search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
1:255.13-alt1
[systemd_ALT.git] / src / resolve / resolvectl.c
blob64b829e5e64c8cb74a52486c62d62d0af97c2b11
1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
2
3 #include <getopt.h>
4 #include <locale.h>
5 #include <net/if.h>
6
7 #include "sd-bus.h"
8 #include "sd-netlink.h"
9
10 #include "af-list.h"
11 #include "alloc-util.h"
12 #include "build.h"
13 #include "bus-common-errors.h"
14 #include "bus-error.h"
15 #include "bus-locator.h"
16 #include "bus-map-properties.h"
17 #include "bus-message-util.h"
18 #include "dns-domain.h"
19 #include "errno-list.h"
20 #include "escape.h"
21 #include "format-table.h"
22 #include "format-util.h"
23 #include "gcrypt-util.h"
24 #include "hostname-util.h"
25 #include "json.h"
26 #include "main-func.h"
27 #include "missing_network.h"
28 #include "netlink-util.h"
29 #include "openssl-util.h"
30 #include "pager.h"
31 #include "parse-argument.h"
32 #include "parse-util.h"
33 #include "pretty-print.h"
34 #include "process-util.h"
35 #include "resolvconf-compat.h"
36 #include "resolve-util.h"
37 #include "resolvectl.h"
38 #include "resolved-def.h"
39 #include "resolved-dns-packet.h"
40 #include "resolved-util.h"
41 #include "socket-netlink.h"
42 #include "sort-util.h"
43 #include "stdio-util.h"
44 #include "string-table.h"
45 #include "strv.h"
46 #include "terminal-util.h"
47 #include "utf8.h"
48 #include "varlink.h"
49 #include "verb-log-control.h"
50 #include "verbs.h"
51
52 static int arg_family = AF_UNSPEC;
53 static int arg_ifindex = 0;
54 static char *arg_ifname = NULL;
55 static uint16_t arg_type = 0;
56 static uint16_t arg_class = 0;
57 static bool arg_legend = true;
58 static uint64_t arg_flags = 0;
59 static JsonFormatFlags arg_json_format_flags = JSON_FORMAT_OFF;
60 static PagerFlags arg_pager_flags = 0;
61 bool arg_ifindex_permissive = false; /* If true, don't generate an error if the specified interface index doesn't exist */
62 static const char *arg_service_family = NULL;
63
64 typedef enum RawType {
65 RAW_NONE,
66 RAW_PAYLOAD,
67 RAW_PACKET,
68 } RawType;
69 static RawType arg_raw = RAW_NONE;
70
71 ExecutionMode arg_mode = MODE_RESOLVE_HOST;
72
73 char **arg_set_dns = NULL;
74 char **arg_set_domain = NULL;
75 static const char *arg_set_llmnr = NULL;
76 static const char *arg_set_mdns = NULL;
77 static const char *arg_set_dns_over_tls = NULL;
78 static const char *arg_set_dnssec = NULL;
79 static char **arg_set_nta = NULL;
80
81 STATIC_DESTRUCTOR_REGISTER(arg_ifname, freep);
82 STATIC_DESTRUCTOR_REGISTER(arg_set_dns, strv_freep);
83 STATIC_DESTRUCTOR_REGISTER(arg_set_domain, strv_freep);
84 STATIC_DESTRUCTOR_REGISTER(arg_set_nta, strv_freep);
85
86 typedef enum StatusMode {
87 STATUS_ALL,
88 STATUS_DNS,
89 STATUS_DOMAIN,
90 STATUS_DEFAULT_ROUTE,
91 STATUS_LLMNR,
92 STATUS_MDNS,
93 STATUS_PRIVATE,
94 STATUS_DNSSEC,
95 STATUS_NTA,
96 } StatusMode;
97
98 typedef struct InterfaceInfo {
99 int index;
100 const char *name;
101 } InterfaceInfo;
102
103 static int interface_info_compare(const InterfaceInfo *a, const InterfaceInfo *b) {
104 int r;
105
106 r = CMP(a->index, b->index);
107 if (r != 0)
108 return r;
109
110 return strcmp_ptr(a->name, b->name);
111 }
112
113 int ifname_mangle_full(const char *s, bool drop_protocol_specifier) {
114 _cleanup_(sd_netlink_unrefp) sd_netlink *rtnl = NULL;
115 _cleanup_strv_free_ char **found = NULL;
116 int r;
117
118 assert(s);
119
120 if (drop_protocol_specifier) {
121 _cleanup_free_ char *buf = NULL;
122 int ifindex_longest_name = -ENODEV;
123
124 /* When invoked as resolvconf, drop the protocol specifier(s) at the end. */
125
126 buf = strdup(s);
127 if (!buf)
128 return log_oom();
129
130 for (;;) {
131 r = rtnl_resolve_interface(&rtnl, buf);
132 if (r > 0) {
133 if (ifindex_longest_name <= 0)
134 ifindex_longest_name = r;
135
136 r = strv_extend(&found, buf);
137 if (r < 0)
138 return log_oom();
139 }
140
141 char *dot = strrchr(buf, '.');
142 if (!dot)
143 break;
144
145 *dot = '\0';
146 }
147
148 unsigned n = strv_length(found);
149 if (n > 1) {
150 _cleanup_free_ char *joined = NULL;
151
152 joined = strv_join(found, ", ");
153 log_warning("Found multiple interfaces (%s) matching with '%s'. Using '%s' (ifindex=%i).",
154 strna(joined), s, found[0], ifindex_longest_name);
155
156 } else if (n == 1) {
157 const char *proto;
158
159 proto = ASSERT_PTR(startswith(s, found[0]));
160 if (!isempty(proto))
161 log_info("Dropped protocol specifier '%s' from '%s'. Using '%s' (ifindex=%i).",
162 proto, s, found[0], ifindex_longest_name);
163 }
164
165 r = ifindex_longest_name;
166 } else
167 r = rtnl_resolve_interface(&rtnl, s);
168 if (r < 0) {
169 if (ERRNO_IS_DEVICE_ABSENT(r) && arg_ifindex_permissive) {
170 log_debug_errno(r, "Interface '%s' not found, but -f specified, ignoring: %m", s);
171 return 0; /* done */
172 }
173 return log_error_errno(r, "Failed to resolve interface \"%s\": %m", s);
174 }
175
176 if (arg_ifindex > 0 && arg_ifindex != r)
177 return log_error_errno(SYNTHETIC_ERRNO(EINVAL), "Specified multiple different interfaces. Refusing.");
178
179 arg_ifindex = r;
180 return free_and_strdup_warn(&arg_ifname, found ? found[0] : s); /* found */
181 }
182
183 static void print_source(uint64_t flags, usec_t rtt) {
184 if (!arg_legend)
185 return;
186
187 if (flags == 0)
188 return;
189
190 printf("\n%s-- Information acquired via", ansi_grey());
191
192 printf(" protocol%s%s%s%s%s",
193 flags & SD_RESOLVED_DNS ? " DNS" :"",
194 flags & SD_RESOLVED_LLMNR_IPV4 ? " LLMNR/IPv4" : "",
195 flags & SD_RESOLVED_LLMNR_IPV6 ? " LLMNR/IPv6" : "",
196 flags & SD_RESOLVED_MDNS_IPV4 ? " mDNS/IPv4" : "",
197 flags & SD_RESOLVED_MDNS_IPV6 ? " mDNS/IPv6" : "");
198
199 printf(" in %s.%s\n"
200 "%s-- Data is authenticated: %s; Data was acquired via local or encrypted transport: %s%s\n",
201 FORMAT_TIMESPAN(rtt, 100),
202 ansi_normal(),
203 ansi_grey(),
204 yes_no(flags & SD_RESOLVED_AUTHENTICATED),
205 yes_no(flags & SD_RESOLVED_CONFIDENTIAL),
206 ansi_normal());
207
208 if ((flags & (SD_RESOLVED_FROM_MASK|SD_RESOLVED_SYNTHETIC)) != 0)
209 printf("%s-- Data from:%s%s%s%s%s%s\n",
210 ansi_grey(),
211 FLAGS_SET(flags, SD_RESOLVED_SYNTHETIC) ? " synthetic" : "",
212 FLAGS_SET(flags, SD_RESOLVED_FROM_CACHE) ? " cache" : "",
213 FLAGS_SET(flags, SD_RESOLVED_FROM_ZONE) ? " zone" : "",
214 FLAGS_SET(flags, SD_RESOLVED_FROM_TRUST_ANCHOR) ? " trust-anchor" : "",
215 FLAGS_SET(flags, SD_RESOLVED_FROM_NETWORK) ? " network" : "",
216 ansi_normal());
217 }
218
219 static void print_ifindex_comment(int printed_so_far, int ifindex) {
220 char ifname[IF_NAMESIZE];
221 int r;
222
223 if (ifindex <= 0)
224 return;
225
226 r = format_ifname(ifindex, ifname);
227 if (r < 0)
228 return (void) log_warning_errno(r, "Failed to resolve interface name for index %i, ignoring: %m", ifindex);
229
230 printf("%*s%s-- link: %s%s",
231 60 > printed_so_far ? 60 - printed_so_far : 0, " ", /* Align comment to the 60th column */
232 ansi_grey(), ifname, ansi_normal());
233 }
234
235 static int resolve_host_error(const char *name, int r, const sd_bus_error *error) {
236 if (sd_bus_error_has_name(error, BUS_ERROR_DNS_NXDOMAIN))
237 return log_error_errno(r, "%s: %s", name, bus_error_message(error, r));
238
239 return log_error_errno(r, "%s: resolve call failed: %s", name, bus_error_message(error, r));
240 }
241
242 static int resolve_host(sd_bus *bus, const char *name) {
243 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL, *reply = NULL;
244 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
245 const char *canonical = NULL;
246 unsigned c = 0;
247 uint64_t flags;
248 usec_t ts;
249 int r;
250
251 assert(name);
252
253 log_debug("Resolving %s (family %s, interface %s).", name, af_to_name(arg_family) ?: "*", isempty(arg_ifname) ? "*" : arg_ifname);
254
255 r = bus_message_new_method_call(bus, &req, bus_resolve_mgr, "ResolveHostname");
256 if (r < 0)
257 return bus_log_create_error(r);
258
259 r = sd_bus_message_append(req, "isit", arg_ifindex, name, arg_family, arg_flags);
260 if (r < 0)
261 return bus_log_create_error(r);
262
263 ts = now(CLOCK_MONOTONIC);
264
265 r = sd_bus_call(bus, req, SD_RESOLVED_QUERY_TIMEOUT_USEC, &error, &reply);
266 if (r < 0)
267 return resolve_host_error(name, r, &error);
268
269 ts = now(CLOCK_MONOTONIC) - ts;
270
271 r = sd_bus_message_enter_container(reply, 'a', "(iiay)");
272 if (r < 0)
273 return bus_log_parse_error(r);
274
275 while ((r = sd_bus_message_enter_container(reply, 'r', "iiay")) > 0) {
276 _cleanup_free_ char *pretty = NULL;
277 int ifindex, family, k;
278 union in_addr_union a;
279
280 assert_cc(sizeof(int) == sizeof(int32_t));
281
282 r = sd_bus_message_read(reply, "i", &ifindex);
283 if (r < 0)
284 return bus_log_parse_error(r);
285
286 sd_bus_error_free(&error);
287 r = bus_message_read_in_addr_auto(reply, &error, &family, &a);
288 if (r < 0 && !sd_bus_error_has_name(&error, SD_BUS_ERROR_INVALID_ARGS))
289 return log_error_errno(r, "%s: systemd-resolved returned invalid result: %s", name, bus_error_message(&error, r));
290
291 r = sd_bus_message_exit_container(reply);
292 if (r < 0)
293 return bus_log_parse_error(r);
294
295 if (sd_bus_error_has_name(&error, SD_BUS_ERROR_INVALID_ARGS)) {
296 log_debug_errno(r, "%s: systemd-resolved returned invalid result, ignoring: %s", name, bus_error_message(&error, r));
297 continue;
298 }
299
300 r = in_addr_ifindex_to_string(family, &a, ifindex, &pretty);
301 if (r < 0)
302 return log_error_errno(r, "Failed to print address for %s: %m", name);
303
304 k = printf("%*s%s %s%s%s",
305 (int) strlen(name), c == 0 ? name : "", c == 0 ? ":" : " ",
306 ansi_highlight(), pretty, ansi_normal());
307
308 print_ifindex_comment(k, ifindex);
309 fputc('\n', stdout);
310
311 c++;
312 }
313 if (r < 0)
314 return bus_log_parse_error(r);
315
316 r = sd_bus_message_exit_container(reply);
317 if (r < 0)
318 return bus_log_parse_error(r);
319
320 r = sd_bus_message_read(reply, "st", &canonical, &flags);
321 if (r < 0)
322 return bus_log_parse_error(r);
323
324 if (!streq(name, canonical))
325 printf("%*s%s (%s)\n",
326 (int) strlen(name), c == 0 ? name : "", c == 0 ? ":" : " ",
327 canonical);
328
329 if (c == 0)
330 return log_error_errno(SYNTHETIC_ERRNO(ESRCH),
331 "%s: no addresses found", name);
332
333 print_source(flags, ts);
334
335 return 0;
336 }
337
338 static int resolve_address(sd_bus *bus, int family, const union in_addr_union *address, int ifindex) {
339 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL, *reply = NULL;
340 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
341 _cleanup_free_ char *pretty = NULL;
342 uint64_t flags;
343 unsigned c = 0;
344 usec_t ts;
345 int r;
346
347 assert(bus);
348 assert(IN_SET(family, AF_INET, AF_INET6));
349 assert(address);
350
351 if (ifindex <= 0)
352 ifindex = arg_ifindex;
353
354 r = in_addr_ifindex_to_string(family, address, ifindex, &pretty);
355 if (r < 0)
356 return log_oom();
357
358 log_debug("Resolving %s.", pretty);
359
360 r = bus_message_new_method_call(bus, &req, bus_resolve_mgr, "ResolveAddress");
361 if (r < 0)
362 return bus_log_create_error(r);
363
364 r = sd_bus_message_append(req, "ii", ifindex, family);
365 if (r < 0)
366 return bus_log_create_error(r);
367
368 r = sd_bus_message_append_array(req, 'y', address, FAMILY_ADDRESS_SIZE(family));
369 if (r < 0)
370 return bus_log_create_error(r);
371
372 r = sd_bus_message_append(req, "t", arg_flags);
373 if (r < 0)
374 return bus_log_create_error(r);
375
376 ts = now(CLOCK_MONOTONIC);
377
378 r = sd_bus_call(bus, req, SD_RESOLVED_QUERY_TIMEOUT_USEC, &error, &reply);
379 if (r < 0)
380 return log_error_errno(r, "%s: resolve call failed: %s", pretty, bus_error_message(&error, r));
381
382 ts = now(CLOCK_MONOTONIC) - ts;
383
384 r = sd_bus_message_enter_container(reply, 'a', "(is)");
385 if (r < 0)
386 return bus_log_create_error(r);
387
388 while ((r = sd_bus_message_enter_container(reply, 'r', "is")) > 0) {
389 const char *n;
390 int k;
391
392 assert_cc(sizeof(int) == sizeof(int32_t));
393
394 r = sd_bus_message_read(reply, "is", &ifindex, &n);
395 if (r < 0)
396 return r;
397
398 r = sd_bus_message_exit_container(reply);
399 if (r < 0)
400 return r;
401
402 k = printf("%*s%s %s%s%s",
403 (int) strlen(pretty), c == 0 ? pretty : "",
404 c == 0 ? ":" : " ",
405 ansi_highlight(), n, ansi_normal());
406
407 print_ifindex_comment(k, ifindex);
408 fputc('\n', stdout);
409
410 c++;
411 }
412 if (r < 0)
413 return bus_log_parse_error(r);
414
415 r = sd_bus_message_exit_container(reply);
416 if (r < 0)
417 return bus_log_parse_error(r);
418
419 r = sd_bus_message_read(reply, "t", &flags);
420 if (r < 0)
421 return bus_log_parse_error(r);
422
423 if (c == 0)
424 return log_error_errno(SYNTHETIC_ERRNO(ESRCH),
425 "%s: no names found", pretty);
426
427 print_source(flags, ts);
428
429 return 0;
430 }
431
432 static int output_rr_packet(const void *d, size_t l, int ifindex) {
433 _cleanup_(dns_resource_record_unrefp) DnsResourceRecord *rr = NULL;
434 int r;
435
436 r = dns_resource_record_new_from_raw(&rr, d, l);
437 if (r < 0)
438 return log_error_errno(r, "Failed to parse RR: %m");
439
440 if (arg_raw == RAW_PAYLOAD) {
441 void *data;
442 ssize_t k;
443
444 k = dns_resource_record_payload(rr, &data);
445 if (k < 0)
446 return log_error_errno(k, "Cannot dump RR: %m");
447 fwrite(data, 1, k, stdout);
448 } else {
449 const char *s;
450 int k;
451
452 s = dns_resource_record_to_string(rr);
453 if (!s)
454 return log_oom();
455
456 k = printf("%s", s);
457 print_ifindex_comment(k, ifindex);
458 fputc('\n', stdout);
459 }
460
461 return 0;
462 }
463
464 static int idna_candidate(const char *name, char **ret) {
465 _cleanup_free_ char *idnafied = NULL;
466 int r;
467
468 assert(name);
469 assert(ret);
470
471 r = dns_name_apply_idna(name, &idnafied);
472 if (r < 0)
473 return log_error_errno(r, "Failed to apply IDNA to name '%s': %m", name);
474 if (r > 0 && !streq(name, idnafied)) {
475 *ret = TAKE_PTR(idnafied);
476 return true;
477 }
478
479 *ret = NULL;
480 return false;
481 }
482
483 static bool single_label_nonsynthetic(const char *name) {
484 _cleanup_free_ char *first_label = NULL;
485 int r;
486
487 if (!dns_name_is_single_label(name))
488 return false;
489
490 if (is_localhost(name) ||
491 is_gateway_hostname(name) ||
492 is_outbound_hostname(name) ||
493 is_dns_stub_hostname(name) ||
494 is_dns_proxy_stub_hostname(name))
495 return false;
496
497 r = resolve_system_hostname(NULL, &first_label);
498 if (r < 0) {
499 log_warning_errno(r, "Failed to determine the hostname: %m");
500 return false;
501 }
502
503 return !streq(name, first_label);
504 }
505
506 static int resolve_record(sd_bus *bus, const char *name, uint16_t class, uint16_t type, bool warn_missing) {
507 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL, *reply = NULL;
508 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
509 _cleanup_free_ char *idnafied = NULL;
510 bool needs_authentication = false;
511 unsigned n = 0;
512 uint64_t flags;
513 usec_t ts;
514 int r;
515
516 assert(name);
517
518 log_debug("Resolving %s %s %s (interface %s).", name, dns_class_to_string(class), dns_type_to_string(type), isempty(arg_ifname) ? "*" : arg_ifname);
519
520 if (dns_name_dot_suffixed(name) == 0 && single_label_nonsynthetic(name))
521 log_notice("(Note that search domains are not appended when --type= is specified. "
522 "Please specify fully qualified domain names, or remove --type= switch from invocation in order to request regular hostname resolution.)");
523
524 r = idna_candidate(name, &idnafied);
525 if (r < 0)
526 return r;
527 if (r > 0)
528 log_notice("(Note that IDNA translation is not applied when --type= is specified. "
529 "Please specify translated domain names — i.e. '%s' — when resolving raw records, or remove --type= switch from invocation in order to request regular hostname resolution.",
530 idnafied);
531
532 r = bus_message_new_method_call(bus, &req, bus_resolve_mgr, "ResolveRecord");
533 if (r < 0)
534 return bus_log_create_error(r);
535
536 r = sd_bus_message_append(req, "isqqt", arg_ifindex, name, class, type, arg_flags);
537 if (r < 0)
538 return bus_log_create_error(r);
539
540 ts = now(CLOCK_MONOTONIC);
541
542 r = sd_bus_call(bus, req, SD_RESOLVED_QUERY_TIMEOUT_USEC, &error, &reply);
543 if (r < 0) {
544 if (warn_missing || r != -ENXIO)
545 log_error("%s: resolve call failed: %s", name, bus_error_message(&error, r));
546 return r;
547 }
548
549 ts = now(CLOCK_MONOTONIC) - ts;
550
551 r = sd_bus_message_enter_container(reply, 'a', "(iqqay)");
552 if (r < 0)
553 return bus_log_parse_error(r);
554
555 while ((r = sd_bus_message_enter_container(reply, 'r', "iqqay")) > 0) {
556 uint16_t c, t;
557 int ifindex;
558 const void *d;
559 size_t l;
560
561 assert_cc(sizeof(int) == sizeof(int32_t));
562
563 r = sd_bus_message_read(reply, "iqq", &ifindex, &c, &t);
564 if (r < 0)
565 return bus_log_parse_error(r);
566
567 r = sd_bus_message_read_array(reply, 'y', &d, &l);
568 if (r < 0)
569 return bus_log_parse_error(r);
570
571 r = sd_bus_message_exit_container(reply);
572 if (r < 0)
573 return bus_log_parse_error(r);
574
575 if (arg_raw == RAW_PACKET) {
576 uint64_t u64 = htole64(l);
577
578 fwrite(&u64, sizeof(u64), 1, stdout);
579 fwrite(d, 1, l, stdout);
580 } else {
581 r = output_rr_packet(d, l, ifindex);
582 if (r < 0)
583 return r;
584 }
585
586 if (dns_type_needs_authentication(t))
587 needs_authentication = true;
588
589 n++;
590 }
591 if (r < 0)
592 return bus_log_parse_error(r);
593
594 r = sd_bus_message_exit_container(reply);
595 if (r < 0)
596 return bus_log_parse_error(r);
597
598 r = sd_bus_message_read(reply, "t", &flags);
599 if (r < 0)
600 return bus_log_parse_error(r);
601
602 if (n == 0) {
603 if (warn_missing)
604 log_error("%s: no records found", name);
605 return -ESRCH;
606 }
607
608 print_source(flags, ts);
609
610 if ((flags & SD_RESOLVED_AUTHENTICATED) == 0 && needs_authentication) {
611 fflush(stdout);
612
613 fprintf(stderr, "\n%s"
614 "WARNING: The resources shown contain cryptographic key data which could not be\n"
615 " authenticated. It is not suitable to authenticate any communication.\n"
616 " This is usually indication that DNSSEC authentication was not enabled\n"
617 " or is not available for the selected protocol or DNS servers.%s\n",
618 ansi_highlight_red(),
619 ansi_normal());
620 }
621
622 return 0;
623 }
624
625 static int resolve_rfc4501(sd_bus *bus, const char *name) {
626 uint16_t type = 0, class = 0;
627 const char *p, *q, *n;
628 int r;
629
630 assert(bus);
631 assert(name);
632 assert(startswith(name, "dns:"));
633
634 /* Parse RFC 4501 dns: URIs */
635
636 p = name + 4;
637
638 if (p[0] == '/') {
639 const char *e;
640
641 if (p[1] != '/')
642 goto invalid;
643
644 e = strchr(p + 2, '/');
645 if (!e)
646 goto invalid;
647
648 if (e != p + 2)
649 log_warning("DNS authority specification not supported; ignoring specified authority.");
650
651 p = e + 1;
652 }
653
654 q = strchr(p, '?');
655 if (q) {
656 n = strndupa_safe(p, q - p);
657 q++;
658
659 for (;;) {
660 const char *f;
661
662 f = startswith_no_case(q, "class=");
663 if (f) {
664 _cleanup_free_ char *t = NULL;
665 const char *e;
666
667 if (class != 0)
668 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
669 "DNS class specified twice.");
670
671 e = strchrnul(f, ';');
672 t = strndup(f, e - f);
673 if (!t)
674 return log_oom();
675
676 r = dns_class_from_string(t);
677 if (r < 0)
678 return log_error_errno(r, "Unknown DNS class %s.", t);
679
680 class = r;
681
682 if (*e == ';') {
683 q = e + 1;
684 continue;
685 }
686
687 break;
688 }
689
690 f = startswith_no_case(q, "type=");
691 if (f) {
692 _cleanup_free_ char *t = NULL;
693 const char *e;
694
695 if (type != 0)
696 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
697 "DNS type specified twice.");
698
699 e = strchrnul(f, ';');
700 t = strndup(f, e - f);
701 if (!t)
702 return log_oom();
703
704 r = dns_type_from_string(t);
705 if (r < 0)
706 return log_error_errno(r, "Unknown DNS type %s: %m", t);
707
708 type = r;
709
710 if (*e == ';') {
711 q = e + 1;
712 continue;
713 }
714
715 break;
716 }
717
718 goto invalid;
719 }
720 } else
721 n = p;
722
723 if (class == 0)
724 class = arg_class ?: DNS_CLASS_IN;
725 if (type == 0)
726 type = arg_type ?: DNS_TYPE_A;
727
728 return resolve_record(bus, n, class, type, true);
729
730 invalid:
731 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
732 "Invalid DNS URI: %s", name);
733 }
734
735 static int verb_query(int argc, char **argv, void *userdata) {
736 sd_bus *bus = userdata;
737 int q, r = 0;
738
739 if (arg_type != 0)
740 STRV_FOREACH(p, argv + 1) {
741 q = resolve_record(bus, *p, arg_class, arg_type, true);
742 if (q < 0)
743 r = q;
744 }
745
746 else
747 STRV_FOREACH(p, argv + 1) {
748 if (startswith(*p, "dns:"))
749 q = resolve_rfc4501(bus, *p);
750 else {
751 int family, ifindex;
752 union in_addr_union a;
753
754 q = in_addr_ifindex_from_string_auto(*p, &family, &a, &ifindex);
755 if (q >= 0)
756 q = resolve_address(bus, family, &a, ifindex);
757 else
758 q = resolve_host(bus, *p);
759 }
760 if (q < 0)
761 r = q;
762 }
763
764 return r;
765 }
766
767 static int resolve_service(sd_bus *bus, const char *name, const char *type, const char *domain) {
768 const char *canonical_name, *canonical_type, *canonical_domain;
769 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL, *reply = NULL;
770 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
771 size_t indent, sz;
772 uint64_t flags;
773 const char *p;
774 unsigned c;
775 usec_t ts;
776 int r;
777
778 assert(bus);
779 assert(domain);
780
781 name = empty_to_null(name);
782 type = empty_to_null(type);
783
784 if (name)
785 log_debug("Resolving service \"%s\" of type %s in %s (family %s, interface %s).", name, type, domain, af_to_name(arg_family) ?: "*", isempty(arg_ifname) ? "*" : arg_ifname);
786 else if (type)
787 log_debug("Resolving service type %s of %s (family %s, interface %s).", type, domain, af_to_name(arg_family) ?: "*", isempty(arg_ifname) ? "*" : arg_ifname);
788 else
789 log_debug("Resolving service type %s (family %s, interface %s).", domain, af_to_name(arg_family) ?: "*", isempty(arg_ifname) ? "*" : arg_ifname);
790
791 r = bus_message_new_method_call(bus, &req, bus_resolve_mgr, "ResolveService");
792 if (r < 0)
793 return bus_log_create_error(r);
794
795 r = sd_bus_message_append(req, "isssit", arg_ifindex, name, type, domain, arg_family, arg_flags);
796 if (r < 0)
797 return bus_log_create_error(r);
798
799 ts = now(CLOCK_MONOTONIC);
800
801 r = sd_bus_call(bus, req, SD_RESOLVED_QUERY_TIMEOUT_USEC, &error, &reply);
802 if (r < 0)
803 return log_error_errno(r, "Resolve call failed: %s", bus_error_message(&error, r));
804
805 ts = now(CLOCK_MONOTONIC) - ts;
806
807 r = sd_bus_message_enter_container(reply, 'a', "(qqqsa(iiay)s)");
808 if (r < 0)
809 return bus_log_parse_error(r);
810
811 indent =
812 (name ? strlen(name) + 1 : 0) +
813 (type ? strlen(type) + 1 : 0) +
814 strlen(domain) + 2;
815
816 c = 0;
817 while ((r = sd_bus_message_enter_container(reply, 'r', "qqqsa(iiay)s")) > 0) {
818 uint16_t priority, weight, port;
819 const char *hostname, *canonical;
820
821 r = sd_bus_message_read(reply, "qqqs", &priority, &weight, &port, &hostname);
822 if (r < 0)
823 return bus_log_parse_error(r);
824
825 if (name)
826 printf("%*s%s", (int) strlen(name), c == 0 ? name : "", c == 0 ? "/" : " ");
827 if (type)
828 printf("%*s%s", (int) strlen(type), c == 0 ? type : "", c == 0 ? "/" : " ");
829
830 printf("%*s%s %s:%u [priority=%u, weight=%u]\n",
831 (int) strlen(domain), c == 0 ? domain : "",
832 c == 0 ? ":" : " ",
833 hostname, port,
834 priority, weight);
835
836 r = sd_bus_message_enter_container(reply, 'a', "(iiay)");
837 if (r < 0)
838 return bus_log_parse_error(r);
839
840 while ((r = sd_bus_message_enter_container(reply, 'r', "iiay")) > 0) {
841 _cleanup_free_ char *pretty = NULL;
842 int ifindex, family, k;
843 union in_addr_union a;
844
845 assert_cc(sizeof(int) == sizeof(int32_t));
846
847 r = sd_bus_message_read(reply, "i", &ifindex);
848 if (r < 0)
849 return bus_log_parse_error(r);
850
851 sd_bus_error_free(&error);
852 r = bus_message_read_in_addr_auto(reply, &error, &family, &a);
853 if (r < 0 && !sd_bus_error_has_name(&error, SD_BUS_ERROR_INVALID_ARGS))
854 return log_error_errno(r, "%s: systemd-resolved returned invalid result: %s", name, bus_error_message(&error, r));
855
856 r = sd_bus_message_exit_container(reply);
857 if (r < 0)
858 return bus_log_parse_error(r);
859
860 if (sd_bus_error_has_name(&error, SD_BUS_ERROR_INVALID_ARGS)) {
861 log_debug_errno(r, "%s: systemd-resolved returned invalid result, ignoring: %s", name, bus_error_message(&error, r));
862 continue;
863 }
864
865 r = in_addr_ifindex_to_string(family, &a, ifindex, &pretty);
866 if (r < 0)
867 return log_error_errno(r, "Failed to print address for %s: %m", name);
868
869 k = printf("%*s%s", (int) indent, "", pretty);
870 print_ifindex_comment(k, ifindex);
871 fputc('\n', stdout);
872 }
873 if (r < 0)
874 return bus_log_parse_error(r);
875
876 r = sd_bus_message_exit_container(reply);
877 if (r < 0)
878 return bus_log_parse_error(r);
879
880 r = sd_bus_message_read(reply, "s", &canonical);
881 if (r < 0)
882 return bus_log_parse_error(r);
883
884 if (!streq(hostname, canonical))
885 printf("%*s(%s)\n", (int) indent, "", canonical);
886
887 r = sd_bus_message_exit_container(reply);
888 if (r < 0)
889 return bus_log_parse_error(r);
890
891 c++;
892 }
893 if (r < 0)
894 return bus_log_parse_error(r);
895
896 r = sd_bus_message_exit_container(reply);
897 if (r < 0)
898 return bus_log_parse_error(r);
899
900 r = sd_bus_message_enter_container(reply, 'a', "ay");
901 if (r < 0)
902 return bus_log_parse_error(r);
903
904 while ((r = sd_bus_message_read_array(reply, 'y', (const void**) &p, &sz)) > 0) {
905 _cleanup_free_ char *escaped = NULL;
906
907 escaped = cescape_length(p, sz);
908 if (!escaped)
909 return log_oom();
910
911 printf("%*s%s\n", (int) indent, "", escaped);
912 }
913 if (r < 0)
914 return bus_log_parse_error(r);
915
916 r = sd_bus_message_exit_container(reply);
917 if (r < 0)
918 return bus_log_parse_error(r);
919
920 r = sd_bus_message_read(reply, "ssst", &canonical_name, &canonical_type, &canonical_domain, &flags);
921 if (r < 0)
922 return bus_log_parse_error(r);
923
924 canonical_name = empty_to_null(canonical_name);
925 canonical_type = empty_to_null(canonical_type);
926
927 if (!streq_ptr(name, canonical_name) ||
928 !streq_ptr(type, canonical_type) ||
929 !streq_ptr(domain, canonical_domain)) {
930
931 printf("%*s(", (int) indent, "");
932
933 if (canonical_name)
934 printf("%s/", canonical_name);
935 if (canonical_type)
936 printf("%s/", canonical_type);
937
938 printf("%s)\n", canonical_domain);
939 }
940
941 print_source(flags, ts);
942
943 return 0;
944 }
945
946 static int verb_service(int argc, char **argv, void *userdata) {
947 sd_bus *bus = userdata;
948
949 if (argc == 2)
950 return resolve_service(bus, NULL, NULL, argv[1]);
951 else if (argc == 3)
952 return resolve_service(bus, NULL, argv[1], argv[2]);
953 else
954 return resolve_service(bus, argv[1], argv[2], argv[3]);
955 }
956
957 static int resolve_openpgp(sd_bus *bus, const char *address) {
958 const char *domain, *full;
959 int r;
960 _cleanup_free_ char *hashed = NULL;
961
962 assert(bus);
963 assert(address);
964
965 domain = strrchr(address, '@');
966 if (!domain)
967 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
968 "Address does not contain '@': \"%s\"", address);
969 if (domain == address || domain[1] == '\0')
970 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
971 "Address starts or ends with '@': \"%s\"", address);
972 domain++;
973
974 r = string_hashsum_sha256(address, domain - 1 - address, &hashed);
975 if (r < 0)
976 return log_error_errno(r, "Hashing failed: %m");
977
978 strshorten(hashed, 56);
979
980 full = strjoina(hashed, "._openpgpkey.", domain);
981 log_debug("Looking up \"%s\".", full);
982
983 r = resolve_record(bus, full,
984 arg_class ?: DNS_CLASS_IN,
985 arg_type ?: DNS_TYPE_OPENPGPKEY, false);
986
987 if (IN_SET(r, -ENXIO, -ESRCH)) { /* NXDOMAIN or NODATA? */
988 hashed = mfree(hashed);
989 r = string_hashsum_sha224(address, domain - 1 - address, &hashed);
990 if (r < 0)
991 return log_error_errno(r, "Hashing failed: %m");
992
993 full = strjoina(hashed, "._openpgpkey.", domain);
994 log_debug("Looking up \"%s\".", full);
995
996 return resolve_record(bus, full,
997 arg_class ?: DNS_CLASS_IN,
998 arg_type ?: DNS_TYPE_OPENPGPKEY, true);
999 }
1000
1001 return r;
1002 }
1003
1004 static int verb_openpgp(int argc, char **argv, void *userdata) {
1005 sd_bus *bus = userdata;
1006 int q, r = 0;
1007
1008 STRV_FOREACH(p, argv + 1) {
1009 q = resolve_openpgp(bus, *p);
1010 if (q < 0)
1011 r = q;
1012 }
1013
1014 return r;
1015 }
1016
1017 static int resolve_tlsa(sd_bus *bus, const char *family, const char *address) {
1018 const char *port;
1019 uint16_t port_num = 443;
1020 _cleanup_free_ char *full = NULL;
1021 int r;
1022
1023 assert(bus);
1024 assert(address);
1025
1026 port = strrchr(address, ':');
1027 if (port) {
1028 r = parse_ip_port(port + 1, &port_num);
1029 if (r < 0)
1030 return log_error_errno(r, "Invalid port \"%s\".", port + 1);
1031
1032 address = strndupa_safe(address, port - address);
1033 }
1034
1035 r = asprintf(&full, "_%u._%s.%s",
1036 port_num,
1037 family,
1038 address);
1039 if (r < 0)
1040 return log_oom();
1041
1042 log_debug("Looking up \"%s\".", full);
1043
1044 return resolve_record(bus, full,
1045 arg_class ?: DNS_CLASS_IN,
1046 arg_type ?: DNS_TYPE_TLSA, true);
1047 }
1048
1049 static bool service_family_is_valid(const char *s) {
1050 return STR_IN_SET(s, "tcp", "udp", "sctp");
1051 }
1052
1053 static int verb_tlsa(int argc, char **argv, void *userdata) {
1054 sd_bus *bus = userdata;
1055 char **args = argv + 1;
1056 const char *family = "tcp";
1057 int q, r = 0;
1058
1059 if (service_family_is_valid(argv[1])) {
1060 family = argv[1];
1061 args++;
1062 }
1063
1064 STRV_FOREACH(p, args) {
1065 q = resolve_tlsa(bus, family, *p);
1066 if (q < 0)
1067 r = q;
1068 }
1069
1070 return r;
1071 }
1072
1073 static int show_statistics(int argc, char **argv, void *userdata) {
1074 _cleanup_(table_unrefp) Table *table = NULL;
1075 JsonVariant *reply = NULL;
1076 _cleanup_(varlink_unrefp) Varlink *vl = NULL;
1077 int r;
1078
1079 r = varlink_connect_address(&vl, "/run/systemd/resolve/io.systemd.Resolve.Monitor");
1080 if (r < 0)
1081 return log_error_errno(r, "Failed to connect to query monitoring service /run/systemd/resolve/io.systemd.Resolve.Monitor: %m");
1082
1083 r = varlink_call(vl, "io.systemd.Resolve.Monitor.DumpStatistics", NULL, &reply, NULL, 0);
1084 if (r < 0)
1085 return log_error_errno(r, "Failed to issue DumpStatistics() varlink call: %m");
1086
1087 if (!FLAGS_SET(arg_json_format_flags, JSON_FORMAT_OFF))
1088 return json_variant_dump(reply, arg_json_format_flags, NULL, NULL);
1089
1090 struct statistics {
1091 JsonVariant *transactions;
1092 JsonVariant *cache;
1093 JsonVariant *dnssec;
1094 } statistics;
1095
1096 static const JsonDispatch statistics_dispatch_table[] = {
1097 { "transactions", JSON_VARIANT_OBJECT, json_dispatch_variant_noref, offsetof(struct statistics, transactions), JSON_MANDATORY },
1098 { "cache", JSON_VARIANT_OBJECT, json_dispatch_variant_noref, offsetof(struct statistics, cache), JSON_MANDATORY },
1099 { "dnssec", JSON_VARIANT_OBJECT, json_dispatch_variant_noref, offsetof(struct statistics, dnssec), JSON_MANDATORY },
1100 {},
1101 };
1102
1103 r = json_dispatch(reply, statistics_dispatch_table, JSON_LOG, &statistics);
1104 if (r < 0)
1105 return r;
1106
1107 struct transactions {
1108 uint64_t n_current_transactions;
1109 uint64_t n_transactions_total;
1110 uint64_t n_timeouts_total;
1111 uint64_t n_timeouts_served_stale_total;
1112 uint64_t n_failure_responses_total;
1113 uint64_t n_failure_responses_served_stale_total;
1114 } transactions;
1115
1116 static const JsonDispatch transactions_dispatch_table[] = {
1117 { "currentTransactions", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct transactions, n_current_transactions), JSON_MANDATORY },
1118 { "totalTransactions", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct transactions, n_transactions_total), JSON_MANDATORY },
1119 { "totalTimeouts", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct transactions, n_timeouts_total), JSON_MANDATORY },
1120 { "totalTimeoutsServedStale", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct transactions, n_timeouts_served_stale_total), JSON_MANDATORY },
1121 { "totalFailedResponses", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct transactions, n_failure_responses_total), JSON_MANDATORY },
1122 { "totalFailedResponsesServedStale", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct transactions, n_failure_responses_served_stale_total), JSON_MANDATORY },
1123 {},
1124 };
1125
1126 r = json_dispatch(statistics.transactions, transactions_dispatch_table, JSON_LOG, &transactions);
1127 if (r < 0)
1128 return r;
1129
1130 struct cache {
1131 uint64_t cache_size;
1132 uint64_t n_cache_hit;
1133 uint64_t n_cache_miss;
1134 } cache;
1135
1136 static const JsonDispatch cache_dispatch_table[] = {
1137 { "size", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct cache, cache_size), JSON_MANDATORY },
1138 { "hits", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct cache, n_cache_hit), JSON_MANDATORY },
1139 { "misses", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct cache, n_cache_miss), JSON_MANDATORY },
1140 {},
1141 };
1142
1143 r = json_dispatch(statistics.cache, cache_dispatch_table, JSON_LOG, &cache);
1144 if (r < 0)
1145 return r;
1146
1147 struct dnsssec {
1148 uint64_t n_dnssec_secure;
1149 uint64_t n_dnssec_insecure;
1150 uint64_t n_dnssec_bogus;
1151 uint64_t n_dnssec_indeterminate;
1152 } dnsssec;
1153
1154 static const JsonDispatch dnssec_dispatch_table[] = {
1155 { "secure", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct dnsssec, n_dnssec_secure), JSON_MANDATORY },
1156 { "insecure", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct dnsssec, n_dnssec_insecure), JSON_MANDATORY },
1157 { "bogus", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct dnsssec, n_dnssec_bogus), JSON_MANDATORY },
1158 { "indeterminate", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct dnsssec, n_dnssec_indeterminate), JSON_MANDATORY },
1159 {},
1160 };
1161
1162 r = json_dispatch(statistics.dnssec, dnssec_dispatch_table, JSON_LOG, &dnsssec);
1163 if (r < 0)
1164 return r;
1165
1166 table = table_new_vertical();
1167 if (!table)
1168 return log_oom();
1169
1170 r = table_add_many(table,
1171 TABLE_STRING, "Transactions",
1172 TABLE_SET_COLOR, ansi_highlight(),
1173 TABLE_SET_ALIGN_PERCENT, 0,
1174 TABLE_EMPTY,
1175 TABLE_FIELD, "Current Transactions",
1176 TABLE_SET_ALIGN_PERCENT, 100,
1177 TABLE_UINT64, transactions.n_current_transactions,
1178 TABLE_SET_ALIGN_PERCENT, 100,
1179 TABLE_FIELD, "Total Transactions",
1180 TABLE_UINT64, transactions.n_transactions_total,
1181 TABLE_EMPTY, TABLE_EMPTY,
1182 TABLE_STRING, "Cache",
1183 TABLE_SET_COLOR, ansi_highlight(),
1184 TABLE_SET_ALIGN_PERCENT, 0,
1185 TABLE_EMPTY,
1186 TABLE_FIELD, "Current Cache Size",
1187 TABLE_SET_ALIGN_PERCENT, 100,
1188 TABLE_UINT64, cache.cache_size,
1189 TABLE_FIELD, "Cache Hits",
1190 TABLE_UINT64, cache.n_cache_hit,
1191 TABLE_FIELD, "Cache Misses",
1192 TABLE_UINT64, cache.n_cache_miss,
1193 TABLE_EMPTY, TABLE_EMPTY,
1194 TABLE_STRING, "Failure Transactions",
1195 TABLE_SET_COLOR, ansi_highlight(),
1196 TABLE_SET_ALIGN_PERCENT, 0,
1197 TABLE_EMPTY,
1198 TABLE_FIELD, "Total Timeouts",
1199 TABLE_SET_ALIGN_PERCENT, 100,
1200 TABLE_UINT64, transactions.n_timeouts_total,
1201 TABLE_FIELD, "Total Timeouts (Stale Data Served)",
1202 TABLE_UINT64, transactions.n_timeouts_served_stale_total,
1203 TABLE_FIELD, "Total Failure Responses",
1204 TABLE_UINT64, transactions.n_failure_responses_total,
1205 TABLE_FIELD, "Total Failure Responses (Stale Data Served)",
1206 TABLE_UINT64, transactions.n_failure_responses_served_stale_total,
1207 TABLE_EMPTY, TABLE_EMPTY,
1208 TABLE_STRING, "DNSSEC Verdicts",
1209 TABLE_SET_COLOR, ansi_highlight(),
1210 TABLE_SET_ALIGN_PERCENT, 0,
1211 TABLE_EMPTY,
1212 TABLE_FIELD, "Secure",
1213 TABLE_SET_ALIGN_PERCENT, 100,
1214 TABLE_UINT64, dnsssec.n_dnssec_secure,
1215 TABLE_FIELD, "Insecure",
1216 TABLE_UINT64, dnsssec.n_dnssec_insecure,
1217 TABLE_FIELD, "Bogus",
1218 TABLE_UINT64, dnsssec.n_dnssec_bogus,
1219 TABLE_FIELD, "Indeterminate",
1220 TABLE_UINT64, dnsssec.n_dnssec_indeterminate
1221 );
1222 if (r < 0)
1223 return table_log_add_error(r);
1224
1225 r = table_print(table, NULL);
1226 if (r < 0)
1227 return table_log_print_error(r);
1228
1229 return 0;
1230 }
1231
1232 static int reset_statistics(int argc, char **argv, void *userdata) {
1233 JsonVariant *reply = NULL;
1234 _cleanup_(varlink_unrefp) Varlink *vl = NULL;
1235 int r;
1236
1237 r = varlink_connect_address(&vl, "/run/systemd/resolve/io.systemd.Resolve.Monitor");
1238 if (r < 0)
1239 return log_error_errno(r, "Failed to connect to query monitoring service /run/systemd/resolve/io.systemd.Resolve.Monitor: %m");
1240
1241 r = varlink_call(vl, "io.systemd.Resolve.Monitor.ResetStatistics", NULL, &reply, NULL, 0);
1242 if (r < 0)
1243 return log_error_errno(r, "Failed to issue ResetStatistics() varlink call: %m");
1244
1245 if (!FLAGS_SET(arg_json_format_flags, JSON_FORMAT_OFF))
1246 return json_variant_dump(reply, arg_json_format_flags, NULL, NULL);
1247
1248 return 0;
1249 }
1250
1251 static int flush_caches(int argc, char **argv, void *userdata) {
1252 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
1253 sd_bus *bus = userdata;
1254 int r;
1255
1256 r = bus_call_method(bus, bus_resolve_mgr, "FlushCaches", &error, NULL, NULL);
1257 if (r < 0)
1258 return log_error_errno(r, "Failed to flush caches: %s", bus_error_message(&error, r));
1259
1260 return 0;
1261 }
1262
1263 static int reset_server_features(int argc, char **argv, void *userdata) {
1264 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
1265 sd_bus *bus = userdata;
1266 int r;
1267
1268 r = bus_call_method(bus, bus_resolve_mgr, "ResetServerFeatures", &error, NULL, NULL);
1269 if (r < 0)
1270 return log_error_errno(r, "Failed to reset server features: %s", bus_error_message(&error, r));
1271
1272 return 0;
1273 }
1274
1275 static int read_dns_server_one(
1276 sd_bus_message *m,
1277 bool with_ifindex, /* read "ifindex" reply that also carries an interface index */
1278 bool extended, /* read "extended" reply, i.e. with port number and server name */
1279 bool only_global, /* suppress entries with an (non-loopback) ifindex set (i.e. which are specific to some interface) */
1280 char **ret) {
1281
1282 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
1283 _cleanup_free_ char *pretty = NULL;
1284 union in_addr_union a;
1285 const char *name = NULL;
1286 int32_t ifindex = 0;
1287 int family, r, k;
1288 uint16_t port = 0;
1289
1290 assert(m);
1291 assert(ret);
1292
1293 r = sd_bus_message_enter_container(
1294 m,
1295 'r',
1296 with_ifindex ? (extended ? "iiayqs" : "iiay") :
1297 (extended ? "iayqs" : "iay"));
1298 if (r <= 0)
1299 return r;
1300
1301 if (with_ifindex) {
1302 r = sd_bus_message_read(m, "i", &ifindex);
1303 if (r < 0)
1304 return r;
1305 }
1306
1307 k = bus_message_read_in_addr_auto(m, &error, &family, &a);
1308 if (k < 0 && !sd_bus_error_has_name(&error, SD_BUS_ERROR_INVALID_ARGS))
1309 return k;
1310
1311 if (extended) {
1312 r = sd_bus_message_read(m, "q", &port);
1313 if (r < 0)
1314 return r;
1315
1316 r = sd_bus_message_read(m, "s", &name);
1317 if (r < 0)
1318 return r;
1319 }
1320
1321 r = sd_bus_message_exit_container(m);
1322 if (r < 0)
1323 return r;
1324
1325 if (k < 0) {
1326 log_debug("Invalid DNS server, ignoring: %s", bus_error_message(&error, k));
1327 *ret = NULL;
1328 return 1;
1329 }
1330
1331 if (only_global && ifindex > 0 && ifindex != LOOPBACK_IFINDEX) {
1332 /* This one has an (non-loopback) ifindex set, and we were told to suppress those. Hence do so. */
1333 *ret = NULL;
1334 return 1;
1335 }
1336
1337 r = in_addr_port_ifindex_name_to_string(family, &a, port, ifindex, name, &pretty);
1338 if (r < 0)
1339 return r;
1340
1341 *ret = TAKE_PTR(pretty);
1342 return 1;
1343 }
1344
1345 static int map_link_dns_servers_internal(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata, bool extended) {
1346 char ***l = ASSERT_PTR(userdata);
1347 int r;
1348
1349 assert(bus);
1350 assert(member);
1351 assert(m);
1352
1353 r = sd_bus_message_enter_container(m, 'a', extended ? "(iayqs)" : "(iay)");
1354 if (r < 0)
1355 return r;
1356
1357 for (;;) {
1358 _cleanup_free_ char *pretty = NULL;
1359
1360 r = read_dns_server_one(m, /* with_ifindex= */ false, extended, /* only_global= */ false, &pretty);
1361 if (r < 0)
1362 return r;
1363 if (r == 0)
1364 break;
1365
1366 if (isempty(pretty))
1367 continue;
1368
1369 r = strv_consume(l, TAKE_PTR(pretty));
1370 if (r < 0)
1371 return r;
1372 }
1373
1374 r = sd_bus_message_exit_container(m);
1375 if (r < 0)
1376 return r;
1377
1378 return 0;
1379 }
1380
1381 static int map_link_dns_servers(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1382 return map_link_dns_servers_internal(bus, member, m, error, userdata, false);
1383 }
1384
1385 static int map_link_dns_servers_ex(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1386 return map_link_dns_servers_internal(bus, member, m, error, userdata, true);
1387 }
1388
1389 static int map_link_current_dns_server(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1390 assert(m);
1391 assert(userdata);
1392
1393 return read_dns_server_one(m, /* with_ifindex= */ false, /* extended= */ false, /* only_global= */ false, userdata);
1394 }
1395
1396 static int map_link_current_dns_server_ex(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1397 assert(m);
1398 assert(userdata);
1399
1400 return read_dns_server_one(m, /* with_ifindex= */ false, /* extended= */ true, /* only_global= */ false, userdata);
1401 }
1402
1403 static int read_domain_one(sd_bus_message *m, bool with_ifindex, char **ret) {
1404 _cleanup_free_ char *str = NULL;
1405 int ifindex, route_only, r;
1406 const char *domain;
1407
1408 assert(m);
1409 assert(ret);
1410
1411 if (with_ifindex)
1412 r = sd_bus_message_read(m, "(isb)", &ifindex, &domain, &route_only);
1413 else
1414 r = sd_bus_message_read(m, "(sb)", &domain, &route_only);
1415 if (r <= 0)
1416 return r;
1417
1418 if (with_ifindex && ifindex != 0) {
1419 /* only show the global ones here */
1420 *ret = NULL;
1421 return 1;
1422 }
1423
1424 if (route_only)
1425 str = strjoin("~", domain);
1426 else
1427 str = strdup(domain);
1428 if (!str)
1429 return -ENOMEM;
1430
1431 *ret = TAKE_PTR(str);
1432
1433 return 1;
1434 }
1435
1436 static int map_link_domains(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1437 char ***l = ASSERT_PTR(userdata);
1438 int r;
1439
1440 assert(bus);
1441 assert(member);
1442 assert(m);
1443
1444 r = sd_bus_message_enter_container(m, 'a', "(sb)");
1445 if (r < 0)
1446 return r;
1447
1448 for (;;) {
1449 _cleanup_free_ char *pretty = NULL;
1450
1451 r = read_domain_one(m, false, &pretty);
1452 if (r < 0)
1453 return r;
1454 if (r == 0)
1455 break;
1456
1457 if (isempty(pretty))
1458 continue;
1459
1460 r = strv_consume(l, TAKE_PTR(pretty));
1461 if (r < 0)
1462 return r;
1463 }
1464
1465 r = sd_bus_message_exit_container(m);
1466 if (r < 0)
1467 return r;
1468
1469 return 0;
1470 }
1471
1472 static int status_print_strv_ifindex(int ifindex, const char *ifname, char **p) {
1473 const unsigned indent = strlen("Global: "); /* Use the same indentation everywhere to make things nice */
1474 int pos1, pos2;
1475
1476 if (ifname)
1477 printf("%s%nLink %i (%s)%n%s:", ansi_highlight(), &pos1, ifindex, ifname, &pos2, ansi_normal());
1478 else
1479 printf("%s%nGlobal%n%s:", ansi_highlight(), &pos1, &pos2, ansi_normal());
1480
1481 size_t cols = columns(), position = pos2 - pos1 + 2;
1482
1483 STRV_FOREACH(i, p) {
1484 size_t our_len = utf8_console_width(*i); /* This returns -1 on invalid utf-8 (which shouldn't happen).
1485 * If that happens, we'll just print one item per line. */
1486
1487 if (position <= indent || size_add(size_add(position, 1), our_len) < cols) {
1488 printf(" %s", *i);
1489 position = size_add(size_add(position, 1), our_len);
1490 } else {
1491 printf("\n%*s%s", (int) indent, "", *i);
1492 position = size_add(our_len, indent);
1493 }
1494 }
1495
1496 printf("\n");
1497
1498 return 0;
1499 }
1500
1501 static int status_print_strv_global(char **p) {
1502 return status_print_strv_ifindex(0, NULL, p);
1503 }
1504
1505 typedef struct LinkInfo {
1506 uint64_t scopes_mask;
1507 const char *llmnr;
1508 const char *mdns;
1509 const char *dns_over_tls;
1510 const char *dnssec;
1511 char *current_dns;
1512 char *current_dns_ex;
1513 char **dns;
1514 char **dns_ex;
1515 char **domains;
1516 char **ntas;
1517 bool dnssec_supported;
1518 bool default_route;
1519 } LinkInfo;
1520
1521 typedef struct GlobalInfo {
1522 char *current_dns;
1523 char *current_dns_ex;
1524 char **dns;
1525 char **dns_ex;
1526 char **fallback_dns;
1527 char **fallback_dns_ex;
1528 char **domains;
1529 char **ntas;
1530 const char *llmnr;
1531 const char *mdns;
1532 const char *dns_over_tls;
1533 const char *dnssec;
1534 const char *resolv_conf_mode;
1535 bool dnssec_supported;
1536 } GlobalInfo;
1537
1538 static void link_info_clear(LinkInfo *p) {
1539 free(p->current_dns);
1540 free(p->current_dns_ex);
1541 strv_free(p->dns);
1542 strv_free(p->dns_ex);
1543 strv_free(p->domains);
1544 strv_free(p->ntas);
1545 }
1546
1547 static void global_info_clear(GlobalInfo *p) {
1548 free(p->current_dns);
1549 free(p->current_dns_ex);
1550 strv_free(p->dns);
1551 strv_free(p->dns_ex);
1552 strv_free(p->fallback_dns);
1553 strv_free(p->fallback_dns_ex);
1554 strv_free(p->domains);
1555 strv_free(p->ntas);
1556 }
1557
1558 static int dump_list(Table *table, const char *field, char * const *l) {
1559 int r;
1560
1561 if (strv_isempty(l))
1562 return 0;
1563
1564 r = table_add_many(table,
1565 TABLE_FIELD, field,
1566 TABLE_STRV_WRAPPED, l);
1567 if (r < 0)
1568 return table_log_add_error(r);
1569
1570 return 0;
1571 }
1572
1573 static int strv_extend_extended_bool(char ***strv, const char *name, const char *value) {
1574 int r;
1575
1576 if (value) {
1577 r = parse_boolean(value);
1578 if (r >= 0)
1579 return strv_extendf(strv, "%s%s", plus_minus(r), name);
1580 }
1581
1582 return strv_extendf(strv, "%s=%s", name, value ?: "???");
1583 }
1584
1585 static char** link_protocol_status(const LinkInfo *info) {
1586 _cleanup_strv_free_ char **s = NULL;
1587
1588 if (strv_extendf(&s, "%sDefaultRoute", plus_minus(info->default_route)) < 0)
1589 return NULL;
1590
1591 if (strv_extend_extended_bool(&s, "LLMNR", info->llmnr) < 0)
1592 return NULL;
1593
1594 if (strv_extend_extended_bool(&s, "mDNS", info->mdns) < 0)
1595 return NULL;
1596
1597 if (strv_extend_extended_bool(&s, "DNSOverTLS", info->dns_over_tls) < 0)
1598 return NULL;
1599
1600 if (strv_extendf(&s, "DNSSEC=%s/%s",
1601 info->dnssec ?: "???",
1602 info->dnssec_supported ? "supported" : "unsupported") < 0)
1603 return NULL;
1604
1605 return TAKE_PTR(s);
1606 }
1607
1608 static char** global_protocol_status(const GlobalInfo *info) {
1609 _cleanup_strv_free_ char **s = NULL;
1610
1611 if (strv_extend_extended_bool(&s, "LLMNR", info->llmnr) < 0)
1612 return NULL;
1613
1614 if (strv_extend_extended_bool(&s, "mDNS", info->mdns) < 0)
1615 return NULL;
1616
1617 if (strv_extend_extended_bool(&s, "DNSOverTLS", info->dns_over_tls) < 0)
1618 return NULL;
1619
1620 if (strv_extendf(&s, "DNSSEC=%s/%s",
1621 info->dnssec ?: "???",
1622 info->dnssec_supported ? "supported" : "unsupported") < 0)
1623 return NULL;
1624
1625 return TAKE_PTR(s);
1626 }
1627
1628 static int status_ifindex(sd_bus *bus, int ifindex, const char *name, StatusMode mode, bool *empty_line) {
1629 static const struct bus_properties_map property_map[] = {
1630 { "ScopesMask", "t", NULL, offsetof(LinkInfo, scopes_mask) },
1631 { "DNS", "a(iay)", map_link_dns_servers, offsetof(LinkInfo, dns) },
1632 { "DNSEx", "a(iayqs)", map_link_dns_servers_ex, offsetof(LinkInfo, dns_ex) },
1633 { "CurrentDNSServer", "(iay)", map_link_current_dns_server, offsetof(LinkInfo, current_dns) },
1634 { "CurrentDNSServerEx", "(iayqs)", map_link_current_dns_server_ex, offsetof(LinkInfo, current_dns_ex) },
1635 { "Domains", "a(sb)", map_link_domains, offsetof(LinkInfo, domains) },
1636 { "DefaultRoute", "b", NULL, offsetof(LinkInfo, default_route) },
1637 { "LLMNR", "s", NULL, offsetof(LinkInfo, llmnr) },
1638 { "MulticastDNS", "s", NULL, offsetof(LinkInfo, mdns) },
1639 { "DNSOverTLS", "s", NULL, offsetof(LinkInfo, dns_over_tls) },
1640 { "DNSSEC", "s", NULL, offsetof(LinkInfo, dnssec) },
1641 { "DNSSECNegativeTrustAnchors", "as", bus_map_strv_sort, offsetof(LinkInfo, ntas) },
1642 { "DNSSECSupported", "b", NULL, offsetof(LinkInfo, dnssec_supported) },
1643 {}
1644 };
1645 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
1646 _cleanup_(sd_bus_message_unrefp) sd_bus_message *m = NULL;
1647 _cleanup_(link_info_clear) LinkInfo link_info = {};
1648 _cleanup_(table_unrefp) Table *table = NULL;
1649 _cleanup_free_ char *p = NULL;
1650 char ifi[DECIMAL_STR_MAX(int)], ifname[IF_NAMESIZE];
1651 int r;
1652
1653 assert(bus);
1654 assert(ifindex > 0);
1655
1656 if (!name) {
1657 r = format_ifname(ifindex, ifname);
1658 if (r < 0)
1659 return log_error_errno(r, "Failed to resolve interface name for %i: %m", ifindex);
1660
1661 name = ifname;
1662 }
1663
1664 xsprintf(ifi, "%i", ifindex);
1665 r = sd_bus_path_encode("/org/freedesktop/resolve1/link", ifi, &p);
1666 if (r < 0)
1667 return log_oom();
1668
1669 r = bus_map_all_properties(bus,
1670 "org.freedesktop.resolve1",
1671 p,
1672 property_map,
1673 BUS_MAP_BOOLEAN_AS_BOOL,
1674 &error,
1675 &m,
1676 &link_info);
1677 if (r < 0)
1678 return log_error_errno(r, "Failed to get link data for %i: %s", ifindex, bus_error_message(&error, r));
1679
1680 pager_open(arg_pager_flags);
1681
1682 if (mode == STATUS_DNS)
1683 return status_print_strv_ifindex(ifindex, name, link_info.dns_ex ?: link_info.dns);
1684
1685 if (mode == STATUS_DOMAIN)
1686 return status_print_strv_ifindex(ifindex, name, link_info.domains);
1687
1688 if (mode == STATUS_NTA)
1689 return status_print_strv_ifindex(ifindex, name, link_info.ntas);
1690
1691 if (mode == STATUS_DEFAULT_ROUTE) {
1692 printf("%sLink %i (%s)%s: %s\n",
1693 ansi_highlight(), ifindex, name, ansi_normal(),
1694 yes_no(link_info.default_route));
1695
1696 return 0;
1697 }
1698
1699 if (mode == STATUS_LLMNR) {
1700 printf("%sLink %i (%s)%s: %s\n",
1701 ansi_highlight(), ifindex, name, ansi_normal(),
1702 strna(link_info.llmnr));
1703
1704 return 0;
1705 }
1706
1707 if (mode == STATUS_MDNS) {
1708 printf("%sLink %i (%s)%s: %s\n",
1709 ansi_highlight(), ifindex, name, ansi_normal(),
1710 strna(link_info.mdns));
1711
1712 return 0;
1713 }
1714
1715 if (mode == STATUS_PRIVATE) {
1716 printf("%sLink %i (%s)%s: %s\n",
1717 ansi_highlight(), ifindex, name, ansi_normal(),
1718 strna(link_info.dns_over_tls));
1719
1720 return 0;
1721 }
1722
1723 if (mode == STATUS_DNSSEC) {
1724 printf("%sLink %i (%s)%s: %s\n",
1725 ansi_highlight(), ifindex, name, ansi_normal(),
1726 strna(link_info.dnssec));
1727
1728 return 0;
1729 }
1730
1731 if (empty_line && *empty_line)
1732 fputc('\n', stdout);
1733
1734 printf("%sLink %i (%s)%s\n",
1735 ansi_highlight(), ifindex, name, ansi_normal());
1736
1737 table = table_new_vertical();
1738 if (!table)
1739 return log_oom();
1740
1741 r = table_add_many(table,
1742 TABLE_FIELD, "Current Scopes",
1743 TABLE_SET_MINIMUM_WIDTH, 19);
1744 if (r < 0)
1745 return table_log_add_error(r);
1746
1747 if (link_info.scopes_mask == 0)
1748 r = table_add_cell(table, NULL, TABLE_STRING, "none");
1749 else {
1750 _cleanup_free_ char *buf = NULL;
1751 size_t len;
1752
1753 if (asprintf(&buf, "%s%s%s%s%s",
1754 link_info.scopes_mask & SD_RESOLVED_DNS ? "DNS " : "",
1755 link_info.scopes_mask & SD_RESOLVED_LLMNR_IPV4 ? "LLMNR/IPv4 " : "",
1756 link_info.scopes_mask & SD_RESOLVED_LLMNR_IPV6 ? "LLMNR/IPv6 " : "",
1757 link_info.scopes_mask & SD_RESOLVED_MDNS_IPV4 ? "mDNS/IPv4 " : "",
1758 link_info.scopes_mask & SD_RESOLVED_MDNS_IPV6 ? "mDNS/IPv6 " : "") < 0)
1759 return log_oom();
1760
1761 len = strlen(buf);
1762 assert(len > 0);
1763 buf[len - 1] = '\0';
1764
1765 r = table_add_cell(table, NULL, TABLE_STRING, buf);
1766 }
1767 if (r < 0)
1768 return table_log_add_error(r);
1769
1770 _cleanup_strv_free_ char **pstatus = link_protocol_status(&link_info);
1771 if (!pstatus)
1772 return log_oom();
1773
1774 r = table_add_many(table,
1775 TABLE_FIELD, "Protocols",
1776 TABLE_STRV_WRAPPED, pstatus);
1777 if (r < 0)
1778 return table_log_add_error(r);
1779
1780 if (link_info.current_dns) {
1781 r = table_add_many(table,
1782 TABLE_FIELD, "Current DNS Server",
1783 TABLE_STRING, link_info.current_dns_ex ?: link_info.current_dns);
1784 if (r < 0)
1785 return table_log_add_error(r);
1786 }
1787
1788 r = dump_list(table, "DNS Servers", link_info.dns_ex ?: link_info.dns);
1789 if (r < 0)
1790 return r;
1791
1792 r = dump_list(table, "DNS Domain", link_info.domains);
1793 if (r < 0)
1794 return r;
1795
1796 r = table_print(table, NULL);
1797 if (r < 0)
1798 return table_log_print_error(r);
1799
1800 if (empty_line)
1801 *empty_line = true;
1802
1803 return 0;
1804 }
1805
1806 static int map_global_dns_servers_internal(
1807 sd_bus *bus,
1808 const char *member,
1809 sd_bus_message *m,
1810 sd_bus_error *error,
1811 void *userdata,
1812 bool extended) {
1813
1814 char ***l = ASSERT_PTR(userdata);
1815 int r;
1816
1817 assert(bus);
1818 assert(member);
1819 assert(m);
1820
1821 r = sd_bus_message_enter_container(m, 'a', extended ? "(iiayqs)" : "(iiay)");
1822 if (r < 0)
1823 return r;
1824
1825 for (;;) {
1826 _cleanup_free_ char *pretty = NULL;
1827
1828 r = read_dns_server_one(m, /* with_ifindex= */ true, extended, /* only_global= */ true, &pretty);
1829 if (r < 0)
1830 return r;
1831 if (r == 0)
1832 break;
1833
1834 if (isempty(pretty))
1835 continue;
1836
1837 r = strv_consume(l, TAKE_PTR(pretty));
1838 if (r < 0)
1839 return r;
1840 }
1841
1842 r = sd_bus_message_exit_container(m);
1843 if (r < 0)
1844 return r;
1845
1846 return 0;
1847 }
1848
1849 static int map_global_dns_servers(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1850 return map_global_dns_servers_internal(bus, member, m, error, userdata, /* extended= */ false);
1851 }
1852
1853 static int map_global_dns_servers_ex(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1854 return map_global_dns_servers_internal(bus, member, m, error, userdata, /* extended= */ true);
1855 }
1856
1857 static int map_global_current_dns_server(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1858 return read_dns_server_one(m, /* with_ifindex= */ true, /* extended= */ false, /* only_global= */ true, userdata);
1859 }
1860
1861 static int map_global_current_dns_server_ex(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1862 return read_dns_server_one(m, /* with_ifindex= */ true, /* extended= */ true, /* only_global= */ true, userdata);
1863 }
1864
1865 static int map_global_domains(sd_bus *bus, const char *member, sd_bus_message *m, sd_bus_error *error, void *userdata) {
1866 char ***l = ASSERT_PTR(userdata);
1867 int r;
1868
1869 assert(bus);
1870 assert(member);
1871 assert(m);
1872
1873 r = sd_bus_message_enter_container(m, 'a', "(isb)");
1874 if (r < 0)
1875 return r;
1876
1877 for (;;) {
1878 _cleanup_free_ char *pretty = NULL;
1879
1880 r = read_domain_one(m, true, &pretty);
1881 if (r < 0)
1882 return r;
1883 if (r == 0)
1884 break;
1885
1886 if (isempty(pretty))
1887 continue;
1888
1889 r = strv_consume(l, TAKE_PTR(pretty));
1890 if (r < 0)
1891 return r;
1892 }
1893
1894 r = sd_bus_message_exit_container(m);
1895 if (r < 0)
1896 return r;
1897
1898 strv_sort(*l);
1899
1900 return 0;
1901 }
1902
1903 static int status_global(sd_bus *bus, StatusMode mode, bool *empty_line) {
1904 static const struct bus_properties_map property_map[] = {
1905 { "DNS", "a(iiay)", map_global_dns_servers, offsetof(GlobalInfo, dns) },
1906 { "DNSEx", "a(iiayqs)", map_global_dns_servers_ex, offsetof(GlobalInfo, dns_ex) },
1907 { "FallbackDNS", "a(iiay)", map_global_dns_servers, offsetof(GlobalInfo, fallback_dns) },
1908 { "FallbackDNSEx", "a(iiayqs)", map_global_dns_servers_ex, offsetof(GlobalInfo, fallback_dns_ex) },
1909 { "CurrentDNSServer", "(iiay)", map_global_current_dns_server, offsetof(GlobalInfo, current_dns) },
1910 { "CurrentDNSServerEx", "(iiayqs)", map_global_current_dns_server_ex, offsetof(GlobalInfo, current_dns_ex) },
1911 { "Domains", "a(isb)", map_global_domains, offsetof(GlobalInfo, domains) },
1912 { "DNSSECNegativeTrustAnchors", "as", bus_map_strv_sort, offsetof(GlobalInfo, ntas) },
1913 { "LLMNR", "s", NULL, offsetof(GlobalInfo, llmnr) },
1914 { "MulticastDNS", "s", NULL, offsetof(GlobalInfo, mdns) },
1915 { "DNSOverTLS", "s", NULL, offsetof(GlobalInfo, dns_over_tls) },
1916 { "DNSSEC", "s", NULL, offsetof(GlobalInfo, dnssec) },
1917 { "DNSSECSupported", "b", NULL, offsetof(GlobalInfo, dnssec_supported) },
1918 { "ResolvConfMode", "s", NULL, offsetof(GlobalInfo, resolv_conf_mode) },
1919 {}
1920 };
1921 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
1922 _cleanup_(sd_bus_message_unrefp) sd_bus_message *m = NULL;
1923 _cleanup_(global_info_clear) GlobalInfo global_info = {};
1924 _cleanup_(table_unrefp) Table *table = NULL;
1925 int r;
1926
1927 assert(bus);
1928 assert(empty_line);
1929
1930 r = bus_map_all_properties(bus,
1931 "org.freedesktop.resolve1",
1932 "/org/freedesktop/resolve1",
1933 property_map,
1934 BUS_MAP_BOOLEAN_AS_BOOL,
1935 &error,
1936 &m,
1937 &global_info);
1938 if (r < 0)
1939 return log_error_errno(r, "Failed to get global data: %s", bus_error_message(&error, r));
1940
1941 pager_open(arg_pager_flags);
1942
1943 if (mode == STATUS_DNS)
1944 return status_print_strv_global(global_info.dns_ex ?: global_info.dns);
1945
1946 if (mode == STATUS_DOMAIN)
1947 return status_print_strv_global(global_info.domains);
1948
1949 if (mode == STATUS_NTA)
1950 return status_print_strv_global(global_info.ntas);
1951
1952 if (mode == STATUS_LLMNR) {
1953 printf("%sGlobal%s: %s\n", ansi_highlight(), ansi_normal(),
1954 strna(global_info.llmnr));
1955
1956 return 0;
1957 }
1958
1959 if (mode == STATUS_MDNS) {
1960 printf("%sGlobal%s: %s\n", ansi_highlight(), ansi_normal(),
1961 strna(global_info.mdns));
1962
1963 return 0;
1964 }
1965
1966 if (mode == STATUS_PRIVATE) {
1967 printf("%sGlobal%s: %s\n", ansi_highlight(), ansi_normal(),
1968 strna(global_info.dns_over_tls));
1969
1970 return 0;
1971 }
1972
1973 if (mode == STATUS_DNSSEC) {
1974 printf("%sGlobal%s: %s\n", ansi_highlight(), ansi_normal(),
1975 strna(global_info.dnssec));
1976
1977 return 0;
1978 }
1979
1980 printf("%sGlobal%s\n", ansi_highlight(), ansi_normal());
1981
1982 table = table_new_vertical();
1983 if (!table)
1984 return log_oom();
1985
1986 _cleanup_strv_free_ char **pstatus = global_protocol_status(&global_info);
1987 if (!pstatus)
1988 return log_oom();
1989
1990 r = table_add_many(table,
1991 TABLE_FIELD, "Protocols",
1992 TABLE_SET_MINIMUM_WIDTH, 19,
1993 TABLE_STRV_WRAPPED, pstatus);
1994 if (r < 0)
1995 return table_log_add_error(r);
1996
1997 if (global_info.resolv_conf_mode) {
1998 r = table_add_many(table,
1999 TABLE_FIELD, "resolv.conf mode",
2000 TABLE_STRING, global_info.resolv_conf_mode);
2001 if (r < 0)
2002 return table_log_add_error(r);
2003 }
2004
2005 if (global_info.current_dns) {
2006 r = table_add_many(table,
2007 TABLE_FIELD, "Current DNS Server",
2008 TABLE_STRING, global_info.current_dns_ex ?: global_info.current_dns);
2009 if (r < 0)
2010 return table_log_add_error(r);
2011 }
2012
2013 r = dump_list(table, "DNS Servers", global_info.dns_ex ?: global_info.dns);
2014 if (r < 0)
2015 return r;
2016
2017 r = dump_list(table, "Fallback DNS Servers", global_info.fallback_dns_ex ?: global_info.fallback_dns);
2018 if (r < 0)
2019 return r;
2020
2021 r = dump_list(table, "DNS Domain", global_info.domains);
2022 if (r < 0)
2023 return r;
2024
2025 r = table_print(table, NULL);
2026 if (r < 0)
2027 return table_log_print_error(r);
2028
2029 *empty_line = true;
2030
2031 return 0;
2032 }
2033
2034 static int status_all(sd_bus *bus, StatusMode mode) {
2035 _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *req = NULL, *reply = NULL;
2036 _cleanup_(sd_netlink_unrefp) sd_netlink *rtnl = NULL;
2037 bool empty_line = false;
2038 int r;
2039
2040 assert(bus);
2041
2042 r = status_global(bus, mode, &empty_line);
2043 if (r < 0)
2044 return r;
2045
2046 r = sd_netlink_open(&rtnl);
2047 if (r < 0)
2048 return log_error_errno(r, "Failed to connect to netlink: %m");
2049
2050 r = sd_rtnl_message_new_link(rtnl, &req, RTM_GETLINK, 0);
2051 if (r < 0)
2052 return rtnl_log_create_error(r);
2053
2054 r = sd_netlink_message_set_request_dump(req, true);
2055 if (r < 0)
2056 return rtnl_log_create_error(r);
2057
2058 r = sd_netlink_call(rtnl, req, 0, &reply);
2059 if (r < 0)
2060 return log_error_errno(r, "Failed to enumerate links: %m");
2061
2062 _cleanup_free_ InterfaceInfo *infos = NULL;
2063 size_t n_infos = 0;
2064
2065 for (sd_netlink_message *i = reply; i; i = sd_netlink_message_next(i)) {
2066 const char *name;
2067 int ifindex;
2068 uint16_t type;
2069
2070 r = sd_netlink_message_get_type(i, &type);
2071 if (r < 0)
2072 return rtnl_log_parse_error(r);
2073
2074 if (type != RTM_NEWLINK)
2075 continue;
2076
2077 r = sd_rtnl_message_link_get_ifindex(i, &ifindex);
2078 if (r < 0)
2079 return rtnl_log_parse_error(r);
2080
2081 if (ifindex == LOOPBACK_IFINDEX)
2082 continue;
2083
2084 r = sd_netlink_message_read_string(i, IFLA_IFNAME, &name);
2085 if (r < 0)
2086 return rtnl_log_parse_error(r);
2087
2088 if (!GREEDY_REALLOC(infos, n_infos + 1))
2089 return log_oom();
2090
2091 infos[n_infos++] = (InterfaceInfo) { ifindex, name };
2092 }
2093
2094 typesafe_qsort(infos, n_infos, interface_info_compare);
2095
2096 r = 0;
2097 for (size_t i = 0; i < n_infos; i++) {
2098 int q = status_ifindex(bus, infos[i].index, infos[i].name, mode, &empty_line);
2099 if (q < 0 && r >= 0)
2100 r = q;
2101 }
2102
2103 return r;
2104 }
2105
2106 static int verb_status(int argc, char **argv, void *userdata) {
2107 sd_bus *bus = userdata;
2108 _cleanup_(sd_netlink_unrefp) sd_netlink *rtnl = NULL;
2109 int r = 0;
2110
2111 if (argc > 1) {
2112 bool empty_line = false;
2113
2114 STRV_FOREACH(ifname, argv + 1) {
2115 int ifindex, q;
2116
2117 ifindex = rtnl_resolve_interface(&rtnl, *ifname);
2118 if (ifindex < 0) {
2119 log_warning_errno(ifindex, "Failed to resolve interface \"%s\", ignoring: %m", *ifname);
2120 continue;
2121 }
2122
2123 q = status_ifindex(bus, ifindex, NULL, STATUS_ALL, &empty_line);
2124 if (q < 0)
2125 r = q;
2126 }
2127 } else
2128 r = status_all(bus, STATUS_ALL);
2129
2130 return r;
2131 }
2132
2133 static int call_dns(sd_bus *bus, char **dns, const BusLocator *locator, sd_bus_error *error, bool extended) {
2134 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL;
2135 int r;
2136
2137 r = bus_message_new_method_call(bus, &req, locator, extended ? "SetLinkDNSEx" : "SetLinkDNS");
2138 if (r < 0)
2139 return bus_log_create_error(r);
2140
2141 r = sd_bus_message_append(req, "i", arg_ifindex);
2142 if (r < 0)
2143 return bus_log_create_error(r);
2144
2145 r = sd_bus_message_open_container(req, 'a', extended ? "(iayqs)" : "(iay)");
2146 if (r < 0)
2147 return bus_log_create_error(r);
2148
2149 /* If only argument is the empty string, then call SetLinkDNS() with an
2150 * empty list, which will clear the list of domains for an interface. */
2151 if (!strv_equal(dns, STRV_MAKE("")))
2152 STRV_FOREACH(p, dns) {
2153 _cleanup_free_ char *name = NULL;
2154 struct in_addr_data data;
2155 uint16_t port;
2156 int ifindex;
2157
2158 r = in_addr_port_ifindex_name_from_string_auto(*p, &data.family, &data.address, &port, &ifindex, &name);
2159 if (r < 0)
2160 return log_error_errno(r, "Failed to parse DNS server address: %s", *p);
2161
2162 if (ifindex != 0 && ifindex != arg_ifindex)
2163 return log_error_errno(SYNTHETIC_ERRNO(EINVAL), "Invalid ifindex: %i", ifindex);
2164
2165 r = sd_bus_message_open_container(req, 'r', extended ? "iayqs" : "iay");
2166 if (r < 0)
2167 return bus_log_create_error(r);
2168
2169 r = sd_bus_message_append(req, "i", data.family);
2170 if (r < 0)
2171 return bus_log_create_error(r);
2172
2173 r = sd_bus_message_append_array(req, 'y', &data.address, FAMILY_ADDRESS_SIZE(data.family));
2174 if (r < 0)
2175 return bus_log_create_error(r);
2176
2177 if (extended) {
2178 r = sd_bus_message_append(req, "q", port);
2179 if (r < 0)
2180 return bus_log_create_error(r);
2181
2182 r = sd_bus_message_append(req, "s", name);
2183 if (r < 0)
2184 return bus_log_create_error(r);
2185 }
2186
2187 r = sd_bus_message_close_container(req);
2188 if (r < 0)
2189 return bus_log_create_error(r);
2190 }
2191
2192 r = sd_bus_message_close_container(req);
2193 if (r < 0)
2194 return bus_log_create_error(r);
2195
2196 r = sd_bus_call(bus, req, 0, error, NULL);
2197 if (r < 0 && extended && sd_bus_error_has_name(error, SD_BUS_ERROR_UNKNOWN_METHOD)) {
2198 sd_bus_error_free(error);
2199 return call_dns(bus, dns, locator, error, false);
2200 }
2201 return r;
2202 }
2203
2204 static int verb_dns(int argc, char **argv, void *userdata) {
2205 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2206 sd_bus *bus = ASSERT_PTR(userdata);
2207 int r;
2208
2209 if (argc >= 2) {
2210 r = ifname_mangle(argv[1]);
2211 if (r < 0)
2212 return r;
2213 }
2214
2215 if (arg_ifindex <= 0)
2216 return status_all(bus, STATUS_DNS);
2217
2218 if (argc < 3)
2219 return status_ifindex(bus, arg_ifindex, NULL, STATUS_DNS, NULL);
2220
2221 r = call_dns(bus, argv + 2, bus_resolve_mgr, &error, true);
2222 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2223 sd_bus_error_free(&error);
2224
2225 r = call_dns(bus, argv + 2, bus_network_mgr, &error, true);
2226 }
2227 if (r < 0) {
2228 if (arg_ifindex_permissive &&
2229 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2230 return 0;
2231
2232 return log_error_errno(r, "Failed to set DNS configuration: %s", bus_error_message(&error, r));
2233 }
2234
2235 return 0;
2236 }
2237
2238 static int call_domain(sd_bus *bus, char **domain, const BusLocator *locator, sd_bus_error *error) {
2239 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL;
2240 int r;
2241
2242 r = bus_message_new_method_call(bus, &req, locator, "SetLinkDomains");
2243 if (r < 0)
2244 return bus_log_create_error(r);
2245
2246 r = sd_bus_message_append(req, "i", arg_ifindex);
2247 if (r < 0)
2248 return bus_log_create_error(r);
2249
2250 r = sd_bus_message_open_container(req, 'a', "(sb)");
2251 if (r < 0)
2252 return bus_log_create_error(r);
2253
2254 /* If only argument is the empty string, then call SetLinkDomains() with an
2255 * empty list, which will clear the list of domains for an interface. */
2256 if (!strv_equal(domain, STRV_MAKE("")))
2257 STRV_FOREACH(p, domain) {
2258 const char *n;
2259
2260 n = **p == '~' ? *p + 1 : *p;
2261
2262 r = dns_name_is_valid(n);
2263 if (r < 0)
2264 return log_error_errno(r, "Failed to validate specified domain %s: %m", n);
2265 if (r == 0)
2266 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2267 "Domain not valid: %s",
2268 n);
2269
2270 r = sd_bus_message_append(req, "(sb)", n, **p == '~');
2271 if (r < 0)
2272 return bus_log_create_error(r);
2273 }
2274
2275 r = sd_bus_message_close_container(req);
2276 if (r < 0)
2277 return bus_log_create_error(r);
2278
2279 return sd_bus_call(bus, req, 0, error, NULL);
2280 }
2281
2282 static int verb_domain(int argc, char **argv, void *userdata) {
2283 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2284 sd_bus *bus = ASSERT_PTR(userdata);
2285 int r;
2286
2287 if (argc >= 2) {
2288 r = ifname_mangle(argv[1]);
2289 if (r < 0)
2290 return r;
2291 }
2292
2293 if (arg_ifindex <= 0)
2294 return status_all(bus, STATUS_DOMAIN);
2295
2296 if (argc < 3)
2297 return status_ifindex(bus, arg_ifindex, NULL, STATUS_DOMAIN, NULL);
2298
2299 r = call_domain(bus, argv + 2, bus_resolve_mgr, &error);
2300 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2301 sd_bus_error_free(&error);
2302
2303 r = call_domain(bus, argv + 2, bus_network_mgr, &error);
2304 }
2305 if (r < 0) {
2306 if (arg_ifindex_permissive &&
2307 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2308 return 0;
2309
2310 return log_error_errno(r, "Failed to set domain configuration: %s", bus_error_message(&error, r));
2311 }
2312
2313 return 0;
2314 }
2315
2316 static int verb_default_route(int argc, char **argv, void *userdata) {
2317 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2318 sd_bus *bus = ASSERT_PTR(userdata);
2319 int r, b;
2320
2321 if (argc >= 2) {
2322 r = ifname_mangle(argv[1]);
2323 if (r < 0)
2324 return r;
2325 }
2326
2327 if (arg_ifindex <= 0)
2328 return status_all(bus, STATUS_DEFAULT_ROUTE);
2329
2330 if (argc < 3)
2331 return status_ifindex(bus, arg_ifindex, NULL, STATUS_DEFAULT_ROUTE, NULL);
2332
2333 b = parse_boolean(argv[2]);
2334 if (b < 0)
2335 return log_error_errno(b, "Failed to parse boolean argument: %s", argv[2]);
2336
2337 r = bus_call_method(bus, bus_resolve_mgr, "SetLinkDefaultRoute", &error, NULL, "ib", arg_ifindex, b);
2338 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2339 sd_bus_error_free(&error);
2340
2341 r = bus_call_method(bus, bus_network_mgr, "SetLinkDefaultRoute", &error, NULL, "ib", arg_ifindex, b);
2342 }
2343 if (r < 0) {
2344 if (arg_ifindex_permissive &&
2345 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2346 return 0;
2347
2348 return log_error_errno(r, "Failed to set default route configuration: %s", bus_error_message(&error, r));
2349 }
2350
2351 return 0;
2352 }
2353
2354 static int verb_llmnr(int argc, char **argv, void *userdata) {
2355 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2356 _cleanup_free_ char *global_llmnr_support_str = NULL;
2357 ResolveSupport global_llmnr_support, llmnr_support;
2358 sd_bus *bus = ASSERT_PTR(userdata);
2359 int r;
2360
2361 if (argc >= 2) {
2362 r = ifname_mangle(argv[1]);
2363 if (r < 0)
2364 return r;
2365 }
2366
2367 if (arg_ifindex <= 0)
2368 return status_all(bus, STATUS_LLMNR);
2369
2370 if (argc < 3)
2371 return status_ifindex(bus, arg_ifindex, NULL, STATUS_LLMNR, NULL);
2372
2373 llmnr_support = resolve_support_from_string(argv[2]);
2374 if (llmnr_support < 0)
2375 return log_error_errno(llmnr_support, "Invalid LLMNR setting: %s", argv[2]);
2376
2377 r = bus_get_property_string(bus, bus_resolve_mgr, "LLMNR", &error, &global_llmnr_support_str);
2378 if (r < 0)
2379 return log_error_errno(r, "Failed to get the global LLMNR support state: %s", bus_error_message(&error, r));
2380
2381 global_llmnr_support = resolve_support_from_string(global_llmnr_support_str);
2382 if (global_llmnr_support < 0)
2383 return log_error_errno(global_llmnr_support, "Received invalid global LLMNR setting: %s", global_llmnr_support_str);
2384
2385 if (global_llmnr_support < llmnr_support)
2386 log_warning("Setting LLMNR support level \"%s\" for \"%s\", but the global support level is \"%s\".",
2387 argv[2], arg_ifname, global_llmnr_support_str);
2388
2389 r = bus_call_method(bus, bus_resolve_mgr, "SetLinkLLMNR", &error, NULL, "is", arg_ifindex, argv[2]);
2390 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2391 sd_bus_error_free(&error);
2392
2393 r = bus_call_method(bus, bus_network_mgr, "SetLinkLLMNR", &error, NULL, "is", arg_ifindex, argv[2]);
2394 }
2395 if (r < 0) {
2396 if (arg_ifindex_permissive &&
2397 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2398 return 0;
2399
2400 return log_error_errno(r, "Failed to set LLMNR configuration: %s", bus_error_message(&error, r));
2401 }
2402
2403 return 0;
2404 }
2405
2406 static int verb_mdns(int argc, char **argv, void *userdata) {
2407 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2408 _cleanup_free_ char *global_mdns_support_str = NULL;
2409 ResolveSupport global_mdns_support, mdns_support;
2410 sd_bus *bus = ASSERT_PTR(userdata);
2411 int r;
2412
2413 if (argc >= 2) {
2414 r = ifname_mangle(argv[1]);
2415 if (r < 0)
2416 return r;
2417 }
2418
2419 if (arg_ifindex <= 0)
2420 return status_all(bus, STATUS_MDNS);
2421
2422 if (argc < 3)
2423 return status_ifindex(bus, arg_ifindex, NULL, STATUS_MDNS, NULL);
2424
2425 mdns_support = resolve_support_from_string(argv[2]);
2426 if (mdns_support < 0)
2427 return log_error_errno(mdns_support, "Invalid mDNS setting: %s", argv[2]);
2428
2429 r = bus_get_property_string(bus, bus_resolve_mgr, "MulticastDNS", &error, &global_mdns_support_str);
2430 if (r < 0)
2431 return log_error_errno(r, "Failed to get the global mDNS support state: %s", bus_error_message(&error, r));
2432
2433 global_mdns_support = resolve_support_from_string(global_mdns_support_str);
2434 if (global_mdns_support < 0)
2435 return log_error_errno(global_mdns_support, "Received invalid global mDNS setting: %s", global_mdns_support_str);
2436
2437 if (global_mdns_support < mdns_support)
2438 log_warning("Setting mDNS support level \"%s\" for \"%s\", but the global support level is \"%s\".",
2439 argv[2], arg_ifname, global_mdns_support_str);
2440
2441 r = bus_call_method(bus, bus_resolve_mgr, "SetLinkMulticastDNS", &error, NULL, "is", arg_ifindex, argv[2]);
2442 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2443 sd_bus_error_free(&error);
2444
2445 r = bus_call_method(
2446 bus,
2447 bus_network_mgr,
2448 "SetLinkMulticastDNS",
2449 &error,
2450 NULL,
2451 "is", arg_ifindex, argv[2]);
2452 }
2453 if (r < 0) {
2454 if (arg_ifindex_permissive &&
2455 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2456 return 0;
2457
2458 return log_error_errno(r, "Failed to set MulticastDNS configuration: %s", bus_error_message(&error, r));
2459 }
2460
2461 return 0;
2462 }
2463
2464 static int verb_dns_over_tls(int argc, char **argv, void *userdata) {
2465 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2466 sd_bus *bus = ASSERT_PTR(userdata);
2467 int r;
2468
2469 if (argc >= 2) {
2470 r = ifname_mangle(argv[1]);
2471 if (r < 0)
2472 return r;
2473 }
2474
2475 if (arg_ifindex <= 0)
2476 return status_all(bus, STATUS_PRIVATE);
2477
2478 if (argc < 3)
2479 return status_ifindex(bus, arg_ifindex, NULL, STATUS_PRIVATE, NULL);
2480
2481 r = bus_call_method(bus, bus_resolve_mgr, "SetLinkDNSOverTLS", &error, NULL, "is", arg_ifindex, argv[2]);
2482 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2483 sd_bus_error_free(&error);
2484
2485 r = bus_call_method(
2486 bus,
2487 bus_network_mgr,
2488 "SetLinkDNSOverTLS",
2489 &error,
2490 NULL,
2491 "is", arg_ifindex, argv[2]);
2492 }
2493 if (r < 0) {
2494 if (arg_ifindex_permissive &&
2495 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2496 return 0;
2497
2498 return log_error_errno(r, "Failed to set DNSOverTLS configuration: %s", bus_error_message(&error, r));
2499 }
2500
2501 return 0;
2502 }
2503
2504 static int verb_dnssec(int argc, char **argv, void *userdata) {
2505 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2506 sd_bus *bus = ASSERT_PTR(userdata);
2507 int r;
2508
2509 if (argc >= 2) {
2510 r = ifname_mangle(argv[1]);
2511 if (r < 0)
2512 return r;
2513 }
2514
2515 if (arg_ifindex <= 0)
2516 return status_all(bus, STATUS_DNSSEC);
2517
2518 if (argc < 3)
2519 return status_ifindex(bus, arg_ifindex, NULL, STATUS_DNSSEC, NULL);
2520
2521 r = bus_call_method(bus, bus_resolve_mgr, "SetLinkDNSSEC", &error, NULL, "is", arg_ifindex, argv[2]);
2522 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2523 sd_bus_error_free(&error);
2524
2525 r = bus_call_method(bus, bus_network_mgr, "SetLinkDNSSEC", &error, NULL, "is", arg_ifindex, argv[2]);
2526 }
2527 if (r < 0) {
2528 if (arg_ifindex_permissive &&
2529 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2530 return 0;
2531
2532 return log_error_errno(r, "Failed to set DNSSEC configuration: %s", bus_error_message(&error, r));
2533 }
2534
2535 return 0;
2536 }
2537
2538 static int call_nta(sd_bus *bus, char **nta, const BusLocator *locator, sd_bus_error *error) {
2539 _cleanup_(sd_bus_message_unrefp) sd_bus_message *req = NULL;
2540 int r;
2541
2542 r = bus_message_new_method_call(bus, &req, locator, "SetLinkDNSSECNegativeTrustAnchors");
2543 if (r < 0)
2544 return bus_log_create_error(r);
2545
2546 r = sd_bus_message_append(req, "i", arg_ifindex);
2547 if (r < 0)
2548 return bus_log_create_error(r);
2549
2550 r = sd_bus_message_append_strv(req, nta);
2551 if (r < 0)
2552 return bus_log_create_error(r);
2553
2554 return sd_bus_call(bus, req, 0, error, NULL);
2555 }
2556
2557 static int verb_nta(int argc, char **argv, void *userdata) {
2558 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2559 sd_bus *bus = ASSERT_PTR(userdata);
2560 int r;
2561 bool clear;
2562
2563 if (argc >= 2) {
2564 r = ifname_mangle(argv[1]);
2565 if (r < 0)
2566 return r;
2567 }
2568
2569 if (arg_ifindex <= 0)
2570 return status_all(bus, STATUS_NTA);
2571
2572 if (argc < 3)
2573 return status_ifindex(bus, arg_ifindex, NULL, STATUS_NTA, NULL);
2574
2575 /* If only argument is the empty string, then call SetLinkDNSSECNegativeTrustAnchors()
2576 * with an empty list, which will clear the list of domains for an interface. */
2577 clear = strv_equal(argv + 2, STRV_MAKE(""));
2578
2579 if (!clear)
2580 STRV_FOREACH(p, argv + 2) {
2581 r = dns_name_is_valid(*p);
2582 if (r < 0)
2583 return log_error_errno(r, "Failed to validate specified domain %s: %m", *p);
2584 if (r == 0)
2585 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
2586 "Domain not valid: %s",
2587 *p);
2588 }
2589
2590 r = call_nta(bus, clear ? NULL : argv + 2, bus_resolve_mgr, &error);
2591 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2592 sd_bus_error_free(&error);
2593
2594 r = call_nta(bus, clear ? NULL : argv + 2, bus_network_mgr, &error);
2595 }
2596 if (r < 0) {
2597 if (arg_ifindex_permissive &&
2598 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2599 return 0;
2600
2601 return log_error_errno(r, "Failed to set DNSSEC NTA configuration: %s", bus_error_message(&error, r));
2602 }
2603
2604 return 0;
2605 }
2606
2607 static int verb_revert_link(int argc, char **argv, void *userdata) {
2608 _cleanup_(sd_bus_error_free) sd_bus_error error = SD_BUS_ERROR_NULL;
2609 sd_bus *bus = ASSERT_PTR(userdata);
2610 int r;
2611
2612 if (argc >= 2) {
2613 r = ifname_mangle(argv[1]);
2614 if (r < 0)
2615 return r;
2616 }
2617
2618 if (arg_ifindex <= 0)
2619 return log_error_errno(SYNTHETIC_ERRNO(EINVAL), "Interface argument required.");
2620
2621 r = bus_call_method(bus, bus_resolve_mgr, "RevertLink", &error, NULL, "i", arg_ifindex);
2622 if (r < 0 && sd_bus_error_has_name(&error, BUS_ERROR_LINK_BUSY)) {
2623 sd_bus_error_free(&error);
2624
2625 r = bus_call_method(bus, bus_network_mgr, "RevertLinkDNS", &error, NULL, "i", arg_ifindex);
2626 }
2627 if (r < 0) {
2628 if (arg_ifindex_permissive &&
2629 sd_bus_error_has_name(&error, BUS_ERROR_NO_SUCH_LINK))
2630 return 0;
2631
2632 return log_error_errno(r, "Failed to revert interface configuration: %s", bus_error_message(&error, r));
2633 }
2634
2635 return 0;
2636 }
2637
2638 static int verb_log_level(int argc, char *argv[], void *userdata) {
2639 sd_bus *bus = ASSERT_PTR(userdata);
2640
2641 assert(IN_SET(argc, 1, 2));
2642
2643 return verb_log_control_common(bus, "org.freedesktop.resolve1", argv[0], argc == 2 ? argv[1] : NULL);
2644 }
2645
2646 static int print_question(char prefix, const char *color, JsonVariant *question) {
2647 JsonVariant *q = NULL;
2648 int r;
2649
2650 assert(color);
2651
2652 JSON_VARIANT_ARRAY_FOREACH(q, question) {
2653 _cleanup_(dns_resource_key_unrefp) DnsResourceKey *key = NULL;
2654 char buf[DNS_RESOURCE_KEY_STRING_MAX];
2655
2656 r = dns_resource_key_from_json(q, &key);
2657 if (r < 0) {
2658 log_warning_errno(r, "Received monitor message with invalid question key, ignoring: %m");
2659 continue;
2660 }
2661
2662 printf("%s%s %c%s: %s\n",
2663 color,
2664 special_glyph(SPECIAL_GLYPH_ARROW_RIGHT),
2665 prefix,
2666 ansi_normal(),
2667 dns_resource_key_to_string(key, buf, sizeof(buf)));
2668 }
2669
2670 return 0;
2671 }
2672
2673 static int print_answer(JsonVariant *answer) {
2674 JsonVariant *a;
2675 int r;
2676
2677 JSON_VARIANT_ARRAY_FOREACH(a, answer) {
2678 _cleanup_(dns_resource_record_unrefp) DnsResourceRecord *rr = NULL;
2679 _cleanup_free_ void *d = NULL;
2680 JsonVariant *jraw;
2681 const char *s;
2682 size_t l;
2683
2684 jraw = json_variant_by_key(a, "raw");
2685 if (!jraw) {
2686 log_warning("Received monitor answer lacking valid raw data, ignoring.");
2687 continue;
2688 }
2689
2690 r = json_variant_unbase64(jraw, &d, &l);
2691 if (r < 0) {
2692 log_warning_errno(r, "Failed to undo base64 encoding of monitor answer raw data, ignoring.");
2693 continue;
2694 }
2695
2696 r = dns_resource_record_new_from_raw(&rr, d, l);
2697 if (r < 0) {
2698 log_warning_errno(r, "Failed to parse monitor answer RR, ignoring: %m");
2699 continue;
2700 }
2701
2702 s = dns_resource_record_to_string(rr);
2703 if (!s)
2704 return log_oom();
2705
2706 printf("%s%s A%s: %s\n",
2707 ansi_highlight_yellow(),
2708 special_glyph(SPECIAL_GLYPH_ARROW_LEFT),
2709 ansi_normal(),
2710 s);
2711 }
2712
2713 return 0;
2714 }
2715
2716 static void monitor_query_dump(JsonVariant *v) {
2717 _cleanup_(json_variant_unrefp) JsonVariant *question = NULL, *answer = NULL, *collected_questions = NULL;
2718 int rcode = -1, error = 0;
2719 const char *state = NULL;
2720
2721 assert(v);
2722
2723 JsonDispatch dispatch_table[] = {
2724 { "question", JSON_VARIANT_ARRAY, json_dispatch_variant, PTR_TO_SIZE(&question), JSON_MANDATORY },
2725 { "answer", JSON_VARIANT_ARRAY, json_dispatch_variant, PTR_TO_SIZE(&answer), 0 },
2726 { "collectedQuestions", JSON_VARIANT_ARRAY, json_dispatch_variant, PTR_TO_SIZE(&collected_questions), 0 },
2727 { "state", JSON_VARIANT_STRING, json_dispatch_const_string, PTR_TO_SIZE(&state), JSON_MANDATORY },
2728 { "rcode", _JSON_VARIANT_TYPE_INVALID, json_dispatch_int, PTR_TO_SIZE(&rcode), 0 },
2729 { "errno", _JSON_VARIANT_TYPE_INVALID, json_dispatch_int, PTR_TO_SIZE(&error), 0 },
2730 {}
2731 };
2732
2733 if (json_dispatch(v, dispatch_table, JSON_LOG|JSON_ALLOW_EXTENSIONS, NULL) < 0)
2734 return;
2735
2736 /* First show the current question */
2737 print_question('Q', ansi_highlight_cyan(), question);
2738
2739 /* And then show the questions that led to this one in case this was a CNAME chain */
2740 print_question('C', ansi_highlight_grey(), collected_questions);
2741
2742 printf("%s%s S%s: %s\n",
2743 streq_ptr(state, "success") ? ansi_highlight_green() : ansi_highlight_red(),
2744 special_glyph(SPECIAL_GLYPH_ARROW_LEFT),
2745 ansi_normal(),
2746 strna(streq_ptr(state, "errno") ? errno_to_name(error) :
2747 streq_ptr(state, "rcode-failure") ? dns_rcode_to_string(rcode) :
2748 state));
2749
2750 print_answer(answer);
2751 }
2752
2753 static int monitor_reply(
2754 Varlink *link,
2755 JsonVariant *parameters,
2756 const char *error_id,
2757 VarlinkReplyFlags flags,
2758 void *userdata) {
2759
2760 assert(link);
2761
2762 if (error_id) {
2763 bool disconnect;
2764
2765 disconnect = streq(error_id, VARLINK_ERROR_DISCONNECTED);
2766 if (disconnect)
2767 log_info("Disconnected.");
2768 else
2769 log_error("Varlink error: %s", error_id);
2770
2771 (void) sd_event_exit(ASSERT_PTR(varlink_get_event(link)), disconnect ? EXIT_SUCCESS : EXIT_FAILURE);
2772 return 0;
2773 }
2774
2775 if (json_variant_by_key(parameters, "ready")) {
2776 /* The first message coming in will just indicate that we are now subscribed. We let our
2777 * caller know if they asked for it. Once the caller sees this they should know that we are
2778 * not going to miss any queries anymore. */
2779 (void) sd_notify(/* unset_environment=false */ false, "READY=1");
2780 return 0;
2781 }
2782
2783 if (arg_json_format_flags & JSON_FORMAT_OFF) {
2784 monitor_query_dump(parameters);
2785 printf("\n");
2786 } else
2787 json_variant_dump(parameters, arg_json_format_flags, NULL, NULL);
2788
2789 fflush(stdout);
2790
2791 return 0;
2792 }
2793
2794 static int verb_monitor(int argc, char *argv[], void *userdata) {
2795 _cleanup_(sd_event_unrefp) sd_event *event = NULL;
2796 _cleanup_(varlink_unrefp) Varlink *vl = NULL;
2797 int r, c;
2798
2799 r = sd_event_default(&event);
2800 if (r < 0)
2801 return log_error_errno(r, "Failed to get event loop: %m");
2802
2803 r = sd_event_set_signal_exit(event, true);
2804 if (r < 0)
2805 return log_error_errno(r, "Failed to enable exit on SIGINT/SIGTERM: %m");
2806
2807 r = varlink_connect_address(&vl, "/run/systemd/resolve/io.systemd.Resolve.Monitor");
2808 if (r < 0)
2809 return log_error_errno(r, "Failed to connect to query monitoring service /run/systemd/resolve/io.systemd.Resolve.Monitor: %m");
2810
2811 r = varlink_set_relative_timeout(vl, USEC_INFINITY); /* We want the monitor to run basically forever */
2812 if (r < 0)
2813 return log_error_errno(r, "Failed to set varlink time-out: %m");
2814
2815 r = varlink_attach_event(vl, event, SD_EVENT_PRIORITY_NORMAL);
2816 if (r < 0)
2817 return log_error_errno(r, "Failed to attach varlink connection to event loop: %m");
2818
2819 r = varlink_bind_reply(vl, monitor_reply);
2820 if (r < 0)
2821 return log_error_errno(r, "Failed to bind reply callback to varlink connection: %m");
2822
2823 r = varlink_observe(vl, "io.systemd.Resolve.Monitor.SubscribeQueryResults", NULL);
2824 if (r < 0)
2825 return log_error_errno(r, "Failed to issue SubscribeQueryResults() varlink call: %m");
2826
2827 r = sd_event_loop(event);
2828 if (r < 0)
2829 return log_error_errno(r, "Failed to run event loop: %m");
2830
2831 r = sd_event_get_exit_code(event, &c);
2832 if (r < 0)
2833 return log_error_errno(r, "Failed to get exit code: %m");
2834
2835 return c;
2836 }
2837
2838 static int dump_cache_item(JsonVariant *item) {
2839
2840 struct item_info {
2841 JsonVariant *key;
2842 JsonVariant *rrs;
2843 const char *type;
2844 uint64_t until;
2845 } item_info = {};
2846
2847 static const JsonDispatch dispatch_table[] = {
2848 { "key", JSON_VARIANT_OBJECT, json_dispatch_variant_noref, offsetof(struct item_info, key), JSON_MANDATORY },
2849 { "rrs", JSON_VARIANT_ARRAY, json_dispatch_variant_noref, offsetof(struct item_info, rrs), 0 },
2850 { "type", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct item_info, type), 0 },
2851 { "until", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct item_info, until), 0 },
2852 {},
2853 };
2854
2855 _cleanup_(dns_resource_key_unrefp) DnsResourceKey *k = NULL;
2856 int r, c = 0;
2857
2858 r = json_dispatch(item, dispatch_table, JSON_LOG|JSON_ALLOW_EXTENSIONS, &item_info);
2859 if (r < 0)
2860 return r;
2861
2862 r = dns_resource_key_from_json(item_info.key, &k);
2863 if (r < 0)
2864 return log_error_errno(r, "Failed to turn JSON data to resource key: %m");
2865
2866 if (item_info.type)
2867 printf("%s %s%s%s\n", DNS_RESOURCE_KEY_TO_STRING(k), ansi_highlight_red(), item_info.type, ansi_normal());
2868 else {
2869 JsonVariant *i;
2870
2871 JSON_VARIANT_ARRAY_FOREACH(i, item_info.rrs) {
2872 _cleanup_(dns_resource_record_unrefp) DnsResourceRecord *rr = NULL;
2873 _cleanup_free_ void *data = NULL;
2874 JsonVariant *raw;
2875 size_t size;
2876
2877 raw = json_variant_by_key(i, "raw");
2878 if (!raw)
2879 return log_error_errno(SYNTHETIC_ERRNO(ENOTRECOVERABLE), "raw field missing from RR JSON data.");
2880
2881 r = json_variant_unbase64(raw, &data, &size);
2882 if (r < 0)
2883 return log_error_errno(r, "Unable to decode raw RR JSON data: %m");
2884
2885 r = dns_resource_record_new_from_raw(&rr, data, size);
2886 if (r < 0)
2887 return log_error_errno(r, "Failed to parse DNS data: %m");
2888
2889 printf("%s\n", dns_resource_record_to_string(rr));
2890 c++;
2891 }
2892 }
2893
2894 return c;
2895 }
2896
2897 static int dump_cache_scope(JsonVariant *scope) {
2898
2899 struct scope_info {
2900 const char *protocol;
2901 int family;
2902 int ifindex;
2903 const char *ifname;
2904 JsonVariant *cache;
2905 } scope_info = {
2906 .family = AF_UNSPEC,
2907 };
2908 JsonVariant *i;
2909 int r, c = 0;
2910
2911 static const JsonDispatch dispatch_table[] = {
2912 { "protocol", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct scope_info, protocol), JSON_MANDATORY },
2913 { "family", _JSON_VARIANT_TYPE_INVALID, json_dispatch_int, offsetof(struct scope_info, family), 0 },
2914 { "ifindex", _JSON_VARIANT_TYPE_INVALID, json_dispatch_int, offsetof(struct scope_info, ifindex), 0 },
2915 { "ifname", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct scope_info, ifname), 0 },
2916 { "cache", JSON_VARIANT_ARRAY, json_dispatch_variant_noref, offsetof(struct scope_info, cache), JSON_MANDATORY },
2917 {},
2918 };
2919
2920 r = json_dispatch(scope, dispatch_table, JSON_LOG|JSON_ALLOW_EXTENSIONS, &scope_info);
2921 if (r < 0)
2922 return r;
2923
2924 printf("%sScope protocol=%s", ansi_underline(), scope_info.protocol);
2925
2926 if (scope_info.family != AF_UNSPEC)
2927 printf(" family=%s", af_to_name(scope_info.family));
2928
2929 if (scope_info.ifindex > 0)
2930 printf(" ifindex=%i", scope_info.ifindex);
2931 if (scope_info.ifname)
2932 printf(" ifname=%s", scope_info.ifname);
2933
2934 printf("%s\n", ansi_normal());
2935
2936 JSON_VARIANT_ARRAY_FOREACH(i, scope_info.cache) {
2937 r = dump_cache_item(i);
2938 if (r < 0)
2939 return r;
2940
2941 c += r;
2942 }
2943
2944 if (c == 0)
2945 printf("%sNo entries.%s\n\n", ansi_grey(), ansi_normal());
2946 else
2947 printf("\n");
2948
2949 return 0;
2950 }
2951
2952 static int verb_show_cache(int argc, char *argv[], void *userdata) {
2953 JsonVariant *reply = NULL, *d = NULL;
2954 _cleanup_(varlink_unrefp) Varlink *vl = NULL;
2955 int r;
2956
2957 r = varlink_connect_address(&vl, "/run/systemd/resolve/io.systemd.Resolve.Monitor");
2958 if (r < 0)
2959 return log_error_errno(r, "Failed to connect to query monitoring service /run/systemd/resolve/io.systemd.Resolve.Monitor: %m");
2960
2961 r = varlink_call(vl, "io.systemd.Resolve.Monitor.DumpCache", NULL, &reply, NULL, 0);
2962 if (r < 0)
2963 return log_error_errno(r, "Failed to issue DumpCache() varlink call: %m");
2964
2965 d = json_variant_by_key(reply, "dump");
2966 if (!d)
2967 return log_error_errno(SYNTHETIC_ERRNO(ENOTRECOVERABLE),
2968 "DumpCache() response is missing 'dump' key.");
2969
2970 if (!json_variant_is_array(d))
2971 return log_error_errno(SYNTHETIC_ERRNO(ENOTRECOVERABLE),
2972 "DumpCache() response 'dump' field not an array");
2973
2974 if (FLAGS_SET(arg_json_format_flags, JSON_FORMAT_OFF)) {
2975 JsonVariant *i;
2976
2977 JSON_VARIANT_ARRAY_FOREACH(i, d) {
2978 r = dump_cache_scope(i);
2979 if (r < 0)
2980 return r;
2981 }
2982
2983 return 0;
2984 }
2985
2986 return json_variant_dump(d, arg_json_format_flags, NULL, NULL);
2987 }
2988
2989 static int dump_server_state(JsonVariant *server) {
2990 _cleanup_(table_unrefp) Table *table = NULL;
2991 TableCell *cell;
2992
2993 struct server_state {
2994 const char *server_name;
2995 const char *type;
2996 const char *ifname;
2997 int ifindex;
2998 const char *verified_feature_level;
2999 const char *possible_feature_level;
3000 const char *dnssec_mode;
3001 bool dnssec_supported;
3002 size_t received_udp_fragment_max;
3003 uint64_t n_failed_udp;
3004 uint64_t n_failed_tcp;
3005 bool packet_truncated;
3006 bool packet_bad_opt;
3007 bool packet_rrsig_missing;
3008 bool packet_invalid;
3009 bool packet_do_off;
3010 } server_state = {
3011 .ifindex = -1,
3012 };
3013
3014 int r;
3015
3016 static const JsonDispatch dispatch_table[] = {
3017 { "Server", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct server_state, server_name), JSON_MANDATORY },
3018 { "Type", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct server_state, type), JSON_MANDATORY },
3019 { "Interface", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct server_state, ifname), 0 },
3020 { "InterfaceIndex", _JSON_VARIANT_TYPE_INVALID, json_dispatch_int, offsetof(struct server_state, ifindex), 0 },
3021 { "VerifiedFeatureLevel", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct server_state, verified_feature_level), 0 },
3022 { "PossibleFeatureLevel", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct server_state, possible_feature_level), 0 },
3023 { "DNSSECMode", JSON_VARIANT_STRING, json_dispatch_const_string, offsetof(struct server_state, dnssec_mode), JSON_MANDATORY },
3024 { "DNSSECSupported", JSON_VARIANT_BOOLEAN, json_dispatch_boolean, offsetof(struct server_state, dnssec_supported), JSON_MANDATORY },
3025 { "ReceivedUDPFragmentMax", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct server_state, received_udp_fragment_max), JSON_MANDATORY },
3026 { "FailedUDPAttempts", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct server_state, n_failed_udp), JSON_MANDATORY },
3027 { "FailedTCPAttempts", _JSON_VARIANT_TYPE_INVALID, json_dispatch_uint64, offsetof(struct server_state, n_failed_tcp), JSON_MANDATORY },
3028 { "PacketTruncated", JSON_VARIANT_BOOLEAN, json_dispatch_boolean, offsetof(struct server_state, packet_truncated), JSON_MANDATORY },
3029 { "PacketBadOpt", JSON_VARIANT_BOOLEAN, json_dispatch_boolean, offsetof(struct server_state, packet_bad_opt), JSON_MANDATORY },
3030 { "PacketRRSIGMissing", JSON_VARIANT_BOOLEAN, json_dispatch_boolean, offsetof(struct server_state, packet_rrsig_missing), JSON_MANDATORY },
3031 { "PacketInvalid", JSON_VARIANT_BOOLEAN, json_dispatch_boolean, offsetof(struct server_state, packet_invalid), JSON_MANDATORY },
3032 { "PacketDoOff", JSON_VARIANT_BOOLEAN, json_dispatch_boolean, offsetof(struct server_state, packet_do_off), JSON_MANDATORY },
3033 {},
3034 };
3035
3036 r = json_dispatch(server, dispatch_table, JSON_LOG|JSON_ALLOW_EXTENSIONS, &server_state);
3037 if (r < 0)
3038 return r;
3039
3040 table = table_new_vertical();
3041 if (!table)
3042 return log_oom();
3043
3044 assert_se(cell = table_get_cell(table, 0, 0));
3045 (void) table_set_ellipsize_percent(table, cell, 100);
3046 (void) table_set_align_percent(table, cell, 0);
3047
3048 r = table_add_cell_stringf(table, NULL, "Server: %s", server_state.server_name);
3049 if (r < 0)
3050 return table_log_add_error(r);
3051
3052 r = table_add_many(table,
3053 TABLE_EMPTY,
3054 TABLE_FIELD, "Type",
3055 TABLE_SET_ALIGN_PERCENT, 100,
3056 TABLE_STRING, server_state.type);
3057 if (r < 0)
3058 return table_log_add_error(r);
3059
3060 if (server_state.ifname) {
3061 r = table_add_many(table,
3062 TABLE_FIELD, "Interface",
3063 TABLE_STRING, server_state.ifname);
3064 if (r < 0)
3065 return table_log_add_error(r);
3066 }
3067
3068 if (server_state.ifindex >= 0) {
3069 r = table_add_many(table,
3070 TABLE_FIELD, "Interface Index",
3071 TABLE_INT, server_state.ifindex);
3072 if (r < 0)
3073 return table_log_add_error(r);
3074 }
3075
3076 if (server_state.verified_feature_level) {
3077 r = table_add_many(table,
3078 TABLE_FIELD, "Verified feature level",
3079 TABLE_STRING, server_state.verified_feature_level);
3080 if (r < 0)
3081 return table_log_add_error(r);
3082 }
3083
3084 if (server_state.possible_feature_level) {
3085 r = table_add_many(table,
3086 TABLE_FIELD, "Possible feature level",
3087 TABLE_STRING, server_state.possible_feature_level);
3088 if (r < 0)
3089 return table_log_add_error(r);
3090 }
3091
3092 r = table_add_many(table,
3093 TABLE_FIELD, "DNSSEC Mode",
3094 TABLE_STRING, server_state.dnssec_mode,
3095 TABLE_FIELD, "DNSSEC Supported",
3096 TABLE_STRING, yes_no(server_state.dnssec_supported),
3097 TABLE_FIELD, "Maximum UDP fragment size received",
3098 TABLE_UINT64, server_state.received_udp_fragment_max,
3099 TABLE_FIELD, "Failed UDP attempts",
3100 TABLE_UINT64, server_state.n_failed_udp,
3101 TABLE_FIELD, "Failed TCP attempts",
3102 TABLE_UINT64, server_state.n_failed_tcp,
3103 TABLE_FIELD, "Seen truncated packet",
3104 TABLE_STRING, yes_no(server_state.packet_truncated),
3105 TABLE_FIELD, "Seen OPT RR getting lost",
3106 TABLE_STRING, yes_no(server_state.packet_bad_opt),
3107 TABLE_FIELD, "Seen RRSIG RR missing",
3108 TABLE_STRING, yes_no(server_state.packet_rrsig_missing),
3109 TABLE_FIELD, "Seen invalid packet",
3110 TABLE_STRING, yes_no(server_state.packet_invalid),
3111 TABLE_FIELD, "Server dropped DO flag",
3112 TABLE_STRING, yes_no(server_state.packet_do_off),
3113 TABLE_SET_ALIGN_PERCENT, 0,
3114 TABLE_EMPTY, TABLE_EMPTY);
3115
3116 if (r < 0)
3117 return table_log_add_error(r);
3118
3119 r = table_print(table, NULL);
3120 if (r < 0)
3121 return table_log_print_error(r);
3122
3123 return 0;
3124 }
3125
3126 static int verb_show_server_state(int argc, char *argv[], void *userdata) {
3127 JsonVariant *reply = NULL, *d = NULL;
3128 _cleanup_(varlink_unrefp) Varlink *vl = NULL;
3129 int r;
3130
3131 r = varlink_connect_address(&vl, "/run/systemd/resolve/io.systemd.Resolve.Monitor");
3132 if (r < 0)
3133 return log_error_errno(r, "Failed to connect to query monitoring service /run/systemd/resolve/io.systemd.Resolve.Monitor: %m");
3134
3135 r = varlink_call(vl, "io.systemd.Resolve.Monitor.DumpServerState", NULL, &reply, NULL, 0);
3136 if (r < 0)
3137 return log_error_errno(r, "Failed to issue DumpServerState() varlink call: %m");
3138
3139 d = json_variant_by_key(reply, "dump");
3140 if (!d)
3141 return log_error_errno(SYNTHETIC_ERRNO(ENOTRECOVERABLE),
3142 "DumpCache() response is missing 'dump' key.");
3143
3144 if (!json_variant_is_array(d))
3145 return log_error_errno(SYNTHETIC_ERRNO(ENOTRECOVERABLE),
3146 "DumpCache() response 'dump' field not an array");
3147
3148 if (FLAGS_SET(arg_json_format_flags, JSON_FORMAT_OFF)) {
3149 JsonVariant *i;
3150
3151 JSON_VARIANT_ARRAY_FOREACH(i, d) {
3152 r = dump_server_state(i);
3153 if (r < 0)
3154 return r;
3155 }
3156
3157 return 0;
3158 }
3159
3160 return json_variant_dump(d, arg_json_format_flags, NULL, NULL);
3161 }
3162
3163 static void help_protocol_types(void) {
3164 if (arg_legend)
3165 puts("Known protocol types:");
3166 puts("dns\n"
3167 "llmnr\n"
3168 "llmnr-ipv4\n"
3169 "llmnr-ipv6\n"
3170 "mdns\n"
3171 "mdns-ipv4\n"
3172 "mdns-ipv6");
3173 }
3174
3175 static void help_dns_types(void) {
3176 if (arg_legend)
3177 puts("Known DNS RR types:");
3178
3179 DUMP_STRING_TABLE(dns_type, int, _DNS_TYPE_MAX);
3180 }
3181
3182 static void help_dns_classes(void) {
3183 if (arg_legend)
3184 puts("Known DNS RR classes:");
3185
3186 DUMP_STRING_TABLE(dns_class, int, _DNS_CLASS_MAX);
3187 }
3188
3189 static int compat_help(void) {
3190 _cleanup_free_ char *link = NULL;
3191 int r;
3192
3193 r = terminal_urlify_man("resolvectl", "1", &link);
3194 if (r < 0)
3195 return log_oom();
3196
3197 printf("%1$s [OPTIONS...] HOSTNAME|ADDRESS...\n"
3198 "%1$s [OPTIONS...] --service [[NAME] TYPE] DOMAIN\n"
3199 "%1$s [OPTIONS...] --openpgp EMAIL@DOMAIN...\n"
3200 "%1$s [OPTIONS...] --statistics\n"
3201 "%1$s [OPTIONS...] --reset-statistics\n"
3202 "\n"
3203 "%2$sResolve domain names, IPv4 and IPv6 addresses, DNS records, and services.%3$s\n\n"
3204 " -h --help Show this help\n"
3205 " --version Show package version\n"
3206 " --no-pager Do not pipe output into a pager\n"
3207 " -4 Resolve IPv4 addresses\n"
3208 " -6 Resolve IPv6 addresses\n"
3209 " -i --interface=INTERFACE Look on interface\n"
3210 " -p --protocol=PROTO|help Look via protocol\n"
3211 " -t --type=TYPE|help Query RR with DNS type\n"
3212 " -c --class=CLASS|help Query RR with DNS class\n"
3213 " --service Resolve service (SRV)\n"
3214 " --service-address=BOOL Resolve address for services (default: yes)\n"
3215 " --service-txt=BOOL Resolve TXT records for services (default: yes)\n"
3216 " --openpgp Query OpenPGP public key\n"
3217 " --tlsa Query TLS public key\n"
3218 " --cname=BOOL Follow CNAME redirects (default: yes)\n"
3219 " --search=BOOL Use search domains for single-label names\n"
3220 " (default: yes)\n"
3221 " --raw[=payload|packet] Dump the answer as binary data\n"
3222 " --legend=BOOL Print headers and additional info (default: yes)\n"
3223 " --statistics Show resolver statistics\n"
3224 " --reset-statistics Reset resolver statistics\n"
3225 " --status Show link and server status\n"
3226 " --flush-caches Flush all local DNS caches\n"
3227 " --reset-server-features\n"
3228 " Forget learnt DNS server feature levels\n"
3229 " --set-dns=SERVER Set per-interface DNS server address\n"
3230 " --set-domain=DOMAIN Set per-interface search domain\n"
3231 " --set-llmnr=MODE Set per-interface LLMNR mode\n"
3232 " --set-mdns=MODE Set per-interface MulticastDNS mode\n"
3233 " --set-dnsovertls=MODE Set per-interface DNS-over-TLS mode\n"
3234 " --set-dnssec=MODE Set per-interface DNSSEC mode\n"
3235 " --set-nta=DOMAIN Set per-interface DNSSEC NTA\n"
3236 " --revert Revert per-interface configuration\n"
3237 "\nSee the %4$s for details.\n",
3238 program_invocation_short_name,
3239 ansi_highlight(),
3240 ansi_normal(),
3241 link);
3242
3243 return 0;
3244 }
3245
3246 static int native_help(void) {
3247 _cleanup_free_ char *link = NULL;
3248 int r;
3249
3250 r = terminal_urlify_man("resolvectl", "1", &link);
3251 if (r < 0)
3252 return log_oom();
3253
3254 printf("%s [OPTIONS...] COMMAND ...\n"
3255 "\n"
3256 "%sSend control commands to the network name resolution manager, or%s\n"
3257 "%sresolve domain names, IPv4 and IPv6 addresses, DNS records, and services.%s\n"
3258 "\nCommands:\n"
3259 " query HOSTNAME|ADDRESS... Resolve domain names, IPv4 and IPv6 addresses\n"
3260 " service [[NAME] TYPE] DOMAIN Resolve service (SRV)\n"
3261 " openpgp EMAIL@DOMAIN... Query OpenPGP public key\n"
3262 " tlsa DOMAIN[:PORT]... Query TLS public key\n"
3263 " status [LINK...] Show link and server status\n"
3264 " statistics Show resolver statistics\n"
3265 " reset-statistics Reset resolver statistics\n"
3266 " flush-caches Flush all local DNS caches\n"
3267 " reset-server-features Forget learnt DNS server feature levels\n"
3268 " monitor Monitor DNS queries\n"
3269 " show-cache Show cache contents\n"
3270 " show-server-state Show servers state\n"
3271 " dns [LINK [SERVER...]] Get/set per-interface DNS server address\n"
3272 " domain [LINK [DOMAIN...]] Get/set per-interface search domain\n"
3273 " default-route [LINK [BOOL]] Get/set per-interface default route flag\n"
3274 " llmnr [LINK [MODE]] Get/set per-interface LLMNR mode\n"
3275 " mdns [LINK [MODE]] Get/set per-interface MulticastDNS mode\n"
3276 " dnsovertls [LINK [MODE]] Get/set per-interface DNS-over-TLS mode\n"
3277 " dnssec [LINK [MODE]] Get/set per-interface DNSSEC mode\n"
3278 " nta [LINK [DOMAIN...]] Get/set per-interface DNSSEC NTA\n"
3279 " revert LINK Revert per-interface configuration\n"
3280 " log-level [LEVEL] Get/set logging threshold for systemd-resolved\n"
3281 "\nOptions:\n"
3282 " -h --help Show this help\n"
3283 " --version Show package version\n"
3284 " --no-pager Do not pipe output into a pager\n"
3285 " -4 Resolve IPv4 addresses\n"
3286 " -6 Resolve IPv6 addresses\n"
3287 " -i --interface=INTERFACE Look on interface\n"
3288 " -p --protocol=PROTO|help Look via protocol\n"
3289 " -t --type=TYPE|help Query RR with DNS type\n"
3290 " -c --class=CLASS|help Query RR with DNS class\n"
3291 " --service-address=BOOL Resolve address for services (default: yes)\n"
3292 " --service-txt=BOOL Resolve TXT records for services (default: yes)\n"
3293 " --cname=BOOL Follow CNAME redirects (default: yes)\n"
3294 " --validate=BOOL Allow DNSSEC validation (default: yes)\n"
3295 " --synthesize=BOOL Allow synthetic response (default: yes)\n"
3296 " --cache=BOOL Allow response from cache (default: yes)\n"
3297 " --stale-data=BOOL Allow response from cache with stale data (default: yes)\n"
3298 " --zone=BOOL Allow response from locally registered mDNS/LLMNR\n"
3299 " records (default: yes)\n"
3300 " --trust-anchor=BOOL Allow response from local trust anchor (default:\n"
3301 " yes)\n"
3302 " --network=BOOL Allow response from network (default: yes)\n"
3303 " --search=BOOL Use search domains for single-label names (default:\n"
3304 " yes)\n"
3305 " --raw[=payload|packet] Dump the answer as binary data\n"
3306 " --legend=BOOL Print headers and additional info (default: yes)\n"
3307 " --json=MODE Output as JSON\n"
3308 " -j Same as --json=pretty on tty, --json=short\n"
3309 " otherwise\n"
3310 "\nSee the %s for details.\n",
3311 program_invocation_short_name,
3312 ansi_highlight(),
3313 ansi_normal(),
3314 ansi_highlight(),
3315 ansi_normal(),
3316 link);
3317
3318 return 0;
3319 }
3320
3321 static int verb_help(int argc, char **argv, void *userdata) {
3322 return native_help();
3323 }
3324
3325 static int compat_parse_argv(int argc, char *argv[]) {
3326 enum {
3327 ARG_VERSION = 0x100,
3328 ARG_LEGEND,
3329 ARG_SERVICE,
3330 ARG_CNAME,
3331 ARG_SERVICE_ADDRESS,
3332 ARG_SERVICE_TXT,
3333 ARG_OPENPGP,
3334 ARG_TLSA,
3335 ARG_RAW,
3336 ARG_SEARCH,
3337 ARG_STATISTICS,
3338 ARG_RESET_STATISTICS,
3339 ARG_STATUS,
3340 ARG_FLUSH_CACHES,
3341 ARG_RESET_SERVER_FEATURES,
3342 ARG_NO_PAGER,
3343 ARG_SET_DNS,
3344 ARG_SET_DOMAIN,
3345 ARG_SET_LLMNR,
3346 ARG_SET_MDNS,
3347 ARG_SET_PRIVATE,
3348 ARG_SET_DNSSEC,
3349 ARG_SET_NTA,
3350 ARG_REVERT_LINK,
3351 };
3352
3353 static const struct option options[] = {
3354 { "help", no_argument, NULL, 'h' },
3355 { "version", no_argument, NULL, ARG_VERSION },
3356 { "type", required_argument, NULL, 't' },
3357 { "class", required_argument, NULL, 'c' },
3358 { "legend", required_argument, NULL, ARG_LEGEND },
3359 { "interface", required_argument, NULL, 'i' },
3360 { "protocol", required_argument, NULL, 'p' },
3361 { "cname", required_argument, NULL, ARG_CNAME },
3362 { "service", no_argument, NULL, ARG_SERVICE },
3363 { "service-address", required_argument, NULL, ARG_SERVICE_ADDRESS },
3364 { "service-txt", required_argument, NULL, ARG_SERVICE_TXT },
3365 { "openpgp", no_argument, NULL, ARG_OPENPGP },
3366 { "tlsa", optional_argument, NULL, ARG_TLSA },
3367 { "raw", optional_argument, NULL, ARG_RAW },
3368 { "search", required_argument, NULL, ARG_SEARCH },
3369 { "statistics", no_argument, NULL, ARG_STATISTICS, },
3370 { "reset-statistics", no_argument, NULL, ARG_RESET_STATISTICS },
3371 { "status", no_argument, NULL, ARG_STATUS },
3372 { "flush-caches", no_argument, NULL, ARG_FLUSH_CACHES },
3373 { "reset-server-features", no_argument, NULL, ARG_RESET_SERVER_FEATURES },
3374 { "no-pager", no_argument, NULL, ARG_NO_PAGER },
3375 { "set-dns", required_argument, NULL, ARG_SET_DNS },
3376 { "set-domain", required_argument, NULL, ARG_SET_DOMAIN },
3377 { "set-llmnr", required_argument, NULL, ARG_SET_LLMNR },
3378 { "set-mdns", required_argument, NULL, ARG_SET_MDNS },
3379 { "set-dnsovertls", required_argument, NULL, ARG_SET_PRIVATE },
3380 { "set-dnssec", required_argument, NULL, ARG_SET_DNSSEC },
3381 { "set-nta", required_argument, NULL, ARG_SET_NTA },
3382 { "revert", no_argument, NULL, ARG_REVERT_LINK },
3383 {}
3384 };
3385
3386 int c, r;
3387
3388 assert(argc >= 0);
3389 assert(argv);
3390
3391 while ((c = getopt_long(argc, argv, "h46i:t:c:p:", options, NULL)) >= 0)
3392 switch (c) {
3393
3394 case 'h':
3395 return compat_help();
3396
3397 case ARG_VERSION:
3398 return version();
3399
3400 case '4':
3401 arg_family = AF_INET;
3402 break;
3403
3404 case '6':
3405 arg_family = AF_INET6;
3406 break;
3407
3408 case 'i':
3409 r = ifname_mangle(optarg);
3410 if (r < 0)
3411 return r;
3412 break;
3413
3414 case 't':
3415 if (streq(optarg, "help")) {
3416 help_dns_types();
3417 return 0;
3418 }
3419
3420 r = dns_type_from_string(optarg);
3421 if (r < 0)
3422 return log_error_errno(r, "Failed to parse RR record type %s: %m", optarg);
3423
3424 arg_type = (uint16_t) r;
3425 assert((int) arg_type == r);
3426
3427 arg_mode = MODE_RESOLVE_RECORD;
3428 break;
3429
3430 case 'c':
3431 if (streq(optarg, "help")) {
3432 help_dns_classes();
3433 return 0;
3434 }
3435
3436 r = dns_class_from_string(optarg);
3437 if (r < 0)
3438 return log_error_errno(r, "Failed to parse RR record class %s: %m", optarg);
3439
3440 arg_class = (uint16_t) r;
3441 assert((int) arg_class == r);
3442
3443 break;
3444
3445 case ARG_LEGEND:
3446 r = parse_boolean_argument("--legend=", optarg, &arg_legend);
3447 if (r < 0)
3448 return r;
3449 break;
3450
3451 case 'p':
3452 if (streq(optarg, "help")) {
3453 help_protocol_types();
3454 return 0;
3455 } else if (streq(optarg, "dns"))
3456 arg_flags |= SD_RESOLVED_DNS;
3457 else if (streq(optarg, "llmnr"))
3458 arg_flags |= SD_RESOLVED_LLMNR;
3459 else if (streq(optarg, "llmnr-ipv4"))
3460 arg_flags |= SD_RESOLVED_LLMNR_IPV4;
3461 else if (streq(optarg, "llmnr-ipv6"))
3462 arg_flags |= SD_RESOLVED_LLMNR_IPV6;
3463 else if (streq(optarg, "mdns"))
3464 arg_flags |= SD_RESOLVED_MDNS;
3465 else if (streq(optarg, "mdns-ipv4"))
3466 arg_flags |= SD_RESOLVED_MDNS_IPV4;
3467 else if (streq(optarg, "mdns-ipv6"))
3468 arg_flags |= SD_RESOLVED_MDNS_IPV6;
3469 else
3470 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3471 "Unknown protocol specifier: %s", optarg);
3472
3473 break;
3474
3475 case ARG_SERVICE:
3476 arg_mode = MODE_RESOLVE_SERVICE;
3477 break;
3478
3479 case ARG_OPENPGP:
3480 arg_mode = MODE_RESOLVE_OPENPGP;
3481 break;
3482
3483 case ARG_TLSA:
3484 arg_mode = MODE_RESOLVE_TLSA;
3485 if (!optarg || service_family_is_valid(optarg))
3486 arg_service_family = optarg;
3487 else
3488 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3489 "Unknown service family \"%s\".", optarg);
3490 break;
3491
3492 case ARG_RAW:
3493 if (on_tty())
3494 return log_error_errno(SYNTHETIC_ERRNO(ENOTTY),
3495 "Refusing to write binary data to tty.");
3496
3497 if (optarg == NULL || streq(optarg, "payload"))
3498 arg_raw = RAW_PAYLOAD;
3499 else if (streq(optarg, "packet"))
3500 arg_raw = RAW_PACKET;
3501 else
3502 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3503 "Unknown --raw specifier \"%s\".",
3504 optarg);
3505
3506 arg_legend = false;
3507 break;
3508
3509 case ARG_CNAME:
3510 r = parse_boolean_argument("--cname=", optarg, NULL);
3511 if (r < 0)
3512 return r;
3513 SET_FLAG(arg_flags, SD_RESOLVED_NO_CNAME, r == 0);
3514 break;
3515
3516 case ARG_SERVICE_ADDRESS:
3517 r = parse_boolean_argument("--service-address=", optarg, NULL);
3518 if (r < 0)
3519 return r;
3520 SET_FLAG(arg_flags, SD_RESOLVED_NO_ADDRESS, r == 0);
3521 break;
3522
3523 case ARG_SERVICE_TXT:
3524 r = parse_boolean_argument("--service-txt=", optarg, NULL);
3525 if (r < 0)
3526 return r;
3527 SET_FLAG(arg_flags, SD_RESOLVED_NO_TXT, r == 0);
3528 break;
3529
3530 case ARG_SEARCH:
3531 r = parse_boolean_argument("--search=", optarg, NULL);
3532 if (r < 0)
3533 return r;
3534 SET_FLAG(arg_flags, SD_RESOLVED_NO_SEARCH, r == 0);
3535 break;
3536
3537 case ARG_STATISTICS:
3538 arg_mode = MODE_STATISTICS;
3539 break;
3540
3541 case ARG_RESET_STATISTICS:
3542 arg_mode = MODE_RESET_STATISTICS;
3543 break;
3544
3545 case ARG_FLUSH_CACHES:
3546 arg_mode = MODE_FLUSH_CACHES;
3547 break;
3548
3549 case ARG_RESET_SERVER_FEATURES:
3550 arg_mode = MODE_RESET_SERVER_FEATURES;
3551 break;
3552
3553 case ARG_STATUS:
3554 arg_mode = MODE_STATUS;
3555 break;
3556
3557 case ARG_NO_PAGER:
3558 arg_pager_flags |= PAGER_DISABLE;
3559 break;
3560
3561 case ARG_SET_DNS:
3562 r = strv_extend(&arg_set_dns, optarg);
3563 if (r < 0)
3564 return log_oom();
3565
3566 arg_mode = MODE_SET_LINK;
3567 break;
3568
3569 case ARG_SET_DOMAIN:
3570 r = strv_extend(&arg_set_domain, optarg);
3571 if (r < 0)
3572 return log_oom();
3573
3574 arg_mode = MODE_SET_LINK;
3575 break;
3576
3577 case ARG_SET_LLMNR:
3578 arg_set_llmnr = optarg;
3579 arg_mode = MODE_SET_LINK;
3580 break;
3581
3582 case ARG_SET_MDNS:
3583 arg_set_mdns = optarg;
3584 arg_mode = MODE_SET_LINK;
3585 break;
3586
3587 case ARG_SET_PRIVATE:
3588 arg_set_dns_over_tls = optarg;
3589 arg_mode = MODE_SET_LINK;
3590 break;
3591
3592 case ARG_SET_DNSSEC:
3593 arg_set_dnssec = optarg;
3594 arg_mode = MODE_SET_LINK;
3595 break;
3596
3597 case ARG_SET_NTA:
3598 r = strv_extend(&arg_set_nta, optarg);
3599 if (r < 0)
3600 return log_oom();
3601
3602 arg_mode = MODE_SET_LINK;
3603 break;
3604
3605 case ARG_REVERT_LINK:
3606 arg_mode = MODE_REVERT_LINK;
3607 break;
3608
3609 case '?':
3610 return -EINVAL;
3611
3612 default:
3613 assert_not_reached();
3614 }
3615
3616 if (arg_type == 0 && arg_class != 0)
3617 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3618 "--class= may only be used in conjunction with --type=.");
3619
3620 if (arg_type != 0 && arg_mode == MODE_RESOLVE_SERVICE)
3621 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3622 "--service and --type= may not be combined.");
3623
3624 if (arg_type != 0 && arg_class == 0)
3625 arg_class = DNS_CLASS_IN;
3626
3627 if (arg_class != 0 && arg_type == 0)
3628 arg_type = DNS_TYPE_A;
3629
3630 if (IN_SET(arg_mode, MODE_SET_LINK, MODE_REVERT_LINK)) {
3631
3632 if (arg_ifindex <= 0)
3633 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3634 "--set-dns=, --set-domain=, --set-llmnr=, --set-mdns=, --set-dnsovertls=, --set-dnssec=, --set-nta= and --revert require --interface=.");
3635 }
3636
3637 return 1 /* work to do */;
3638 }
3639
3640 static int native_parse_argv(int argc, char *argv[]) {
3641 enum {
3642 ARG_VERSION = 0x100,
3643 ARG_LEGEND,
3644 ARG_CNAME,
3645 ARG_VALIDATE,
3646 ARG_SYNTHESIZE,
3647 ARG_CACHE,
3648 ARG_ZONE,
3649 ARG_TRUST_ANCHOR,
3650 ARG_NETWORK,
3651 ARG_SERVICE_ADDRESS,
3652 ARG_SERVICE_TXT,
3653 ARG_RAW,
3654 ARG_SEARCH,
3655 ARG_NO_PAGER,
3656 ARG_JSON,
3657 ARG_STALE_DATA
3658 };
3659
3660 static const struct option options[] = {
3661 { "help", no_argument, NULL, 'h' },
3662 { "version", no_argument, NULL, ARG_VERSION },
3663 { "type", required_argument, NULL, 't' },
3664 { "class", required_argument, NULL, 'c' },
3665 { "legend", required_argument, NULL, ARG_LEGEND },
3666 { "interface", required_argument, NULL, 'i' },
3667 { "protocol", required_argument, NULL, 'p' },
3668 { "cname", required_argument, NULL, ARG_CNAME },
3669 { "validate", required_argument, NULL, ARG_VALIDATE },
3670 { "synthesize", required_argument, NULL, ARG_SYNTHESIZE },
3671 { "cache", required_argument, NULL, ARG_CACHE },
3672 { "zone", required_argument, NULL, ARG_ZONE },
3673 { "trust-anchor", required_argument, NULL, ARG_TRUST_ANCHOR },
3674 { "network", required_argument, NULL, ARG_NETWORK },
3675 { "service-address", required_argument, NULL, ARG_SERVICE_ADDRESS },
3676 { "service-txt", required_argument, NULL, ARG_SERVICE_TXT },
3677 { "raw", optional_argument, NULL, ARG_RAW },
3678 { "search", required_argument, NULL, ARG_SEARCH },
3679 { "no-pager", no_argument, NULL, ARG_NO_PAGER },
3680 { "json", required_argument, NULL, ARG_JSON },
3681 { "stale-data", required_argument, NULL, ARG_STALE_DATA },
3682 {}
3683 };
3684
3685 int c, r;
3686
3687 assert(argc >= 0);
3688 assert(argv);
3689
3690 while ((c = getopt_long(argc, argv, "h46i:t:c:p:j", options, NULL)) >= 0)
3691 switch (c) {
3692
3693 case 'h':
3694 return native_help();
3695
3696 case ARG_VERSION:
3697 return version();
3698
3699 case '4':
3700 arg_family = AF_INET;
3701 break;
3702
3703 case '6':
3704 arg_family = AF_INET6;
3705 break;
3706
3707 case 'i':
3708 r = ifname_mangle(optarg);
3709 if (r < 0)
3710 return r;
3711 break;
3712
3713 case 't':
3714 if (streq(optarg, "help")) {
3715 help_dns_types();
3716 return 0;
3717 }
3718
3719 r = dns_type_from_string(optarg);
3720 if (r < 0)
3721 return log_error_errno(r, "Failed to parse RR record type %s: %m", optarg);
3722
3723 arg_type = (uint16_t) r;
3724 assert((int) arg_type == r);
3725
3726 break;
3727
3728 case 'c':
3729 if (streq(optarg, "help")) {
3730 help_dns_classes();
3731 return 0;
3732 }
3733
3734 r = dns_class_from_string(optarg);
3735 if (r < 0)
3736 return log_error_errno(r, "Failed to parse RR record class %s: %m", optarg);
3737
3738 arg_class = (uint16_t) r;
3739 assert((int) arg_class == r);
3740
3741 break;
3742
3743 case ARG_LEGEND:
3744 r = parse_boolean_argument("--legend=", optarg, &arg_legend);
3745 if (r < 0)
3746 return r;
3747 break;
3748
3749 case 'p':
3750 if (streq(optarg, "help")) {
3751 help_protocol_types();
3752 return 0;
3753 } else if (streq(optarg, "dns"))
3754 arg_flags |= SD_RESOLVED_DNS;
3755 else if (streq(optarg, "llmnr"))
3756 arg_flags |= SD_RESOLVED_LLMNR;
3757 else if (streq(optarg, "llmnr-ipv4"))
3758 arg_flags |= SD_RESOLVED_LLMNR_IPV4;
3759 else if (streq(optarg, "llmnr-ipv6"))
3760 arg_flags |= SD_RESOLVED_LLMNR_IPV6;
3761 else if (streq(optarg, "mdns"))
3762 arg_flags |= SD_RESOLVED_MDNS;
3763 else if (streq(optarg, "mdns-ipv4"))
3764 arg_flags |= SD_RESOLVED_MDNS_IPV4;
3765 else if (streq(optarg, "mdns-ipv6"))
3766 arg_flags |= SD_RESOLVED_MDNS_IPV6;
3767 else
3768 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3769 "Unknown protocol specifier: %s",
3770 optarg);
3771
3772 break;
3773
3774 case ARG_RAW:
3775 if (on_tty())
3776 return log_error_errno(SYNTHETIC_ERRNO(ENOTTY),
3777 "Refusing to write binary data to tty.");
3778
3779 if (optarg == NULL || streq(optarg, "payload"))
3780 arg_raw = RAW_PAYLOAD;
3781 else if (streq(optarg, "packet"))
3782 arg_raw = RAW_PACKET;
3783 else
3784 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3785 "Unknown --raw specifier \"%s\".",
3786 optarg);
3787
3788 arg_legend = false;
3789 break;
3790
3791 case ARG_CNAME:
3792 r = parse_boolean_argument("--cname=", optarg, NULL);
3793 if (r < 0)
3794 return r;
3795 SET_FLAG(arg_flags, SD_RESOLVED_NO_CNAME, r == 0);
3796 break;
3797
3798 case ARG_VALIDATE:
3799 r = parse_boolean_argument("--validate=", optarg, NULL);
3800 if (r < 0)
3801 return r;
3802 SET_FLAG(arg_flags, SD_RESOLVED_NO_VALIDATE, r == 0);
3803 break;
3804
3805 case ARG_SYNTHESIZE:
3806 r = parse_boolean_argument("--synthesize=", optarg, NULL);
3807 if (r < 0)
3808 return r;
3809 SET_FLAG(arg_flags, SD_RESOLVED_NO_SYNTHESIZE, r == 0);
3810 break;
3811
3812 case ARG_CACHE:
3813 r = parse_boolean_argument("--cache=", optarg, NULL);
3814 if (r < 0)
3815 return r;
3816 SET_FLAG(arg_flags, SD_RESOLVED_NO_CACHE, r == 0);
3817 break;
3818
3819 case ARG_STALE_DATA:
3820 r = parse_boolean_argument("--stale-data=", optarg, NULL);
3821 if (r < 0)
3822 return r;
3823 SET_FLAG(arg_flags, SD_RESOLVED_NO_STALE, r == 0);
3824 break;
3825
3826 case ARG_ZONE:
3827 r = parse_boolean_argument("--zone=", optarg, NULL);
3828 if (r < 0)
3829 return r;
3830 SET_FLAG(arg_flags, SD_RESOLVED_NO_ZONE, r == 0);
3831 break;
3832
3833 case ARG_TRUST_ANCHOR:
3834 r = parse_boolean_argument("--trust-anchor=", optarg, NULL);
3835 if (r < 0)
3836 return r;
3837 SET_FLAG(arg_flags, SD_RESOLVED_NO_TRUST_ANCHOR, r == 0);
3838 break;
3839
3840 case ARG_NETWORK:
3841 r = parse_boolean_argument("--network=", optarg, NULL);
3842 if (r < 0)
3843 return r;
3844 SET_FLAG(arg_flags, SD_RESOLVED_NO_NETWORK, r == 0);
3845 break;
3846
3847 case ARG_SERVICE_ADDRESS:
3848 r = parse_boolean_argument("--service-address=", optarg, NULL);
3849 if (r < 0)
3850 return r;
3851 SET_FLAG(arg_flags, SD_RESOLVED_NO_ADDRESS, r == 0);
3852 break;
3853
3854 case ARG_SERVICE_TXT:
3855 r = parse_boolean_argument("--service-txt=", optarg, NULL);
3856 if (r < 0)
3857 return r;
3858 SET_FLAG(arg_flags, SD_RESOLVED_NO_TXT, r == 0);
3859 break;
3860
3861 case ARG_SEARCH:
3862 r = parse_boolean_argument("--search=", optarg, NULL);
3863 if (r < 0)
3864 return r;
3865 SET_FLAG(arg_flags, SD_RESOLVED_NO_SEARCH, r == 0);
3866 break;
3867
3868 case ARG_NO_PAGER:
3869 arg_pager_flags |= PAGER_DISABLE;
3870 break;
3871
3872 case ARG_JSON:
3873 r = parse_json_argument(optarg, &arg_json_format_flags);
3874 if (r <= 0)
3875 return r;
3876
3877 break;
3878
3879 case 'j':
3880 arg_json_format_flags = JSON_FORMAT_PRETTY_AUTO|JSON_FORMAT_COLOR_AUTO;
3881 break;
3882
3883 case '?':
3884 return -EINVAL;
3885
3886 default:
3887 assert_not_reached();
3888 }
3889
3890 if (arg_type == 0 && arg_class != 0)
3891 return log_error_errno(SYNTHETIC_ERRNO(EINVAL),
3892 "--class= may only be used in conjunction with --type=.");
3893
3894 if (arg_type != 0 && arg_class == 0)
3895 arg_class = DNS_CLASS_IN;
3896
3897 if (arg_class != 0 && arg_type == 0)
3898 arg_type = DNS_TYPE_A;
3899
3900 return 1 /* work to do */;
3901 }
3902
3903 static int native_main(int argc, char *argv[], sd_bus *bus) {
3904
3905 static const Verb verbs[] = {
3906 { "help", VERB_ANY, VERB_ANY, 0, verb_help },
3907 { "status", VERB_ANY, VERB_ANY, VERB_DEFAULT, verb_status },
3908 { "query", 2, VERB_ANY, 0, verb_query },
3909 { "service", 2, 4, 0, verb_service },
3910 { "openpgp", 2, VERB_ANY, 0, verb_openpgp },
3911 { "tlsa", 2, VERB_ANY, 0, verb_tlsa },
3912 { "statistics", VERB_ANY, 1, 0, show_statistics },
3913 { "reset-statistics", VERB_ANY, 1, 0, reset_statistics },
3914 { "flush-caches", VERB_ANY, 1, 0, flush_caches },
3915 { "reset-server-features", VERB_ANY, 1, 0, reset_server_features },
3916 { "dns", VERB_ANY, VERB_ANY, 0, verb_dns },
3917 { "domain", VERB_ANY, VERB_ANY, 0, verb_domain },
3918 { "default-route", VERB_ANY, 3, 0, verb_default_route },
3919 { "llmnr", VERB_ANY, 3, 0, verb_llmnr },
3920 { "mdns", VERB_ANY, 3, 0, verb_mdns },
3921 { "dnsovertls", VERB_ANY, 3, 0, verb_dns_over_tls },
3922 { "dnssec", VERB_ANY, 3, 0, verb_dnssec },
3923 { "nta", VERB_ANY, VERB_ANY, 0, verb_nta },
3924 { "revert", VERB_ANY, 2, 0, verb_revert_link },
3925 { "log-level", VERB_ANY, 2, 0, verb_log_level },
3926 { "monitor", VERB_ANY, 1, 0, verb_monitor },
3927 { "show-cache", VERB_ANY, 1, 0, verb_show_cache },
3928 { "show-server-state", VERB_ANY, 1, 0, verb_show_server_state},
3929 {}
3930 };
3931
3932 return dispatch_verb(argc, argv, verbs, bus);
3933 }
3934
3935 static int translate(const char *verb, const char *single_arg, size_t num_args, char **args, sd_bus *bus) {
3936 char **fake, **p;
3937 size_t num;
3938
3939 assert(verb);
3940 assert(num_args == 0 || args);
3941
3942 num = !!single_arg + num_args + 1;
3943
3944 p = fake = newa0(char *, num + 1);
3945 *p++ = (char *) verb;
3946 if (single_arg)
3947 *p++ = (char *) single_arg;
3948 for (size_t i = 0; i < num_args; i++)
3949 *p++ = args[i];
3950
3951 optind = 0;
3952 return native_main((int) num, fake, bus);
3953 }
3954
3955 static int compat_main(int argc, char *argv[], sd_bus *bus) {
3956 int r = 0;
3957
3958 switch (arg_mode) {
3959 case MODE_RESOLVE_HOST:
3960 case MODE_RESOLVE_RECORD:
3961 return translate("query", NULL, argc - optind, argv + optind, bus);
3962
3963 case MODE_RESOLVE_SERVICE:
3964 return translate("service", NULL, argc - optind, argv + optind, bus);
3965
3966 case MODE_RESOLVE_OPENPGP:
3967 return translate("openpgp", NULL, argc - optind, argv + optind, bus);
3968
3969 case MODE_RESOLVE_TLSA:
3970 return translate("tlsa", arg_service_family, argc - optind, argv + optind, bus);
3971
3972 case MODE_STATISTICS:
3973 return translate("statistics", NULL, 0, NULL, bus);
3974
3975 case MODE_RESET_STATISTICS:
3976 return translate("reset-statistics", NULL, 0, NULL, bus);
3977
3978 case MODE_FLUSH_CACHES:
3979 return translate("flush-caches", NULL, 0, NULL, bus);
3980
3981 case MODE_RESET_SERVER_FEATURES:
3982 return translate("reset-server-features", NULL, 0, NULL, bus);
3983
3984 case MODE_STATUS:
3985 return translate("status", NULL, argc - optind, argv + optind, bus);
3986
3987 case MODE_SET_LINK:
3988 assert(arg_ifname);
3989
3990 if (arg_set_dns) {
3991 r = translate("dns", arg_ifname, strv_length(arg_set_dns), arg_set_dns, bus);
3992 if (r < 0)
3993 return r;
3994 }
3995
3996 if (arg_set_domain) {
3997 r = translate("domain", arg_ifname, strv_length(arg_set_domain), arg_set_domain, bus);
3998 if (r < 0)
3999 return r;
4000 }
4001
4002 if (arg_set_nta) {
4003 r = translate("nta", arg_ifname, strv_length(arg_set_nta), arg_set_nta, bus);
4004 if (r < 0)
4005 return r;
4006 }
4007
4008 if (arg_set_llmnr) {
4009 r = translate("llmnr", arg_ifname, 1, (char **) &arg_set_llmnr, bus);
4010 if (r < 0)
4011 return r;
4012 }
4013
4014 if (arg_set_mdns) {
4015 r = translate("mdns", arg_ifname, 1, (char **) &arg_set_mdns, bus);
4016 if (r < 0)
4017 return r;
4018 }
4019
4020 if (arg_set_dns_over_tls) {
4021 r = translate("dnsovertls", arg_ifname, 1, (char **) &arg_set_dns_over_tls, bus);
4022 if (r < 0)
4023 return r;
4024 }
4025
4026 if (arg_set_dnssec) {
4027 r = translate("dnssec", arg_ifname, 1, (char **) &arg_set_dnssec, bus);
4028 if (r < 0)
4029 return r;
4030 }
4031
4032 return r;
4033
4034 case MODE_REVERT_LINK:
4035 assert(arg_ifname);
4036
4037 return translate("revert", arg_ifname, 0, NULL, bus);
4038
4039 case _MODE_INVALID:
4040 assert_not_reached();
4041 }
4042
4043 return 0;
4044 }
4045
4046 static int run(int argc, char **argv) {
4047 _cleanup_(sd_bus_flush_close_unrefp) sd_bus *bus = NULL;
4048 bool compat = false;
4049 int r;
4050
4051 setlocale(LC_ALL, "");
4052 log_setup();
4053
4054 if (invoked_as(argv, "resolvconf")) {
4055 compat = true;
4056 r = resolvconf_parse_argv(argc, argv);
4057 } else if (invoked_as(argv, "systemd-resolve")) {
4058 compat = true;
4059 r = compat_parse_argv(argc, argv);
4060 } else
4061 r = native_parse_argv(argc, argv);
4062 if (r <= 0)
4063 return r;
4064
4065 r = sd_bus_open_system(&bus);
4066 if (r < 0)
4067 return log_error_errno(r, "sd_bus_open_system: %m");
4068
4069 if (compat)
4070 return compat_main(argc, argv, bus);
4071
4072 return native_main(argc, argv, bus);
4073 }
4074
4075 DEFINE_MAIN_FUNCTION(run);
A System and Session Manager (ALT Linux package)