// SPDX-License-Identifier: GPL-2.0+ /* * Copyright (C) 2005 - 2014 Red Hat, Inc. * Copyright (C) 2006 - 2008 Novell, Inc. */ #include "nm-default.h" #include "nm-device-ethernet.h" #include #include #include #include #include "nm-device-private.h" #include "nm-act-request.h" #include "nm-ip4-config.h" #include "NetworkManagerUtils.h" #include "supplicant/nm-supplicant-manager.h" #include "supplicant/nm-supplicant-interface.h" #include "supplicant/nm-supplicant-config.h" #include "ppp/nm-ppp-manager.h" #include "ppp/nm-ppp-manager-call.h" #include "ppp/nm-ppp-status.h" #include "platform/nm-platform.h" #include "platform/nm-platform-utils.h" #include "nm-dcb.h" #include "settings/nm-settings-connection.h" #include "nm-config.h" #include "nm-device-ethernet-utils.h" #include "settings/nm-settings.h" #include "nm-device-factory.h" #include "nm-core-internal.h" #include "NetworkManagerUtils.h" #include "nm-udev-aux/nm-udev-utils.h" #include "nm-device-logging.h" _LOG_DECLARE_SELF(NMDeviceEthernet); /*****************************************************************************/ #define PPPOE_RECONNECT_DELAY 7 #define PPPOE_ENCAP_OVERHEAD 8 /* 2 bytes for PPP, 6 for PPPoE */ #define SUPPLICANT_LNK_TIMEOUT_SEC 15 /*****************************************************************************/ typedef enum { DCB_WAIT_UNKNOWN = 0, /* Ensure carrier is up before enabling DCB */ DCB_WAIT_CARRIER_PREENABLE_UP, /* Wait for carrier down when device starts enabling */ DCB_WAIT_CARRIER_PRECONFIG_DOWN, /* Wait for carrier up when device has finished enabling */ DCB_WAIT_CARRIER_PRECONFIG_UP, /* Wait carrier down when device starts configuring */ DCB_WAIT_CARRIER_POSTCONFIG_DOWN, /* Wait carrier up when device has finished configuring */ DCB_WAIT_CARRIER_POSTCONFIG_UP, } DcbWait; typedef struct _NMDeviceEthernetPrivate { /* s390 */ char * subchan1; char * subchan2; char * subchan3; char * subchannels; /* Composite used for checking unmanaged specs */ char ** subchannels_dbus; /* Array exported on D-Bus */ char * s390_nettype; GHashTable * s390_options; guint32 speed; gulong carrier_id; struct { NMSupplicantManager *mgr; NMSupplMgrCreateIfaceHandle *create_handle; NMSupplicantInterface *iface; gulong iface_state_id; gulong auth_state_id; guint con_timeout_id; guint lnk_timeout_id; bool is_associated:1; } supplicant; NMActRequestGetSecretsCallId *wired_secrets_id; /* PPPoE */ NMPPPManager *ppp_manager; gint32 last_pppoe_time; guint pppoe_wait_id; /* DCB */ DcbWait dcb_wait; guint dcb_timeout_id; guint32 ethtool_prev_speed; NMPlatformLinkDuplexType ethtool_prev_duplex:3; bool dcb_handle_carrier_changes:1; bool ethtool_prev_set:1; bool ethtool_prev_autoneg:1; } NMDeviceEthernetPrivate; NM_GOBJECT_PROPERTIES_DEFINE (NMDeviceEthernet, PROP_SPEED, PROP_S390_SUBCHANNELS, ); /*****************************************************************************/ G_DEFINE_TYPE (NMDeviceEthernet, nm_device_ethernet, NM_TYPE_DEVICE) #define NM_DEVICE_ETHERNET_GET_PRIVATE(self) _NM_GET_PRIVATE_PTR(self, NMDeviceEthernet, NM_IS_DEVICE_ETHERNET, NMDevice) /*****************************************************************************/ static void wired_secrets_cancel (NMDeviceEthernet *self); /*****************************************************************************/ static char * get_link_basename (const char *parent_path, const char *name, GError **error) { char *link_dest, *path; char *result = NULL; path = g_strdup_printf ("%s/%s", parent_path, name); link_dest = g_file_read_link (path, error); if (link_dest) { result = g_path_get_basename (link_dest); g_free (link_dest); } g_free (path); return result; } static void _update_s390_subchannels (NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); struct udev_device *dev = NULL; struct udev_device *parent = NULL; const char *parent_path, *item; int ifindex; GDir *dir; GError *error = NULL; if (priv->subchannels) { /* only read the subchannels once. For one, we don't expect them to change * on multiple invocations. Second, we didn't implement proper reloading. * Proper reloading might also be complicated, because the subchannels are * used to match on devices based on a device-spec. Thus, it's not clear * what it means to change afterwards. */ return; } ifindex = nm_device_get_ifindex ((NMDevice *) self); dev = nm_platform_link_get_udev_device (nm_device_get_platform (NM_DEVICE (self)), ifindex); if (!dev) return; /* Try for the "ccwgroup" parent */ parent = udev_device_get_parent_with_subsystem_devtype (dev, "ccwgroup", NULL); if (!parent) { /* FIXME: whatever 'lcs' devices' subsystem is here... */ /* Not an s390 device */ return; } parent_path = udev_device_get_syspath (parent); dir = g_dir_open (parent_path, 0, &error); if (!dir) { _LOGW (LOGD_DEVICE | LOGD_PLATFORM, "update-s390: failed to open directory '%s': %s", parent_path, error->message); g_clear_error (&error); return; } while ((item = g_dir_read_name (dir))) { if (!strcmp (item, "cdev0")) { priv->subchan1 = get_link_basename (parent_path, "cdev0", &error); } else if (!strcmp (item, "cdev1")) { priv->subchan2 = get_link_basename (parent_path, "cdev1", &error); } else if (!strcmp (item, "cdev2")) { priv->subchan3 = get_link_basename (parent_path, "cdev2", &error); } else if (!strcmp (item, "driver")) { priv->s390_nettype = get_link_basename (parent_path, "driver", &error); } else if ( !strcmp (item, "layer2") || !strcmp (item, "portname") || !strcmp (item, "portno")) { gs_free char *path = NULL, *value = NULL; path = g_strdup_printf ("%s/%s", parent_path, item); value = nm_platform_sysctl_get (nm_device_get_platform (NM_DEVICE (self)), NMP_SYSCTL_PATHID_ABSOLUTE (path)); if ( !strcmp (item, "portname") && !g_strcmp0 (value, "no portname required")) { /* Do nothing */ } else if (value && *value) { g_hash_table_insert (priv->s390_options, g_strdup (item), value); value = NULL; } else _LOGW (LOGD_DEVICE | LOGD_PLATFORM, "update-s390: error reading %s", path); } if (error) { _LOGW (LOGD_DEVICE | LOGD_PLATFORM, "update-s390: failed reading sysfs for %s (%s)", item, error->message); g_clear_error (&error); } } g_dir_close (dir); if (priv->subchan3) { priv->subchannels = g_strdup_printf ("%s,%s,%s", priv->subchan1, priv->subchan2, priv->subchan3); } else if (priv->subchan2) { priv->subchannels = g_strdup_printf ("%s,%s", priv->subchan1, priv->subchan2); } else priv->subchannels = g_strdup (priv->subchan1); priv->subchannels_dbus = g_new (char *, 3 + 1); priv->subchannels_dbus[0] = g_strdup (priv->subchan1); priv->subchannels_dbus[1] = g_strdup (priv->subchan2); priv->subchannels_dbus[2] = g_strdup (priv->subchan3); priv->subchannels_dbus[3] = NULL; _LOGI (LOGD_DEVICE | LOGD_PLATFORM, "update-s390: found s390 '%s' subchannels [%s]", nm_device_get_driver ((NMDevice *) self) ?: "(unknown driver)", priv->subchannels); _notify (self, PROP_S390_SUBCHANNELS); } static void device_state_changed (NMDevice *device, NMDeviceState new_state, NMDeviceState old_state, NMDeviceStateReason reason) { if (new_state > NM_DEVICE_STATE_ACTIVATED) wired_secrets_cancel (NM_DEVICE_ETHERNET (device)); } static void nm_device_ethernet_init (NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv; priv = G_TYPE_INSTANCE_GET_PRIVATE (self, NM_TYPE_DEVICE_ETHERNET, NMDeviceEthernetPrivate); self->_priv = priv; priv->s390_options = g_hash_table_new_full (nm_str_hash, g_str_equal, g_free, g_free); } static NMDeviceCapabilities get_generic_capabilities (NMDevice *device) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); int ifindex = nm_device_get_ifindex (device); if (ifindex > 0) { if (nm_platform_link_supports_carrier_detect (nm_device_get_platform (device), ifindex)) return NM_DEVICE_CAP_CARRIER_DETECT; else { _LOGI (LOGD_PLATFORM, "driver '%s' does not support carrier detection.", nm_device_get_driver (device)); } } return NM_DEVICE_CAP_NONE; } static guint32 _subchannels_count_num (const char * const *array) { int i; if (!array) return 0; for (i = 0; array[i]; i++) /* NOP */; return i; } static gboolean match_subchans (NMDeviceEthernet *self, NMSettingWired *s_wired, gboolean *try_mac) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); const char * const *subchans; guint32 num1, num2; int i; *try_mac = TRUE; subchans = nm_setting_wired_get_s390_subchannels (s_wired); num1 = _subchannels_count_num (subchans); num2 = _subchannels_count_num ((const char * const *) priv->subchannels_dbus); /* connection has no subchannels */ if (num1 == 0) return TRUE; /* connection requires subchannels but the device has none */ if (num2 == 0) return FALSE; /* number of subchannels differ */ if (num1 != num2) return FALSE; /* Make sure each subchannel in the connection is a subchannel of this device */ for (i = 0; subchans[i]; i++) { const char *candidate = subchans[i]; if ( (priv->subchan1 && !strcmp (priv->subchan1, candidate)) || (priv->subchan2 && !strcmp (priv->subchan2, candidate)) || (priv->subchan3 && !strcmp (priv->subchan3, candidate))) continue; return FALSE; /* a subchannel was not found */ } *try_mac = FALSE; return TRUE; } static gboolean check_connection_compatible (NMDevice *device, NMConnection *connection, GError **error) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMSettingWired *s_wired; if (!NM_DEVICE_CLASS (nm_device_ethernet_parent_class)->check_connection_compatible (device, connection, error)) return FALSE; if (nm_connection_is_type (connection, NM_SETTING_PPPOE_SETTING_NAME)) { s_wired = nm_connection_get_setting_wired (connection); } else { s_wired = _nm_connection_check_main_setting (connection, NM_SETTING_WIRED_SETTING_NAME, error); if (!s_wired) return FALSE; } if (s_wired) { const char *mac, *perm_hw_addr; gboolean try_mac = TRUE; const char * const *mac_blacklist; int i; if (!match_subchans (self, s_wired, &try_mac)) { nm_utils_error_set_literal (error, NM_UTILS_ERROR_CONNECTION_AVAILABLE_TEMPORARY, "s390 subchannels don't match"); return FALSE; } perm_hw_addr = nm_device_get_permanent_hw_address (device); mac = nm_setting_wired_get_mac_address (s_wired); if (perm_hw_addr) { if ( try_mac && mac && !nm_utils_hwaddr_matches (mac, -1, perm_hw_addr, -1)) { nm_utils_error_set_literal (error, NM_UTILS_ERROR_CONNECTION_AVAILABLE_TEMPORARY, "permanent MAC address doesn't match"); return FALSE; } /* Check for MAC address blacklist */ mac_blacklist = nm_setting_wired_get_mac_address_blacklist (s_wired); for (i = 0; mac_blacklist[i]; i++) { if (!nm_utils_hwaddr_valid (mac_blacklist[i], ETH_ALEN)) { nm_utils_error_set_literal (error, NM_UTILS_ERROR_CONNECTION_AVAILABLE_TEMPORARY, "invalid MAC in blacklist"); return FALSE; } if (nm_utils_hwaddr_matches (mac_blacklist[i], -1, perm_hw_addr, -1)) { nm_utils_error_set_literal (error, NM_UTILS_ERROR_CONNECTION_AVAILABLE_TEMPORARY, "permanent MAC address of device blacklisted"); return FALSE; } } } else if (mac) { nm_utils_error_set_literal (error, NM_UTILS_ERROR_CONNECTION_AVAILABLE_TEMPORARY, "device has no permanent MAC address to match"); return FALSE; } } return TRUE; } /*****************************************************************************/ /* 802.1X */ static void supplicant_interface_release (NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); nm_clear_pointer (&priv->supplicant.create_handle, nm_supplicant_manager_create_interface_cancel); nm_clear_g_source (&priv->supplicant.lnk_timeout_id); nm_clear_g_source (&priv->supplicant.con_timeout_id); nm_clear_g_signal_handler (priv->supplicant.iface, &priv->supplicant.iface_state_id); nm_clear_g_signal_handler (priv->supplicant.iface, &priv->supplicant.auth_state_id); if (priv->supplicant.iface) { nm_supplicant_interface_disconnect (priv->supplicant.iface); g_clear_object (&priv->supplicant.iface); } } static void supplicant_auth_state_changed (NMSupplicantInterface *iface, GParamSpec *pspec, NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSupplicantAuthState state; state = nm_supplicant_interface_get_auth_state (priv->supplicant.iface); _LOGD (LOGD_CORE, "supplicant auth state changed to %u", (unsigned) state); if (state == NM_SUPPLICANT_AUTH_STATE_SUCCESS) { nm_clear_g_signal_handler (priv->supplicant.iface, &priv->supplicant.iface_state_id); nm_device_update_dynamic_ip_setup (NM_DEVICE (self)); } } static gboolean wired_auth_is_optional (NMDeviceEthernet *self) { NMSetting8021x *s_8021x; s_8021x = nm_device_get_applied_setting (NM_DEVICE (self), NM_TYPE_SETTING_802_1X); g_return_val_if_fail (s_8021x, FALSE); return nm_setting_802_1x_get_optional (s_8021x); } static void wired_auth_cond_fail (NMDeviceEthernet *self, NMDeviceStateReason reason) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMDevice *device = NM_DEVICE (self); if (wired_auth_is_optional (self)) { _LOGI (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) 802.1X authentication is optional, continuing after a failure"); if (NM_IN_SET (nm_device_get_state (device), NM_DEVICE_STATE_CONFIG, NM_DEVICE_STATE_NEED_AUTH)) nm_device_activate_schedule_stage3_ip_config_start (device); if (!priv->supplicant.auth_state_id) { priv->supplicant.auth_state_id = g_signal_connect (priv->supplicant.iface, "notify::" NM_SUPPLICANT_INTERFACE_AUTH_STATE, G_CALLBACK (supplicant_auth_state_changed), self); } return; } supplicant_interface_release (self); nm_device_state_changed (NM_DEVICE (self), NM_DEVICE_STATE_FAILED, reason); } static void wired_secrets_cb (NMActRequest *req, NMActRequestGetSecretsCallId *call_id, NMSettingsConnection *connection, GError *error, gpointer user_data) { NMDeviceEthernet *self = user_data; NMDevice *device = user_data; NMDeviceEthernetPrivate *priv; g_return_if_fail (NM_IS_DEVICE_ETHERNET (self)); g_return_if_fail (NM_IS_ACT_REQUEST (req)); priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); g_return_if_fail (priv->wired_secrets_id == call_id); priv->wired_secrets_id = NULL; if (g_error_matches (error, G_IO_ERROR, G_IO_ERROR_CANCELLED)) return; g_return_if_fail (req == nm_device_get_act_request (device)); g_return_if_fail (nm_device_get_state (device) == NM_DEVICE_STATE_NEED_AUTH); g_return_if_fail (nm_act_request_get_settings_connection (req) == connection); if (error) { _LOGW (LOGD_ETHER, "%s", error->message); wired_auth_cond_fail (self, NM_DEVICE_STATE_REASON_NO_SECRETS); return; } supplicant_interface_release (self); nm_device_activate_schedule_stage1_device_prepare (device, FALSE); } static void wired_secrets_cancel (NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); if (priv->wired_secrets_id) nm_act_request_cancel_secrets (NULL, priv->wired_secrets_id); nm_assert (!priv->wired_secrets_id); } static void wired_secrets_get_secrets (NMDeviceEthernet *self, const char *setting_name, NMSecretAgentGetSecretsFlags flags) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMActRequest *req; wired_secrets_cancel (self); req = nm_device_get_act_request (NM_DEVICE (self)); g_return_if_fail (NM_IS_ACT_REQUEST (req)); priv->wired_secrets_id = nm_act_request_get_secrets (req, TRUE, setting_name, flags, NULL, wired_secrets_cb, self); g_return_if_fail (priv->wired_secrets_id); } static gboolean supplicant_lnk_timeout_cb (gpointer user_data) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (user_data); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMDevice *device = NM_DEVICE (self); NMActRequest *req; NMConnection *applied_connection; const char *setting_name; priv->supplicant.lnk_timeout_id = 0; req = nm_device_get_act_request (device); if (nm_device_get_state (device) == NM_DEVICE_STATE_ACTIVATED) { wired_auth_cond_fail (self, NM_DEVICE_STATE_REASON_SUPPLICANT_TIMEOUT); return G_SOURCE_REMOVE; } /* Disconnect event during initial authentication and credentials * ARE checked - we are likely to have wrong key. Ask the user for * another one. */ if (nm_device_get_state (device) != NM_DEVICE_STATE_CONFIG) goto time_out; nm_active_connection_clear_secrets (NM_ACTIVE_CONNECTION (req)); applied_connection = nm_act_request_get_applied_connection (req); setting_name = nm_connection_need_secrets (applied_connection, NULL); if (!setting_name) goto time_out; _LOGI (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) disconnected during authentication, asking for new key."); if (!wired_auth_is_optional (self)) supplicant_interface_release (self); nm_device_state_changed (device, NM_DEVICE_STATE_NEED_AUTH, NM_DEVICE_STATE_REASON_SUPPLICANT_DISCONNECT); wired_secrets_get_secrets (self, setting_name, NM_SECRET_AGENT_GET_SECRETS_FLAG_REQUEST_NEW); return G_SOURCE_REMOVE; time_out: _LOGW (LOGD_DEVICE | LOGD_ETHER, "link timed out."); wired_auth_cond_fail (self, NM_DEVICE_STATE_REASON_SUPPLICANT_DISCONNECT); return G_SOURCE_REMOVE; } static NMSupplicantConfig * build_supplicant_config (NMDeviceEthernet *self, GError **error) { const char *con_uuid; NMSupplicantConfig *config = NULL; NMSetting8021x *security; NMConnection *connection; guint32 mtu; connection = nm_device_get_applied_connection (NM_DEVICE (self)); g_return_val_if_fail (connection, NULL); con_uuid = nm_connection_get_uuid (connection); mtu = nm_platform_link_get_mtu (nm_device_get_platform (NM_DEVICE (self)), nm_device_get_ifindex (NM_DEVICE (self))); config = nm_supplicant_config_new (NM_SUPPL_CAP_MASK_NONE); security = nm_connection_get_setting_802_1x (connection); if (!nm_supplicant_config_add_setting_8021x (config, security, con_uuid, mtu, TRUE, error)) { g_prefix_error (error, "802-1x-setting: "); g_clear_object (&config); } return config; } static void supplicant_iface_state_is_completed (NMDeviceEthernet *self, NMSupplicantInterfaceState state) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); if (state == NM_SUPPLICANT_INTERFACE_STATE_COMPLETED) { nm_clear_g_source (&priv->supplicant.lnk_timeout_id); nm_clear_g_source (&priv->supplicant.con_timeout_id); /* If this is the initial association during device activation, * schedule the next activation stage. */ if (nm_device_get_state (NM_DEVICE (self)) == NM_DEVICE_STATE_CONFIG) { _LOGI (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) Stage 2 of 5 (Device Configure) successful."); nm_device_activate_schedule_stage3_ip_config_start (NM_DEVICE (self)); } return; } if ( !priv->supplicant.lnk_timeout_id && !priv->supplicant.con_timeout_id) priv->supplicant.lnk_timeout_id = g_timeout_add_seconds (SUPPLICANT_LNK_TIMEOUT_SEC, supplicant_lnk_timeout_cb, self); } static void supplicant_iface_assoc_cb (NMSupplicantInterface *iface, GError *error, gpointer user_data) { NMDeviceEthernet *self; NMDeviceEthernetPrivate *priv; if (nm_utils_error_is_cancelled_or_disposing (error)) return; self = NM_DEVICE_ETHERNET (user_data); priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); if (error) { supplicant_interface_release (self); nm_device_queue_state (NM_DEVICE (self), NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_SUPPLICANT_CONFIG_FAILED); return; } nm_assert (!priv->supplicant.lnk_timeout_id); nm_assert (!priv->supplicant.is_associated); priv->supplicant.is_associated = TRUE; supplicant_iface_state_is_completed (self, nm_supplicant_interface_get_state (priv->supplicant.iface)); } static gboolean supplicant_iface_start (NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); gs_unref_object NMSupplicantConfig *config = NULL; gs_free_error GError *error = NULL; config = build_supplicant_config (self, &error); if (!config) { _LOGE (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) couldn't build security configuration: %s", error->message); supplicant_interface_release (self); nm_device_state_changed (NM_DEVICE (self), NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_SUPPLICANT_CONFIG_FAILED); return FALSE; } nm_supplicant_interface_disconnect (priv->supplicant.iface); nm_supplicant_interface_assoc (priv->supplicant.iface, config, supplicant_iface_assoc_cb, self); return TRUE; } static void supplicant_iface_state_cb (NMSupplicantInterface *iface, int new_state_i, int old_state_i, int disconnect_reason, gpointer user_data) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (user_data); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSupplicantInterfaceState new_state = new_state_i; NMSupplicantInterfaceState old_state = old_state_i; _LOGI (LOGD_DEVICE | LOGD_ETHER, "supplicant interface state: %s -> %s", nm_supplicant_interface_state_to_string (old_state), nm_supplicant_interface_state_to_string (new_state)); if (new_state == NM_SUPPLICANT_INTERFACE_STATE_DOWN) { supplicant_interface_release (self); wired_auth_cond_fail (self, NM_DEVICE_STATE_REASON_SUPPLICANT_FAILED); return; } if (old_state == NM_SUPPLICANT_INTERFACE_STATE_STARTING) { if (!supplicant_iface_start (self)) return; } if (priv->supplicant.is_associated) supplicant_iface_state_is_completed (self, new_state); } static gboolean handle_auth_or_fail (NMDeviceEthernet *self, NMActRequest *req, gboolean new_secrets) { const char *setting_name; NMConnection *applied_connection; if (!nm_device_auth_retries_try_next (NM_DEVICE (self))) return FALSE; nm_device_state_changed (NM_DEVICE (self), NM_DEVICE_STATE_NEED_AUTH, NM_DEVICE_STATE_REASON_NONE); nm_active_connection_clear_secrets (NM_ACTIVE_CONNECTION (req)); applied_connection = nm_act_request_get_applied_connection (req); setting_name = nm_connection_need_secrets (applied_connection, NULL); if (!setting_name) { _LOGI (LOGD_DEVICE, "Cleared secrets, but setting didn't need any secrets."); return FALSE; } _LOGI (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) asking for new secrets"); /* Don't tear down supplicant if the authentication is optional * because in case of a failure in getting new secrets we want to * keep the supplicant alive. */ if (!wired_auth_is_optional (self)) supplicant_interface_release (self); wired_secrets_get_secrets (self, setting_name, NM_SECRET_AGENT_GET_SECRETS_FLAG_ALLOW_INTERACTION | (new_secrets ? NM_SECRET_AGENT_GET_SECRETS_FLAG_REQUEST_NEW : 0)); return TRUE; } static gboolean supplicant_connection_timeout_cb (gpointer user_data) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (user_data); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMDevice *device = NM_DEVICE (self); NMActRequest *req; NMSettingsConnection *connection; guint64 timestamp = 0; gboolean new_secrets = TRUE; priv->supplicant.con_timeout_id = 0; /* Authentication failed; either driver problems, the encryption key is * wrong, the passwords or certificates were wrong or the Ethernet switch's * port is not configured for 802.1x. */ _LOGW (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) association took too long."); req = nm_device_get_act_request (device); connection = nm_act_request_get_settings_connection (req); /* Ask for new secrets only if we've never activated this connection * before. If we've connected before, don't bother the user with dialogs, * just retry or fail, and if we never connect the user can fix the * password somewhere else. */ if (nm_settings_connection_get_timestamp (connection, ×tamp)) new_secrets = !timestamp; if (!handle_auth_or_fail (self, req, new_secrets)) { wired_auth_cond_fail (self, NM_DEVICE_STATE_REASON_NO_SECRETS); return G_SOURCE_REMOVE; } if ( !priv->supplicant.lnk_timeout_id && priv->supplicant.iface) { NMSupplicantInterfaceState state; state = nm_supplicant_interface_get_state (priv->supplicant.iface); if (state != NM_SUPPLICANT_INTERFACE_STATE_COMPLETED && nm_supplicant_interface_state_is_operational (state)) priv->supplicant.lnk_timeout_id = g_timeout_add_seconds (SUPPLICANT_LNK_TIMEOUT_SEC, supplicant_lnk_timeout_cb, self); } return G_SOURCE_REMOVE; } static void supplicant_interface_create_cb (NMSupplicantManager *supplicant_manager, NMSupplMgrCreateIfaceHandle *handle, NMSupplicantInterface *iface, GError *error, gpointer user_data) { NMDeviceEthernet *self; NMDeviceEthernetPrivate *priv; guint timeout; if (nm_utils_error_is_cancelled (error)) return; self = user_data; priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); nm_assert (priv->supplicant.create_handle == handle); priv->supplicant.create_handle = NULL; if (error) { _LOGE (LOGD_DEVICE | LOGD_ETHER, "Couldn't initialize supplicant interface: %s", error->message); supplicant_interface_release (self); nm_device_state_changed (NM_DEVICE (self), NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_SUPPLICANT_FAILED); return; } priv->supplicant.iface = g_object_ref (iface); priv->supplicant.is_associated = FALSE; priv->supplicant.iface_state_id = g_signal_connect (priv->supplicant.iface, NM_SUPPLICANT_INTERFACE_STATE, G_CALLBACK (supplicant_iface_state_cb), self); timeout = nm_device_get_supplicant_timeout (NM_DEVICE (self)); priv->supplicant.con_timeout_id = g_timeout_add_seconds (timeout, supplicant_connection_timeout_cb, self); if (nm_supplicant_interface_state_is_operational (nm_supplicant_interface_get_state (iface))) supplicant_iface_start (self); } static NMPlatformLinkDuplexType link_duplex_to_platform (const char *duplex) { if (!duplex) return NM_PLATFORM_LINK_DUPLEX_UNKNOWN; if (nm_streq (duplex, "full")) return NM_PLATFORM_LINK_DUPLEX_FULL; if (nm_streq (duplex, "half")) return NM_PLATFORM_LINK_DUPLEX_HALF; g_return_val_if_reached (NM_PLATFORM_LINK_DUPLEX_UNKNOWN); } static void link_negotiation_set (NMDevice *device) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSettingWired *s_wired; gboolean autoneg = TRUE; gboolean link_autoneg; NMPlatformLinkDuplexType duplex = NM_PLATFORM_LINK_DUPLEX_UNKNOWN; NMPlatformLinkDuplexType link_duplex; guint32 speed = 0; guint32 link_speed; s_wired = nm_device_get_applied_setting (device, NM_TYPE_SETTING_WIRED); if (s_wired) { autoneg = nm_setting_wired_get_auto_negotiate (s_wired); speed = nm_setting_wired_get_speed (s_wired); duplex = link_duplex_to_platform (nm_setting_wired_get_duplex (s_wired)); if ( !autoneg && !speed && !duplex) { _LOGD (LOGD_DEVICE, "set-link: ignore link negotiation"); return; } } if (!nm_platform_ethtool_get_link_settings (nm_device_get_platform (device), nm_device_get_ifindex (device), &link_autoneg, &link_speed, &link_duplex)) { _LOGW (LOGD_DEVICE, "set-link: unable to retrieve link negotiation"); return; } /* If link negotiation setting are already in place do nothing and return with success */ if ( !!autoneg == !!link_autoneg && speed == link_speed && duplex == link_duplex) { _LOGD (LOGD_DEVICE, "set-link: link negotiation is already configured"); return; } if ( autoneg && !speed && !duplex) _LOGD (LOGD_DEVICE, "set-link: configure auto-negotiation"); else { _LOGD (LOGD_DEVICE, "set-link: configure %snegotiation (%u Mbit%s, %s duplex%s)", autoneg ? "auto-" : "static ", speed ?: link_speed, speed ? "" : "*", duplex ? nm_platform_link_duplex_type_to_string (duplex) : nm_platform_link_duplex_type_to_string (link_duplex), duplex ? "" : "*"); } if (!priv->ethtool_prev_set) { /* remember the values we had before setting it. */ priv->ethtool_prev_autoneg = link_autoneg; priv->ethtool_prev_speed = link_speed; priv->ethtool_prev_duplex = link_duplex; priv->ethtool_prev_set = TRUE; } if (!nm_platform_ethtool_set_link_settings (nm_device_get_platform (device), nm_device_get_ifindex (device), autoneg, speed, duplex)) { _LOGW (LOGD_DEVICE, "set-link: failure to set link negotiation"); return; } } static gboolean pppoe_reconnect_delay (gpointer user_data) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (user_data); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); priv->pppoe_wait_id = 0; priv->last_pppoe_time = 0; _LOGI (LOGD_DEVICE, "PPPoE reconnect delay complete, resuming connection..."); nm_device_activate_schedule_stage1_device_prepare (NM_DEVICE (self), FALSE); return G_SOURCE_REMOVE; } static NMActStageReturn act_stage1_prepare (NMDevice *device, NMDeviceStateReason *out_failure_reason) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); if (nm_device_sys_iface_state_is_external_or_assume (device)) { if ( !priv->ethtool_prev_set && !nm_device_sys_iface_state_is_external (device)) { NMSettingWired *s_wired; /* During restart of NetworkManager service we forget the original auto * negotiation settings. When taking over a device, remember to reset * the "default" during deactivate. */ s_wired = nm_device_get_applied_setting (device, NM_TYPE_SETTING_WIRED); if ( s_wired && ( nm_setting_wired_get_auto_negotiate (s_wired) || nm_setting_wired_get_speed (s_wired) || nm_setting_wired_get_duplex (s_wired))) { priv->ethtool_prev_set = TRUE; priv->ethtool_prev_autoneg = TRUE; priv->ethtool_prev_speed = 0; priv->ethtool_prev_duplex = NM_PLATFORM_LINK_DUPLEX_UNKNOWN; } } return NM_ACT_STAGE_RETURN_SUCCESS; } link_negotiation_set (device); /* If we're re-activating a PPPoE connection a short while after * a previous PPPoE connection was torn down, wait a bit to allow the * remote side to handle the disconnection. Otherwise the peer may * get confused and fail to negotiate the new connection. (rh #1023503) * * FIXME(shutdown): when exiting, we also need to wait before quiting, * at least for additional NM_SHUTDOWN_TIMEOUT_MS seconds because * otherwise after restart the device won't work for the first seconds. */ if (priv->last_pppoe_time != 0) { gint32 delay = nm_utils_get_monotonic_timestamp_sec () - priv->last_pppoe_time; if ( delay < PPPOE_RECONNECT_DELAY && nm_device_get_applied_setting (device, NM_TYPE_SETTING_PPPOE)) { if (priv->pppoe_wait_id == 0) { _LOGI (LOGD_DEVICE, "delaying PPPoE reconnect for %d seconds to ensure peer is ready...", delay); priv->pppoe_wait_id = g_timeout_add_seconds (delay, pppoe_reconnect_delay, self); } return NM_ACT_STAGE_RETURN_POSTPONE; } nm_clear_g_source (&priv->pppoe_wait_id); priv->last_pppoe_time = 0; } return NM_ACT_STAGE_RETURN_SUCCESS; } static NMActStageReturn supplicant_check_secrets_needed (NMDeviceEthernet *self, NMDeviceStateReason *out_failure_reason) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMConnection *connection; NMSetting8021x *security; const char *setting_name; connection = nm_device_get_applied_connection (NM_DEVICE (self)); g_return_val_if_fail (connection, NM_ACT_STAGE_RETURN_FAILURE); security = nm_connection_get_setting_802_1x (connection); if (!security) { _LOGE (LOGD_DEVICE, "Invalid or missing 802.1X security"); NM_SET_OUT (out_failure_reason, NM_DEVICE_STATE_REASON_CONFIG_FAILED); return NM_ACT_STAGE_RETURN_FAILURE; } if (!priv->supplicant.mgr) priv->supplicant.mgr = g_object_ref (nm_supplicant_manager_get ()); /* If we need secrets, get them */ setting_name = nm_connection_need_secrets (connection, NULL); if (setting_name) { NMActRequest *req = nm_device_get_act_request (NM_DEVICE (self)); _LOGI (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) connection '%s' has security, but secrets are required.", nm_connection_get_id (connection)); if (!handle_auth_or_fail (self, req, FALSE)) { NM_SET_OUT (out_failure_reason, NM_DEVICE_STATE_REASON_NO_SECRETS); return NM_ACT_STAGE_RETURN_FAILURE; } return NM_ACT_STAGE_RETURN_POSTPONE; } _LOGI (LOGD_DEVICE | LOGD_ETHER, "Activation: (ethernet) connection '%s' requires no security. No secrets needed.", nm_connection_get_id (connection)); supplicant_interface_release (self); priv->supplicant.create_handle = nm_supplicant_manager_create_interface (priv->supplicant.mgr, nm_device_get_ifindex (NM_DEVICE (self)), NM_SUPPLICANT_DRIVER_WIRED, supplicant_interface_create_cb, self); return NM_ACT_STAGE_RETURN_POSTPONE; } static void carrier_changed (NMSupplicantInterface *iface, GParamSpec *pspec, NMDeviceEthernet *self) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMDeviceStateReason reason; NMActStageReturn ret; if (!nm_device_has_carrier (NM_DEVICE (self))) return; _LOGD (LOGD_DEVICE | LOGD_ETHER, "got carrier, initializing supplicant"); nm_clear_g_signal_handler (self, &priv->carrier_id); ret = supplicant_check_secrets_needed (self, &reason); if (ret == NM_ACT_STAGE_RETURN_FAILURE) { nm_device_state_changed (NM_DEVICE (self), NM_DEVICE_STATE_FAILED, reason); } } /*****************************************************************************/ /* PPPoE */ static void ppp_state_changed (NMPPPManager *ppp_manager, NMPPPStatus status, gpointer user_data) { NMDevice *device = NM_DEVICE (user_data); switch (status) { case NM_PPP_STATUS_DISCONNECT: nm_device_state_changed (device, NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_PPP_DISCONNECT); break; case NM_PPP_STATUS_DEAD: nm_device_state_changed (device, NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_PPP_FAILED); break; default: break; } } static void ppp_ifindex_set (NMPPPManager *ppp_manager, int ifindex, const char *iface, gpointer user_data) { NMDevice *device = NM_DEVICE (user_data); if (!nm_device_set_ip_ifindex (device, ifindex)) { nm_device_state_changed (device, NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_IP_CONFIG_UNAVAILABLE); } } static void ppp_ip4_config (NMPPPManager *ppp_manager, NMIP4Config *config, gpointer user_data) { NMDevice *device = NM_DEVICE (user_data); /* Ignore PPP IP4 events that come in after initial configuration */ if (nm_device_activate_ip4_state_in_conf (device)) nm_device_activate_schedule_ip_config_result (device, AF_INET, NM_IP_CONFIG_CAST (config)); } static NMActStageReturn pppoe_stage3_ip4_config_start (NMDeviceEthernet *self, NMDeviceStateReason *out_failure_reason) { NMDevice *device = NM_DEVICE (self); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSettingPppoe *s_pppoe; NMActRequest *req; GError *err = NULL; req = nm_device_get_act_request (device); g_return_val_if_fail (req, NM_ACT_STAGE_RETURN_FAILURE); s_pppoe = nm_device_get_applied_setting (device, NM_TYPE_SETTING_PPPOE); g_return_val_if_fail (s_pppoe, NM_ACT_STAGE_RETURN_FAILURE); priv->ppp_manager = nm_ppp_manager_create (nm_device_get_iface (device), &err); if (priv->ppp_manager) { nm_ppp_manager_set_route_parameters (priv->ppp_manager, nm_device_get_route_table (device, AF_INET), nm_device_get_route_metric (device, AF_INET), nm_device_get_route_table (device, AF_INET6), nm_device_get_route_metric (device, AF_INET6)); } if ( !priv->ppp_manager || !nm_ppp_manager_start (priv->ppp_manager, req, nm_setting_pppoe_get_username (s_pppoe), 30, 0, &err)) { _LOGW (LOGD_DEVICE, "PPPoE failed to start: %s", err->message); g_error_free (err); g_clear_object (&priv->ppp_manager); NM_SET_OUT (out_failure_reason, NM_DEVICE_STATE_REASON_PPP_START_FAILED); return NM_ACT_STAGE_RETURN_FAILURE; } g_signal_connect (priv->ppp_manager, NM_PPP_MANAGER_SIGNAL_STATE_CHANGED, G_CALLBACK (ppp_state_changed), self); g_signal_connect (priv->ppp_manager, NM_PPP_MANAGER_SIGNAL_IFINDEX_SET, G_CALLBACK (ppp_ifindex_set), self); g_signal_connect (priv->ppp_manager, NM_PPP_MANAGER_SIGNAL_IP4_CONFIG, G_CALLBACK (ppp_ip4_config), self); return NM_ACT_STAGE_RETURN_POSTPONE; } /*****************************************************************************/ static void dcb_state (NMDevice *device, gboolean timeout); static gboolean dcb_carrier_timeout (gpointer user_data) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (user_data); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMDevice *device = NM_DEVICE (user_data); g_return_val_if_fail (nm_device_get_state (device) == NM_DEVICE_STATE_CONFIG, G_SOURCE_REMOVE); priv->dcb_timeout_id = 0; if (priv->dcb_wait != DCB_WAIT_CARRIER_POSTCONFIG_DOWN) { _LOGW (LOGD_DCB, "DCB: timed out waiting for carrier (step %d)", priv->dcb_wait); } dcb_state (device, TRUE); return G_SOURCE_REMOVE; } static gboolean dcb_configure (NMDevice *device) { NMDeviceEthernet *self = (NMDeviceEthernet *) device; NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSettingDcb *s_dcb; GError *error = NULL; nm_clear_g_source (&priv->dcb_timeout_id); s_dcb = nm_device_get_applied_setting (device, NM_TYPE_SETTING_DCB); g_return_val_if_fail (s_dcb, FALSE); if (!nm_dcb_setup (nm_device_get_iface (device), s_dcb, &error)) { _LOGW (LOGD_DCB, "Activation: (ethernet) failed to enable DCB/FCoE: %s", error->message); g_clear_error (&error); return FALSE; } /* Pause again just in case the device takes the carrier down when * setting specific DCB attributes. */ _LOGD (LOGD_DCB, "waiting for carrier (postconfig down)"); priv->dcb_wait = DCB_WAIT_CARRIER_POSTCONFIG_DOWN; priv->dcb_timeout_id = g_timeout_add_seconds (3, dcb_carrier_timeout, device); return TRUE; } static gboolean dcb_enable (NMDevice *device) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); GError *error = NULL; nm_clear_g_source (&priv->dcb_timeout_id); if (!nm_dcb_enable (nm_device_get_iface (device), TRUE, &error)) { _LOGW (LOGD_DCB, "Activation: (ethernet) failed to enable DCB/FCoE: %s", error->message); g_clear_error (&error); return FALSE; } /* Pause for 3 seconds after enabling DCB to let the card reconfigure * itself. Drivers will often re-initialize internal settings which * takes the carrier down for 2 or more seconds. During this time, * lldpad will refuse to do anything else with the card since the carrier * is down. But NM might get the carrier-down signal long after calling * "dcbtool dcb on", so we have to first wait for the carrier to go down. */ _LOGD (LOGD_DCB, "waiting for carrier (preconfig down)"); priv->dcb_wait = DCB_WAIT_CARRIER_PRECONFIG_DOWN; priv->dcb_timeout_id = g_timeout_add_seconds (3, dcb_carrier_timeout, device); return TRUE; } static void dcb_state (NMDevice *device, gboolean timeout) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); gboolean carrier; g_return_if_fail (nm_device_get_state (device) == NM_DEVICE_STATE_CONFIG); carrier = nm_platform_link_is_connected (nm_device_get_platform (device), nm_device_get_ifindex (device)); _LOGD (LOGD_DCB, "dcb_state() wait %d carrier %d timeout %d", priv->dcb_wait, carrier, timeout); switch (priv->dcb_wait) { case DCB_WAIT_CARRIER_PREENABLE_UP: if (timeout || carrier) { _LOGD (LOGD_DCB, "dcb_state() enabling DCB"); nm_clear_g_source (&priv->dcb_timeout_id); if (!dcb_enable (device)) { priv->dcb_handle_carrier_changes = FALSE; nm_device_state_changed (device, NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_DCB_FCOE_FAILED); } } break; case DCB_WAIT_CARRIER_PRECONFIG_DOWN: nm_clear_g_source (&priv->dcb_timeout_id); priv->dcb_wait = DCB_WAIT_CARRIER_PRECONFIG_UP; if (!carrier) { /* Wait for the carrier to come back up */ _LOGD (LOGD_DCB, "waiting for carrier (preconfig up)"); priv->dcb_timeout_id = g_timeout_add_seconds (5, dcb_carrier_timeout, device); break; } _LOGD (LOGD_DCB, "dcb_state() preconfig down falling through"); /* fall-through */ case DCB_WAIT_CARRIER_PRECONFIG_UP: if (timeout || carrier) { _LOGD (LOGD_DCB, "dcb_state() preconfig up configuring DCB"); nm_clear_g_source (&priv->dcb_timeout_id); if (!dcb_configure (device)) { priv->dcb_handle_carrier_changes = FALSE; nm_device_state_changed (device, NM_DEVICE_STATE_FAILED, NM_DEVICE_STATE_REASON_DCB_FCOE_FAILED); } } break; case DCB_WAIT_CARRIER_POSTCONFIG_DOWN: nm_clear_g_source (&priv->dcb_timeout_id); priv->dcb_wait = DCB_WAIT_CARRIER_POSTCONFIG_UP; if (!carrier) { /* Wait for the carrier to come back up */ _LOGD (LOGD_DCB, "waiting for carrier (postconfig up)"); priv->dcb_timeout_id = g_timeout_add_seconds (5, dcb_carrier_timeout, device); break; } _LOGD (LOGD_DCB, "dcb_state() postconfig down falling through"); /* fall-through */ case DCB_WAIT_CARRIER_POSTCONFIG_UP: if (timeout || carrier) { _LOGD (LOGD_DCB, "dcb_state() postconfig up starting IP"); nm_clear_g_source (&priv->dcb_timeout_id); priv->dcb_handle_carrier_changes = FALSE; priv->dcb_wait = DCB_WAIT_UNKNOWN; nm_device_activate_schedule_stage3_ip_config_start (device); } break; default: g_assert_not_reached (); } } /*****************************************************************************/ static gboolean wake_on_lan_enable (NMDevice *device) { NMSettingWiredWakeOnLan wol; NMSettingWired *s_wired; const char *password = NULL; s_wired = nm_device_get_applied_setting (device, NM_TYPE_SETTING_WIRED); if (s_wired) { wol = nm_setting_wired_get_wake_on_lan (s_wired); password = nm_setting_wired_get_wake_on_lan_password (s_wired); if (wol != NM_SETTING_WIRED_WAKE_ON_LAN_DEFAULT) goto found; } wol = nm_config_data_get_connection_default_int64 (NM_CONFIG_GET_DATA, NM_CON_DEFAULT ("ethernet.wake-on-lan"), device, NM_SETTING_WIRED_WAKE_ON_LAN_NONE, G_MAXINT32, NM_SETTING_WIRED_WAKE_ON_LAN_DEFAULT); if ( NM_FLAGS_ANY (wol, NM_SETTING_WIRED_WAKE_ON_LAN_EXCLUSIVE_FLAGS) && !nm_utils_is_power_of_two (wol)) { nm_log_dbg (LOGD_ETHER, "invalid default value %u for wake-on-lan", (guint) wol); wol = NM_SETTING_WIRED_WAKE_ON_LAN_DEFAULT; } if (wol != NM_SETTING_WIRED_WAKE_ON_LAN_DEFAULT) goto found; wol = NM_SETTING_WIRED_WAKE_ON_LAN_IGNORE; found: return nm_platform_ethtool_set_wake_on_lan (nm_device_get_platform (device), nm_device_get_ifindex (device), wol, password); } /*****************************************************************************/ static NMActStageReturn act_stage2_config (NMDevice *device, NMDeviceStateReason *out_failure_reason) { NMDeviceEthernet *self = (NMDeviceEthernet *) device; NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSettingConnection *s_con; const char *connection_type; gboolean do_postpone = FALSE; NMSettingDcb *s_dcb; s_con = nm_device_get_applied_setting (device, NM_TYPE_SETTING_CONNECTION); g_return_val_if_fail (s_con, NM_ACT_STAGE_RETURN_FAILURE); nm_clear_g_source (&priv->dcb_timeout_id); priv->dcb_handle_carrier_changes = FALSE; /* 802.1x has to run before any IP configuration since the 802.1x auth * process opens the port up for normal traffic. */ connection_type = nm_setting_connection_get_connection_type (s_con); if (nm_streq (connection_type, NM_SETTING_WIRED_SETTING_NAME)) { NMSetting8021x *security; security = nm_device_get_applied_setting (device, NM_TYPE_SETTING_802_1X); if (security) { /* FIXME: for now 802.1x is mutually exclusive with DCB */ if (!nm_device_has_carrier (NM_DEVICE (self))) { _LOGD (LOGD_DEVICE | LOGD_ETHER, "delay supplicant initialization until carrier goes up"); priv->carrier_id = g_signal_connect (self, "notify::" NM_DEVICE_CARRIER, G_CALLBACK (carrier_changed), self); return NM_ACT_STAGE_RETURN_POSTPONE; } return supplicant_check_secrets_needed (self, out_failure_reason); } } wake_on_lan_enable (device); /* DCB and FCoE setup */ s_dcb = nm_device_get_applied_setting (device, NM_TYPE_SETTING_DCB); if (s_dcb) { /* lldpad really really wants the carrier to be up */ if (nm_platform_link_is_connected (nm_device_get_platform (device), nm_device_get_ifindex (device))) { if (!dcb_enable (device)) { NM_SET_OUT (out_failure_reason, NM_DEVICE_STATE_REASON_DCB_FCOE_FAILED); return NM_ACT_STAGE_RETURN_FAILURE; } } else { _LOGD (LOGD_DCB, "waiting for carrier (preenable up)"); priv->dcb_wait = DCB_WAIT_CARRIER_PREENABLE_UP; priv->dcb_timeout_id = g_timeout_add_seconds (4, dcb_carrier_timeout, device); } priv->dcb_handle_carrier_changes = TRUE; do_postpone = TRUE; } /* PPPoE setup */ if (nm_connection_is_type (nm_device_get_applied_connection (device), NM_SETTING_PPPOE_SETTING_NAME)) { NMSettingPpp *s_ppp; s_ppp = nm_device_get_applied_setting (device, NM_TYPE_SETTING_PPP); if (s_ppp) { guint32 mtu; guint32 mru; guint32 mxu; mtu = nm_setting_ppp_get_mtu (s_ppp); mru = nm_setting_ppp_get_mru (s_ppp); mxu = MAX (mru, mtu); if (mxu) { _LOGD (LOGD_PPP, "set MTU to %u (PPP interface MRU %u, MTU %u)", mxu + PPPOE_ENCAP_OVERHEAD, mru, mtu); nm_platform_link_set_mtu (nm_device_get_platform (device), nm_device_get_ifindex (device), mxu + PPPOE_ENCAP_OVERHEAD); } } } return do_postpone ? NM_ACT_STAGE_RETURN_POSTPONE : NM_ACT_STAGE_RETURN_SUCCESS; } static NMActStageReturn act_stage3_ip_config_start (NMDevice *device, int addr_family, gpointer *out_config, NMDeviceStateReason *out_failure_reason) { NMSettingConnection *s_con; const char *connection_type; if (addr_family == AF_INET) { s_con = nm_device_get_applied_setting (device, NM_TYPE_SETTING_CONNECTION); g_return_val_if_fail (s_con, NM_ACT_STAGE_RETURN_FAILURE); connection_type = nm_setting_connection_get_connection_type (s_con); if (!strcmp (connection_type, NM_SETTING_PPPOE_SETTING_NAME)) return pppoe_stage3_ip4_config_start (NM_DEVICE_ETHERNET (device), out_failure_reason); } return NM_DEVICE_CLASS (nm_device_ethernet_parent_class)->act_stage3_ip_config_start (device, addr_family, out_config, out_failure_reason); } static guint32 get_configured_mtu (NMDevice *device, NMDeviceMtuSource *out_source, gboolean *out_force) { /* MTU only set for plain ethernet */ if (NM_DEVICE_ETHERNET_GET_PRIVATE (device)->ppp_manager) return 0; return nm_device_get_configured_mtu_for_wired (device, out_source, out_force); } static void deactivate (NMDevice *device) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); NMSettingDcb *s_dcb; GError *error = NULL; nm_clear_g_source (&priv->pppoe_wait_id); nm_clear_g_signal_handler (self, &priv->carrier_id); if (priv->ppp_manager) { nm_ppp_manager_stop (priv->ppp_manager, NULL, NULL, NULL); g_clear_object (&priv->ppp_manager); } supplicant_interface_release (self); priv->dcb_wait = DCB_WAIT_UNKNOWN; nm_clear_g_source (&priv->dcb_timeout_id); priv->dcb_handle_carrier_changes = FALSE; /* Tear down DCB/FCoE if it was enabled */ s_dcb = nm_device_get_applied_setting (device, NM_TYPE_SETTING_DCB); if (s_dcb) { if (!nm_dcb_cleanup (nm_device_get_iface (device), &error)) { _LOGW (LOGD_DEVICE | LOGD_PLATFORM, "failed to disable DCB/FCoE: %s", error->message); g_clear_error (&error); } } /* Set last PPPoE connection time */ if (nm_device_get_applied_setting (device, NM_TYPE_SETTING_PPPOE)) priv->last_pppoe_time = nm_utils_get_monotonic_timestamp_sec (); if (priv->ethtool_prev_set) { priv->ethtool_prev_set = FALSE; _LOGD (LOGD_DEVICE, "set-link: reset %snegotiation (%u Mbit, %s duplex)", priv->ethtool_prev_autoneg ? "auto-" : "static ", priv->ethtool_prev_speed, nm_platform_link_duplex_type_to_string (priv->ethtool_prev_duplex)); if (!nm_platform_ethtool_set_link_settings (nm_device_get_platform (device), nm_device_get_ifindex (device), priv->ethtool_prev_autoneg, priv->ethtool_prev_speed, priv->ethtool_prev_duplex)) { _LOGW (LOGD_DEVICE, "set-link: failure to reset link negotiation"); return; } } } static gboolean complete_connection (NMDevice *device, NMConnection *connection, const char *specific_object, NMConnection *const*existing_connections, GError **error) { NMSettingWired *s_wired; NMSettingPppoe *s_pppoe; s_pppoe = nm_connection_get_setting_pppoe (connection); /* We can't telepathically figure out the service name or username, so if * those weren't given, we can't complete the connection. */ if (s_pppoe && !nm_setting_verify (NM_SETTING (s_pppoe), NULL, error)) return FALSE; s_wired = nm_connection_get_setting_wired (connection); if (!s_wired) { s_wired = (NMSettingWired *) nm_setting_wired_new (); nm_connection_add_setting (connection, NM_SETTING (s_wired)); } /* Default to an ethernet-only connection, but if a PPPoE setting was given * then PPPoE should be our connection type. */ nm_utils_complete_generic (nm_device_get_platform (device), connection, s_pppoe ? NM_SETTING_PPPOE_SETTING_NAME : NM_SETTING_WIRED_SETTING_NAME, existing_connections, NULL, s_pppoe ? _("PPPoE connection") : _("Wired connection"), NULL, nm_setting_wired_get_mac_address (s_wired) ? NULL : nm_device_get_iface (device), s_pppoe ? FALSE : TRUE); /* No IPv6 by default yet for PPPoE */ return TRUE; } static NMConnection * new_default_connection (NMDevice *self) { NMConnection *connection; NMSettingsConnection *const*connections; NMSetting *setting; gs_unref_hashtable GHashTable *existing_ids = NULL; struct udev_device *dev; const char *perm_hw_addr; const char *iface; const char *uprop = "0"; gs_free char *defname = NULL; gs_free char *uuid = NULL; guint i, n_connections; perm_hw_addr = nm_device_get_permanent_hw_address (self); iface = nm_device_get_iface (self); connection = nm_simple_connection_new (); setting = nm_setting_connection_new (); nm_connection_add_setting (connection, setting); connections = nm_settings_get_connections (nm_device_get_settings (self), &n_connections); if (n_connections > 0) { existing_ids = g_hash_table_new (nm_str_hash, g_str_equal); for (i = 0; i < n_connections; i++) g_hash_table_add (existing_ids, (char *) nm_settings_connection_get_id (connections[i])); } defname = nm_device_ethernet_utils_get_default_wired_name (existing_ids); if (!defname) return NULL; /* Create a stable UUID. The UUID is also the Network_ID for stable-privacy addr-gen-mode, * thus when it changes we will also generate different IPv6 addresses. */ uuid = _nm_utils_uuid_generate_from_strings ("default-wired", nm_utils_machine_id_str (), defname, perm_hw_addr ?: iface, NULL); g_object_set (setting, NM_SETTING_CONNECTION_ID, defname, NM_SETTING_CONNECTION_TYPE, NM_SETTING_WIRED_SETTING_NAME, NM_SETTING_CONNECTION_AUTOCONNECT, TRUE, NM_SETTING_CONNECTION_AUTOCONNECT_PRIORITY, NM_SETTING_CONNECTION_AUTOCONNECT_PRIORITY_MIN, NM_SETTING_CONNECTION_UUID, uuid, NM_SETTING_CONNECTION_TIMESTAMP, (guint64) time (NULL), NM_SETTING_CONNECTION_INTERFACE_NAME, iface, NULL); /* Check if we should create a Link-Local only connection */ dev = nm_platform_link_get_udev_device (nm_device_get_platform (NM_DEVICE (self)), nm_device_get_ip_ifindex (self)); if (dev) uprop = udev_device_get_property_value (dev, "NM_AUTO_DEFAULT_LINK_LOCAL_ONLY"); if (nm_udev_utils_property_as_boolean (uprop)) { setting = nm_setting_ip4_config_new (); g_object_set (setting, NM_SETTING_IP_CONFIG_METHOD, NM_SETTING_IP4_CONFIG_METHOD_LINK_LOCAL, NULL); nm_connection_add_setting (connection, setting); setting = nm_setting_ip6_config_new (); g_object_set (setting, NM_SETTING_IP_CONFIG_METHOD, NM_SETTING_IP6_CONFIG_METHOD_LINK_LOCAL, NM_SETTING_IP_CONFIG_MAY_FAIL, TRUE, NULL); nm_connection_add_setting (connection, setting); } return connection; } static const char * get_s390_subchannels (NMDevice *device) { nm_assert (NM_IS_DEVICE_ETHERNET (device)); return NM_DEVICE_ETHERNET_GET_PRIVATE (device)->subchannels; } static void update_connection (NMDevice *device, NMConnection *connection) { NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (device); NMSettingWired *s_wired = nm_connection_get_setting_wired (connection); gboolean perm_hw_addr_is_fake; const char *perm_hw_addr; const char *mac = nm_device_get_hw_address (device); const char *mac_prop = NM_SETTING_WIRED_MAC_ADDRESS; GHashTableIter iter; gpointer key, value; if (!s_wired) { s_wired = (NMSettingWired *) nm_setting_wired_new (); nm_connection_add_setting (connection, (NMSetting *) s_wired); } g_object_set (nm_connection_get_setting_connection (connection), NM_SETTING_CONNECTION_TYPE, nm_connection_get_setting_pppoe (connection) ? NM_SETTING_PPPOE_SETTING_NAME : NM_SETTING_WIRED_SETTING_NAME, NULL); /* If the device reports a permanent address, use that for the MAC address * and the current MAC, if different, is the cloned MAC. */ perm_hw_addr = nm_device_get_permanent_hw_address_full (device, TRUE, &perm_hw_addr_is_fake); if (perm_hw_addr && !perm_hw_addr_is_fake) { g_object_set (s_wired, NM_SETTING_WIRED_MAC_ADDRESS, perm_hw_addr, NULL); mac_prop = NULL; if (mac && !nm_utils_hwaddr_matches (perm_hw_addr, -1, mac, -1)) mac_prop = NM_SETTING_WIRED_CLONED_MAC_ADDRESS; } if (mac_prop && mac && nm_utils_hwaddr_valid (mac, ETH_ALEN)) g_object_set (s_wired, mac_prop, mac, NULL); /* We don't set the MTU as we don't know whether it was set explicitly */ /* s390 */ if (priv->subchannels_dbus) g_object_set (s_wired, NM_SETTING_WIRED_S390_SUBCHANNELS, priv->subchannels_dbus, NULL); if (priv->s390_nettype) g_object_set (s_wired, NM_SETTING_WIRED_S390_NETTYPE, priv->s390_nettype, NULL); _nm_setting_wired_clear_s390_options (s_wired); g_hash_table_iter_init (&iter, priv->s390_options); while (g_hash_table_iter_next (&iter, &key, &value)) nm_setting_wired_add_s390_option (s_wired, (const char *) key, (const char *) value); } static void link_speed_update (NMDevice *device) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); guint32 speed; if (!nm_platform_ethtool_get_link_settings (nm_device_get_platform (device), nm_device_get_ifindex (device), NULL, &speed, NULL)) return; if (priv->speed == speed) return; priv->speed = speed; _LOGD (LOGD_PLATFORM | LOGD_ETHER, "speed is now %d Mb/s", speed); _notify (self, PROP_SPEED); } static void carrier_changed_notify (NMDevice *device, gboolean carrier) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); if (priv->dcb_handle_carrier_changes) { nm_assert (nm_device_get_state (device) == NM_DEVICE_STATE_CONFIG); if (priv->dcb_timeout_id) { _LOGD (LOGD_DCB, "carrier_changed() calling dcb_state()"); dcb_state (device, FALSE); } } if (carrier) link_speed_update (device); NM_DEVICE_CLASS (nm_device_ethernet_parent_class)->carrier_changed_notify (device, carrier); } static void link_changed (NMDevice *device, const NMPlatformLink *pllink) { NM_DEVICE_CLASS (nm_device_ethernet_parent_class)->link_changed (device, pllink); if (pllink->initialized) _update_s390_subchannels ((NMDeviceEthernet *) device); } static gboolean is_available (NMDevice *device, NMDeviceCheckDevAvailableFlags flags) { if (!NM_DEVICE_CLASS (nm_device_ethernet_parent_class)->is_available (device, flags)) return FALSE; return !!nm_device_get_initial_hw_address (device); } static gboolean can_reapply_change (NMDevice *device, const char *setting_name, NMSetting *s_old, NMSetting *s_new, GHashTable *diffs, GError **error) { NMDeviceClass *device_class; /* Only handle wired setting here, delegate other settings to parent class */ if (nm_streq (setting_name, NM_SETTING_WIRED_SETTING_NAME)) { return nm_device_hash_check_invalid_keys (diffs, NM_SETTING_WIRED_SETTING_NAME, error, NM_SETTING_WIRED_MTU, /* reapplied with IP config */ NM_SETTING_WIRED_SPEED, NM_SETTING_WIRED_DUPLEX, NM_SETTING_WIRED_AUTO_NEGOTIATE, NM_SETTING_WIRED_WAKE_ON_LAN, NM_SETTING_WIRED_WAKE_ON_LAN_PASSWORD); } device_class = NM_DEVICE_CLASS (nm_device_ethernet_parent_class); return device_class->can_reapply_change (device, setting_name, s_old, s_new, diffs, error); } static void reapply_connection (NMDevice *device, NMConnection *con_old, NMConnection *con_new) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (device); NMDeviceState state = nm_device_get_state (device); NM_DEVICE_CLASS (nm_device_ethernet_parent_class)->reapply_connection (device, con_old, con_new); _LOGD (LOGD_DEVICE, "reapplying wired settings"); if (state >= NM_DEVICE_STATE_PREPARE) link_negotiation_set (device); if (state >= NM_DEVICE_STATE_CONFIG) wake_on_lan_enable (device); } static void dispose (GObject *object) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (object); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); wired_secrets_cancel (self); supplicant_interface_release (self); nm_clear_g_source (&priv->pppoe_wait_id); nm_clear_g_source (&priv->dcb_timeout_id); nm_clear_g_signal_handler (self, &priv->carrier_id); G_OBJECT_CLASS (nm_device_ethernet_parent_class)->dispose (object); } static void finalize (GObject *object) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (object); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); g_clear_object (&priv->supplicant.mgr); g_free (priv->subchan1); g_free (priv->subchan2); g_free (priv->subchan3); g_free (priv->subchannels); g_strfreev (priv->subchannels_dbus); g_free (priv->s390_nettype); g_hash_table_destroy (priv->s390_options); G_OBJECT_CLASS (nm_device_ethernet_parent_class)->finalize (object); } static void get_property (GObject *object, guint prop_id, GValue *value, GParamSpec *pspec) { NMDeviceEthernet *self = NM_DEVICE_ETHERNET (object); NMDeviceEthernetPrivate *priv = NM_DEVICE_ETHERNET_GET_PRIVATE (self); switch (prop_id) { case PROP_SPEED: g_value_set_uint (value, priv->speed); break; case PROP_S390_SUBCHANNELS: g_value_set_boxed (value, priv->subchannels_dbus); break; default: G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec); break; } } static void set_property (GObject *object, guint prop_id, const GValue *value, GParamSpec *pspec) { switch (prop_id) { default: G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec); break; } } static const NMDBusInterfaceInfoExtended interface_info_device_wired = { .parent = NM_DEFINE_GDBUS_INTERFACE_INFO_INIT ( NM_DBUS_INTERFACE_DEVICE_WIRED, .signals = NM_DEFINE_GDBUS_SIGNAL_INFOS ( &nm_signal_info_property_changed_legacy, ), .properties = NM_DEFINE_GDBUS_PROPERTY_INFOS ( NM_DEFINE_DBUS_PROPERTY_INFO_EXTENDED_READABLE_L ("HwAddress", "s", NM_DEVICE_HW_ADDRESS), NM_DEFINE_DBUS_PROPERTY_INFO_EXTENDED_READABLE_L ("PermHwAddress", "s", NM_DEVICE_PERM_HW_ADDRESS), NM_DEFINE_DBUS_PROPERTY_INFO_EXTENDED_READABLE_L ("Speed", "u", NM_DEVICE_ETHERNET_SPEED), NM_DEFINE_DBUS_PROPERTY_INFO_EXTENDED_READABLE_L ("S390Subchannels", "as", NM_DEVICE_ETHERNET_S390_SUBCHANNELS), NM_DEFINE_DBUS_PROPERTY_INFO_EXTENDED_READABLE_L ("Carrier", "b", NM_DEVICE_CARRIER), ), ), .legacy_property_changed = TRUE, }; static void nm_device_ethernet_class_init (NMDeviceEthernetClass *klass) { GObjectClass *object_class = G_OBJECT_CLASS (klass); NMDBusObjectClass *dbus_object_class = NM_DBUS_OBJECT_CLASS (klass); NMDeviceClass *device_class = NM_DEVICE_CLASS (klass); g_type_class_add_private (object_class, sizeof (NMDeviceEthernetPrivate)); object_class->dispose = dispose; object_class->finalize = finalize; object_class->get_property = get_property; object_class->set_property = set_property; dbus_object_class->interface_infos = NM_DBUS_INTERFACE_INFOS (&interface_info_device_wired); device_class->connection_type_supported = NM_SETTING_WIRED_SETTING_NAME; device_class->link_types = NM_DEVICE_DEFINE_LINK_TYPES (NM_LINK_TYPE_ETHERNET); device_class->get_generic_capabilities = get_generic_capabilities; device_class->check_connection_compatible = check_connection_compatible; device_class->complete_connection = complete_connection; device_class->new_default_connection = new_default_connection; device_class->act_stage1_prepare_also_for_external_or_assume = TRUE; device_class->act_stage1_prepare = act_stage1_prepare; device_class->act_stage1_prepare_set_hwaddr_ethernet = TRUE; device_class->act_stage2_config = act_stage2_config; device_class->act_stage3_ip_config_start = act_stage3_ip_config_start; device_class->get_configured_mtu = get_configured_mtu; device_class->deactivate = deactivate; device_class->get_s390_subchannels = get_s390_subchannels; device_class->update_connection = update_connection; device_class->carrier_changed_notify = carrier_changed_notify; device_class->link_changed = link_changed; device_class->is_available = is_available; device_class->can_reapply_change = can_reapply_change; device_class->reapply_connection = reapply_connection; device_class->state_changed = device_state_changed; obj_properties[PROP_SPEED] = g_param_spec_uint (NM_DEVICE_ETHERNET_SPEED, "", "", 0, G_MAXUINT32, 0, G_PARAM_READABLE | G_PARAM_STATIC_STRINGS); obj_properties[PROP_S390_SUBCHANNELS] = g_param_spec_boxed (NM_DEVICE_ETHERNET_S390_SUBCHANNELS, "", "", G_TYPE_STRV, G_PARAM_READABLE | G_PARAM_STATIC_STRINGS); g_object_class_install_properties (object_class, _PROPERTY_ENUMS_LAST, obj_properties); } /*****************************************************************************/ #define NM_TYPE_ETHERNET_DEVICE_FACTORY (nm_ethernet_device_factory_get_type ()) #define NM_ETHERNET_DEVICE_FACTORY(obj) (G_TYPE_CHECK_INSTANCE_CAST ((obj), NM_TYPE_ETHERNET_DEVICE_FACTORY, NMEthernetDeviceFactory)) static NMDevice * create_device (NMDeviceFactory *factory, const char *iface, const NMPlatformLink *plink, NMConnection *connection, gboolean *out_ignore) { return (NMDevice *) g_object_new (NM_TYPE_DEVICE_ETHERNET, NM_DEVICE_IFACE, iface, NM_DEVICE_TYPE_DESC, "Ethernet", NM_DEVICE_DEVICE_TYPE, NM_DEVICE_TYPE_ETHERNET, NM_DEVICE_LINK_TYPE, NM_LINK_TYPE_ETHERNET, NULL); } static gboolean match_connection (NMDeviceFactory *factory, NMConnection *connection) { const char *type = nm_connection_get_connection_type (connection); NMSettingPppoe *s_pppoe; if (nm_streq (type, NM_SETTING_WIRED_SETTING_NAME)) return TRUE; nm_assert (nm_streq (type, NM_SETTING_PPPOE_SETTING_NAME)); s_pppoe = nm_connection_get_setting_pppoe (connection); return !nm_setting_pppoe_get_parent (s_pppoe); } NM_DEVICE_FACTORY_DEFINE_INTERNAL (ETHERNET, Ethernet, ethernet, NM_DEVICE_FACTORY_DECLARE_LINK_TYPES (NM_LINK_TYPE_ETHERNET) NM_DEVICE_FACTORY_DECLARE_SETTING_TYPES (NM_SETTING_WIRED_SETTING_NAME, NM_SETTING_PPPOE_SETTING_NAME), factory_class->create_device = create_device; factory_class->match_connection = match_connection; );