X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=src%2Fresolve%2Fresolved-link.c;h=ed176ab417574c6b17f1da4348adddcc422e7a57;hp=341cb5aea299d85fcc9b8d5974ec9f4d35a38a10;hb=6436165dbc500f14abfec738af28f87a71f6a12a;hpb=0c903ae7db52af8ecad0619ec0da021f951c9c1c diff --git a/src/resolve/resolved-link.c b/src/resolve/resolved-link.c index 341cb5aea..ed176ab41 100644 --- a/src/resolve/resolved-link.c +++ b/src/resolve/resolved-link.c @@ -23,13 +23,9 @@ #include "sd-network.h" #include "strv.h" +#include "missing.h" #include "resolved-link.h" -/* RFC 4795 Section 2.8. suggests a TTL of 30s by default */ -#define LLMNR_DEFAULT_TTL (30) - -static void link_address_add_rrs(LinkAddress *a); - int link_new(Manager *m, Link **ret, int ifindex) { _cleanup_(link_freep) Link *l = NULL; int r; @@ -46,6 +42,7 @@ int link_new(Manager *m, Link **ret, int ifindex) { return -ENOMEM; l->ifindex = ifindex; + l->llmnr_support = SUPPORT_YES; r = hashmap_put(m->links, INT_TO_PTR(ifindex), l); if (r < 0) @@ -96,7 +93,7 @@ static void link_allocate_scopes(Link *l) { } else l->unicast_scope = dns_scope_free(l->unicast_scope); - if (link_relevant(l, AF_INET) && l->manager->use_llmnr) { + if (link_relevant(l, AF_INET) && l->llmnr_support != SUPPORT_NO && l->manager->llmnr_support != SUPPORT_NO) { if (!l->llmnr_ipv4_scope) { r = dns_scope_new(l->manager, &l->llmnr_ipv4_scope, l, DNS_PROTOCOL_LLMNR, AF_INET); if (r < 0) @@ -105,7 +102,7 @@ static void link_allocate_scopes(Link *l) { } else l->llmnr_ipv4_scope = dns_scope_free(l->llmnr_ipv4_scope); - if (link_relevant(l, AF_INET6) && l->manager->use_llmnr) { + if (link_relevant(l, AF_INET6) && l->llmnr_support != SUPPORT_NO && l->manager->llmnr_support != SUPPORT_NO) { if (!l->llmnr_ipv6_scope) { r = dns_scope_new(l->manager, &l->llmnr_ipv6_scope, l, DNS_PROTOCOL_LLMNR, AF_INET6); if (r < 0) @@ -115,11 +112,11 @@ static void link_allocate_scopes(Link *l) { l->llmnr_ipv6_scope = dns_scope_free(l->llmnr_ipv6_scope); } -static void link_add_rrs(Link *l) { +void link_add_rrs(Link *l, bool force_remove) { LinkAddress *a; LIST_FOREACH(addresses, a, l->addresses) - link_address_add_rrs(a); + link_address_add_rrs(a, force_remove); } int link_update_rtnl(Link *l, sd_rtnl_message *m) { @@ -136,12 +133,12 @@ int link_update_rtnl(Link *l, sd_rtnl_message *m) { sd_rtnl_message_read_u32(m, IFLA_MTU, &l->mtu); if (sd_rtnl_message_read_string(m, IFLA_IFNAME, &n) >= 0) { - strncpy(l->name, n, sizeof(l->name)); + strncpy(l->name, n, sizeof(l->name)-1); char_array_0(l->name); } link_allocate_scopes(l); - link_add_rrs(l); + link_add_rrs(l, false); return 0; } @@ -154,13 +151,13 @@ static int link_update_dns_servers(Link *l) { assert(l); - LIST_FOREACH(servers, s, l->dns_servers) - s->marked = true; - - r = sd_network_get_dns(l->ifindex, &nameservers); + r = sd_network_get_link_dns(l->ifindex, &nameservers); if (r < 0) goto clear; + LIST_FOREACH(servers, s, l->dns_servers) + s->marked = true; + STRV_FOREACH(nameserver, nameservers) { union in_addr_union a; int family; @@ -173,7 +170,7 @@ static int link_update_dns_servers(Link *l) { if (s) s->marked = false; else { - r = dns_server_new(l->manager, NULL, l, family, &a); + r = dns_server_new(l->manager, NULL, DNS_SERVER_LINK, l, family, &a); if (r < 0) goto clear; } @@ -192,12 +189,42 @@ clear: return r; } +static int link_update_llmnr_support(Link *l) { + _cleanup_free_ char *b = NULL; + int r; + + assert(l); + + r = sd_network_get_link_llmnr(l->ifindex, &b); + if (r < 0) + goto clear; + + r = parse_boolean(b); + if (r < 0) { + if (streq(b, "resolve")) + l->llmnr_support = SUPPORT_RESOLVE; + else + goto clear; + + } else if (r > 0) + l->llmnr_support = SUPPORT_YES; + else + l->llmnr_support = SUPPORT_NO; + + return 0; + +clear: + l->llmnr_support = SUPPORT_YES; + return r; +} + int link_update_monitor(Link *l) { assert(l); link_update_dns_servers(l); + link_update_llmnr_support(l); link_allocate_scopes(l); - link_add_rrs(l); + link_add_rrs(l, false); return 0; } @@ -208,10 +235,14 @@ bool link_relevant(Link *l, int family) { assert(l); - /* A link is relevant if it isn't a loopback device and has at - * least one relevant IP address */ + /* A link is relevant if it isn't a loopback or pointopoint + * device, has a link beat, can do multicast and has at least + * one relevant IP address */ - if (l->flags & IFF_LOOPBACK) + if (l->flags & (IFF_LOOPBACK|IFF_POINTOPOINT|IFF_DORMANT)) + return false; + + if ((l->flags & (IFF_UP|IFF_LOWER_UP|IFF_MULTICAST)) != (IFF_UP|IFF_LOWER_UP|IFF_MULTICAST)) return false; sd_network_get_link_operational_state(l->ifindex, &state); @@ -248,11 +279,32 @@ DnsServer* link_find_dns_server(Link *l, int family, const union in_addr_union * return NULL; } +DnsServer* link_set_dns_server(Link *l, DnsServer *s) { + assert(l); + + if (l->current_dns_server == s) + return s; + + if (s) { + _cleanup_free_ char *ip = NULL; + + in_addr_to_string(s->family, &s->address, &ip); + log_info("Switching to DNS server %s for interface %s.", strna(ip), l->name); + } + + l->current_dns_server = s; + + if (l->unicast_scope) + dns_cache_flush(&l->unicast_scope->cache); + + return s; +} + DnsServer *link_get_dns_server(Link *l) { assert(l); if (!l->current_dns_server) - l->current_dns_server = l->dns_servers; + link_set_dns_server(l, l->dns_servers); return l->current_dns_server; } @@ -260,23 +312,15 @@ DnsServer *link_get_dns_server(Link *l) { void link_next_dns_server(Link *l) { assert(l); - /* Switch to the next DNS server */ - - if (!l->current_dns_server) { - l->current_dns_server = l->dns_servers; - if (l->current_dns_server) - return; - } - if (!l->current_dns_server) return; if (l->current_dns_server->servers_next) { - l->current_dns_server = l->current_dns_server->servers_next; + link_set_dns_server(l, l->current_dns_server->servers_next); return; } - l->current_dns_server = l->dns_servers; + link_set_dns_server(l, l->dns_servers); } int link_address_new(Link *l, LinkAddress **ret, int family, const union in_addr_union *in_addr) { @@ -309,13 +353,10 @@ LinkAddress *link_address_free(LinkAddress *a) { LIST_REMOVE(addresses, a->link->addresses, a); if (a->llmnr_address_rr) { - if (a->family == AF_INET && a->link->llmnr_ipv4_scope) dns_zone_remove_rr(&a->link->llmnr_ipv4_scope->zone, a->llmnr_address_rr); else if (a->family == AF_INET6 && a->link->llmnr_ipv6_scope) dns_zone_remove_rr(&a->link->llmnr_ipv6_scope->zone, a->llmnr_address_rr); - - dns_resource_record_unref(a->llmnr_address_rr); } if (a->llmnr_ptr_rr) { @@ -323,103 +364,132 @@ LinkAddress *link_address_free(LinkAddress *a) { dns_zone_remove_rr(&a->link->llmnr_ipv4_scope->zone, a->llmnr_ptr_rr); else if (a->family == AF_INET6 && a->link->llmnr_ipv6_scope) dns_zone_remove_rr(&a->link->llmnr_ipv6_scope->zone, a->llmnr_ptr_rr); - - dns_resource_record_unref(a->llmnr_ptr_rr); } } + dns_resource_record_unref(a->llmnr_address_rr); + dns_resource_record_unref(a->llmnr_ptr_rr); + free(a); return NULL; } -static void link_address_add_rrs(LinkAddress *a) { +void link_address_add_rrs(LinkAddress *a, bool force_remove) { int r; assert(a); - if (a->family == AF_INET && a->link->llmnr_ipv4_scope) { + if (a->family == AF_INET) { + + if (!force_remove && + link_address_relevant(a) && + a->link->llmnr_ipv4_scope && + a->link->llmnr_support == SUPPORT_YES && + a->link->manager->llmnr_support == SUPPORT_YES) { - if (!a->link->manager->host_ipv4_key) { - a->link->manager->host_ipv4_key = dns_resource_key_new(DNS_CLASS_IN, DNS_TYPE_A, a->link->manager->hostname); if (!a->link->manager->host_ipv4_key) { - r = -ENOMEM; - goto fail; + a->link->manager->host_ipv4_key = dns_resource_key_new(DNS_CLASS_IN, DNS_TYPE_A, a->link->manager->hostname); + if (!a->link->manager->host_ipv4_key) { + r = -ENOMEM; + goto fail; + } } - } - if (!a->llmnr_address_rr) { - a->llmnr_address_rr = dns_resource_record_new(a->link->manager->host_ipv4_key); if (!a->llmnr_address_rr) { - r = -ENOMEM; - goto fail; + a->llmnr_address_rr = dns_resource_record_new(a->link->manager->host_ipv4_key); + if (!a->llmnr_address_rr) { + r = -ENOMEM; + goto fail; + } + + a->llmnr_address_rr->a.in_addr = a->in_addr.in; + a->llmnr_address_rr->ttl = LLMNR_DEFAULT_TTL; } - a->llmnr_address_rr->a.in_addr = a->in_addr.in; - a->llmnr_address_rr->ttl = LLMNR_DEFAULT_TTL; - } - - if (!a->llmnr_ptr_rr) { - r = dns_resource_record_new_reverse(&a->llmnr_ptr_rr, a->family, &a->in_addr, a->link->manager->hostname); - if (r < 0) - goto fail; + if (!a->llmnr_ptr_rr) { + r = dns_resource_record_new_reverse(&a->llmnr_ptr_rr, a->family, &a->in_addr, a->link->manager->hostname); + if (r < 0) + goto fail; - a->llmnr_ptr_rr->ttl = LLMNR_DEFAULT_TTL; - } + a->llmnr_ptr_rr->ttl = LLMNR_DEFAULT_TTL; + } - if (link_address_relevant(a)) { - r = dns_zone_put(&a->link->llmnr_ipv4_scope->zone, a->llmnr_address_rr); + r = dns_zone_put(&a->link->llmnr_ipv4_scope->zone, a->link->llmnr_ipv4_scope, a->llmnr_address_rr, true); if (r < 0) - goto fail; + log_warning("Failed to add A record to LLMNR zone: %s", strerror(-r)); - r = dns_zone_put(&a->link->llmnr_ipv4_scope->zone, a->llmnr_ptr_rr); + r = dns_zone_put(&a->link->llmnr_ipv4_scope->zone, a->link->llmnr_ipv4_scope, a->llmnr_ptr_rr, false); if (r < 0) - goto fail; + log_warning("Failed to add IPv6 PTR record to LLMNR zone: %s", strerror(-r)); } else { - dns_zone_remove_rr(&a->link->llmnr_ipv4_scope->zone, a->llmnr_address_rr); - dns_zone_remove_rr(&a->link->llmnr_ipv4_scope->zone, a->llmnr_ptr_rr); + if (a->llmnr_address_rr) { + if (a->link->llmnr_ipv4_scope) + dns_zone_remove_rr(&a->link->llmnr_ipv4_scope->zone, a->llmnr_address_rr); + a->llmnr_address_rr = dns_resource_record_unref(a->llmnr_address_rr); + } + + if (a->llmnr_ptr_rr) { + if (a->link->llmnr_ipv4_scope) + dns_zone_remove_rr(&a->link->llmnr_ipv4_scope->zone, a->llmnr_ptr_rr); + a->llmnr_ptr_rr = dns_resource_record_unref(a->llmnr_ptr_rr); + } } } - if (a->family == AF_INET6 && a->link->llmnr_ipv6_scope) { + if (a->family == AF_INET6) { + + if (!force_remove && + link_address_relevant(a) && + a->link->llmnr_ipv6_scope && + a->link->llmnr_support == SUPPORT_YES && + a->link->manager->llmnr_support == SUPPORT_YES) { - if (!a->link->manager->host_ipv6_key) { - a->link->manager->host_ipv6_key = dns_resource_key_new(DNS_CLASS_IN, DNS_TYPE_AAAA, a->link->manager->hostname); if (!a->link->manager->host_ipv6_key) { - r = -ENOMEM; - goto fail; + a->link->manager->host_ipv6_key = dns_resource_key_new(DNS_CLASS_IN, DNS_TYPE_AAAA, a->link->manager->hostname); + if (!a->link->manager->host_ipv6_key) { + r = -ENOMEM; + goto fail; + } } - } - if (!a->llmnr_address_rr) { - a->llmnr_address_rr = dns_resource_record_new(a->link->manager->host_ipv6_key); if (!a->llmnr_address_rr) { - r = -ENOMEM; - goto fail; + a->llmnr_address_rr = dns_resource_record_new(a->link->manager->host_ipv6_key); + if (!a->llmnr_address_rr) { + r = -ENOMEM; + goto fail; + } + + a->llmnr_address_rr->aaaa.in6_addr = a->in_addr.in6; + a->llmnr_address_rr->ttl = LLMNR_DEFAULT_TTL; } - a->llmnr_address_rr->aaaa.in6_addr = a->in_addr.in6; - a->llmnr_address_rr->ttl = LLMNR_DEFAULT_TTL; - } + if (!a->llmnr_ptr_rr) { + r = dns_resource_record_new_reverse(&a->llmnr_ptr_rr, a->family, &a->in_addr, a->link->manager->hostname); + if (r < 0) + goto fail; - if (!a->llmnr_ptr_rr) { - r = dns_resource_record_new_reverse(&a->llmnr_ptr_rr, a->family, &a->in_addr, a->link->manager->hostname); - if (r < 0) - goto fail; - - a->llmnr_ptr_rr->ttl = LLMNR_DEFAULT_TTL; - } + a->llmnr_ptr_rr->ttl = LLMNR_DEFAULT_TTL; + } - if (link_address_relevant(a)) { - r = dns_zone_put(&a->link->llmnr_ipv6_scope->zone, a->llmnr_address_rr); + r = dns_zone_put(&a->link->llmnr_ipv6_scope->zone, a->link->llmnr_ipv6_scope, a->llmnr_address_rr, true); if (r < 0) - goto fail; + log_warning("Failed to add AAAA record to LLMNR zone: %s", strerror(-r)); - r = dns_zone_put(&a->link->llmnr_ipv6_scope->zone, a->llmnr_ptr_rr); + r = dns_zone_put(&a->link->llmnr_ipv6_scope->zone, a->link->llmnr_ipv6_scope, a->llmnr_ptr_rr, false); if (r < 0) - goto fail; + log_warning("Failed to add IPv6 PTR record to LLMNR zone: %s", strerror(-r)); } else { - dns_zone_remove_rr(&a->link->llmnr_ipv6_scope->zone, a->llmnr_address_rr); - dns_zone_remove_rr(&a->link->llmnr_ipv6_scope->zone, a->llmnr_ptr_rr); + if (a->llmnr_address_rr) { + if (a->link->llmnr_ipv6_scope) + dns_zone_remove_rr(&a->link->llmnr_ipv6_scope->zone, a->llmnr_address_rr); + a->llmnr_address_rr = dns_resource_record_unref(a->llmnr_address_rr); + } + + if (a->llmnr_ptr_rr) { + if (a->link->llmnr_ipv6_scope) + dns_zone_remove_rr(&a->link->llmnr_ipv6_scope->zone, a->llmnr_ptr_rr); + a->llmnr_ptr_rr = dns_resource_record_unref(a->llmnr_ptr_rr); + } } } @@ -441,7 +511,7 @@ int link_address_update_rtnl(LinkAddress *a, sd_rtnl_message *m) { sd_rtnl_message_addr_get_scope(m, &a->scope); link_allocate_scopes(a->link); - link_add_rrs(a->link); + link_add_rrs(a->link, false); return 0; } @@ -449,7 +519,7 @@ int link_address_update_rtnl(LinkAddress *a, sd_rtnl_message *m) { bool link_address_relevant(LinkAddress *a) { assert(a); - if (a->flags & IFA_F_DEPRECATED) + if (a->flags & (IFA_F_DEPRECATED|IFA_F_TENTATIVE)) return false; if (IN_SET(a->scope, RT_SCOPE_HOST, RT_SCOPE_NOWHERE))