2052 provider->immutable = true;
2054 vpn_provider_save(provider);
2056 err = provider_register(provider);
2057 if (err != 0 && err != -EALREADY)
2060 connection_register(provider);
2062 DBG("provider %p index %d path %s", provider, provider->index,
2065 connection_added_signal(provider);
2073 g_slist_free_full(networks, free_route);
2078 static void append_connection_structs(DBusMessageIter *iter, void *user_data)
2080 DBusMessageIter entry;
2081 GHashTableIter hash;
2082 gpointer value, key;
2084 g_hash_table_iter_init(&hash, provider_hash);
2086 while (g_hash_table_iter_next(&hash, &key, &value)) {
2087 struct vpn_provider *provider = value;
2089 DBG("path %s", provider->path);
2091 if (!provider->identifier)
2094 dbus_message_iter_open_container(iter, DBUS_TYPE_STRUCT,
2096 dbus_message_iter_append_basic(&entry, DBUS_TYPE_OBJECT_PATH,
2098 append_properties(&entry, provider);
2099 dbus_message_iter_close_container(iter, &entry);
2103 DBusMessage *__vpn_provider_get_connections(DBusMessage *msg)
2109 reply = dbus_message_new_method_return(msg);
2113 __connman_dbus_append_objpath_dict_array(reply,
2114 append_connection_structs, NULL);
2119 const char *__vpn_provider_get_ident(struct vpn_provider *provider)
2124 return provider->identifier;
2127 static int set_string(struct vpn_provider *provider,
2128 const char *key, const char *value,
2129 bool hide_value, bool immutable)
2131 DBG("provider %p key %s immutable %s value %s", provider, key,
2132 immutable ? "yes" : "no",
2133 hide_value ? "<not printed>" : value);
2135 if (g_str_equal(key, "Type")) {
2136 g_free(provider->type);
2137 provider->type = g_ascii_strdown(value, -1);
2138 send_value(provider->path, "Type", provider->type);
2139 } else if (g_str_equal(key, "Name")) {
2140 g_free(provider->name);
2141 provider->name = g_strdup(value);
2142 send_value(provider->path, "Name", provider->name);
2143 } else if (g_str_equal(key, "Host")) {
2144 g_free(provider->host);
2145 provider->host = g_strdup(value);
2146 send_value(provider->path, "Host", provider->host);
2147 } else if (g_str_equal(key, "VPN.Domain") ||
2148 g_str_equal(key, "Domain")) {
2149 g_free(provider->domain);
2150 provider->domain = g_strdup(value);
2151 send_value(provider->path, "Domain", provider->domain);
2153 struct vpn_setting *setting;
2155 setting = g_hash_table_lookup(provider->setting_strings, key);
2156 if (setting && !immutable &&
2157 setting->immutable) {
2158 DBG("Trying to set immutable variable %s", key);
2162 setting = g_try_new0(struct vpn_setting, 1);
2166 setting->value = g_strdup(value);
2167 setting->hide_value = hide_value;
2170 setting->immutable = true;
2173 send_value(provider->path, key, setting->value);
2175 g_hash_table_replace(provider->setting_strings,
2176 g_strdup(key), setting);
2182 int vpn_provider_set_string(struct vpn_provider *provider,
2183 const char *key, const char *value)
2185 return set_string(provider, key, value, false, false);
2188 int vpn_provider_set_string_hide_value(struct vpn_provider *provider,
2189 const char *key, const char *value)
2191 return set_string(provider, key, value, true, false);
2194 int __vpn_provider_set_string_immutable(struct vpn_provider *provider,
2195 const char *key, const char *value)
2197 return set_string(provider, key, value, false, true);
2200 const char *vpn_provider_get_string(struct vpn_provider *provider,
2203 struct vpn_setting *setting;
2205 DBG("provider %p key %s", provider, key);
2207 if (g_str_equal(key, "Type"))
2208 return provider->type;
2209 else if (g_str_equal(key, "Name"))
2210 return provider->name;
2211 else if (g_str_equal(key, "Host"))
2212 return provider->host;
2213 else if (g_str_equal(key, "HostIP")) {
2214 if (!provider->host_ip ||
2215 !provider->host_ip[0])
2216 return provider->host;
2218 return provider->host_ip[0];
2219 } else if (g_str_equal(key, "VPN.Domain") ||
2220 g_str_equal(key, "Domain"))
2221 return provider->domain;
2223 setting = g_hash_table_lookup(provider->setting_strings, key);
2227 return setting->value;
2230 bool __vpn_provider_check_routes(struct vpn_provider *provider)
2235 if (provider->user_routes &&
2236 g_hash_table_size(provider->user_routes) > 0)
2239 if (provider->routes &&
2240 g_hash_table_size(provider->routes) > 0)
2246 void *vpn_provider_get_data(struct vpn_provider *provider)
2248 return provider->driver_data;
2251 void vpn_provider_set_data(struct vpn_provider *provider, void *data)
2253 provider->driver_data = data;
2256 void vpn_provider_set_index(struct vpn_provider *provider, int index)
2258 DBG("index %d provider %p", index, provider);
2260 if (!provider->ipconfig_ipv4) {
2261 provider->ipconfig_ipv4 = __vpn_ipconfig_create(index,
2263 if (!provider->ipconfig_ipv4) {
2264 DBG("Couldnt create ipconfig for IPv4");
2269 __vpn_ipconfig_set_index(provider->ipconfig_ipv4, index);
2271 if (!provider->ipconfig_ipv6) {
2272 provider->ipconfig_ipv6 = __vpn_ipconfig_create(index,
2274 if (!provider->ipconfig_ipv6) {
2275 DBG("Couldnt create ipconfig for IPv6");
2280 __vpn_ipconfig_set_index(provider->ipconfig_ipv6, index);
2283 provider->index = index;
2286 int vpn_provider_get_index(struct vpn_provider *provider)
2288 return provider->index;
2291 int vpn_provider_set_ipaddress(struct vpn_provider *provider,
2292 struct connman_ipaddress *ipaddress)
2294 struct vpn_ipconfig *ipconfig = NULL;
2296 switch (ipaddress->family) {
2298 ipconfig = provider->ipconfig_ipv4;
2301 ipconfig = provider->ipconfig_ipv6;
2307 DBG("provider %p ipconfig %p family %d", provider, ipconfig,
2313 provider->family = ipaddress->family;
2315 __vpn_ipconfig_set_local(ipconfig, ipaddress->local);
2316 __vpn_ipconfig_set_peer(ipconfig, ipaddress->peer);
2317 __vpn_ipconfig_set_broadcast(ipconfig, ipaddress->broadcast);
2318 __vpn_ipconfig_set_gateway(ipconfig, ipaddress->gateway);
2319 __vpn_ipconfig_set_prefixlen(ipconfig, ipaddress->prefixlen);
2324 int vpn_provider_set_pac(struct vpn_provider *provider,
2327 DBG("provider %p pac %s", provider, pac);
2333 int vpn_provider_set_domain(struct vpn_provider *provider,
2336 DBG("provider %p domain %s", provider, domain);
2338 g_free(provider->domain);
2339 provider->domain = g_strdup(domain);
2344 int vpn_provider_set_nameservers(struct vpn_provider *provider,
2345 const char *nameservers)
2347 DBG("provider %p nameservers %s", provider, nameservers);
2349 g_strfreev(provider->nameservers);
2350 provider->nameservers = NULL;
2355 provider->nameservers = g_strsplit(nameservers, " ", 0);
2360 enum provider_route_type {
2361 PROVIDER_ROUTE_TYPE_NONE = 0,
2362 PROVIDER_ROUTE_TYPE_MASK = 1,
2363 PROVIDER_ROUTE_TYPE_ADDR = 2,
2364 PROVIDER_ROUTE_TYPE_GW = 3,
2367 static int route_env_parse(struct vpn_provider *provider, const char *key,
2368 int *family, unsigned long *idx,
2369 enum provider_route_type *type)
2374 DBG("name %s", provider->name);
2376 if (!strcmp(provider->type, "openvpn")) {
2377 if (g_str_has_prefix(key, "route_network_")) {
2378 start = key + strlen("route_network_");
2379 *type = PROVIDER_ROUTE_TYPE_ADDR;
2380 } else if (g_str_has_prefix(key, "route_netmask_")) {
2381 start = key + strlen("route_netmask_");
2382 *type = PROVIDER_ROUTE_TYPE_MASK;
2383 } else if (g_str_has_prefix(key, "route_gateway_")) {
2384 start = key + strlen("route_gateway_");
2385 *type = PROVIDER_ROUTE_TYPE_GW;
2390 *idx = g_ascii_strtoull(start, &end, 10);
2392 } else if (!strcmp(provider->type, "openconnect")) {
2393 if (g_str_has_prefix(key, "CISCO_SPLIT_INC_")) {
2395 start = key + strlen("CISCO_SPLIT_INC_");
2396 } else if (g_str_has_prefix(key,
2397 "CISCO_IPV6_SPLIT_INC_")) {
2399 start = key + strlen("CISCO_IPV6_SPLIT_INC_");
2403 *idx = g_ascii_strtoull(start, &end, 10);
2405 if (strncmp(end, "_ADDR", 5) == 0)
2406 *type = PROVIDER_ROUTE_TYPE_ADDR;
2407 else if (strncmp(end, "_MASK", 5) == 0)
2408 *type = PROVIDER_ROUTE_TYPE_MASK;
2409 else if (strncmp(end, "_MASKLEN", 8) == 0 &&
2410 *family == AF_INET6) {
2411 *type = PROVIDER_ROUTE_TYPE_MASK;
2419 int vpn_provider_append_route(struct vpn_provider *provider,
2420 const char *key, const char *value)
2422 struct vpn_route *route;
2423 int ret, family = 0;
2424 unsigned long idx = 0;
2425 enum provider_route_type type = PROVIDER_ROUTE_TYPE_NONE;
2427 DBG("key %s value %s", key, value);
2429 ret = route_env_parse(provider, key, &family, &idx, &type);
2433 DBG("idx %lu family %d type %d", idx, family, type);
2435 route = g_hash_table_lookup(provider->routes, GINT_TO_POINTER(idx));
2437 route = g_try_new0(struct vpn_route, 1);
2439 connman_error("out of memory");
2443 route->family = family;
2445 g_hash_table_replace(provider->routes, GINT_TO_POINTER(idx),
2450 case PROVIDER_ROUTE_TYPE_NONE:
2452 case PROVIDER_ROUTE_TYPE_MASK:
2453 route->netmask = g_strdup(value);
2455 case PROVIDER_ROUTE_TYPE_ADDR:
2456 route->network = g_strdup(value);
2458 case PROVIDER_ROUTE_TYPE_GW:
2459 route->gateway = g_strdup(value);
2463 if (!handle_routes) {
2464 if (route->netmask && route->gateway &&
2466 provider_schedule_changed(provider);
2472 const char *vpn_provider_get_driver_name(struct vpn_provider *provider)
2474 if (!provider->driver)
2477 return provider->driver->name;
2480 const char *vpn_provider_get_save_group(struct vpn_provider *provider)
2482 return provider->identifier;
2485 static gint compare_priority(gconstpointer a, gconstpointer b)
2490 static void clean_provider(gpointer key, gpointer value, gpointer user_data)
2492 struct vpn_provider *provider = value;
2494 if (provider->driver && provider->driver->remove)
2495 provider->driver->remove(provider);
2497 connection_unregister(provider);
2500 int vpn_provider_driver_register(struct vpn_provider_driver *driver)
2502 DBG("driver %p name %s", driver, driver->name);
2504 driver_list = g_slist_insert_sorted(driver_list, driver,
2506 provider_create_all_from_type(driver->name);
2510 void vpn_provider_driver_unregister(struct vpn_provider_driver *driver)
2512 GHashTableIter iter;
2513 gpointer value, key;
2515 DBG("driver %p name %s", driver, driver->name);
2517 driver_list = g_slist_remove(driver_list, driver);
2519 g_hash_table_iter_init(&iter, provider_hash);
2520 while (g_hash_table_iter_next(&iter, &key, &value)) {
2521 struct vpn_provider *provider = value;
2523 if (provider && provider->driver &&
2524 provider->driver->type == driver->type &&
2525 g_strcmp0(provider->driver->name,
2526 driver->name) == 0) {
2527 provider->driver = NULL;
2532 const char *vpn_provider_get_name(struct vpn_provider *provider)
2534 return provider->name;
2537 const char *vpn_provider_get_host(struct vpn_provider *provider)
2539 return provider->host;
2542 const char *vpn_provider_get_path(struct vpn_provider *provider)
2544 return provider->path;
2547 static int agent_probe(struct connman_agent *agent)
2549 DBG("agent %p", agent);
2553 static void agent_remove(struct connman_agent *agent)
2555 DBG("agent %p", agent);
2558 static struct connman_agent_driver agent_driver = {
2560 .interface = VPN_AGENT_INTERFACE,
2561 .probe = agent_probe,
2562 .remove = agent_remove,
2565 static void remove_unprovisioned_providers(void)
2568 GKeyFile *keyfile, *configkeyfile;
2569 char *file, *section;
2572 providers = __connman_storage_get_providers();
2576 for (; providers[i]; i++) {
2577 char *group = providers[i] + sizeof("provider_") - 1;
2578 file = section = NULL;
2579 keyfile = configkeyfile = NULL;
2581 keyfile = __connman_storage_load_provider(group);
2585 file = __vpn_config_get_string(keyfile, group,
2586 "Config.file", NULL);
2590 section = __vpn_config_get_string(keyfile, group,
2591 "Config.ident", NULL);
2595 configkeyfile = __connman_storage_load_provider_config(file);
2596 if (!configkeyfile) {
2598 * Config file is missing, remove the provisioned
2601 __connman_storage_remove_provider(group);
2605 if (!g_key_file_has_group(configkeyfile, section))
2607 * Config section is missing, remove the provisioned
2610 __connman_storage_remove_provider(group);
2614 g_key_file_free(keyfile);
2617 g_key_file_free(configkeyfile);
2623 g_strfreev(providers);
2626 int __vpn_provider_init(bool do_routes)
2632 handle_routes = do_routes;
2634 err = connman_agent_driver_register(&agent_driver);
2636 connman_error("Cannot register agent driver for %s",
2641 connection = connman_dbus_get_connection();
2643 remove_unprovisioned_providers();
2645 provider_hash = g_hash_table_new_full(g_str_hash, g_str_equal,
2646 NULL, unregister_provider);
2650 void __vpn_provider_cleanup(void)
2654 connman_agent_driver_unregister(&agent_driver);
2656 g_hash_table_foreach(provider_hash, clean_provider, NULL);
2658 g_hash_table_destroy(provider_hash);
2659 provider_hash = NULL;
2661 dbus_connection_unref(connection);
projects / platform / upstream / connman.git / blob