26
26
#include <string.h>
28
28
#include <unistd.h>
33
#include <sys/ioctl.h>
34
#include <linux/if_tun.h>
38
#include <glib/garray.h>
39
#include <glib/gerror.h>
40
#include <glib/gmain.h>
41
#include <glib/gspawn.h>
43
30
#define CONNMAN_API_SUBJECT_TO_CHANGE
44
31
#include <connman/plugin.h>
45
#include <connman/device.h>
46
#include <connman/element.h>
47
32
#include <connman/provider.h>
48
33
#include <connman/log.h>
49
#include <connman/element.h>
50
#include <connman/rtnl.h>
51
34
#include <connman/task.h>
59
struct connman_task *task;
62
static int kill_tun(char *tun_name)
67
memset(&ifr, 0, sizeof(ifr));
68
ifr.ifr_flags = IFF_TUN | IFF_NO_PI;
69
sprintf(ifr.ifr_name, "%s", tun_name);
71
fd = open("/dev/net/tun", O_RDWR);
74
connman_error("Failed to open /dev/net/tun to device %s: %s",
75
tun_name, strerror(errno));
79
if (ioctl(fd, TUNSETIFF, (void *)&ifr)) {
81
connman_error("Failed to TUNSETIFF for device %s to it: %s",
82
tun_name, strerror(errno));
87
if (ioctl(fd, TUNSETPERSIST, 0)) {
89
connman_error("Failed to set tun device %s nonpersistent: %s",
90
tun_name, strerror(errno));
95
DBG("Killed tun device %s", tun_name);
99
static void openconnect_died(struct connman_task *task, void *user_data)
101
struct connman_provider *provider = user_data;
102
struct oc_data *data = connman_provider_get_data(provider);
104
DBG("provider %p data %p", provider, data);
109
kill_tun(data->if_name);
110
connman_provider_set_data(provider, NULL);
111
connman_rtnl_remove_watch(data->watch);
115
connman_provider_set_connected(provider, FALSE);
116
connman_provider_set_index(provider, -1);
117
connman_provider_unref(provider);
118
connman_task_destroy(task);
121
static void vpn_newlink(unsigned flags, unsigned change, void *user_data)
123
struct connman_provider *provider = user_data;
124
struct oc_data *data = connman_provider_get_data(provider);
126
if ((data->flags & IFF_UP) != (flags & IFF_UP)) {
128
connman_provider_set_connected(provider, TRUE);
133
static void openconnect_task_notify(struct connman_task *task,
134
DBusMessage *msg, void *user_data)
38
static int oc_notify(DBusMessage *msg, struct connman_provider *provider)
136
40
DBusMessageIter iter, dict;
137
struct connman_provider *provider = user_data;
138
41
struct oc_data *data;
139
42
const char *reason, *key, *value;
140
43
const char *domain = NULL;
143
45
dbus_message_iter_init(msg, &iter);
197
97
dbus_message_iter_next(&dict);
200
index = connman_provider_get_index(provider);
201
100
connman_provider_set_string(provider, "Domain", domain);
202
data->watch = connman_rtnl_add_newlink_watch(index,
203
vpn_newlink, provider);
205
connman_inet_ifup(index);
102
return VPN_STATE_CONNECT;
208
static int oc_connect(struct connman_provider *provider)
105
static int oc_connect(struct connman_provider *provider,
106
struct connman_task *task, const char *if_name)
210
struct oc_data *data = connman_provider_get_data(provider);
212
int oc_fd, fd, i, index;
213
const char *vpnhost, *vpncookie, *cafile, *mtu;
219
data = g_try_new0(struct oc_data, 1);
227
connman_provider_set_data(provider, data);
229
vpnhost = connman_provider_get_string(provider, "OpenConnect.Host");
108
const char *vpnhost, *vpncookie, *cafile, *certsha1, *mtu;
111
vpnhost = connman_provider_get_string(provider, "Host");
231
connman_error("OpenConnect.Host not set; cannot enable VPN");
113
connman_error("Host not set; cannot enable VPN");
236
117
vpncookie = connman_provider_get_string(provider, "OpenConnect.Cookie");
237
118
if (!vpncookie) {
238
119
connman_error("OpenConnect.Cookie not set; cannot enable VPN");
123
certsha1 = connman_provider_get_string(provider,
124
"OpenConnect.ServerCert");
126
connman_task_add_argument(task, "--servercert",
243
129
cafile = connman_provider_get_string(provider, "OpenConnect.CACert");
244
130
mtu = connman_provider_get_string(provider, "VPN.MTU");
246
fd = open("/dev/net/tun", O_RDWR);
249
connman_error("Failed to open /dev/net/tun: %s",
255
memset(&ifr, 0, sizeof(ifr));
256
ifr.ifr_flags = IFF_TUN | IFF_NO_PI;
258
for (i = 0; i < 256; i++) {
259
sprintf(ifr.ifr_name, "vpn%d", i);
261
if (!ioctl(fd, TUNSETIFF, (void *)&ifr))
266
connman_error("Failed to find available tun device");
272
data->if_name = (char *)g_strdup(ifr.ifr_name);
273
if (!data->if_name) {
278
if (ioctl(fd, TUNSETPERSIST, 1)) {
280
connman_error("Failed to set tun persistent: %s",
289
index = connman_inet_ifindex(data->if_name);
291
connman_error("Failed to get tun ifindex");
292
kill_tun(data->if_name);
296
connman_provider_set_index(provider, index);
298
data->task = connman_task_create(OPENCONNECT);
300
if (data->task == NULL) {
302
kill_tun(data->if_name);
306
if (connman_task_set_notify(data->task, "notify",
307
openconnect_task_notify, provider)) {
309
kill_tun(data->if_name);
310
connman_task_destroy(data->task);
316
connman_task_add_argument(data->task, "--cafile",
133
connman_task_add_argument(task, "--cafile",
319
connman_task_add_argument(data->task, "--mtu", (char *)mtu);
321
connman_task_add_argument(data->task, "--syslog", NULL);
322
connman_task_add_argument(data->task, "--cookie-on-stdin", NULL);
324
connman_task_add_argument(data->task, "--script",
136
connman_task_add_argument(task, "--mtu", (char *)mtu);
138
connman_task_add_argument(task, "--syslog", NULL);
139
connman_task_add_argument(task, "--cookie-on-stdin", NULL);
141
connman_task_add_argument(task, "--script",
325
142
SCRIPTDIR "/openconnect-script");
327
connman_task_add_argument(data->task, "--interface", data->if_name);
329
connman_task_add_argument(data->task, (char *)vpnhost, NULL);
331
ret = connman_task_run(data->task, openconnect_died, provider,
334
connman_error("Openconnect failed to start");
335
kill_tun(data->if_name);
337
connman_task_destroy(data->task);
144
connman_task_add_argument(task, "--interface", if_name);
146
connman_task_add_argument(task, (char *)vpnhost, NULL);
148
err = connman_task_run(task, vpn_died, provider,
151
connman_error("openconnect failed to start");
342
DBG("openconnect started with dev %s", data->if_name);
344
if (write(oc_fd, vpncookie, strlen(vpncookie)) !=
345
(ssize_t)strlen(vpncookie) ||
346
write(oc_fd, "\n", 1) != 1) {
155
if (write(fd, vpncookie, strlen(vpncookie)) !=
156
(ssize_t)strlen(vpncookie) ||
157
write(fd, "\n", 1) != 1) {
347
158
connman_error("openconnect failed to take cookie on stdin");
348
connman_provider_set_data(provider, NULL);
349
connman_task_stop(data->task);
354
connman_provider_ref(provider);
358
connman_provider_set_index(provider, -1);
359
connman_provider_set_data(provider, NULL);
365
static int oc_probe(struct connman_provider *provider)
370
static int oc_disconnect(struct connman_provider *provider)
372
struct oc_data *data = connman_provider_get_data(provider);
374
DBG("disconnect provider %p:", provider);
379
if (data->watch != 0)
380
connman_rtnl_remove_watch(data->watch);
383
connman_task_stop(data->task);
388
static int oc_remove(struct connman_provider *provider)
390
struct oc_data *data;
392
data = connman_provider_get_data(provider);
393
connman_provider_set_data(provider, NULL);
397
if (data->watch != 0)
398
connman_rtnl_remove_watch(data->watch);
400
connman_task_stop(data->task);
402
g_usleep(G_USEC_PER_SEC);
403
kill_tun(data->if_name);
407
static struct connman_provider_driver provider_driver = {
408
.name = "openconnect",
409
.disconnect = oc_disconnect,
165
static struct vpn_driver vpn_driver = {
410
167
.connect = oc_connect,
415
170
static int openconnect_init(void)
417
connman_provider_driver_register(&provider_driver);
172
return vpn_register("openconnect", &vpn_driver, OPENCONNECT);
422
175
static void openconnect_exit(void)
424
connman_provider_driver_unregister(&provider_driver);
177
vpn_unregister("openconnect");
427
180
CONNMAN_PLUGIN_DEFINE(openconnect, "OpenConnect VPN plugin", VERSION,