1 /* SPDX-License-Identifier: LGPL-2.1+ */
4 #include <netinet/in.h>
5 #include <linux/netdevice.h>
7 #include "alloc-util.h"
8 #include "conf-files.h"
9 #include "conf-parser.h"
10 #include "dns-domain.h"
12 #include "hostname-util.h"
13 #include "in-addr-util.h"
14 #include "network-internal.h"
15 #include "networkd-manager.h"
16 #include "networkd-network.h"
17 #include "parse-util.h"
19 #include "socket-util.h"
20 #include "stat-util.h"
21 #include "string-table.h"
22 #include "string-util.h"
26 /* Let's assume that anything above this number is a user misconfiguration. */
27 #define MAX_NTP_SERVERS 128
29 /* Set defaults following RFC7844 */
30 void network_apply_anonymize_if_set(Network
*network
) {
31 if (!network
->dhcp_anonymize
)
34 SHOULD NOT send the Host Name option */
35 network
->dhcp_send_hostname
= false;
36 /* RFC7844 section 3.:
37 MAY contain the Client Identifier option
39 clients MUST use client identifiers based solely
40 on the link-layer address */
41 /* NOTE: Using MAC, as it does not reveal extra information,
42 * and some servers might not answer if this option is not sent */
43 network
->dhcp_client_identifier
= DHCP_CLIENT_ID_MAC
;
45 SHOULD NOT use the Vendor Class Identifier option */
46 network
->dhcp_vendor_class_identifier
= mfree(network
->dhcp_vendor_class_identifier
);
47 /* RFC7844 section 3.6.:
48 The client intending to protect its privacy SHOULD only request a
49 minimal number of options in the PRL and SHOULD also randomly shuffle
50 the ordering of option codes in the PRL. If this random ordering
51 cannot be implemented, the client MAY order the option codes in the
52 PRL by option code number (lowest to highest).
54 /* NOTE: dhcp_use_mtu is false by default,
55 * though it was not initiallized to any value in network_load_one.
56 * Maybe there should be another var called *send*?
57 * (to use the MTU sent by the server but to do not send
58 * the option in the PRL). */
59 network
->dhcp_use_mtu
= false;
60 /* NOTE: when Anonymize=yes, the PRL route options are sent by default,
61 * but this is needed to use them. */
62 network
->dhcp_use_routes
= true;
63 /* RFC7844 section 3.6.
64 * same comments as previous option */
65 network
->dhcp_use_timezone
= false;
68 static int network_resolve_netdev_one(Network
*network
, const char *name
, NetDevKind kind
, NetDev
**ret_netdev
) {
69 const char *kind_string
;
73 /* For test-networkd-conf, the check must be earlier than the assertions. */
78 assert(network
->manager
);
79 assert(network
->filename
);
82 if (kind
== _NETDEV_KIND_TUNNEL
)
83 kind_string
= "tunnel";
85 kind_string
= netdev_kind_to_string(kind
);
87 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
88 "%s: Invalid NetDev kind of %s, ignoring assignment.",
89 network
->filename
, name
);
92 r
= netdev_get(network
->manager
, name
, &netdev
);
94 return log_error_errno(r
, "%s: %s NetDev could not be found, ignoring assignment.",
95 network
->filename
, name
);
97 if (netdev
->kind
!= kind
&& !(kind
== _NETDEV_KIND_TUNNEL
&&
104 NETDEV_KIND_IP6GRETAP
,
108 NETDEV_KIND_ERSPAN
)))
109 return log_error_errno(SYNTHETIC_ERRNO(EINVAL
),
110 "%s: NetDev %s is not a %s, ignoring assignment",
111 network
->filename
, name
, kind_string
);
113 *ret_netdev
= netdev_ref(netdev
);
117 static int network_resolve_stacked_netdevs(Network
*network
) {
124 HASHMAP_FOREACH_KEY(kind
, name
, network
->stacked_netdev_names
, i
) {
125 _cleanup_(netdev_unrefp
) NetDev
*netdev
= NULL
;
127 r
= network_resolve_netdev_one(network
, name
, PTR_TO_INT(kind
), &netdev
);
131 r
= hashmap_ensure_allocated(&network
->stacked_netdevs
, &string_hash_ops
);
135 r
= hashmap_put(network
->stacked_netdevs
, netdev
->ifname
, netdev
);
137 return log_error_errno(r
, "%s: Failed to add NetDev '%s' to network: %m",
138 network
->filename
, (const char *) name
);
146 int network_verify(Network
*network
) {
147 Address
*address
, *address_next
;
148 Route
*route
, *route_next
;
149 FdbEntry
*fdb
, *fdb_next
;
150 Neighbor
*neighbor
, *neighbor_next
;
151 AddressLabel
*label
, *label_next
;
152 Prefix
*prefix
, *prefix_next
;
153 RoutingPolicyRule
*rule
, *rule_next
;
156 assert(network
->filename
);
158 if (set_isempty(network
->match_mac
) && strv_isempty(network
->match_path
) &&
159 strv_isempty(network
->match_driver
) && strv_isempty(network
->match_type
) &&
160 strv_isempty(network
->match_name
) && strv_isempty(network
->match_property
) &&
161 !network
->conditions
)
162 log_warning("%s: No valid settings found in the [Match] section. "
163 "The file will match all interfaces. "
164 "If that is intended, please add Name=* in the [Match] section.",
167 /* skip out early if configuration does not match the environment */
168 if (!condition_test_list(network
->conditions
, NULL
, NULL
, NULL
))
169 return log_debug_errno(SYNTHETIC_ERRNO(EINVAL
),
170 "%s: Conditions in the file do not match the system environment, skipping.",
173 (void) network_resolve_netdev_one(network
, network
->bond_name
, NETDEV_KIND_BOND
, &network
->bond
);
174 (void) network_resolve_netdev_one(network
, network
->bridge_name
, NETDEV_KIND_BRIDGE
, &network
->bridge
);
175 (void) network_resolve_netdev_one(network
, network
->vrf_name
, NETDEV_KIND_VRF
, &network
->vrf
);
176 (void) network_resolve_stacked_netdevs(network
);
178 /* Free unnecessary entries. */
179 network
->bond_name
= mfree(network
->bond_name
);
180 network
->bridge_name
= mfree(network
->bridge_name
);
181 network
->vrf_name
= mfree(network
->vrf_name
);
182 network
->stacked_netdev_names
= hashmap_free_free_key(network
->stacked_netdev_names
);
185 /* Bonding slave does not support addressing. */
186 if (network
->ipv6_accept_ra
> 0) {
187 log_warning("%s: Cannot enable IPv6AcceptRA= when Bond= is specified, disabling IPv6AcceptRA=.",
189 network
->ipv6_accept_ra
= 0;
191 if (network
->link_local
>= 0 && network
->link_local
!= ADDRESS_FAMILY_NO
) {
192 log_warning("%s: Cannot enable LinkLocalAddressing= when Bond= is specified, disabling LinkLocalAddressing=.",
194 network
->link_local
= ADDRESS_FAMILY_NO
;
196 if (network
->dhcp
!= ADDRESS_FAMILY_NO
) {
197 log_warning("%s: Cannot enable DHCP= when Bond= is specified, disabling DHCP=.",
199 network
->dhcp
= ADDRESS_FAMILY_NO
;
201 if (network
->dhcp_server
) {
202 log_warning("%s: Cannot enable DHCPServer= when Bond= is specified, disabling DHCPServer=.",
204 network
->dhcp_server
= false;
206 if (network
->n_static_addresses
> 0) {
207 log_warning("%s: Cannot set addresses when Bond= is specified, ignoring addresses.",
209 while ((address
= network
->static_addresses
))
210 address_free(address
);
212 if (network
->n_static_routes
> 0) {
213 log_warning("%s: Cannot set routes when Bond= is specified, ignoring routes.",
215 while ((route
= network
->static_routes
))
220 if (network
->link_local
< 0)
221 network
->link_local
= network
->bridge
? ADDRESS_FAMILY_NO
: ADDRESS_FAMILY_IPV6
;
223 if (FLAGS_SET(network
->link_local
, ADDRESS_FAMILY_FALLBACK_IPV4
) &&
224 !FLAGS_SET(network
->dhcp
, ADDRESS_FAMILY_IPV4
)) {
225 log_warning("%s: fallback assignment of IPv4 link local address is enabled but DHCPv4 is disabled. "
226 "Disabling the fallback assignment.", network
->filename
);
227 SET_FLAG(network
->link_local
, ADDRESS_FAMILY_FALLBACK_IPV4
, false);
230 if (network
->ipv6_accept_ra
< 0 && network
->bridge
)
231 network
->ipv6_accept_ra
= false;
233 /* IPMasquerade=yes implies IPForward=yes */
234 if (network
->ip_masquerade
)
235 network
->ip_forward
|= ADDRESS_FAMILY_IPV4
;
237 if (network
->mtu
> 0 && network
->dhcp_use_mtu
) {
238 log_warning("%s: MTUBytes= in [Link] section and UseMTU= in [DHCP] section are set. "
239 "Disabling UseMTU=.", network
->filename
);
240 network
->dhcp_use_mtu
= false;
243 if (network
->dhcp_critical
>= 0) {
244 if (network
->keep_configuration
>= 0)
245 log_warning("%s: Both KeepConfiguration= and deprecated CriticalConnection= are set. "
246 "Ignoring CriticalConnection=.", network
->filename
);
247 else if (network
->dhcp_critical
)
248 /* CriticalConnection=yes also preserve foreign static configurations. */
249 network
->keep_configuration
= KEEP_CONFIGURATION_YES
;
251 /* For backward compatibility, we do not release DHCP addresses on manager stop. */
252 network
->keep_configuration
= KEEP_CONFIGURATION_DHCP_ON_STOP
;
255 if (network
->keep_configuration
< 0)
256 /* For backward compatibility, we do not release DHCP addresses on manager stop. */
257 network
->keep_configuration
= KEEP_CONFIGURATION_DHCP_ON_STOP
;
259 LIST_FOREACH_SAFE(addresses
, address
, address_next
, network
->static_addresses
)
260 if (address_section_verify(address
) < 0)
261 address_free(address
);
263 LIST_FOREACH_SAFE(routes
, route
, route_next
, network
->static_routes
)
264 if (route_section_verify(route
, network
) < 0)
267 LIST_FOREACH_SAFE(static_fdb_entries
, fdb
, fdb_next
, network
->static_fdb_entries
)
268 if (section_is_invalid(fdb
->section
))
271 LIST_FOREACH_SAFE(neighbors
, neighbor
, neighbor_next
, network
->neighbors
)
272 if (neighbor_section_verify(neighbor
) < 0)
273 neighbor_free(neighbor
);
275 LIST_FOREACH_SAFE(labels
, label
, label_next
, network
->address_labels
)
276 if (section_is_invalid(label
->section
))
277 address_label_free(label
);
279 LIST_FOREACH_SAFE(prefixes
, prefix
, prefix_next
, network
->static_prefixes
)
280 if (section_is_invalid(prefix
->section
))
283 LIST_FOREACH_SAFE(rules
, rule
, rule_next
, network
->rules
)
284 if (routing_policy_rule_section_verify(rule
) < 0)
285 routing_policy_rule_free(rule
);
290 int network_load_one(Manager
*manager
, const char *filename
) {
291 _cleanup_free_
char *fname
= NULL
, *name
= NULL
;
292 _cleanup_(network_unrefp
) Network
*network
= NULL
;
293 _cleanup_fclose_
FILE *file
= NULL
;
294 const char *dropin_dirname
;
301 file
= fopen(filename
, "re");
309 if (null_or_empty_fd(fileno(file
))) {
310 log_debug("Skipping empty file: %s", filename
);
314 fname
= strdup(filename
);
318 name
= strdup(basename(filename
));
322 d
= strrchr(name
, '.');
328 dropin_dirname
= strjoina(name
, ".network.d");
330 network
= new(Network
, 1);
334 *network
= (Network
) {
335 .filename
= TAKE_PTR(fname
),
336 .name
= TAKE_PTR(name
),
341 .required_for_online
= true,
342 .required_operstate_for_online
= LINK_OPERSTATE_DEGRADED
,
343 .dhcp
= ADDRESS_FAMILY_NO
,
345 .dhcp_use_ntp
= true,
346 .dhcp_use_dns
= true,
347 .dhcp_use_hostname
= true,
348 .dhcp_use_routes
= true,
349 /* NOTE: this var might be overwritten by network_apply_anonymize_if_set */
350 .dhcp_send_hostname
= true,
351 /* To enable/disable RFC7844 Anonymity Profiles */
352 .dhcp_anonymize
= false,
353 .dhcp_route_metric
= DHCP_ROUTE_METRIC
,
354 /* NOTE: this var might be overwritten by network_apply_anonymize_if_set */
355 .dhcp_client_identifier
= DHCP_CLIENT_ID_DUID
,
356 .dhcp_route_table
= RT_TABLE_MAIN
,
357 .dhcp_route_table_set
= false,
358 /* NOTE: from man: UseMTU=... Defaults to false*/
359 .dhcp_use_mtu
= false,
360 /* NOTE: from man: UseTimezone=... Defaults to "no".*/
361 .dhcp_use_timezone
= false,
362 .rapid_commit
= true,
364 .dhcp6_use_ntp
= true,
365 .dhcp6_use_dns
= true,
367 .dhcp_server_emit_dns
= true,
368 .dhcp_server_emit_ntp
= true,
369 .dhcp_server_emit_router
= true,
370 .dhcp_server_emit_timezone
= true,
372 .router_emit_dns
= true,
373 .router_emit_domains
= true,
378 .allow_port_to_be_root
= -1,
380 .multicast_flood
= -1,
381 .multicast_to_unicast
= -1,
382 .neighbor_suppression
= -1,
384 .bridge_proxy_arp
= -1,
385 .bridge_proxy_arp_wifi
= -1,
386 .priority
= LINK_BRIDGE_PORT_PRIORITY_INVALID
,
387 .multicast_router
= _MULTICAST_ROUTER_INVALID
,
389 .lldp_mode
= LLDP_MODE_ROUTERS_ONLY
,
391 .dns_default_route
= -1,
392 .llmnr
= RESOLVE_SUPPORT_YES
,
393 .mdns
= RESOLVE_SUPPORT_NO
,
394 .dnssec_mode
= _DNSSEC_MODE_INVALID
,
395 .dns_over_tls_mode
= _DNS_OVER_TLS_MODE_INVALID
,
397 /* If LinkLocalAddressing= is not set, then set to ADDRESS_FAMILY_IPV6 later. */
398 .link_local
= _ADDRESS_FAMILY_INVALID
,
400 .ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_NO
,
401 .ipv6_accept_ra
= -1,
402 .ipv6_dad_transmits
= -1,
403 .ipv6_hop_limit
= -1,
404 .ipv6_proxy_ndp
= -1,
405 .duid
.type
= _DUID_TYPE_INVALID
,
410 .ipv6_accept_ra_use_dns
= true,
411 .ipv6_accept_ra_use_autonomous_prefix
= true,
412 .ipv6_accept_ra_use_onlink_prefix
= true,
413 .ipv6_accept_ra_route_table
= RT_TABLE_MAIN
,
414 .ipv6_accept_ra_route_table_set
= false,
416 .keep_configuration
= _KEEP_CONFIGURATION_INVALID
,
418 .can_triple_sampling
= -1,
421 r
= config_parse_many(filename
, NETWORK_DIRS
, dropin_dirname
,
428 "RoutingPolicyRule\0"
431 "DHCPv4\0" /* compat */
435 "IPv6NDPProxyAddress\0"
439 "IPv6PrefixDelegation\0"
442 config_item_perf_lookup
, network_network_gperf_lookup
,
443 CONFIG_PARSE_WARN
, network
);
447 network_apply_anonymize_if_set(network
);
449 r
= network_add_ipv4ll_route(network
);
451 log_warning_errno(r
, "%s: Failed to add IPv4LL route, ignoring: %m", network
->filename
);
453 r
= network_add_default_route_on_device(network
);
455 log_warning_errno(r
, "%s: Failed to add default route on device, ignoring: %m",
458 r
= ordered_hashmap_ensure_allocated(&manager
->networks
, &string_hash_ops
);
462 r
= ordered_hashmap_put(manager
->networks
, network
->name
, network
);
466 if (network_verify(network
) < 0)
473 int network_load(Manager
*manager
) {
474 _cleanup_strv_free_
char **files
= NULL
;
480 ordered_hashmap_clear_with_destructor(manager
->networks
, network_unref
);
482 r
= conf_files_list_strv(&files
, ".network", NULL
, 0, NETWORK_DIRS
);
484 return log_error_errno(r
, "Failed to enumerate network files: %m");
486 STRV_FOREACH(f
, files
) {
487 r
= network_load_one(manager
, *f
);
495 static Network
*network_free(Network
*network
) {
496 IPv6ProxyNDPAddress
*ipv6_proxy_ndp_address
;
497 RoutingPolicyRule
*rule
;
508 free(network
->filename
);
510 set_free_free(network
->match_mac
);
511 strv_free(network
->match_path
);
512 strv_free(network
->match_driver
);
513 strv_free(network
->match_type
);
514 strv_free(network
->match_name
);
515 strv_free(network
->match_property
);
516 condition_free_list(network
->conditions
);
518 free(network
->description
);
519 free(network
->dhcp_vendor_class_identifier
);
520 strv_free(network
->dhcp_user_class
);
521 free(network
->dhcp_hostname
);
522 set_free(network
->dhcp_black_listed_ip
);
525 strv_free(network
->ntp
);
527 ordered_set_free_free(network
->search_domains
);
528 ordered_set_free_free(network
->route_domains
);
529 strv_free(network
->bind_carrier
);
531 ordered_set_free_free(network
->router_search_domains
);
532 free(network
->router_dns
);
533 set_free_free(network
->ndisc_black_listed_prefix
);
535 free(network
->bridge_name
);
536 free(network
->bond_name
);
537 free(network
->vrf_name
);
538 hashmap_free_free_key(network
->stacked_netdev_names
);
539 netdev_unref(network
->bridge
);
540 netdev_unref(network
->bond
);
541 netdev_unref(network
->vrf
);
542 hashmap_free_with_destructor(network
->stacked_netdevs
, netdev_unref
);
544 while ((route
= network
->static_routes
))
547 while ((address
= network
->static_addresses
))
548 address_free(address
);
550 while ((fdb_entry
= network
->static_fdb_entries
))
551 fdb_entry_free(fdb_entry
);
553 while ((ipv6_proxy_ndp_address
= network
->ipv6_proxy_ndp_addresses
))
554 ipv6_proxy_ndp_address_free(ipv6_proxy_ndp_address
);
556 while ((neighbor
= network
->neighbors
))
557 neighbor_free(neighbor
);
559 while ((label
= network
->address_labels
))
560 address_label_free(label
);
562 while ((prefix
= network
->static_prefixes
))
565 while ((rule
= network
->rules
))
566 routing_policy_rule_free(rule
);
568 hashmap_free(network
->addresses_by_section
);
569 hashmap_free(network
->routes_by_section
);
570 hashmap_free(network
->fdb_entries_by_section
);
571 hashmap_free(network
->neighbors_by_section
);
572 hashmap_free(network
->address_labels_by_section
);
573 hashmap_free(network
->prefixes_by_section
);
574 hashmap_free(network
->rules_by_section
);
576 if (network
->manager
) {
577 if (network
->manager
->networks
&& network
->name
)
578 ordered_hashmap_remove(network
->manager
->networks
, network
->name
);
580 if (network
->manager
->duids_requesting_uuid
)
581 set_remove(network
->manager
->duids_requesting_uuid
, &network
->duid
);
586 free(network
->dhcp_server_timezone
);
587 free(network
->dhcp_server_dns
);
588 free(network
->dhcp_server_ntp
);
590 set_free_free(network
->dnssec_negative_trust_anchors
);
592 return mfree(network
);
595 DEFINE_TRIVIAL_REF_UNREF_FUNC(Network
, network
, network_free
);
597 int network_get_by_name(Manager
*manager
, const char *name
, Network
**ret
) {
604 network
= ordered_hashmap_get(manager
->networks
, name
);
613 int network_get(Manager
*manager
, sd_device
*device
,
614 const char *ifname
, const struct ether_addr
*address
,
622 ORDERED_HASHMAP_FOREACH(network
, manager
->networks
, i
)
623 if (net_match_config(network
->match_mac
, network
->match_path
, network
->match_driver
,
624 network
->match_type
, network
->match_name
, network
->match_property
,
625 device
, address
, ifname
)) {
626 if (network
->match_name
&& device
) {
628 uint8_t name_assign_type
= NET_NAME_UNKNOWN
;
630 if (sd_device_get_sysattr_value(device
, "name_assign_type", &attr
) >= 0)
631 (void) safe_atou8(attr
, &name_assign_type
);
633 if (name_assign_type
== NET_NAME_ENUM
)
634 log_warning("%s: found matching network '%s', based on potentially unpredictable ifname",
635 ifname
, network
->filename
);
637 log_debug("%s: found matching network '%s'", ifname
, network
->filename
);
639 log_debug("%s: found matching network '%s'", ifname
, network
->filename
);
650 int network_apply(Network
*network
, Link
*link
) {
654 link
->network
= network_ref(network
);
656 if (network
->n_dns
> 0 ||
657 !strv_isempty(network
->ntp
) ||
658 !ordered_set_isempty(network
->search_domains
) ||
659 !ordered_set_isempty(network
->route_domains
))
665 bool network_has_static_ipv6_addresses(Network
*network
) {
670 LIST_FOREACH(addresses
, address
, network
->static_addresses
) {
671 if (address
->family
== AF_INET6
)
678 int config_parse_stacked_netdev(const char *unit
,
679 const char *filename
,
682 unsigned section_line
,
688 _cleanup_free_
char *name
= NULL
;
689 NetDevKind kind
= ltype
;
698 NETDEV_KIND_VLAN
, NETDEV_KIND_MACVLAN
, NETDEV_KIND_MACVTAP
,
699 NETDEV_KIND_IPVLAN
, NETDEV_KIND_IPVTAP
, NETDEV_KIND_VXLAN
,
700 NETDEV_KIND_L2TP
, NETDEV_KIND_MACSEC
, _NETDEV_KIND_TUNNEL
,
703 if (!ifname_valid(rvalue
)) {
704 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
705 "Invalid netdev name in %s=, ignoring assignment: %s", lvalue
, rvalue
);
709 name
= strdup(rvalue
);
713 r
= hashmap_ensure_allocated(h
, &string_hash_ops
);
717 r
= hashmap_put(*h
, name
, INT_TO_PTR(kind
));
719 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
720 "Cannot add NetDev '%s' to network, ignoring assignment: %m", name
);
722 log_syntax(unit
, LOG_DEBUG
, filename
, line
, r
,
723 "NetDev '%s' specified twice, ignoring.", name
);
730 int config_parse_domains(
732 const char *filename
,
735 unsigned section_line
,
750 if (isempty(rvalue
)) {
751 n
->search_domains
= ordered_set_free_free(n
->search_domains
);
752 n
->route_domains
= ordered_set_free_free(n
->route_domains
);
758 _cleanup_free_
char *w
= NULL
, *normalized
= NULL
;
762 r
= extract_first_word(&p
, &w
, NULL
, 0);
764 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
765 "Failed to extract search or route domain, ignoring: %s", rvalue
);
771 is_route
= w
[0] == '~';
772 domain
= is_route
? w
+ 1 : w
;
774 if (dns_name_is_root(domain
) || streq(domain
, "*")) {
775 /* If the root domain appears as is, or the special token "*" is found, we'll
776 * consider this as routing domain, unconditionally. */
778 domain
= "."; /* make sure we don't allow empty strings, thus write the root
781 r
= dns_name_normalize(domain
, 0, &normalized
);
783 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
784 "'%s' is not a valid domain name, ignoring.", domain
);
790 if (is_localhost(domain
)) {
791 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
792 "'localhost' domain may not be configured as search or route domain, ignoring assignment: %s",
798 OrderedSet
**set
= is_route
? &n
->route_domains
: &n
->search_domains
;
799 r
= ordered_set_ensure_allocated(set
, &string_hash_ops
);
803 r
= ordered_set_put_strdup(*set
, domain
);
811 int config_parse_ipv6token(
813 const char *filename
,
816 unsigned section_line
,
823 union in_addr_union buffer
;
824 struct in6_addr
*token
= data
;
832 r
= in_addr_from_string(AF_INET6
, rvalue
, &buffer
);
834 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
835 "Failed to parse IPv6 token, ignoring: %s", rvalue
);
839 if (in_addr_is_null(AF_INET6
, &buffer
)) {
840 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
841 "IPv6 token cannot be the ANY address, ignoring: %s", rvalue
);
845 if ((buffer
.in6
.s6_addr32
[0] | buffer
.in6
.s6_addr32
[1]) != 0) {
846 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
847 "IPv6 token cannot be longer than 64 bits, ignoring: %s", rvalue
);
856 static const char* const ipv6_privacy_extensions_table
[_IPV6_PRIVACY_EXTENSIONS_MAX
] = {
857 [IPV6_PRIVACY_EXTENSIONS_NO
] = "no",
858 [IPV6_PRIVACY_EXTENSIONS_PREFER_PUBLIC
] = "prefer-public",
859 [IPV6_PRIVACY_EXTENSIONS_YES
] = "yes",
862 DEFINE_STRING_TABLE_LOOKUP(ipv6_privacy_extensions
, IPv6PrivacyExtensions
);
864 int config_parse_ipv6_privacy_extensions(
866 const char *filename
,
869 unsigned section_line
,
876 IPv6PrivacyExtensions
*ipv6_privacy_extensions
= data
;
882 assert(ipv6_privacy_extensions
);
884 /* Our enum shall be a superset of booleans, hence first try
885 * to parse as boolean, and then as enum */
887 k
= parse_boolean(rvalue
);
889 *ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_YES
;
891 *ipv6_privacy_extensions
= IPV6_PRIVACY_EXTENSIONS_NO
;
893 IPv6PrivacyExtensions s
;
895 s
= ipv6_privacy_extensions_from_string(rvalue
);
898 if (streq(rvalue
, "kernel"))
899 s
= _IPV6_PRIVACY_EXTENSIONS_INVALID
;
901 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
902 "Failed to parse IPv6 privacy extensions option, ignoring: %s", rvalue
);
907 *ipv6_privacy_extensions
= s
;
913 int config_parse_hostname(
915 const char *filename
,
918 unsigned section_line
,
925 _cleanup_free_
char *hn
= NULL
;
926 char **hostname
= data
;
933 r
= config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, &hn
, userdata
);
937 if (!hostname_is_valid(hn
, false)) {
938 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
939 "Hostname is not valid, ignoring assignment: %s", rvalue
);
943 r
= dns_name_is_valid(hn
);
945 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
946 "Failed to check validity of hostname '%s', ignoring assignment: %m", rvalue
);
950 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
951 "Hostname is not a valid DNS domain name, ignoring assignment: %s", rvalue
);
955 return free_and_replace(*hostname
, hn
);
958 int config_parse_timezone(
960 const char *filename
,
963 unsigned section_line
,
970 _cleanup_free_
char *tz
= NULL
;
978 r
= config_parse_string(unit
, filename
, line
, section
, section_line
, lvalue
, ltype
, rvalue
, &tz
, userdata
);
982 if (!timezone_is_valid(tz
, LOG_ERR
)) {
983 log_syntax(unit
, LOG_ERR
, filename
, line
, 0,
984 "Timezone is not valid, ignoring assignment: %s", rvalue
);
988 return free_and_replace(*datap
, tz
);
991 int config_parse_dns(
993 const char *filename
,
996 unsigned section_line
,
1003 Network
*n
= userdata
;
1011 _cleanup_free_
char *w
= NULL
;
1012 union in_addr_union a
;
1013 struct in_addr_data
*m
;
1016 r
= extract_first_word(&rvalue
, &w
, NULL
, 0);
1020 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1021 "Invalid syntax, ignoring: %s", rvalue
);
1027 r
= in_addr_from_string_auto(w
, &family
, &a
);
1029 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1030 "Failed to parse dns server address, ignoring: %s", w
);
1034 m
= reallocarray(n
->dns
, n
->n_dns
+ 1, sizeof(struct in_addr_data
));
1038 m
[n
->n_dns
++] = (struct in_addr_data
) {
1049 int config_parse_dnssec_negative_trust_anchors(
1051 const char *filename
,
1053 const char *section
,
1054 unsigned section_line
,
1061 const char *p
= rvalue
;
1069 if (isempty(rvalue
)) {
1070 n
->dnssec_negative_trust_anchors
= set_free_free(n
->dnssec_negative_trust_anchors
);
1075 _cleanup_free_
char *w
= NULL
;
1077 r
= extract_first_word(&p
, &w
, NULL
, 0);
1079 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1080 "Failed to extract negative trust anchor domain, ignoring: %s", rvalue
);
1086 r
= dns_name_is_valid(w
);
1088 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1089 "%s is not a valid domain name, ignoring.", w
);
1093 r
= set_ensure_allocated(&n
->dnssec_negative_trust_anchors
, &dns_name_hash_ops
);
1097 r
= set_put(n
->dnssec_negative_trust_anchors
, w
);
1107 int config_parse_ntp(
1109 const char *filename
,
1111 const char *section
,
1112 unsigned section_line
,
1126 if (isempty(rvalue
)) {
1132 _cleanup_free_
char *w
= NULL
;
1134 r
= extract_first_word(&rvalue
, &w
, NULL
, 0);
1138 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1139 "Failed to extract NTP server name, ignoring: %s", rvalue
);
1145 r
= dns_name_is_valid_or_address(w
);
1147 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1148 "%s is not a valid domain name or IP address, ignoring.", w
);
1152 if (strv_length(*l
) > MAX_NTP_SERVERS
) {
1153 log_syntax(unit
, LOG_WARNING
, filename
, line
, 0,
1154 "More than %u NTP servers specified, ignoring \"%s\" and any subsequent entries.",
1155 MAX_NTP_SERVERS
, w
);
1159 r
= strv_consume(l
, TAKE_PTR(w
));
1167 int config_parse_required_for_online(
1169 const char *filename
,
1171 const char *section
,
1172 unsigned section_line
,
1179 Network
*network
= data
;
1180 LinkOperationalState s
;
1181 bool required
= true;
1184 if (isempty(rvalue
)) {
1185 network
->required_for_online
= true;
1186 network
->required_operstate_for_online
= LINK_OPERSTATE_DEGRADED
;
1190 s
= link_operstate_from_string(rvalue
);
1192 r
= parse_boolean(rvalue
);
1194 log_syntax(unit
, LOG_ERR
, filename
, line
, r
,
1195 "Failed to parse %s= setting, ignoring assignment: %s",
1201 s
= LINK_OPERSTATE_DEGRADED
;
1204 network
->required_for_online
= required
;
1205 network
->required_operstate_for_online
= s
;
1210 DEFINE_CONFIG_PARSE_ENUM(config_parse_keep_configuration
, keep_configuration
, KeepConfiguration
,
1211 "Failed to parse KeepConfiguration= setting");
1213 static const char* const keep_configuration_table
[_KEEP_CONFIGURATION_MAX
] = {
1214 [KEEP_CONFIGURATION_NO
] = "no",
1215 [KEEP_CONFIGURATION_DHCP_ON_STOP
] = "dhcp-on-stop",
1216 [KEEP_CONFIGURATION_DHCP
] = "dhcp",
1217 [KEEP_CONFIGURATION_STATIC
] = "static",
1218 [KEEP_CONFIGURATION_YES
] = "yes",
1221 DEFINE_STRING_TABLE_LOOKUP_WITH_BOOLEAN(keep_configuration
, KeepConfiguration
, KEEP_CONFIGURATION_YES
);