1 /* SPDX-License-Identifier: LGPL-2.1+ */
6 #include "alloc-util.h"
7 #include "conf-files.h"
8 #include "conf-parser.h"
9 #include "dns-domain.h"
11 #include "hostname-util.h"
12 #include "in-addr-util.h"
13 #include "missing_network.h"
14 #include "network-internal.h"
15 #include "networkd-manager.h"
16 #include "networkd-network.h"
17 #include "parse-util.h"
19 #include "socket-util.h"
20 #include "stat-util.h"
21 #include "string-table.h"
22 #include "string-util.h"
26 /* Let's assume that anything above this number is a user misconfiguration. */
27 #define MAX_NTP_SERVERS 128
29 /* Set defaults following RFC7844 */
30 void network_apply_anonymize_if_set(Network
*network
) {
31 if (!network
->dhcp_anonymize
)
34 SHOULD NOT send the Host Name option */
35 network
->dhcp_send_hostname
= false;
36 /* RFC7844 section 3.:
37 MAY contain the Client Identifier option
39 clients MUST use client identifiers based solely
40 on the link-layer address */
41 /* NOTE: Using MAC, as it does not reveal extra information,
42 * and some servers might not answer if this option is not sent */
43 network
->dhcp_client_identifier
= DHCP_CLIENT_ID_MAC
;
45 SHOULD NOT use the Vendor Class Identifier option */
46 network
->dhcp_vendor_class_identifier
= mfree(network
->dhcp_vendor_class_identifier
);
47 /* RFC7844 section 3.6.:
48 The client intending to protect its privacy SHOULD only request a
49 minimal number of options in the PRL and SHOULD also randomly shuffle
50 the ordering of option codes in the PRL. If this random ordering
51 cannot be implemented, the client MAY order the option codes in the
52 PRL by option code number (lowest to highest).
54 /* NOTE: dhcp_use_mtu is false by default,
55 * though it was not initiallized to any value in network_load_one.
56 * Maybe there should be another var called *send*?
57 * (to use the MTU sent by the server but to do not send
58 * the option in the PRL). */
59 network
->dhcp_use_mtu
= false;
60 /* NOTE: when Anonymize=yes, the PRL route options are sent by default,
61 * but this is needed to use them. */
62 network
->dhcp_use_routes
= true;
63 /* RFC7844 section 3.6.
64 * same comments as previous option */
65 network
->dhcp_use_timezone
= false;
68 static int network_resolve_netdev_one(Network
*network
, const char *name
, NetDevKind kind
, NetDev
**ret_netdev
) {
69 const char *kind_string
;
73 /* For test-networkd-conf, the check must be earlier than the assertions. */
78 assert(network
->manager
);
79 assert(network
->filename
);
82 if (kind
== _NETDEV_KIND_TUNNEL
)
83 kind_string
= "tunnel";
85 kind_string
= netdev_kind_to_string(kind
);
87 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
88 "%s: Invalid NetDev kind of %s, ignoring assignment.",
89 network
->filename
, name
);
92 r
= netdev_get(network
->manager
, name
, &netdev
);
94 return log_error_errno(r
, "%s: %s NetDev could not be found, ignoring assignment.",
95 network
->filename
, name
);
97 if (netdev
->kind
!= kind
&& !(kind
== _NETDEV_KIND_TUNNEL
&&
104 NETDEV_KIND_IP6GRETAP
,
107 NETDEV_KIND_IP6TNL
)))
108 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
109 "%s: NetDev %s is not a %s, ignoring assignment",
110 network
->filename
, name
, kind_string
);
112 *ret_netdev
= netdev_ref(netdev
);
116 static int network_resolve_stacked_netdevs(Network
*network
) {
123 HASHMAP_FOREACH_KEY(kind
, name
, network
->stacked_netdev_names
, i
) {
124 _cleanup_(netdev_unrefp
) NetDev
*netdev
= NULL
;
126 r
= network_resolve_netdev_one(network
, name
, PTR_TO_INT(kind
), &netdev
);
130 r
= hashmap_ensure_allocated(&network
->stacked_netdevs
, &string_hash_ops
);
134 r
= hashmap_put(network
->stacked_netdevs
, netdev
->ifname
, netdev
);
136 return log_error_errno(r
, "%s: Failed to add NetDev '%s' to network: %m",
137 network
->filename
, (const char *) name
);
145 static uint32_t network_get_stacked_netdevs_mtu(Network
*network
) {
150 HASHMAP_FOREACH(dev
, network
->stacked_netdevs
, i
)
151 if (dev
->kind
== NETDEV_KIND_VLAN
&& dev
->mtu
> 0)
152 /* See vlan_dev_change_mtu() in kernel.
153 * Note that the additional 4bytes may not be necessary for all devices. */
154 mtu
= MAX(mtu
, dev
->mtu
+ 4);
156 else if (dev
->kind
== NETDEV_KIND_MACVLAN
&& dev
->mtu
> mtu
)
157 /* See macvlan_change_mtu() in kernel. */
163 int network_verify(Network
*network
) {
164 Address
*address
, *address_next
;
165 Route
*route
, *route_next
;
166 FdbEntry
*fdb
, *fdb_next
;
167 Neighbor
*neighbor
, *neighbor_next
;
168 AddressLabel
*label
, *label_next
;
169 Prefix
*prefix
, *prefix_next
;
170 RoutingPolicyRule
*rule
, *rule_next
;
174 assert(network
->filename
);
176 /* skip out early if configuration does not match the environment */
177 if (!net_match_config(NULL
, NULL
, NULL
, NULL
, NULL
,
178 network
->match_host
, network
->match_virt
, network
->match_kernel_cmdline
,
179 network
->match_kernel_version
, network
->match_arch
,
180 NULL
, NULL
, NULL
, NULL
, NULL
))
181 return log_debug_errno(SYNTHETIC_ERRNO(EINVAL
),
182 "%s: Conditions in the file do not match the system environment, skipping.",
185 (void) network_resolve_netdev_one(network
, network
->bond_name
, NETDEV_KIND_BOND
, &network
->bond
);
186 (void) network_resolve_netdev_one(network
, network
->bridge_name
, NETDEV_KIND_BRIDGE
, &network
->bridge
);
187 (void) network_resolve_netdev_one(network
, network
->vrf_name
, NETDEV_KIND_VRF
, &network
->vrf
);
188 (void) network_resolve_stacked_netdevs(network
);
190 /* Free unnecessary entries. */
191 network
->bond_name
= mfree(network
->bond_name
);
192 network
->bridge_name
= mfree(network
->bridge_name
);
193 network
->vrf_name
= mfree(network
->vrf_name
);
194 network
->stacked_netdev_names
= hashmap_free_free_key(network
->stacked_netdev_names
);
197 /* Bonding slave does not support addressing. */
198 if (network
->ipv6_accept_ra
> 0) {
199 log_warning("%s: Cannot enable IPv6AcceptRA= when Bond= is specified, disabling IPv6AcceptRA=.",
201 network
->ipv6_accept_ra
= 0;
203 if (network
->link_local
>= 0 && network
->link_local
!= ADDRESS_FAMILY_NO
) {
204 log_warning("%s: Cannot enable LinkLocalAddressing= when Bond= is specified, disabling LinkLocalAddressing=.",
206 network
->link_local
= ADDRESS_FAMILY_NO
;
208 if (network
->dhcp
!= ADDRESS_FAMILY_NO
) {
209 log_warning("%s: Cannot enable DHCP= when Bond= is specified, disabling DHCP=.",
211 network
->dhcp
= ADDRESS_FAMILY_NO
;
213 if (network
->dhcp_server
) {
214 log_warning("%s: Cannot enable DHCPServer= when Bond= is specified, disabling DHCPServer=.",
216 network
->dhcp_server
= false;
218 if (network
->n_static_addresses
> 0) {
219 log_warning("%s: Cannot set addresses when Bond= is specified, ignoring addresses.",
221 while ((address
= network
->static_addresses
))
222 address_free(address
);
224 if (network
->n_static_routes
> 0) {
225 log_warning("%s: Cannot set routes when Bond= is specified, ignoring routes.",
227 while ((route
= network
->static_routes
))
232 if (network
->link_local
< 0)
233 network
->link_local
= network
->bridge
? ADDRESS_FAMILY_NO
: ADDRESS_FAMILY_IPV6
;
235 if (network
->ipv6_accept_ra
< 0 && network
->bridge
)
236 network
->ipv6_accept_ra
= false;
238 /* IPMasquerade=yes implies IPForward=yes */
239 if (network
->ip_masquerade
)
240 network
->ip_forward
|= ADDRESS_FAMILY_IPV4
;
242 network
->mtu_is_set
= network
->mtu
> 0;
243 mtu
= network_get_stacked_netdevs_mtu(network
);
244 if (network
->mtu
< mtu
) {
245 if (network
->mtu_is_set
)
246 log_notice("%s: Bumping MTUBytes= from %"PRIu32
" to %"PRIu32
" because of stacked device",
247 network
->filename
, network
->mtu
, mtu
);
251 if (network
->mtu_is_set
&& network
->dhcp_use_mtu
) {
252 log_warning("%s: MTUBytes= in [Link] section and UseMTU= in [DHCP] section are set. "
253 "Disabling UseMTU=.", network
->filename
);
254 network
->dhcp_use_mtu
= false;
257 LIST_FOREACH_SAFE(addresses
, address
, address_next
, network
->static_addresses
)
258 if (address_section_verify(address
) < 0)
259 address_free(address
);
261 LIST_FOREACH_SAFE(routes
, route
, route_next
, network
->static_routes
)
262 if (route_section_verify(route
, network
) < 0)
265 LIST_FOREACH_SAFE(static_fdb_entries
, fdb
, fdb_next
, network
->static_fdb_entries
)
266 if (section_is_invalid(fdb
->section
))
269 LIST_FOREACH_SAFE(neighbors
, neighbor
, neighbor_next
, network
->neighbors
)
270 if (section_is_invalid(neighbor
->section
))
271 neighbor_free(neighbor
);
273 LIST_FOREACH_SAFE(labels
, label
, label_next
, network
->address_labels
)
274 if (section_is_invalid(label
->section
))
275 address_label_free(label
);
277 LIST_FOREACH_SAFE(prefixes
, prefix
, prefix_next
, network
->static_prefixes
)
278 if (section_is_invalid(prefix
->section
))
281 LIST_FOREACH_SAFE(rules
, rule
, rule_next
, network
->rules
)
282 if (section_is_invalid(rule
->section
))
283 routing_policy_rule_free(rule
);
288 int network_load_one(Manager
*manager
, const char *filename
) {
289 _cleanup_free_
char *fname
= NULL
, *name
= NULL
;
290 _cleanup_(network_freep
) Network
*network
= NULL
;
291 _cleanup_fclose_
FILE *file
= NULL
;
292 const char *dropin_dirname
;
299 file
= fopen(filename
, "re");
307 if (null_or_empty_fd(fileno(file
))) {
308 log_debug("Skipping empty file: %s", filename
);
312 fname
= strdup(filename
);
316 name
= strdup(basename(filename
));
320 d
= strrchr(name
, '.');
326 dropin_dirname
= strjoina(name
, ".network.d");
328 network
= new(Network
, 1);
332 *network
= (Network
) {
333 .filename
= TAKE_PTR(fname
),
334 .name
= TAKE_PTR(name
),
336 .required_for_online
= true,
337 .required_operstate_for_online
= LINK_OPERSTATE_DEGRADED
,
338 .dhcp
= ADDRESS_FAMILY_NO
,
339 .dhcp_use_ntp
= true,
340 .dhcp_use_dns
= true,
341 .dhcp_use_hostname
= true,
342 .dhcp_use_routes
= true,
343 /* NOTE: this var might be overwriten by network_apply_anonymize_if_set */
344 .dhcp_send_hostname
= true,
345 /* To enable/disable RFC7844 Anonymity Profiles */
346 .dhcp_anonymize
= false,
347 .dhcp_route_metric
= DHCP_ROUTE_METRIC
,
348 /* NOTE: this var might be overwrite by network_apply_anonymize_if_set */
349 .dhcp_client_identifier
= DHCP_CLIENT_ID_DUID
,
350 .dhcp_route_table
= RT_TABLE_MAIN
,
351 .dhcp_route_table_set
= false,
352 /* NOTE: from man: UseMTU=... Defaults to false*/
353 .dhcp_use_mtu
= false,
354 /* NOTE: from man: UseTimezone=... Defaults to "no".*/
355 .dhcp_use_timezone
= false,
356 .rapid_commit
= true,
358 .dhcp_server_emit_dns
= true,
359 .dhcp_server_emit_ntp
= true,
360 .dhcp_server_emit_router
= true,
361 .dhcp_server_emit_timezone
= true,
363 .router_emit_dns
= true,
364 .router_emit_domains
= true,
369 .allow_port_to_be_root
= -1,
371 .multicast_flood
= -1,
372 .multicast_to_unicast
= -1,
373 .neighbor_suppression
= -1,
375 .priority
= LINK_BRIDGE_PORT_PRIORITY_INVALID
,
377 .lldp_mode
= LLDP_MODE_ROUTERS_ONLY
,
379 .dns_default_route
= -1,
380 .llmnr
= RESOLVE_SUPPORT_YES
,
381 .mdns
= RESOLVE_SUPPORT_NO
,
382 .dnssec_mode
= _DNSSEC_MODE_INVALID
,
383 .dns_over_tls_mode
= _DNS_OVER_TLS_MODE_INVALID
,
385 /* If LinkLocalAddressing= is not set, then set to ADDRESS_FAMILY_IPV6 later. */
386 .link_local
= _ADDRESS_FAMILY_BOOLEAN_INVALID
,
388 .ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_NO
,
389 .ipv6_accept_ra
= -1,
390 .ipv6_dad_transmits
= -1,
391 .ipv6_hop_limit
= -1,
392 .ipv6_proxy_ndp
= -1,
393 .duid
.type
= _DUID_TYPE_INVALID
,
398 .ipv6_accept_ra_use_dns
= true,
399 .ipv6_accept_ra_use_autonomous_prefix
= true,
400 .ipv6_accept_ra_use_onlink_prefix
= true,
401 .ipv6_accept_ra_route_table
= RT_TABLE_MAIN
,
402 .ipv6_accept_ra_route_table_set
= false,
404 .can_triple_sampling
= -1,
407 r
= config_parse_many(filename
, NETWORK_DIRS
, dropin_dirname
,
414 "RoutingPolicyRule\0"
417 "DHCPv4\0" /* compat */
420 "IPv6NDPProxyAddress\0"
424 "IPv6PrefixDelegation\0"
427 config_item_perf_lookup
, network_network_gperf_lookup
,
428 CONFIG_PARSE_WARN
, network
);
432 network_apply_anonymize_if_set(network
);
434 r
= network_add_ipv4ll_route(network
);
436 log_warning_errno(r
, "%s: Failed to add IPv4LL route, ignoring: %m", network
->filename
);
438 LIST_PREPEND(networks
, manager
->networks
, network
);
439 network
->manager
= manager
;
441 r
= hashmap_ensure_allocated(&manager
->networks_by_name
, &string_hash_ops
);
445 r
= hashmap_put(manager
->networks_by_name
, network
->name
, network
);
449 if (network_verify(network
) < 0)
456 int network_load(Manager
*manager
) {
458 _cleanup_strv_free_
char **files
= NULL
;
464 while ((network
= manager
->networks
))
465 network_free(network
);
467 r
= conf_files_list_strv(&files
, ".network", NULL
, 0, NETWORK_DIRS
);
469 return log_error_errno(r
, "Failed to enumerate network files: %m");
471 STRV_FOREACH_BACKWARDS(f
, files
) {
472 r
= network_load_one(manager
, *f
);
480 void network_free(Network
*network
) {
481 IPv6ProxyNDPAddress
*ipv6_proxy_ndp_address
;
482 RoutingPolicyRule
*rule
;
493 free(network
->filename
);
495 set_free_free(network
->match_mac
);
496 strv_free(network
->match_path
);
497 strv_free(network
->match_driver
);
498 strv_free(network
->match_type
);
499 strv_free(network
->match_name
);
501 free(network
->description
);
502 free(network
->dhcp_vendor_class_identifier
);
503 strv_free(network
->dhcp_user_class
);
504 free(network
->dhcp_hostname
);
508 strv_free(network
->ntp
);
510 ordered_set_free_free(network
->search_domains
);
511 ordered_set_free_free(network
->route_domains
);
512 strv_free(network
->bind_carrier
);
514 ordered_set_free_free(network
->router_search_domains
);
515 free(network
->router_dns
);
517 free(network
->bridge_name
);
518 free(network
->bond_name
);
519 free(network
->vrf_name
);
520 hashmap_free_free_key(network
->stacked_netdev_names
);
521 netdev_unref(network
->bridge
);
522 netdev_unref(network
->bond
);
523 netdev_unref(network
->vrf
);
524 hashmap_free_with_destructor(network
->stacked_netdevs
, netdev_unref
);
526 while ((route
= network
->static_routes
))
529 while ((address
= network
->static_addresses
))
530 address_free(address
);
532 while ((fdb_entry
= network
->static_fdb_entries
))
533 fdb_entry_free(fdb_entry
);
535 while ((ipv6_proxy_ndp_address
= network
->ipv6_proxy_ndp_addresses
))
536 ipv6_proxy_ndp_address_free(ipv6_proxy_ndp_address
);
538 while ((neighbor
= network
->neighbors
))
539 neighbor_free(neighbor
);
541 while ((label
= network
->address_labels
))
542 address_label_free(label
);
544 while ((prefix
= network
->static_prefixes
))
547 while ((rule
= network
->rules
))
548 routing_policy_rule_free(rule
);
550 hashmap_free(network
->addresses_by_section
);
551 hashmap_free(network
->routes_by_section
);
552 hashmap_free(network
->fdb_entries_by_section
);
553 hashmap_free(network
->neighbors_by_section
);
554 hashmap_free(network
->address_labels_by_section
);
555 hashmap_free(network
->prefixes_by_section
);
556 hashmap_free(network
->rules_by_section
);
558 if (network
->manager
) {
559 if (network
->manager
->networks
)
560 LIST_REMOVE(networks
, network
->manager
->networks
, network
);
562 if (network
->manager
->networks_by_name
&& network
->name
)
563 hashmap_remove(network
->manager
->networks_by_name
, network
->name
);
565 if (network
->manager
->duids_requesting_uuid
)
566 set_remove(network
->manager
->duids_requesting_uuid
, &network
->duid
);
571 condition_free_list(network
->match_host
);
572 condition_free_list(network
->match_virt
);
573 condition_free_list(network
->match_kernel_cmdline
);
574 condition_free_list(network
->match_kernel_version
);
575 condition_free_list(network
->match_arch
);
577 free(network
->dhcp_server_timezone
);
578 free(network
->dhcp_server_dns
);
579 free(network
->dhcp_server_ntp
);
581 set_free_free(network
->dnssec_negative_trust_anchors
);
586 int network_get_by_name(Manager
*manager
, const char *name
, Network
**ret
) {
593 network
= hashmap_get(manager
->networks_by_name
, name
);
602 int network_get(Manager
*manager
, sd_device
*device
,
603 const char *ifname
, const struct ether_addr
*address
,
605 const char *path
= NULL
, *driver
= NULL
, *devtype
= NULL
;
612 (void) sd_device_get_property_value(device
, "ID_PATH", &path
);
614 (void) sd_device_get_property_value(device
, "ID_NET_DRIVER", &driver
);
616 (void) sd_device_get_devtype(device
, &devtype
);
619 LIST_FOREACH(networks
, network
, manager
->networks
) {
620 if (net_match_config(network
->match_mac
, network
->match_path
,
621 network
->match_driver
, network
->match_type
,
622 network
->match_name
, network
->match_host
,
623 network
->match_virt
, network
->match_kernel_cmdline
,
624 network
->match_kernel_version
, network
->match_arch
,
625 address
, path
, driver
, devtype
, ifname
)) {
626 if (network
->match_name
&& device
) {
628 uint8_t name_assign_type
= NET_NAME_UNKNOWN
;
630 if (sd_device_get_sysattr_value(device
, "name_assign_type", &attr
) >= 0)
631 (void) safe_atou8(attr
, &name_assign_type
);
633 if (name_assign_type
== NET_NAME_ENUM
)
634 log_warning("%s: found matching network '%s', based on potentially unpredictable ifname",
635 ifname
, network
->filename
);
637 log_debug("%s: found matching network '%s'", ifname
, network
->filename
);
639 log_debug("%s: found matching network '%s'", ifname
, network
->filename
);
651 int network_apply(Network
*network
, Link
*link
) {
655 link
->network
= network
;
657 if (network
->n_dns
> 0 ||
658 !strv_isempty(network
->ntp
) ||
659 !ordered_set_isempty(network
->search_domains
) ||
660 !ordered_set_isempty(network
->route_domains
))
666 bool network_has_static_ipv6_addresses(Network
*network
) {
671 LIST_FOREACH(addresses
, address
, network
->static_addresses
) {
672 if (address
->family
== AF_INET6
)
679 int config_parse_stacked_netdev(const char *unit
,
680 const char *filename
,
683 unsigned section_line
,
689 _cleanup_free_
char *name
= NULL
;
690 NetDevKind kind
= ltype
;
699 NETDEV_KIND_VLAN
, NETDEV_KIND_MACVLAN
, NETDEV_KIND_MACVTAP
,
700 NETDEV_KIND_IPVLAN
, NETDEV_KIND_VXLAN
, _NETDEV_KIND_TUNNEL
));
702 if (!ifname_valid(rvalue
)) {
703 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
704 "Invalid netdev name in %s=, ignoring assignment: %s", lvalue
, rvalue
);
708 name
= strdup(rvalue
);
712 r
= hashmap_ensure_allocated(h
, &string_hash_ops
);
716 r
= hashmap_put(*h
, name
, INT_TO_PTR(kind
));
718 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
719 "Cannot add NetDev '%s' to network, ignoring assignment: %m", name
);
721 log_syntax(unit
, LOG_DEBUG
, filename
, line
, r
,
722 "NetDev '%s' specified twice, ignoring.", name
);
729 int config_parse_domains(
731 const char *filename
,
734 unsigned section_line
,
749 if (isempty(rvalue
)) {
750 n
->search_domains
= ordered_set_free_free(n
->search_domains
);
751 n
->route_domains
= ordered_set_free_free(n
->route_domains
);
757 _cleanup_free_
char *w
= NULL
, *normalized
= NULL
;
761 r
= extract_first_word(&p
, &w
, NULL
, 0);
763 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
764 "Failed to extract search or route domain, ignoring: %s", rvalue
);
770 is_route
= w
[0] == '~';
771 domain
= is_route
? w
+ 1 : w
;
773 if (dns_name_is_root(domain
) || streq(domain
, "*")) {
774 /* If the root domain appears as is, or the special token "*" is found, we'll
775 * consider this as routing domain, unconditionally. */
777 domain
= "."; /* make sure we don't allow empty strings, thus write the root
780 r
= dns_name_normalize(domain
, 0, &normalized
);
782 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
783 "'%s' is not a valid domain name, ignoring.", domain
);
789 if (is_localhost(domain
)) {
790 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
791 "'localhost' domain may not be configured as search or route domain, ignoring assignment: %s",
797 OrderedSet
**set
= is_route
? &n
->route_domains
: &n
->search_domains
;
798 r
= ordered_set_ensure_allocated(set
, &string_hash_ops
);
802 r
= ordered_set_put_strdup(*set
, domain
);
810 int config_parse_ipv4ll(
812 const char *filename
,
815 unsigned section_line
,
822 AddressFamilyBoolean
*link_local
= data
;
829 /* Note that this is mostly like
830 * config_parse_address_family_boolean(), except that it
831 * applies only to IPv4 */
833 SET_FLAG(*link_local
, ADDRESS_FAMILY_IPV4
, parse_boolean(rvalue
));
838 int config_parse_dhcp(
840 const char *filename
,
843 unsigned section_line
,
850 AddressFamilyBoolean
*dhcp
= data
, s
;
857 /* Note that this is mostly like
858 * config_parse_address_family_boolean(), except that it
859 * understands some old names for the enum values */
861 s
= address_family_boolean_from_string(rvalue
);
864 /* Previously, we had a slightly different enum here,
865 * support its values for compatbility. */
867 if (streq(rvalue
, "none"))
868 s
= ADDRESS_FAMILY_NO
;
869 else if (streq(rvalue
, "v4"))
870 s
= ADDRESS_FAMILY_IPV4
;
871 else if (streq(rvalue
, "v6"))
872 s
= ADDRESS_FAMILY_IPV6
;
873 else if (streq(rvalue
, "both"))
874 s
= ADDRESS_FAMILY_YES
;
876 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
877 "Failed to parse DHCP option, ignoring: %s", rvalue
);
881 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
882 "DHCP=%s is deprecated, please use DHCP=%s instead.",
883 rvalue
, address_family_boolean_to_string(s
));
890 static const char* const dhcp_client_identifier_table
[_DHCP_CLIENT_ID_MAX
] = {
891 [DHCP_CLIENT_ID_MAC
] = "mac",
892 [DHCP_CLIENT_ID_DUID
] = "duid",
893 [DHCP_CLIENT_ID_DUID_ONLY
] = "duid-only",
896 DEFINE_PRIVATE_STRING_TABLE_LOOKUP_FROM_STRING(dhcp_client_identifier
, DHCPClientIdentifier
);
897 DEFINE_CONFIG_PARSE_ENUM(config_parse_dhcp_client_identifier
, dhcp_client_identifier
, DHCPClientIdentifier
,
898 "Failed to parse client identifier type");
900 int config_parse_ipv6token(
902 const char *filename
,
905 unsigned section_line
,
912 union in_addr_union buffer
;
913 struct in6_addr
*token
= data
;
921 r
= in_addr_from_string(AF_INET6
, rvalue
, &buffer
);
923 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
924 "Failed to parse IPv6 token, ignoring: %s", rvalue
);
928 if (in_addr_is_null(AF_INET6
, &buffer
)) {
929 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
930 "IPv6 token cannot be the ANY address, ignoring: %s", rvalue
);
934 if ((buffer
.in6
.s6_addr32
[0] | buffer
.in6
.s6_addr32
[1]) != 0) {
935 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
936 "IPv6 token cannot be longer than 64 bits, ignoring: %s", rvalue
);
945 static const char* const ipv6_privacy_extensions_table
[_IPV6_PRIVACY_EXTENSIONS_MAX
] = {
946 [IPV6_PRIVACY_EXTENSIONS_NO
] = "no",
947 [IPV6_PRIVACY_EXTENSIONS_PREFER_PUBLIC
] = "prefer-public",
948 [IPV6_PRIVACY_EXTENSIONS_YES
] = "yes",
951 DEFINE_STRING_TABLE_LOOKUP(ipv6_privacy_extensions
, IPv6PrivacyExtensions
);
953 int config_parse_ipv6_privacy_extensions(
955 const char *filename
,
958 unsigned section_line
,
965 IPv6PrivacyExtensions
*ipv6_privacy_extensions
= data
;
971 assert(ipv6_privacy_extensions
);
973 /* Our enum shall be a superset of booleans, hence first try
974 * to parse as boolean, and then as enum */
976 k
= parse_boolean(rvalue
);
978 *ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_YES
;
980 *ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_NO
;
982 IPv6PrivacyExtensions s
;
984 s
= ipv6_privacy_extensions_from_string(rvalue
);
987 if (streq(rvalue
, "kernel"))
988 s
= _IPV6_PRIVACY_EXTENSIONS_INVALID
;
990 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
991 "Failed to parse IPv6 privacy extensions option, ignoring: %s", rvalue
);
996 *ipv6_privacy_extensions
= s
;
1002 int config_parse_hostname(
1004 const char *filename
,
1006 const char *section
,
1007 unsigned section_line
,
1014 _cleanup_free_
char *hn
= NULL
;
1015 char **hostname
= data
;
1022 r
= config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, &hn
, userdata
);
1026 if (!hostname_is_valid(hn
, false)) {
1027 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1028 "Hostname is not valid, ignoring assignment: %s", rvalue
);
1032 r
= dns_name_is_valid(hn
);
1034 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1035 "Failed to check validity of hostname '%s', ignoring assignment: %m", rvalue
);
1039 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1040 "Hostname is not a valid DNS domain name, ignoring assignment: %s", rvalue
);
1044 return free_and_replace(*hostname
, hn
);
1047 int config_parse_timezone(
1049 const char *filename
,
1051 const char *section
,
1052 unsigned section_line
,
1059 _cleanup_free_
char *tz
= NULL
;
1060 char **datap
= data
;
1067 r
= config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, &tz
, userdata
);
1071 if (!timezone_is_valid(tz
, LOG_ERR
)) {
1072 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1073 "Timezone is not valid, ignoring assignment: %s", rvalue
);
1077 return free_and_replace(*datap
, tz
);
1080 int config_parse_dhcp_server_dns(
1082 const char *filename
,
1084 const char *section
,
1085 unsigned section_line
,
1093 const char *p
= rvalue
;
1101 _cleanup_free_
char *w
= NULL
;
1102 struct in_addr a
, *m
;
1104 r
= extract_first_word(&p
, &w
, NULL
, 0);
1108 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1109 "Failed to extract word, ignoring: %s", rvalue
);
1115 if (inet_pton(AF_INET
, w
, &a
) <= 0) {
1116 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1117 "Failed to parse DNS server address, ignoring: %s", w
);
1121 m
= reallocarray(n
->dhcp_server_dns
, n
->n_dhcp_server_dns
+ 1, sizeof(struct in_addr
));
1125 m
[n
->n_dhcp_server_dns
++] = a
;
1126 n
->dhcp_server_dns
= m
;
1132 int config_parse_radv_dns(
1134 const char *filename
,
1136 const char *section
,
1137 unsigned section_line
,
1145 const char *p
= rvalue
;
1153 _cleanup_free_
char *w
= NULL
;
1154 union in_addr_union a
;
1156 r
= extract_first_word(&p
, &w
, NULL
, 0);
1160 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1161 "Failed to extract word, ignoring: %s", rvalue
);
1167 if (in_addr_from_string(AF_INET6
, w
, &a
) >= 0) {
1170 m
= reallocarray(n
->router_dns
, n
->n_router_dns
+ 1, sizeof(struct in6_addr
));
1174 m
[n
->n_router_dns
++] = a
.in6
;
1178 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1179 "Failed to parse DNS server address, ignoring: %s", w
);
1185 int config_parse_radv_search_domains(
1187 const char *filename
,
1189 const char *section
,
1190 unsigned section_line
,
1198 const char *p
= rvalue
;
1206 _cleanup_free_
char *w
= NULL
, *idna
= NULL
;
1208 r
= extract_first_word(&p
, &w
, NULL
, 0);
1212 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1213 "Failed to extract word, ignoring: %s", rvalue
);
1219 r
= dns_name_apply_idna(w
, &idna
);
1221 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1222 "Failed to apply IDNA to domain name '%s', ignoring: %m", w
);
1225 /* transfer ownership to simplify subsequent operations */
1228 r
= ordered_set_ensure_allocated(&n
->router_search_domains
, &string_hash_ops
);
1232 r
= ordered_set_consume(n
->router_search_domains
, TAKE_PTR(idna
));
1240 int config_parse_dhcp_server_ntp(
1242 const char *filename
,
1244 const char *section
,
1245 unsigned section_line
,
1253 const char *p
= rvalue
;
1261 _cleanup_free_
char *w
= NULL
;
1262 struct in_addr a
, *m
;
1264 r
= extract_first_word(&p
, &w
, NULL
, 0);
1268 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1269 "Failed to extract word, ignoring: %s", rvalue
);
1275 if (inet_pton(AF_INET
, w
, &a
) <= 0) {
1276 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1277 "Failed to parse NTP server address, ignoring: %s", w
);
1281 m
= reallocarray(n
->dhcp_server_ntp
, n
->n_dhcp_server_ntp
+ 1, sizeof(struct in_addr
));
1285 m
[n
->n_dhcp_server_ntp
++] = a
;
1286 n
->dhcp_server_ntp
= m
;
1290 int config_parse_dns(
1292 const char *filename
,
1294 const char *section
,
1295 unsigned section_line
,
1302 Network
*n
= userdata
;
1310 _cleanup_free_
char *w
= NULL
;
1311 union in_addr_union a
;
1312 struct in_addr_data
*m
;
1315 r
= extract_first_word(&rvalue
, &w
, NULL
, 0);
1319 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1320 "Invalid syntax, ignoring: %s", rvalue
);
1326 r
= in_addr_from_string_auto(w
, &family
, &a
);
1328 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1329 "Failed to parse dns server address, ignoring: %s", w
);
1333 m
= reallocarray(n
->dns
, n
->n_dns
+ 1, sizeof(struct in_addr_data
));
1337 m
[n
->n_dns
++] = (struct in_addr_data
) {
1348 int config_parse_dnssec_negative_trust_anchors(
1350 const char *filename
,
1352 const char *section
,
1353 unsigned section_line
,
1360 const char *p
= rvalue
;
1368 if (isempty(rvalue
)) {
1369 n
->dnssec_negative_trust_anchors
= set_free_free(n
->dnssec_negative_trust_anchors
);
1374 _cleanup_free_
char *w
= NULL
;
1376 r
= extract_first_word(&p
, &w
, NULL
, 0);
1378 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1379 "Failed to extract negative trust anchor domain, ignoring: %s", rvalue
);
1385 r
= dns_name_is_valid(w
);
1387 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1388 "%s is not a valid domain name, ignoring.", w
);
1392 r
= set_ensure_allocated(&n
->dnssec_negative_trust_anchors
, &dns_name_hash_ops
);
1396 r
= set_put(n
->dnssec_negative_trust_anchors
, w
);
1406 int config_parse_ntp(
1408 const char *filename
,
1410 const char *section
,
1411 unsigned section_line
,
1425 if (isempty(rvalue
)) {
1431 _cleanup_free_
char *w
= NULL
;
1433 r
= extract_first_word(&rvalue
, &w
, NULL
, 0);
1437 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1438 "Failed to extract NTP server name, ignoring: %s", rvalue
);
1444 r
= dns_name_is_valid_or_address(w
);
1446 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1447 "%s is not a valid domain name or IP address, ignoring.", w
);
1451 if (strv_length(*l
) > MAX_NTP_SERVERS
) {
1452 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
1453 "More than %u NTP servers specified, ignoring \"%s\" and any subsequent entries.",
1454 MAX_NTP_SERVERS
, w
);
1458 r
= strv_consume(l
, TAKE_PTR(w
));
1466 int config_parse_dhcp_user_class(
1468 const char *filename
,
1470 const char *section
,
1471 unsigned section_line
,
1485 if (isempty(rvalue
)) {
1491 _cleanup_free_
char *w
= NULL
;
1493 r
= extract_first_word(&rvalue
, &w
, NULL
, 0);
1497 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1498 "Failed to split user classes option, ignoring: %s", rvalue
);
1504 if (strlen(w
) > 255) {
1505 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
1506 "%s length is not in the range 1-255, ignoring.", w
);
1510 r
= strv_push(l
, w
);
1520 int config_parse_section_route_table(
1522 const char *filename
,
1524 const char *section
,
1525 unsigned section_line
,
1532 Network
*network
= data
;
1541 r
= safe_atou32(rvalue
, &rt
);
1543 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1544 "Failed to parse RouteTable=%s, ignoring assignment: %m", rvalue
);
1548 if (streq_ptr(section
, "DHCP")) {
1549 network
->dhcp_route_table
= rt
;
1550 network
->dhcp_route_table_set
= true;
1551 } else { /* section is IPv6AcceptRA */
1552 network
->ipv6_accept_ra_route_table
= rt
;
1553 network
->ipv6_accept_ra_route_table_set
= true;
1559 DEFINE_CONFIG_PARSE_ENUM(config_parse_dhcp_use_domains
, dhcp_use_domains
, DHCPUseDomains
,
1560 "Failed to parse DHCP use domains setting");
1562 static const char* const dhcp_use_domains_table
[_DHCP_USE_DOMAINS_MAX
] = {
1563 [DHCP_USE_DOMAINS_NO
] = "no",
1564 [DHCP_USE_DOMAINS_ROUTE
] = "route",
1565 [DHCP_USE_DOMAINS_YES
] = "yes",
1568 DEFINE_STRING_TABLE_LOOKUP_WITH_BOOLEAN(dhcp_use_domains
, DHCPUseDomains
, DHCP_USE_DOMAINS_YES
);
1570 DEFINE_CONFIG_PARSE_ENUM(config_parse_lldp_mode
, lldp_mode
, LLDPMode
, "Failed to parse LLDP= setting.");
1572 static const char* const lldp_mode_table
[_LLDP_MODE_MAX
] = {
1573 [LLDP_MODE_NO
] = "no",
1574 [LLDP_MODE_YES
] = "yes",
1575 [LLDP_MODE_ROUTERS_ONLY
] = "routers-only",
1578 DEFINE_STRING_TABLE_LOOKUP_WITH_BOOLEAN(lldp_mode
, LLDPMode
, LLDP_MODE_YES
);
1580 int config_parse_iaid(const char *unit
,
1581 const char *filename
,
1583 const char *section
,
1584 unsigned section_line
,
1590 Network
*network
= data
;
1599 r
= safe_atou32(rvalue
, &iaid
);
1601 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1602 "Unable to read IAID, ignoring assignment: %s", rvalue
);
1606 network
->iaid
= iaid
;
1607 network
->iaid_set
= true;
1612 int config_parse_required_for_online(
1614 const char *filename
,
1616 const char *section
,
1617 unsigned section_line
,
1624 Network
*network
= data
;
1625 LinkOperationalState s
;
1626 bool required
= true;
1629 if (isempty(rvalue
)) {
1630 network
->required_for_online
= true;
1631 network
->required_operstate_for_online
= LINK_OPERSTATE_DEGRADED
;
1635 s
= link_operstate_from_string(rvalue
);
1637 r
= parse_boolean(rvalue
);
1639 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1640 "Failed to parse %s= setting, ignoring assignment: %s",
1646 s
= LINK_OPERSTATE_DEGRADED
;
1649 network
->required_for_online
= required
;
1650 network
->required_operstate_for_online
= s
;