vpn/vpn-agent.c - pub/scm/network/connman/connman - Git at Google

 /*
  *
  *  Connection Manager
  *
  *  Copyright (C) 2012  Intel Corporation. All rights reserved.
  *  Copyright (C) 2019  Jolla Ltd. All rights reserved.
  *
  *  This program is free software; you can redistribute it and/or modify
  *  it under the terms of the GNU General Public License version 2 as
  *  published by the Free Software Foundation.
  *
  *  This program is distributed in the hope that it will be useful,
  *  but WITHOUT ANY WARRANTY; without even the implied warranty of
  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  *  GNU General Public License for more details.
  *
  *  You should have received a copy of the GNU General Public License
  *  along with this program; if not, write to the Free Software
  *  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
  *
  */

 #ifdef HAVE_CONFIG_H
 #include <config.h>
 #endif

 #include <errno.h>
 #include <stdlib.h>
 #include <string.h>

 #include <gdbus.h>
 #include <connman/log.h>
 #include <connman/agent.h>
 #include <connman/vpn-dbus.h>
 #include <connman/task.h>
 #include <vpn/vpn-provider.h>

 #include "vpn-agent.h"
 #include "vpn.h"

 bool vpn_agent_check_reply_has_dict(DBusMessage *reply)
 {
 	const char *signature = DBUS_TYPE_ARRAY_AS_STRING
 		DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING
 		DBUS_TYPE_STRING_AS_STRING
 		DBUS_TYPE_VARIANT_AS_STRING
 		DBUS_DICT_ENTRY_END_CHAR_AS_STRING;

 	if (dbus_message_has_signature(reply, signature))
 		return true;

 	connman_warn("Reply %s to %s from %s has wrong signature %s",
 			signature,
 			dbus_message_get_interface(reply),
 			dbus_message_get_sender(reply),
 			dbus_message_get_signature(reply));

 	return false;
 }

 static void request_input_append_name(DBusMessageIter *iter, void *user_data)
 {
 	struct vpn_provider *provider = user_data;
 	const char *str = "string";

 	connman_dbus_dict_append_basic(iter, "Type",
 				DBUS_TYPE_STRING, &str);
 	str = "informational";
 	connman_dbus_dict_append_basic(iter, "Requirement",
 				DBUS_TYPE_STRING, &str);

 	str = vpn_provider_get_name(provider);
 	connman_dbus_dict_append_basic(iter, "Value",
 				DBUS_TYPE_STRING, &str);
 }

 static void request_input_append_host(DBusMessageIter *iter, void *user_data)
 {
 	struct vpn_provider *provider = user_data;
 	const char *str = "string";

 	connman_dbus_dict_append_basic(iter, "Type",
 				DBUS_TYPE_STRING, &str);
 	str = "informational";
 	connman_dbus_dict_append_basic(iter, "Requirement",
 				DBUS_TYPE_STRING, &str);

 	str = vpn_provider_get_host(provider);
 	connman_dbus_dict_append_basic(iter, "Value",
 				DBUS_TYPE_STRING, &str);
 }

 void vpn_agent_append_host_and_name(DBusMessageIter *iter,
 				struct vpn_provider *provider)
 {
 	connman_dbus_dict_append_dict(iter, "Host",
 				request_input_append_host,
 				provider);

 	connman_dbus_dict_append_dict(iter, "Name",
 				request_input_append_name,
 				provider);
 }

 struct user_info_data {
 	struct vpn_provider *provider;
 	const char *username_str;
 	const char *type_str;
 };

 static void request_input_append_user_info(DBusMessageIter *iter,
 						void *user_data)
 {
 	struct user_info_data *data = user_data;
 	struct vpn_provider *provider = data->provider;
 	const char *str = NULL;

 	connman_dbus_dict_append_basic(iter, "Type",
 				DBUS_TYPE_STRING, &data->type_str);
 	str = "mandatory";
 	connman_dbus_dict_append_basic(iter, "Requirement",
 				DBUS_TYPE_STRING, &str);

 	if (data->username_str) {
 		str = vpn_provider_get_string(provider, data->username_str);
 		if (str)
 			connman_dbus_dict_append_basic(iter, "Value",
 						DBUS_TYPE_STRING, &str);
 	}
 }

 void vpn_agent_append_user_info(DBusMessageIter *iter,
 				struct vpn_provider *provider,
 				const char *username_str)
 {
 	struct user_info_data data = {
 		.provider = provider,
 		.username_str = username_str
 	};

 	data.type_str = "string";
 	connman_dbus_dict_append_dict(iter, "Username",
 				request_input_append_user_info,
 				&data);

 	data.username_str = NULL;
 	data.type_str = "password";
 	connman_dbus_dict_append_dict(iter, "Password",
 				request_input_append_user_info,
 				&data);
 }

 static void request_input_append_flag(DBusMessageIter *iter,
 						void *user_data)
 {
 	dbus_bool_t data = (dbus_bool_t)GPOINTER_TO_INT(user_data);
 	const char *str = NULL;

 	str = "boolean";
 	connman_dbus_dict_append_basic(iter, "Type",
 				DBUS_TYPE_STRING, &str);

 	str = "control";
 	connman_dbus_dict_append_basic(iter, "Requirement",
 				DBUS_TYPE_STRING, &str);

 	connman_dbus_dict_append_basic(iter, "Value",
 				DBUS_TYPE_BOOLEAN, &data);
 }

 void vpn_agent_append_allow_credential_storage(DBusMessageIter *iter,
 				bool allow)
 {
 	connman_dbus_dict_append_dict(iter, "AllowStoreCredentials",
 				request_input_append_flag,
 				GINT_TO_POINTER(allow));
 }

 void vpn_agent_append_allow_credential_retrieval(DBusMessageIter *iter,
 				bool allow)
 {
 	connman_dbus_dict_append_dict(iter, "AllowRetrieveCredentials",
 				request_input_append_flag,
 				GINT_TO_POINTER(allow));
 }

 void vpn_agent_append_keep_credentials(DBusMessageIter *iter, bool allow)
 {
 	connman_dbus_dict_append_dict(iter, "KeepCredentials",
 				request_input_append_flag,
 				GINT_TO_POINTER(allow));
 }

 struct failure_data {
 	struct vpn_provider *provider;
 	const char* type_str;
 	const char *key;
 	const char* str;
 };

 static void request_input_append_failure(DBusMessageIter *iter,
 						void *user_data)
 {
 	struct failure_data *data;
 	const char *str;

 	data = user_data;

 	connman_dbus_dict_append_basic(iter, "Type",
 				DBUS_TYPE_STRING, &data->type_str);
 	str = "informational";
 	connman_dbus_dict_append_basic(iter, "Requirement",
 				DBUS_TYPE_STRING, &str);

 	str = data->str;

 	/* Try to get information from provider about error */
 	if (!str)
 		str = vpn_provider_get_string(data->provider, data->key);

 	if (str)
 		connman_dbus_dict_append_basic(iter, "Value",
 						DBUS_TYPE_STRING, &str);
 }

 void vpn_agent_append_auth_failure(DBusMessageIter *iter,
 				struct vpn_provider *provider,
 				const char* information)
 {
 	struct failure_data data;
 	unsigned int value;

 	/* Skip if there are no auth errors */
 	value = vpn_provider_get_authentication_errors(provider);
 	if (!value)
 		return;

 	data.provider = provider;
 	data.type_str = "string";
 	data.key = "VpnAgent.AuthFailure";
 	data.str = information;

 	connman_dbus_dict_append_dict(iter, data.key,
 				request_input_append_failure, &data);
 }

 int vpn_agent_check_and_process_reply_error(DBusMessage *reply,
 				struct vpn_provider *provider,
 				struct connman_task *task,
 				vpn_provider_connect_cb_t cb, void *user_data)
 {
 	DBusError error;
 	int err;

 	if (!reply || !provider)
 		return EINVAL;

 	dbus_error_init(&error);

 	if (!dbus_set_error_from_message(&error, reply))
 		return 0;

 	if (!g_strcmp0(error.name, VPN_AGENT_INTERFACE ".Error.Canceled"))
 		err = ECANCELED;
 	else if (!g_strcmp0(error.name, "org.freedesktop.DBus.Error.Timeout"))
 		err = ETIMEDOUT;
 	else if (!g_strcmp0(error.name, "org.freedesktop.DBus.Error.NoReply"))
 		err = ENOMSG;
 	else
 		err = EACCES;

 	dbus_error_free(&error);

 	if (cb)
 		cb(provider, user_data, err);

 	if (task)
 		connman_task_stop(task);

 	/*
 	 * VPN agent dialog cancel, timeout, broken connection should set the
 	 * VPN back to idle state
 	 */
 	vpn_provider_set_state(provider, VPN_PROVIDER_STATE_IDLE);

 	return err;
 }
	/*
	*
	* Connection Manager
	*
	* Copyright (C) 2012 Intel Corporation. All rights reserved.
	* Copyright (C) 2019 Jolla Ltd. All rights reserved.
	*
	* This program is free software; you can redistribute it and/or modify
	* it under the terms of the GNU General Public License version 2 as
	* published by the Free Software Foundation.
	*
	* This program is distributed in the hope that it will be useful,
	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	* GNU General Public License for more details.
	*
	* You should have received a copy of the GNU General Public License
	* along with this program; if not, write to the Free Software
	* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
	*
	*/

	#ifdef HAVE_CONFIG_H
	#include <config.h>
	#endif

	#include <errno.h>
	#include <stdlib.h>
	#include <string.h>

	#include <gdbus.h>
	#include <connman/log.h>
	#include <connman/agent.h>
	#include <connman/vpn-dbus.h>
	#include <connman/task.h>
	#include <vpn/vpn-provider.h>

	#include "vpn-agent.h"
	#include "vpn.h"

	bool vpn_agent_check_reply_has_dict(DBusMessage *reply)
	{
	const char *signature = DBUS_TYPE_ARRAY_AS_STRING
	DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING
	DBUS_TYPE_STRING_AS_STRING
	DBUS_TYPE_VARIANT_AS_STRING
	DBUS_DICT_ENTRY_END_CHAR_AS_STRING;

	if (dbus_message_has_signature(reply, signature))
	return true;

	connman_warn("Reply %s to %s from %s has wrong signature %s",
	signature,
	dbus_message_get_interface(reply),
	dbus_message_get_sender(reply),
	dbus_message_get_signature(reply));

	return false;
	}

	static void request_input_append_name(DBusMessageIter iter, void user_data)
	{
	struct vpn_provider *provider = user_data;
	const char *str = "string";

	connman_dbus_dict_append_basic(iter, "Type",
	DBUS_TYPE_STRING, &str);
	str = "informational";
	connman_dbus_dict_append_basic(iter, "Requirement",
	DBUS_TYPE_STRING, &str);

	str = vpn_provider_get_name(provider);
	connman_dbus_dict_append_basic(iter, "Value",
	DBUS_TYPE_STRING, &str);
	}

	static void request_input_append_host(DBusMessageIter iter, void user_data)
	{
	struct vpn_provider *provider = user_data;
	const char *str = "string";

	connman_dbus_dict_append_basic(iter, "Type",
	DBUS_TYPE_STRING, &str);
	str = "informational";
	connman_dbus_dict_append_basic(iter, "Requirement",
	DBUS_TYPE_STRING, &str);

	str = vpn_provider_get_host(provider);
	connman_dbus_dict_append_basic(iter, "Value",
	DBUS_TYPE_STRING, &str);
	}

	void vpn_agent_append_host_and_name(DBusMessageIter *iter,
	struct vpn_provider *provider)
	{
	connman_dbus_dict_append_dict(iter, "Host",
	request_input_append_host,
	provider);

	connman_dbus_dict_append_dict(iter, "Name",
	request_input_append_name,
	provider);
	}

	struct user_info_data {
	struct vpn_provider *provider;
	const char *username_str;
	const char *type_str;
	};

	static void request_input_append_user_info(DBusMessageIter *iter,
	void *user_data)
	{
	struct user_info_data *data = user_data;
	struct vpn_provider *provider = data->provider;
	const char *str = NULL;

	connman_dbus_dict_append_basic(iter, "Type",
	DBUS_TYPE_STRING, &data->type_str);
	str = "mandatory";
	connman_dbus_dict_append_basic(iter, "Requirement",
	DBUS_TYPE_STRING, &str);

	if (data->username_str) {
	str = vpn_provider_get_string(provider, data->username_str);
	if (str)
	connman_dbus_dict_append_basic(iter, "Value",
	DBUS_TYPE_STRING, &str);
	}
	}

	void vpn_agent_append_user_info(DBusMessageIter *iter,
	struct vpn_provider *provider,
	const char *username_str)
	{
	struct user_info_data data = {
	.provider = provider,
	.username_str = username_str
	};

	data.type_str = "string";
	connman_dbus_dict_append_dict(iter, "Username",
	request_input_append_user_info,
	&data);

	data.username_str = NULL;
	data.type_str = "password";
	connman_dbus_dict_append_dict(iter, "Password",
	request_input_append_user_info,
	&data);
	}

	static void request_input_append_flag(DBusMessageIter *iter,
	void *user_data)
	{
	dbus_bool_t data = (dbus_bool_t)GPOINTER_TO_INT(user_data);
	const char *str = NULL;

	str = "boolean";
	connman_dbus_dict_append_basic(iter, "Type",
	DBUS_TYPE_STRING, &str);

	str = "control";
	connman_dbus_dict_append_basic(iter, "Requirement",
	DBUS_TYPE_STRING, &str);

	connman_dbus_dict_append_basic(iter, "Value",
	DBUS_TYPE_BOOLEAN, &data);
	}

	void vpn_agent_append_allow_credential_storage(DBusMessageIter *iter,
	bool allow)
	{
	connman_dbus_dict_append_dict(iter, "AllowStoreCredentials",
	request_input_append_flag,
	GINT_TO_POINTER(allow));
	}

	void vpn_agent_append_allow_credential_retrieval(DBusMessageIter *iter,
	bool allow)
	{
	connman_dbus_dict_append_dict(iter, "AllowRetrieveCredentials",
	request_input_append_flag,
	GINT_TO_POINTER(allow));
	}

	void vpn_agent_append_keep_credentials(DBusMessageIter *iter, bool allow)
	{
	connman_dbus_dict_append_dict(iter, "KeepCredentials",
	request_input_append_flag,
	GINT_TO_POINTER(allow));
	}

	struct failure_data {
	struct vpn_provider *provider;
	const char* type_str;
	const char *key;
	const char* str;
	};

	static void request_input_append_failure(DBusMessageIter *iter,
	void *user_data)
	{
	struct failure_data *data;
	const char *str;

	data = user_data;

	connman_dbus_dict_append_basic(iter, "Type",
	DBUS_TYPE_STRING, &data->type_str);
	str = "informational";
	connman_dbus_dict_append_basic(iter, "Requirement",
	DBUS_TYPE_STRING, &str);

	str = data->str;

	/* Try to get information from provider about error */
	if (!str)
	str = vpn_provider_get_string(data->provider, data->key);

	if (str)
	connman_dbus_dict_append_basic(iter, "Value",
	DBUS_TYPE_STRING, &str);
	}

	void vpn_agent_append_auth_failure(DBusMessageIter *iter,
	struct vpn_provider *provider,
	const char* information)
	{
	struct failure_data data;
	unsigned int value;

	/* Skip if there are no auth errors */
	value = vpn_provider_get_authentication_errors(provider);
	if (!value)
	return;

	data.provider = provider;
	data.type_str = "string";
	data.key = "VpnAgent.AuthFailure";
	data.str = information;

	connman_dbus_dict_append_dict(iter, data.key,
	request_input_append_failure, &data);
	}

	int vpn_agent_check_and_process_reply_error(DBusMessage *reply,
	struct vpn_provider *provider,
	struct connman_task *task,
	vpn_provider_connect_cb_t cb, void *user_data)
	{
	DBusError error;
	int err;

	if (!reply \|\| !provider)
	return EINVAL;

	dbus_error_init(&error);

	if (!dbus_set_error_from_message(&error, reply))
	return 0;

	if (!g_strcmp0(error.name, VPN_AGENT_INTERFACE ".Error.Canceled"))
	err = ECANCELED;
	else if (!g_strcmp0(error.name, "org.freedesktop.DBus.Error.Timeout"))
	err = ETIMEDOUT;
	else if (!g_strcmp0(error.name, "org.freedesktop.DBus.Error.NoReply"))
	err = ENOMSG;
	else
	err = EACCES;

	dbus_error_free(&error);

	if (cb)
	cb(provider, user_data, err);

	if (task)
	connman_task_stop(task);

	/*
	* VPN agent dialog cancel, timeout, broken connection should set the
	* VPN back to idle state
	*/
	vpn_provider_set_state(provider, VPN_PROVIDER_STATE_IDLE);

	return err;
	}