1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
3 #include <netinet/in.h>
4 #include <linux/if_arp.h>
7 #include "sd-dhcp-server.h"
9 #include "dhcp-protocol.h"
12 #include "network-common.h"
13 #include "networkd-address.h"
14 #include "networkd-dhcp-server-bus.h"
15 #include "networkd-dhcp-server-static-lease.h"
16 #include "networkd-dhcp-server.h"
17 #include "networkd-link.h"
18 #include "networkd-manager.h"
19 #include "networkd-network.h"
20 #include "networkd-queue.h"
21 #include "networkd-route-util.h"
22 #include "parse-util.h"
23 #include "path-util.h"
24 #include "socket-netlink.h"
25 #include "string-table.h"
26 #include "string-util.h"
29 static bool link_dhcp4_server_enabled(Link
*link
) {
32 if (link
->flags
& IFF_LOOPBACK
)
38 if (link
->iftype
== ARPHRD_CAN
)
41 return link
->network
->dhcp_server
;
44 int network_adjust_dhcp_server(Network
*network
, Set
**addresses
) {
50 if (!network
->dhcp_server
)
54 log_warning("%s: DHCPServer= is enabled for bond slave. Disabling DHCP server.",
56 network
->dhcp_server
= false;
60 assert(network
->dhcp_server_address_prefixlen
<= 32);
62 if (network
->dhcp_server_address_prefixlen
== 0) {
65 /* If the server address is not specified, then find suitable static address. */
67 ORDERED_HASHMAP_FOREACH(address
, network
->addresses_by_section
) {
68 assert(!section_is_invalid(address
->section
));
70 if (address
->family
!= AF_INET
)
73 if (in4_addr_is_localhost(&address
->in_addr
.in
))
76 if (in4_addr_is_link_local(&address
->in_addr
.in
))
79 if (in4_addr_is_set(&address
->in_addr_peer
.in
))
82 /* TODO: check if the prefix length is small enough for the pool. */
84 network
->dhcp_server_address
= address
;
87 if (!network
->dhcp_server_address
) {
88 log_warning("%s: DHCPServer= is enabled, but no suitable static address configured. "
89 "Disabling DHCP server.",
91 network
->dhcp_server
= false;
96 _cleanup_(address_unrefp
) Address
*a
= NULL
;
100 /* TODO: check if the prefix length is small enough for the pool. */
102 /* If an address is explicitly specified, then check if the corresponding [Address] section
103 * is configured, and add one if not. */
105 existing
= set_get(*addresses
,
108 .in_addr
.in
= network
->dhcp_server_address_in_addr
,
109 .prefixlen
= network
->dhcp_server_address_prefixlen
,
112 /* Corresponding [Address] section already exists. */
113 network
->dhcp_server_address
= existing
;
117 r
= ordered_hashmap_by_section_find_unused_line(network
->addresses_by_section
, network
->filename
, &line
);
119 return log_warning_errno(r
, "%s: Failed to find unused line number for DHCP server address: %m",
122 r
= address_new_static(network
, network
->filename
, line
, &a
);
124 return log_warning_errno(r
, "%s: Failed to add new static address object for DHCP server: %m",
128 a
->prefixlen
= network
->dhcp_server_address_prefixlen
;
129 a
->in_addr
.in
= network
->dhcp_server_address_in_addr
;
130 a
->requested_as_null
= !in4_addr_is_set(&network
->dhcp_server_address_in_addr
);
132 r
= address_section_verify(a
);
136 r
= set_ensure_put(addresses
, &address_hash_ops
, a
);
141 network
->dhcp_server_address
= TAKE_PTR(a
);
147 int link_start_dhcp4_server(Link
*link
) {
151 assert(link
->manager
);
153 if (!link
->dhcp_server
)
154 return 0; /* Not configured yet. */
156 if (!link_has_carrier(link
))
159 if (sd_dhcp_server_is_running(link
->dhcp_server
))
160 return 0; /* already started. */
162 /* TODO: Maybe, also check the system time is synced. If the system does not have RTC battery, then
163 * the realtime clock in not usable in the early boot stage, and all saved leases may be wrongly
164 * handled as expired and dropped. */
165 if (!sd_dhcp_server_is_in_relay_mode(link
->dhcp_server
)) {
167 if (link
->manager
->persistent_storage_fd
< 0)
168 return 0; /* persistent storage is not ready. */
170 _cleanup_free_
char *lease_file
= path_join("dhcp-server-lease", link
->ifname
);
174 r
= sd_dhcp_server_set_lease_file(link
->dhcp_server
, link
->manager
->persistent_storage_fd
, lease_file
);
179 r
= sd_dhcp_server_start(link
->dhcp_server
);
183 log_link_debug(link
, "Offering DHCPv4 leases");
187 void manager_toggle_dhcp4_server_state(Manager
*manager
, bool start
) {
193 HASHMAP_FOREACH(link
, manager
->links_by_index
) {
194 if (!link
->dhcp_server
)
196 if (sd_dhcp_server_is_in_relay_mode(link
->dhcp_server
))
199 /* Even if 'start' is true, first we need to stop the server. Otherwise, we cannot (re)set
200 * the lease file in link_start_dhcp4_server(). */
201 r
= sd_dhcp_server_stop(link
->dhcp_server
);
203 log_link_debug_errno(link
, r
, "Failed to stop DHCP server, ignoring: %m");
208 r
= link_start_dhcp4_server(link
);
210 log_link_debug_errno(link
, r
, "Failed to start DHCP server, ignoring: %m");
214 static int dhcp_server_find_uplink(Link
*link
, Link
**ret
) {
217 if (link
->network
->dhcp_server_uplink_name
)
218 return link_get_by_name(link
->manager
, link
->network
->dhcp_server_uplink_name
, ret
);
220 if (link
->network
->dhcp_server_uplink_index
> 0)
221 return link_get_by_index(link
->manager
, link
->network
->dhcp_server_uplink_index
, ret
);
223 if (link
->network
->dhcp_server_uplink_index
== UPLINK_INDEX_AUTO
) {
224 /* It is not necessary to propagate error in automatic selection. */
225 if (manager_find_uplink(link
->manager
, AF_INET
, link
, ret
) < 0)
234 static int link_push_uplink_to_dhcp_server(
236 sd_dhcp_lease_server_type_t what
,
239 _cleanup_free_
struct in_addr
*addresses
= NULL
;
240 bool use_dhcp_lease_data
= true;
241 size_t n_addresses
= 0;
247 assert(link
->network
);
249 log_link_debug(link
, "Copying %s from link", dhcp_lease_server_type_to_string(what
));
253 case SD_DHCP_LEASE_DNS
:
254 /* For DNS we have a special case. We the data configured explicitly locally along with the
255 * data from the DHCP lease. */
257 for (unsigned i
= 0; i
< link
->network
->n_dns
; i
++) {
260 /* Only look for IPv4 addresses */
261 if (link
->network
->dns
[i
]->family
!= AF_INET
)
264 ia
= link
->network
->dns
[i
]->address
.in
;
266 /* Never propagate obviously borked data */
267 if (in4_addr_is_null(&ia
) || in4_addr_is_localhost(&ia
))
270 if (!GREEDY_REALLOC(addresses
, n_addresses
+ 1))
273 addresses
[n_addresses
++] = ia
;
276 use_dhcp_lease_data
= link
->network
->dhcp_use_dns
;
279 case SD_DHCP_LEASE_NTP
: {
280 /* For NTP things are similar, but for NTP hostnames can be configured too, which we cannot
281 * propagate via DHCP. Hence let's only propagate those which are IP addresses. */
283 STRV_FOREACH(i
, link
->network
->ntp
) {
284 union in_addr_union ia
;
286 if (in_addr_from_string(AF_INET
, *i
, &ia
) < 0)
289 /* Never propagate obviously borked data */
290 if (in4_addr_is_null(&ia
.in
) || in4_addr_is_localhost(&ia
.in
))
293 if (!GREEDY_REALLOC(addresses
, n_addresses
+ 1))
296 addresses
[n_addresses
++] = ia
.in
;
299 use_dhcp_lease_data
= link
->network
->dhcp_use_ntp
;
303 case SD_DHCP_LEASE_SIP
:
305 /* For SIP we don't allow explicit, local configuration, but there's control whether to use the data */
306 use_dhcp_lease_data
= link
->network
->dhcp_use_sip
;
309 case SD_DHCP_LEASE_POP3
:
310 case SD_DHCP_LEASE_SMTP
:
311 case SD_DHCP_LEASE_LPR
:
312 /* For the other server types we currently do not allow local configuration of server data,
313 * since there are typically no local consumers of the data. */
317 assert_not_reached();
320 if (use_dhcp_lease_data
&& link
->dhcp_lease
) {
321 const struct in_addr
*da
;
323 int n
= sd_dhcp_lease_get_servers(link
->dhcp_lease
, what
, &da
);
325 if (!GREEDY_REALLOC(addresses
, n_addresses
+ n
))
328 for (int j
= 0; j
< n
; j
++)
329 if (in4_addr_is_non_local(&da
[j
]))
330 addresses
[n_addresses
++] = da
[j
];
334 if (n_addresses
<= 0)
337 return sd_dhcp_server_set_servers(s
, what
, addresses
, n_addresses
);
340 static int dhcp4_server_parse_dns_server_string_and_warn(
342 struct in_addr
**addresses
,
343 size_t *n_addresses
) {
346 _cleanup_free_
char *word
= NULL
, *server_name
= NULL
;
347 union in_addr_union address
;
348 int family
, r
, ifindex
= 0;
350 r
= extract_first_word(&string
, &word
, NULL
, 0);
356 r
= in_addr_ifindex_name_from_string_auto(word
, &family
, &address
, &ifindex
, &server_name
);
358 log_warning_errno(r
, "Failed to parse DNS server address '%s', ignoring: %m", word
);
362 /* Only look for IPv4 addresses */
363 if (family
!= AF_INET
)
366 /* Never propagate obviously borked data */
367 if (in4_addr_is_null(&address
.in
) || in4_addr_is_localhost(&address
.in
))
370 if (!GREEDY_REALLOC(*addresses
, *n_addresses
+ 1))
373 (*addresses
)[(*n_addresses
)++] = address
.in
;
379 static int dhcp4_server_set_dns_from_resolve_conf(Link
*link
) {
380 _cleanup_free_
struct in_addr
*addresses
= NULL
;
381 _cleanup_fclose_
FILE *f
= NULL
;
382 size_t n_addresses
= 0;
385 f
= fopen(PRIVATE_UPLINK_RESOLV_CONF
, "re");
390 return log_warning_errno(errno
, "Failed to open " PRIVATE_UPLINK_RESOLV_CONF
": %m");
394 _cleanup_free_
char *line
= NULL
;
397 r
= read_stripped_line(f
, LONG_LINE_MAX
, &line
);
399 return log_error_errno(r
, "Failed to read " PRIVATE_UPLINK_RESOLV_CONF
": %m");
403 if (IN_SET(*line
, '#', ';', 0))
406 a
= first_word(line
, "nameserver");
410 r
= dhcp4_server_parse_dns_server_string_and_warn(a
, &addresses
, &n_addresses
);
412 log_warning_errno(r
, "Failed to parse DNS server address '%s', ignoring.", a
);
415 if (n_addresses
<= 0)
418 return sd_dhcp_server_set_dns(link
->dhcp_server
, addresses
, n_addresses
);
421 static int dhcp4_server_configure(Link
*link
) {
422 bool acquired_uplink
= false;
424 DHCPStaticLease
*static_lease
;
427 bool bind_to_interface
;
431 assert(link
->network
);
432 assert(link
->network
->dhcp_server_address
);
434 log_link_debug(link
, "Configuring DHCP Server.");
436 if (link
->dhcp_server
)
439 r
= sd_dhcp_server_new(&link
->dhcp_server
, link
->ifindex
);
443 r
= sd_dhcp_server_attach_event(link
->dhcp_server
, link
->manager
->event
, 0);
447 r
= sd_dhcp_server_set_callback(link
->dhcp_server
, dhcp_server_callback
, link
);
449 return log_link_warning_errno(link
, r
, "Failed to set callback for DHCPv4 server instance: %m");
451 r
= address_get(link
, link
->network
->dhcp_server_address
, &address
);
453 return log_link_error_errno(link
, r
, "Failed to find suitable address for DHCPv4 server instance: %m");
455 /* use the server address' subnet as the pool */
456 r
= sd_dhcp_server_configure_pool(link
->dhcp_server
, &address
->in_addr
.in
, address
->prefixlen
,
457 link
->network
->dhcp_server_pool_offset
, link
->network
->dhcp_server_pool_size
);
459 return log_link_error_errno(link
, r
, "Failed to configure address pool for DHCPv4 server instance: %m");
461 if (link
->network
->dhcp_server_max_lease_time_usec
> 0) {
462 r
= sd_dhcp_server_set_max_lease_time(link
->dhcp_server
, link
->network
->dhcp_server_max_lease_time_usec
);
464 return log_link_error_errno(link
, r
, "Failed to set maximum lease time for DHCPv4 server instance: %m");
467 if (link
->network
->dhcp_server_default_lease_time_usec
> 0) {
468 r
= sd_dhcp_server_set_default_lease_time(link
->dhcp_server
, link
->network
->dhcp_server_default_lease_time_usec
);
470 return log_link_error_errno(link
, r
, "Failed to set default lease time for DHCPv4 server instance: %m");
473 r
= sd_dhcp_server_set_ipv6_only_preferred_usec(link
->dhcp_server
, link
->network
->dhcp_server_ipv6_only_preferred_usec
);
475 return log_link_error_errno(link
, r
, "Failed to set IPv6 only preferred time for DHCPv4 server instance: %m");
477 r
= sd_dhcp_server_set_boot_server_address(link
->dhcp_server
, &link
->network
->dhcp_server_boot_server_address
);
479 return log_link_warning_errno(link
, r
, "Failed to set boot server address for DHCPv4 server instance: %m");
481 r
= sd_dhcp_server_set_boot_server_name(link
->dhcp_server
, link
->network
->dhcp_server_boot_server_name
);
483 return log_link_warning_errno(link
, r
, "Failed to set boot server name for DHCPv4 server instance: %m");
485 r
= sd_dhcp_server_set_boot_filename(link
->dhcp_server
, link
->network
->dhcp_server_boot_filename
);
487 return log_link_warning_errno(link
, r
, "Failed to set boot filename for DHCPv4 server instance: %m");
489 r
= sd_dhcp_server_set_rapid_commit(link
->dhcp_server
, link
->network
->dhcp_server_rapid_commit
);
491 return log_link_warning_errno(link
, r
, "Failed to %s Rapid Commit support for DHCPv4 server instance: %m",
492 enable_disable(link
->network
->dhcp_server_rapid_commit
));
494 for (sd_dhcp_lease_server_type_t type
= 0; type
< _SD_DHCP_LEASE_SERVER_TYPE_MAX
; type
++) {
496 if (!link
->network
->dhcp_server_emit
[type
].emit
)
499 if (link
->network
->dhcp_server_emit
[type
].n_addresses
> 0)
500 /* Explicitly specified servers to emit */
501 r
= sd_dhcp_server_set_servers(
504 link
->network
->dhcp_server_emit
[type
].addresses
,
505 link
->network
->dhcp_server_emit
[type
].n_addresses
);
507 /* Emission is requested, but nothing explicitly configured. Let's find a suitable upling */
508 if (!acquired_uplink
) {
509 (void) dhcp_server_find_uplink(link
, &uplink
);
510 acquired_uplink
= true;
513 if (uplink
&& uplink
->network
)
514 r
= link_push_uplink_to_dhcp_server(uplink
, type
, link
->dhcp_server
);
515 else if (type
== SD_DHCP_LEASE_DNS
)
516 r
= dhcp4_server_set_dns_from_resolve_conf(link
);
519 "Not emitting %s on link, couldn't find suitable uplink.",
520 dhcp_lease_server_type_to_string(type
));
526 log_link_warning_errno(link
, r
,
527 "Failed to set %s for DHCP server, ignoring: %m",
528 dhcp_lease_server_type_to_string(type
));
531 if (link
->network
->dhcp_server_emit_router
) {
532 r
= sd_dhcp_server_set_router(link
->dhcp_server
, &link
->network
->dhcp_server_router
);
534 return log_link_error_errno(link
, r
, "Failed to set router address for DHCP server: %m");
537 r
= sd_dhcp_server_set_relay_target(link
->dhcp_server
, &link
->network
->dhcp_server_relay_target
);
539 return log_link_error_errno(link
, r
, "Failed to set relay target for DHCP server: %m");
541 bind_to_interface
= sd_dhcp_server_is_in_relay_mode(link
->dhcp_server
) ? false : link
->network
->dhcp_server_bind_to_interface
;
542 r
= sd_dhcp_server_set_bind_to_interface(link
->dhcp_server
, bind_to_interface
);
544 return log_link_error_errno(link
, r
, "Failed to set interface binding for DHCP server: %m");
546 r
= sd_dhcp_server_set_relay_agent_information(link
->dhcp_server
, link
->network
->dhcp_server_relay_agent_circuit_id
, link
->network
->dhcp_server_relay_agent_remote_id
);
548 return log_link_error_errno(link
, r
, "Failed to set agent circuit/remote id for DHCP server: %m");
550 if (link
->network
->dhcp_server_emit_timezone
) {
551 _cleanup_free_
char *buffer
= NULL
;
552 const char *tz
= NULL
;
554 if (link
->network
->dhcp_server_timezone
)
555 tz
= link
->network
->dhcp_server_timezone
;
557 r
= get_timezone(&buffer
);
559 log_link_warning_errno(link
, r
, "Failed to determine timezone, not sending timezone: %m");
565 r
= sd_dhcp_server_set_timezone(link
->dhcp_server
, tz
);
567 return log_link_error_errno(link
, r
, "Failed to set timezone for DHCP server: %m");
571 ORDERED_HASHMAP_FOREACH(p
, link
->network
->dhcp_server_send_options
) {
572 r
= sd_dhcp_server_add_option(link
->dhcp_server
, p
);
576 return log_link_error_errno(link
, r
, "Failed to set DHCPv4 option: %m");
579 ORDERED_HASHMAP_FOREACH(p
, link
->network
->dhcp_server_send_vendor_options
) {
580 r
= sd_dhcp_server_add_vendor_option(link
->dhcp_server
, p
);
584 return log_link_error_errno(link
, r
, "Failed to set DHCPv4 option: %m");
587 HASHMAP_FOREACH(static_lease
, link
->network
->dhcp_static_leases_by_section
) {
588 r
= sd_dhcp_server_set_static_lease(link
->dhcp_server
, &static_lease
->address
, static_lease
->client_id
, static_lease
->client_id_size
);
590 return log_link_error_errno(link
, r
, "Failed to set DHCPv4 static lease for DHCP server: %m");
593 r
= link_start_dhcp4_server(link
);
595 return log_link_error_errno(link
, r
, "Could not start DHCPv4 server instance: %m");
600 static bool dhcp_server_is_ready_to_configure(Link
*link
) {
605 assert(link
->network
);
606 assert(link
->network
->dhcp_server_address
);
608 if (!link_is_ready_to_configure(link
, /* allow_unmanaged = */ false))
611 if (!link_has_carrier(link
))
614 if (!link
->static_addresses_configured
)
617 if (address_get(link
, link
->network
->dhcp_server_address
, &a
) < 0)
620 if (!address_is_ready(a
))
623 if (dhcp_server_find_uplink(link
, &uplink
) < 0)
626 if (uplink
&& !uplink
->network
)
632 static int dhcp_server_process_request(Request
*req
, Link
*link
, void *userdata
) {
637 if (!dhcp_server_is_ready_to_configure(link
))
640 r
= dhcp4_server_configure(link
);
642 return log_link_warning_errno(link
, r
, "Failed to configure DHCP server: %m");
647 int link_request_dhcp_server(Link
*link
) {
652 if (!link_dhcp4_server_enabled(link
))
655 if (link
->dhcp_server
)
658 log_link_debug(link
, "Requesting DHCP server.");
659 r
= link_queue_request(link
, REQUEST_TYPE_DHCP_SERVER
, dhcp_server_process_request
, NULL
);
661 return log_link_warning_errno(link
, r
, "Failed to request configuration of DHCP server: %m");
666 int config_parse_dhcp_server_relay_agent_suboption(
668 const char *filename
,
671 unsigned section_line
,
678 char **suboption_value
= data
;
685 if (isempty(rvalue
)) {
686 *suboption_value
= mfree(*suboption_value
);
690 p
= startswith(rvalue
, "string:");
692 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
693 "Failed to parse %s=%s'. Invalid format, ignoring.", lvalue
, rvalue
);
696 return free_and_strdup(suboption_value
, empty_to_null(p
));
699 int config_parse_dhcp_server_emit(
701 const char *filename
,
704 unsigned section_line
,
711 NetworkDHCPServerEmitAddress
*emit
= ASSERT_PTR(data
);
715 if (isempty(rvalue
)) {
716 emit
->addresses
= mfree(emit
->addresses
);
717 emit
->n_addresses
= 0;
721 for (const char *p
= rvalue
;;) {
722 _cleanup_free_
char *w
= NULL
;
723 union in_addr_union a
;
726 r
= extract_first_word(&p
, &w
, NULL
, 0);
730 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
731 "Failed to extract word, ignoring: %s", rvalue
);
737 if (streq(w
, "_server_address"))
738 a
= IN_ADDR_NULL
; /* null address will be converted to the server address. */
740 r
= in_addr_from_string(AF_INET
, w
, &a
);
742 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
743 "Failed to parse %s= address '%s', ignoring: %m", lvalue
, w
);
747 if (in4_addr_is_null(&a
.in
)) {
748 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
749 "Found a null address in %s=, ignoring.", lvalue
);
754 if (!GREEDY_REALLOC(emit
->addresses
, emit
->n_addresses
+ 1))
757 emit
->addresses
[emit
->n_addresses
++] = a
.in
;
761 int config_parse_dhcp_server_address(
763 const char *filename
,
766 unsigned section_line
,
773 Network
*network
= ASSERT_PTR(userdata
);
774 union in_addr_union a
;
775 unsigned char prefixlen
;
782 if (isempty(rvalue
)) {
783 network
->dhcp_server_address_in_addr
= (struct in_addr
) {};
784 network
->dhcp_server_address_prefixlen
= 0;
788 r
= in_addr_prefix_from_string(rvalue
, AF_INET
, &a
, &prefixlen
);
790 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
791 "Failed to parse %s=, ignoring assignment: %s", lvalue
, rvalue
);
794 if (in4_addr_is_localhost(&a
.in
) || in4_addr_is_link_local(&a
.in
)) {
795 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
796 "DHCP server address cannot be a localhost or link-local address, "
797 "ignoring assignment: %s", rvalue
);
801 network
->dhcp_server_address_in_addr
= a
.in
;
802 network
->dhcp_server_address_prefixlen
= prefixlen
;
806 int config_parse_dhcp_server_ipv6_only_preferred(
808 const char *filename
,
811 unsigned section_line
,
818 usec_t t
, *usec
= ASSERT_PTR(data
);
826 if (isempty(rvalue
)) {
831 r
= parse_sec(rvalue
, &t
);
833 log_syntax(unit
, LOG_WARNING
, filename
, line
, r
,
834 "Failed to parse [%s] %s=, ignoring assignment: %s", section
, lvalue
, rvalue
);
838 if (t
< MIN_V6ONLY_WAIT_USEC
&& !network_test_mode_enabled()) {
839 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
840 "Invalid [%s] %s=, ignoring assignment: %s", section
, lvalue
, rvalue
);
projects / thirdparty / systemd.git / blob