1 /* -*- Mode: C; tab-width: 4; indent-tabs-mode: t; c-basic-offset: 4 -*- */
2 /* NetworkManager -- Network link manager
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation; either version 2 of the License, or
7 * (at your option) any later version.
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License along
15 * with this program; if not, write to the Free Software Foundation, Inc.,
16 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
18 * Copyright (C) 2004 - 2013 Red Hat, Inc.
19 * Copyright (C) 2007 - 2008 Novell, Inc.
22 #include "nm-default.h"
29 #include "nm-policy.h"
30 #include "NetworkManagerUtils.h"
31 #include "nm-activation-request.h"
32 #include "nm-device.h"
33 #include "nm-default-route-manager.h"
34 #include "nm-setting-ip4-config.h"
35 #include "nm-setting-connection.h"
36 #include "nm-platform.h"
37 #include "nm-dns-manager.h"
38 #include "nm-vpn-manager.h"
39 #include "nm-auth-utils.h"
40 #include "nm-firewall-manager.h"
41 #include "nm-dispatcher.h"
43 #include "nm-core-internal.h"
44 #include "nm-manager.h"
45 #include "nm-settings.h"
46 #include "nm-settings-connection.h"
47 #include "nm-dhcp4-config.h"
48 #include "nm-dhcp6-config.h"
50 #define _NMLOG_PREFIX_NAME "policy"
51 #define _NMLOG(level, domain, ...) \
53 nm_log ((level), (domain), \
54 "%s" _NM_UTILS_MACRO_FIRST (__VA_ARGS__), \
55 _NMLOG_PREFIX_NAME": " \
56 _NM_UTILS_MACRO_REST (__VA_ARGS__)); \
61 NMFirewallManager *firewall_manager;
62 guint update_state_id;
63 GSList *pending_activation_checks;
68 GSList *pending_secondaries;
74 NMDevice *default_device4, *activating_device4;
75 NMDevice *default_device6, *activating_device6;
78 GInetAddress *lookup_addr;
79 GCancellable *lookup_cancellable;
80 NMDnsManager *dns_manager;
81 gulong config_changed_id;
83 guint reset_retries_id; /* idle handler for resetting the retries count */
85 char *orig_hostname; /* hostname at NM start time */
86 char *cur_hostname; /* hostname we want to assign */
87 gboolean hostname_changed; /* TRUE if NM ever set the hostname */
90 #define NM_POLICY_GET_PRIVATE(o) (G_TYPE_INSTANCE_GET_PRIVATE ((o), NM_TYPE_POLICY, NMPolicyPrivate))
92 G_DEFINE_TYPE (NMPolicy, nm_policy, G_TYPE_OBJECT)
94 NM_GOBJECT_PROPERTIES_DEFINE (NMPolicy,
95 PROP_DEFAULT_IP4_DEVICE,
96 PROP_DEFAULT_IP6_DEVICE,
97 PROP_ACTIVATING_IP4_DEVICE,
98 PROP_ACTIVATING_IP6_DEVICE,
101 static void schedule_activate_all (NMPolicy *policy);
105 get_best_ip4_device (NMPolicy *self, gboolean fully_activated)
107 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (self);
109 return nm_default_route_manager_ip4_get_best_device (nm_default_route_manager_get (),
110 nm_manager_get_devices (priv->manager),
112 priv->default_device4);
116 get_best_ip6_device (NMPolicy *self, gboolean fully_activated)
118 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (self);
120 return nm_default_route_manager_ip6_get_best_device (nm_default_route_manager_get (),
121 nm_manager_get_devices (priv->manager),
123 priv->default_device6);
126 #define FALLBACK_HOSTNAME4 "localhost.localdomain"
128 static void settings_set_hostname_cb (const char *hostname,
135 ret = sethostname (hostname, strlen (hostname));
139 _LOGW (LOGD_DNS, "couldn't set the system hostname to '%s': (%d) %s",
140 hostname, errsv, strerror (errsv));
142 _LOGW (LOGD_DNS, "you should use hostnamed when systemd hardening is in effect!");
147 nm_dispatcher_call (DISPATCHER_ACTION_HOSTNAME, NULL, NULL, NULL, NULL, NULL, NULL);
151 _set_hostname (NMPolicy *policy,
152 const char *new_hostname,
155 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
156 char old_hostname[HOST_NAME_MAX + 1];
160 /* The incoming hostname *can* be NULL, which will get translated to
161 * 'localhost.localdomain' or such in the hostname policy code, but we
162 * keep cur_hostname = NULL in the case because we need to know that
163 * there was no valid hostname to start with.
166 /* Clear lookup addresses if we have a hostname, so that we don't
167 * restart the reverse lookup thread later.
170 g_clear_object (&priv->lookup_addr);
172 /* Don't change the hostname or update DNS this is the first time we're
173 * trying to change the hostname, and it's not actually changing.
175 if ( priv->orig_hostname
176 && (priv->hostname_changed == FALSE)
177 && g_strcmp0 (priv->orig_hostname, new_hostname) == 0)
180 /* Don't change the hostname or update DNS if the hostname isn't actually
183 if (g_strcmp0 (priv->cur_hostname, new_hostname) == 0)
186 g_free (priv->cur_hostname);
187 priv->cur_hostname = g_strdup (new_hostname);
188 priv->hostname_changed = TRUE;
190 /* Notify the DNS manager of the hostname change so that the domain part, if
191 * present, can be added to the search list.
193 nm_dns_manager_set_hostname (priv->dns_manager, priv->cur_hostname);
195 /* Finally, set kernel hostname */
197 if (!priv->cur_hostname)
198 name = FALLBACK_HOSTNAME4;
199 else if (!priv->cur_hostname[0]) {
200 g_warn_if_reached ();
201 name = FALLBACK_HOSTNAME4;
203 name = priv->cur_hostname;
205 old_hostname[HOST_NAME_MAX] = '\0';
207 ret = gethostname (old_hostname, HOST_NAME_MAX);
209 _LOGW (LOGD_DNS, "couldn't get the system hostname: (%d) %s",
210 errno, strerror (errno));
212 /* Don't set the hostname if it isn't actually changing */
213 if (nm_streq (name, old_hostname))
217 _LOGI (LOGD_DNS, "setting system hostname to '%s' (%s)", name, msg);
219 /* Ask NMSettings to update the transient hostname using its
220 * systemd-hostnamed proxy */
221 nm_settings_set_transient_hostname (priv->settings,
223 settings_set_hostname_cb,
228 lookup_callback (GObject *source,
229 GAsyncResult *result,
232 NMPolicy *policy = (NMPolicy *) user_data;
233 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
234 const char *hostname;
235 GError *error = NULL;
237 hostname = g_resolver_lookup_by_address_finish (G_RESOLVER (source), result, &error);
238 if (g_error_matches (error, G_IO_ERROR, G_IO_ERROR_CANCELLED)) {
239 /* Don't touch policy; it may have been freed already */
240 g_error_free (error);
245 _set_hostname (policy, hostname, "from address lookup");
247 _set_hostname (policy, NULL, error->message);
248 g_error_free (error);
251 g_clear_object (&priv->lookup_cancellable);
255 update_system_hostname (NMPolicy *policy, NMDevice *best4, NMDevice *best6)
257 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
258 char *configured_hostname = NULL;
259 const char *dhcp_hostname, *p;
260 NMIP4Config *ip4_config;
261 NMIP6Config *ip6_config;
263 g_return_if_fail (policy != NULL);
265 if (priv->lookup_cancellable) {
266 g_cancellable_cancel (priv->lookup_cancellable);
267 g_clear_object (&priv->lookup_cancellable);
270 /* Hostname precedence order:
272 * 1) a configured hostname (from settings)
273 * 2) automatic hostname from the default device's config (DHCP, VPN, etc)
274 * 3) the original hostname when NM started
275 * 4) reverse-DNS of the best device's IPv4 address
279 /* Try a persistent hostname first */
280 g_object_get (G_OBJECT (priv->manager), NM_MANAGER_HOSTNAME, &configured_hostname, NULL);
281 if (configured_hostname && nm_utils_is_specific_hostname (configured_hostname)) {
282 _set_hostname (policy, configured_hostname, "from system configuration");
283 g_free (configured_hostname);
286 g_free (configured_hostname);
288 /* Try automatically determined hostname from the best device's IP config */
290 best4 = get_best_ip4_device (policy, TRUE);
292 best6 = get_best_ip6_device (policy, TRUE);
294 if (!best4 && !best6) {
295 /* No best device; fall back to original hostname or if there wasn't
296 * one, 'localhost.localdomain'
298 _set_hostname (policy, priv->orig_hostname, "no default device");
303 NMDhcp4Config *dhcp4_config;
305 /* Grab a hostname out of the device's DHCP4 config */
306 dhcp4_config = nm_device_get_dhcp4_config (best4);
308 p = dhcp_hostname = nm_dhcp4_config_get_option (dhcp4_config, "host_name");
309 if (dhcp_hostname && strlen (dhcp_hostname)) {
310 /* Sanity check; strip leading spaces */
312 if (!g_ascii_isspace (*p++)) {
313 _set_hostname (policy, p-1, "from DHCPv4");
317 _LOGW (LOGD_DNS, "DHCPv4-provided hostname '%s' looks invalid; ignoring it",
322 NMDhcp6Config *dhcp6_config;
324 /* Grab a hostname out of the device's DHCP6 config */
325 dhcp6_config = nm_device_get_dhcp6_config (best6);
327 p = dhcp_hostname = nm_dhcp6_config_get_option (dhcp6_config, "host_name");
328 if (dhcp_hostname && strlen (dhcp_hostname)) {
329 /* Sanity check; strip leading spaces */
331 if (!g_ascii_isspace (*p++)) {
332 _set_hostname (policy, p-1, "from DHCPv6");
336 _LOGW (LOGD_DNS, "DHCPv6-provided hostname '%s' looks invalid; ignoring it",
342 /* If no automatically-configured hostname, try using the hostname from
343 * when NM started up.
345 if (priv->orig_hostname) {
346 _set_hostname (policy, priv->orig_hostname, "from system startup");
350 /* No configured hostname, no automatically determined hostname, and no
351 * bootup hostname. Start reverse DNS of the current IPv4 or IPv6 address.
353 ip4_config = best4 ? nm_device_get_ip4_config (best4) : NULL;
354 ip6_config = best6 ? nm_device_get_ip6_config (best6) : NULL;
356 if (ip4_config && nm_ip4_config_get_num_addresses (ip4_config) > 0) {
357 const NMPlatformIP4Address *addr4;
359 addr4 = nm_ip4_config_get_address (ip4_config, 0);
360 g_clear_object (&priv->lookup_addr);
361 priv->lookup_addr = g_inet_address_new_from_bytes ((guint8 *) &addr4->address,
362 G_SOCKET_FAMILY_IPV4);
363 } else if (ip6_config && nm_ip6_config_get_num_addresses (ip6_config) > 0) {
364 const NMPlatformIP6Address *addr6;
366 addr6 = nm_ip6_config_get_address (ip6_config, 0);
367 g_clear_object (&priv->lookup_addr);
368 priv->lookup_addr = g_inet_address_new_from_bytes ((guint8 *) &addr6->address,
369 G_SOCKET_FAMILY_IPV6);
371 /* No valid IP config; fall back to localhost.localdomain */
372 _set_hostname (policy, NULL, "no IP config");
376 priv->lookup_cancellable = g_cancellable_new ();
377 g_resolver_lookup_by_address_async (priv->resolver,
379 priv->lookup_cancellable,
380 lookup_callback, policy);
384 update_default_ac (NMPolicy *policy,
385 NMActiveConnection *best,
386 void (*set_active_func)(NMActiveConnection*, gboolean))
388 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
389 const GSList *connections, *iter;
391 /* Clear the 'default[6]' flag on all active connections that aren't the new
392 * default active connection. We'll set the new default after; this ensures
393 * we don't ever have two marked 'default[6]' simultaneously.
395 connections = nm_manager_get_active_connections (priv->manager);
396 for (iter = connections; iter; iter = g_slist_next (iter)) {
397 if (NM_ACTIVE_CONNECTION (iter->data) != best)
398 set_active_func (NM_ACTIVE_CONNECTION (iter->data), FALSE);
401 /* Mark new default active connection */
403 set_active_func (best, TRUE);
407 get_best_ip4_config (NMPolicy *self,
408 gboolean ignore_never_default,
409 const char **out_ip_iface,
410 NMActiveConnection **out_ac,
411 NMDevice **out_device,
412 NMVpnConnection **out_vpn)
414 return nm_default_route_manager_ip4_get_best_config (nm_default_route_manager_get (),
415 ignore_never_default,
423 update_ip4_dns (NMPolicy *policy, NMDnsManager *dns_mgr)
425 NMIP4Config *ip4_config;
426 const char *ip_iface = NULL;
427 NMVpnConnection *vpn = NULL;
428 NMDnsIPConfigType dns_type = NM_DNS_IP_CONFIG_TYPE_BEST_DEVICE;
430 ip4_config = get_best_ip4_config (policy, TRUE, &ip_iface, NULL, NULL, &vpn);
433 dns_type = NM_DNS_IP_CONFIG_TYPE_VPN;
435 /* Tell the DNS manager this config is preferred by re-adding it with
436 * a different IP config type.
438 nm_dns_manager_add_ip4_config (dns_mgr, ip_iface, ip4_config, dns_type);
443 update_ip4_routing (NMPolicy *policy, gboolean force_update)
445 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
446 NMDevice *best = NULL, *default_device;
447 NMConnection *connection = NULL;
448 NMVpnConnection *vpn = NULL;
449 NMActiveConnection *best_ac = NULL;
450 const char *ip_iface = NULL;
452 /* Note that we might have an IPv4 VPN tunneled over an IPv6-only device,
453 * so we can get (vpn != NULL && best == NULL).
455 if (!get_best_ip4_config (policy, FALSE, &ip_iface, &best_ac, &best, &vpn)) {
458 changed = (priv->default_device4 != NULL);
459 priv->default_device4 = NULL;
461 _notify (policy, PROP_DEFAULT_IP4_DEVICE);
465 g_assert ((best || vpn) && best_ac);
467 if (!force_update && best && (best == priv->default_device4))
471 const GSList *connections, *iter;
473 connections = nm_manager_get_active_connections (priv->manager);
474 for (iter = connections; iter; iter = g_slist_next (iter)) {
475 NMActiveConnection *active = iter->data;
477 if ( NM_IS_VPN_CONNECTION (active)
478 && nm_vpn_connection_get_ip4_config (NM_VPN_CONNECTION (active))
479 && !nm_active_connection_get_device (active))
480 nm_active_connection_set_device (active, best);
485 default_device = nm_active_connection_get_device (NM_ACTIVE_CONNECTION (vpn));
487 default_device = best;
489 update_default_ac (policy, best_ac, nm_active_connection_set_default);
491 if (default_device == priv->default_device4)
494 priv->default_device4 = default_device;
495 connection = nm_active_connection_get_applied_connection (best_ac);
496 _LOGI (LOGD_CORE, "set '%s' (%s) as default for IPv4 routing and DNS",
497 nm_connection_get_id (connection), ip_iface);
498 _notify (policy, PROP_DEFAULT_IP4_DEVICE);
502 get_best_ip6_config (NMPolicy *self,
503 gboolean ignore_never_default,
504 const char **out_ip_iface,
505 NMActiveConnection **out_ac,
506 NMDevice **out_device,
507 NMVpnConnection **out_vpn)
509 return nm_default_route_manager_ip6_get_best_config (nm_default_route_manager_get (),
510 ignore_never_default,
518 update_ip6_dns (NMPolicy *policy, NMDnsManager *dns_mgr)
520 NMIP6Config *ip6_config;
521 const char *ip_iface = NULL;
522 NMVpnConnection *vpn = NULL;
523 NMDnsIPConfigType dns_type = NM_DNS_IP_CONFIG_TYPE_BEST_DEVICE;
525 ip6_config = get_best_ip6_config (policy, TRUE, &ip_iface, NULL, NULL, &vpn);
528 dns_type = NM_DNS_IP_CONFIG_TYPE_VPN;
530 /* Tell the DNS manager this config is preferred by re-adding it with
531 * a different IP config type.
533 nm_dns_manager_add_ip6_config (dns_mgr, ip_iface, ip6_config, dns_type);
538 update_ip6_routing (NMPolicy *policy, gboolean force_update)
540 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
541 NMDevice *best = NULL, *default_device6;
542 NMConnection *connection = NULL;
543 NMVpnConnection *vpn = NULL;
544 NMActiveConnection *best_ac = NULL;
545 const char *ip_iface = NULL;
547 /* Note that we might have an IPv6 VPN tunneled over an IPv4-only device,
548 * so we can get (vpn != NULL && best == NULL).
550 if (!get_best_ip6_config (policy, FALSE, &ip_iface, &best_ac, &best, &vpn)) {
553 changed = (priv->default_device6 != NULL);
554 priv->default_device6 = NULL;
556 _notify (policy, PROP_DEFAULT_IP6_DEVICE);
560 g_assert ((best || vpn) && best_ac);
562 if (!force_update && best && (best == priv->default_device6))
566 const GSList *connections, *iter;
568 connections = nm_manager_get_active_connections (priv->manager);
569 for (iter = connections; iter; iter = g_slist_next (iter)) {
570 NMActiveConnection *active = iter->data;
572 if ( NM_IS_VPN_CONNECTION (active)
573 && nm_vpn_connection_get_ip6_config (NM_VPN_CONNECTION (active))
574 && !nm_active_connection_get_device (active))
575 nm_active_connection_set_device (active, best);
580 default_device6 = nm_active_connection_get_device (NM_ACTIVE_CONNECTION (vpn));
582 default_device6 = best;
584 update_default_ac (policy, best_ac, nm_active_connection_set_default6);
586 if (default_device6 == priv->default_device6)
589 priv->default_device6 = default_device6;
590 connection = nm_active_connection_get_applied_connection (best_ac);
591 _LOGI (LOGD_CORE, "set '%s' (%s) as default for IPv6 routing and DNS",
592 nm_connection_get_id (connection), ip_iface);
593 _notify (policy, PROP_DEFAULT_IP6_DEVICE);
597 update_routing_and_dns (NMPolicy *policy, gboolean force_update)
599 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
601 nm_dns_manager_begin_updates (priv->dns_manager, __func__);
603 update_ip4_dns (policy, priv->dns_manager);
604 update_ip6_dns (policy, priv->dns_manager);
606 update_ip4_routing (policy, force_update);
607 update_ip6_routing (policy, force_update);
609 /* Update the system hostname */
610 update_system_hostname (policy, priv->default_device4, priv->default_device6);
612 nm_dns_manager_end_updates (priv->dns_manager, __func__);
616 check_activating_devices (NMPolicy *policy)
618 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
619 GObject *object = G_OBJECT (policy);
620 NMDevice *best4, *best6 = NULL;
622 best4 = get_best_ip4_device (policy, FALSE);
623 best6 = get_best_ip6_device (policy, FALSE);
625 g_object_freeze_notify (object);
627 if (best4 != priv->activating_device4) {
628 priv->activating_device4 = best4;
629 _notify (policy, PROP_ACTIVATING_IP4_DEVICE);
631 if (best6 != priv->activating_device6) {
632 priv->activating_device6 = best6;
633 _notify (policy, PROP_ACTIVATING_IP6_DEVICE);
636 g_object_thaw_notify (object);
642 guint autoactivate_id;
646 activate_data_free (ActivateData *data)
648 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (data->policy);
650 nm_device_remove_pending_action (data->device, "autoactivate", TRUE);
651 priv->pending_activation_checks = g_slist_remove (priv->pending_activation_checks, data);
653 if (data->autoactivate_id)
654 g_source_remove (data->autoactivate_id);
655 g_object_unref (data->device);
660 auto_activate_device (gpointer user_data)
662 ActivateData *data = (ActivateData *) user_data;
664 NMPolicyPrivate *priv;
665 NMSettingsConnection *best_connection;
666 char *specific_object = NULL;
667 GPtrArray *connections;
668 GSList *connection_list;
672 policy = data->policy;
673 priv = NM_POLICY_GET_PRIVATE (policy);
675 data->autoactivate_id = 0;
677 // FIXME: if a device is already activating (or activated) with a connection
678 // but another connection now overrides the current one for that device,
679 // deactivate the device and activate the new connection instead of just
680 // bailing if the device is already active
681 if (nm_device_get_act_request (data->device))
684 connection_list = nm_manager_get_activatable_connections (priv->manager);
685 if (!connection_list)
688 connections = _nm_utils_copy_slist_to_array (connection_list, NULL, NULL);
689 g_slist_free (connection_list);
691 /* sort is stable (which is important at this point) so that connections
692 * with same priority are still sorted by last-connected-timestamp. */
693 g_ptr_array_sort (connections, (GCompareFunc) nm_utils_cmp_connection_by_autoconnect_priority);
695 /* Find the first connection that should be auto-activated */
696 best_connection = NULL;
697 for (i = 0; i < connections->len; i++) {
698 NMSettingsConnection *candidate = NM_SETTINGS_CONNECTION (connections->pdata[i]);
700 if (!nm_settings_connection_can_autoconnect (candidate))
702 if (nm_device_can_auto_connect (data->device, (NMConnection *) candidate, &specific_object)) {
703 best_connection = candidate;
707 g_ptr_array_free (connections, TRUE);
709 if (best_connection) {
710 GError *error = NULL;
711 NMAuthSubject *subject;
713 _LOGI (LOGD_DEVICE, "auto-activating connection '%s'",
714 nm_settings_connection_get_id (best_connection));
715 subject = nm_auth_subject_new_internal ();
716 if (!nm_manager_activate_connection (priv->manager,
722 _LOGI (LOGD_DEVICE, "connection '%s' auto-activation failed: (%d) %s",
723 nm_settings_connection_get_id (best_connection),
726 g_error_free (error);
728 g_object_unref (subject);
732 activate_data_free (data);
733 return G_SOURCE_REMOVE;
736 static ActivateData *
737 find_pending_activation (GSList *list, NMDevice *device)
741 for (iter = list; iter; iter = g_slist_next (iter)) {
742 if (((ActivateData *) iter->data)->device == device)
748 /*****************************************************************************/
753 } PendingSecondaryData;
755 static PendingSecondaryData *
756 pending_secondary_data_new (NMDevice *device, GSList *secondaries)
758 PendingSecondaryData *data;
760 data = g_malloc0 (sizeof (PendingSecondaryData));
761 data->device = g_object_ref (device);
762 data->secondaries = secondaries;
767 pending_secondary_data_free (PendingSecondaryData *data)
769 g_object_unref (data->device);
770 g_slist_free_full (data->secondaries, g_object_unref);
771 memset (data, 0, sizeof (*data));
776 process_secondaries (NMPolicy *policy,
777 NMActiveConnection *active,
780 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
781 GSList *iter, *iter2, *next, *next2;
783 /* Loop through devices waiting for secondary connections to activate */
784 for (iter = priv->pending_secondaries; iter; iter = next) {
785 PendingSecondaryData *secondary_data = (PendingSecondaryData *) iter->data;
786 NMDevice *item_device = secondary_data->device;
788 next = g_slist_next (iter);
790 /* Look for 'active' in each device's secondary connections list */
791 for (iter2 = secondary_data->secondaries; iter2; iter2 = next2) {
792 NMActiveConnection *secondary_active = NM_ACTIVE_CONNECTION (iter2->data);
794 next2 = g_slist_next (iter2);
796 if (active != secondary_active)
800 _LOGD (LOGD_DEVICE, "secondary connection '%s' succeeded; active path '%s'",
801 nm_active_connection_get_settings_connection_id (active),
802 nm_exported_object_get_path (NM_EXPORTED_OBJECT (active)));
804 /* Secondary connection activated */
805 secondary_data->secondaries = g_slist_remove (secondary_data->secondaries, secondary_active);
806 g_object_unref (secondary_active);
807 if (!secondary_data->secondaries) {
808 /* No secondary UUID remained -> remove the secondary data item */
809 priv->pending_secondaries = g_slist_remove (priv->pending_secondaries, secondary_data);
810 pending_secondary_data_free (secondary_data);
811 if (nm_device_get_state (item_device) == NM_DEVICE_STATE_SECONDARIES)
812 nm_device_state_changed (item_device, NM_DEVICE_STATE_ACTIVATED, NM_DEVICE_STATE_REASON_NONE);
816 _LOGD (LOGD_DEVICE, "secondary connection '%s' failed; active path '%s'",
817 nm_active_connection_get_settings_connection_id (active),
818 nm_exported_object_get_path (NM_EXPORTED_OBJECT (active)));
820 /* Secondary connection failed -> do not watch other connections */
821 priv->pending_secondaries = g_slist_remove (priv->pending_secondaries, secondary_data);
822 pending_secondary_data_free (secondary_data);
823 if ( nm_device_get_state (item_device) == NM_DEVICE_STATE_SECONDARIES
824 || nm_device_get_state (item_device) == NM_DEVICE_STATE_ACTIVATED)
825 nm_device_state_changed (item_device, NM_DEVICE_STATE_FAILED,
826 NM_DEVICE_STATE_REASON_SECONDARY_CONNECTION_FAILED);
834 global_state_changed (NMManager *manager, NMState state, gpointer user_data)
839 hostname_changed (NMManager *manager, GParamSpec *pspec, gpointer user_data)
841 update_system_hostname ((NMPolicy *) user_data, NULL, NULL);
845 reset_autoconnect_all (NMPolicy *policy, NMDevice *device)
847 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
848 GSList *connections, *iter;
851 _LOGD (LOGD_DEVICE, "re-enabling autoconnect for all connections on %s",
852 nm_device_get_iface (device));
854 _LOGD (LOGD_DEVICE, "re-enabling autoconnect for all connections");
856 connections = nm_settings_get_connections (priv->settings);
857 for (iter = connections; iter; iter = g_slist_next (iter)) {
858 if (!device || nm_device_check_connection_compatible (device, iter->data)) {
859 nm_settings_connection_reset_autoconnect_retries (iter->data);
860 nm_settings_connection_set_autoconnect_blocked_reason (iter->data, NM_DEVICE_STATE_REASON_NONE);
863 g_slist_free (connections);
867 reset_autoconnect_for_failed_secrets (NMPolicy *policy)
869 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
870 GSList *connections, *iter;
872 _LOGD (LOGD_DEVICE, "re-enabling autoconnect for all connections with failed secrets");
874 connections = nm_settings_get_connections (priv->settings);
875 for (iter = connections; iter; iter = g_slist_next (iter)) {
876 NMSettingsConnection *connection = NM_SETTINGS_CONNECTION (iter->data);
878 if (nm_settings_connection_get_autoconnect_blocked_reason (connection) == NM_DEVICE_STATE_REASON_NO_SECRETS) {
879 nm_settings_connection_reset_autoconnect_retries (connection);
880 nm_settings_connection_set_autoconnect_blocked_reason (connection, NM_DEVICE_STATE_REASON_NONE);
883 g_slist_free (connections);
887 block_autoconnect_for_device (NMPolicy *policy, NMDevice *device)
889 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
890 GSList *connections, *iter;
892 _LOGD (LOGD_DEVICE, "blocking autoconnect for all connections on %s",
893 nm_device_get_iface (device));
895 /* NMDevice keeps its own autoconnect-able-ness state; we only need to
896 * explicitly block connections for software devices, where the NMDevice
897 * might be destroyed and recreated later.
899 if (!nm_device_is_software (device))
902 connections = nm_settings_get_connections (priv->settings);
903 for (iter = connections; iter; iter = g_slist_next (iter)) {
904 if (nm_device_check_connection_compatible (device, iter->data)) {
905 nm_settings_connection_set_autoconnect_blocked_reason (NM_SETTINGS_CONNECTION (iter->data),
906 NM_DEVICE_STATE_REASON_USER_REQUESTED);
912 sleeping_changed (NMManager *manager, GParamSpec *pspec, gpointer user_data)
914 NMPolicy *policy = user_data;
915 gboolean sleeping = FALSE, enabled = FALSE;
917 g_object_get (G_OBJECT (manager), NM_MANAGER_SLEEPING, &sleeping, NULL);
918 g_object_get (G_OBJECT (manager), NM_MANAGER_NETWORKING_ENABLED, &enabled, NULL);
920 /* Reset retries on all connections so they'll checked on wakeup */
921 if (sleeping || !enabled)
922 reset_autoconnect_all (policy, NULL);
926 schedule_activate_check (NMPolicy *policy, NMDevice *device)
928 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
930 const GSList *active_connections, *iter;
932 if (nm_manager_get_state (priv->manager) == NM_STATE_ASLEEP)
935 if (!nm_device_get_enabled (device))
938 if (!nm_device_autoconnect_allowed (device))
941 if (find_pending_activation (priv->pending_activation_checks, device))
944 active_connections = nm_manager_get_active_connections (priv->manager);
945 for (iter = active_connections; iter; iter = iter->next) {
946 if (nm_active_connection_get_device (NM_ACTIVE_CONNECTION (iter->data)) == device)
950 nm_device_add_pending_action (device, "autoactivate", TRUE);
952 data = g_malloc0 (sizeof (ActivateData));
953 data->policy = policy;
954 data->device = g_object_ref (device);
955 data->autoactivate_id = g_idle_add (auto_activate_device, data);
956 priv->pending_activation_checks = g_slist_append (priv->pending_activation_checks, data);
960 clear_pending_activate_check (NMPolicy *policy, NMDevice *device)
962 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
965 data = find_pending_activation (priv->pending_activation_checks, device);
966 if (data && data->autoactivate_id)
967 activate_data_free (data);
971 reset_connections_retries (gpointer user_data)
973 NMPolicy *policy = (NMPolicy *) user_data;
974 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
975 GSList *connections, *iter;
976 gint32 con_stamp, min_stamp, now;
977 gboolean changed = FALSE;
979 priv->reset_retries_id = 0;
982 now = nm_utils_get_monotonic_timestamp_s ();
983 connections = nm_settings_get_connections (priv->settings);
984 for (iter = connections; iter; iter = g_slist_next (iter)) {
985 NMSettingsConnection *connection = NM_SETTINGS_CONNECTION (iter->data);
987 con_stamp = nm_settings_connection_get_autoconnect_retry_time (connection);
991 if (con_stamp <= now) {
992 nm_settings_connection_reset_autoconnect_retries (connection);
994 } else if (min_stamp == 0 || min_stamp > con_stamp)
995 min_stamp = con_stamp;
997 g_slist_free (connections);
999 /* Schedule the handler again if there are some stamps left */
1001 priv->reset_retries_id = g_timeout_add_seconds (min_stamp - now, reset_connections_retries, policy);
1003 /* If anything changed, try to activate the newly re-enabled connections */
1005 schedule_activate_all (policy);
1010 static void schedule_activate_all (NMPolicy *policy);
1013 activate_slave_connections (NMPolicy *policy, NMDevice *device)
1015 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1016 const char *master_device, *master_uuid_settings = NULL, *master_uuid_applied = NULL;
1017 GSList *connections, *iter;
1020 master_device = nm_device_get_iface (device);
1021 g_assert (master_device);
1023 req = nm_device_get_act_request (device);
1027 con = nm_active_connection_get_applied_connection (NM_ACTIVE_CONNECTION (req));
1029 master_uuid_applied = nm_connection_get_uuid (con);
1030 con = NM_CONNECTION (nm_active_connection_get_settings_connection (NM_ACTIVE_CONNECTION (req)));
1032 master_uuid_settings = nm_connection_get_uuid (con);
1033 if (!g_strcmp0 (master_uuid_settings, master_uuid_applied))
1034 master_uuid_settings = NULL;
1038 connections = nm_settings_get_connections (priv->settings);
1039 for (iter = connections; iter; iter = g_slist_next (iter)) {
1040 NMConnection *slave;
1041 NMSettingConnection *s_slave_con;
1042 const char *slave_master;
1044 slave = NM_CONNECTION (iter->data);
1047 s_slave_con = nm_connection_get_setting_connection (slave);
1048 g_assert (s_slave_con);
1049 slave_master = nm_setting_connection_get_master (s_slave_con);
1053 if ( !g_strcmp0 (slave_master, master_device)
1054 || !g_strcmp0 (slave_master, master_uuid_applied)
1055 || !g_strcmp0 (slave_master, master_uuid_settings))
1056 nm_settings_connection_reset_autoconnect_retries (NM_SETTINGS_CONNECTION (slave));
1059 g_slist_free (connections);
1061 schedule_activate_all (policy);
1065 activate_secondary_connections (NMPolicy *policy,
1066 NMConnection *connection,
1069 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1070 NMSettingConnection *s_con;
1071 NMSettingsConnection *settings_con;
1072 NMActiveConnection *ac;
1073 PendingSecondaryData *secondary_data;
1074 GSList *secondary_ac_list = NULL;
1075 GError *error = NULL;
1077 gboolean success = TRUE;
1079 s_con = nm_connection_get_setting_connection (connection);
1082 for (i = 0; i < nm_setting_connection_get_num_secondaries (s_con); i++) {
1083 const char *sec_uuid = nm_setting_connection_get_secondary (s_con, i);
1086 settings_con = nm_settings_get_connection_by_uuid (priv->settings, sec_uuid);
1087 if (!settings_con) {
1088 _LOGW (LOGD_DEVICE, "secondary connection '%s' auto-activation failed: The connection doesn't exist.",
1093 if (!nm_connection_is_type (NM_CONNECTION (settings_con), NM_SETTING_VPN_SETTING_NAME)) {
1094 _LOGW (LOGD_DEVICE, "secondary connection '%s (%s)' auto-activation failed: The connection is not a VPN.",
1095 nm_settings_connection_get_id (settings_con), sec_uuid);
1100 req = nm_device_get_act_request (device);
1103 _LOGD (LOGD_DEVICE, "activating secondary connection '%s (%s)' for base connection '%s (%s)'",
1104 nm_settings_connection_get_id (settings_con), sec_uuid,
1105 nm_connection_get_id (connection), nm_connection_get_uuid (connection));
1106 ac = nm_manager_activate_connection (priv->manager,
1108 nm_exported_object_get_path (NM_EXPORTED_OBJECT (req)),
1110 nm_active_connection_get_subject (NM_ACTIVE_CONNECTION (req)),
1113 secondary_ac_list = g_slist_append (secondary_ac_list, g_object_ref (ac));
1115 _LOGW (LOGD_DEVICE, "secondary connection '%s (%s)' auto-activation failed: (%d) %s",
1116 nm_settings_connection_get_id (settings_con), sec_uuid,
1119 g_clear_error (&error);
1125 if (success && secondary_ac_list != NULL) {
1126 secondary_data = pending_secondary_data_new (device, secondary_ac_list);
1127 priv->pending_secondaries = g_slist_append (priv->pending_secondaries, secondary_data);
1129 g_slist_free_full (secondary_ac_list, g_object_unref);
1135 device_state_changed (NMDevice *device,
1136 NMDeviceState new_state,
1137 NMDeviceState old_state,
1138 NMDeviceStateReason reason,
1141 NMPolicy *policy = (NMPolicy *) user_data;
1142 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1144 NMSettingsConnection *connection = nm_device_get_settings_connection (device);
1146 const char *ip_iface = nm_device_get_ip_iface (device);
1147 NMIP4Config *ip4_config;
1148 NMIP6Config *ip6_config;
1149 NMSettingConnection *s_con = NULL;
1151 switch (new_state) {
1152 case NM_DEVICE_STATE_FAILED:
1153 /* Mark the connection invalid if it failed during activation so that
1154 * it doesn't get automatically chosen over and over and over again.
1157 && old_state >= NM_DEVICE_STATE_PREPARE
1158 && old_state <= NM_DEVICE_STATE_ACTIVATED) {
1159 guint32 tries = nm_settings_connection_get_autoconnect_retries (connection);
1161 if (reason == NM_DEVICE_STATE_REASON_NO_SECRETS) {
1162 _LOGD (LOGD_DEVICE, "connection '%s' now blocked from autoconnect due to no secrets",
1163 nm_settings_connection_get_id (connection));
1165 nm_settings_connection_set_autoconnect_blocked_reason (connection, NM_DEVICE_STATE_REASON_NO_SECRETS);
1166 } else if (tries > 0) {
1167 _LOGD (LOGD_DEVICE, "connection '%s' failed to autoconnect; %d tries left",
1168 nm_settings_connection_get_id (connection), tries);
1169 nm_settings_connection_set_autoconnect_retries (connection, tries - 1);
1172 if (nm_settings_connection_get_autoconnect_retries (connection) == 0) {
1173 _LOGI (LOGD_DEVICE, "disabling autoconnect for connection '%s'.",
1174 nm_settings_connection_get_id (connection));
1175 /* Schedule a handler to reset retries count */
1176 if (!priv->reset_retries_id) {
1177 gint32 retry_time = nm_settings_connection_get_autoconnect_retry_time (connection);
1179 g_warn_if_fail (retry_time != 0);
1180 priv->reset_retries_id = g_timeout_add_seconds (MAX (0, retry_time - nm_utils_get_monotonic_timestamp_s ()), reset_connections_retries, policy);
1183 nm_connection_clear_secrets (NM_CONNECTION (connection));
1186 case NM_DEVICE_STATE_ACTIVATED:
1188 /* Reset auto retries back to default since connection was successful */
1189 nm_settings_connection_reset_autoconnect_retries (connection);
1191 /* And clear secrets so they will always be requested from the
1192 * settings service when the next connection is made.
1195 nm_connection_clear_secrets (NM_CONNECTION (connection));
1198 /* Add device's new IPv4 and IPv6 configs to DNS */
1200 nm_dns_manager_begin_updates (priv->dns_manager, __func__);
1202 ip4_config = nm_device_get_ip4_config (device);
1204 nm_dns_manager_add_ip4_config (priv->dns_manager, ip_iface, ip4_config, NM_DNS_IP_CONFIG_TYPE_DEFAULT);
1205 ip6_config = nm_device_get_ip6_config (device);
1207 nm_dns_manager_add_ip6_config (priv->dns_manager, ip_iface, ip6_config, NM_DNS_IP_CONFIG_TYPE_DEFAULT);
1209 update_routing_and_dns (policy, FALSE);
1211 nm_dns_manager_end_updates (priv->dns_manager, __func__);
1213 case NM_DEVICE_STATE_UNMANAGED:
1214 case NM_DEVICE_STATE_UNAVAILABLE:
1215 if (old_state > NM_DEVICE_STATE_DISCONNECTED)
1216 update_routing_and_dns (policy, FALSE);
1218 case NM_DEVICE_STATE_DEACTIVATING:
1219 if (reason == NM_DEVICE_STATE_REASON_USER_REQUESTED) {
1220 if (!nm_device_get_autoconnect (device)) {
1221 /* The device was disconnected; block all connections on it */
1222 block_autoconnect_for_device (policy, device);
1225 /* The connection was deactivated, so block just this connection */
1226 _LOGD (LOGD_DEVICE, "blocking autoconnect of connection '%s' by user request",
1227 nm_settings_connection_get_id (connection));
1228 nm_settings_connection_set_autoconnect_blocked_reason (connection,
1229 NM_DEVICE_STATE_REASON_USER_REQUESTED);
1234 case NM_DEVICE_STATE_DISCONNECTED:
1235 /* Reset retry counts for a device's connections when carrier on; if cable
1236 * was unplugged and plugged in again, we should try to reconnect.
1238 if (reason == NM_DEVICE_STATE_REASON_CARRIER && old_state == NM_DEVICE_STATE_UNAVAILABLE)
1239 reset_autoconnect_all (policy, device);
1241 if (old_state > NM_DEVICE_STATE_DISCONNECTED)
1242 update_routing_and_dns (policy, FALSE);
1244 /* Device is now available for auto-activation */
1245 schedule_activate_check (policy, device);
1248 case NM_DEVICE_STATE_PREPARE:
1249 /* Reset auto-connect retries of all slaves and schedule them for
1251 activate_slave_connections (policy, device);
1253 case NM_DEVICE_STATE_IP_CONFIG:
1254 /* We must have secrets if we got here. */
1256 nm_settings_connection_set_autoconnect_blocked_reason (connection, NM_DEVICE_STATE_REASON_NONE);
1258 case NM_DEVICE_STATE_SECONDARIES:
1260 s_con = nm_connection_get_setting_connection (NM_CONNECTION (connection));
1261 if (s_con && nm_setting_connection_get_num_secondaries (s_con) > 0) {
1262 /* Make routes and DNS up-to-date before activating dependent connections */
1263 update_routing_and_dns (policy, FALSE);
1265 /* Activate secondary (VPN) connections */
1266 if (!activate_secondary_connections (policy, NM_CONNECTION (connection), device))
1267 nm_device_queue_state (device, NM_DEVICE_STATE_FAILED,
1268 NM_DEVICE_STATE_REASON_SECONDARY_CONNECTION_FAILED);
1270 nm_device_queue_state (device, NM_DEVICE_STATE_ACTIVATED,
1271 NM_DEVICE_STATE_REASON_NONE);
1278 check_activating_devices (policy);
1282 device_ip4_config_changed (NMDevice *device,
1283 NMIP4Config *new_config,
1284 NMIP4Config *old_config,
1287 NMPolicy *policy = user_data;
1288 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1289 const char *ip_iface = nm_device_get_ip_iface (device);
1291 nm_dns_manager_begin_updates (priv->dns_manager, __func__);
1293 /* Ignore IP config changes while the device is activating, because we'll
1294 * catch all the changes when the device moves to ACTIVATED state.
1295 * Prevents unecessary changes to DNS information.
1297 if (!nm_device_is_activating (device)) {
1298 if (old_config != new_config) {
1300 nm_dns_manager_remove_ip4_config (priv->dns_manager, old_config);
1302 nm_dns_manager_add_ip4_config (priv->dns_manager, ip_iface, new_config, NM_DNS_IP_CONFIG_TYPE_DEFAULT);
1304 update_ip4_dns (policy, priv->dns_manager);
1305 update_ip4_routing (policy, TRUE);
1307 /* Old configs get removed immediately */
1309 nm_dns_manager_remove_ip4_config (priv->dns_manager, old_config);
1312 nm_dns_manager_end_updates (priv->dns_manager, __func__);
1316 device_ip6_config_changed (NMDevice *device,
1317 NMIP6Config *new_config,
1318 NMIP6Config *old_config,
1321 NMPolicy *policy = user_data;
1322 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1323 const char *ip_iface = nm_device_get_ip_iface (device);
1325 nm_dns_manager_begin_updates (priv->dns_manager, __func__);
1327 /* Ignore IP config changes while the device is activating, because we'll
1328 * catch all the changes when the device moves to ACTIVATED state.
1329 * Prevents unecessary changes to DNS information.
1331 if (!nm_device_is_activating (device)) {
1332 if (old_config != new_config) {
1334 nm_dns_manager_remove_ip6_config (priv->dns_manager, old_config);
1336 nm_dns_manager_add_ip6_config (priv->dns_manager, ip_iface, new_config, NM_DNS_IP_CONFIG_TYPE_DEFAULT);
1338 update_ip6_dns (policy, priv->dns_manager);
1339 update_ip6_routing (policy, TRUE);
1341 /* Old configs get removed immediately */
1343 nm_dns_manager_remove_ip6_config (priv->dns_manager, old_config);
1346 nm_dns_manager_end_updates (priv->dns_manager, __func__);
1350 device_autoconnect_changed (NMDevice *device,
1354 if (nm_device_autoconnect_allowed (device))
1355 schedule_activate_check ((NMPolicy *) user_data, device);
1359 device_recheck_auto_activate (NMDevice *device, gpointer user_data)
1361 schedule_activate_check (NM_POLICY (user_data), device);
1370 _connect_device_signal (NMPolicy *policy,
1376 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1377 DeviceSignalId *data;
1379 data = g_slice_new0 (DeviceSignalId);
1382 data->id = g_signal_connect_after (device, name, callback, policy);
1384 data->id = g_signal_connect (device, name, callback, policy);
1385 data->device = device;
1386 priv->dev_ids = g_slist_prepend (priv->dev_ids, data);
1390 device_added (NMManager *manager, NMDevice *device, gpointer user_data)
1392 NMPolicy *policy = (NMPolicy *) user_data;
1394 /* Connect state-changed with _after, so that the handler is invoked after other handlers. */
1395 _connect_device_signal (policy, device, NM_DEVICE_STATE_CHANGED, device_state_changed, TRUE);
1396 _connect_device_signal (policy, device, NM_DEVICE_IP4_CONFIG_CHANGED, device_ip4_config_changed, FALSE);
1397 _connect_device_signal (policy, device, NM_DEVICE_IP6_CONFIG_CHANGED, device_ip6_config_changed, FALSE);
1398 _connect_device_signal (policy, device, "notify::" NM_DEVICE_AUTOCONNECT, device_autoconnect_changed, FALSE);
1399 _connect_device_signal (policy, device, NM_DEVICE_RECHECK_AUTO_ACTIVATE, device_recheck_auto_activate, FALSE);
1403 device_removed (NMManager *manager, NMDevice *device, gpointer user_data)
1405 NMPolicy *policy = (NMPolicy *) user_data;
1406 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1409 /* Clear any idle callbacks for this device */
1410 clear_pending_activate_check (policy, device);
1412 /* Clear any signal handlers for this device */
1413 iter = priv->dev_ids;
1415 DeviceSignalId *data = iter->data;
1416 GSList *next = g_slist_next (iter);
1418 if (data->device == device) {
1419 g_signal_handler_disconnect (data->device, data->id);
1420 g_slice_free (DeviceSignalId, data);
1421 priv->dev_ids = g_slist_delete_link (priv->dev_ids, iter);
1426 /* Don't update routing and DNS here as we've already handled that
1427 * for devices that need it when the device's state changed to UNMANAGED.
1431 /**************************************************************************/
1434 vpn_connection_activated (NMPolicy *policy, NMVpnConnection *vpn)
1436 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1437 NMIP4Config *ip4_config;
1438 NMIP6Config *ip6_config;
1439 const char *ip_iface;
1441 nm_dns_manager_begin_updates (priv->dns_manager, __func__);
1443 ip_iface = nm_vpn_connection_get_ip_iface (vpn);
1445 /* Add the VPN connection's IP configs from DNS */
1447 ip4_config = nm_vpn_connection_get_ip4_config (vpn);
1449 nm_dns_manager_add_ip4_config (priv->dns_manager, ip_iface, ip4_config, NM_DNS_IP_CONFIG_TYPE_VPN);
1451 ip6_config = nm_vpn_connection_get_ip6_config (vpn);
1453 nm_dns_manager_add_ip6_config (priv->dns_manager, ip_iface, ip6_config, NM_DNS_IP_CONFIG_TYPE_VPN);
1455 update_routing_and_dns (policy, TRUE);
1457 nm_dns_manager_end_updates (priv->dns_manager, __func__);
1461 vpn_connection_deactivated (NMPolicy *policy, NMVpnConnection *vpn)
1463 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1464 NMIP4Config *ip4_config;
1465 NMIP6Config *ip6_config;
1467 nm_dns_manager_begin_updates (priv->dns_manager, __func__);
1469 ip4_config = nm_vpn_connection_get_ip4_config (vpn);
1471 /* Remove the VPN connection's IP4 config from DNS */
1472 nm_dns_manager_remove_ip4_config (priv->dns_manager, ip4_config);
1475 ip6_config = nm_vpn_connection_get_ip6_config (vpn);
1477 /* Remove the VPN connection's IP6 config from DNS */
1478 nm_dns_manager_remove_ip6_config (priv->dns_manager, ip6_config);
1481 update_routing_and_dns (policy, TRUE);
1483 nm_dns_manager_end_updates (priv->dns_manager, __func__);
1487 vpn_connection_state_changed (NMVpnConnection *vpn,
1488 NMVpnConnectionState new_state,
1489 NMVpnConnectionState old_state,
1490 NMVpnConnectionStateReason reason,
1493 if (new_state == NM_VPN_CONNECTION_STATE_ACTIVATED)
1494 vpn_connection_activated (policy, vpn);
1495 else if (new_state >= NM_VPN_CONNECTION_STATE_FAILED) {
1496 /* Only clean up IP/DNS if the connection ever got past IP_CONFIG */
1497 if (old_state >= NM_VPN_CONNECTION_STATE_IP_CONFIG_GET &&
1498 old_state <= NM_VPN_CONNECTION_STATE_ACTIVATED)
1499 vpn_connection_deactivated (policy, vpn);
1504 vpn_connection_retry_after_failure (NMVpnConnection *vpn, NMPolicy *policy)
1506 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1507 NMActiveConnection *ac = NM_ACTIVE_CONNECTION (vpn);
1508 NMSettingsConnection *connection = nm_active_connection_get_settings_connection (ac);
1509 GError *error = NULL;
1511 /* Attempt to reconnect VPN connections that failed after being connected */
1512 if (!nm_manager_activate_connection (priv->manager,
1516 nm_active_connection_get_subject (ac),
1518 _LOGW (LOGD_DEVICE, "VPN '%s' reconnect failed: %s",
1519 nm_settings_connection_get_id (connection),
1520 error->message ? error->message : "unknown");
1521 g_clear_error (&error);
1526 active_connection_state_changed (NMActiveConnection *active,
1530 NMActiveConnectionState state = nm_active_connection_get_state (active);
1532 if (state == NM_ACTIVE_CONNECTION_STATE_ACTIVATED)
1533 process_secondaries (policy, active, TRUE);
1534 else if (state == NM_ACTIVE_CONNECTION_STATE_DEACTIVATED)
1535 process_secondaries (policy, active, FALSE);
1539 active_connection_added (NMManager *manager,
1540 NMActiveConnection *active,
1543 NMPolicy *policy = NM_POLICY (user_data);
1545 if (NM_IS_VPN_CONNECTION (active)) {
1546 g_signal_connect (active, NM_VPN_CONNECTION_INTERNAL_STATE_CHANGED,
1547 G_CALLBACK (vpn_connection_state_changed),
1549 g_signal_connect (active, NM_VPN_CONNECTION_INTERNAL_RETRY_AFTER_FAILURE,
1550 G_CALLBACK (vpn_connection_retry_after_failure),
1554 g_signal_connect (active, "notify::" NM_ACTIVE_CONNECTION_STATE,
1555 G_CALLBACK (active_connection_state_changed),
1560 active_connection_removed (NMManager *manager,
1561 NMActiveConnection *active,
1564 NMPolicy *policy = NM_POLICY (user_data);
1566 g_signal_handlers_disconnect_by_func (active,
1567 vpn_connection_state_changed,
1569 g_signal_handlers_disconnect_by_func (active,
1570 vpn_connection_retry_after_failure,
1572 g_signal_handlers_disconnect_by_func (active,
1573 active_connection_state_changed,
1577 /**************************************************************************/
1580 schedule_activate_all (NMPolicy *policy)
1582 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1585 for (iter = nm_manager_get_devices (priv->manager); iter; iter = g_slist_next (iter))
1586 schedule_activate_check (policy, NM_DEVICE (iter->data));
1590 connection_added (NMSettings *settings,
1591 NMSettingsConnection *connection,
1594 NMPolicy *policy = NM_POLICY (user_data);
1596 schedule_activate_all (policy);
1600 firewall_started (NMFirewallManager *manager,
1603 NMPolicy *policy = (NMPolicy *) user_data;
1604 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1607 /* add interface of each device to correct zone */
1608 for (iter = nm_manager_get_devices (priv->manager); iter; iter = g_slist_next (iter))
1609 nm_device_update_firewall_zone (iter->data);
1613 dns_config_changed (NMDnsManager *dns_manager, gpointer user_data)
1615 NMPolicy *policy = (NMPolicy *) user_data;
1616 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1618 /* Restart a thread for reverse-DNS lookup after we are signalled that
1619 * DNS changed. Because the result from a previous run may not be right
1620 * (race in updating DNS and doing the reverse lookup).
1623 /* Stop a lookup thread if any. */
1624 if (priv->lookup_cancellable) {
1625 g_cancellable_cancel (priv->lookup_cancellable);
1626 g_clear_object (&priv->lookup_cancellable);
1629 /* Re-start the hostname lookup thread if we don't have hostname yet. */
1630 if (priv->lookup_addr) {
1633 _LOGD (LOGD_DNS, "restarting reverse-lookup thread for address %s",
1634 (str = g_inet_address_to_string (priv->lookup_addr)));
1637 priv->lookup_cancellable = g_cancellable_new ();
1638 g_resolver_lookup_by_address_async (priv->resolver,
1640 priv->lookup_cancellable,
1641 lookup_callback, policy);
1646 connection_updated (NMSettings *settings,
1647 NMConnection *connection,
1650 schedule_activate_all ((NMPolicy *) user_data);
1654 connection_updated_by_user (NMSettings *settings,
1655 NMSettingsConnection *connection,
1658 NMPolicy *policy = (NMPolicy *) user_data;
1659 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1661 NMDevice *device = NULL;
1663 /* find device with given connection */
1664 for (iter = nm_manager_get_devices (priv->manager); iter; iter = g_slist_next (iter)) {
1665 NMDevice *dev = NM_DEVICE (iter->data);
1667 if (nm_device_get_settings_connection (dev) == connection) {
1674 nm_device_reapply_settings_immediately (device);
1676 /* Reset auto retries back to default since connection was updated */
1677 nm_settings_connection_reset_autoconnect_retries (connection);
1681 _deactivate_if_active (NMManager *manager, NMSettingsConnection *connection)
1683 const GSList *active, *iter;
1685 active = nm_manager_get_active_connections (manager);
1686 for (iter = active; iter; iter = g_slist_next (iter)) {
1687 NMActiveConnection *ac = iter->data;
1688 NMActiveConnectionState state = nm_active_connection_get_state (ac);
1689 GError *error = NULL;
1691 if (nm_active_connection_get_settings_connection (ac) == connection &&
1692 (state <= NM_ACTIVE_CONNECTION_STATE_ACTIVATED)) {
1693 if (!nm_manager_deactivate_connection (manager,
1694 nm_exported_object_get_path (NM_EXPORTED_OBJECT (ac)),
1695 NM_DEVICE_STATE_REASON_CONNECTION_REMOVED,
1697 _LOGW (LOGD_DEVICE, "connection '%s' disappeared, but error deactivating it: (%d) %s",
1698 nm_settings_connection_get_id (connection),
1699 error ? error->code : -1,
1700 error ? error->message : "(unknown)");
1701 g_clear_error (&error);
1708 connection_removed (NMSettings *settings,
1709 NMSettingsConnection *connection,
1712 NMPolicy *policy = user_data;
1713 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1715 _deactivate_if_active (priv->manager, connection);
1719 connection_visibility_changed (NMSettings *settings,
1720 NMSettingsConnection *connection,
1723 NMPolicy *policy = user_data;
1724 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1726 if (nm_settings_connection_is_visible (connection))
1727 schedule_activate_all (policy);
1729 _deactivate_if_active (priv->manager, connection);
1733 secret_agent_registered (NMSettings *settings,
1734 NMSecretAgent *agent,
1737 NMPolicy *policy = NM_POLICY (user_data);
1739 /* The registered secret agent may provide some missing secrets. Thus we
1740 * reset retries count here and schedule activation, so that the
1741 * connections failed due to missing secrets may re-try auto-connection.
1743 reset_autoconnect_for_failed_secrets (policy);
1744 schedule_activate_all (policy);
1748 nm_policy_get_default_ip4_device (NMPolicy *policy)
1750 return NM_POLICY_GET_PRIVATE (policy)->default_device4;
1754 nm_policy_get_default_ip6_device (NMPolicy *policy)
1756 return NM_POLICY_GET_PRIVATE (policy)->default_device6;
1760 nm_policy_get_activating_ip4_device (NMPolicy *policy)
1762 return NM_POLICY_GET_PRIVATE (policy)->activating_device4;
1766 nm_policy_get_activating_ip6_device (NMPolicy *policy)
1768 return NM_POLICY_GET_PRIVATE (policy)->activating_device6;
1771 /*****************************************************************************/
1774 get_property (GObject *object, guint prop_id,
1775 GValue *value, GParamSpec *pspec)
1777 NMPolicy *policy = NM_POLICY (object);
1778 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1781 case PROP_DEFAULT_IP4_DEVICE:
1782 g_value_set_object (value, priv->default_device4);
1784 case PROP_DEFAULT_IP6_DEVICE:
1785 g_value_set_object (value, priv->default_device6);
1787 case PROP_ACTIVATING_IP4_DEVICE:
1788 g_value_set_object (value, priv->activating_device4);
1790 case PROP_ACTIVATING_IP6_DEVICE:
1791 g_value_set_object (value, priv->activating_device6);
1794 G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec);
1799 /*****************************************************************************/
1802 _connect_manager_signal (NMPolicy *policy, const char *name, gpointer callback)
1804 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1807 id = g_signal_connect (priv->manager, name, callback, policy);
1808 priv->manager_ids = g_slist_prepend (priv->manager_ids, (gpointer) id);
1812 _connect_settings_signal (NMPolicy *policy, const char *name, gpointer callback)
1814 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1817 id = g_signal_connect (priv->settings, name, callback, policy);
1818 priv->settings_ids = g_slist_prepend (priv->settings_ids, (gpointer) id);
1822 nm_policy_init (NMPolicy *policy)
1827 nm_policy_new (NMManager *manager, NMSettings *settings)
1830 NMPolicyPrivate *priv;
1831 static gboolean initialized = FALSE;
1832 char hostname[HOST_NAME_MAX + 2];
1834 g_return_val_if_fail (NM_IS_MANAGER (manager), NULL);
1835 g_return_val_if_fail (initialized == FALSE, NULL);
1837 policy = g_object_new (NM_TYPE_POLICY, NULL);
1838 priv = NM_POLICY_GET_PRIVATE (policy);
1839 priv->manager = manager;
1840 priv->settings = g_object_ref (settings);
1841 priv->update_state_id = 0;
1843 /* Grab hostname on startup and use that if nothing provides one */
1844 memset (hostname, 0, sizeof (hostname));
1845 if (gethostname (&hostname[0], HOST_NAME_MAX) == 0) {
1846 /* only cache it if it's a valid hostname */
1847 if (*hostname && nm_utils_is_specific_hostname (hostname))
1848 priv->orig_hostname = g_strdup (hostname);
1851 priv->firewall_manager = g_object_ref (nm_firewall_manager_get ());
1853 priv->fw_started_id = g_signal_connect (priv->firewall_manager, "started",
1854 G_CALLBACK (firewall_started), policy);
1856 priv->dns_manager = g_object_ref (nm_dns_manager_get ());
1857 nm_dns_manager_set_initial_hostname (priv->dns_manager, priv->orig_hostname);
1858 priv->config_changed_id = g_signal_connect (priv->dns_manager, "config-changed",
1859 G_CALLBACK (dns_config_changed), policy);
1861 priv->resolver = g_resolver_get_default ();
1863 _connect_manager_signal (policy, NM_MANAGER_STATE_CHANGED, global_state_changed);
1864 _connect_manager_signal (policy, "notify::" NM_MANAGER_HOSTNAME, hostname_changed);
1865 _connect_manager_signal (policy, "notify::" NM_MANAGER_SLEEPING, sleeping_changed);
1866 _connect_manager_signal (policy, "notify::" NM_MANAGER_NETWORKING_ENABLED, sleeping_changed);
1867 _connect_manager_signal (policy, "internal-device-added", device_added);
1868 _connect_manager_signal (policy, "internal-device-removed", device_removed);
1869 _connect_manager_signal (policy, NM_MANAGER_ACTIVE_CONNECTION_ADDED, active_connection_added);
1870 _connect_manager_signal (policy, NM_MANAGER_ACTIVE_CONNECTION_REMOVED, active_connection_removed);
1872 _connect_settings_signal (policy, NM_SETTINGS_SIGNAL_CONNECTION_ADDED, connection_added);
1873 _connect_settings_signal (policy, NM_SETTINGS_SIGNAL_CONNECTION_UPDATED, connection_updated);
1874 _connect_settings_signal (policy, NM_SETTINGS_SIGNAL_CONNECTION_UPDATED_BY_USER, connection_updated_by_user);
1875 _connect_settings_signal (policy, NM_SETTINGS_SIGNAL_CONNECTION_REMOVED, connection_removed);
1876 _connect_settings_signal (policy, NM_SETTINGS_SIGNAL_CONNECTION_VISIBILITY_CHANGED,
1877 connection_visibility_changed);
1878 _connect_settings_signal (policy, NM_SETTINGS_SIGNAL_AGENT_REGISTERED, secret_agent_registered);
1885 dispose (GObject *object)
1887 NMPolicy *policy = NM_POLICY (object);
1888 NMPolicyPrivate *priv = NM_POLICY_GET_PRIVATE (policy);
1889 const GSList *connections, *iter;
1891 /* Tell any existing hostname lookup thread to die. */
1892 if (priv->lookup_cancellable) {
1893 g_cancellable_cancel (priv->lookup_cancellable);
1894 g_clear_object (&priv->lookup_cancellable);
1896 g_clear_object (&priv->lookup_addr);
1897 g_clear_object (&priv->resolver);
1899 while (priv->pending_activation_checks)
1900 activate_data_free (priv->pending_activation_checks->data);
1902 g_slist_free_full (priv->pending_secondaries, (GDestroyNotify) pending_secondary_data_free);
1903 priv->pending_secondaries = NULL;
1905 if (priv->firewall_manager) {
1906 g_assert (priv->fw_started_id);
1907 g_signal_handler_disconnect (priv->firewall_manager, priv->fw_started_id);
1908 priv->fw_started_id = 0;
1909 g_clear_object (&priv->firewall_manager);
1912 if (priv->dns_manager) {
1913 g_signal_handler_disconnect (priv->dns_manager, priv->config_changed_id);
1914 g_clear_object (&priv->dns_manager);
1917 for (iter = priv->manager_ids; iter; iter = g_slist_next (iter))
1918 g_signal_handler_disconnect (priv->manager, (gulong) iter->data);
1919 g_clear_pointer (&priv->manager_ids, g_slist_free);
1921 for (iter = priv->settings_ids; iter; iter = g_slist_next (iter))
1922 g_signal_handler_disconnect (priv->settings, (gulong) iter->data);
1923 g_clear_pointer (&priv->settings_ids, g_slist_free);
1925 for (iter = priv->dev_ids; iter; iter = g_slist_next (iter)) {
1926 DeviceSignalId *data = iter->data;
1928 g_signal_handler_disconnect (data->device, data->id);
1929 g_slice_free (DeviceSignalId, data);
1931 g_clear_pointer (&priv->dev_ids, g_slist_free);
1933 /* The manager should have disposed of ActiveConnections already, which
1934 * will have called active_connection_removed() and thus we don't need
1935 * to clean anything up. Assert that this is TRUE.
1937 connections = nm_manager_get_active_connections (priv->manager);
1938 g_assert (connections == NULL);
1940 nm_clear_g_source (&priv->reset_retries_id);
1942 g_clear_pointer (&priv->orig_hostname, g_free);
1943 g_clear_pointer (&priv->cur_hostname, g_free);
1945 g_clear_object (&priv->settings);
1947 G_OBJECT_CLASS (nm_policy_parent_class)->dispose (object);
1951 nm_policy_class_init (NMPolicyClass *policy_class)
1953 GObjectClass *object_class = G_OBJECT_CLASS (policy_class);
1955 g_type_class_add_private (policy_class, sizeof (NMPolicyPrivate));
1957 object_class->get_property = get_property;
1958 object_class->dispose = dispose;
1960 obj_properties[PROP_DEFAULT_IP4_DEVICE] =
1961 g_param_spec_object (NM_POLICY_DEFAULT_IP4_DEVICE, "", "",
1964 G_PARAM_STATIC_STRINGS);
1965 obj_properties[PROP_DEFAULT_IP6_DEVICE] =
1966 g_param_spec_object (NM_POLICY_DEFAULT_IP6_DEVICE, "", "",
1969 G_PARAM_STATIC_STRINGS);
1970 obj_properties[PROP_ACTIVATING_IP4_DEVICE] =
1971 g_param_spec_object (NM_POLICY_ACTIVATING_IP4_DEVICE, "", "",
1974 G_PARAM_STATIC_STRINGS);
1975 obj_properties[PROP_ACTIVATING_IP6_DEVICE] =
1976 g_param_spec_object (NM_POLICY_ACTIVATING_IP6_DEVICE, "", "",
1979 G_PARAM_STATIC_STRINGS);
1980 g_object_class_install_properties (object_class, _PROPERTY_ENUMS_LAST, obj_properties);
projects / NetworkManager.git / blob