2 This file is part of systemd.
4 Copyright 2013 Tom Gundersen <teg@jklm.no>
6 systemd is free software; you can redistribute it and/or modify it
7 under the terms of the GNU Lesser General Public License as published by
8 the Free Software Foundation; either version 2.1 of the License, or
9 (at your option) any later version.
11 systemd is distributed in the hope that it will be useful, but
12 WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public License
17 along with systemd; If not, see <http://www.gnu.org/licenses/>.
23 #include "alloc-util.h"
24 #include "conf-files.h"
25 #include "conf-parser.h"
26 #include "dns-domain.h"
28 #include "hostname-util.h"
29 #include "network-internal.h"
30 #include "networkd-network.h"
32 #include "parse-util.h"
34 #include "stat-util.h"
35 #include "string-table.h"
36 #include "string-util.h"
39 static int network_load_one(Manager
*manager
, const char *filename
) {
40 _cleanup_network_free_ Network
*network
= NULL
;
41 _cleanup_fclose_
FILE *file
= NULL
;
50 file
= fopen(filename
, "re");
58 if (null_or_empty_fd(fileno(file
))) {
59 log_debug("Skipping empty file: %s", filename
);
63 network
= new0(Network
, 1);
67 network
->manager
= manager
;
69 LIST_HEAD_INIT(network
->static_addresses
);
70 LIST_HEAD_INIT(network
->static_routes
);
71 LIST_HEAD_INIT(network
->static_fdb_entries
);
73 network
->stacked_netdevs
= hashmap_new(&string_hash_ops
);
74 if (!network
->stacked_netdevs
)
77 network
->addresses_by_section
= hashmap_new(NULL
);
78 if (!network
->addresses_by_section
)
81 network
->routes_by_section
= hashmap_new(NULL
);
82 if (!network
->routes_by_section
)
85 network
->fdb_entries_by_section
= hashmap_new(NULL
);
86 if (!network
->fdb_entries_by_section
)
89 network
->filename
= strdup(filename
);
90 if (!network
->filename
)
93 network
->name
= strdup(basename(filename
));
97 d
= strrchr(network
->name
, '.');
101 assert(streq(d
, ".network"));
105 network
->dhcp
= ADDRESS_FAMILY_NO
;
106 network
->dhcp_use_ntp
= true;
107 network
->dhcp_use_dns
= true;
108 network
->dhcp_use_hostname
= true;
109 network
->dhcp_use_routes
= true;
110 network
->dhcp_send_hostname
= true;
111 network
->dhcp_route_metric
= DHCP_ROUTE_METRIC
;
112 network
->dhcp_client_identifier
= DHCP_CLIENT_ID_DUID
;
114 network
->dhcp_server_emit_dns
= true;
115 network
->dhcp_server_emit_ntp
= true;
116 network
->dhcp_server_emit_timezone
= true;
118 network
->use_bpdu
= true;
119 network
->allow_port_to_be_root
= true;
120 network
->unicast_flood
= true;
122 network
->lldp_mode
= LLDP_MODE_ROUTERS_ONLY
;
124 network
->llmnr
= RESOLVE_SUPPORT_YES
;
125 network
->mdns
= RESOLVE_SUPPORT_NO
;
126 network
->dnssec_mode
= _DNSSEC_MODE_INVALID
;
128 network
->link_local
= ADDRESS_FAMILY_IPV6
;
130 network
->ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_NO
;
131 network
->ipv6_accept_ra
= -1;
132 network
->ipv6_dad_transmits
= -1;
133 network
->ipv6_hop_limit
= -1;
134 network
->duid_type
= _DUID_TYPE_INVALID
;
135 network
->proxy_arp
= -1;
137 r
= config_parse(NULL
, filename
, file
,
145 "DHCPv4\0" /* compat */
149 config_item_perf_lookup
, network_network_gperf_lookup
,
150 false, false, true, network
);
154 /* IPMasquerade=yes implies IPForward=yes */
155 if (network
->ip_masquerade
)
156 network
->ip_forward
|= ADDRESS_FAMILY_IPV4
;
158 LIST_PREPEND(networks
, manager
->networks
, network
);
160 r
= hashmap_ensure_allocated(&manager
->networks_by_name
, &string_hash_ops
);
164 r
= hashmap_put(manager
->networks_by_name
, network
->name
, network
);
168 LIST_FOREACH(routes
, route
, network
->static_routes
) {
169 if (!route
->family
) {
170 log_warning("Route section without Gateway field configured in %s. "
171 "Ignoring", filename
);
176 LIST_FOREACH(addresses
, address
, network
->static_addresses
) {
177 if (!address
->family
) {
178 log_warning("Address section without Address field configured in %s. "
179 "Ignoring", filename
);
189 int network_load(Manager
*manager
) {
191 _cleanup_strv_free_
char **files
= NULL
;
197 while ((network
= manager
->networks
))
198 network_free(network
);
200 r
= conf_files_list_strv(&files
, ".network", NULL
, network_dirs
);
202 return log_error_errno(r
, "Failed to enumerate network files: %m");
204 STRV_FOREACH_BACKWARDS(f
, files
) {
205 r
= network_load_one(manager
, *f
);
213 void network_free(Network
*network
) {
223 free(network
->filename
);
225 free(network
->match_mac
);
226 strv_free(network
->match_path
);
227 strv_free(network
->match_driver
);
228 strv_free(network
->match_type
);
229 strv_free(network
->match_name
);
231 free(network
->description
);
232 free(network
->dhcp_vendor_class_identifier
);
233 free(network
->dhcp_hostname
);
237 strv_free(network
->ntp
);
238 strv_free(network
->dns
);
239 strv_free(network
->search_domains
);
240 strv_free(network
->route_domains
);
241 strv_free(network
->bind_carrier
);
243 netdev_unref(network
->bridge
);
245 netdev_unref(network
->bond
);
247 HASHMAP_FOREACH(netdev
, network
->stacked_netdevs
, i
) {
248 hashmap_remove(network
->stacked_netdevs
, netdev
->ifname
);
249 netdev_unref(netdev
);
251 hashmap_free(network
->stacked_netdevs
);
253 while ((route
= network
->static_routes
))
256 while ((address
= network
->static_addresses
))
257 address_free(address
);
259 while ((fdb_entry
= network
->static_fdb_entries
))
260 fdb_entry_free(fdb_entry
);
262 hashmap_free(network
->addresses_by_section
);
263 hashmap_free(network
->routes_by_section
);
264 hashmap_free(network
->fdb_entries_by_section
);
266 if (network
->manager
) {
267 if (network
->manager
->networks
)
268 LIST_REMOVE(networks
, network
->manager
->networks
, network
);
270 if (network
->manager
->networks_by_name
)
271 hashmap_remove(network
->manager
->networks_by_name
, network
->name
);
276 condition_free_list(network
->match_host
);
277 condition_free_list(network
->match_virt
);
278 condition_free_list(network
->match_kernel
);
279 condition_free_list(network
->match_arch
);
281 free(network
->dhcp_server_timezone
);
282 free(network
->dhcp_server_dns
);
283 free(network
->dhcp_server_ntp
);
285 set_free_free(network
->dnssec_negative_trust_anchors
);
290 int network_get_by_name(Manager
*manager
, const char *name
, Network
**ret
) {
297 network
= hashmap_get(manager
->networks_by_name
, name
);
306 int network_get(Manager
*manager
, struct udev_device
*device
,
307 const char *ifname
, const struct ether_addr
*address
,
310 struct udev_device
*parent
;
311 const char *path
= NULL
, *parent_driver
= NULL
, *driver
= NULL
, *devtype
= NULL
;
317 path
= udev_device_get_property_value(device
, "ID_PATH");
319 parent
= udev_device_get_parent(device
);
321 parent_driver
= udev_device_get_driver(parent
);
323 driver
= udev_device_get_property_value(device
, "ID_NET_DRIVER");
325 devtype
= udev_device_get_devtype(device
);
328 LIST_FOREACH(networks
, network
, manager
->networks
) {
329 if (net_match_config(network
->match_mac
, network
->match_path
,
330 network
->match_driver
, network
->match_type
,
331 network
->match_name
, network
->match_host
,
332 network
->match_virt
, network
->match_kernel
,
334 address
, path
, parent_driver
, driver
,
336 if (network
->match_name
&& device
) {
338 uint8_t name_assign_type
= NET_NAME_UNKNOWN
;
340 attr
= udev_device_get_sysattr_value(device
, "name_assign_type");
342 (void) safe_atou8(attr
, &name_assign_type
);
344 if (name_assign_type
== NET_NAME_ENUM
)
345 log_warning("%s: found matching network '%s', based on potentially unpredictable ifname",
346 ifname
, network
->filename
);
348 log_debug("%s: found matching network '%s'", ifname
, network
->filename
);
350 log_debug("%s: found matching network '%s'", ifname
, network
->filename
);
362 int network_apply(Manager
*manager
, Network
*network
, Link
*link
) {
369 link
->network
= network
;
371 if (network
->ipv4ll_route
) {
374 r
= route_new_static(network
, 0, &route
);
378 r
= inet_pton(AF_INET
, "169.254.0.0", &route
->dst
.in
);
384 route
->family
= AF_INET
;
385 route
->dst_prefixlen
= 16;
386 route
->scope
= RT_SCOPE_LINK
;
387 route
->priority
= IPV4LL_ROUTE_METRIC
;
388 route
->protocol
= RTPROT_STATIC
;
391 if (!strv_isempty(network
->dns
) ||
392 !strv_isempty(network
->ntp
) ||
393 !strv_isempty(network
->search_domains
) ||
394 !strv_isempty(network
->route_domains
)) {
395 manager_dirty(manager
);
402 bool network_has_static_ipv6_addresses(Network
*network
) {
407 LIST_FOREACH(addresses
, address
, network
->static_addresses
) {
408 if (address
->family
== AF_INET6
)
415 int config_parse_netdev(const char *unit
,
416 const char *filename
,
419 unsigned section_line
,
425 Network
*network
= userdata
;
426 _cleanup_free_
char *kind_string
= NULL
;
437 kind_string
= strdup(lvalue
);
441 /* the keys are CamelCase versions of the kind */
442 for (p
= kind_string
; *p
; p
++)
445 kind
= netdev_kind_from_string(kind_string
);
446 if (kind
== _NETDEV_KIND_INVALID
) {
447 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Invalid NetDev kind: %s", lvalue
);
451 r
= netdev_get(network
->manager
, rvalue
, &netdev
);
453 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "%s could not be found, ignoring assignment: %s", lvalue
, rvalue
);
457 if (netdev
->kind
!= kind
) {
458 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "NetDev is not a %s, ignoring assignment: %s", lvalue
, rvalue
);
463 case NETDEV_KIND_BRIDGE
:
464 network
->bridge
= netdev
;
467 case NETDEV_KIND_BOND
:
468 network
->bond
= netdev
;
471 case NETDEV_KIND_VLAN
:
472 case NETDEV_KIND_MACVLAN
:
473 case NETDEV_KIND_MACVTAP
:
474 case NETDEV_KIND_IPVLAN
:
475 case NETDEV_KIND_VXLAN
:
476 r
= hashmap_put(network
->stacked_netdevs
, netdev
->ifname
, netdev
);
478 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Can not add VLAN '%s' to network: %m", rvalue
);
484 assert_not_reached("Can not parse NetDev");
492 int config_parse_domains(
494 const char *filename
,
497 unsigned section_line
,
512 if (isempty(rvalue
)) {
513 n
->search_domains
= strv_free(n
->search_domains
);
514 n
->route_domains
= strv_free(n
->route_domains
);
520 _cleanup_free_
char *w
= NULL
, *normalized
= NULL
;
524 r
= extract_first_word(&p
, &w
, NULL
, 0);
526 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract search or route domain, ignoring: %s", rvalue
);
532 is_route
= w
[0] == '~';
533 domain
= is_route
? w
+ 1 : w
;
535 if (dns_name_is_root(domain
) || streq(domain
, "*")) {
536 /* If the root domain appears as is, or the special token "*" is found, we'll consider this as
537 * routing domain, unconditionally. */
539 domain
= "."; /* make sure we don't allow empty strings, thus write the root domain as "." */
542 r
= dns_name_normalize(domain
, &normalized
);
544 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "'%s' is not a valid domain name, ignoring.", domain
);
550 if (is_localhost(domain
)) {
551 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "'localhost' domain names may not be configure as search or route domains, ignoring assignment: %s", domain
);
557 r
= strv_extend(&n
->route_domains
, domain
);
562 r
= strv_extend(&n
->search_domains
, domain
);
568 strv_uniq(n
->route_domains
);
569 strv_uniq(n
->search_domains
);
574 int config_parse_tunnel(const char *unit
,
575 const char *filename
,
578 unsigned section_line
,
584 Network
*network
= userdata
;
593 r
= netdev_get(network
->manager
, rvalue
, &netdev
);
595 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Tunnel is invalid, ignoring assignment: %s", rvalue
);
599 if (netdev
->kind
!= NETDEV_KIND_IPIP
&&
600 netdev
->kind
!= NETDEV_KIND_SIT
&&
601 netdev
->kind
!= NETDEV_KIND_GRE
&&
602 netdev
->kind
!= NETDEV_KIND_GRETAP
&&
603 netdev
->kind
!= NETDEV_KIND_IP6GRE
&&
604 netdev
->kind
!= NETDEV_KIND_IP6GRETAP
&&
605 netdev
->kind
!= NETDEV_KIND_VTI
&&
606 netdev
->kind
!= NETDEV_KIND_VTI6
&&
607 netdev
->kind
!= NETDEV_KIND_IP6TNL
609 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
610 "NetDev is not a tunnel, ignoring assignment: %s", rvalue
);
614 r
= hashmap_put(network
->stacked_netdevs
, netdev
->ifname
, netdev
);
616 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Cannot add VLAN '%s' to network, ignoring: %m", rvalue
);
625 int config_parse_ipv4ll(
627 const char *filename
,
630 unsigned section_line
,
637 AddressFamilyBoolean
*link_local
= data
;
644 /* Note that this is mostly like
645 * config_parse_address_family_boolean(), except that it
646 * applies only to IPv4 */
648 SET_FLAG(*link_local
, ADDRESS_FAMILY_IPV4
, parse_boolean(rvalue
));
653 int config_parse_dhcp(
655 const char *filename
,
658 unsigned section_line
,
665 AddressFamilyBoolean
*dhcp
= data
, s
;
672 /* Note that this is mostly like
673 * config_parse_address_family_boolean(), except that it
674 * understands some old names for the enum values */
676 s
= address_family_boolean_from_string(rvalue
);
679 /* Previously, we had a slightly different enum here,
680 * support its values for compatbility. */
682 if (streq(rvalue
, "none"))
683 s
= ADDRESS_FAMILY_NO
;
684 else if (streq(rvalue
, "v4"))
685 s
= ADDRESS_FAMILY_IPV4
;
686 else if (streq(rvalue
, "v6"))
687 s
= ADDRESS_FAMILY_IPV6
;
688 else if (streq(rvalue
, "both"))
689 s
= ADDRESS_FAMILY_YES
;
691 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse DHCP option, ignoring: %s", rvalue
);
700 static const char* const dhcp_client_identifier_table
[_DHCP_CLIENT_ID_MAX
] = {
701 [DHCP_CLIENT_ID_MAC
] = "mac",
702 [DHCP_CLIENT_ID_DUID
] = "duid"
705 DEFINE_PRIVATE_STRING_TABLE_LOOKUP_FROM_STRING(dhcp_client_identifier
, DCHPClientIdentifier
);
706 DEFINE_CONFIG_PARSE_ENUM(config_parse_dhcp_client_identifier
, dhcp_client_identifier
, DCHPClientIdentifier
, "Failed to parse client identifier type");
708 int config_parse_ipv6token(
710 const char *filename
,
713 unsigned section_line
,
720 union in_addr_union buffer
;
721 struct in6_addr
*token
= data
;
729 r
= in_addr_from_string(AF_INET6
, rvalue
, &buffer
);
731 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to parse IPv6 token, ignoring: %s", rvalue
);
735 r
= in_addr_is_null(AF_INET6
, &buffer
);
737 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "IPv6 token can not be the ANY address, ignoring: %s", rvalue
);
741 if ((buffer
.in6
.s6_addr32
[0] | buffer
.in6
.s6_addr32
[1]) != 0) {
742 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "IPv6 token can not be longer than 64 bits, ignoring: %s", rvalue
);
751 static const char* const ipv6_privacy_extensions_table
[_IPV6_PRIVACY_EXTENSIONS_MAX
] = {
752 [IPV6_PRIVACY_EXTENSIONS_NO
] = "no",
753 [IPV6_PRIVACY_EXTENSIONS_PREFER_PUBLIC
] = "prefer-public",
754 [IPV6_PRIVACY_EXTENSIONS_YES
] = "yes",
757 DEFINE_STRING_TABLE_LOOKUP(ipv6_privacy_extensions
, IPv6PrivacyExtensions
);
759 int config_parse_ipv6_privacy_extensions(
761 const char *filename
,
764 unsigned section_line
,
771 IPv6PrivacyExtensions
*ipv6_privacy_extensions
= data
;
777 assert(ipv6_privacy_extensions
);
779 /* Our enum shall be a superset of booleans, hence first try
780 * to parse as boolean, and then as enum */
782 k
= parse_boolean(rvalue
);
784 *ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_YES
;
786 *ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_NO
;
788 IPv6PrivacyExtensions s
;
790 s
= ipv6_privacy_extensions_from_string(rvalue
);
793 if (streq(rvalue
, "kernel"))
794 s
= _IPV6_PRIVACY_EXTENSIONS_INVALID
;
796 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse IPv6 privacy extensions option, ignoring: %s", rvalue
);
801 *ipv6_privacy_extensions
= s
;
807 int config_parse_hostname(
809 const char *filename
,
812 unsigned section_line
,
819 char **hostname
= data
, *hn
= NULL
;
826 r
= config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, &hn
, userdata
);
830 if (!hostname_is_valid(hn
, false)) {
831 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Hostname is not valid, ignoring assignment: %s", rvalue
);
837 *hostname
= hostname_cleanup(hn
);
841 int config_parse_timezone(
843 const char *filename
,
846 unsigned section_line
,
853 char **datap
= data
, *tz
= NULL
;
860 r
= config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, &tz
, userdata
);
864 if (!timezone_is_valid(tz
)) {
865 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Timezone is not valid, ignoring assignment: %s", rvalue
);
876 int config_parse_dhcp_server_dns(
878 const char *filename
,
881 unsigned section_line
,
889 const char *p
= rvalue
;
897 _cleanup_free_
char *w
= NULL
;
898 struct in_addr a
, *m
;
900 r
= extract_first_word(&p
, &w
, NULL
, 0);
902 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract word, ignoring: %s", rvalue
);
909 if (inet_pton(AF_INET
, w
, &a
) <= 0) {
910 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse DNS server address, ignoring: %s", w
);
914 m
= realloc(n
->dhcp_server_dns
, (n
->n_dhcp_server_dns
+ 1) * sizeof(struct in_addr
));
918 m
[n
->n_dhcp_server_dns
++] = a
;
919 n
->dhcp_server_dns
= m
;
923 int config_parse_dhcp_server_ntp(
925 const char *filename
,
928 unsigned section_line
,
936 const char *p
= rvalue
;
944 _cleanup_free_
char *w
= NULL
;
945 struct in_addr a
, *m
;
947 r
= extract_first_word(&p
, &w
, NULL
, 0);
949 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract word, ignoring: %s", rvalue
);
956 if (inet_pton(AF_INET
, w
, &a
) <= 0) {
957 log_syntax(unit
, LOG_ERR
, filename
, line
, 0, "Failed to parse NTP server address, ignoring: %s", w
);
961 m
= realloc(n
->dhcp_server_ntp
, (n
->n_dhcp_server_ntp
+ 1) * sizeof(struct in_addr
));
965 m
[n
->n_dhcp_server_ntp
++] = a
;
966 n
->dhcp_server_ntp
= m
;
970 int config_parse_dnssec_negative_trust_anchors(
972 const char *filename
,
975 unsigned section_line
,
982 const char *p
= rvalue
;
990 if (isempty(rvalue
)) {
991 n
->dnssec_negative_trust_anchors
= set_free_free(n
->dnssec_negative_trust_anchors
);
996 _cleanup_free_
char *w
= NULL
;
998 r
= extract_first_word(&p
, &w
, NULL
, 0);
1000 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "Failed to extract negative trust anchor domain, ignoring: %s", rvalue
);
1006 r
= dns_name_is_valid(w
);
1008 log_syntax(unit
, LOG_ERR
, filename
, line
, r
, "%s is not a valid domain name, ignoring.", w
);
1012 r
= set_ensure_allocated(&n
->dnssec_negative_trust_anchors
, &dns_name_hash_ops
);
1016 r
= set_put(n
->dnssec_negative_trust_anchors
, w
);
1026 DEFINE_CONFIG_PARSE_ENUM(config_parse_dhcp_use_domains
, dhcp_use_domains
, DHCPUseDomains
, "Failed to parse DHCP use domains setting");
1028 static const char* const dhcp_use_domains_table
[_DHCP_USE_DOMAINS_MAX
] = {
1029 [DHCP_USE_DOMAINS_NO
] = "no",
1030 [DHCP_USE_DOMAINS_ROUTE
] = "route",
1031 [DHCP_USE_DOMAINS_YES
] = "yes",
1034 DEFINE_STRING_TABLE_LOOKUP_WITH_BOOLEAN(dhcp_use_domains
, DHCPUseDomains
, DHCP_USE_DOMAINS_YES
);
1036 DEFINE_CONFIG_PARSE_ENUM(config_parse_lldp_mode
, lldp_mode
, LLDPMode
, "Failed to parse LLDP= setting.");
1038 static const char* const lldp_mode_table
[_LLDP_MODE_MAX
] = {
1039 [LLDP_MODE_NO
] = "no",
1040 [LLDP_MODE_YES
] = "yes",
1041 [LLDP_MODE_ROUTERS_ONLY
] = "routers-only",
1044 DEFINE_STRING_TABLE_LOOKUP_WITH_BOOLEAN(lldp_mode
, LLDPMode
, LLDP_MODE_YES
);